@hemia/auth-sdk 0.0.6 → 0.0.8

package/dist/hemia-auth-sdk.esm.js

@@ -1,4 +1,3 @@
-import 'reflect-metadata';
 import { BadRequestError, CustomHttpError, InternalServerError, Get, Req, Res, Post, HttpError } from '@hemia/common';
 import { HMNetworkServices } from '@hemia/network-services';
 import { JwtManager } from '@hemia/jwt-manager';
@@ -239,6 +238,46 @@ let AuthService = class AuthService {
             throw new InvalidTokenFormatError();
         }
     }
+    /**
+     * Obtiene y valida los claims del access token de la sesión.
+     * @param sessionId Identificador de la sesión
+     * @returns Claims del access token o error si el token no es válido
+     */
+    async getSessionAccess(sessionId) {
+        const key = `x-session:${sessionId}`;
+        let session = await this.storage.get(key);
+        if (!session) {
+            throw new SessionNotFoundError();
+        }
+        if (session.expiresAt < Date.now()) {
+            throw new SessionExpiredError();
+        }
+        const timeUntilExpiry = session.expiresAt - Date.now();
+        if (timeUntilExpiry < 2 * 60 * 1000) {
+            try {
+                session = await this.refreshTokens(session, sessionId);
+            }
+            catch (error) {
+                throw new TokenRefreshFailedError();
+            }
+        }
+        try {
+            const verify = this.jwtManager.verify(session.accessToken);
+            if (!verify) {
+                throw new SessionInvalidError();
+            }
+            const claims = this.jwtManager.decode(session.accessToken, true);
+            if (!claims) {
+                throw new SessionInvalidError();
+            }
+            return {
+                ...claims
+            };
+        }
+        catch (e) {
+            throw new InvalidTokenFormatError();
+        }
+    }
     /**
      * Cierra la sesión del usuario tanto en el SSO como localmente.
      * @param sessionId Identificador de la sesión
@@ -314,16 +353,14 @@ AuthService = __decorate([
         JwtManager])
 ], AuthService);
 
-const AUTH_SERVICE_ID = Symbol.for("AuthService");
+const AUTH_SERVICE_ID = Symbol.for('HemiaAuthService');
 
 /**
  * Controller Abstracto Reutilizable
  * Gestiona automáticamente Login, Callback, Me y Logout.
  */
 let AbstractAuthController = class AbstractAuthController {
-    constructor(authService) {
-        this.authService = authService;
-    }
+    constructor() { }
     async login(req, res) {
         try {
             const autoParam = typeof req.query.auto === 'string' ? req.query.auto : 'false';
@@ -440,10 +477,12 @@ let AbstractAuthController = class AbstractAuthController {
         return res.status(200).json({ success: true });
     }
 };
+__decorate([
+    inject(AUTH_SERVICE_ID),
+    __metadata("design:type", AuthService)
+], AbstractAuthController.prototype, "authService", void 0);
 __decorate([
     Get('/login'),
-    __param(0, Req()),
-    __param(1, Res()),
     __metadata("design:type", Function),
     __metadata("design:paramtypes", [Object, Object]),
     __metadata("design:returntype", Promise)
@@ -472,8 +511,7 @@ __decorate([
 ], AbstractAuthController.prototype, "logout", null);
 AbstractAuthController = __decorate([
     injectable(),
-    __param(0, inject(AUTH_SERVICE_ID)),
-    __metadata("design:paramtypes", [AuthService])
+    __metadata("design:paramtypes", [])
 ], AbstractAuthController);
 
 class AuthCacheAdapter {

package/dist/hemia-auth-sdk.js

@@ -1,6 +1,5 @@
 'use strict';
 
-require('reflect-metadata');
 var common = require('@hemia/common');
 var networkServices = require('@hemia/network-services');
 var jwtManager = require('@hemia/jwt-manager');
@@ -241,6 +240,46 @@ exports.AuthService = class AuthService {
             throw new InvalidTokenFormatError();
         }
     }
+    /**
+     * Obtiene y valida los claims del access token de la sesión.
+     * @param sessionId Identificador de la sesión
+     * @returns Claims del access token o error si el token no es válido
+     */
+    async getSessionAccess(sessionId) {
+        const key = `x-session:${sessionId}`;
+        let session = await this.storage.get(key);
+        if (!session) {
+            throw new SessionNotFoundError();
+        }
+        if (session.expiresAt < Date.now()) {
+            throw new SessionExpiredError();
+        }
+        const timeUntilExpiry = session.expiresAt - Date.now();
+        if (timeUntilExpiry < 2 * 60 * 1000) {
+            try {
+                session = await this.refreshTokens(session, sessionId);
+            }
+            catch (error) {
+                throw new TokenRefreshFailedError();
+            }
+        }
+        try {
+            const verify = this.jwtManager.verify(session.accessToken);
+            if (!verify) {
+                throw new SessionInvalidError();
+            }
+            const claims = this.jwtManager.decode(session.accessToken, true);
+            if (!claims) {
+                throw new SessionInvalidError();
+            }
+            return {
+                ...claims
+            };
+        }
+        catch (e) {
+            throw new InvalidTokenFormatError();
+        }
+    }
     /**
      * Cierra la sesión del usuario tanto en el SSO como localmente.
      * @param sessionId Identificador de la sesión
@@ -316,16 +355,14 @@ exports.AuthService = __decorate([
         jwtManager.JwtManager])
 ], exports.AuthService);
 
