@freshheads/react-auth 0.0.1-alpha.1 → 0.0.1-alpha.2

package/dist/main.d.ts

@@ -1,3 +1,5 @@
 export { useSignIn } from './hooks/useSignIn.ts';
 export { useSignOut } from './hooks/useSignOut.ts';
 export { default as withAuth } from './next/proxy.ts';
+export { type AuthOptions } from './types/options.ts';
+export { userHasRole } from './utilities/user.ts';

package/dist/main.js

@@ -1,67 +1,83 @@
-import { NextResponse as i } from "next/server.js";
-import { jwtDecode as f } from "jwt-decode";
-import { match as g } from "path-to-regexp";
-function y() {
+import { NextResponse as c } from "next/server.js";
+import { jwtDecode as p } from "jwt-decode";
+import { cookies as w } from "next/headers";
+import { match as k } from "path-to-regexp";
+function I() {
   throw new Error("useSignIn not yet implementend");
 }
-function S() {
+function T() {
   throw new Error("useSignOut not yet implementend");
 }
-function p(e) {
-  if (!e.has("jwt_hp"))
-    return null;
-  const t = e.get("jwt_hp")?.value;
-  if (!t)
-    return null;
+const h = "jwt_hp", f = (t) => {
   try {
-    return f(t).roles || null;
-  } catch (r) {
-    return console.error(r), null;
+    return p(t);
+  } catch (e) {
+    return console.error(e), null;
   }
+}, R = async (t) => {
+  const e = await w(), n = h;
+  if (!e.has(n))
+    return console.error("No cookie found with name:", n), null;
+  const o = e.get(n)?.value;
+  return o ? f(o)?.roles || null : (console.error("No JWT found in cookies"), null);
+};
+function A(t, e) {
+  const n = e || h;
+  if (!t.has(n))
+    return console.error("No cookie found with name:", n), null;
+  const o = t.get(n)?.value;
+  return o ? f(o)?.roles || null : (console.error("No JWT found in cookies"), null);
 }
-const m = (e, n) => {
-  const t = `{/:locale}${e}`;
-  return n ? t : e.replace(/\/\[\[\.\.\.([^\]]+)\]\]/g, "{/*$1}").replace(/\/\[\.\.\.([^\]]+)\]/g, "/*$1").replace(/\[([^\]]+)\]/g, ":$1");
-}, a = (e, n) => {
-  const t = Object.values(e).map(
-    (r) => g(m(r, n))
+const N = (t, e) => {
+  const n = `{/:locale}${t}`;
+  return e ? n : t.replace(/\/\[\[\.\.\.([^\]]+)\]\]/g, "{/*$1}").replace(/\/\[\.\.\.([^\]]+)\]/g, "/*$1").replace(/\[([^\]]+)\]/g, ":$1");
+}, a = (t, e) => {
+  const n = Object.values(t).map(
+    (r) => k(N(r, e))
   );
-  return (r) => t.some((c) => c(r) !== !1);
-}, w = (e, n, t) => {
+  return (r) => n.some((o) => o(r) !== !1);
+}, x = (t, e, n) => {
   const r = {
-    ...n.unauthenticated.routes,
-    ...n.open.routes
+    ...e.unauthenticated.routes,
+    ...e.open.routes
   };
-  return !a(r, t)(e);
-}, R = (e, n, t) => a(
-  n.unauthenticated.routes,
-  t
-)(e), x = (e, n, t) => a(
-  n.open.routes,
-  t
-)(e), A = (e, n) => n[e]?.landing || n.default.landing, L = (e, n) => e.filter(
-  (t) => n.includes(t)
-), O = (e, n) => L(e, n).length > 0;
-function $(e) {
-  return function(t, r) {
-    const c = t.nextUrl.pathname, { rbac: u, authorizedRoles: d, withLocaleRoutePrefix: l } = e;
-    if (x(c, u, l))
-      return r ?? i.next();
-    const o = p(t.cookies), s = o !== null && o.length > 0, h = o === null || !s ? !1 : O(o, d);
-    return (!s || !h) && w(c, u, l) ? i.redirect(
-      new URL(u.default.login, t.url),
+  return !a(r, n)(t);
+}, y = (t, e, n) => a(
+  e.unauthenticated.routes,
+  n
+)(t), L = (t, e, n) => a(
+  e.open.routes,
+  n
+)(t), O = (t, e) => e[t]?.landing || e.default.landing, J = (t, e) => t.filter(
+  (n) => e.includes(n)
+), U = async (t, e) => J(t, e).length > 0, W = async (t) => {
+  const e = await R();
+  return e === null ? !1 : e.includes(t);
+};
+function $(t) {
+  return function(n, r) {
+    const o = n.nextUrl.pathname, { rbac: s, authorizedRoles: d, withLocaleRoutePrefix: i, cookieName: m } = t;
+    if (L(o, s, i))
+      return r ?? c.next();
+    const u = A(
+      n.cookies,
+      m
+    ), l = u !== null && u.length > 0, g = u === null || !l ? !1 : U(u, d);
+    return (!l || !g) && x(o, s, i) ? c.redirect(
+      new URL(s.default.login, n.url),
       307
-    ) : s && R(c, u, l) ? o === null || o.length === 0 || o[0] === void 0 ? i.redirect(
-      new URL(u.default.login, t.url),
+    ) : l && y(o, s, i) ? u === null || u.length === 0 || u[0] === void 0 ? c.redirect(
+      new URL(s.default.login, n.url),
       307
-    ) : i.redirect(
-      new URL(A(o[0], u), t.url),
+    ) : c.redirect(
+      new URL(O(u[0], s), n.url),
       307
-    ) : r ?? i.next();
+    ) : r ?? c.next();
   };
 }
 export {
-  y as useSignIn,
-  S as useSignOut,
+  I as useSignIn,
+  T as useSignOut,
+  W as userHasRole,
   $ as withAuth
 };

