npm - @elysiajs/jwt - Versions diffs - 0.0.0-experimental.0 - Mend

@elysiajs/jwt 0.0.0-experimental.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/.eslintrc.js ADDED Viewed

@@ -0,0 +1,23 @@
+module.exports = {
+    "env": {
+        "es2021": true,
+        "node": true
+    },
+    "extends": [
+        "eslint:recommended",
+        "plugin:@typescript-eslint/recommended"
+    ],
+    "parser": "@typescript-eslint/parser",
+    "parserOptions": {
+        "ecmaVersion": "latest",
+        "sourceType": "module"
+    },
+    "plugins": [
+        "@typescript-eslint"
+    ],
+    "rules": {
+        "@typescript-eslint/ban-types": 'off',
+        '@typescript-eslint/no-explicit-any': 'off'
+    },
+    "ignorePatterns": ["example/*", "tests/**/*"]
+}

package/CHANGELOG.md ADDED Viewed

@@ -0,0 +1,4 @@
+# 0.0.0-experimental.1 - 30 Oct 2022
+Change:
+- Support for KingWorld 0.0.0-experimental.28 onward
+- chore: update dependencies

package/LICENSE ADDED Viewed

@@ -0,0 +1,7 @@
+Copyright 2022 saltyAom
+Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

package/README.md ADDED Viewed

@@ -0,0 +1,104 @@
+# @elysiajs/static
+Plugin for [Elysia](https://github.com/elysiajs/elysia) for using JWT Authentication.
+## Installation
+```bash
+bun add @elysiajs/jwt
+```
+## Example
+```typescript
+import { Elysia, t } from 'elysia'
+import { jwt } from '@elysiajs/jwt'
+import { cookie } from '@elysiajs/cookie'
+const app = new Elysia()
+    .use(
+        jwt({
+            name: 'jwt',
+            // This should be Environment Variable
+            secret: 'MY_SECRETS'
+        })
+    )
+    .use(cookie())
+    .get('/sign/:name', async ({ jwt, cookie, setCookie, params }) => {
+        setCookie('auth', await jwt.sign(params), {
+            httpOnly: true
+        })
+        return `Sign in as ${params.name}`
+    })
+    .get('/profile', async ({ jwt, set, cookie: { auth } }) => {
+        const profile = await jwt.verify(auth)
+        if (!profile) {
+            set.status = 401
+            return 'Unauthorized'
+        }
+        return `Hello ${profile.name}`
+    })
+    .listen(8080)
+```
+## Config
+This package extends [jose](https://github.com/panva/jose), most config is inherited from Jose.
+Below are configurable properties for using JWT plugin
+### name
+Name to decorate method as:
+For example, `jwt` will decorate Context with `Context.jwt`
+### secret
+JWT secret key
+### schema
+Type strict validation for JWT payload
+## Jose's config
+Below is the config inherits from [jose](https://github.com/panva/jose)
+### alg
+@default 'HS256'
+Algorithm to sign JWT with
+### crit
+Critical Header Parameter.
+### iss
+JWT Issuer
+@see [RFC7519#section-4.1.1](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.1)
+### sub
+JWT Subject
+@see [RFC7519#section-4.1.2](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.2)
+### aud
+JWT Audience
+@see [RFC7519#section-4.1.3](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.3)
+### jti
+JWT ID
+@see [RFC7519#section-4.1.7](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.7)
+### nbf
+JWT Not Before
+@see [RFC7519#section-4.1.5](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.5)
+### exp
+JWT Expiration Time
+@see [RFC7519#section-4.1.4](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.4)
+### iat
+JWT Issued At
+@see [RFC7519#section-4.1.6](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.6)

