@hemia/auth-sdk 0.0.10 → 0.0.12

package/dist/hemia-auth-sdk.esm.js

@@ -1,4 +1,4 @@
-import { BadRequestError, CustomHttpError, InternalServerError, Get, Req, Res, Post, Controller, HttpError, METADATA_KEYS, ControllerRegistry } from '@hemia/common';
+import { BadRequestError, CustomHttpError, InternalServerError, Get, Req, Res, Post, Controller, ManualRegister, HttpError, METADATA_KEYS, ControllerRegistry } from '@hemia/common';
 import { HMNetworkServices } from '@hemia/network-services';
 import { JwtManager } from '@hemia/jwt-manager';
 import { randomBytes, createHash } from 'crypto';
@@ -185,11 +185,11 @@ let AuthService = class AuthService {
             const sessionId = randomBytes(16).toString('hex');
             const sessionData = {
                 accessToken: access_token,
-                refreshToken: refresh_token,
-                idToken: id_token,
+                refreshToken: refresh_token || '',
+                idToken: id_token || '',
                 expiresAt: Date.now() + (expires_in * 1000),
                 createdAt: new Date().toISOString(),
-                ssoSessionId: session_id
+                sessionId: session_id
             };
             await this.storage.set(`x-session:${sessionId}`, sessionData, expires_in);
             return {
@@ -306,7 +306,7 @@ let AuthService = class AuthService {
         if (session) {
             try {
                 await this.networkServices.post(this.config.ssoLogoutEndpoint, {
-                    ssoSessionId: session.sessionId
+                    sessionId: session.sessionId
                 });
             }
             catch (e) { /* Silent error */ }
@@ -350,7 +350,7 @@ let AuthService = class AuthService {
             clientId: this.config.clientId,
             clientSecret: this.config.clientSecret,
             refreshToken: session.refreshToken,
-            sessionId: session.ssoSessionId
+            sessionId: session.sessionId
         });
         if (response.status !== 200) {
             throw new CustomHttpError('Token refresh failed', response.status, 'token_refresh_failed');
@@ -380,12 +380,13 @@ AuthService = __decorate([
 const AUTH_SERVICE_ID = Symbol.for('HemiaAuthService');
 
