@hemia/jwt-manager 0.0.5 → 0.0.6

package/dist/hemia-jwt-manager.esm.js

@@ -8,11 +8,6 @@ var jwtConfig = {
     cleanCredentialSecret: 'clean-credential-secret-key',
 };
 
-var Operatives;
-(function (Operatives) {
-    Operatives["CATALOG"] = "catalog";
-})(Operatives || (Operatives = {}));
-
 function getDefaultExportFromCjs (x) {
 	return x && x.__esModule && Object.prototype.hasOwnProperty.call(x, 'default') ? x['default'] : x;
 }
@@ -2124,46 +2119,55 @@ const coerce$1 = (version, options) => {
 };
 var coerce_1 = coerce$1;
 
-class LRUCache {
-  constructor () {
-    this.max = 1000;
-    this.map = new Map();
-  }
+var lrucache;
+var hasRequiredLrucache;
 
-  get (key) {
-    const value = this.map.get(key);
-    if (value === undefined) {
-      return undefined
-    } else {
-      // Remove the key from the map and add it to the end
-      this.map.delete(key);
-      this.map.set(key, value);
-      return value
-    }
-  }
+function requireLrucache () {
+	if (hasRequiredLrucache) return lrucache;
+	hasRequiredLrucache = 1;
 
-  delete (key) {
-    return this.map.delete(key)
-  }
+	class LRUCache {
+	  constructor () {
+	    this.max = 1000;
+	    this.map = new Map();
+	  }
 
-  set (key, value) {
-    const deleted = this.delete(key);
+	  get (key) {
+	    const value = this.map.get(key);
+	    if (value === undefined) {
+	      return undefined
+	    } else {
+	      // Remove the key from the map and add it to the end
+	      this.map.delete(key);
+	      this.map.set(key, value);
+	      return value
+	    }
+	  }
 
-    if (!deleted && value !== undefined) {
-      // If cache is full, delete the least recently used item
-      if (this.map.size >= this.max) {
-        const firstKey = this.map.keys().next().value;
-        this.delete(firstKey);
-      }
+	  delete (key) {
+	    return this.map.delete(key)
+	  }
 
-      this.map.set(key, value);
-    }
+	  set (key, value) {
+	    const deleted = this.delete(key);
 
-    return this
-  }
-}
+	    if (!deleted && value !== undefined) {
+	      // If cache is full, delete the least recently used item
+	      if (this.map.size >= this.max) {
+	        const firstKey = this.map.keys().next().value;
+	        this.delete(firstKey);
+	      }
+
+	      this.map.set(key, value);
+	    }
+
+	    return this
+	  }
+	}
 
-var lrucache = LRUCache;
+	lrucache = LRUCache;
+	return lrucache;
+}
 
 var range;
 var hasRequiredRange;
@@ -2386,7 +2390,7 @@ function requireRange () {
 
 	range = Range;
 
-	const LRU = lrucache;
+	const LRU = requireLrucache();
 	const cache = new LRU();
 
 	const parseOptions = parseOptions_1;
@@ -5815,7 +5819,7 @@ var jwt = /*@__PURE__*/getDefaultExportFromCjs(jsonwebtoken);
 
 class Mixin {
     createBasicToken(payload, secret, expiresIn, options) {
-        const finalOptions = Object.assign(Object.assign({}, (options || {})), { expiresIn, issuer: (options === null || options === void 0 ? void 0 : options.issuer) || process.env.JWT_ISSUER || 'hemia-app', audience: (options === null || options === void 0 ? void 0 : options.audience) || process.env.JWT_AUDIENCE || 'hemia-api', algorithm: (options === null || options === void 0 ? void 0 : options.algorithm) || 'HS256' });
+        const finalOptions = Object.assign(Object.assign({}, (options || {})), { expiresIn, issuer: options === null || options === void 0 ? void 0 : options.issuer, audience: options === null || options === void 0 ? void 0 : options.audience, algorithm: (options === null || options === void 0 ? void 0 : options.algorithm) || 'HS256' });
         return jwt.sign(payload, secret, finalOptions);
     }
     validateTokenBase(token, secretKey, options) {
@@ -5891,61 +5895,50 @@ class Mixin {
 }
 
