@holeauth/2fa-drizzle 0.0.1-alpha.0

package/dist/sqlite/index.d.ts

@@ -0,0 +1,138 @@
+import * as drizzle_orm from 'drizzle-orm';
+import * as drizzle_orm_sqlite_core from 'drizzle-orm/sqlite-core';
+import { SQLiteTableWithColumns } from 'drizzle-orm/sqlite-core';
+import { TwoFactorAdapter } from '@holeauth/plugin-2fa';
+
+type SqliteUsersTable = SQLiteTableWithColumns<any> & {
+    id: any;
+};
+interface CreateTwoFactorTablesOptions<U extends SqliteUsersTable> {
+    usersTable: U;
+    prefix?: string;
+}
+declare function createTwoFactorTables<U extends SqliteUsersTable>(opts: CreateTwoFactorTablesOptions<U>): {
+    tables: {
+        twoFactor: SQLiteTableWithColumns<{
+            name: string;
+            schema: undefined;
+            columns: {
+                userId: drizzle_orm_sqlite_core.SQLiteColumn<{
+                    name: "user_id";
+                    tableName: string;
+                    dataType: "string";
+                    columnType: "SQLiteText";
+                    data: string;
+                    driverParam: string;
+                    notNull: true;
+                    hasDefault: false;
+                    isPrimaryKey: true;
+                    isAutoincrement: false;
+                    hasRuntimeDefault: false;
+                    enumValues: [string, ...string[]];
+                    baseColumn: never;
+                    identity: undefined;
+                    generated: undefined;
+                }, object>;
+                secret: drizzle_orm_sqlite_core.SQLiteColumn<{
+                    name: "secret";
+                    tableName: string;
+                    dataType: "string";
+                    columnType: "SQLiteText";
+                    data: string;
+                    driverParam: string;
+                    notNull: true;
+                    hasDefault: false;
+                    isPrimaryKey: false;
+                    isAutoincrement: false;
+                    hasRuntimeDefault: false;
+                    enumValues: [string, ...string[]];
+                    baseColumn: never;
+                    identity: undefined;
+                    generated: undefined;
+                }, object>;
+                enabled: drizzle_orm_sqlite_core.SQLiteColumn<{
+                    name: "enabled";
+                    tableName: string;
+                    dataType: "boolean";
+                    columnType: "SQLiteBoolean";
+                    data: boolean;
+                    driverParam: number;
+                    notNull: true;
+                    hasDefault: true;
+                    isPrimaryKey: false;
+                    isAutoincrement: false;
+                    hasRuntimeDefault: false;
+                    enumValues: undefined;
+                    baseColumn: never;
+                    identity: undefined;
+                    generated: undefined;
+                }, object>;
+                recoveryCodes: drizzle_orm_sqlite_core.SQLiteColumn<{
+                    name: "recovery_codes";
+                    tableName: string;
+                    dataType: "json";
+                    columnType: "SQLiteTextJson";
+                    data: string[];
+                    driverParam: string;
+                    notNull: true;
+                    hasDefault: true;
+                    isPrimaryKey: false;
+                    isAutoincrement: false;
