@devoven/oauth 0.1.0

package/dist/infrastructure/providers/google-oauth.provider.js

@@ -0,0 +1,111 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.GoogleOAuthProvider = void 0;
+const google_auth_library_1 = require("google-auth-library");
+const oauth_profile_entity_1 = require("../../domain/entities/oauth-profile.entity");
+const oauth_token_vo_1 = require("../../domain/value-objects/oauth-token.vo");
+class GoogleOAuthProvider {
+    constructor(props) {
+        this.name = 'google';
+        this.AUTHORIZE_URL = 'https://accounts.google.com/o/oauth2/v2/auth';
+        this.TOKEN_URL = 'https://oauth2.googleapis.com/token';
+        this.USERINFO_URL = 'https://openidconnect.googleapis.com/v1/userinfo';
+        this.props = {
+            ...props,
+            scopes: props.scopes && props.scopes.length > 0
+                ? props.scopes
+                : ['openid', 'profile', 'email'],
+        };
+        this.authClient = new google_auth_library_1.OAuth2Client();
+    }
+    async getAuthorizationUrl(state) {
+        if (!state || state.trim().length === 0) {
+            throw new Error('OAuth state is required');
+        }
+        const params = new URLSearchParams({
+            client_id: this.props.clientId,
+            redirect_uri: this.props.callbackUrl,
+            response_type: 'code',
+            scope: this.props.scopes.join(' '),
+            state,
+            access_type: 'offline',
+            include_granted_scopes: 'true',
+            prompt: 'consent'
+        });
+        return `${this.AUTHORIZE_URL}?${params.toString()}`;
+    }
+    async exchangeCode(code) {
+        if (!code || code.trim().length === 0) {
+            throw new Error('Authorization code is required');
+        }
+        const body = new URLSearchParams({
+            code,
+            client_id: this.props.clientId,
+            client_secret: this.props.clientSecret,
+            redirect_uri: this.props.callbackUrl,
+            grant_type: 'authorization_code',
+        });
+        const response = await fetch(this.TOKEN_URL, {
+            method: 'POST',
+            headers: {
+                'Content-Type': 'application/x-www-form-urlencoded',
+            },
+            body,
+        });
+        const data = (await response.json());
+        if (!response.ok || !data.access_token) {
+            throw new Error(`Google token exchange failed${data.error ? `: ${data.error}` : ''}${data.error_description ? ` - ${data.error_description}` : ''}`);
+        }
+        return oauth_token_vo_1.OAuthToken.create({
+            accessToken: data.access_token,
+            refreshToken: data.refresh_token || null,
+            expiresIn: data.expires_in || null,
+            expiresAt: null,
+            idToken: data.id_token || null,
+        });
+    }
+    async getProfile(token) {
+        if (!token.accessToken) {
+            throw new Error('Access token is required');
+        }
+        if (token.idToken) {
+            const ticket = await this.authClient.verifyIdToken({
+                idToken: token.idToken,
+                audience: this.props.clientId,
+            });
+            const payload = ticket.getPayload();
+            if (!payload?.sub) {
+                throw new Error('Invalid id_token: missing sub');
+            }
+            return oauth_profile_entity_1.OAuthProfile.create({
+                provider: this.name,
+                providerId: payload.sub,
+                email: payload.email ?? null,
+                name: payload.name ?? null,
+                avatarUrl: payload.picture ?? null,
+            });
+        }
+        const res = await fetch(this.USERINFO_URL, {
+            method: 'GET',
+            headers: {
+                Authorization: `Bearer ${token.accessToken}`,
+            },
+        });
+        if (!res.ok) {
+            throw new Error('Failed to fetch Google user profile');
+        }
+        const data = (await res.json());
+        if (!data.sub) {
+            throw new Error('Google profile missing providerId');
+        }
+        return oauth_profile_entity_1.OAuthProfile.create({
+            provider: this.name,
+            providerId: data.sub,
+            email: data.email ?? null,
+            name: data.name ?? null,
+            avatarUrl: data.picture ?? null,
+        });
+    }
+}
+exports.GoogleOAuthProvider = GoogleOAuthProvider;
+//# sourceMappingURL=google-oauth.provider.js.map