package/build/es/index.js ADDED Viewed

@@ -0,0 +1,54 @@
+import { createValidationError as t, getSchemaValidator as r } from 'elysia/src/utils';
+import { SignJWT as e, jwtVerify as i } from 'jose';
+import { Type as n } from '@sinclair/typebox';
+export const jwt = ({ name: o , secret: a , alg: p = 'HS256' , crit: s , schema: l , nbf: c , exp: d , ...f })=>(u)=>{
+        if (!a) throw Error("Secret can't be empty");
+        let g = new TextEncoder().encode(a), m = l ? r(n.Union([
+            l,
+            n.Object({
+                iss: n.Optional(n.String()),
+                sub: n.Optional(n.String()),
+                aud: n.Optional(n.Union([
+                    n.String(),
+                    n.Array(n.String())
+                ])),
+                jti: n.Optional(n.String()),
+                nbf: n.Optional(n.Union([
+                    n.String(),
+                    n.Number()
+                ])),
+                exp: n.Optional(n.Union([
+                    n.String(),
+                    n.Number()
+                ])),
+                iat: n.Optional(n.String())
+            })
+        ])) : void 0;
+        return u.decorate(o, {
+            sign (t) {
+                let r = new e({
+                    ...f,
+                    ...t,
+                    nbf: void 0,
+                    exp: void 0
+                }).setProtectedHeader({
+                    alg: p,
+                    crit: s
+                });
+                return c && (r = r.setNotBefore(c)), d && (r = r.setExpirationTime(d)), r.sign(g);
+            },
+            async verify (r) {
+                if (!r) return !1;
+                try {
+                    let e = (await i(r, g)).payload;
+                    if (m && !m.Check(e)) throw t('JWT', m, e);
+                    return e;
+                } catch (n) {
+                    return !1;
+                }
+            }
+        });
+    };
+export default jwt;
+//# sourceMappingURL=index.js.map