+                    hasRuntimeDefault: false;
+                    enumValues: undefined;
+                    baseColumn: never;
+                    identity: undefined;
+                    generated: undefined;
+                }, object>;
+                createdAt: drizzle_orm_sqlite_core.SQLiteColumn<{
+                    name: "created_at";
+                    tableName: string;
+                    dataType: "date";
+                    columnType: "SQLiteTimestamp";
+                    data: Date;
+                    driverParam: number;
+                    notNull: true;
+                    hasDefault: true;
+                    isPrimaryKey: false;
+                    isAutoincrement: false;
+                    hasRuntimeDefault: true;
+                    enumValues: undefined;
+                    baseColumn: never;
+                    identity: undefined;
+                    generated: undefined;
+                }, object>;
+                updatedAt: drizzle_orm_sqlite_core.SQLiteColumn<{
+                    name: "updated_at";
+                    tableName: string;
+                    dataType: "date";
+                    columnType: "SQLiteTimestamp";
+                    data: Date;
+                    driverParam: number;
+                    notNull: true;
+                    hasDefault: true;
+                    isPrimaryKey: false;
+                    isAutoincrement: false;
+                    hasRuntimeDefault: true;
+                    enumValues: undefined;
+                    baseColumn: never;
+                    identity: undefined;
+                    generated: undefined;
+                }, object>;
+            };
+            dialect: "sqlite";
+        }>;
+    };
+    relations: {
+        twoFactorRelations: drizzle_orm.Relations<string, {
+            user: drizzle_orm.One<U["_"]["name"], true>;
+        }>;
+    };
+};
+type Tables = ReturnType<typeof createTwoFactorTables>['tables'];
+interface CreateTwoFactorAdapterOptions {
+    db: any;
+    tables: Tables;
+}
+declare function createTwoFactorAdapter(opts: CreateTwoFactorAdapterOptions): TwoFactorAdapter;
+
+export { type CreateTwoFactorAdapterOptions, type CreateTwoFactorTablesOptions, type SqliteUsersTable, createTwoFactorAdapter, createTwoFactorTables };

package/dist/sqlite/index.js

@@ -0,0 +1,68 @@
+import { sqliteTable, integer, text } from 'drizzle-orm/sqlite-core';
+import { relations, eq } from 'drizzle-orm';
+
+// src/sqlite/index.ts
+function createTwoFactorTables(opts) {
+  const { usersTable, prefix = "holeauth_2fa_" } = opts;
+  const p = (s) => `${prefix}${s}`;
+  const twoFactor = sqliteTable(p("credential"), {
+    userId: text("user_id").primaryKey().references(() => usersTable.id, { onDelete: "cascade" }),
+    secret: text("secret").notNull(),
+    enabled: integer("enabled", { mode: "boolean" }).notNull().default(false),
+    recoveryCodes: text("recovery_codes", { mode: "json" }).$type().notNull().default([]),
+    createdAt: integer("created_at", { mode: "timestamp_ms" }).notNull().$defaultFn(() => /* @__PURE__ */ new Date()),
+    updatedAt: integer("updated_at", { mode: "timestamp_ms" }).notNull().$defaultFn(() => /* @__PURE__ */ new Date())
+  });
+  const twoFactorRelations = relations(twoFactor, ({ one }) => ({
+    user: one(usersTable, { fields: [twoFactor.userId], references: [usersTable.id] })
+  }));
+  return { tables: { twoFactor }, relations: { twoFactorRelations } };
