@bpinhosilva/agent-orchestrator 1.0.0-alpha.19 → 1.0.0-alpha.20
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +7 -0
- package/dist/auth/auth.controller.d.ts +4 -3
- package/dist/auth/auth.controller.js +83 -4
- package/dist/auth/auth.controller.js.map +1 -1
- package/dist/auth/auth.module.js +3 -0
- package/dist/auth/auth.module.js.map +1 -1
- package/dist/auth/auth.service.d.ts +25 -1
- package/dist/auth/auth.service.js +131 -3
- package/dist/auth/auth.service.js.map +1 -1
- package/dist/auth/entities/refresh-token.entity.d.ts +12 -0
- package/dist/auth/entities/refresh-token.entity.js +72 -0
- package/dist/auth/entities/refresh-token.entity.js.map +1 -0
- package/dist/main.js +21 -0
- package/dist/main.js.map +1 -1
- package/dist/migrations/1774850116434-CreateRefreshTokens.d.ts +6 -0
- package/dist/migrations/1774850116434-CreateRefreshTokens.js +68 -0
- package/dist/migrations/1774850116434-CreateRefreshTokens.js.map +1 -0
- package/dist/tsconfig.build.tsbuildinfo +1 -1
- package/dist/ui/assets/{AgentFleet-CjPnJTDy.js → AgentFleet-CQIXvils.js} +1 -1
- package/dist/ui/assets/{ConfirmDialog-Bz6UlQwp.js → ConfirmDialog-nQ8F6FEz.js} +1 -1
- package/dist/ui/assets/{MarkdownField-B63K-cN-.js → MarkdownField-BvkVHJZh.js} +3 -3
- package/dist/ui/assets/{ProjectDetail-C8ne49kg.js → ProjectDetail-CZ-tFtQo.js} +1 -1
- package/dist/ui/assets/{Providers-C7X-PJKg.js → Providers-C61nXOPZ.js} +1 -1
- package/dist/ui/assets/{Scheduler-0M1-6IEO.js → Scheduler-BwWeFfsh.js} +1 -1
- package/dist/ui/assets/{TaskDetail-txbjBxCJ.js → TaskDetail-BKQ3Vgnu.js} +1 -1
- package/dist/ui/assets/{TaskManager-DIx4LXy5.js → TaskManager-CCOnj4Gq.js} +3 -3
- package/dist/ui/assets/{activity-DmAf0v_P.js → activity-CYFCUKYz.js} +1 -1
- package/dist/ui/assets/{brain-0AyIfdOz.js → brain-D1LPqnhA.js} +1 -1
- package/dist/ui/assets/check-BZcW41Vk.js +1 -0
- package/dist/ui/assets/clock-vIUNSAVw.js +1 -0
- package/dist/ui/assets/{eye-BDnsR1bn.js → eye-DSoNYXlu.js} +1 -1
- package/dist/ui/assets/{file-text-B-EYMLmE.js → file-text-DyBkf5PF.js} +1 -1
- package/dist/ui/assets/index-Ctbpa_Ei.js +20 -0
- package/dist/ui/assets/{layers-DNHtv_L2.js → layers-BQR0gbW3.js} +1 -1
- package/dist/ui/assets/providers-C3SQm75E.js +1 -0
- package/dist/ui/assets/{send-B3BmsTBH.js → send-Cgv_rLex.js} +1 -1
- package/dist/ui/assets/{shield-check-Dn3Kft5k.js → shield-check-02qtz3Au.js} +1 -1
- package/dist/ui/assets/{sparkles-CU3d8W7m.js → sparkles-cO3r5TCU.js} +1 -1
- package/dist/ui/assets/{tasks-BaZ0L7mD.js → tasks-BZ0wO0e9.js} +1 -1
- package/dist/ui/assets/{trash-2-IpLhV9cD.js → trash-2-7e8TY3SJ.js} +1 -1
- package/dist/ui/assets/{trending-up-Co8P6vpb.js → trending-up-Dh3I3BnW.js} +1 -1
- package/dist/ui/assets/useNotification-nXJIHD_q.js +6 -0
- package/dist/ui/assets/{user-D2HykcX9.js → user-sikuVJBW.js} +1 -1
- package/dist/ui/assets/{zap-Vbr2DoRU.js → zap-CFqyHdPJ.js} +1 -1
- package/dist/ui/index.html +2 -2
- package/dist/uploads/uploads.controller.js +9 -1
- package/dist/uploads/uploads.controller.js.map +1 -1
- package/package.json +4 -1
- package/dist/ui/assets/check-a2QCd7hn.js +0 -1
- package/dist/ui/assets/clock-Di-F7Bv5.js +0 -1
- package/dist/ui/assets/index-CZVSegF2.js +0 -20
- package/dist/ui/assets/providers-y-03wA-n.js +0 -1
- package/dist/ui/assets/useNotification-D80iNXN0.js +0 -6
package/CHANGELOG.md
CHANGED
|
@@ -1,3 +1,10 @@
|
|
|
1
|
+
# [1.0.0-alpha.20](https://github.com/bpinhosilva/agent-orchestrator/compare/v1.0.0-alpha.19...v1.0.0-alpha.20) (2026-03-30)
|
|
2
|
+
|
|
3
|
+
|
|
4
|
+
### Features
|
|
5
|
+
|
|
6
|
+
* implement security fixes ([f570f92](https://github.com/bpinhosilva/agent-orchestrator/commit/f570f92a10cf1473c36a0145c160f6e23905bb1f))
|
|
7
|
+
|
|
1
8
|
# [1.0.0-alpha.19](https://github.com/bpinhosilva/agent-orchestrator/compare/v1.0.0-alpha.18...v1.0.0-alpha.19) (2026-03-30)
|
|
2
9
|
|
|
3
10
|
|
|
@@ -1,6 +1,7 @@
|
|
|
1
1
|
import { AuthService } from './auth.service';
|
|
2
2
|
import { RegisterDto } from './dto/register.dto';
|
|
3
3
|
import { LoginDto } from './dto/login.dto';
|
|
4
|
+
import type { Response as ExpressResponse, Request as ExpressRequest } from 'express';
|
|
4
5
|
export declare class AuthController {
|
|
5
6
|
private readonly authService;
|
|
6
7
|
constructor(authService: AuthService);
|
|
@@ -11,10 +12,10 @@ export declare class AuthController {
|
|
|
11
12
|
createdAt: Date;
|
|
12
13
|
updatedAt: Date;
|
|
13
14
|
}>;
|
|
14
|
-
login(loginDto: LoginDto): Promise<
|
|
15
|
-
|
|
16
|
-
}>;
|
|
15
|
+
login(loginDto: LoginDto, res: ExpressResponse): Promise<void>;
|
|
16
|
+
refresh(req: ExpressRequest, res: ExpressResponse): Promise<ExpressResponse<any, Record<string, any>>>;
|
|
17
17
|
getMe(req: {
|
|
18
18
|
user: unknown;
|
|
19
19
|
}): unknown;
|
|
20
|
+
logout(req: ExpressRequest, res: ExpressResponse): Promise<void>;
|
|
20
21
|
}
|
|
@@ -15,6 +15,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
15
15
|
exports.AuthController = void 0;
|
|
16
16
|
const openapi = require("@nestjs/swagger");
|
|
17
17
|
const common_1 = require("@nestjs/common");
|
|
18
|
+
const throttler_1 = require("@nestjs/throttler");
|
|
18
19
|
const auth_service_1 = require("./auth.service");
|
|
19
