npm - @lenne.tech/nest-server - Versions diffs - 11.10.2 → 11.10.4 - Mend

@lenne.tech/nest-server 11.10.2 → 11.10.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (67) hide show

package/dist/config.env.js CHANGED Viewed

@@ -8,55 +8,10 @@ dotenv.config();
 const config = {
     development: {
         auth: {
-            legacyEndpoints: {
-                enabled: true,
-            },
+            legacyEndpoints: { enabled: true },
         },
         automaticObjectIdFiltering: true,
-        betterAuth: {
-            basePath: '/iam',
-            baseUrl: 'http://localhost:3000',
-            jwt: {
-                enabled: true,
-                expiresIn: '15m',
-            },
-            passkey: {
-                enabled: false,
-                origin: 'http://localhost:3000',
-                rpId: 'localhost',
-                rpName: 'Nest Server Development',
-            },
-            rateLimit: {
-                enabled: true,
-                max: 20,
-                message: 'Too many requests, please try again later.',
-                skipEndpoints: ['/session', '/callback'],
-                strictEndpoints: ['/sign-in', '/sign-up', '/forgot-password', '/reset-password'],
-                windowSeconds: 60,
-            },
-            secret: 'BETTER_AUTH_SECRET_DEV_32_CHARS_MIN',
-            socialProviders: {
-                apple: {
-                    clientId: process.env.SOCIAL_APPLE_CLIENT_ID || '',
-                    clientSecret: process.env.SOCIAL_APPLE_CLIENT_SECRET || '',
-                    enabled: false,
-                },
-                github: {
-                    clientId: process.env.SOCIAL_GITHUB_CLIENT_ID || '',
-                    clientSecret: process.env.SOCIAL_GITHUB_CLIENT_SECRET || '',
-                    enabled: false,
-                },
-                google: {
-                    clientId: process.env.SOCIAL_GOOGLE_CLIENT_ID || '',
-                    clientSecret: process.env.SOCIAL_GOOGLE_CLIENT_SECRET || '',
-                    enabled: false,
-                },
-            },
-            twoFactor: {
-                appName: 'Nest Server Development',
-                enabled: false,
-            },
-        },
+        baseUrl: 'http://localhost:3000',
         compression: true,
         cookies: false,
         email: {
@@ -148,56 +103,21 @@ const config = {
     },
     local: {
         auth: {
-            legacyEndpoints: {
-                enabled: true,
-            },
+            legacyEndpoints: { enabled: true },
         },
         automaticObjectIdFiltering: true,
         betterAuth: {
-            basePath: '/iam',
-            baseUrl: 'http://localhost:3000',
-            enabled: true,
-            jwt: {
-                enabled: true,
-                expiresIn: '15m',
-            },
-            passkey: {
-                enabled: true,