 class JwtManager extends Mixin {
-    constructor() {
+    constructor(issuer, audience) {
         super();
         this._secretKey = '';
         this._issuer = '';
         this._audience = '';
         this._secretKey = process.env.JWT_SECRET || jwtConfig.cleanCredentialSecret;
-        this._issuer = process.env.JWT_ISSUER || 'hemia-app';
-        this._audience = process.env.JWT_AUDIENCE || 'hemia-api';
+        this._issuer = issuer || process.env.JWT_ISSUER || 'hemia-app';
+        this._audience = audience || process.env.JWT_AUDIENCE || 'hemia-api';
         if (!this._secretKey) {
             throw new Error("JWT secret key is required.");
         }
     }
-    createToken(payload, secretKey, expiresIn, options) {
-        return this.createBasicToken(payload, secretKey || this._secretKey, expiresIn || jwtConfig.expiresIn, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience }));
-    }
-    createTokenWithSecret(payload, secretKey, expiresIn, options) {
-        return this.createBasicToken(payload, secretKey, expiresIn || jwtConfig.expiresIn, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience }));
-    }
-    createCleanCredentialsToken(operative = Operatives.CATALOG, secretKey, expiresIn, customClaims) {
-        const payload = Object.assign({ accessType: operative }, customClaims);
-        return this.createBasicToken(payload, secretKey || this._secretKey, expiresIn || jwtConfig.expiresIn);
-    }
-    getTokenWithoutKey(payload, secretKey, expiresIn, options) {
-        return this.createToken(payload, secretKey, expiresIn, options);
-    }
-    getTokenWithKey(payload, secretKey, expiresIn, options) {
-        return this.createTokenWithSecret(payload, secretKey, expiresIn, options);
-    }
-    getTokenCleanCredentials(operative = Operatives.CATALOG, secretKey, expiresIn) {
-        return this.createCleanCredentialsToken(operative, secretKey, expiresIn);
-    }
-    createIdToken(claims, secretKey, expiresIn, customClaims) {
+    createIdToken(claims, options = {}, customClaims) {
         if (!claims.sub) {
             throw new Error('sub (subject) claim is required for ID tokens');
         }
         const payload = Object.assign(Object.assign(Object.assign({}, claims), { iat: Math.floor(Date.now() / 1000) }), customClaims);
-        return this.createBasicToken(payload, secretKey || this._secretKey, expiresIn || jwtConfig.expiresIn, { issuer: this._issuer, audience: this._audience });
+        return this.createBasicToken(payload, options.secretKey || this._secretKey, options.expiresIn || jwtConfig.expiresIn, {
+            issuer: options.issuer || this._issuer,
+            audience: options.clientID
+        });
     }
-    createAccessToken(sub, scopes, secretKey, expiresIn, customClaims) {
+    createAccessToken(sub, scopes, options = {}, customClaims) {
         const payload = Object.assign({ sub, scope: scopes.join(' '), iat: Math.floor(Date.now() / 1000) }, customClaims);
-        return this.createBasicToken(payload, secretKey || this._secretKey, expiresIn || '15m', { issuer: this._issuer, audience: this._audience });
+        return this.createBasicToken(payload, options.secretKey || this._secretKey, options.expiresIn || '15m', {
+            issuer: options.issuer || this._issuer,
+            audience: options.audience || this._audience,
+            algorithm: 'HS256'
+        });
     }
-    createRefreshToken(sub, secretKey, expiresIn, customClaims) {
+    createRefreshToken(sub, options = {}, customClaims) {
         const payload = Object.assign({ sub, type: 'refresh', iat: Math.floor(Date.now() / 1000) }, customClaims);
-        return this.createBasicToken(payload, secretKey || this._secretKey, expiresIn || '30d', {
-            issuer: this._issuer,
-            audience: this._audience,
+        return this.createBasicToken(payload, options.secretKey || this._secretKey, options.expiresIn || '30d', {
+            issuer: options.issuer || this._issuer,
+            audience: options.audience || this._audience,
+            algorithm: 'HS256',
             jwtid: this.generateJti()
         });
     }
     verify(token, secretKey, options) {
-        return this.validateTokenBase(token, secretKey || this._secretKey, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience }));
+        return this.validateTokenBase(token, secretKey || this._secretKey, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience, algorithms: ['HS256'] }));
     }
     verifyDetailed(token, secretKey, options) {
-        return super.validateTokenDetailed(token, secretKey || this._secretKey, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience }));
+        return super.validateTokenDetailed(token, secretKey || this._secretKey, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience, algorithms: ['HS256'] }));
     }
     validateToken(token, secretKey, options) {
         return this.verify(token, secretKey, options);
@@ -6004,6 +5997,11 @@ class JwtManager extends Mixin {
     }
 }
 