20
|
const register_dto_1 = require("./dto/register.dto");
|
|
20
21
|
const login_dto_1 = require("./dto/login.dto");
|
|
@@ -28,16 +29,71 @@ let AuthController = class AuthController {
|
|
|
28
29
|
register(registerDto) {
|
|
29
30
|
return this.authService.register(registerDto);
|
|
30
31
|
}
|
|
31
|
-
login(loginDto) {
|
|
32
|
-
|
|
32
|
+
async login(loginDto, res) {
|
|
33
|
+
const data = await this.authService.login(loginDto);
|
|
34
|
+
res.cookie('auth_token', data.access_token, {
|
|
35
|
+
httpOnly: true,
|
|
36
|
+
secure: process.env.NODE_ENV === 'production',
|
|
37
|
+
sameSite: 'strict',
|
|
38
|
+
maxAge: data.expires_in * 1000,
|
|
39
|
+
path: '/',
|
|
40
|
+
});
|
|
41
|
+
res.cookie('refresh_token', data.refresh_token, {
|
|
42
|
+
httpOnly: true,
|
|
43
|
+
secure: process.env.NODE_ENV === 'production',
|
|
44
|
+
sameSite: 'strict',
|
|
45
|
+
maxAge: data.refresh_expires_in * 1000,
|
|
46
|
+
path: '/',
|
|
47
|
+
});
|
|
48
|
+
res.json({ message: 'Logged in successfully' });
|
|
49
|
+
}
|
|
50
|
+
async refresh(req, res) {
|
|
51
|
+
const refreshToken = req.cookies?.refresh_token;
|
|
52
|
+
if (!refreshToken) {
|
|
53
|
+
return res
|
|
54
|
+
.status(common_1.HttpStatus.UNAUTHORIZED)
|
|
55
|
+
.json({ message: 'Refresh token not found' });
|
|
56
|
+
}
|
|
57
|
+
try {
|
|
58
|
+
const data = await this.authService.refresh(refreshToken);
|
|
59
|
+
res.cookie('refresh_token', data.refresh_token, {
|
|
60
|
+
httpOnly: true,
|
|
61
|
+
secure: process.env.NODE_ENV === 'production',
|
|
62
|
+
sameSite: 'strict',
|
|
63
|
+
maxAge: data.refresh_expires_in * 1000,
|
|
64
|
+
path: '/',
|
|
65
|
+
});
|
|
66
|
+
return res.json({
|
|
67
|
+
access_token: data.access_token,
|
|
68
|
+
expires_in: data.expires_in,
|
|
69
|
+
token_type: data.token_type,
|
|
70
|
+
});
|
|
71
|
+
}
|
|
72
|
+
catch {
|
|
73
|
+
res.clearCookie('auth_token', { path: '/' });
|
|
74
|
+
res.clearCookie('refresh_token', { path: '/' });
|
|
75
|
+
return res
|
|
76
|
+
.status(common_1.HttpStatus.UNAUTHORIZED)
|
|
77
|
+
.json({ message: 'Invalid or expired refresh token' });
|
|
78
|
+
}
|
|
33
79
|
}
|
|
34
80
|
getMe(req) {
|
|
35
81
|
return req.user;
|
|
36
82
|
}
|
|
83
|
+
async logout(req, res) {
|
|
84
|
+
const refreshToken = req.cookies?.refresh_token;
|
|
85
|
+
if (refreshToken) {
|
|
86
|
+
await this.authService.revokeRefreshToken(refreshToken);
|
|
87
|
+
}
|
|
88
|
+
res.clearCookie('auth_token', { path: '/' });
|
|
89
|
+
res.clearCookie('refresh_token', { path: '/' });
|
|
90
|
+
res.json({ message: 'Logged out successfully' });
|
|
91
|
+
}
|
|
37
92
|
};
|
|
38
93
|
exports.AuthController = AuthController;
|
|
39
94
|
__decorate([
|
|
40
95
|
(0, public_decorator_1.Public)(),
|
|
96
|
+
(0, throttler_1.Throttle)({ default: { limit: 5, ttl: 60000 } }),
|
|
41
97
|
(0, common_1.Post)('register'),
|
|
42
98
|
openapi.ApiResponse({ status: 201 }),
|
|
43
99
|
__param(0, (0, common_1.Body)()),
|
|
@@ -47,14 +103,28 @@ __decorate([
|
|
|
47
103
|
], AuthController.prototype, "register", null);
|
|
48
104
|
__decorate([
|
|
49
105
|
(0, public_decorator_1.Public)(),
|
|
106
|
+
(0, throttler_1.Throttle)({ default: { limit: 5, ttl: 60000 } }),
|
|
50
107
|
(0, common_1.HttpCode)(common_1.HttpStatus.OK),
|
|
51
108
|
(0, common_1.Post)('login'),
|
|
52
109
|
openapi.ApiResponse({ status: common_1.HttpStatus.OK }),
|
|
53
110
|
__param(0, (0, common_1.Body)()),
|
|
111
|
+
__param(1, (0, common_1.Response)()),
|
|
54
112
|
__metadata("design:type", Function),
|
|
55
|
-
__metadata("design:paramtypes", [login_dto_1.LoginDto]),
|
|
56
|
-
__metadata("design:returntype",
|
|
113
|
+
__metadata("design:paramtypes", [login_dto_1.LoginDto, Object]),
|
|
114
|
+
__metadata("design:returntype", Promise)
|
|
57
115
|
], AuthController.prototype, "login", null);
|
|
116
|
+
__decorate([
|
|
117
|
+
(0, public_decorator_1.Public)(),
|
|
118
|
+
(0, throttler_1.Throttle)({ default: { limit: 10, ttl: 60000 } }),
|
|
119
|
+
(0, common_1.HttpCode)(common_1.HttpStatus.OK),
|
|
120
|
+
(0, common_1.Post)('refresh'),
|
|
121
|
+
openapi.ApiResponse({ status: common_1.HttpStatus.OK }),
|
|
122
|
+
__param(0, (0, common_1.Request)()),
|
|
123
|
+
__param(1, (0, common_1.Response)()),
|
|
124
|
+
__metadata("design:type", Function),
|
|
125
|
+
__metadata("design:paramtypes", [Object, Object]),
|
|
126
|
+
__metadata("design:returntype", Promise)
|
|
127
|
+
], AuthController.prototype, "refresh", null);
|
|
58
128
|
__decorate([
|
|
59
129
|
(0, common_1.Get)('me'),
|
|
60
130
|
openapi.ApiResponse({ status: 200, type: Object }),
|
|
@@ -63,6 +133,15 @@ __decorate([
|
|
|
63
133
|
__metadata("design:paramtypes", [Object]),
|
|
64
134
|
__metadata("design:returntype", void 0)
|
|
65
135
|
], AuthController.prototype, "getMe", null);
|
|
136
|
+
__decorate([
|
|
137
|
+
(0, common_1.Post)('logout'),
|
|
138
|
+
openapi.ApiResponse({ status: 201 }),
|
|
139
|
+
__param(0, (0, common_1.Request)()),
|
|
140
|
+
__param(1, (0, common_1.Response)()),
|
|
141
|
+
__metadata("design:type", Function),
|
|
142
|
+
__metadata("design:paramtypes", [Object, Object]),
|
|
143
|
+
__metadata("design:returntype", Promise)
|
|
144
|
+