package/dist/infrastructure/providers/google-oauth.provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"google-oauth.provider.js","sourceRoot":"","sources":["../../../src/infrastructure/providers/google-oauth.provider.ts"],"names":[],"mappings":";;;AAAA,6DAAmD;AAEnD,qFAA0E;AAC1E,8EAAuE;AAoBvE,MAAa,mBAAmB;IAa5B,YAAY,KAAQ;QAZJ,SAAI,GAAG,QAAQ,CAAC;QAEf,kBAAa,GAC1B,8CAA8C,CAAC;QAClC,cAAS,GACtB,qCAAqC,CAAC;QACzB,iBAAY,GACzB,kDAAkD,CAAC;QAMnD,IAAI,CAAC,KAAK,GAAG;YACT,GAAG,KAAK;YACR,MAAM,EACF,KAAK,CAAC,MAAM,IAAI,KAAK,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC;gBACnC,CAAC,CAAC,KAAK,CAAC,MAAM;gBACd,CAAC,CAAC,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC;SAC3C,CAAC;QACF,IAAI,CAAC,UAAU,GAAG,IAAI,kCAAY,EAAE,CAAC;IACzC,CAAC;IAED,KAAK,CAAC,mBAAmB,CAAC,KAAa;QACnC,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtC,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC/C,CAAC;QAED,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;YAC/B,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,QAAQ;YAC9B,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,WAAW;YACpC,aAAa,EAAE,MAAM;YACrB,KAAK,EAAE,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC;YAClC,KAAK;YACL,WAAW,EAAE,SAAS;YACtB,sBAAsB,EAAE,MAAM;YAC9B,MAAM,EAAE,SAAS;SACpB,CAAC,CAAC;QAEH,OAAO,GAAG,IAAI,CAAC,aAAa,IAAI,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC;IACxD,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,IAAY;QAC3B,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACpC,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;QACtD,CAAC;QAED,MAAM,IAAI,GAAG,IAAI,eAAe,CAAC;YAC7B,IAAI;YACJ,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,QAAQ;YAC9B,aAAa,EAAE,IAAI,CAAC,KAAK,CAAC,YAAY;YACtC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,WAAW;YACpC,UAAU,EAAE,oBAAoB;SACnC,CAAC,CAAC;QAEH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,SAAS,EAAE;YACzC,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACL,cAAc,EAAE,mCAAmC;aACtD;YACD,IAAI;SACP,CAAC,CAAC;QAEH,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAwB,CAAC;QAE5D,IAAI,CAAC,QAAQ,CAAC,EAAE,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACrC,MAAM,IAAI,KAAK,CACX,+BAA+B,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAChE,GAAG,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CACpE,CAAC;QACN,CAAC;QAED,OAAO,2BAAU,CAAC,MAAM,CAAC;YACrB,WAAW,EAAE,IAAI,CAAC,YAAY;YAC9B,YAAY,EAAE,IAAI,CAAC,aAAa,IAAI,IAAI;YACxC,SAAS,EAAE,IAAI,CAAC,UAAU,IAAI,IAAI;YAClC,SAAS,EAAE,IAAI;YACf,OAAO,EAAE,IAAI,CAAC,QAAQ,IAAI,IAAI;SACjC,CAAC,CAAC;IACP,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,KAAiB;QAC9B,IAAI,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC;QAChD,CAAC;QAED,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;YAChB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC;gBAC/C,OAAO,EAAE,KAAK,CAAC,OAAO;gBACtB,QAAQ,EAAE,IAAI,CAAC,KAAK,CAAC,QAAQ;aAChC,CAAC,CAAC;YAEH,MAAM,OAAO,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;YAEpC,IAAI,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC;gBAChB,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;YACrD,CAAC;YAED,OAAO,mCAAY,CAAC,MAAM,CAAC;gBACvB,QAAQ,EAAE,IAAI,CAAC,IAAI;gBACnB,UAAU,EAAE,OAAO,CAAC,GAAG;gBACvB,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,IAAI;gBAC5B,IAAI,EAAE,OAAO,CAAC,IAAI,IAAI,IAAI;gBAC1B,SAAS,EAAE,OAAO,CAAC,OAAO,IAAI,IAAI;aACrC,CAAC,CAAC;QACP,CAAC;QAED,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,YAAY,EAAE;YACvC,MAAM,EAAE,KAAK;YACb,OAAO,EAAE;gBACL,aAAa,EAAE,UAAU,KAAK,CAAC,WAAW,EAAE;aAC/C;SACJ,CAAC,CAAC;QAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACV,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;QAC3D,CAAC;QAED,MAAM,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAA2B,CAAC;QAE1D,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;QACzD,CAAC;QAED,OAAO,mCAAY,CAAC,MAAM,CAAC;YACvB,QAAQ,EAAE,IAAI,CAAC,IAAI;YACnB,UAAU,EAAE,IAAI,CAAC,GAAG;YACpB,KAAK,EAAE,IAAI,CAAC,KAAK,IAAI,IAAI;YACzB,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,IAAI;YACvB,SAAS,EAAE,IAAI,CAAC,OAAO,IAAI,IAAI;SAClC,CAAC,CAAC;IACP,CAAC;CACJ;AArID,kDAqIC"}

package/dist/infrastructure/providers/line-oauth.provider.d.ts

@@ -0,0 +1,16 @@
+import { OAuthProviderConfig, OAuthProviderPort } from "../../application/ports/oauth-provider.port";
+import { OAuthProfile } from "../../domain/entities/oauth-profile.entity";
+import { OAuthToken } from "../../domain/value-objects/oauth-token.vo";
+export declare class LineOAuthProvider<T extends OAuthProviderConfig = OAuthProviderConfig> implements OAuthProviderPort {
+    readonly name = "line";
+    private readonly AUTHORIZE_URL;
+    private readonly TOKEN_URL;
+    private readonly VERIFY_URL;
+    private readonly USERINFO_URL;
+    protected readonly props: T;
+    constructor(props: T);
+    getAuthorizationUrl(state: string): Promise<string>;
+    exchangeCode(code: string): Promise<OAuthToken>;
+    getProfile(token: OAuthToken): Promise<OAuthProfile>;
+    private verifyIdToken;
+}