package/dist/types/options.d.ts

@@ -3,4 +3,5 @@ export type AuthOptions<ValidRoute, AuthorizedRoles extends string[] = []> = {
     rbac: RbacRoutes<ValidRoute, AuthorizedRoles>;
     authorizedRoles: AuthorizedRoles;
     withLocaleRoutePrefix: boolean;
+    cookieName?: string;
 };

package/dist/utilities/cookies.d.ts

@@ -1,9 +1,18 @@
 import { RequestCookies } from 'next/dist/server/web/spec-extension/cookies.js';
 /**
- * Retrieves the user roles from JWT stored in cookies.
+ * Extracts user roles from a JWT token stored in cookies.
  *
- * Note: by reading cookies you will opt out of static rendering for the entire route (group).
+ * @template AuthorizedRole - The type of role objects in the roles array
+ * @param [cookieName='jwt_hp'] - Name of the cookie containing the JWT token
+ * @returns Array of user roles, or null if cookie is missing or invalid
+ */
+export declare const getRolesFromCookies: <AuthorizedRole>(cookieName?: string) => Promise<AuthorizedRole[] | null>;
+/**
+ * Extracts user roles from a JWT token stored in request cookies.
  *
- * @returns A promise that resolves to the user roles as an array, or null if not found or on error.
+ * @template AuthorizedRole - The type of role objects in the roles array
+ * @param requestCookies - Next.js request cookies object
+ * @param [cookieName='jwt_hp'] - Name of the cookie containing the JWT token
+ * @returns Array of user roles, or null if cookie is missing or invalid
  */
-export declare function getRolesFromCookies<AuthorizedRole>(requestCookies: RequestCookies): AuthorizedRole[] | null;
+export declare function getRolesFromRequestCookies<AuthorizedRole>(requestCookies: RequestCookies, cookieName?: string): AuthorizedRole[] | null;

package/dist/utilities/user.d.ts

@@ -1 +1,20 @@
-export declare const userIsAuthorized: <Role extends string>(userRoles: Role[], authorizedRoles: Role[]) => boolean;
+/**
+ * Checks if a user is authorized based on their roles.
+ * Used primarily in Next.js middleware for role-based access control (RBAC).
+ * Returns true if the user has at least one role that matches the authorized roles.
+ *
+ * @template Role - The type of role string
+ * @param userRoles - Array of roles assigned to the user
+ * @param authorizedRoles - Array of roles that are authorized for the resource
+ * @returns True if the user has at least one authorized role, false otherwise
+ */
+export declare const userIsAuthorized: <Role extends string>(userRoles: Role[], authorizedRoles: Role[]) => Promise<boolean>;
+/**
+ * Checks if the current user has a specific role.
+ * This function will make a request to the cookies store to retrieve the users roles.
+ *
+ * @template Role - The type of role string
+ * @param requiredRole - The role to check for
+ * @returns True if the user has the required role, false otherwise
+ */
+export declare const userHasRole: <Role extends string>(requiredRole: Role) => Promise<boolean>;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@freshheads/react-auth",
-  "version": "0.0.1-alpha.1",
+  "version": "0.0.1-alpha.2",
   "type": "module",
   "scripts": {
     "build": "tsc -b && vite build",