-                origin: 'http://localhost:3000',
-                rpId: 'localhost',
-                rpName: 'Nest Server Local',
-            },
-            rateLimit: {
-                enabled: true,
-                max: 100,
-                message: 'Too many requests, please try again later.',
-                skipEndpoints: ['/session', '/callback'],
-                strictEndpoints: ['/sign-in', '/sign-up', '/forgot-password', '/reset-password'],
-                windowSeconds: 60,
-            },
+            jwt: { enabled: true, expiresIn: '15m' },
+            passkey: { enabled: true, origin: 'http://localhost:3001', rpId: 'localhost', rpName: 'Nest Server Local' },
+            rateLimit: { enabled: true, max: 100, windowSeconds: 60 },
             secret: 'BETTER_AUTH_SECRET_LOCAL_32_CHARS_M',
             socialProviders: {
-                apple: {
-                    clientId: process.env.SOCIAL_APPLE_CLIENT_ID || '',
-                    clientSecret: process.env.SOCIAL_APPLE_CLIENT_SECRET || '',
-                    enabled: false,
-                },
-                github: {
-                    clientId: process.env.SOCIAL_GITHUB_CLIENT_ID || '',
-                    clientSecret: process.env.SOCIAL_GITHUB_CLIENT_SECRET || '',
-                    enabled: false,
-                },
-                google: {
-                    clientId: process.env.SOCIAL_GOOGLE_CLIENT_ID || '',
-                    clientSecret: process.env.SOCIAL_GOOGLE_CLIENT_SECRET || '',
-                    enabled: false,
-                },
+                apple: { clientId: '', clientSecret: '', enabled: false },
+                github: { clientId: '', clientSecret: '', enabled: false },
+                google: { clientId: '', clientSecret: '', enabled: false },
             },
             trustedOrigins: ['http://localhost:3000', 'http://localhost:3001'],
-            twoFactor: {
-                appName: 'Nest Server Local',
-                enabled: true,
-            },
+            twoFactor: { appName: 'Nest Server Local', enabled: true },
         },
         compression: true,
         cookies: false,
@@ -304,55 +224,18 @@ const config = {
     },
     production: {
         auth: {
-            legacyEndpoints: {
-                enabled: process.env.LEGACY_AUTH_ENABLED !== 'false',
-            },
+            legacyEndpoints: { enabled: process.env.LEGACY_AUTH_ENABLED !== 'false' },
         },
         automaticObjectIdFiltering: true,
+        baseUrl: process.env.BASE_URL,
         betterAuth: {
-            basePath: '/iam',
-            baseUrl: process.env.BETTER_AUTH_URL || 'https://example.com',
-            jwt: {
-                enabled: true,
-                expiresIn: '15m',
-            },
-            passkey: {
-                enabled: false,
-                origin: process.env.BETTER_AUTH_URL || 'https://example.com',
