npm - @jmlq/auth - Versions diffs - 0.0.1-alpha.1 - Mend

@jmlq/auth 0.0.1-alpha.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (332) hide show

package/dist/src/domain/props/index.js ADDED Viewed

@@ -0,0 +1,18 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./entities"), exports);
+__exportStar(require("./jwt"), exports);

package/dist/src/domain/props/jwt/create-payload.props.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+import { JwtUser } from ".";
+import { JwtTokenServiceConfig } from "../../../shared";
+export interface ICreatePayloadProps {
+    user: JwtUser;
+    expiresIn: string | undefined;
+    defaultExpirationMs: number;
+    customClaims?: Record<string, any>;
+    config: JwtTokenServiceConfig;
+}

package/dist/src/domain/props/jwt/create-payload.props.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist/src/domain/props/jwt/generate-access-token.props.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import { JwtUser } from ".";
+import { JwtTokenServiceConfig } from "../../../shared";
+export interface IGenerateAccessTokenProps {
+    user: JwtUser;
+    config: JwtTokenServiceConfig;
+    expiresIn?: string;
+    customClaims?: Record<string, any>;
+}

package/dist/src/domain/props/jwt/generate-access-token.props.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist/src/domain/props/jwt/generate-refresh-token.props.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import { JwtUser } from ".";
+import { JwtTokenServiceConfig } from "../../../shared";
+export interface IGenerateRefreshTokenProps {
+    user: JwtUser;
+    config: JwtTokenServiceConfig;
+    expiresIn?: string;
+    customClaims?: Record<string, any>;
+}

package/dist/src/domain/props/jwt/generate-refresh-token.props.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist/src/domain/props/jwt/generate-token.props.d.ts ADDED Viewed

@@ -0,0 +1,10 @@
+import { JwtUser } from ".";
+import { JwtTokenServiceConfig } from "../../../shared";
+export interface IGenerateTokenProps {
+    user: JwtUser;
+    expiresIn: string | undefined;
+    defaultExpirationMs: number;
+    secret: string;
+    config: JwtTokenServiceConfig;
+    customClaims?: Record<string, any>;
+}

package/dist/src/domain/props/jwt/generate-token.props.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist/src/domain/props/jwt/index.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+export * from "./create-payload.props";
+export * from "./generate-access-token.props";
+export * from "./generate-refresh-token.props";
+export * from "./generate-token.props";
+export * from "./jwt-user";

package/dist/src/domain/props/jwt/index.js ADDED Viewed

@@ -0,0 +1,21 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./create-payload.props"), exports);
+__exportStar(require("./generate-access-token.props"), exports);
+__exportStar(require("./generate-refresh-token.props"), exports);
+__exportStar(require("./generate-token.props"), exports);
+__exportStar(require("./jwt-user"), exports);

package/dist/src/domain/props/jwt/jwt-subject.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+export interface JwtUser {
+    id: string;
+    email: string;
+    roles: {
+        role: string;
+    }[];
+}

package/dist/src/domain/props/jwt/jwt-subject.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist/src/domain/props/jwt/jwt-user.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+export interface JwtUser {
+    id: string;
+    email: string;
+    roles: {
+        role: string;
+    }[];
+}

package/dist/src/domain/props/jwt/jwt-user.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist/src/domain/props/services/generate-access-token.props.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import { User } from "../..";
+import { JwtTokenServiceConfig } from "../../../shared";
+export interface IGenerateAccessTokenProps {
+    user: User;
+    config: JwtTokenServiceConfig;
+    expiresIn?: string;
+    customClaims?: Record<string, any>;
+}

package/dist/src/domain/props/services/generate-access-token.props.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist/src/domain/props/services/generate-refresh-token.props.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import { JwtTokenServiceConfig } from "../../../shared";
+import { User } from "../../entities";
+export interface IGenerateRefreshTokenProps {
+    user: User;
+    config: JwtTokenServiceConfig;
+    expiresIn?: string;
+    customClaims?: Record<string, any>;
+}

package/dist/src/domain/props/services/generate-refresh-token.props.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist/src/domain/props/services/index.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export * from "./generate-access-token.props";
2	+ export * from "./generate-refresh-token.props";

package/dist/src/domain/props/services/index.js ADDED Viewed

@@ -0,0 +1,18 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./generate-access-token.props"), exports);
+__exportStar(require("./generate-refresh-token.props"), exports);

package/dist/src/domain/services/index.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export * from "./password-policy.service";

package/dist/src/domain/services/index.js ADDED Viewed

@@ -0,0 +1,17 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./password-policy.service"), exports);