package/build/es/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../src/index.ts"],"sourcesContent":["import type { Elysia, Context, UnwrapSchema } from 'elysia'\nimport { createValidationError, getSchemaValidator } from 'elysia/src/utils'\n\nimport {\n SignJWT,\n jwtVerify,\n type JWTPayload,\n type JWSHeaderParameters\n} from 'jose'\n\nimport { Type as t } from '@sinclair/typebox'\nimport type { Static, TObject, TSchema } from '@sinclair/typebox'\n\nexport interface JWTPayloadSpec {\n iss?: string\n sub?: string\n aud?: string | string[]\n jti?: string\n nbf?: number\n exp?: number\n iat?: number\n}\n\nexport interface JWTOption<\n Name extends string = string,\n Schema extends TSchema | undefined = undefined\n> extends JWSHeaderParameters,\n Omit<JWTPayload, 'nbf' | 'exp'> {\n /**\n * Name to decorate method as\n *\n * ---\n * @example\n * For example, `jwt` will decorate Context with `Context.jwt`\n *\n * ```typescript\n * app\n * .decorate({\n * name: 'myJWTNamespace',\n * secret: process.env.JWT_SECRETS\n * })\n * .get('/sign/:name', ({ myJWTNamespace, params }) => {\n * return myJWTNamespace.sign(params)\n * })\n * ```\n */\n name: Name\n /**\n * JWT Secret\n */\n secret: string\n /**\n * Type strict validation for JWT payload\n */\n schema?: Schema\n\n /**\n * JWT Not Before\n *\n * @see [RFC7519#section-4.1.5](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.5)\n */\n\n nbf?: string | number\n /**\n * JWT Expiration Time\n *\n * @see [RFC7519#section-4.1.4](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.4)\n */\n exp?: string | number\n}\n\nexport const jwt =\n <\n Name extends string = string,\n Schema extends TSchema | undefined = undefined\n >({\n name,\n secret,\n // Start JWT Header\n alg = 'HS256',\n crit,\n schema,\n // End JWT Header\n // Start JWT Payload\n nbf,\n exp,\n ...payload\n }: // End JWT Payload\n JWTOption<Name, Schema>) =>\n (app: Elysia) => {\n if (!secret) throw new Error(\"Secret can't be empty\")\n\n const key = new TextEncoder().encode(secret)\n\n const validator = schema\n ? getSchemaValidator(\n t.Union([\n schema,\n t.Object({\n iss: t.Optional(t.String()),\n sub: t.Optional(t.String()),\n aud: t.Optional(\n t.Union([t.String(), t.Array(t.String())])\n ),\n jti: t.Optional(t.String()),\n nbf: t.Optional(t.Union([t.String(), t.Number()])),\n exp: t.Optional(t.Union([t.String(), t.Number()])),\n iat: t.Optional(t.String())\n })\n ])\n )\n : undefined\n\n return app.decorate(name, {\n sign: (\n morePayload: UnwrapSchema<Schema, Record<string, string>> &\n JWTPayloadSpec\n ) => {\n let jwt = new SignJWT({\n ...payload,\n ...morePayload,\n nbf: undefined,\n exp: undefined\n }).setProtectedHeader({\n alg,\n crit\n })\n\n if (nbf) jwt = jwt.setNotBefore(nbf)\n if (exp) jwt = jwt.setExpirationTime(exp)\n\n return jwt.sign(key)\n },\n verify: async (\n jwt?: string\n ): Promise<\n | (UnwrapSchema<Schema, Record<string, string>> &\n JWTPayloadSpec)\n | false\n > => {\n if (!jwt) return false\n\n try {\n const data: any = (await jwtVerify(jwt, key)).payload\n\n if (validator && !validator!.Check(data))\n throw createValidationError('JWT', validator, data)\n\n return data\n } catch (_) {\n return false\n }\n }\n })\n }\n\nexport default jwt\n"],"names":["createValidationError","getSchemaValidator","SignJWT","jwtVerify","Type","t","jwt","name","secret","alg","crit","schema","nbf","exp","payload","app","Error","key","TextEncoder","encode","validator","Union","Object","iss","Optional","String","sub","aud","Array","jti","Number","iat","undefined","decorate","sign","morePayload","setProtectedHeader","setNotBefore","setExpirationTime","verify","data","Check","_"],"mappings":"AACA,SAASA,yBAAAA,CAAqB,EAAEC,sBAAAA,CAAkB,QAAQ,mBAAkB;AAE5E,SACIC,WAAAA,CAAO,EACPC,aAAAA,CAAS,QAGN,OAAM;AAEb,SAASC,QAAQC,CAAC,QAAQ,oBAAmB;AA6D7C,OAAO,MAAMC,MACT,CAGE,EACEC,MAAAA,EAAI,EACJC,QAAAA,EAAM,EAENC,KAAAA,IAAM,OAAO,CAAA,EACbC,MAAAA,EAAI,EACJC,QAAAA,EAAM,EAGNC,KAAAA,EAAG,EACHC,KAAAA,EAAG,EACH,GAAGC,GAEgB,GACvB,CAACC,IAAgB;QACb,IAAI,CAACP,GAAQ,MAAM,AAAIQ,MAAM,yBAAwB;QAErD,IAAMC,IAAM,IAAIC,cAAcC,MAAM,CAACX,IAE/BY,IAAYT,IACZV,EACII,EAAEgB,KAAK,CAAC;YACJV;YACAN,EAAEiB,MAAM,CAAC;gBACLC,KAAKlB,EAAEmB,QAAQ,CAACnB,EAAEoB,MAAM;gBACxBC,KAAKrB,EAAEmB,QAAQ,CAACnB,EAAEoB,MAAM;gBACxBE,KAAKtB,EAAEmB,QAAQ,CACXnB,EAAEgB,KAAK,CAAC;oBAAChB,EAAEoB,MAAM;oBAAIpB,EAAEuB,KAAK,CAACvB,EAAEoB,MAAM;iBAAI;gBAE7CI,KAAKxB,EAAEmB,QAAQ,CAACnB,EAAEoB,MAAM;gBACxBb,KAAKP,EAAEmB,QAAQ,CAACnB,EAAEgB,KAAK,CAAC;oBAAChB,EAAEoB,MAAM;oBAAIpB,EAAEyB,MAAM;iBAAG;gBAChDjB,KAAKR,EAAEmB,QAAQ,CAACnB,EAAEgB,KAAK,CAAC;oBAAChB,EAAEoB,MAAM;oBAAIpB,EAAEyB,MAAM;iBAAG;gBAChDC,KAAK1B,EAAEmB,QAAQ,CAACnB,EAAEoB,MAAM;YAC5B;SACH,KAELO,KAAAA,CAAS;QAEf,OAAOjB,EAAIkB,QAAQ,CAAC1B,GAAM;YACtB2B,MACIC,GAEC;gBACD,IAAI7B,IAAM,IAAIJ,EAAQ;oBAClB,GAAGY,CAAO;oBACV,GAAGqB,CAAW;oBACdvB,KAAKoB,KAAAA;oBACLnB,KAAKmB,KAAAA;gBACT,GAAGI,kBAAkB,CAAC;oBAClB3B,KAAAA;oBACAC,MAAAA;gBACJ;gBAKA,OAHIE,KAAKN,CAAAA,IAAMA,EAAI+B,YAAY,CAACzB,EAAG,GAC/BC,KAAKP,CAAAA,IAAMA,EAAIgC,iBAAiB,CAACzB,EAAG,GAEjCP,EAAI4B,IAAI,CAACjB;YACpB;YACQ,MAARsB,QACIjC,GAKC;gBACD,IAAI,CAACA,GAAK,OAAO,CAAA;gBAEjB,IAAI;oBACA,IAAMkC,IAAY,AAAC,CAAA,MAAMrC,EAAUG,GAAKW,EAAG,EAAGH,OAAO;oBAErD,IAAIM,KAAa,CAACA,EAAWqB,KAAK,CAACD,IAC/B,MAAMxC,EAAsB,OAAOoB,GAAWoB,GAAK;oBAEvD,OAAOA;gBACX,EAAE,OAAOE,GAAG;oBACR,OAAO,CAAA;gBACX;YACJ;QACJ;IACJ,EAAC;AAEL,eAAepC,IAAG"}