+var Operatives;
+(function (Operatives) {
+    Operatives["CATALOG"] = "catalog";
+})(Operatives || (Operatives = {}));
+
 var TokenType;
 (function (TokenType) {
     TokenType["ID_TOKEN"] = "id_token";

package/dist/hemia-jwt-manager.js

@@ -10,11 +10,6 @@ var jwtConfig = {
     cleanCredentialSecret: 'clean-credential-secret-key',
 };
 
-exports.Operatives = void 0;
-(function (Operatives) {
-    Operatives["CATALOG"] = "catalog";
-})(exports.Operatives || (exports.Operatives = {}));
-
 function getDefaultExportFromCjs (x) {
 	return x && x.__esModule && Object.prototype.hasOwnProperty.call(x, 'default') ? x['default'] : x;
 }
@@ -2126,46 +2121,55 @@ const coerce$1 = (version, options) => {
 };
 var coerce_1 = coerce$1;
 
-class LRUCache {
-  constructor () {
-    this.max = 1000;
-    this.map = new Map();
-  }
+var lrucache;
+var hasRequiredLrucache;
 
-  get (key) {
-    const value = this.map.get(key);
-    if (value === undefined) {
-      return undefined
-    } else {
-      // Remove the key from the map and add it to the end
-      this.map.delete(key);
-      this.map.set(key, value);
-      return value
-    }
-  }
+function requireLrucache () {
+	if (hasRequiredLrucache) return lrucache;
+	hasRequiredLrucache = 1;
 
-  delete (key) {
-    return this.map.delete(key)
-  }
+	class LRUCache {
+	  constructor () {
+	    this.max = 1000;
+	    this.map = new Map();
+	  }
 
-  set (key, value) {
-    const deleted = this.delete(key);
+	  get (key) {
+	    const value = this.map.get(key);
+	    if (value === undefined) {
+	      return undefined
+	    } else {
+	      // Remove the key from the map and add it to the end
+	      this.map.delete(key);
+	      this.map.set(key, value);
+	      return value
+	    }
+	  }
 
-    if (!deleted && value !== undefined) {
-      // If cache is full, delete the least recently used item
-      if (this.map.size >= this.max) {
-        const firstKey = this.map.keys().next().value;
-        this.delete(firstKey);
-      }
+	  delete (key) {
+	    return this.map.delete(key)
+	  }
 
-      this.map.set(key, value);
-    }
+	  set (key, value) {
+	    const deleted = this.delete(key);
 
-    return this
-  }
-}
+	    if (!deleted && value !== undefined) {
+	      // If cache is full, delete the least recently used item
+	      if (this.map.size >= this.max) {
+	        const firstKey = this.map.keys().next().value;
+	        this.delete(firstKey);
+	      }
+
+	      this.map.set(key, value);
+	    }
+
+	    return this
+	  }
+	}
 
-var lrucache = LRUCache;
+	lrucache = LRUCache;
+	return lrucache;
+}
 
 var range;
 var hasRequiredRange;
@@ -2388,7 +2392,7 @@ function requireRange () {
 
 	range = Range;
 
-	const LRU = lrucache;
+	const LRU = requireLrucache();
 	const cache = new LRU();
 
 	const parseOptions = parseOptions_1;
@@ -5817,7 +5821,7 @@ var jwt = /*@__PURE__*/getDefaultExportFromCjs(jsonwebtoken);
 
 class Mixin {
     createBasicToken(payload, secret, expiresIn, options) {
-        const finalOptions = Object.assign(Object.assign({}, (options || {})), { expiresIn, issuer: (options === null || options === void 0 ? void 0 : options.issuer) || process.env.JWT_ISSUER || 'hemia-app', audience: (options === null || options === void 0 ? void 0 : options.audience) || process.env.JWT_AUDIENCE || 'hemia-api', algorithm: (options === null || options === void 0 ? void 0 : options.algorithm) || 'HS256' });
+        const finalOptions = Object.assign(Object.assign({}, (options || {})), { expiresIn, issuer: options === null || options === void 0 ? void 0 : options.issuer, audience: options === null || options === void 0 ? void 0 : options.audience, algorithm: (options === null || options === void 0 ? void 0 : options.algorithm) || 'HS256' });
         return jwt.sign(payload, secret, finalOptions);
     }
     validateTokenBase(token, secretKey, options) {
@@ -5893,61 +5897,50 @@ class Mixin {
 }
 