package/dist/src/domain/services/password-policy.service.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import { IPasswordPolicy } from "../ports";
+export declare class DefaultPasswordPolicy implements IPasswordPolicy {
+    validateStrength(password: string): {
+        isValid: boolean;
+        errors: string[];
+    };
+    getRequirements(): string[];
+}

package/dist/src/domain/services/password-policy.service.js ADDED Viewed

@@ -0,0 +1,29 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DefaultPasswordPolicy = void 0;
+class DefaultPasswordPolicy {
+    validateStrength(password) {
+        const errors = [];
+        if (password.length < 8)
+            errors.push("Password must be at least 8 characters long");
+        if (!/[A-Z]/.test(password))
+            errors.push("Password must include at least one uppercase letter");
+        if (!/[a-z]/.test(password))
+            errors.push("Password must include at least one lowercase letter");
+        if (!/\d/.test(password))
+            errors.push("Password must include at least one number");
+        if (!/[!@#$%^&*]/.test(password))
+            errors.push("Password must include at least one special character (!@#$%^&*)");
+        return { isValid: errors.length === 0, errors };
+    }
+    getRequirements() {
+        return [
+            "Minimum 8 characters",
+            "At least one uppercase letter",
+            "At least one lowercase letter",
+            "At least one number",
+            "At least one special character (!@#$%^&*)",
+        ];
+    }
+}
+exports.DefaultPasswordPolicy = DefaultPasswordPolicy;

package/dist/src/domain/services/token.service.port.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+import { IJWTPayload } from "../ports";
+import { IGenerateAccessTokenProps, IGenerateRefreshTokenProps } from "../props";
+export interface ITokenService {
+    generateAccessToken(props: IGenerateAccessTokenProps): Promise<string>;
+    generateRefreshToken(props: IGenerateRefreshTokenProps): Promise<string>;
+    verifyAccessToken(token: string): Promise<IJWTPayload>;
+    verifyRefreshToken(token: string): Promise<IJWTPayload>;
+    getTokenExpiration(token: string): Promise<Date>;
+}

package/dist/src/domain/services/token.service.port.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist/src/index.d.ts ADDED Viewed

@@ -0,0 +1,78 @@
+export * from "./application";
+export * from "./domain";
+export * from "./infrastructure";
+export * from "./shared";
+/**
+ * Quick Start Example:
+ *
+ * ```typescript
+ * import {
+ *   AuthServiceFactory,
+ *   IAuthConfig,
+ *   InMemoryUserRepository,
+ *   InMemoryCredentialRepository
+ * } from '@ml-dev-core/jwt.auth';
+ *
+ * const config: IAuthConfig = {
+ *   jwt: {
+ *     accessTokenSecret: 'your-secret',
+ *     refreshTokenSecret: 'your-refresh-secret',
+ *     accessTokenExpirationMs: 15 * 60 * 1000,
+ *     refreshTokenExpirationMs: 7 * 24 * 60 * 60 * 1000,
+ *     accessTokenExpiration: '15m',
+ *     refreshTokenExpiration: '7d'
+ *   },
+ *   bcrypt: { saltRounds: 12 },
+ *   algorithm: 'HS256',
+ *   info: {
+ *     issuer: 'your-app',
+ *     audience: 'your-client'
+ *   }
+ * };
+ *
+ * const authServices = AuthServiceFactory.create(
+ *   config,
+ *   new InMemoryUserRepository(),
+ *   new InMemoryCredentialRepository()
+ * );
+ *
+ * // Use authServices.registerUserUseCase, loginWithPasswordUseCase, etc.
+ * ```
+ */
+/**
+ * Quick Start Example:
+ *
+ * ```typescript
+ * import {
+ *   AuthServiceFactory,
+ *   IAuthConfig,
+ *   InMemoryUserRepository,
+ *   InMemoryCredentialRepository
+ * } from '@ml-dev-core/jwt.auth';
+ *
+ * const config: IAuthConfig = {
+ *   jwt: {
+ *     accessTokenSecret: 'your-secret',
+ *     refreshTokenSecret: 'your-refresh-secret',
+ *     accessTokenExpirationMs: 15 * 60 * 1000,
+ *     refreshTokenExpirationMs: 7 * 24 * 60 * 60 * 1000,
+ *     accessTokenExpiration: '15m',
+ *     refreshTokenExpiration: '7d'
+ *   },
+ *   bcrypt: { saltRounds: 12 },
+ *   algorithm: 'HS256',
+ *   info: {
+ *     issuer: 'your-app',
+ *     audience: 'your-client'
+ *   }
+ * };
+ *
+ * const authServices = AuthServiceFactory.create(
+ *   config,
+ *   new InMemoryUserRepository(),
+ *   new InMemoryCredentialRepository()
+ * );
+ *
+ * // Use authServices.registerUserUseCase, loginWithPasswordUseCase, etc.
+ * ```
+ */