package/build/index.js ADDED Viewed

@@ -0,0 +1,62 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", {
+    value: !0
+}), function(e, t) {
+    for(var r in t)Object.defineProperty(e, r, {
+        enumerable: !0,
+        get: t[r]
+    });
+}(exports, {
+    jwt: ()=>i,
+    default: ()=>n
+});
+const e = require("elysia/src/utils"), t = require("jose"), r = require("@sinclair/typebox"), i = ({ name: i , secret: n , alg: p = 'HS256' , crit: o , schema: y , nbf: a , exp: T , ...l })=>(s)=>{
+        if (!n) throw Error("Secret can't be empty");
+        let u = new TextEncoder().encode(n), c = y ? (0, e.getSchemaValidator)(r.Type.Union([
+            y,
+            r.Type.Object({
+                iss: r.Type.Optional(r.Type.String()),
+                sub: r.Type.Optional(r.Type.String()),
+                aud: r.Type.Optional(r.Type.Union([
+                    r.Type.String(),
+                    r.Type.Array(r.Type.String())
+                ])),
+                jti: r.Type.Optional(r.Type.String()),
+                nbf: r.Type.Optional(r.Type.Union([
+                    r.Type.String(),
+                    r.Type.Number()
+                ])),
+                exp: r.Type.Optional(r.Type.Union([
+                    r.Type.String(),
+                    r.Type.Number()
+                ])),
+                iat: r.Type.Optional(r.Type.String())
+            })
+        ])) : void 0;
+        return s.decorate(i, {
+            sign (e) {
+                let r = new t.SignJWT({
+                    ...l,
+                    ...e,
+                    nbf: void 0,
+                    exp: void 0
+                }).setProtectedHeader({
+                    alg: p,
+                    crit: o
+                });
+                return a && (r = r.setNotBefore(a)), T && (r = r.setExpirationTime(T)), r.sign(u);
+            },
+            async verify (r) {
+                if (!r) return !1;
+                try {
+                    let i = (await (0, t.jwtVerify)(r, u)).payload;
+                    if (c && !c.Check(i)) throw (0, e.createValidationError)('JWT', c, i);
+                    return i;
+                } catch (n) {
+                    return !1;
+                }
+            }
+        });
+    }, n = i;
+//# sourceMappingURL=index.js.map