+}
+var rowToRecord = (r) => ({
+  userId: String(r.userId),
+  secret: String(r.secret),
+  enabled: Boolean(r.enabled),
+  recoveryCodes: r.recoveryCodes ?? [],
+  createdAt: r.createdAt,
+  updatedAt: r.updatedAt
+});
+function createTwoFactorAdapter(opts) {
+  const { db, tables } = opts;
+  const { twoFactor } = tables;
+  return {
+    async getByUserId(userId) {
+      const rows = await db.select().from(twoFactor).where(eq(twoFactor.userId, userId)).limit(1);
+      return rows[0] ? rowToRecord(rows[0]) : null;
+    },
+    async upsert(record) {
+      const [row] = await db.insert(twoFactor).values({
+        userId: record.userId,
+        secret: record.secret,
+        enabled: record.enabled,
+        recoveryCodes: record.recoveryCodes
+      }).onConflictDoUpdate({
+        target: twoFactor.userId,
+        set: {
+          secret: record.secret,
+          enabled: record.enabled,
+          recoveryCodes: record.recoveryCodes,
+          updatedAt: /* @__PURE__ */ new Date()
+        }
+      }).returning();
+      return rowToRecord(row);
+    },
+    async update(userId, patch) {
+      const toSet = { ...patch, updatedAt: /* @__PURE__ */ new Date() };
+      delete toSet.userId;
+      const [row] = await db.update(twoFactor).set(toSet).where(eq(twoFactor.userId, userId)).returning();
+      return row ? rowToRecord(row) : null;
+    },
+    async delete(userId) {
+      await db.delete(twoFactor).where(eq(twoFactor.userId, userId));
+    }
+  };
+}
+
+export { createTwoFactorAdapter, createTwoFactorTables };
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/sqlite/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/sqlite/index.ts"],"names":[],"mappings":";;;;AAYO,SAAS,sBAAkD,IAAA,EAAuC;AACvG,EAAA,MAAM,EAAE,UAAA,EAAY,MAAA,GAAS,eAAA,EAAgB,GAAI,IAAA;AACjD,EAAA,MAAM,IAAI,CAAC,CAAA,KAAc,CAAA,EAAG,MAAM,GAAG,CAAC,CAAA,CAAA;AACtC,EAAA,MAAM,SAAA,GAAY,WAAA,CAAY,CAAA,CAAE,YAAY,CAAA,EAAG;AAAA,IAC7C,MAAA,EAAQ,IAAA,CAAK,SAAS,CAAA,CACnB,UAAA,EAAW,CACX,UAAA,CAAW,MAAM,UAAA,CAAW,EAAA,EAAI,EAAE,QAAA,EAAU,WAAW,CAAA;AAAA,IAC1D,MAAA,EAAQ,IAAA,CAAK,QAAQ,CAAA,CAAE,OAAA,EAAQ;AAAA,IAC/B,OAAA,EAAS,OAAA,CAAQ,SAAA,EAAW,EAAE,IAAA,EAAM,SAAA,EAAW,CAAA,CAAE,OAAA,EAAQ,CAAE,OAAA,CAAQ,KAAK,CAAA;AAAA,IACxE,aAAA,EAAe,IAAA,CAAK,gBAAA,EAAkB,EAAE,MAAM,MAAA,EAAQ,CAAA,CAAE,KAAA,EAAgB,CAAE,OAAA,EAAQ,CAAE,OAAA,CAAQ,EAAE,CAAA;AAAA,IAC9F,SAAA,EAAW,OAAA,CAAQ,YAAA,EAAc,EAAE,MAAM,cAAA,EAAgB,CAAA,CACtD,OAAA,EAAQ,CACR,UAAA,CAAW,sBAAM,IAAI,MAAM,CAAA;AAAA,IAC9B,SAAA,EAAW,OAAA,CAAQ,YAAA,EAAc,EAAE,MAAM,cAAA,EAAgB,CAAA,CACtD,OAAA,EAAQ,CACR,UAAA,CAAW,sBAAM,IAAI,MAAM;AAAA,GAC/B,CAAA;AACD,EAAA,MAAM,qBAAqB,SAAA,CAAU,SAAA,EAAW,CAAC,EAAE,KAAI,MAAO;AAAA,IAC5D,IAAA,EAAM,GAAA,CAAI,UAAA,EAAY,EAAE,QAAQ,CAAC,SAAA,CAAU,MAAM,CAAA,EAAG,UAAA,EAAY,CAAC,UAAA,CAAW,EAAE,GAAG;AAAA,GACnF,CAAE,CAAA;AACF,EAAA,OAAO,EAAE,QAAQ,EAAE,SAAA,IAAa,SAAA,EAAW,EAAE,oBAAmB,EAAE;AACpE;AAUA,IAAM,WAAA,GAAc,CAAC,CAAA,MAAiD;AAAA,EACpE,MAAA,EAAQ,MAAA,CAAO,CAAA,CAAE,MAAM,CAAA;AAAA,EACvB,MAAA,EAAQ,MAAA,CAAO,CAAA,CAAE,MAAM,CAAA;AAAA,EACvB,OAAA,EAAS,OAAA,CAAQ,CAAA,CAAE,OAAO,CAAA;AAAA,EAC1B,aAAA,EAAgB,CAAA,CAAE,aAAA,IAAiD,EAAC;AAAA,EACpE,WAAW,CAAA,CAAE,SAAA;AAAA,EACb,WAAW,CAAA,CAAE;AACf,CAAA,CAAA;AAEO,SAAS,uBAAuB,IAAA,EAAuD;AAC5F,EAAA,MAAM,EAAE,EAAA,EAAI,MAAA,EAAO,GAAI,IAAA;AACvB,EAAA,MAAM,EAAE,WAAU,GAAI,MAAA;AACtB,EAAA,OAAO;AAAA,IACL,MAAM,YAAY,MAAA,EAAQ;AACxB,MAAA,MAAM,OAAO,MAAM,EAAA,CAAG,MAAA,EAAO,CAAE,KAAK,SAAS,CAAA,CAAE,KAAA,CAAM,EAAA,CAAG,UAAU,MAAA,EAAQ,MAAM,CAAC,CAAA,CAAE,MAAM,CAAC,CAAA;AAC1F,MAAA,OAAO,KAAK,CAAC,CAAA,GAAI,YAAY,IAAA,CAAK,CAAC,CAAC,CAAA,GAAI,IAAA;AAAA,IAC1C,CAAA;AAAA,IACA,MAAM,OAAO,MAAA,EAAQ;AACnB,MAAA,MAAM,CAAC,GAAG,CAAA,GAAI,MAAM,GACjB,MAAA,CAAO,SAAS,EAChB,MAAA,CAAO;AAAA,QACN,QAAQ,MAAA,CAAO,MAAA;AAAA,QACf,QAAQ,MAAA,CAAO,MAAA;AAAA,QACf,SAAS,MAAA,CAAO,OAAA;AAAA,QAChB,eAAe,MAAA,CAAO;AAAA,OACvB,EACA,kBAAA,CAAmB;AAAA,QAClB,QAAQ,SAAA,CAAU,MAAA;AAAA,QAClB,GAAA,EAAK;AAAA,UACH,QAAQ,MAAA,CAAO,MAAA;AAAA,UACf,SAAS,MAAA,CAAO,OAAA;AAAA,UAChB,eAAe,MAAA,CAAO,aAAA;AAAA,UACtB,SAAA,sBAAe,IAAA;AAAK;AACtB,OACD,EACA,SAAA,EAAU;AACb,MAAA,OAAO,YAAY,GAAG,CAAA;AAAA,IACxB,CAAA;AAAA,IACA,MAAM,MAAA,CAAO,MAAA,EAAQ,KAAA,EAAO;AAC1B,MAAA,MAAM,QAAiC,EAAE,GAAG,OAAO,SAAA,kBAAW,IAAI,MAAK,EAAE;AACzE,MAAA,OAAO,KAAA,CAAM,MAAA;AACb,MAAA,MAAM,CAAC,GAAG,CAAA,GAAI,MAAM,EAAA,CAAG,MAAA,CAAO,SAAS,CAAA,CAAE,GAAA,CAAI,KAAK,CAAA,CAAE,MAAM,EAAA,CAAG,SAAA,CAAU,QAAQ,MAAM,CAAC,EAAE,SAAA,EAAU;AAClG,MAAA,OAAO,GAAA,GAAM,WAAA,CAAY,GAAG,CAAA,GAAI,IAAA;AAAA,IAClC,CAAA;AAAA,IACA,MAAM,OAAO,MAAA,EAAQ;AACnB,MAAA,MAAM,EAAA,CAAG,OAAO,SAAS,CAAA,CAAE,MAAM,EAAA,CAAG,SAAA,CAAU,MAAA,EAAQ,MAAM,CAAC,CAAA;AAAA,IAC/D;AAAA,GACF;AACF","file":"index.js","sourcesContent":["import { sqliteTable, text, integer, type SQLiteTableWithColumns } from 'drizzle-orm/sqlite-core';\nimport { relations, eq } from 'drizzle-orm';\nimport type { TwoFactorAdapter, TwoFactorRecord } from '@holeauth/plugin-2fa';\n\n// eslint-disable-next-line @typescript-eslint/no-explicit-any\nexport type SqliteUsersTable = SQLiteTableWithColumns<any> & { id: any };\n\nexport interface CreateTwoFactorTablesOptions<U extends SqliteUsersTable> {\n  usersTable: U;\n  prefix?: string;\n}\n\nexport function createTwoFactorTables<U extends SqliteUsersTable>(opts: CreateTwoFactorTablesOptions<U>) {\n  const { usersTable, prefix = 'holeauth_2fa_' } = opts;\n  const p = (s: string) => `${prefix}${s}`;\n  const twoFactor = sqliteTable(p('credential'), {\n    userId: text('user_id')\n      .primaryKey()\n      .references(() => usersTable.id, { onDelete: 'cascade' }),\n    secret: text('secret').notNull(),\n    enabled: integer('enabled', { mode: 'boolean' }).notNull().default(false),\n    recoveryCodes: text('recovery_codes', { mode: 'json' }).$type<string[]>().notNull().default([]),\n    createdAt: integer('created_at', { mode: 'timestamp_ms' })\n      .notNull()\n      .$defaultFn(() => new Date()),\n    updatedAt: integer('updated_at', { mode: 'timestamp_ms' })\n      .notNull()\n      .$defaultFn(() => new Date()),\n  });\n  const twoFactorRelations = relations(twoFactor, ({ one }) => ({\n    user: one(usersTable, { fields: [twoFactor.userId], references: [usersTable.id] }),\n  }));\n  return { tables: { twoFactor }, relations: { twoFactorRelations } };\n}\n\ntype Tables = ReturnType<typeof createTwoFactorTables>['tables'];\n\nexport interface CreateTwoFactorAdapterOptions {\n  // eslint-disable-next-line @typescript-eslint/no-explicit-any\n  db: any;\n  tables: Tables;\n}\n\nconst rowToRecord = (r: Record<string, unknown>): TwoFactorRecord => ({\n  userId: String(r.userId),\n  secret: String(r.secret),\n  enabled: Boolean(r.enabled),\n  recoveryCodes: (r.recoveryCodes as string[] | null | undefined) ?? [],\n  createdAt: r.createdAt as Date | undefined,\n  updatedAt: r.updatedAt as Date | undefined,\n});\n\nexport function createTwoFactorAdapter(opts: CreateTwoFactorAdapterOptions): TwoFactorAdapter {\n  const { db, tables } = opts;\n  const { twoFactor } = tables;\n  return {\n    async getByUserId(userId) {\n      const rows = await db.select().from(twoFactor).where(eq(twoFactor.userId, userId)).limit(1);\n      return rows[0] ? rowToRecord(rows[0]) : null;\n    },\n    async upsert(record) {\n      const [row] = await db\n        .insert(twoFactor)\n        .values({\n          userId: record.userId,\n          secret: record.secret,\n          enabled: record.enabled,\n          recoveryCodes: record.recoveryCodes,\n        })\n        .onConflictDoUpdate({\n          target: twoFactor.userId,\n          set: {\n            secret: record.secret,\n            enabled: record.enabled,\n            recoveryCodes: record.recoveryCodes,\n            updatedAt: new Date(),\n          },\n        })\n        .returning();\n      return rowToRecord(row);\n    },\n    async update(userId, patch) {\n      const toSet: Record<string, unknown> = { ...patch, updatedAt: new Date() };\n      delete toSet.userId;\n      const [row] = await db.update(twoFactor).set(toSet).where(eq(twoFactor.userId, userId)).returning();\n      return row ? rowToRecord(row) : null;\n    },\n    async delete(userId) {\n      await db.delete(twoFactor).where(eq(twoFactor.userId, userId));\n    },\n  };\n}\n"]}

package/package.json

@@ -0,0 +1,79 @@
+{
+  "name": "@holeauth/2fa-drizzle",
+  "version": "0.0.1-alpha.0",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/robert-kratz/holeauth.git",
+    "directory": "packages/2fa-drizzle"
+  },
+  "description": "Drizzle adapter for @holeauth/plugin-2fa (TOTP + recovery codes).",
+  "license": "MIT",
+  "author": "Robert Kratz",
+  "type": "module",
+  "sideEffects": false,
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "require": "./dist/index.cjs"
+    },
+    "./pg": {
+      "types": "./dist/pg/index.d.ts",
+      "import": "./dist/pg/index.js",
+      "require": "./dist/pg/index.cjs"
+    },
+    "./mysql": {
+      "types": "./dist/mysql/index.d.ts",
+      "import": "./dist/mysql/index.js",
+      "require": "./dist/mysql/index.cjs"
+    },
+    "./sqlite": {
+      "types": "./dist/sqlite/index.d.ts",
+      "import": "./dist/sqlite/index.js",
+      "require": "./dist/sqlite/index.cjs"
+    },
+    "./package.json": "./package.json"
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE"
+  ],
+  "publishConfig": {
+    "access": "public",
+    "provenance": true
+  },
+  "peerDependencies": {
+    "drizzle-orm": ">=0.33.0",
+    "@holeauth/plugin-2fa": "0.0.1-alpha.0"
+  },
+  "devDependencies": {
+    "@testcontainers/mysql": "^11.14.0",
+    "@testcontainers/postgresql": "^11.14.0",
+    "@types/better-sqlite3": "^7.6.13",
+    "@types/node": "^20.16.10",
+    "@types/pg": "^8.11.10",
+    "@vitest/coverage-v8": "^2.1.9",
+    "better-sqlite3": "^12.9.0",
+    "drizzle-orm": "^0.36.0",
+    "mysql2": "^3.22.2",
+    "pg": "^8.13.0",
+    "testcontainers": "^11.14.0",
+    "tsup": "^8.3.0",
+    "typescript": "^5.6.2",
+    "vitest": "^2.1.2",
+    "@holeauth/eslint-config": "0.0.0",
+    "@holeauth/plugin-2fa": "0.0.1-alpha.0",
+    "@holeauth/tsconfig": "0.0.0"
+  },
+  "scripts": {
+    "build": "tsup",
+    "dev": "tsup --watch",
+    "clean": "rm -rf dist .turbo",
+    "lint": "echo 'lint skipped'",
+    "typecheck": "tsc --noEmit",
+    "test": "vitest run --passWithNoTests",
+    "test:coverage": "vitest run --coverage"
+  }
+}