-                rpId: process.env.PASSKEY_RP_ID || 'example.com',
-                rpName: process.env.PASSKEY_RP_NAME || 'Nest Server Production',
-            },
-            rateLimit: {
-                enabled: process.env.RATE_LIMIT_ENABLED !== 'false',
-                max: parseInt(process.env.RATE_LIMIT_MAX || '10', 10),
-                message: process.env.RATE_LIMIT_MESSAGE || 'Too many requests, please try again later.',
-                skipEndpoints: ['/session', '/callback'],
-                strictEndpoints: ['/sign-in', '/sign-up', '/forgot-password', '/reset-password'],
-                windowSeconds: parseInt(process.env.RATE_LIMIT_WINDOW_SECONDS || '60', 10),
-            },
+            rateLimit: { enabled: process.env.RATE_LIMIT_ENABLED !== 'false', max: parseInt(process.env.RATE_LIMIT_MAX || '10', 10) },
             secret: process.env.BETTER_AUTH_SECRET,
             socialProviders: {
-                apple: {
-                    clientId: process.env.SOCIAL_APPLE_CLIENT_ID || '',
-                    clientSecret: process.env.SOCIAL_APPLE_CLIENT_SECRET || '',
-                    enabled: !!process.env.SOCIAL_APPLE_CLIENT_ID,
-                },
-                github: {
-                    clientId: process.env.SOCIAL_GITHUB_CLIENT_ID || '',
-                    clientSecret: process.env.SOCIAL_GITHUB_CLIENT_SECRET || '',
-                    enabled: !!process.env.SOCIAL_GITHUB_CLIENT_ID,
-                },
-                google: {
-                    clientId: process.env.SOCIAL_GOOGLE_CLIENT_ID || '',
-                    clientSecret: process.env.SOCIAL_GOOGLE_CLIENT_SECRET || '',
-                    enabled: !!process.env.SOCIAL_GOOGLE_CLIENT_ID,
-                },
-            },
-            trustedOrigins: process.env.TRUSTED_ORIGINS?.split(',') || [],
-            twoFactor: {
-                appName: process.env.TWO_FACTOR_APP_NAME || 'Nest Server',
-                enabled: process.env.TWO_FACTOR_ENABLED === 'true',
+                github: { clientId: process.env.SOCIAL_GITHUB_CLIENT_ID || '', clientSecret: process.env.SOCIAL_GITHUB_CLIENT_SECRET || '' },
+                google: { clientId: process.env.SOCIAL_GOOGLE_CLIENT_ID || '', clientSecret: process.env.SOCIAL_GOOGLE_CLIENT_SECRET || '' },
             },
+            twoFactor: { appName: process.env.TWO_FACTOR_APP_NAME || 'Nest Server' },
         },
         compression: true,
         cookies: false,

package/dist/config.env.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"config.env.js","sourceRoot":"","sources":["../src/config.env.ts"],"names":[],"mappings":";;AAAA,+CAAkD;AAClD,iCAAiC;AACjC,+BAA4B;AAE5B,uEAA2E;~~AAM3E~~,MAAM,CAAC,MAAM,EAAE,CAAC;AAChB,MAAM,MAAM,GAAsC;IAIhD,WAAW,EAAE;~~QAIX~~,IAAI,EAAE;YACJ,eAAe,EAAE~~;gBACf~~,~~OAAO,~~EAAE,~~IAAI;aAGd;SACF;QACD,0BAA0B,EAAE,IAAI;QAChC,UAAU,EAAE;YACV,QAAQ,EAAE,MAAM;YAChB,~~OAAO,EAAE,~~uBAAuB;YAEhC,GAAG,EAAE;gBACH,OAAO,EAAE,~~IAAI~~;gBACb~~,~