package/build/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts"],"sourcesContent":["import type { Elysia, Context, UnwrapSchema } from 'elysia'\nimport { createValidationError, getSchemaValidator } from 'elysia/src/utils'\n\nimport {\n SignJWT,\n jwtVerify,\n type JWTPayload,\n type JWSHeaderParameters\n} from 'jose'\n\nimport { Type as t } from '@sinclair/typebox'\nimport type { Static, TObject, TSchema } from '@sinclair/typebox'\n\nexport interface JWTPayloadSpec {\n iss?: string\n sub?: string\n aud?: string | string[]\n jti?: string\n nbf?: number\n exp?: number\n iat?: number\n}\n\nexport interface JWTOption<\n Name extends string = string,\n Schema extends TSchema | undefined = undefined\n> extends JWSHeaderParameters,\n Omit<JWTPayload, 'nbf' | 'exp'> {\n /**\n * Name to decorate method as\n *\n * ---\n * @example\n * For example, `jwt` will decorate Context with `Context.jwt`\n *\n * ```typescript\n * app\n * .decorate({\n * name: 'myJWTNamespace',\n * secret: process.env.JWT_SECRETS\n * })\n * .get('/sign/:name', ({ myJWTNamespace, params }) => {\n * return myJWTNamespace.sign(params)\n * })\n * ```\n */\n name: Name\n /**\n * JWT Secret\n */\n secret: string\n /**\n * Type strict validation for JWT payload\n */\n schema?: Schema\n\n /**\n * JWT Not Before\n *\n * @see [RFC7519#section-4.1.5](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.5)\n */\n\n nbf?: string | number\n /**\n * JWT Expiration Time\n *\n * @see [RFC7519#section-4.1.4](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.4)\n */\n exp?: string | number\n}\n\nexport const jwt =\n <\n Name extends string = string,\n Schema extends TSchema | undefined = undefined\n >({\n name,\n secret,\n // Start JWT Header\n alg = 'HS256',\n crit,\n schema,\n // End JWT Header\n // Start JWT Payload\n nbf,\n exp,\n ...payload\n }: // End JWT Payload\n JWTOption<Name, Schema>) =>\n (app: Elysia) => {\n if (!secret) throw new Error(\"Secret can't be empty\")\n\n const key = new TextEncoder().encode(secret)\n\n const validator = schema\n ? getSchemaValidator(\n t.Union([\n schema,\n t.Object({\n iss: t.Optional(t.String()),\n sub: t.Optional(t.String()),\n aud: t.Optional(\n t.Union([t.String(), t.Array(t.String())])\n ),\n jti: t.Optional(t.String()),\n nbf: t.Optional(t.Union([t.String(), t.Number()])),\n exp: t.Optional(t.Union([t.String(), t.Number()])),\n iat: t.Optional(t.String())\n })\n ])\n )\n : undefined\n\n return app.decorate(name, {\n sign: (\n morePayload: UnwrapSchema<Schema, Record<string, string>> &\n JWTPayloadSpec\n ) => {\n let jwt = new SignJWT({\n ...payload,\n ...morePayload,\n nbf: undefined,\n exp: undefined\n }).setProtectedHeader({\n