package/dist/src/index.js ADDED Viewed

@@ -0,0 +1,94 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./application"), exports);
+__exportStar(require("./domain"), exports);
+__exportStar(require("./infrastructure"), exports);
+__exportStar(require("./shared"), exports);
+/**
+ * Quick Start Example:
+ *
+ * ```typescript
+ * import {
+ *   AuthServiceFactory,
+ *   IAuthConfig,
+ *   InMemoryUserRepository,
+ *   InMemoryCredentialRepository
+ * } from '@ml-dev-core/jwt.auth';
+ *
+ * const config: IAuthConfig = {
+ *   jwt: {
+ *     accessTokenSecret: 'your-secret',
+ *     refreshTokenSecret: 'your-refresh-secret',
+ *     accessTokenExpirationMs: 15 * 60 * 1000,
+ *     refreshTokenExpirationMs: 7 * 24 * 60 * 60 * 1000,
+ *     accessTokenExpiration: '15m',
+ *     refreshTokenExpiration: '7d'
+ *   },
+ *   bcrypt: { saltRounds: 12 },
+ *   algorithm: 'HS256',
+ *   info: {
+ *     issuer: 'your-app',
+ *     audience: 'your-client'
+ *   }
+ * };
+ *
+ * const authServices = AuthServiceFactory.create(
+ *   config,
+ *   new InMemoryUserRepository(),
+ *   new InMemoryCredentialRepository()
+ * );
+ *
+ * // Use authServices.registerUserUseCase, loginWithPasswordUseCase, etc.
+ * ```
+ */
+/**
+ * Quick Start Example:
+ *
+ * ```typescript
+ * import {
+ *   AuthServiceFactory,
+ *   IAuthConfig,
+ *   InMemoryUserRepository,
+ *   InMemoryCredentialRepository
+ * } from '@ml-dev-core/jwt.auth';
+ *
+ * const config: IAuthConfig = {
+ *   jwt: {
+ *     accessTokenSecret: 'your-secret',
+ *     refreshTokenSecret: 'your-refresh-secret',
+ *     accessTokenExpirationMs: 15 * 60 * 1000,
+ *     refreshTokenExpirationMs: 7 * 24 * 60 * 60 * 1000,
+ *     accessTokenExpiration: '15m',
+ *     refreshTokenExpiration: '7d'
+ *   },
+ *   bcrypt: { saltRounds: 12 },
+ *   algorithm: 'HS256',
+ *   info: {
+ *     issuer: 'your-app',
+ *     audience: 'your-client'
+ *   }
+ * };
+ *
+ * const authServices = AuthServiceFactory.create(
+ *   config,
+ *   new InMemoryUserRepository(),
+ *   new InMemoryCredentialRepository()
+ * );
+ *
+ * // Use authServices.registerUserUseCase, loginWithPasswordUseCase, etc.
+ * ```
+ */

package/dist/src/infrastructure/index.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+export * from "./jwt";
+export * from "./repositories";
+export * from "./security";
+export * from "./services";
+export * from "./types";

package/dist/src/infrastructure/index.js ADDED Viewed

@@ -0,0 +1,21 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./jwt"), exports);
+__exportStar(require("./repositories"), exports);
+__exportStar(require("./security"), exports);
+__exportStar(require("./services"), exports);
+__exportStar(require("./types"), exports);

package/dist/src/infrastructure/jwt/factory/index.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export * from "./signature-strategy.factory";

package/dist/src/infrastructure/jwt/factory/index.js ADDED Viewed

@@ -0,0 +1,17 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./signature-strategy.factory"), exports);

package/dist/src/infrastructure/jwt/factory/signature-strategy.factory.d.ts ADDED Viewed

@@ -0,0 +1,21 @@
+import { ISignatureStrategy, ISignatureStrategyFactory } from "../../../domain/ports";
+import { AlgorithmName, AnyAlgorithm, Base64UrlEncoder } from "../../../shared";
+/**
+ * Selector de estrategia de firma JWT (HMAC, RSA, ECDSA).
+ * Infraestructura: implementa el port del dominio.
+ */
+export declare class SignatureStrategyFactory implements ISignatureStrategyFactory {
+    private readonly encoder;
+    constructor(encoder?: Base64UrlEncoder);
+    /**
+     * Devuelve la lista de algoritmos soportados por este factory.
+     */
+    supported(): ReadonlyArray<AlgorithmName>;
+    /**
+     * Crea la estrategia adecuada según el algoritmo (HS*, RS*, ES*).
+     */
+    create(algorithm: AnyAlgorithm): ISignatureStrategy;
+    private isHmacAlgorithm;
+    private isRsaAlgorithm;
+    private isEcdsaAlgorithm;
+}

package/dist/src/infrastructure/jwt/factory/signature-strategy.factory.js ADDED Viewed