package/dist/infrastructure/providers/line-oauth.provider.js

@@ -0,0 +1,118 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LineOAuthProvider = void 0;
+const oauth_profile_entity_1 = require("../../domain/entities/oauth-profile.entity");
+const oauth_token_vo_1 = require("../../domain/value-objects/oauth-token.vo");
+class LineOAuthProvider {
+    constructor(props) {
+        this.name = 'line';
+        this.AUTHORIZE_URL = 'https://access.line.me/oauth2/v2.1/authorize';
+        this.TOKEN_URL = 'https://api.line.me/oauth2/v2.1/token';
+        this.VERIFY_URL = 'https://api.line.me/oauth2/v2.1/verify';
+        this.USERINFO_URL = 'https://api.line.me/oauth2/v2.1/userinfo';
+        this.props = {
+            ...props,
+            scopes: props.scopes && props.scopes.length > 0
+                ? props.scopes
+                : ['openid', 'profile'],
+        };
+    }
+    async getAuthorizationUrl(state) {
+        if (!state || state.trim().length === 0) {
+            throw new Error('OAuth state is required');
+        }
+        const params = new URLSearchParams({
+            response_type: 'code',
+            client_id: this.props.clientId,
+            redirect_uri: this.props.callbackUrl,
+            scope: this.props.scopes.join(' '),
+            state,
+        });
+        return `${this.AUTHORIZE_URL}?${params.toString()}`;
+    }
+    async exchangeCode(code) {
+        if (!code || code.trim().length === 0) {
+            throw new Error('Authorization code is required');
+        }
+        const params = new URLSearchParams({
+            grant_type: 'authorization_code',
+            code,
+            redirect_uri: this.props.callbackUrl,
+            client_id: this.props.clientId,
+            client_secret: this.props.clientSecret,
+        });
+        const response = await fetch(this.TOKEN_URL, {
+            method: 'POST',
+            headers: {
+                'Content-Type': 'application/x-www-form-urlencoded',
+            },
+            body: params.toString(),
+        });
+        const data = await response.json();
+        if (!response.ok || !data.access_token) {
+            throw new Error(`LINE token exchange failed${data.error ? `: ${data.error}` : ''}${data.error_description ? ` - ${data.error_description}` : ''}`);
+        }
+        return oauth_token_vo_1.OAuthToken.create({
+            accessToken: data.access_token,
+            refreshToken: data.refresh_token || null,
+            expiresIn: data.expires_in || null,
+            idToken: data.id_token || null,
+            expiresAt: null,
+        });
+    }
+    async getProfile(token) {
+        if (!token.accessToken) {
+            throw new Error('Access token is required');
+        }
+        if (token.idToken) {
+            const payload = await this.verifyIdToken(token.idToken);
+            if (!payload.sub) {
+                throw new Error('Invalid id_token: missing sub');
+            }
+            return oauth_profile_entity_1.OAuthProfile.create({
+                provider: this.name,
+                providerId: payload.sub,
+                email: payload.email ?? null,
+                name: payload.name ?? null,
+                avatarUrl: payload.picture ?? null,
+            });
+        }
+        const response = await fetch(this.USERINFO_URL, {
+            headers: {
+                Authorization: `Bearer ${token.accessToken}`,
+            },
+        });
+        if (!response.ok) {
+            throw new Error(`Failed to fetch user profile: ${response.statusText}`);
+        }
+        const data = await response.json();
+        if (!data.sub) {
+            throw new Error('Line profile missing providerId');
+        }
+        return oauth_profile_entity_1.OAuthProfile.create({
+            provider: this.name,
+            providerId: data.sub,
+            email: data.email ?? null,
+            name: data.name ?? null,
+            avatarUrl: data.picture ?? null,
+        });
+    }
+    async verifyIdToken(idToken) {
+        const params = new URLSearchParams({
+            id_token: idToken,
+            client_id: this.props.clientId,
+        });
+        const response = await fetch(this.VERIFY_URL, {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
+            body: params.toString(),
+        });
+        const data = await response.json();
+        if (!response.ok) {
+            throw new Error(`LINE ID token verification failed${data.error ? `: ${data.error}` : ''}${data.error_description ? ` - ${data.error_description}` : ''}`);
+        }
+        return data;
+    }
+}
+exports.LineOAuthProvider = LineOAuthProvider;
+//# sourceMappingURL=line-oauth.provider.js.map