 class JwtManager extends Mixin {
-    constructor() {
+    constructor(issuer, audience) {
         super();
         this._secretKey = '';
         this._issuer = '';
         this._audience = '';
         this._secretKey = process.env.JWT_SECRET || jwtConfig.cleanCredentialSecret;
-        this._issuer = process.env.JWT_ISSUER || 'hemia-app';
-        this._audience = process.env.JWT_AUDIENCE || 'hemia-api';
+        this._issuer = issuer || process.env.JWT_ISSUER || 'hemia-app';
+        this._audience = audience || process.env.JWT_AUDIENCE || 'hemia-api';
         if (!this._secretKey) {
             throw new Error("JWT secret key is required.");
         }
     }
-    createToken(payload, secretKey, expiresIn, options) {
-        return this.createBasicToken(payload, secretKey || this._secretKey, expiresIn || jwtConfig.expiresIn, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience }));
-    }
-    createTokenWithSecret(payload, secretKey, expiresIn, options) {
-        return this.createBasicToken(payload, secretKey, expiresIn || jwtConfig.expiresIn, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience }));
-    }
-    createCleanCredentialsToken(operative = exports.Operatives.CATALOG, secretKey, expiresIn, customClaims) {
-        const payload = Object.assign({ accessType: operative }, customClaims);
-        return this.createBasicToken(payload, secretKey || this._secretKey, expiresIn || jwtConfig.expiresIn);
-    }
-    getTokenWithoutKey(payload, secretKey, expiresIn, options) {
-        return this.createToken(payload, secretKey, expiresIn, options);
-    }
-    getTokenWithKey(payload, secretKey, expiresIn, options) {
-        return this.createTokenWithSecret(payload, secretKey, expiresIn, options);
-    }
-    getTokenCleanCredentials(operative = exports.Operatives.CATALOG, secretKey, expiresIn) {
-        return this.createCleanCredentialsToken(operative, secretKey, expiresIn);
-    }
-    createIdToken(claims, secretKey, expiresIn, customClaims) {
+    createIdToken(claims, options = {}, customClaims) {
         if (!claims.sub) {
             throw new Error('sub (subject) claim is required for ID tokens');
         }
         const payload = Object.assign(Object.assign(Object.assign({}, claims), { iat: Math.floor(Date.now() / 1000) }), customClaims);
-        return this.createBasicToken(payload, secretKey || this._secretKey, expiresIn || jwtConfig.expiresIn, { issuer: this._issuer, audience: this._audience });
+        return this.createBasicToken(payload, options.secretKey || this._secretKey, options.expiresIn || jwtConfig.expiresIn, {
+            issuer: options.issuer || this._issuer,
+            audience: options.clientID
+        });
     }
-    createAccessToken(sub, scopes, secretKey, expiresIn, customClaims) {
+    createAccessToken(sub, scopes, options = {}, customClaims) {
         const payload = Object.assign({ sub, scope: scopes.join(' '), iat: Math.floor(Date.now() / 1000) }, customClaims);
-        return this.createBasicToken(payload, secretKey || this._secretKey, expiresIn || '15m', { issuer: this._issuer, audience: this._audience });
+        return this.createBasicToken(payload, options.secretKey || this._secretKey, options.expiresIn || '15m', {
+            issuer: options.issuer || this._issuer,
+            audience: options.audience || this._audience,
+            algorithm: 'HS256'
+        });
     }
-    createRefreshToken(sub, secretKey, expiresIn, customClaims) {
+    createRefreshToken(sub, options = {}, customClaims) {
         const payload = Object.assign({ sub, type: 'refresh', iat: Math.floor(Date.now() / 1000) }, customClaims);
-        return this.createBasicToken(payload, secretKey || this._secretKey, expiresIn || '30d', {
-            issuer: this._issuer,
-            audience: this._audience,
+        return this.createBasicToken(payload, options.secretKey || this._secretKey, options.expiresIn || '30d', {
+            issuer: options.issuer || this._issuer,
+            audience: options.audience || this._audience,
+            algorithm: 'HS256',
             jwtid: this.generateJti()
         });
     }
     verify(token, secretKey, options) {
-        return this.validateTokenBase(token, secretKey || this._secretKey, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience }));
+        return this.validateTokenBase(token, secretKey || this._secretKey, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience, algorithms: ['HS256'] }));
     }
     verifyDetailed(token, secretKey, options) {
-        return super.validateTokenDetailed(token, secretKey || this._secretKey, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience }));
+        return super.validateTokenDetailed(token, secretKey || this._secretKey, Object.assign(Object.assign({}, options), { issuer: (options === null || options === void 0 ? void 0 : options.issuer) || this._issuer, audience: (options === null || options === void 0 ? void 0 : options.audience) || this._audience, algorithms: ['HS256'] }));
     }
     validateToken(token, secretKey, options) {
         return this.verify(token, secretKey, options);
@@ -6006,6 +5999,11 @@ class JwtManager extends Mixin {
     }
 }
 