], AuthController.prototype, "logout", null);
|
|
66
145
|
exports.AuthController = AuthController = __decorate([
|
|
67
146
|
(0, swagger_1.ApiTags)('auth'),
|
|
68
147
|
(0, common_1.Controller)('auth'),
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"auth.controller.js","sourceRoot":"","sources":["../../src/auth/auth.controller.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,
|
|
1
|
+
{"version":3,"file":"auth.controller.js","sourceRoot":"","sources":["../../src/auth/auth.controller.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CASwB;AACxB,iDAA6C;AAC7C,iDAA6C;AAC7C,qDAAiD;AACjD,+CAA2C;AAC3C,oEAAuD;AACvD,6CAA0C;AAQnC,IAAM,cAAc,GAApB,MAAM,cAAc;IACI;IAA7B,YAA6B,WAAwB;QAAxB,gBAAW,GAAX,WAAW,CAAa;IAAG,CAAC;IAKzD,QAAQ,CAAS,WAAwB;QACvC,OAAO,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IAChD,CAAC;IAMK,AAAN,KAAK,CAAC,KAAK,CAAS,QAAkB,EAAc,GAAoB;QACtE,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QAGpD,GAAG,CAAC,MAAM,CAAC,YAAY,EAAE,IAAI,CAAC,YAAY,EAAE;YAC1C,QAAQ,EAAE,IAAI;YACd,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,YAAY;YAC7C,QAAQ,EAAE,QAAQ;YAClB,MAAM,EAAE,IAAI,CAAC,UAAU,GAAG,IAAI;YAC9B,IAAI,EAAE,GAAG;SACV,CAAC,CAAC;QAEH,GAAG,CAAC,MAAM,CAAC,eAAe,EAAE,IAAI,CAAC,aAAa,EAAE;YAC9C,QAAQ,EAAE,IAAI;YACd,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,YAAY;YAC7C,QAAQ,EAAE,QAAQ;YAClB,MAAM,EAAE,IAAI,CAAC,kBAAkB,GAAG,IAAI;YACtC,IAAI,EAAE,GAAG;SACV,CAAC,CAAC;QAEH,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,wBAAwB,EAAE,CAAC,CAAC;IAClD,CAAC;IAMK,AAAN,KAAK,CAAC,OAAO,CACA,GAAmB,EAClB,GAAoB;QAGhC,MAAM,YAAY,GAAG,GAAG,CAAC,OAAO,EAAE,aAAa,CAAC;QAEhD,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,OAAO,GAAG;iBACP,MAAM,CAAC,mBAAU,CAAC,YAAY,CAAC;iBAC/B,IAAI,CAAC,EAAE,OAAO,EAAE,yBAAyB,EAAE,CAAC,CAAC;QAClD,CAAC;QAED,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,YAAsB,CAAC,CAAC;YAGpE,GAAG,CAAC,MAAM,CAAC,eAAe,EAAE,IAAI,CAAC,aAAa,EAAE;gBAC9C,QAAQ,EAAE,IAAI;gBACd,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,YAAY;gBAC7C,QAAQ,EAAE,QAAQ;gBAClB,MAAM,EAAE,IAAI,CAAC,kBAAkB,GAAG,IAAI;gBACtC,IAAI,EAAE,GAAG;aACV,CAAC,CAAC;YAEH,OAAO,GAAG,CAAC,IAAI,CAAC;gBACd,YAAY,EAAE,IAAI,CAAC,YAAY;gBAC/B,UAAU,EAAE,IAAI,CAAC,UAAU;gBAC3B,UAAU,EAAE,IAAI,CAAC,UAAU;aAC5B,CAAC,CAAC;QACL,CAAC;QAAC,MAAM,CAAC;YAEP,GAAG,CAAC,WAAW,CAAC,YAAY,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC;YAC7C,GAAG,CAAC,WAAW,CAAC,eAAe,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC;YAChD,OAAO,GAAG;iBACP,MAAM,CAAC,mBAAU,CAAC,YAAY,CAAC;iBAC/B,IAAI,CAAC,EAAE,OAAO,EAAE,kCAAkC,EAAE,CAAC,CAAC;QAC3D,CAAC;IACH,CAAC;IAGD,KAAK,CAAY,GAAsB;QACrC,OAAO,GAAG,CAAC,IAAI,CAAC;IAClB,CAAC;IAGK,AAAN,KAAK,CAAC,MAAM,CACC,GAAmB,EAClB,GAAoB;QAGhC,MAAM,YAAY,GAAG,GAAG,CAAC,OAAO,EAAE,aAAa,CAAC;QAGhD,IAAI,YAAY,EAAE,CAAC;YACjB,MAAM,IAAI,CAAC,WAAW,CAAC,kBAAkB,CAAC,YAAsB,CAAC,CAAC;QACpE,CAAC;QAED,GAAG,CAAC,WAAW,CAAC,YAAY,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC;QAC7C,GAAG,CAAC,WAAW,CAAC,eAAe,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC;QAChD,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,yBAAyB,EAAE,CAAC,CAAC;IACnD,CAAC;CACF,CAAA;AAvGY,wCAAc;AAMzB;IAHC,IAAA,yBAAM,GAAE;IACR,IAAA,oBAAQ,EAAC,EAAE,OAAO,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,GAAG,EAAE,KAAK,EAAE,EAAE,CAAC;IAC/C,IAAA,aAAI,EAAC,UAAU,CAAC;;IACP,WAAA,IAAA,aAAI,GAAE,CAAA;;qCAAc,0BAAW;;8CAExC;AAMK;IAJL,IAAA,yBAAM,GAAE;IACR,IAAA,oBAAQ,EAAC,EAAE,OAAO,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,GAAG,EAAE,KAAK,EAAE,EAAE,CAAC;IAC/C,IAAA,iBAAQ,EAAC,mBAAU,CAAC,EAAE,CAAC;IACvB,IAAA,aAAI,EAAC,OAAO,CAAC;kCADJ,mBAAU,CAAC,EAAE;IAEV,WAAA,IAAA,aAAI,GAAE,CAAA;IAAsB,WAAA,IAAA,iBAAQ,GAAE,CAAA;;qCAArB,oBAAQ;;2CAqBrC;AAMK;IAJL,IAAA,yBAAM,GAAE;IACR,IAAA,oBAAQ,EAAC,EAAE,OAAO,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,GAAG,EAAE,KAAK,EAAE,EAAE,CAAC;IAChD,IAAA,iBAAQ,EAAC,mBAAU,CAAC,EAAE,CAAC;IACvB,IAAA,aAAI,EAAC,SAAS,CAAC;kCADN,mBAAU,CAAC,EAAE;IAGpB,WAAA,IAAA,gBAAO,GAAE,CAAA;IACT,WAAA,IAAA,iBAAQ,GAAE,CAAA;;;;6CAoCZ;AAGD;IADC,IAAA,YAAG,EAAC,IAAI,CAAC;;IACH,WAAA,IAAA,gBAAO,GAAE,CAAA;;;;2CAEf;AAGK;IADL,IAAA,aAAI,EAAC,QAAQ,CAAC;;IAEZ,WAAA,IAAA,gBAAO,GAAE,CAAA;IACT,WAAA,IAAA,iBAAQ,GAAE,CAAA;;;;4CAaZ;yBAtGU,cAAc;IAF1B,IAAA,iBAAO,EAAC,MAAM,CAAC;IACf,IAAA,mBAAU,EAAC,MAAM,CAAC;qCAEyB,0BAAW;GAD1C,cAAc,CAuG1B"}
|
package/dist/auth/auth.module.js
CHANGED
|
@@ -8,6 +8,7 @@ var __decorate = (this && this.__decorate) || function (decorators, target, key,
|
|
|
8
8
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
9
9
|
exports.AuthModule = void 0;
|
|
10
10
|
const common_1 = require("@nestjs/common");
|
|
11
|
+
const typeorm_1 = require("@nestjs/typeorm");
|
|
11
12
|
const auth_service_1 = require("./auth.service");
|
|
12
13
|
const auth_controller_1 = require("./auth.controller");
|
|
13
14
|
const users_module_1 = require("../users/users.module");
|
|
@@ -15,6 +16,7 @@ const passport_1 = require("@nestjs/passport");
|
|
|
15
16
|
const jwt_1 = require("@nestjs/jwt");
|
|
16
17
|
const config_1 = require("@nestjs/config");
|
|
17
18
|
const jwt_strategy_1 = require("./strategies/jwt.strategy");
|
|
19
|
+
const refresh_token_entity_1 = require("./entities/refresh-token.entity");
|
|
18
20
|
let AuthModule = class AuthModule {
|
|
19
21
|
};
|
|
20