package/dist/infrastructure/providers/line-oauth.provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"line-oauth.provider.js","sourceRoot":"","sources":["../../../src/infrastructure/providers/line-oauth.provider.ts"],"names":[],"mappings":";;;AACA,qFAA0E;AAC1E,8EAAuE;AA2BvE,MAAa,iBAAiB;IAc1B,YAAY,KAAQ;QAbJ,SAAI,GAAG,MAAM,CAAC;QAEb,kBAAa,GAC1B,8CAA8C,CAAC;QAClC,cAAS,GACtB,uCAAuC,CAAC;QAC3B,eAAU,GACvB,wCAAwC,CAAC;QAC5B,iBAAY,GACzB,0CAA0C,CAAC;QAK3C,IAAI,CAAC,KAAK,GAAG;YACT,GAAG,KAAK;YACR,MAAM,EACF,KAAK,CAAC,MAAM,IAAI,KAAK,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC;gBACnC,CAAC,CAAC,KAAK,CAAC,MAAM;gBACd,CAAC,CAAC,CAAC,QAAQ,EAAE,SAAS,CAAC;SAClC,CAAC;IACN,CAAC;IAED,KAAK,CAAC,mBAAmB,CAAC,KAAa;QACnC,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtC,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC/C,CAAC;QAED,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;YAC/B,aAAa,EAAE,MAAM;YACrB,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,QAAQ;YAC9B,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,WAAW;YACpC,KAAK,EAAE,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC;YAClC,KAAK;SACR,CAAC,CAAC;QAEH,OAAO,GAAG,IAAI,CAAC,aAAa,IAAI,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC;IACxD,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,IAAY;QAC3B,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACpC,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;QACtD,CAAC;QAED,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;YAC/B,UAAU,EAAE,oBAAoB;YAChC,IAAI;YACJ,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,WAAW;YACpC,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,QAAQ;YAC9B,aAAa,EAAE,IAAI,CAAC,KAAK,CAAC,YAAY;SACzC,CAAC,CAAC;QAEH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,SAAS,EAAE;YACzC,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACL,cAAc,EAAE,mCAAmC;aACtD;YACD,IAAI,EAAE,MAAM,CAAC,QAAQ,EAAE;SAC1B,CAAC,CAAC;QAEH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAuB,CAAC;QAExD,IAAI,CAAC,QAAQ,CAAC,EAAE,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACrC,MAAM,IAAI,KAAK,CACX,6BAA6B,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAC9D,GAAG,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CACpE,CAAC;QACN,CAAC;QAED,OAAO,2BAAU,CAAC,MAAM,CAAC;YACrB,WAAW,EAAE,IAAI,CAAC,YAAY;YAC9B,YAAY,EAAE,IAAI,CAAC,aAAa,IAAI,IAAI;YACxC,SAAS,EAAE,IAAI,CAAC,UAAU,IAAI,IAAI;YAClC,OAAO,EAAE,IAAI,CAAC,QAAQ,IAAI,IAAI;YAC9B,SAAS,EAAE,IAAI;SAClB,CAAC,CAAC;IACP,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,KAAiB;QAC9B,IAAI,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAA;QAC/C,CAAC;QAED,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;YAChB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;YAEvD,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC;gBACf,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAA;YACpD,CAAC;YAED,OAAO,mCAAY,CAAC,MAAM,CAAC;gBACvB,QAAQ,EAAE,IAAI,CAAC,IAAI;gBACnB,UAAU,EAAE,OAAO,CAAC,GAAG;gBACvB,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,IAAI;gBAC5B,IAAI,EAAE,OAAO,CAAC,IAAI,IAAI,IAAI;gBAC1B,SAAS,EAAE,OAAO,CAAC,OAAO,IAAI,IAAI;aACrC,CAAC,CAAA;QACN,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,YAAY,EAAE;YAC5C,OAAO,EAAE;gBACL,aAAa,EAAE,UAAU,KAAK,CAAC,WAAW,EAAE;aAC/C;SACJ,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CAAC,iCAAiC,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;QAC5E,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAA0B,CAAC;QAE3D,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACvD,CAAC;QAED,OAAO,mCAAY,CAAC,MAAM,CAAC;YACvB,QAAQ,EAAE,IAAI,CAAC,IAAI;YACnB,UAAU,EAAE,IAAI,CAAC,GAAG;YACpB,KAAK,EAAE,IAAI,CAAC,KAAK,IAAI,IAAI;YACzB,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,IAAI;YACvB,SAAS,EAAE,IAAI,CAAC,OAAO,IAAI,IAAI;SAClC,CAAC,CAAC;IACP,CAAC;IAEO,KAAK,CAAC,aAAa,CAAC,OAAe;QACvC,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;YAC/B,QAAQ,EAAE,OAAO;YACjB,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,QAAQ;SACjC,CAAC,CAAC;QAEH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,UAAU,EAAE;YAC1C,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,mCAAmC,EAAE;YAChE,IAAI,EAAE,MAAM,CAAC,QAAQ,EAAE;SAC1B,CAAC,CAAC;QAEH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAwB,CAAC;QAEzD,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CACX,oCAAoC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EACrE,GAAG,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CACpE,CAAC;QACN,CAAC;QAED,OAAO,IAAI,CAAC;IAChB,CAAC;CACJ;AApJD,8CAoJC"}

package/dist/infrastructure/state/in-memory-state-store.d.ts

@@ -0,0 +1,8 @@
+import { OAuthStateStorePort } from "../../application/ports/oauth-state-store.port";
+export declare class InMemoryStateStore implements OAuthStateStorePort {
+    private readonly states;
+    private static readonly TTL_MS;
+    generate(): Promise<string>;
+    verify(state: string): Promise<boolean>;
+    private cleanup;
+}

package/dist/infrastructure/state/in-memory-state-store.js

@@ -0,0 +1,49 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var InMemoryStateStore_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.InMemoryStateStore = void 0;
+const crypto_1 = require("crypto");
+const common_1 = require("@nestjs/common");
+let InMemoryStateStore = InMemoryStateStore_1 = class InMemoryStateStore {
+    constructor() {
+        this.states = new Map();
+    }
+    async generate() {
+        this.cleanup();
+        const state = (0, crypto_1.randomUUID)();
+        const expiresAt = Date.now() + InMemoryStateStore_1.TTL_MS;
+        this.states.set(state, expiresAt);
+        return state;
+    }
+    async verify(state) {
+        const expiresAt = this.states.get(state);
+        if (!expiresAt) {
+            return false;
+        }
+        this.states.delete(state);
+        if (Date.now() > expiresAt) {
+            return false;
+        }
+        return true;
+    }
+    cleanup() {
+        const now = Date.now();
+        for (const [state, expiresAt] of this.states.entries()) {
+            if (expiresAt <= now) {
+                this.states.delete(state);
+            }
+        }
+    }
+};
+exports.InMemoryStateStore = InMemoryStateStore;
+InMemoryStateStore.TTL_MS = 5 * 60 * 1000;
+exports.InMemoryStateStore = InMemoryStateStore = InMemoryStateStore_1 = __decorate([
+    (0, common_1.Injectable)()
+], InMemoryStateStore);
+//# sourceMappingURL=in-memory-state-store.js.map

package/dist/infrastructure/state/in-memory-state-store.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"in-memory-state-store.js","sourceRoot":"","sources":["../../../src/infrastructure/state/in-memory-state-store.ts"],"names":[],"mappings":";;;;;;;;;;AAAA,mCAAoC;AAEpC,2CAA4C;AAGrC,IAAM,kBAAkB,0BAAxB,MAAM,kBAAkB;IAAxB;QACc,WAAM,GAAG,IAAI,GAAG,EAAkB,CAAC;IAuCxD,CAAC;IApCG,KAAK,CAAC,QAAQ;QACV,IAAI,CAAC,OAAO,EAAE,CAAC;QAEf,MAAM,KAAK,GAAG,IAAA,mBAAU,GAAE,CAAC;QAC3B,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,oBAAkB,CAAC,MAAM,CAAC;QAEzD,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;QAElC,OAAO,KAAK,CAAC;IACjB,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,KAAa;QACtB,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAEzC,IAAI,CAAC,SAAS,EAAE,CAAC;YACb,OAAO,KAAK,CAAC;QACjB,CAAC;QAED,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAE1B,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,EAAE,CAAC;YACzB,OAAO,KAAK,CAAC;QACjB,CAAC;QAED,OAAO,IAAI,CAAC;IAChB,CAAC;IAEO,OAAO;QACX,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAEvB,KAAK,MAAM,CAAC,KAAK,EAAE,SAAS,CAAC,IAAI,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,EAAE,CAAC;YACrD,IAAI,SAAS,IAAI,GAAG,EAAE,CAAC;gBACnB,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC9B,CAAC;QACL,CAAC;IACL,CAAC;;AAvCQ,gDAAkB;AAEH,yBAAM,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,AAAhB,CAAiB;6BAFtC,kBAAkB;IAD9B,IAAA,mBAAU,GAAE;GACA,kBAAkB,CAwC9B"}