~SAAS,~~EAAE~~,KAAK~~;~~aACjB~~;~~YACD~~,OAAO,EAAE;gBACP,OAAO,EAAE,KAAK;gBACd,MAAM,EAAE,uBAAuB;gBAC/B,IAAI,EAAE,WAAW;gBACjB,MAAM,EAAE,yBAAyB;aAClC;YACD,SAAS,EAAE;gBACT,OAAO,EAAE,IAAI;gBACb,GAAG,EAAE,EAAE;gBACP,OAAO,EAAE,4CAA4C;gBACrD,aAAa,EAAE,CAAC,UAAU,EAAE,WAAW,CAAC;gBACxC,eAAe,EAAE,CAAC,UAAU,EAAE,UAAU,EAAE,kBAAkB,EAAE,iBAAiB,CAAC;gBAChF,aAAa,EAAE,EAAE;aAClB;YACD,MAAM,EAAE,qCAAqC;YAC7C,eAAe,EAAE;gBACf,KAAK,EAAE;oBACL,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,sBAAsB,IAAI,EAAE;oBAClD,YAAY,EAAE,OAAO,CAAC,GAAG,CAAC,0BAA0B,~~IAAI,~~EAAE~~;oBAC1D~~,~~OAAO,EAAE,KAAK;iBACf;gBACD,MAAM,EAAE;oBACN,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,uBAAuB,~~IAAI~~,EAAE~~;~~oBACnD~~,~~YAAY,EAAE,~~OAAO,~~CAAC,GAAG,CAAC,2BAA2B,IAAI,~~EAAE~~;oBAC3D~~,~~OAAO,EAAE,KAAK;iBACf;gBACD,MAAM,EAAE;oBACN,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,~~uBAAuB~~,IAAI,EAAE~~;~~oBACnD~~,~~YAAY,EAAE,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,EAAE;oBAC3D,OAAO,EAAE,KAAK;iBACf;aACF;YACD,SAAS,EAAE;gBACT,OAAO,EAAE,yBAAyB;gBAClC,OAAO,EAAE,KAAK;aACf;SAOF;QACD,~~WAAW,EAAE,IAAI;QACjB,OAAO,EAAE,KAAK;QACd,KAAK,EAAE;YACL,aAAa,EAAE;gBACb,KAAK,EAAE,iCAAiC;gBACxC,IAAI,EAAE,yBAAyB;aAChC;YACD,OAAO,EAAE;gBACP,eAAe,EAAE,yBAAyB;gBAC1C,cAAc,EAAE,wBAAwB;aACzC;YACD,iBAAiB,EAAE,2CAA2C;YAC9D,IAAI,EAAE;gBACJ,IAAI,EAAE;oBACJ,IAAI,EAAE,oBAAoB;oBAC1B,IAAI,EAAE,iCAAiC;iBACxC;gBACD,IAAI,EAAE,oBAAoB;gBAC1B,IAAI,EAAE,IAAI;gBACV,MAAM,EAAE,KAAK;aACd;YACD,gBAAgB,EAAE,yCAAyC;SAC5D;QACD,GAAG,EAAE,aAAa;QAClB,aAAa,EAAE,wBAAwB;QACvC,MAAM,EAAE;YACN,QAAQ,EAAE,IAAI;SACf;QACD,OAAO,EAAE;YACP,MAAM,EAAE;gBACN,aAAa,EAAE,IAAI;aACpB;YACD,aAAa,EAAE,IAAI;SACpB;QACD,WAAW,EAAE;YACX,OAAO,EAAE;gBACP,QAAQ,EAAE;oBACR,OAAO,EAAE,IAAI;iBACd;aACF;YACD,OAAO,EAAE,IAAI;SACd;QACD,2BAA2B,EAAE,IAAI;QACjC,GAAG,EAAE;YAIH,OAAO,EAAE;gBACP,OAAO,EAAE,IAAI;~~gBAKb~~,MAAM,EAAE,mCAAmC;gBAC3C,aAAa,EAAE;oBACb,SAAS,EAAE,IAAI;iBAChB;aACF;YACD,iBAAiB,EAAE,IAAI;~~YAEvB~~,MAAM,EAAE,2BAA2B;YACnC,aAAa,EAAE;gBACb,SAAS,EAAE,KAAK;aACjB;SACF;QACD,eAAe,EAAE,KAAK;QACtB,aAAa,EAAE,IAAI;QACnB,QAAQ,EAAE;YACR,SAAS,EAAE;gBACT,MAAM,EAAE,IAAI;aACb;YACD,kBAAkB,EAAE,KAAK;YACzB,GAAG,EAAE,qCAAqC;SAC3C;QACD,IAAI,EAAE,IAAI;QACV,QAAQ,EAAE;YACR,wBAAwB,EAAE;gBACxB,iBAAiB,EAAE,KAAK;gBACxB,KAAK,EAAE,KAAK;gBACZ,eAAe,EAAE,IAAI;gBACrB,UAAU,EAAE,IAAI;gBAChB,8BAA8B,EAAE,IAAI;gBACpC,UAAU,EAAE,KAAK;aAClB;YACD,wBAAwB,EAAE,IAAI;YAC9B,kBAAkB,EAAE,IAAI;SACzB;QACD,MAAM,EAAE,IAAI;QACZ,YAAY,EAAE;YACZ,OAAO,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE;YACvB,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,IAAI,EAAE,QAAQ,CAAC;SACtC;QACD,SAAS,EAAE;YACT,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,WAAW,CAAC;SACnC;KACF;IAKD,KAAK,EAAE;~~QAIL~~,IAAI,EAAE;YACJ,eAAe,EAAE~~;gBACf~~,OAAO,EAAE,IAAI;~~aAGd~~;~~SACF;~~QACD,0BAA0B,EAAE,IAAI;QAChC,UAAU,EAAE;~~YACV~~,~~QAAQ~~,EAAE,~~MAAM;YAChB,OAAO,~~EAAE,~~uBAAuB;YAChC,~~OAAO,EAAE,IAAI~~;YACb~~,~~GAAG,~~EAAE~~;gBACH~~,~~OAAO~~,EAAE,~~IAAI;gBACb~~,~~SAAS,~~EAAE~~,KAAK~~;~~aACjB;YACD~~,OAAO,EAAE~~;gBACP~~,OAAO,EAAE,IAAI~~;gBACb~~,MAAM,EAAE,uBAAuB~~;gBAC/B~~,IAAI,EAAE,WAAW~~;gBACjB~~,MAAM,EAAE,mBAAmB~~;aAC5B;YACD~~,~~SAAS,~~EAAE;~~gBACT~~,~~OAAO~~,EAAE,~~IAAI;gBACb,GAAG,~~EAAE,~~GAAG;gBACR,~~OAAO,EAAE,~~4CAA4C;gBACrD~~,~~aAAa,~~EAAE,~~CAAC~~,~~UAAU,~~EAAE,~~WAAW~~,~~CAAC;gBACxC,eAAe,~~EAAE,~~CAAC~~,~~UAAU,~~EAAE,~~UAAU,~~EAAE,~~kBAAkB,~~EAAE~~,iBAAiB,CAAC~~;~~gBAChF~~,~~aAAa,EAAE,EAAE;aAClB;YACD,~~MAAM,EAAE,qCAAqC;~~YAC7C~~,eAAe,EAAE;gBACf,KAAK,EAAE~~;oBACL~~,QAAQ,EAAE,~~OAAO~~,~~CAAC,GAAG,CAAC,sBAAsB,IAAI,~~EAAE~~;oBAClD~~,YAAY,EAAE,~~OAAO~~,~~CAAC,GAAG,CAAC,0BAA0B,IAAI,~~EAAE~~;oBAC1D~~,OAAO,EAAE,KAAK;~~iBACf;gBACD~~,MAAM,EAAE~~;oBACN~~,QAAQ,EAAE,~~OAAO~~,~~CAAC,GAAG,CAAC,uBAAuB,IAAI,~~EAAE~~;oBACnD~~,YAAY,EAAE,~~OAAO~~,~~CAAC,GAAG,CAAC,2BAA2B,IAAI,~~EAAE~~;oBAC3D~~,OAAO,EAAE,KAAK;~~iBACf;gBACD~~,MAAM,EAAE~~;oBACN~~,QAAQ,EAAE,~~OAAO~~,~~CAAC,GAAG,CAAC,uBAAuB,IAAI,~~EAAE~~;oBACnD~~,YAAY,EAAE,~~OAAO~~,~~CAAC,GAAG,CAAC,2BAA2B,IAAI,~~EAAE~~;oBAC3D~~,OAAO,EAAE,KAAK;~~iBACf~~;~~aACF;YAID~~,cAAc,EAAE,CAAC,uBAAuB,EAAE,uBAAuB,CAAC;~~YAClE~~,SAAS,EAAE~~;gBACT~~,OAAO,EAAE,mBAAmB~~;gBAC5B~~,OAAO,EAAE,IAAI;~~aACd~~;~~SACF;~~QACD,WAAW,EAAE,IAAI;QACjB,OAAO,EAAE,KAAK;QACd,QAAQ,EAAE;YACR,QAAQ,EAAE;gBACR,QAAQ,EAAE,yBAAc,CAAC,gBAAgB;gBACzC,QAAQ,EAAE,KAAK;gBACf,SAAS,EAAE,KAAK;gBAChB,WAAW,EAAE,CAAC;gBACd,cAAc,EAAE,KAAK;gBACrB,QAAQ,EAAE,eAAe;aAC1B;SACF;QACD,KAAK,EAAE;YACL,aAAa,EAAE;gBACb,KAAK,EAAE,iCAAiC;gBACxC,IAAI,EAAE,mBAAmB;aAC1B;YACD,OAAO,EAAE;gBACP,eAAe,EAAE,yBAAyB;gBAC1C,cAAc,EAAE,wBAAwB;aACzC;YACD,iBAAiB,EAAE,2CAA2C;YAC9D,IAAI,EAAE;gBACJ,IAAI,EAAE;oBACJ,IAAI,EAAE,oBAAoB;oBAC1B,IAAI,EAAE,iCAAiC;iBACxC;gBACD,IAAI,EAAE,oBAAoB;gBAC1B,IAAI,EAAE,IAAI;gBACV,MAAM,EAAE,KAAK;aACd;YACD,gBAAgB,EAAE,yCAAyC;SAC5D;QACD,GAAG,EAAE,OAAO;QAEZ,SAAS,EAAE;YACT,YAAY,EAAE,KAAK;SACpB;QACD,aAAa,EAAE,wBAAwB;QACvC,MAAM,EAAE;YACN,QAAQ,EAAE,IAAI;SACf;QACD,OAAO,EAAE;YACP,MAAM,EAAE;gBACN,aAAa,EAAE,IAAI;aACpB;YACD,aAAa,EAAE,IAAI;SACpB;QACD,WAAW,EAAE;YACX,OAAO,EAAE;gBACP,QAAQ,EAAE;oBACR,OAAO,EAAE,IAAI;iBACd;aACF;YACD,OAAO,EAAE,IAAI;SACd;QACD,QAAQ,EAAE,WAAW;QACrB,2BAA2B,EAAE,IAAI;QACjC,GAAG,EAAE;YAIH,OAAO,EAAE;gBACP,OAAO,EAAE,IAAI;~~gBAKb~~,MAAM,EAAE,qCAAqC;gBAC7C,aAAa,EAAE;oBACb,SAAS,EAAE,IAAI;iBAChB;aACF;YACD,iBAAiB,EAAE,IAAI;~~YAEvB~~,MAAM,EAAE,6BAA6B;YACrC,aAAa,EAAE;gBACb,SAAS,EAAE,KAAK;aACjB;SACF;QACD,eAAe,EAAE,IAAI;QACrB,aAAa,EAAE,IAAI;QACnB,QAAQ,EAAE;YACR,SAAS,EAAE;gBACT,MAAM,EAAE,IAAI;aACb;YACD,kBAAkB,EAAE,IAAI;YACxB,GAAG,EAAE,uCAAuC;SAC7C;QACD,IAAI,EAAE,IAAI;QACV,QAAQ,EAAE;YACR,wBAAwB,EAAE;gBACxB,iBAAiB,EAAE,KAAK;gBACxB,KAAK,EAAE,KAAK;gBACZ,eAAe,EAAE,IAAI;gBACrB,UAAU,EAAE,IAAI;gBAChB,8BAA8B,EAAE,IAAI;gBACpC,UAAU,EAAE,KAAK;aAClB;YACD,wBAAwB,EAAE,IAAI;YAC9B,kBAAkB,EAAE,IAAI;SACzB;QACD,MAAM,EAAE,IAAI;QACZ,YAAY,EAAE;YACZ,OAAO,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE;YACvB,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,IAAI,EAAE,QAAQ,CAAC;SACtC;QACD,SAAS,EAAE;YACT,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,WAAW,CAAC;SACnC;KACF;IAKD,UAAU,EAAE;~~QAIV~~,IAAI,EAAE;YACJ,eAAe,EAAE~~;gBACf~~,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,mBAAmB,KAAK,OAAO;~~aAGrD~~;~~SACF;~~QACD,0BAA0B,EAAE,IAAI;QAChC,~~UAAU,EAAE;YACV,QAAQ,EAAE,MAAM;YAChB,~~OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,~~eAAe,IAAI,qBAAqB~~;~~YAE7D~~,~~GAAG~~,EAAE;~~gBACH~~,~~OAAO,EAAE,IAAI;gBACb,~~SAAS,EAAE,~~KAAK;aACjB;YACD,OAAO,~~EAAE~~;gBACP~~,OAAO,EAAE,~~KAAK;gBACd,MAAM,EAAE,~~OAAO,CAAC,GAAG,CAAC,~~eAAe~~,~~IAAI~~,~~qBAAqB;gBAC5D,IAAI,EAAE,~~OAAO,~~CAAC,GAAG,CAAC,aAAa,IAAI,aAAa;gBAChD,MAAM,~~EAAE,~~OAAO,CAAC,~~GAAG,~~CAAC,eAAe,IAAI,wBAAwB;aAChE;YACD,SAAS,~~EAAE~~;gBACT~~,~~OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,kBAAkB,KAAK,OAAO;gBACnD,GAAG,EAAE,~~QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,IAAI,EAAE,EAAE,CAAC~~;gBACrD~~,~~OAAO,~~EAAE~~,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,4CAA4C~~;~~gBACvF~~,~~aAAa,EAAE,CAAC,UAAU,EAAE,WAAW,CAAC;gBACxC,eAAe,EAAE,CAAC,UAAU,EAAE,UAAU,EAAE,kBAAkB,EAAE,iBAAiB,CAAC;gBAChF,aAAa,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,yBAAyB,IAAI,IAAI,EAAE,EAAE,CAAC;aAC3E;YAID,~~MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,kBAAkB;YACtC,eAAe,EAAE;gBACf,~~KAAK~~,EAAE~~;oBACL~~,~~QAAQ,~~EAAE,~~OAAO~~,~~CAAC,GAAG,CAAC,sBAAsB,IAAI,~~EAAE~~;oBAClD~~,~~YAAY,EAAE,~~OAAO,CAAC,GAAG,CAAC,~~0BAA0B~~,IAAI,EAAE~~;oBAC1D~~,~~OAAO,~~EAAE,~~CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,sBAAsB;iBAC9C;gBACD,MAAM,EAAE;oBACN,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,uBAAuB,IAAI,EAAE;oBACnD,~~YAAY,EAAE,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,EAAE~~;oBAC3D~~,~~OAAO,~~EAAE~~,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,uBAAuB~~;~~iBAC/C;gBACD~~,MAAM,EAAE~~;oBACN~~,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,uBAAuB,IAAI,EAAE~~;oBACnD~~,YAAY,EAAE,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,EAAE~~;oBAC3D~~,~~OAAO,~~EAAE~~,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,uBAAuB~~;~~iBAC/C~~;~~aACF;YAID~~,~~cAAc~~,EAAE,~~OAAO,CAAC,GAAG,CAAC,eAAe,~~EAAE,~~KAAK,CAAC,GAAG,CAAC,IAAI,EAAE;YAC7D,SAAS,EAAE;gBACT,~~OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,aAAa~~;gBACzD~~,~~OAAO,~~EAAE~~,OAAO,CAAC,GAAG,CAAC,kBAAkB,KAAK,MAAM~~;~~aACnD~~;~~SAEF;~~QACD,WAAW,EAAE,IAAI;QACjB,OAAO,EAAE,KAAK;QACd,KAAK,EAAE;YACL,aAAa,EAAE;gBACb,KAAK,EAAE,iCAAiC;gBACxC,IAAI,EAAE,wBAAwB;aAC/B;YACD,OAAO,EAAE;gBACP,eAAe,EAAE,yBAAyB;gBAC1C,cAAc,EAAE,wBAAwB;aACzC;YACD,iBAAiB,EAAE,2CAA2C;YAC9D,IAAI,EAAE;gBACJ,IAAI,EAAE;oBACJ,IAAI,EAAE,oBAAoB;oBAC1B,IAAI,EAAE,iCAAiC;iBACxC;gBACD,IAAI,EAAE,oBAAoB;gBAC1B,IAAI,EAAE,IAAI;gBACV,MAAM,EAAE,KAAK;aACd;YACD,gBAAgB,EAAE,yCAAyC;SAC5D;QACD,GAAG,EAAE,YAAY;QACjB,aAAa,EAAE,wBAAwB;QACvC,MAAM,EAAE;YACN,QAAQ,EAAE,IAAI;SACf;QACD,OAAO,EAAE;YACP,MAAM,EAAE;gBACN,aAAa,EAAE,IAAI;aACpB;YACD,aAAa,EAAE,IAAI;SACpB;QACD,WAAW,EAAE;YACX,OAAO,EAAE;gBACP,QAAQ,EAAE;oBACR,OAAO,EAAE,IAAI;iBACd;aACF;YACD,OAAO,EAAE,IAAI;SACd;QACD,2BAA2B,EAAE,IAAI;QACjC,GAAG,EAAE;YAIH,OAAO,EAAE;gBACP,OAAO,EAAE,IAAI;~~gBAKb~~,MAAM,EAAE,oCAAoC;gBAC5C,aAAa,EAAE;oBACb,SAAS,EAAE,IAAI;iBAChB;aACF;YACD,iBAAiB,EAAE,IAAI;~~YAEvB~~,MAAM,EAAE,4BAA4B;YACpC,aAAa,EAAE;gBACb,SAAS,EAAE,KAAK;aACjB;SACF;QACD,eAAe,EAAE,KAAK;QACtB,aAAa,EAAE,IAAI;QACnB,QAAQ,EAAE;YACR,SAAS,EAAE;gBACT,MAAM,EAAE,IAAI;aACb;YACD,kBAAkB,EAAE,KAAK;YACzB,GAAG,EAAE,sCAAsC;SAC5C;QACD,IAAI,EAAE,IAAI;QACV,QAAQ,EAAE;YACR,wBAAwB,EAAE;gBACxB,iBAAiB,EAAE,KAAK;gBACxB,KAAK,EAAE,KAAK;gBACZ,eAAe,EAAE,IAAI;gBACrB,UAAU,EAAE,IAAI;gBAChB,8BAA8B,EAAE,IAAI;gBACpC,UAAU,EAAE,KAAK;aAClB;YACD,wBAAwB,EAAE,IAAI;YAC9B,kBAAkB,EAAE,IAAI;SACzB;QACD,MAAM,EAAE,IAAI;QACZ,YAAY,EAAE;YACZ,OAAO,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE;YACvB,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,IAAI,EAAE,QAAQ,CAAC;SACtC;QACD,SAAS,EAAE;YACT,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,WAAW,CAAC;SACnC;KACF;CACF,CAAC;AAKF,kBAAe,IAAA,oCAAoB,EAAC,EAAE,MAAM,EAAE,CAAC,CAAC"}
1	+ {"version":3,"file":"config.env.js","sourceRoot":"","sources":["../src/config.env.ts"],"names":[],"mappings":";;AAAA,+CAAkD;AAClD,iCAAiC;AACjC,+BAA4B;AAE5B,uEAA2E;AAO3E,MAAM,CAAC,MAAM,EAAE,CAAC;AAChB,MAAM,MAAM,GAAsC;IAIhD,WAAW,EAAE;QACX,IAAI,EAAE;YACJ,eAAe,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE;SACnC;QACD,0BAA0B,EAAE,IAAI;QAChC,OAAO,EAAE,uBAAuB;QAChC,WAAW,EAAE,IAAI;QACjB,OAAO,EAAE,KAAK;QACd,KAAK,EAAE;YACL,aAAa,EAAE;gBACb,KAAK,EAAE,iCAAiC;gBACxC,IAAI,EAAE,yBAAyB;aAChC;YACD,OAAO,EAAE;gBACP,eAAe,EAAE,yBAAyB;gBAC1C,cAAc,EAAE,wBAAwB;aACzC;YACD,iBAAiB,EAAE,2CAA2C;YAC9D,IAAI,EAAE;gBACJ,IAAI,EAAE;oBACJ,IAAI,EAAE,oBAAoB;oBAC1B,IAAI,EAAE,iCAAiC;iBACxC;gBACD,IAAI,EAAE,oBAAoB;gBAC1B,IAAI,EAAE,IAAI;gBACV,MAAM,EAAE,KAAK;aACd;YACD,gBAAgB,EAAE,yCAAyC;SAC5D;QACD,GAAG,EAAE,aAAa;QAClB,aAAa,EAAE,wBAAwB;QACvC,MAAM,EAAE;YACN,QAAQ,EAAE,IAAI;SACf;QACD,OAAO,EAAE;YACP,MAAM,EAAE;gBACN,aAAa,EAAE,IAAI;aACpB;YACD,aAAa,EAAE,IAAI;SACpB;QACD,WAAW,EAAE;YACX,OAAO,EAAE;gBACP,QAAQ,EAAE;oBACR,OAAO,EAAE,IAAI;iBACd;aACF;YACD,OAAO,EAAE,IAAI;SACd;QACD,2BAA2B,EAAE,IAAI;QACjC,GAAG,EAAE;YAIH,OAAO,EAAE;gBACP,OAAO,EAAE,IAAI;gBAIb,MAAM,EAAE,mCAAmC;gBAC3C,aAAa,EAAE;oBACb,SAAS,EAAE,IAAI;iBAChB;aACF;YACD,iBAAiB,EAAE,IAAI;YACvB,MAAM,EAAE,2BAA2B;YACnC,aAAa,EAAE;gBACb,SAAS,EAAE,KAAK;aACjB;SACF;QACD,eAAe,EAAE,KAAK;QACtB,aAAa,EAAE,IAAI;QACnB,QAAQ,EAAE;YACR,SAAS,EAAE;gBACT,MAAM,EAAE,IAAI;aACb;YACD,kBAAkB,EAAE,KAAK;YACzB,GAAG,EAAE,qCAAqC;SAC3C;QACD,IAAI,EAAE,IAAI;QACV,QAAQ,EAAE;YACR,wBAAwB,EAAE;gBACxB,iBAAiB,EAAE,KAAK;gBACxB,KAAK,EAAE,KAAK;gBACZ,eAAe,EAAE,IAAI;gBACrB,UAAU,EAAE,IAAI;gBAChB,8BAA8B,EAAE,IAAI;gBACpC,UAAU,EAAE,KAAK;aAClB;YACD,wBAAwB,EAAE,IAAI;YAC9B,kBAAkB,EAAE,IAAI;SACzB;QACD,MAAM,EAAE,IAAI;QACZ,YAAY,EAAE;YACZ,OAAO,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE;YACvB,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