22
|
exports.AuthModule = AuthModule;
|
|
@@ -23,6 +25,7 @@ exports.AuthModule = AuthModule = __decorate([
|
|
|
23
25
|
imports: [
|
|
24
26
|
users_module_1.UsersModule,
|
|
25
27
|
passport_1.PassportModule,
|
|
28
|
+
typeorm_1.TypeOrmModule.forFeature([refresh_token_entity_1.RefreshToken]),
|
|
26
29
|
jwt_1.JwtModule.registerAsync({
|
|
27
30
|
imports: [config_1.ConfigModule],
|
|
28
31
|
inject: [config_1.ConfigService],
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"auth.module.js","sourceRoot":"","sources":["../../src/auth/auth.module.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAAwC;AACxC,iDAA6C;AAC7C,uDAAmD;AACnD,wDAAoD;AACpD,+CAAkD;AAClD,qCAAwC;AACxC,2CAA6D;AAC7D,4DAAwD;
|
|
1
|
+
{"version":3,"file":"auth.module.js","sourceRoot":"","sources":["../../src/auth/auth.module.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAAwC;AACxC,6CAAgD;AAChD,iDAA6C;AAC7C,uDAAmD;AACnD,wDAAoD;AACpD,+CAAkD;AAClD,qCAAwC;AACxC,2CAA6D;AAC7D,4DAAwD;AACxD,0EAA+D;AAoBxD,IAAM,UAAU,GAAhB,MAAM,UAAU;CAAG,CAAA;AAAb,gCAAU;qBAAV,UAAU;IAlBtB,IAAA,eAAM,EAAC;QACN,OAAO,EAAE;YACP,0BAAW;YACX,yBAAc;YACd,uBAAa,CAAC,UAAU,CAAC,CAAC,mCAAY,CAAC,CAAC;YACxC,eAAS,CAAC,aAAa,CAAC;gBACtB,OAAO,EAAE,CAAC,qBAAY,CAAC;gBACvB,MAAM,EAAE,CAAC,sBAAa,CAAC;gBACvB,UAAU,EAAE,CAAC,aAA4B,EAAE,EAAE,CAAC,CAAC;oBAC7C,MAAM,EAAE,aAAa,CAAC,GAAG,CAAS,YAAY,CAAC;oBAC/C,WAAW,EAAE,EAAE,SAAS,EAAE,KAAK,EAAE;iBAClC,CAAC;aACH,CAAC;SACH;QACD,SAAS,EAAE,CAAC,0BAAW,EAAE,0BAAW,CAAC;QACrC,WAAW,EAAE,CAAC,gCAAc,CAAC;QAC7B,OAAO,EAAE,CAAC,0BAAW,CAAC;KACvB,CAAC;GACW,UAAU,CAAG"}
|
|
@@ -1,13 +1,24 @@
|
|
|
1
1
|
import { JwtService } from '@nestjs/jwt';
|
|
2
|
+
import { ConfigService } from '@nestjs/config';
|
|
3
|
+
import { Repository } from 'typeorm';
|
|
2
4
|
import { UsersService } from '../users/users.service';
|
|
3
5
|
import { RegisterDto } from './dto/register.dto';
|
|
4
6
|
import { LoginDto } from './dto/login.dto';
|
|
7
|
+
import { RefreshToken } from './entities/refresh-token.entity';
|
|
5
8
|
import { User } from '../users/entities/user.entity';
|
|
6
9
|
export declare class AuthService {
|
|
7
10
|
private usersService;
|
|
8
11
|
private jwtService;
|
|
9
|
-
|
|
12
|
+
private configService;
|
|
13
|
+
private refreshTokenRepository;
|
|
14
|
+
private readonly accessTokenExpiresIn;
|
|
15
|
+
private readonly refreshTokenExpiresIn;
|
|
16
|
+
private readonly absoluteMaxExpiresIn;
|
|
17
|
+
constructor(usersService: UsersService, jwtService: JwtService, configService: ConfigService, refreshTokenRepository: Repository<RefreshToken>);
|
|
10
18
|
validateUser(userId: string): Promise<Omit<User, 'password'> | null>;
|
|
19
|
+
private generateAccessToken;
|
|
20
|
+
private generateRefreshToken;
|
|
21
|
+
validateRefreshToken(token: string): Promise<string | null>;
|
|
11
22
|
register(registerDto: RegisterDto): Promise<{
|
|
12
23
|
id: string;
|
|
13
24
|
name: string;
|
|
@@ -17,5 +28,18 @@ export declare class AuthService {
|
|
|
17
28
|
}>;
|
|
18
29
|
login(loginDto: LoginDto): Promise<{
|
|
19
30
|
access_token: string;
|
|
31
|
+
refresh_token: string;
|
|
32
|
+
expires_in: number;
|
|
33
|
+
refresh_expires_in: number;
|
|
34
|
+
refresh_absolute_expires_in: number;
|
|
35
|
+
token_type: string;
|
|
20
36
|
}>;
|
|
37
|
+
refresh(refreshToken: string): Promise<{
|
|
38
|
+
access_token: string;
|
|
39
|
+
refresh_token: string;
|
|
40
|
+
expires_in: number;
|
|
41
|
+
refresh_expires_in: number;
|
|
42
|
+
token_type: string;
|
|
43
|
+
}>;
|
|
44
|
+
revokeRefreshToken(token: string): Promise<void>;
|
|
21
45
|
}
|
|
@@ -41,18 +41,32 @@ var __importStar = (this && this.__importStar) || (function () {
|
|
|
41
41
|
var __metadata = (this && this.__metadata) || function (k, v) {
|
|
42
42
|
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
|
|
43
43
|
};
|
|
44
|
+
var __param = (this && this.__param) || function (paramIndex, decorator) {
|
|
45
|
+
return function (target, key) { decorator(target, key, paramIndex); }
|
|
46
|
+
};
|
|
44
47
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
45
48
|
exports.AuthService = void 0;
|
|
46
49
|
const common_1 = require("@nestjs/common");
|
|
47
50
|
const jwt_1 = require("@nestjs/jwt");
|
|
51
|
+
const config_1 = require("@nestjs/config");
|
|
52
|
+
const typeorm_1 = require("typeorm");
|
|
53
|
+
const typeorm_2 = require("@nestjs/typeorm");
|
|
48
54
|
const users_service_1 = require("../users/users.service");
|
|
55
|
+
const refresh_token_entity_1 = require("./entities/refresh-token.entity");
|
|
49
56
|
const bcrypt = __importStar(require("bcrypt"));
|
|
50
57
|
let AuthService = class AuthService {
|
|
51
58
|
usersService;
|
|
52
59
|
jwtService;
|
|
53
|
-
|
|
60
|
+
configService;
|
|
61
|
+
refreshTokenRepository;
|
|
62
|
+
accessTokenExpiresIn = '60m';
|
|
63
|
+
refreshTokenExpiresIn = '1d';
|
|
64
|
+
absoluteMaxExpiresIn = 30 * 24 * 60 * 60 * 1000;
|
|
65
|
+
constructor(usersService, jwtService, configService, refreshTokenRepository) {
|
|
54
66
|
this.usersService = usersService;
|
|
55
67
|
this.jwtService = jwtService;
|
|
68
|
+
this.configService = configService;
|
|
69
|
+
this.refreshTokenRepository = refreshTokenRepository;
|
|
56
70
|
}
|
|
57
71
|