package/dist/oauth.module-definition.d.ts

@@ -0,0 +1,18 @@
+import { Type } from '@nestjs/common';
+import { OAuthProviderConfig, OAuthProviderPort } from './application/ports/oauth-provider.port';
+import { OAuthStateStorePort } from './application/ports/oauth-state-store.port';
+export interface OAuthProviderOption {
+    name: string;
+    provider: new (config: OAuthProviderConfig) => OAuthProviderPort;
+    clientId: string;
+    clientSecret: string;
+    callbackUrl: string;
+    scopes?: string[];
+}
+export interface OAuthModuleOptions {
+    providers: Array<OAuthProviderOption | OAuthProviderPort>;
+    stateStore?: Type<OAuthStateStorePort> | OAuthStateStorePort;
+    controller?: boolean;
+    callbackSuccessUrl?: string;
+}
+export declare const ConfigurableModuleClass: import("@nestjs/common").ConfigurableModuleCls<OAuthModuleOptions, "register", "create", {}>, MODULE_OPTIONS_TOKEN: string | symbol;

package/dist/oauth.module-definition.js

@@ -0,0 +1,9 @@
+"use strict";
+var _a;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MODULE_OPTIONS_TOKEN = exports.ConfigurableModuleClass = void 0;
+const common_1 = require("@nestjs/common");
+_a = new common_1.ConfigurableModuleBuilder()
+    .setClassMethodName('register')
+    .build(), exports.ConfigurableModuleClass = _a.ConfigurableModuleClass, exports.MODULE_OPTIONS_TOKEN = _a.MODULE_OPTIONS_TOKEN;
+//# sourceMappingURL=oauth.module-definition.js.map

package/dist/oauth.module-definition.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.module-definition.js","sourceRoot":"","sources":["../src/oauth.module-definition.ts"],"names":[],"mappings":";;;;AAAA,2CAAgE;AAoBnD,KACT,IAAI,kCAAyB,EAAsB;KAC9C,kBAAkB,CAAC,UAAU,CAAC;KAC9B,KAAK,EAAE,EAHD,+BAAuB,+BAAE,4BAAoB,2BAG5C"}

package/dist/oauth.module.d.ts

@@ -0,0 +1,8 @@
+import { DynamicModule } from '@nestjs/common';
+import { ConfigurableModuleClass, OAuthModuleOptions } from './oauth.module-definition';
+export declare class OAuthModule extends ConfigurableModuleClass {
+    static register(options: OAuthModuleOptions): DynamicModule;
+    static registerAsync(options: Parameters<typeof ConfigurableModuleClass.registerAsync>[0] & {
+        controller?: boolean;
+    }): DynamicModule;
+}

package/dist/oauth.module.js

@@ -0,0 +1,102 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OAuthModule = void 0;
+const common_1 = require("@nestjs/common");
+const oauth_module_definition_1 = require("./oauth.module-definition");
+const oauth_controller_1 = require("./presentation/controllers/oauth.controller");
+const get_auth_url_use_case_1 = require("./application/use-cases/get-auth-url.use-case");
+const handle_callback_use_case_1 = require("./application/use-cases/handle-callback.use-case");
+const in_memory_state_store_1 = require("./infrastructure/state/in-memory-state-store");
+function isProviderInstance(p) {
+    return typeof p.getAuthorizationUrl === 'function';
+}
+function buildRegistry(providers) {
+    const registry = new Map();
+    for (const p of providers) {
+        if (isProviderInstance(p)) {
+            registry.set(p.name, p);
+        }
+        else {
+            const instance = new p.provider({
+                clientId: p.clientId,
+                clientSecret: p.clientSecret,
+                callbackUrl: p.callbackUrl,
+                scopes: p.scopes ?? [],
+            });
+            registry.set(p.name, instance);
+        }
+    }
+    return registry;
+}
+function buildStateStoreProvider(stateStore) {
+    if (!stateStore) {
+        return { provide: 'OAuthStateStorePort', useClass: in_memory_state_store_1.InMemoryStateStore };
+    }
+    if (typeof stateStore === 'function') {
+        return { provide: 'OAuthStateStorePort', useClass: stateStore };
+    }
+    return { provide: 'OAuthStateStorePort', useValue: stateStore };
+}
+const USE_CASE_PROVIDERS = [
+    { provide: 'GetAuthorizationUrlPort', useClass: get_auth_url_use_case_1.GetAuthorizationUrlUseCase },
+    { provide: 'HandleCallbackPort', useClass: handle_callback_use_case_1.HandleCallbackUseCase },
+];
+const EXPORTED_TOKENS = ['GetAuthorizationUrlPort', 'HandleCallbackPort'];
+let OAuthModule = class OAuthModule extends oauth_module_definition_1.ConfigurableModuleClass {
+    static register(options) {
+        const { providers = [], ...rest } = super.register(options);
+        const controllers = options.controller !== false ? [oauth_controller_1.OAuthController] : [];
+        return {
+            ...rest,
+            controllers,
+            providers: [
+                ...providers,
+                ...USE_CASE_PROVIDERS,
+                { provide: 'OAuthProviderRegistry', useValue: buildRegistry(options.providers) },
+                buildStateStoreProvider(options.stateStore),
+            ],
+            exports: EXPORTED_TOKENS,
+        };
+    }
+    static registerAsync(options) {
+        const { providers = [], ...rest } = super.registerAsync(options);
+        const controllers = options.controller !== false ? [oauth_controller_1.OAuthController] : [];
+        return {
+            ...rest,
+            controllers,
+            providers: [
+                ...providers,
+                ...USE_CASE_PROVIDERS,
+                {
+                    provide: 'OAuthProviderRegistry',
+                    useFactory: (moduleOptions) => buildRegistry(moduleOptions.providers),
+                    inject: [oauth_module_definition_1.MODULE_OPTIONS_TOKEN],
+                },
+                {
+                    provide: 'OAuthStateStorePort',
+                    useFactory: (moduleOptions) => {
+                        const ss = moduleOptions.stateStore;
+                        if (!ss)
+                            return new in_memory_state_store_1.InMemoryStateStore();
+                        if (typeof ss === 'function')
+                            return new ss();
+                        return ss;
+                    },
+                    inject: [oauth_module_definition_1.MODULE_OPTIONS_TOKEN],
+                },
+            ],
+            exports: EXPORTED_TOKENS,
+        };
+    }
+};
+exports.OAuthModule = OAuthModule;
+exports.OAuthModule = OAuthModule = __decorate([
+    (0, common_1.Module)({})
+], OAuthModule);
+//# sourceMappingURL=oauth.module.js.map