alg,\n crit\n })\n\n if (nbf) jwt = jwt.setNotBefore(nbf)\n if (exp) jwt = jwt.setExpirationTime(exp)\n\n return jwt.sign(key)\n },\n verify: async (\n jwt?: string\n ): Promise<\n | (UnwrapSchema<Schema, Record<string, string>> &\n JWTPayloadSpec)\n | false\n > => {\n if (!jwt) return false\n\n try {\n const data: any = (await jwtVerify(jwt, key)).payload\n\n if (validator && !validator!.Check(data))\n throw createValidationError('JWT', validator, data)\n\n return data\n } catch (_) {\n return false\n }\n }\n })\n }\n\nexport default jwt\n"],"names":["jwt","name","secret","alg","crit","schema","nbf","exp","payload","app","Error","key","TextEncoder","encode","validator","getSchemaValidator","t","Union","Object","iss","Optional","String","sub","aud","Array","jti","Number","iat","undefined","decorate","sign","morePayload","SignJWT","setProtectedHeader","setNotBefore","setExpirationTime","verify","data","jwtVerify","Check","createValidationError","_"],"mappings":"AAAA;;;;;;;;;IAuEaA,GAAG,MAAHA;IAqFb,OAAkB,MAAlB;;kBA3J0D,iCAOnD,qBAEmB,sBA6DbA,IACT,CAGE,EACEC,MAAAA,EAAI,EACJC,QAAAA,EAAM,EAENC,KAAAA,IAAM,OAAO,CAAA,EACbC,MAAAA,EAAI,EACJC,QAAAA,EAAM,EAGNC,KAAAA,EAAG,EACHC,KAAAA,EAAG,EACH,GAAGC,GAEgB,GACvB,CAACC,IAAgB;QACb,IAAI,CAACP,GAAQ,MAAM,AAAIQ,MAAM,yBAAwB;QAErD,IAAMC,IAAM,IAAIC,cAAcC,MAAM,CAACX,IAE/BY,IAAYT,IACZU,IAAAA,oBAAkB,EACdC,MAAC,CAACC,KAAK,CAAC;YACJZ;YACAW,MAAC,CAACE,MAAM,CAAC;gBACLC,KAAKH,MAAC,CAACI,QAAQ,CAACJ,MAAC,CAACK,MAAM;gBACxBC,KAAKN,MAAC,CAACI,QAAQ,CAACJ,MAAC,CAACK,MAAM;gBACxBE,KAAKP,MAAC,CAACI,QAAQ,CACXJ,MAAC,CAACC,KAAK,CAAC;oBAACD,MAAC,CAACK,MAAM;oBAAIL,MAAC,CAACQ,KAAK,CAACR,MAAC,CAACK,MAAM;iBAAI;gBAE7CI,KAAKT,MAAC,CAACI,QAAQ,CAACJ,MAAC,CAACK,MAAM;gBACxBf,KAAKU,MAAC,CAACI,QAAQ,CAACJ,MAAC,CAACC,KAAK,CAAC;oBAACD,MAAC,CAACK,MAAM;oBAAIL,MAAC,CAACU,MAAM;iBAAG;gBAChDnB,KAAKS,MAAC,CAACI,QAAQ,CAACJ,MAAC,CAACC,KAAK,CAAC;oBAACD,MAAC,CAACK,MAAM;oBAAIL,MAAC,CAACU,MAAM;iBAAG;gBAChDC,KAAKX,MAAC,CAACI,QAAQ,CAACJ,MAAC,CAACK,MAAM;YAC5B;SACH,KAELO,KAAAA,CAAS;QAEf,OAAOnB,EAAIoB,QAAQ,CAAC5B,GAAM;YACtB6B,MACIC,GAEC;gBACD,IAAI/B,IAAM,IAAIgC,SAAO,CAAC;oBAClB,GAAGxB,CAAO;oBACV,GAAGuB,CAAW;oBACdzB,KAAKsB,KAAAA;oBACLrB,KAAKqB,KAAAA;gBACT,GAAGK,kBAAkB,CAAC;oBAClB9B,KAAAA;oBACAC,MAAAA;gBACJ;gBAKA,OAHIE,KAAKN,CAAAA,IAAMA,EAAIkC,YAAY,CAAC5B,EAAG,GAC/BC,KAAKP,CAAAA,IAAMA,EAAImC,iBAAiB,CAAC5B,EAAG,GAEjCP,EAAI8B,IAAI,CAACnB;YACpB;YACQ,MAARyB,QACIpC,GAKC;gBACD,IAAI,CAACA,GAAK,OAAO,CAAA;gBAEjB,IAAI;oBACA,IAAMqC,IAAY,AAAC,CAAA,MAAMC,IAAAA,WAAS,EAACtC,GAAKW,EAAG,EAAGH,OAAO;oBAErD,IAAIM,KAAa,CAACA,EAAWyB,KAAK,CAACF,IAC/B,MAAMG,IAAAA,uBAAqB,EAAC,OAAO1B,GAAWuB,GAAK;oBAEvD,OAAOA;gBACX,EAAE,OAAOI,GAAG;oBACR,OAAO,CAAA;gBACX;YACJ;QACJ;IACJ,GAEJ,IAAezC"}