 /**
- * Controller AuthController
+ * Controller AuthSDKController
  * Gestiona automáticamente Login, Callback, Me y Logout.
  */
-let AuthController = class AuthController {
+let AuthSDKController = class AuthSDKController {
     constructor(authService) {
         this.authService = authService;
+        this.COOKIE_NAME = process.env.AUTH_COOKIE_NAME || 'x-session';
     }
     async login(req, res) {
         try {
@@ -413,12 +414,12 @@ let AuthController = class AuthController {
             }
             const storedState = JSON.parse(authFlowCookie);
             const result = await this.authService.handleCallback(code, state, storedState);
-            res.cookie('x-session', result.sessionId, {
+            res.cookie(this.COOKIE_NAME, result.sessionId, {
                 httpOnly: true,
                 secure: process.env.NODE_ENV === 'production',
                 sameSite: 'lax',
                 maxAge: result.expiresIn * 1000,
-                path: '/'
+                path: '/',
             });
             res.clearCookie('auth_flow');
             res.redirect(result.redirectUrl);
@@ -441,7 +442,11 @@ let AuthController = class AuthController {
         }
     }
     async me(req, res) {
-        const sessionId = req.cookies['x-session'];
+        const sessionId = req.cookies[this.COOKIE_NAME];
+        console.log(`🔍 [App Cookie Name]: ${this.COOKIE_NAME}`);
+        console.log('🔍 [App Port]:', req.headers.origin || 'unknown');
+        console.log('🔍 [SessionId]:', sessionId);
+        console.log('🔍 [All Cookies]:', req.cookies);
         if (!sessionId) {
             return res.status(401).json({
                 success: false,
@@ -463,7 +468,7 @@ let AuthController = class AuthController {
             });
         }
         catch (error) {
-            res.clearCookie('x-session', {
+            res.clearCookie(this.COOKIE_NAME, {
                 httpOnly: true,
                 secure: process.env.NODE_ENV === 'production',
                 sameSite: 'lax',
@@ -491,11 +496,11 @@ let AuthController = class AuthController {
         }
     }
     async logout(req, res) {
-        const sessionId = req.cookies['x-session'];
+        const sessionId = req.cookies[this.COOKIE_NAME];
         if (sessionId) {
             await this.authService.logout(sessionId);
         }
-        res.clearCookie('x-session', {
+        res.clearCookie(this.COOKIE_NAME, {
             httpOnly: true,
             secure: process.env.NODE_ENV === 'production',
             sameSite: 'lax',
@@ -508,13 +513,13 @@ __decorate([
     __metadata("design:type", Function),
     __metadata("design:paramtypes", [Object, Object]),
     __metadata("design:returntype", Promise)
-], AuthController.prototype, "login", null);
+], AuthSDKController.prototype, "login", null);
 __decorate([
     Get('/callback'),
     __metadata("design:type", Function),
     __metadata("design:paramtypes", [Object, Object]),
     __metadata("design:returntype", Promise)
-], AuthController.prototype, "callback", null);
+], AuthSDKController.prototype, "callback", null);
 __decorate([
     Get('/me'),
     __param(0, Req()),
@@ -522,7 +527,7 @@ __decorate([
     __metadata("design:type", Function),
     __metadata("design:paramtypes", [Object, Object]),
     __metadata("design:returntype", Promise)
-], AuthController.prototype, "me", null);
+], AuthSDKController.prototype, "me", null);
 __decorate([
     Post('/logout'),
     __param(0, Req()),
@@ -530,12 +535,13 @@ __decorate([
     __metadata("design:type", Function),
     __metadata("design:paramtypes", [Object, Object]),
     __metadata("design:returntype", Promise)
-], AuthController.prototype, "logout", null);
-AuthController = __decorate([
+], AuthSDKController.prototype, "logout", null);
+AuthSDKController = __decorate([
     Controller('/'),
+    ManualRegister(),
     __param(0, inject(AUTH_SERVICE_ID)),
     __metadata("design:paramtypes", [AuthService])
-], AuthController);
+], AuthSDKController);
 
 class AuthCacheAdapter {
     constructor(externalCache) {
@@ -561,12 +567,12 @@ const authPlugin = (config, cacheFactory, options) => {
             const jwt = new JwtManager();
             return new AuthService(config, storageAdapter, network, jwt);
         }).inSingletonScope();
-        Reflect.defineMetadata(METADATA_KEYS.BASE_PATH, options.basePath, AuthController);
-        ControllerRegistry.register(AuthController);
-        if (!container.isBound(AuthController)) {
-            container.bind(AuthController).toSelf().inSingletonScope();
+        Reflect.defineMetadata(METADATA_KEYS.BASE_PATH, options.basePath, AuthSDKController);
+        ControllerRegistry.register(AuthSDKController);
+        if (!container.isBound(AuthSDKController)) {
+            container.bind(AuthSDKController).toSelf().inSingletonScope();
         }
     };
 };
 
-export { AUTH_SERVICE_ID, AuthController, AuthService, InvalidTokenFormatError, SessionError, SessionExpiredError, SessionInvalidError, SessionNotFoundError, TokenRefreshFailedError, authPlugin };
+export { AUTH_SERVICE_ID, AuthSDKController, AuthService, InvalidTokenFormatError, SessionError, SessionExpiredError, SessionInvalidError, SessionNotFoundError, TokenRefreshFailedError, authPlugin };