async validateUser(userId) {
|
|
58
72
|
try {
|
|
@@ -67,6 +81,74 @@ let AuthService = class AuthService {
|
|
|
67
81
|
}
|
|
68
82
|
return null;
|
|
69
83
|
}
|
|
84
|
+
generateAccessToken(payload) {
|
|
85
|
+
return this.jwtService.sign(payload, {
|
|
86
|
+
expiresIn: this.accessTokenExpiresIn,
|
|
87
|
+
});
|
|
88
|
+
}
|
|
89
|
+
async generateRefreshToken(userId) {
|
|
90
|
+
const issuedAt = new Date();
|
|
91
|
+
const expiresAt = new Date(issuedAt.getTime() + 24 * 60 * 60 * 1000);
|
|
92
|
+
const absoluteExpiry = new Date(issuedAt.getTime() + this.absoluteMaxExpiresIn);
|
|
93
|
+
const payload = {
|
|
94
|
+
sub: userId,
|
|
95
|
+
type: 'refresh',
|
|
96
|
+
iat: Math.floor(issuedAt.getTime() / 1000),
|
|
97
|
+
};
|
|
98
|
+
const token = this.jwtService.sign(payload, {
|
|
99
|
+
expiresIn: this.refreshTokenExpiresIn,
|
|
100
|
+
secret: this.configService.get('JWT_SECRET'),
|
|
101
|
+
});
|
|
102
|
+
const hashedToken = await bcrypt.hash(token, 10);
|
|
103
|
+
await this.refreshTokenRepository.save({
|
|
104
|
+
userId,
|
|
105
|
+
token: hashedToken,
|
|
106
|
+
issuedAt,
|
|
107
|
+
expiresAt,
|
|
108
|
+
absoluteExpiry,
|
|
109
|
+
revokedAt: null,
|
|
110
|
+
});
|
|
111
|
+
return { token, expiresAt, absoluteExpiry };
|
|
112
|
+
}
|
|
113
|
+
async validateRefreshToken(token) {
|
|
114
|
+
try {
|
|
115
|
+
const payload = this.jwtService.verify(token, {
|
|
116
|
+
secret: this.configService.get('JWT_SECRET'),
|
|
117
|
+
});
|
|
118
|
+
if (payload.type !== 'refresh') {
|
|
119
|
+
return null;
|
|
120
|
+
}
|
|
121
|
+
const refreshTokens = await this.refreshTokenRepository.find({
|
|
122
|
+
where: {
|
|
123
|
+
userId: payload.sub,
|
|
124
|
+
revokedAt: (0, typeorm_1.IsNull)(),
|
|
125
|
+
},
|
|
126
|
+
});
|
|
127
|
+
if (!refreshTokens.length) {
|
|
128
|
+
return null;
|
|
129
|
+
}
|
|
130
|
+
let tokenFound = false;
|
|
131
|
+
for (const dbToken of refreshTokens) {
|
|
132
|
+
const isMatch = await bcrypt.compare(token, dbToken.token);
|
|
133
|
+
if (isMatch) {
|
|
134
|
+
if (new Date() > dbToken.expiresAt) {
|
|
135
|
+
return null;
|
|
136
|
+
}
|
|
137
|
+
if (new Date() > dbToken.absoluteExpiry) {
|
|
138
|
+
return null;
|
|
139
|
+
}
|
|
140
|
+
tokenFound = true;
|
|
141
|
+
break;
|
|
142
|
+
}
|
|
143
|
+
}
|
|
144
|
+
return tokenFound
|
|
145
|
+
? payload.sub
|
|
146
|
+
: null;
|
|
147
|
+
}
|
|
148
|
+
catch {
|
|
149
|
+
return null;
|
|
150
|
+
}
|
|
151
|
+
}
|
|
70
152
|
async register(registerDto) {
|
|
71
153
|
const existingUser = await this.usersService.findByEmail(registerDto.email);
|
|
72
154
|
if (existingUser) {
|
|
@@ -93,15 +175,61 @@ let AuthService = class AuthService {
|
|
|
93
175
|
throw new common_1.UnauthorizedException('Invalid credentials');
|
|
94
176
|
}
|
|
95
177
|
const payload = { email: user.email, sub: user.id };
|
|
178
|
+
const accessToken = this.generateAccessToken(payload);
|
|
179
|
+
const { token: refreshToken } = await this.generateRefreshToken(user.id);
|
|
180
|
+
return {
|
|
181
|
+
access_token: accessToken,
|
|
182
|
+
refresh_token: refreshToken,
|
|
183
|
+
expires_in: 3600,
|
|
184
|
+
refresh_expires_in: 86400,
|
|
185
|
+
refresh_absolute_expires_in: 2592000,
|
|
186
|
+
token_type: 'Bearer',
|
|
187
|
+
};
|
|
188
|
+
}
|
|
189
|
+
async refresh(refreshToken) {
|
|
190
|
+
const userId = await this.validateRefreshToken(refreshToken);
|
|
191
|
+
if (!userId) {
|
|
192
|
+
throw new common_1.UnauthorizedException('Invalid or expired refresh token');
|
|
193
|
+
}
|
|
194
|
+
const user = await this.usersService.findOne(userId);
|
|
195
|
+
if (!user) {
|
|
196
|
+
throw new common_1.UnauthorizedException('User not found');
|
|
197
|
+
}
|
|
198
|
+
await this.refreshTokenRepository.update({ userId, revokedAt: (0, typeorm_1.IsNull)() }, { revokedAt: new Date() });
|
|
199
|
+
const payload = { email: user.email, sub: user.id };
|
|
200
|
+
const newAccessToken = this.generateAccessToken(payload);
|
|
201
|
+
const { token: newRefreshToken } = await this.generateRefreshToken(user.id);
|
|
96
202
|
return {
|
|
97
|
-
access_token:
|
|
203
|
+
access_token: newAccessToken,
|
|
204
|
+
refresh_token: newRefreshToken,
|
|
205
|
+
expires_in: 3600,
|
|
206
|
+
refresh_expires_in: 86400,
|
|
207
|
+
token_type: 'Bearer',
|
|
98
208
|
};
|
|
99
209
|
}
|
|
210
|
+
async revokeRefreshToken(token) {
|
|
211
|
+
try {
|
|
212
|
+
const payload = this.jwtService.verify(token, {
|
|
213
|
+
secret: this.configService.get('JWT_SECRET'),
|
|
214
|
+
});
|
|
215
|
+
if (payload.sub) {
|
|
216
|
+
await this.refreshTokenRepository.update({
|
|
217
|
+
userId: payload.sub,
|
|
218
|
+
revokedAt: (0, typeorm_1.IsNull)(),
|
|
219
|
+
}, { revokedAt: new Date() });
|
|
220
|
+
}
|
|
221
|
+
}
|
|
222
|
+
catch {
|
|
223
|
+
}
|
|
224
|
+
}
|
|
100
225
|
};
|
|
101
226
|
exports.AuthService = AuthService;
|
|
102
227
|
exports.AuthService = AuthService = __decorate([
|
|
103
228
|
(0, common_1.Injectable)(),
|
|
229
|
+
__param(3, (0, typeorm_2.InjectRepository)(refresh_token_entity_1.RefreshToken)),
|
|
104
230
|
__metadata("design:paramtypes", [users_service_1.UsersService,
|
|
105
|
-
jwt_1.JwtService
|
|
231
|
+
jwt_1.JwtService,
|
|