package/package.json ADDED Viewed

@@ -0,0 +1,56 @@
+{
+  "name": "@elysiajs/jwt",
+  "description": "Plugin for Elysia for using JWT Authentication",
+  "version": "0.0.0-experimental.0",
+  "author": {
+    "name": "saltyAom",
+    "url": "https://github.com/SaltyAom",
+    "email": "saltyaom@gmail.com"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/elysiajs/elysia-jwt"
+  },
+  "main": "build/index.js",
+  "module": "build/es/index.js",
+  "esnext": "build/es/index.js",
+  "types": "src/index.ts",
+  "typings": "src/index.ts",
+  "dependencies": {
+    "jose": "^4.11.0"
+  },
+  "devDependencies": {
+    "@elysiajs/cookie": "^0.0.0-experimental.3",
+    "@sinclair/typebox": "0.25.8",
+    "@swc/cli": "^0.1.57",
+    "@swc/core": "^1.3.11",
+    "@types/cookie": "^0.5.1",
+    "@types/cookie-signature": "^1.0.4",
+    "@types/node": "^18.11.7",
+    "bun-types": "^0.2.2",
+    "eslint": "^8.26.0",
+    "elysia": "^0.0.0-experimental.56",
+    "nodemon": "^2.0.20",
+    "typescript": "^4.8.4"
+  },
+  "peerDependencies": {
+    "elysia": "^0.0.0-experimental.56"
+  },
+  "bugs": "https://github.com/elysiajs/elysia-jwt/issues",
+  "homepage": "https://github.com/elysiajs/elysia-jwt",
+  "keywords": [
+    "kingworld",
+    "jwt",
+    "auth",
+    "authentication"
+  ],
+  "license": "MIT",
+  "scripts": {
+    "dev": "nodemon --config nodemon.json",
+    "test": "bun wiptest",
+    "build": "npm run build:main && npm run build:es",
+    "build:main": "swc src --config-file .cjs.swcrc -d build",
+    "build:es": "swc src --config-file .es.swcrc -d build/es",
+    "release": "npm run build && npm run test && npm publish --access public"
+  }
+}