+exports.Operatives = void 0;
+(function (Operatives) {
+    Operatives["CATALOG"] = "catalog";
+})(exports.Operatives || (exports.Operatives = {}));
+
 exports.TokenType = void 0;
 (function (TokenType) {
     TokenType["ID_TOKEN"] = "id_token";

package/dist/types/services/jwt.service.d.ts

@@ -1,5 +1,4 @@
-import { SignOptions, JwtPayload, VerifyOptions } from 'jsonwebtoken';
-import { Operatives } from '../Enums/Enums';
+import { JwtPayload, VerifyOptions } from 'jsonwebtoken';
 import { Mixin } from '../mixin/jwt.mixin';
 import { StandardClaims } from '../interfaces/oidc-claims';
 import { TokenValidationResult } from '../types/token-validation';
@@ -7,16 +6,25 @@ export declare class JwtManager extends Mixin {
     private _secretKey;
     private _issuer;
     private _audience;
-    constructor();
-    createToken(payload: object, secretKey?: string, expiresIn?: string | number, options?: SignOptions): string;
-    createTokenWithSecret(payload: object, secretKey: string, expiresIn?: string | number, options?: SignOptions): string;
-    createCleanCredentialsToken(operative?: Operatives, secretKey?: string, expiresIn?: string | number, customClaims?: object): string;
-    getTokenWithoutKey(payload: object, secretKey?: string, expiresIn?: string | number, options?: SignOptions): string;
-    getTokenWithKey(payload: object, secretKey: string, expiresIn?: string | number, options?: SignOptions): string;
-    getTokenCleanCredentials(operative?: Operatives, secretKey?: string, expiresIn?: string | number): string;
-    createIdToken(claims: StandardClaims, secretKey?: string, expiresIn?: string | number, customClaims?: object): string;
-    createAccessToken(sub: string, scopes: string[], secretKey?: string, expiresIn?: string | number, customClaims?: object): string;
-    createRefreshToken(sub: string, secretKey?: string, expiresIn?: string | number, customClaims?: object): string;
+    constructor(issuer?: string, audience?: string);
+    createIdToken(claims: StandardClaims, options?: {
+        clientID?: string;
+        issuer?: string;
+        expiresIn?: string | number;
+        secretKey?: string;
+    }, customClaims?: object): string;
+    createAccessToken(sub: string, scopes: string[], options?: {
+        audience?: string;
+        issuer?: string;
+        expiresIn?: string | number;
+        secretKey?: string;
+    }, customClaims?: object): string;
+    createRefreshToken(sub: string, options?: {
+        audience?: string;
+        issuer?: string;
+        expiresIn?: string | number;
+        secretKey?: string;
+    }, customClaims?: object): string;
     verify(token: string, secretKey?: string, options?: VerifyOptions): JwtPayload | null;
     verifyDetailed(token: string, secretKey?: string, options?: VerifyOptions): TokenValidationResult;
     validateToken(token: string, secretKey?: string, options?: VerifyOptions): JwtPayload | null;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hemia/jwt-manager",
-  "version": "0.0.5",
+  "version": "0.0.6",
   "description": "Gestor de JWT seguro y extensible para aplicaciones Node.js",
   "main": "dist/hemia-jwt-manager.js",
   "module": "dist/hemia-jwt-manager.esm.js",