package/dist/hemia-auth-sdk.js

@@ -187,11 +187,11 @@ exports.AuthService = class AuthService {
             const sessionId = crypto.randomBytes(16).toString('hex');
             const sessionData = {
                 accessToken: access_token,
-                refreshToken: refresh_token,
-                idToken: id_token,
+                refreshToken: refresh_token || '',
+                idToken: id_token || '',
                 expiresAt: Date.now() + (expires_in * 1000),
                 createdAt: new Date().toISOString(),
-                ssoSessionId: session_id
+                sessionId: session_id
             };
             await this.storage.set(`x-session:${sessionId}`, sessionData, expires_in);
             return {
@@ -308,7 +308,7 @@ exports.AuthService = class AuthService {
         if (session) {
             try {
                 await this.networkServices.post(this.config.ssoLogoutEndpoint, {
-                    ssoSessionId: session.sessionId
+                    sessionId: session.sessionId
                 });
             }
             catch (e) { /* Silent error */ }
@@ -352,7 +352,7 @@ exports.AuthService = class AuthService {
             clientId: this.config.clientId,
             clientSecret: this.config.clientSecret,
             refreshToken: session.refreshToken,
-            sessionId: session.ssoSessionId
+            sessionId: session.sessionId
         });
         if (response.status !== 200) {
             throw new common.CustomHttpError('Token refresh failed', response.status, 'token_refresh_failed');
@@ -382,12 +382,13 @@ exports.AuthService = __decorate([
 const AUTH_SERVICE_ID = Symbol.for('HemiaAuthService');
 
 /**
- * Controller AuthController
+ * Controller AuthSDKController
  * Gestiona automáticamente Login, Callback, Me y Logout.
  */
-exports.AuthController = class AuthController {
+exports.AuthSDKController = class AuthSDKController {
     constructor(authService) {
         this.authService = authService;
+        this.COOKIE_NAME = process.env.AUTH_COOKIE_NAME || 'x-session';
     }
     async login(req, res) {
         try {
@@ -415,12 +416,12 @@ exports.AuthController = class AuthController {
             }
             const storedState = JSON.parse(authFlowCookie);
             const result = await this.authService.handleCallback(code, state, storedState);
-            res.cookie('x-session', result.sessionId, {
+            res.cookie(this.COOKIE_NAME, result.sessionId, {
                 httpOnly: true,
                 secure: process.env.NODE_ENV === 'production',
                 sameSite: 'lax',
                 maxAge: result.expiresIn * 1000,
-                path: '/'
+                path: '/',
             });
             res.clearCookie('auth_flow');
             res.redirect(result.redirectUrl);
@@ -443,7 +444,11 @@ exports.AuthController = class AuthController {
         }
     }
     async me(req, res) {
-        const sessionId = req.cookies['x-session'];
+        const sessionId = req.cookies[this.COOKIE_NAME];
+        console.log(`🔍 [App Cookie Name]: ${this.COOKIE_NAME}`);
+        console.log('🔍 [App Port]:', req.headers.origin || 'unknown');
+        console.log('🔍 [SessionId]:', sessionId);
+        console.log('🔍 [All Cookies]:', req.cookies);
         if (!sessionId) {
             return res.status(401).json({
                 success: false,
@@ -465,7 +470,7 @@ exports.AuthController = class AuthController {
             });
         }
         catch (error) {
-            res.clearCookie('x-session', {
+            res.clearCookie(this.COOKIE_NAME, {
                 httpOnly: true,
                 secure: process.env.NODE_ENV === 'production',
                 sameSite: 'lax',
@@ -493,11 +498,11 @@ exports.AuthController = class AuthController {
         }
     }
     async logout(req, res) {
-        const sessionId = req.cookies['x-session'];
+        const sessionId = req.cookies[this.COOKIE_NAME];
         if (sessionId) {
             await this.authService.logout(sessionId);
         }
-        res.clearCookie('x-session', {
+        res.clearCookie(this.COOKIE_NAME, {
             httpOnly: true,
             secure: process.env.NODE_ENV === 'production',
             sameSite: 'lax',
@@ -510,13 +515,13 @@ __decorate([
     __metadata("design:type", Function),
     __metadata("design:paramtypes", [Object, Object]),
     __metadata("design:returntype", Promise)
-], exports.AuthController.prototype, "login", null);
+], exports.AuthSDKController.prototype, "login", null);
 __decorate([
     common.Get('/callback'),
     __metadata("design:type", Function),
     __metadata("design:paramtypes", [Object, Object]),
     __metadata("design:returntype", Promise)
-], exports.AuthController.prototype, "callback", null);
+], exports.AuthSDKController.prototype, "callback", null);
 __decorate([
     common.Get('/me'),
     __param(0, common.Req()),
@@ -524,7 +529,7 @@ __decorate([
     __metadata("design:type", Function),
     __metadata("design:paramtypes", [Object, Object]),
     __metadata("design:returntype", Promise)
-], exports.AuthController.prototype, "me", null);
+], exports.AuthSDKController.prototype, "me", null);
 __decorate([
     common.Post('/logout'),
     __param(0, common.Req()),
@@ -532,12 +537,13 @@ __decorate([
     __metadata("design:type", Function),
     __metadata("design:paramtypes", [Object, Object]),
     __metadata("design:returntype", Promise)
-], exports.AuthController.prototype, "logout", null);
-exports.AuthController = __decorate([
+], exports.AuthSDKController.prototype, "logout", null);
+exports.AuthSDKController = __decorate([
     common.Controller('/'),
+    common.ManualRegister(),
     __param(0, inversify.inject(AUTH_SERVICE_ID)),
     __metadata("design:paramtypes", [exports.AuthService])
-], exports.AuthController);
+], exports.AuthSDKController);
 