package/src/index.ts ADDED Viewed

@@ -0,0 +1,157 @@
+import type { Elysia, Context, UnwrapSchema } from 'elysia'
+import { createValidationError, getSchemaValidator } from 'elysia/src/utils'
+import {
+    SignJWT,
+    jwtVerify,
+    type JWTPayload,
+    type JWSHeaderParameters
+} from 'jose'
+import { Type as t } from '@sinclair/typebox'
+import type { Static, TObject, TSchema } from '@sinclair/typebox'
+export interface JWTPayloadSpec {
+    iss?: string
+    sub?: string
+    aud?: string | string[]
+    jti?: string
+    nbf?: number
+    exp?: number
+    iat?: number
+}
+export interface JWTOption<
+    Name extends string = string,
+    Schema extends TSchema | undefined = undefined
+> extends JWSHeaderParameters,
+        Omit<JWTPayload, 'nbf' | 'exp'> {
+    /**
+     * Name to decorate method as
+     *
+     * ---
+     * @example
+     * For example, `jwt` will decorate Context with `Context.jwt`
+     *
+     * ```typescript
+     * app
+     *     .decorate({
+     *         name: 'myJWTNamespace',
+     *         secret: process.env.JWT_SECRETS
+     *     })
+     *     .get('/sign/:name', ({ myJWTNamespace, params }) => {
+     *         return myJWTNamespace.sign(params)
+     *     })
+     * ```
+     */
+    name: Name
+    /**
+     * JWT Secret
+     */
+    secret: string
+    /**
+     * Type strict validation for JWT payload
+     */
+    schema?: Schema
+    /**
+     * JWT Not Before
+     *
+     * @see [RFC7519#section-4.1.5](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.5)
+     */
+    nbf?: string | number
+    /**
+     * JWT Expiration Time
+     *
+     * @see [RFC7519#section-4.1.4](https://www.rfc-editor.org/rfc/rfc7519#section-4.1.4)
+     */
+    exp?: string | number
+}
+export const jwt =
+    <
+        Name extends string = string,
+        Schema extends TSchema | undefined = undefined
+    >({
+        name,
+        secret,
+        // Start JWT Header
+        alg = 'HS256',
+        crit,
+        schema,
+        // End JWT Header
+        // Start JWT Payload
+        nbf,
+        exp,
+        ...payload
+    }: // End JWT Payload
+    JWTOption<Name, Schema>) =>
+    (app: Elysia) => {
+        if (!secret) throw new Error("Secret can't be empty")
+        const key = new TextEncoder().encode(secret)
+        const validator = schema
+            ? getSchemaValidator(
+                  t.Union([
+                      schema,
+                      t.Object({
+                          iss: t.Optional(t.String()),
+                          sub: t.Optional(t.String()),
+                          aud: t.Optional(
+                              t.Union([t.String(), t.Array(t.String())])
+                          ),
+                          jti: t.Optional(t.String()),
+                          nbf: t.Optional(t.Union([t.String(), t.Number()])),
+                          exp: t.Optional(t.Union([t.String(), t.Number()])),
+                          iat: t.Optional(t.String())
+                      })
+                  ])
+              )
+            : undefined
+        return app.decorate(name, {
+            sign: (
+                morePayload: UnwrapSchema<Schema, Record<string, string>> &
+                    JWTPayloadSpec
+            ) => {
+                let jwt = new SignJWT({
+                    ...payload,
+                    ...morePayload,
+                    nbf: undefined,
+                    exp: undefined
+                }).setProtectedHeader({
+                    alg,
+                    crit
+                })
+                if (nbf) jwt = jwt.setNotBefore(nbf)
+                if (exp) jwt = jwt.setExpirationTime(exp)
+                return jwt.sign(key)
+            },
+            verify: async (
+                jwt?: string
+            ): Promise<
+                | (UnwrapSchema<Schema, Record<string, string>> &
+                      JWTPayloadSpec)
+                | false
+            > => {
+                if (!jwt) return false
+                try {
+                    const data: any = (await jwtVerify(jwt, key)).payload
+                    if (validator && !validator!.Check(data))
+                        throw createValidationError('JWT', validator, data)
+                    return data
+                } catch (_) {
+                    return false
+                }
+            }
+        })
+    }
+export default jwt

package/test/index.test.ts ADDED Viewed

@@ -0,0 +1,50 @@
+import { Elysia, t } from 'elysia'
+import { jwt } from '../src'
+import { describe, expect, it } from 'bun:test'
+const req = (path: string) => new Request(path)
+const post = (path: string, body = {}) =>
+    new Request(path, {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/json'
+        },
+        body: JSON.stringify(body)
+    })
+describe('Static Plugin', () => {
+    it('sign JWT', async () => {
+        const app = new Elysia()
+            .use(
+                jwt({
+                    name: 'jwt',
+                    secret: 'A'
+                })
+            )
+            .post('/validate', ({ jwt, body }) => jwt.sign(body), {
+                schema: {
+                    body: t.Object({
+                        name: t.String()
+                    })
+                }
+            })
+            .post('/validate', ({ jwt, body: { name } }) => jwt.verify(name), {
+                schema: {
+                    body: t.Object({ name: t.String() })
+                }
+            })
+        const name = 'Shirokami'
+        const _sign = post('/sign', { name })
+        const token = await _sign.text()
+        const _verified = post('/verify', { name })
+        const signed = (await _verified.json()) as {
+            name: string
+        }
+        expect(name).toBe(signed.name)
+    })
+})