package/dist/oauth.module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.module.js","sourceRoot":"","sources":["../src/oauth.module.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAAsE;AACtE,uEAKkC;AAElC,kFAA6E;AAC7E,yFAA0F;AAC1F,+FAAwF;AACxF,wFAAiF;AAIjF,SAAS,kBAAkB,CAAC,CAA0C;IAClE,OAAO,OAAQ,CAAuB,CAAC,mBAAmB,KAAK,UAAU,CAAA;AAC7E,CAAC;AAED,SAAS,aAAa,CAAC,SAAyD;IAC5E,MAAM,QAAQ,GAA0B,IAAI,GAAG,EAAE,CAAA;IAEjD,KAAK,MAAM,CAAC,IAAI,SAAS,EAAE,CAAC;QACxB,IAAI,kBAAkB,CAAC,CAAC,CAAC,EAAE,CAAC;YACxB,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAA;QAC3B,CAAC;aAAM,CAAC;YACJ,MAAM,QAAQ,GAAG,IAAI,CAAC,CAAC,QAAQ,CAAC;gBAC5B,QAAQ,EAAE,CAAC,CAAC,QAAQ;gBACpB,YAAY,EAAE,CAAC,CAAC,YAAY;gBAC5B,WAAW,EAAE,CAAC,CAAC,WAAW;gBAC1B,MAAM,EAAE,CAAC,CAAC,MAAM,IAAI,EAAE;aACzB,CAAC,CAAA;YACF,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAA;QAClC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAA;AACnB,CAAC;AAED,SAAS,uBAAuB,CAAC,UAA6C;IAC1E,IAAI,CAAC,UAAU,EAAE,CAAC;QACd,OAAO,EAAE,OAAO,EAAE,qBAAqB,EAAE,QAAQ,EAAE,0CAAkB,EAAE,CAAA;IAC3E,CAAC;IACD,IAAI,OAAO,UAAU,KAAK,UAAU,EAAE,CAAC;QACnC,OAAO,EAAE,OAAO,EAAE,qBAAqB,EAAE,QAAQ,EAAE,UAAuC,EAAE,CAAA;IAChG,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,qBAAqB,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAA;AACnE,CAAC;AAED,MAAM,kBAAkB,GAAe;IACnC,EAAE,OAAO,EAAE,yBAAyB,EAAE,QAAQ,EAAE,kDAA0B,EAAE;IAC5E,EAAE,OAAO,EAAE,oBAAoB,EAAE,QAAQ,EAAE,gDAAqB,EAAE;CACrE,CAAA;AAED,MAAM,eAAe,GAAG,CAAC,yBAAyB,EAAE,oBAAoB,CAAC,CAAA;AAGlE,IAAM,WAAW,GAAjB,MAAM,WAAY,SAAQ,iDAAuB;IACpD,MAAM,CAAC,QAAQ,CAAC,OAA2B;QACvC,MAAM,EAAE,SAAS,GAAG,EAAE,EAAE,GAAG,IAAI,EAAE,GAAG,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAA;QAC3D,MAAM,WAAW,GAAG,OAAO,CAAC,UAAU,KAAK,KAAK,CAAC,CAAC,CAAC,CAAC,kCAAe,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;QAEzE,OAAO;YACH,GAAG,IAAI;YACP,WAAW;YACX,SAAS,EAAE;gBACP,GAAG,SAAS;gBACZ,GAAG,kBAAkB;gBACrB,EAAE,OAAO,EAAE,uBAAuB,EAAE,QAAQ,EAAE,aAAa,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE;gBAChF,uBAAuB,CAAC,OAAO,CAAC,UAAU,CAAC;aAC9C;YACD,OAAO,EAAE,eAAe;SAC3B,CAAA;IACL,CAAC;IAED,MAAM,CAAC,aAAa,CAChB,OAC8B;QAE9B,MAAM,EAAE,SAAS,GAAG,EAAE,EAAE,GAAG,IAAI,EAAE,GAAG,KAAK,CAAC,aAAa,CAAC,OAAO,CAAC,CAAA;QAChE,MAAM,WAAW,GAAG,OAAO,CAAC,UAAU,KAAK,KAAK,CAAC,CAAC,CAAC,CAAC,kCAAe,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;QAEzE,OAAO;YACH,GAAG,IAAI;YACP,WAAW;YACX,SAAS,EAAE;gBACP,GAAG,SAAS;gBACZ,GAAG,kBAAkB;gBACrB;oBACI,OAAO,EAAE,uBAAuB;oBAChC,UAAU,EAAE,CAAC,aAAiC,EAAE,EAAE,CAC9C,aAAa,CAAC,aAAa,CAAC,SAAS,CAAC;oBAC1C,MAAM,EAAE,CAAC,8CAAoB,CAAC;iBACjC;gBACD;oBACI,OAAO,EAAE,qBAAqB;oBAC9B,UAAU,EAAE,CAAC,aAAiC,EAAE,EAAE;wBAC9C,MAAM,EAAE,GAAG,aAAa,CAAC,UAAU,CAAA;wBACnC,IAAI,CAAC,EAAE;4BAAE,OAAO,IAAI,0CAAkB,EAAE,CAAA;wBACxC,IAAI,OAAO,EAAE,KAAK,UAAU;4BAAE,OAAO,IAAK,EAAgC,EAAE,CAAA;wBAC5E,OAAO,EAAE,CAAA;oBACb,CAAC;oBACD,MAAM,EAAE,CAAC,8CAAoB,CAAC;iBACjC;aACJ;YACD,OAAO,EAAE,eAAe;SAC3B,CAAA;IACL,CAAC;CACJ,CAAA;AAnDY,kCAAW;sBAAX,WAAW;IADvB,IAAA,eAAM,EAAC,EAAE,CAAC;GACE,WAAW,CAmDvB"}