232
|
+
config_1.ConfigService,
|
|
233
|
+
typeorm_1.Repository])
|
|
106
234
|
], AuthService);
|
|
107
235
|
//# sourceMappingURL=auth.service.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"auth.service.js","sourceRoot":"","sources":["../../src/auth/auth.service.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"auth.service.js","sourceRoot":"","sources":["../../src/auth/auth.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,2CAIwB;AACxB,qCAAyC;AACzC,2CAA+C;AAC/C,qCAA6C;AAC7C,6CAAmD;AACnD,0DAAsD;AAGtD,0EAA+D;AAC/D,+CAAiC;AAI1B,IAAM,WAAW,GAAjB,MAAM,WAAW;IAMZ;IACA;IACA;IAEA;IATO,oBAAoB,GAAG,KAAK,CAAC;IAC7B,qBAAqB,GAAG,IAAI,CAAC;IAC7B,oBAAoB,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;IAEjE,YACU,YAA0B,EAC1B,UAAsB,EACtB,aAA4B,EAE5B,sBAAgD;QAJhD,iBAAY,GAAZ,YAAY,CAAc;QAC1B,eAAU,GAAV,UAAU,CAAY;QACtB,kBAAa,GAAb,aAAa,CAAe;QAE5B,2BAAsB,GAAtB,sBAAsB,CAA0B;IACvD,CAAC;IAEJ,KAAK,CAAC,YAAY,CAAC,MAAc;QAC/B,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YACrD,IAAI,IAAI,EAAE,CAAC;gBAET,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,EAAE,GAAG,IAAI,CAAC;gBACrC,OAAO,MAAM,CAAC;YAChB,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,mBAAmB,CAAC,OAA+B;QACzD,OAAO,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,EAAE;YACnC,SAAS,EAAE,IAAI,CAAC,oBAAoB;SACrC,CAAC,CAAC;IACL,CAAC;IAEO,KAAK,CAAC,oBAAoB,CAChC,MAAc;QAEd,MAAM,QAAQ,GAAG,IAAI,IAAI,EAAE,CAAC;QAC5B,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,QAAQ,CAAC,OAAO,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QACrE,MAAM,cAAc,GAAG,IAAI,IAAI,CAC7B,QAAQ,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,oBAAoB,CAC/C,CAAC;QAEF,MAAM,OAAO,GAAG;YACd,GAAG,EAAE,MAAM;YACX,IAAI,EAAE,SAAS;YACf,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC;SAC3C,CAAC;QAEF,MAAM,KAAK,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,EAAE;YAC1C,SAAS,EAAE,IAAI,CAAC,qBAAqB;YACrC,MAAM,EAAE,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,YAAY,CAAC;SACrD,CAAC,CAAC;QAGH,MAAM,WAAW,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QAGjD,MAAM,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC;YACrC,MAAM;YACN,KAAK,EAAE,WAAW;YAClB,QAAQ;YACR,SAAS;YACT,cAAc;YACd,SAAS,EAAE,IAAI;SAChB,CAAC,CAAC;QAEH,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,cAAc,EAAE,CAAC;IAC9C,CAAC;IAED,KAAK,CAAC,oBAAoB,CAAC,KAAa;QACtC,IAAI,CAAC;YAGH,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,EAAE;gBAC5C,MAAM,EAAE,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,YAAY,CAAC;aACrD,CAAC,CAAC;YAEH,IAAK,OAAmC,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;gBAC5D,OAAO,IAAI,CAAC;YACd,CAAC;YAGD,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC;gBAC3D,KAAK,EAAE;oBACL,MAAM,EAAG,OAAmC,CAAC,GAAa;oBAC1D,SAAS,EAAE,IAAA,gBAAM,GAAE;iBACpB;aACF,CAAC,CAAC;YAEH,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,CAAC;gBAC1B,OAAO,IAAI,CAAC;YACd,CAAC;YAGD,IAAI,UAAU,GAAG,KAAK,CAAC;YACvB,KAAK,MAAM,OAAO,IAAI,aAAa,EAAE,CAAC;gBACpC,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC;gBAC3D,IAAI,OAAO,EAAE,CAAC;oBAEZ,IAAI,IAAI,IAAI,EAAE,GAAG,OAAO,CAAC,SAAS,EAAE,CAAC;wBACnC,OAAO,IAAI,CAAC;oBACd,CAAC;oBAGD,IAAI,IAAI,IAAI,EAAE,GAAG,OAAO,CAAC,cAAc,EAAE,CAAC;wBACxC,OAAO,IAAI,CAAC;oBACd,CAAC;oBAED,UAAU,GAAG,IAAI,CAAC;oBAClB,MAAM;gBACR,CAAC;YACH,CAAC;YAED,OAAO,UAAU;gBACf,CAAC,CAAG,OAAmC,CAAC,GAAc;gBACtD,CAAC,CAAC,IAAI,CAAC;QACX,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,WAAwB;QACrC,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,WAAW,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QAC5E,IAAI,YAAY,EAAE,CAAC;YACjB,MAAM,IAAI,0BAAiB,CAAC,sBAAsB,CAAC,CAAC;QACtD,CAAC;QAED,MAAM,cAAc,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;QACnE,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC;YAC1C,GAAG,WAAW;YACd,QAAQ,EAAE,cAAc;SACzB,CAAC,CAAC;QAGH,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,EAAE,GAAG,IAAI,CAAC;QACrC,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,KAAK,CAAC,KAAK,CAAC,QAAkB;QAC5B,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QACjE,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,8BAAqB,CAAC,qBAAqB,CAAC,CAAC;QACzD,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACnB,MAAM,IAAI,8BAAqB,CAAC,qBAAqB,CAAC,CAAC;QACzD,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;QACvE,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,8BAAqB,CAAC,qBAAqB,CAAC,CAAC;QACzD,CAAC;QAED,MAAM,OAAO,GAAG,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,GAAG,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC;QACpD,MAAM,WAAW,GAAG,IAAI,CAAC,mBAAmB,CAAC,OAAO,CAAC,CAAC;QACtD,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEzE,OAAO;YACL,YAAY,EAAE,WAAW;YACzB,aAAa,EAAE,YAAY;YAC3B,UAAU,EAAE,IAAI;YAChB,kBAAkB,EAAE,KAAK;YACzB,2BAA2B,EAAE,OAAO;YACpC,UAAU,EAAE,QAAQ;SACrB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,YAAoB;QAChC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,YAAY,CAAC,CAAC;QAC7D,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,IAAI,8BAAqB,CAAC,kCAAkC,CAAC,CAAC;QACtE,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;QACrD,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,8BAAqB,CAAC,gBAAgB,CAAC,CAAC;QACpD,CAAC;QAGD,MAAM,IAAI,CAAC,sBAAsB,CAAC,MAAM,CACtC,EAAE,MAAM,EAAE,SAAS,EAAE,IAAA,gBAAM,GAAE,EAAE,EAC/B,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,EAAE,CAC1B,CAAC;QAEF,MAAM,OAAO,GAAG,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,GAAG,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC;QACpD,MAAM,cAAc,GAAG,IAAI,CAAC,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAGzD,MAAM,EAAE,KAAK,EAAE,eAAe,EAAE,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAE5E,OAAO;YACL,YAAY,EAAE,cAAc;YAC5B,aAAa,EAAE,eAAe;YAC9B,UAAU,EAAE,IAAI;YAChB,kBAAkB,EAAE,KAAK;YACzB,UAAU,EAAE,QAAQ;SACrB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,kBAAkB,CAAC,KAAa;QACpC,IAAI,CAAC;YAGH,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,EAAE;gBAC5C,MAAM,EAAE,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,YAAY,CAAC;aACrD,CAAC,CAAC;YAIH,IAAK,OAAmC,CAAC,GAAG,EAAE,CAAC;gBAC7C,MAAM,IAAI,CAAC,sBAAsB,CAAC,MAAM,CACtC;oBACE,MAAM,EAAG,OAAmC,CAAC,GAAa;oBAC1D,SAAS,EAAE,IAAA,gBAAM,GAAE;iBACpB,EACD,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,EAAE,CAC1B,CAAC;YACJ,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;QAGT,CAAC;IACH,CAAC;CACF,CAAA;AA/NY,kCAAW;sBAAX,WAAW;IADvB,IAAA,mBAAU,GAAE;IAUR,WAAA,IAAA,0BAAgB,EAAC,mCAAY,CAAC,CAAA;qCAHT,4BAAY;QACd,gBAAU;QACP,sBAAa;QAEJ,oBAAU;GAVjC,WAAW,CA+NvB"}
|
|
@@ -0,0 +1,12 @@
|
|
|
1
|
+
import { User } from '../../users/entities/user.entity';
|
|
2
|
+
export declare class RefreshToken {
|
|
3
|
+
id: string;
|
|
4
|
+
userId: string;
|
|
5
|
+
user: User;
|
|
6
|
+
token: string;
|
|
7
|
+
issuedAt: Date;
|
|
8
|
+
expiresAt: Date;
|
|
9
|
+
absoluteExpiry: Date;
|
|
10
|
+
createdAt: Date;
|
|
11
|
+
revokedAt: Date | null;
|
|
12
|
+
}
|
|
@@ -0,0 +1,72 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
|
|
3
|
+
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
|
|
4
|
+
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
|
|
5
|
+
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
|
|
6
|
+
return c > 3 && r && Object.defineProperty(target, key, r), r;
|
|
7
|
+
};
|
|
8
|
+
var __metadata = (this && this.__metadata) || function (k, v) {
|
|
9
|
+
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
|
|
10
|
+
};
|
|
11
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
12
|
+
exports.RefreshToken = void 0;
|
|
13
|
+
const openapi = require("@nestjs/swagger");
|
|
14
|
+
const typeorm_1 = require("typeorm");
|
|
15
|
+
const user_entity_1 = require("../../users/entities/user.entity");
|
|
16
|
+
let RefreshToken = class RefreshToken {
|
|
17
|
+
id;
|
|
18
|
+
userId;
|
|
19
|
+
user;
|
|
20
|
+
token;
|
|
21
|
+
issuedAt;
|
|
22
|
+
expiresAt;
|
|
23
|
+
absoluteExpiry;
|
|
24
|
+
createdAt;
|
|
25
|
+
revokedAt;
|
|
26
|
+
static _OPENAPI_METADATA_FACTORY() {
|
|
27
|
+
return { id: { required: true, type: () => String }, userId: { required: true, type: () => String }, user: { required: true, type: () => require("../../users/entities/user.entity").User }, token: { required: true, type: () => String }, issuedAt: { required: true, type: () => Date }, expiresAt: { required: true, type: () => Date }, absoluteExpiry: { required: true, type: () => Date }, createdAt: { required: true, type: () => Date }, revokedAt: { required: true, type: () => Date, nullable: true } };
|
|
28
|
+
}
|
|
29
|
+
};
|
|
30
|
+
exports.RefreshToken = RefreshToken;
|
|
31
|
+
__decorate([
|
|
32
|
+
(0, typeorm_1.PrimaryGeneratedColumn)('uuid'),
|
|
33
|
+
__metadata("design:type", String)
|
|
34
|
+
], RefreshToken.prototype, "id", void 0);
|
|
35
|
+
__decorate([
|
|
36
|
+
(0, typeorm_1.Column)(),
|
|
37
|
+
__metadata("design:type", String)
|
|
38
|
+
], RefreshToken.prototype, "userId", void 0);
|
|
39
|
+
__decorate([
|
|
40
|
+
(0, typeorm_1.ManyToOne)(() => user_entity_1.User, { onDelete: 'CASCADE' }),
|
|
41
|
+
(0, typeorm_1.JoinColumn)({ name: 'userId' }),
|
|
42
|
+
__metadata("design:type", user_entity_1.User)
|
|
43
|
+
], RefreshToken.prototype, "user", void 0);
|
|
44
|
+
__decorate([
|
|
45
|
+
(0, typeorm_1.Column)({ type: 'text' }),
|
|
46
|
+
__metadata("design:type", String)
|
|
47
|
+
], RefreshToken.prototype, "token", void 0);
|
|
48
|
+
__decorate([
|
|
49
|
+
(0, typeorm_1.CreateDateColumn)(),
|
|
50
|
+
__metadata("design:type", Date)
|
|
51
|
+
], RefreshToken.prototype, "issuedAt", void 0);
|
|
52
|
+
__decorate([
|
|
53
|
+
(0, typeorm_1.Column)({ type: 'datetime' }),
|
|
54
|
+
__metadata("design:type", Date)
|
|
55
|
+
], RefreshToken.prototype, "expiresAt", void 0);
|
|
56
|
+
__decorate([
|
|
57
|
+
(0, typeorm_1.Column)({ type: 'datetime' }),
|
|
58
|
+
__metadata("design:type", Date)
|
|
59
|
+
], RefreshToken.prototype, "absoluteExpiry", void 0);
|
|
60
|
+
__decorate([
|
|
61
|
+
(0, typeorm_1.CreateDateColumn)(),
|
|
62
|
+
__metadata("design:type", Date)
|
|
63
|
+
], RefreshToken.prototype, "createdAt", void 0);
|
|
64
|
+
__decorate([
|
|
65
|
+
(0, typeorm_1.Column)({ type: 'datetime', nullable: true }),
|
|
66
|
+
__metadata("design:type", Object)
|
|
67
|
+
], RefreshToken.prototype, "revokedAt", void 0);
|
|
68
|
+
exports.RefreshToken = RefreshToken = __decorate([
|
|
69
|
+
(0, typeorm_1.Entity)('refresh_tokens'),
|
|
70
|
+
(0, typeorm_1.Index)(['userId', 'expiresAt'])
|
|
71
|
+
], RefreshToken);
|
|
72
|
+