 class AuthCacheAdapter {
     constructor(externalCache) {
@@ -563,10 +569,10 @@ const authPlugin = (config, cacheFactory, options) => {
             const jwt = new jwtManager.JwtManager();
             return new exports.AuthService(config, storageAdapter, network, jwt);
         }).inSingletonScope();
-        Reflect.defineMetadata(common.METADATA_KEYS.BASE_PATH, options.basePath, exports.AuthController);
-        common.ControllerRegistry.register(exports.AuthController);
-        if (!container.isBound(exports.AuthController)) {
-            container.bind(exports.AuthController).toSelf().inSingletonScope();
+        Reflect.defineMetadata(common.METADATA_KEYS.BASE_PATH, options.basePath, exports.AuthSDKController);
+        common.ControllerRegistry.register(exports.AuthSDKController);
+        if (!container.isBound(exports.AuthSDKController)) {
+            container.bind(exports.AuthSDKController).toSelf().inSingletonScope();
         }
     };
 };

package/dist/types/controllers/auth.controller.d.ts

@@ -1,11 +1,12 @@
 import { Request, Response } from "express";
 import { AuthService } from "../services/auth.service";
 /**
- * Controller AuthController
+ * Controller AuthSDKController
  * Gestiona automáticamente Login, Callback, Me y Logout.
  */
-export declare class AuthController {
+export declare class AuthSDKController {
     private readonly authService;
+    private readonly COOKIE_NAME;
     constructor(authService: AuthService);
     login(req: Request, res: Response): Promise<void>;
     callback(req: Request, res: Response): Promise<void>;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hemia/auth-sdk",
-  "version": "0.0.10",
+  "version": "0.0.12",
   "description": "Hemia SDK for authentication",
   "main": "dist/hemia-auth-sdk.js",
   "module": "dist/hemia-auth-sdk.esm.js",
@@ -11,11 +11,12 @@
     "build": "npm run clean && npm run tscBuild",
     "test": "jest --detectOpenHandles",
     "test:coverage": "jest --coverage",
-    "test:watch": "jest --watch"
+    "test:watch": "jest --watch",
+    "prepublish": "npm run build"
   },
   "devDependencies": {
     "@hemia/cache-manager": "^0.0.5",
-    "@hemia/common": "^0.0.9",
+    "@hemia/common": "^0.0.12",
     "@hemia/jwt-manager": "^0.0.4",
     "@hemia/network-services": "^0.0.3",
     "@rollup/plugin-commonjs": "^26.0.1",
@@ -43,8 +44,8 @@
   ],
   "peerDependencies": {
     "@hemia/cache-manager": "^0.0.5",
-    "@hemia/common": "^0.0.9",
-    "@hemia/jwt-manager": "^0.0.4",
+    "@hemia/common": "^0.0.12",
+    "@hemia/jwt-manager": "^0.0.5",
     "@hemia/network-services": "^0.0.3",
     "inversify": "^7.11.0",
     "reflect-metadata": "^0.2.2"