package/dist/presentation/controllers/oauth.controller.d.ts

@@ -0,0 +1,17 @@
+import { GetAuthorizationUrlPort } from "../../application/ports/get-auth-url.port";
+import { HandleCallbackPort } from "../../application/ports/handle-callback.port";
+import { OAuthModuleOptions } from "../../oauth.module-definition";
+import { OAuthCallbackQueryDto } from "../dto/oauth-callback-query.dto";
+import { OAuthProfileResponseDto } from "../dto/oauth-profile-response.dto";
+import { Response } from "express";
+export declare class OAuthController {
+    private readonly getAuthorizationUrl;
+    private readonly handleCallback;
+    private readonly moduleOptions;
+    constructor(getAuthorizationUrl: GetAuthorizationUrlPort, handleCallback: HandleCallbackPort, moduleOptions: OAuthModuleOptions | null);
+    authorize(provider: string): Promise<{
+        url: string;
+        statusCode: number;
+    }>;
+    callback(provider: string, query: OAuthCallbackQueryDto, res: Response): Promise<OAuthProfileResponseDto | undefined>;
+}

package/dist/presentation/controllers/oauth.controller.js

@@ -0,0 +1,73 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OAuthController = void 0;
+const common_1 = require("@nestjs/common");
+const oauth_module_definition_1 = require("../../oauth.module-definition");
+const oauth_callback_query_dto_1 = require("../dto/oauth-callback-query.dto");
+const oauth_profile_response_dto_1 = require("../dto/oauth-profile-response.dto");
+let OAuthController = class OAuthController {
+    constructor(getAuthorizationUrl, handleCallback, moduleOptions) {
+        this.getAuthorizationUrl = getAuthorizationUrl;
+        this.handleCallback = handleCallback;
+        this.moduleOptions = moduleOptions;
+    }
+    async authorize(provider) {
+        const url = await this.getAuthorizationUrl.execute(provider);
+        return { url, statusCode: 302 };
+    }
+    async callback(provider, query, res) {
+        const profile = await this.handleCallback.execute(provider, query.code, query.state);
+        const successUrl = this.moduleOptions?.callbackSuccessUrl;
+        if (successUrl) {
+            const params = new URLSearchParams({
+                provider: profile.provider,
+                providerId: profile.providerId,
+                ...(profile.email && { email: profile.email }),
+                ...(profile.name && { name: profile.name }),
+                ...(profile.avatarUrl && { avatarUrl: profile.avatarUrl }),
+            });
+            res.redirect(`${successUrl}?${params.toString()}`);
+            return;
+        }
+        return oauth_profile_response_dto_1.OAuthProfileResponseDto.fromDomain(profile);
+    }
+};
+exports.OAuthController = OAuthController;
+__decorate([
+    (0, common_1.Get)(":provider"),
+    (0, common_1.Redirect)(),
+    __param(0, (0, common_1.Param)("provider")),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [String]),
+    __metadata("design:returntype", Promise)
+], OAuthController.prototype, "authorize", null);
+__decorate([
+    (0, common_1.Get)(":provider/callback"),
+    __param(0, (0, common_1.Param)("provider")),
+    __param(1, (0, common_1.Query)()),
+    __param(2, (0, common_1.Res)({ passthrough: true })),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [String, oauth_callback_query_dto_1.OAuthCallbackQueryDto, Object]),
+    __metadata("design:returntype", Promise)
+], OAuthController.prototype, "callback", null);
+exports.OAuthController = OAuthController = __decorate([
+    (0, common_1.Controller)("oauth"),
+    __param(0, (0, common_1.Inject)("GetAuthorizationUrlPort")),
+    __param(1, (0, common_1.Inject)("HandleCallbackPort")),
+    __param(2, (0, common_1.Optional)()),
+    __param(2, (0, common_1.Inject)(oauth_module_definition_1.MODULE_OPTIONS_TOKEN)),
+    __metadata("design:paramtypes", [Object, Object, Object])
+], OAuthController);
+//# sourceMappingURL=oauth.controller.js.map