//# sourceMappingURL=refresh-token.entity.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"refresh-token.entity.js","sourceRoot":"","sources":["../../../src/auth/entities/refresh-token.entity.ts"],"names":[],"mappings":";;;;;;;;;;;;;AAAA,qCAQiB;AACjB,kEAAwD;AAIjD,IAAM,YAAY,GAAlB,MAAM,YAAY;IAEvB,EAAE,CAAS;IAGX,MAAM,CAAS;IAIf,IAAI,CAAO;IAGX,KAAK,CAAS;IAGd,QAAQ,CAAO;IAGf,SAAS,CAAO;IAGhB,cAAc,CAAO;IAGrB,SAAS,CAAO;IAGhB,SAAS,CAAc;;;;CACxB,CAAA;AA5BY,oCAAY;AAEvB;IADC,IAAA,gCAAsB,EAAC,MAAM,CAAC;;wCACpB;AAGX;IADC,IAAA,gBAAM,GAAE;;4CACM;AAIf;IAFC,IAAA,mBAAS,EAAC,GAAG,EAAE,CAAC,kBAAI,EAAE,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC;IAC9C,IAAA,oBAAU,EAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;8BACzB,kBAAI;0CAAC;AAGX;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC;;2CACX;AAGd;IADC,IAAA,0BAAgB,GAAE;8BACT,IAAI;8CAAC;AAGf;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC;8BAClB,IAAI;+CAAC;AAGhB;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC;8BACb,IAAI;oDAAC;AAGrB;IADC,IAAA,0BAAgB,GAAE;8BACR,IAAI;+CAAC;AAGhB;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,UAAU,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;+CACtB;uBA3BZ,YAAY;IAFxB,IAAA,gBAAM,EAAC,gBAAgB,CAAC;IACxB,IAAA,eAAK,EAAC,CAAC,QAAQ,EAAE,WAAW,CAAC,CAAC;GAClB,YAAY,CA4BxB"}
|
package/dist/main.js
CHANGED
|
@@ -1,8 +1,13 @@
|
|
|
1
1
|
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
2
5
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
6
|
const core_1 = require("@nestjs/core");
|
|
4
7
|
const common_1 = require("@nestjs/common");
|
|
5
8
|
const swagger_1 = require("@nestjs/swagger");
|
|
9
|
+
const helmet_1 = __importDefault(require("helmet"));
|
|
10
|
+
const cookie_parser_1 = __importDefault(require("cookie-parser"));
|
|
6
11
|
const app_module_1 = require("./app.module");
|
|
7
12
|
const config_1 = require("@nestjs/config");
|
|
8
13
|
const http_exception_filter_1 = require("./common/filters/http-exception.filter");
|
|
@@ -13,7 +18,23 @@ async function bootstrap() {
|
|
|
13
18
|
app.setGlobalPrefix('api/v1');
|
|
14
19
|
app.useGlobalPipes(new common_1.ValidationPipe({ transform: true, whitelist: true }));
|
|
15
20
|
app.useGlobalFilters(new http_exception_filter_1.HttpExceptionFilter());
|
|
21
|
+
app.use((0, helmet_1.default)());
|
|
22
|
+
app.use((0, cookie_parser_1.default)());
|
|
16
23
|
const configService = app.get(config_1.ConfigService);
|
|
24
|
+
const nodeEnv = configService.get('NODE_ENV') || 'development';
|
|
25
|
+
const corsOptions = {
|
|
26
|
+
credentials: true,
|
|
27
|
+
};
|
|
28
|
+
if (nodeEnv === 'development') {
|
|
29
|
+
corsOptions.origin = ['http://localhost:5173', 'http://localhost:3000'];
|
|
30
|
+
}
|
|
31
|
+
else if (nodeEnv === 'production') {
|
|
32
|
+
corsOptions.origin = ['http://localhost:15789', 'http://0.0.0.0:15789'];
|
|
33
|
+
}
|
|
34
|
+
else {
|
|
35
|
+
corsOptions.origin = true;
|
|
36
|
+
}
|
|
37
|
+
app.enableCors(corsOptions);
|
|
17
38
|
const port = configService.get('PORT') || 3000;
|
|
18
39
|
const config = new swagger_1.DocumentBuilder()
|
|
19
40
|
.setTitle('Agent Orchestrator API')
|
package/dist/main.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"main.js","sourceRoot":"","sources":["../src/main.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"main.js","sourceRoot":"","sources":["../src/main.ts"],"names":[],"mappings":";;;;;AAAA,uCAA2C;AAC3C,2CAAgD;AAChD,6CAAiE;AACjE,oDAA4B;AAC5B,kEAAyC;AACzC,6CAAyC;AACzC,2CAA+C;AAG/C,kFAA6E;AAE7E,KAAK,UAAU,SAAS;IACtB,MAAM,GAAG,GAAG,MAAM,kBAAW,CAAC,MAAM,CAAC,sBAAS,EAAE;QAC9C,MAAM,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,SAAS,CAAC;KACrD,CAAC,CAAC;IAEH,GAAG,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC;IAC9B,GAAG,CAAC,cAAc,CAAC,IAAI,uBAAc,CAAC,EAAE,SAAS,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;IAC7E,GAAG,CAAC,gBAAgB,CAAC,IAAI,2CAAmB,EAAE,CAAC,CAAC;IAGhD,GAAG,CAAC,GAAG,CAAC,IAAA,gBAAM,GAAE,CAAC,CAAC;IAGlB,GAAG,CAAC,GAAG,CAAC,IAAA,uBAAY,GAAE,CAAC,CAAC;IAGxB,MAAM,aAAa,GAAG,GAAG,CAAC,GAAG,CAAC,sBAAa,CAAC,CAAC;IAC7C,MAAM,OAAO,GAAG,aAAa,CAAC,GAAG,CAAS,UAAU,CAAC,IAAI,aAAa,CAAC;IACvE,MAAM,WAAW,GAAgB;QAC/B,WAAW,EAAE,IAAI;KAClB,CAAC;IAEF,IAAI,OAAO,KAAK,aAAa,EAAE,CAAC;QAC9B,WAAW,CAAC,MAAM,GAAG,CAAC,uBAAuB,EAAE,uBAAuB,CAAC,CAAC;IAC1E,CAAC;SAAM,IAAI,OAAO,KAAK,YAAY,EAAE,CAAC;QACpC,WAAW,CAAC,MAAM,GAAG,CAAC,wBAAwB,EAAE,sBAAsB,CAAC,CAAC;IAC1E,CAAC;SAAM,CAAC;QACN,WAAW,CAAC,MAAM,GAAG,IAAI,CAAC;IAC5B,CAAC;IAED,GAAG,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IAE5B,MAAM,IAAI,GAAG,aAAa,CAAC,GAAG,CAAS,MAAM,CAAC,IAAI,IAAI,CAAC;IAEvD,MAAM,MAAM,GAAG,IAAI,yBAAe,EAAE;SACjC,QAAQ,CAAC,wBAAwB,CAAC;SAClC,cAAc,CAAC,kDAAkD,CAAC;SAClE,UAAU,CAAC,KAAK,CAAC;SACjB,aAAa,EAAE;SACf,KAAK,EAAE,CAAC;IACX,MAAM,QAAQ,GAAG,uBAAa,CAAC,cAAc,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;IAC3D,uBAAa,CAAC,KAAK,CAAC,KAAK,EAAE,GAAG,EAAE,QAAQ,CAAC,CAAC;IAE1C,MAAM,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IACvB,OAAO,CAAC,GAAG,CAAC,8BAA8B,MAAM,GAAG,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;AAClE,CAAC;AACD,SAAS,EAAE,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;IACxB,OAAO,CAAC,KAAK,CAAC,6BAA6B,EAAE,GAAG,CAAC,CAAC;IAClD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}
|