-const AUTH_SERVICE_ID = Symbol.for("AuthService");
+const AUTH_SERVICE_ID = Symbol.for('HemiaAuthService');
 
 /**
  * Controller Abstracto Reutilizable
  * Gestiona automáticamente Login, Callback, Me y Logout.
  */
 exports.AbstractAuthController = class AbstractAuthController {
-    constructor(authService) {
-        this.authService = authService;
-    }
+    constructor() { }
     async login(req, res) {
         try {
             const autoParam = typeof req.query.auto === 'string' ? req.query.auto : 'false';
@@ -442,10 +479,12 @@ exports.AbstractAuthController = class AbstractAuthController {
         return res.status(200).json({ success: true });
     }
 };
+__decorate([
+    inversify.inject(AUTH_SERVICE_ID),
+    __metadata("design:type", exports.AuthService)
+], exports.AbstractAuthController.prototype, "authService", void 0);
 __decorate([
     common.Get('/login'),
-    __param(0, common.Req()),
-    __param(1, common.Res()),
     __metadata("design:type", Function),
     __metadata("design:paramtypes", [Object, Object]),
     __metadata("design:returntype", Promise)
@@ -474,8 +513,7 @@ __decorate([
 ], exports.AbstractAuthController.prototype, "logout", null);
 exports.AbstractAuthController = __decorate([
     inversify.injectable(),
-    __param(0, inversify.inject(AUTH_SERVICE_ID)),
-    __metadata("design:paramtypes", [exports.AuthService])
+    __metadata("design:paramtypes", [])
 ], exports.AbstractAuthController);
 
 class AuthCacheAdapter {

package/dist/types/controllers/abstract-auth.controller.d.ts

@@ -6,7 +6,7 @@ import { AuthService } from "../services/auth.service";
  */
 export declare abstract class AbstractAuthController {
     protected readonly authService: AuthService;
-    constructor(authService: AuthService);
+    constructor();
     login(req: Request, res: Response): Promise<void>;
     callback(req: Request, res: Response): Promise<void>;
     me(req: Request, res: Response): Promise<Response>;

package/dist/types/index.d.ts

@@ -1,4 +1,3 @@
-import "reflect-metadata";
 export * from "./controllers/abstract-auth.controller";
 export * from "./services";
 export * from "./types";

package/dist/types/services/auth.service.d.ts

@@ -28,6 +28,12 @@ export declare class AuthService {
      * @returns Información del usuario o error si la sesión no es válida
      */
     getSessionUser(sessionId: string): Promise<ISessionUser>;
+    /**
+     * Obtiene y valida los claims del access token de la sesión.
+     * @param sessionId Identificador de la sesión
+     * @returns Claims del access token o error si el token no es válido
+     */
+    getSessionAccess(sessionId: string): Promise<any>;
     /**
      * Cierra la sesión del usuario tanto en el SSO como localmente.
      * @param sessionId Identificador de la sesión

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hemia/auth-sdk",
-  "version": "0.0.6",
+  "version": "0.0.8",
   "description": "Hemia SDK for authentication",
   "main": "dist/hemia-auth-sdk.js",
   "module": "dist/hemia-auth-sdk.esm.js",
@@ -14,19 +14,19 @@
     "test:watch": "jest --watch"
   },
   "devDependencies": {
+    "@hemia/cache-manager": "^0.0.5",
+    "@hemia/common": "^0.0.2",
+    "@hemia/jwt-manager": "^0.0.4",
+    "@hemia/network-services": "^0.0.3",
     "@rollup/plugin-commonjs": "^26.0.1",
     "@rollup/plugin-json": "^6.1.0",
     "@rollup/plugin-node-resolve": "^15.2.3",
+    "@types/express": "^4.17.21",
     "@types/jest": "^29.5.14",
     "@types/node": "^22.3.0",
     "@typescript-eslint/eslint-plugin": "^8.5.0",
-    "@hemia/network-services": "^0.0.3",
-    "@hemia/common": "^0.0.2",
-    "@hemia/cache-manager": "^0.0.5",
-    "@hemia/jwt-manager": "^0.0.4",
-    "@types/express": "^4.17.21",
-    "express": "^5.2.1",
     "events": "^3.3.0",
+    "express": "^5.2.1",
     "inversify": "^7.11.0",
     "jest": "^29.7.0",
     "rimraf": "^6.0.1",
@@ -42,14 +42,11 @@
     "dist"
   ],
   "peerDependencies": {
-    "reflect-metadata": "^0.2.2",
-    "inversify": "^7.11.0",
+    "@hemia/cache-manager": "^0.0.5",
     "@hemia/common": "^0.0.2",
+    "@hemia/jwt-manager": "^0.0.4",
     "@hemia/network-services": "^0.0.3",
-    "@hemia/cache-manager": "^0.0.5",
-    "@hemia/jwt-manager": "^0.0.4"
-  },
-  "dependencies": {
-   
+    "inversify": "^7.11.0",
+    "reflect-metadata": "^0.2.2"
   }
 }