package/dist/presentation/controllers/oauth.controller.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.controller.js","sourceRoot":"","sources":["../../../src/presentation/controllers/oauth.controller.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CASwB;AAGxB,2EAGuC;AACvC,8EAAwE;AACxE,kFAA4E;AAIrE,IAAM,eAAe,GAArB,MAAM,eAAe;IAC1B,YAEmB,mBAA4C,EAG5C,cAAkC,EAIlC,aAAwC;QAPxC,wBAAmB,GAAnB,mBAAmB,CAAyB;QAG5C,mBAAc,GAAd,cAAc,CAAoB;QAIlC,kBAAa,GAAb,aAAa,CAA2B;IACxD,CAAC;IAIE,AAAN,KAAK,CAAC,SAAS,CAAoB,QAAgB;QACjD,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC7D,OAAO,EAAE,GAAG,EAAE,UAAU,EAAE,GAAG,EAAE,CAAC;IAClC,CAAC;IAGK,AAAN,KAAK,CAAC,QAAQ,CACO,QAAgB,EAC1B,KAA4B,EACT,GAAa;QAEzC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,OAAO,CAC/C,QAAQ,EACR,KAAK,CAAC,IAAI,EACV,KAAK,CAAC,KAAK,CACZ,CAAC;QAEF,MAAM,UAAU,GAAG,IAAI,CAAC,aAAa,EAAE,kBAAkB,CAAC;QAC1D,IAAI,UAAU,EAAE,CAAC;YACf,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;gBACjC,QAAQ,EAAE,OAAO,CAAC,QAAQ;gBAC1B,UAAU,EAAE,OAAO,CAAC,UAAU;gBAC9B,GAAG,CAAC,OAAO,CAAC,KAAK,IAAI,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC;gBAC9C,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,EAAE,IAAI,EAAE,OAAO,CAAC,IAAI,EAAE,CAAC;gBAC3C,GAAG,CAAC,OAAO,CAAC,SAAS,IAAI,EAAE,SAAS,EAAE,OAAO,CAAC,SAAS,EAAE,CAAC;aAC3D,CAAC,CAAC;YACH,GAAG,CAAC,QAAQ,CAAC,GAAG,UAAU,IAAI,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;YACnD,OAAO;QACT,CAAC;QAED,OAAO,oDAAuB,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;IACrD,CAAC;CACF,CAAA;AA/CY,0CAAe;AAepB;IAFL,IAAA,YAAG,EAAC,WAAW,CAAC;IAChB,IAAA,iBAAQ,GAAE;IACM,WAAA,IAAA,cAAK,EAAC,UAAU,CAAC,CAAA;;;;gDAGjC;AAGK;IADL,IAAA,YAAG,EAAC,oBAAoB,CAAC;IAEvB,WAAA,IAAA,cAAK,EAAC,UAAU,CAAC,CAAA;IACjB,WAAA,IAAA,cAAK,GAAE,CAAA;IACP,WAAA,IAAA,YAAG,EAAC,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,CAAA;;6CADX,gDAAqB;;+CAuBtC;0BA9CU,eAAe;IAD3B,IAAA,mBAAU,EAAC,OAAO,CAAC;IAGf,WAAA,IAAA,eAAM,EAAC,yBAAyB,CAAC,CAAA;IAGjC,WAAA,IAAA,eAAM,EAAC,oBAAoB,CAAC,CAAA;IAG5B,WAAA,IAAA,iBAAQ,GAAE,CAAA;IACV,WAAA,IAAA,eAAM,EAAC,8CAAoB,CAAC,CAAA;;GATpB,eAAe,CA+C3B"}

package/dist/presentation/dto/oauth-callback-query.dto.d.ts

@@ -0,0 +1,4 @@
+export declare class OAuthCallbackQueryDto {
+    code: string;
+    state: string;
+}

package/dist/presentation/dto/oauth-callback-query.dto.js

@@ -0,0 +1,27 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OAuthCallbackQueryDto = void 0;
+const class_validator_1 = require("class-validator");
+class OAuthCallbackQueryDto {
+}
+exports.OAuthCallbackQueryDto = OAuthCallbackQueryDto;
+__decorate([
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.IsNotEmpty)(),
+    __metadata("design:type", String)
+], OAuthCallbackQueryDto.prototype, "code", void 0);
+__decorate([
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.IsNotEmpty)(),
+    __metadata("design:type", String)
+], OAuthCallbackQueryDto.prototype, "state", void 0);
+//# sourceMappingURL=oauth-callback-query.dto.js.map

package/dist/presentation/dto/oauth-callback-query.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-callback-query.dto.js","sourceRoot":"","sources":["../../../src/presentation/dto/oauth-callback-query.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,qDAAuD;AAEvD,MAAa,qBAAqB;CAQjC;AARD,sDAQC;AALG;IAFC,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;mDACA;AAIb;IAFC,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;oDACC"}

package/dist/presentation/dto/oauth-profile-response.dto.d.ts

@@ -0,0 +1,9 @@
+import { OAuthProfile } from "../../domain/entities/oauth-profile.entity";
+export declare class OAuthProfileResponseDto {
+    provider: string;
+    providerId: string;
+    email: string | null;
+    name: string | null;
+    avatarUrl: string | null;
+    static fromDomain(profile: OAuthProfile): OAuthProfileResponseDto;
+}

package/dist/presentation/dto/oauth-profile-response.dto.js

@@ -0,0 +1,16 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OAuthProfileResponseDto = void 0;
+class OAuthProfileResponseDto {
+    static fromDomain(profile) {
+        return Object.assign(new OAuthProfileResponseDto(), {
+            provider: profile.provider,
+            providerId: profile.providerId,
+            email: profile.email,
+            name: profile.name,
+            avatarUrl: profile.avatarUrl,
+        });
+    }
+}
+exports.OAuthProfileResponseDto = OAuthProfileResponseDto;
+//# sourceMappingURL=oauth-profile-response.dto.js.map