@@ -0,0 +1,61 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SignatureStrategyFactory = void 0;
+const domain_1 = require("../../../domain");
+const shared_1 = require("../../../shared");
+const strategies_1 = require("../strategies");
+// Prepara sets para membership rápido (evita recalcular Object.values en cada llamada)
+const HMAC_SET = new Set(Object.values(shared_1.algorithms.hmac));
+const RSA_SET = new Set([
+    ...Object.values(shared_1.algorithms.rsa),
+    // Si soportas PSS (PS256, PS384, PS512), añádelos aquí:
+    // ...Object.values(algoritms.rsaPss),
+]);
+const ECDSA_SET = new Set(Object.values(shared_1.algorithms.ecdsa));
+/**
+ * Selector de estrategia de firma JWT (HMAC, RSA, ECDSA).
+ * Infraestructura: implementa el port del dominio.
+ */
+class SignatureStrategyFactory {
+    constructor(encoder = new shared_1.Base64UrlEncoder()) {
+        this.encoder = encoder;
+    }
+    /**
+     * Devuelve la lista de algoritmos soportados por este factory.
+     */
+    supported() {
+        return [
+            ...Object.values(shared_1.algorithms.hmac),
+            ...Object.values(shared_1.algorithms.rsa),
+            ...Object.values(shared_1.algorithms.ecdsa),
+            // Si más adelante agregas PSS:
+            // ...Object.values(algorithms.rsaPss),
+        ];
+    }
+    /**
+     * Crea la estrategia adecuada según el algoritmo (HS*, RS*, ES*).
+     */
+    create(algorithm) {
+        const alg = algorithm.toUpperCase(); // defensivo
+        if (this.isHmacAlgorithm(alg)) {
+            return new strategies_1.HmacSignatureStrategy(alg, this.encoder);
+        }
+        if (this.isRsaAlgorithm(alg)) {
+            return new strategies_1.RsaSignatureStrategy(alg, this.encoder);
+        }
+        if (this.isEcdsaAlgorithm(alg)) {
+            return new strategies_1.EcdsaSignatureStrategy(alg, this.encoder);
+        }
+        throw new domain_1.UnsupportedAlgorithmError(`Unsupported algorithm: ${algorithm}`);
+    }
+    isHmacAlgorithm(algorithm) {
+        return HMAC_SET.has(algorithm);
+    }
+    isRsaAlgorithm(algorithm) {
+        return RSA_SET.has(algorithm);
+    }
+    isEcdsaAlgorithm(algorithm) {
+        return ECDSA_SET.has(algorithm);
+    }
+}
+exports.SignatureStrategyFactory = SignatureStrategyFactory;

package/dist/src/infrastructure/jwt/index.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+export * from "./factory";
+export * from "./strategies";
+export * from "./token";

package/dist/src/infrastructure/jwt/index.js ADDED Viewed

@@ -0,0 +1,19 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./factory"), exports);
+__exportStar(require("./strategies"), exports);
+__exportStar(require("./token"), exports);

package/dist/src/infrastructure/jwt/signature-strategy.factory.d.ts ADDED Viewed

@@ -0,0 +1,21 @@
+import { ISignatureStrategy, ISignatureStrategyFactory } from "../../domain/ports";
+import { AlgorithmName, AnyAlgorithm, Base64UrlEncoder } from "../../shared";
+/**
+ * Selector de estrategia de firma JWT (HMAC, RSA, ECDSA).
+ * Infraestructura: implementa el port del dominio.
+ */
+export declare class SignatureStrategyFactory implements ISignatureStrategyFactory {
+    private readonly encoder;
+    constructor(encoder?: Base64UrlEncoder);
+    /**
+     * Devuelve la lista de algoritmos soportados por este factory.
+     */
+    supported(): ReadonlyArray<AlgorithmName>;
+    /**
+     * Crea la estrategia adecuada según el algoritmo (HS*, RS*, ES*).
+     */
+    create(algorithm: AnyAlgorithm): ISignatureStrategy;
+    private isHmacAlgorithm;
+    private isRsaAlgorithm;
+    private isEcdsaAlgorithm;
+}