,IAAI,EAAE,QAAQ,CAAC;SACtC;QACD,SAAS,EAAE;YACT,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,WAAW,CAAC;SACnC;KACF;IAKD,KAAK,EAAE;QACL,IAAI,EAAE;YACJ,eAAe,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE;SACnC;QACD,0BAA0B,EAAE,IAAI;QAChC,UAAU,EAAE;YAEV,GAAG,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE;YAExC,OAAO,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,uBAAuB,EAAE,IAAI,EAAE,WAAW,EAAE,MAAM,EAAE,mBAAmB,EAAE;YAC3G,SAAS,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,GAAG,EAAE,GAAG,EAAE,aAAa,EAAE,EAAE,EAAE;YACzD,MAAM,EAAE,qCAAqC;YAE7C,eAAe,EAAE;gBACf,KAAK,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,YAAY,EAAE,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE;gBACzD,MAAM,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,YAAY,EAAE,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE;gBAC1D,MAAM,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,YAAY,EAAE,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE;aAC3D;YAED,cAAc,EAAE,CAAC,uBAAuB,EAAE,uBAAuB,CAAC;YAElE,SAAS,EAAE,EAAE,OAAO,EAAE,mBAAmB,EAAE,OAAO,EAAE,IAAI,EAAE;SAC3D;QACD,WAAW,EAAE,IAAI;QACjB,OAAO,EAAE,KAAK;QACd,QAAQ,EAAE;YACR,QAAQ,EAAE;gBACR,QAAQ,EAAE,yBAAc,CAAC,gBAAgB;gBACzC,QAAQ,EAAE,KAAK;gBACf,SAAS,EAAE,KAAK;gBAChB,WAAW,EAAE,CAAC;gBACd,cAAc,EAAE,KAAK;gBACrB,QAAQ,EAAE,eAAe;aAC1B;SACF;QACD,KAAK,EAAE;YACL,aAAa,EAAE;gBACb,KAAK,EAAE,iCAAiC;gBACxC,IAAI,EAAE,mBAAmB;aAC1B;YACD,OAAO,EAAE;gBACP,eAAe,EAAE,yBAAyB;gBAC1C,cAAc,EAAE,wBAAwB;aACzC;YACD,iBAAiB,EAAE,2CAA2C;YAC9D,IAAI,EAAE;gBACJ,IAAI,EAAE;oBACJ,IAAI,EAAE,oBAAoB;oBAC1B,IAAI,EAAE,iCAAiC;iBACxC;gBACD,IAAI,EAAE,oBAAoB;gBAC1B,IAAI,EAAE,IAAI;gBACV,MAAM,EAAE,KAAK;aACd;YACD,gBAAgB,EAAE,yCAAyC;SAC5D;QACD,GAAG,EAAE,OAAO;QAEZ,SAAS,EAAE;YACT,YAAY,EAAE,KAAK;SACpB;QACD,aAAa,EAAE,wBAAwB;QACvC,MAAM,EAAE;YACN,QAAQ,EAAE,IAAI;SACf;QACD,OAAO,EAAE;YACP,MAAM,EAAE;gBACN,aAAa,EAAE,IAAI;aACpB;YACD,aAAa,EAAE,IAAI;SACpB;QACD,WAAW,EAAE;YACX,OAAO,EAAE;gBACP,QAAQ,EAAE;oBACR,OAAO,EAAE,IAAI;iBACd;aACF;YACD,OAAO,EAAE,IAAI;SACd;QACD,QAAQ,EAAE,WAAW;QACrB,2BAA2B,EAAE,IAAI;QACjC,GAAG,EAAE;YAIH,OAAO,EAAE;gBACP,OAAO,EAAE,IAAI;gBAIb,MAAM,EAAE,qCAAqC;gBAC7C,aAAa,EAAE;oBACb,SAAS,EAAE,IAAI;iBAChB;aACF;YACD,iBAAiB,EAAE,IAAI;YACvB,MAAM,EAAE,6BAA6B;YACrC,aAAa,EAAE;gBACb,SAAS,EAAE,KAAK;aACjB;SACF;QACD,eAAe,EAAE,IAAI;QACrB,aAAa,EAAE,IAAI;QACnB,QAAQ,EAAE;YACR,SAAS,EAAE;gBACT,MAAM,EAAE,IAAI;aACb;YACD,kBAAkB,EAAE,IAAI;YACxB,GAAG,EAAE,uCAAuC;SAC7C;QACD,IAAI,EAAE,IAAI;QACV,QAAQ,EAAE;YACR,wBAAwB,EAAE;gBACxB,iBAAiB,EAAE,KAAK;gBACxB,KAAK,EAAE,KAAK;gBACZ,eAAe,EAAE,IAAI;gBACrB,UAAU,EAAE,IAAI;gBAChB,8BAA8B,EAAE,IAAI;gBACpC,UAAU,EAAE,KAAK;aAClB;YACD,wBAAwB,EAAE,IAAI;YAC9B,kBAAkB,EAAE,IAAI;SACzB;QACD,MAAM,EAAE,IAAI;QACZ,YAAY,EAAE;YACZ,OAAO,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE;YACvB,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,IAAI,EAAE,QAAQ,CAAC;SACtC;QACD,SAAS,EAAE;YACT,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,WAAW,CAAC;SACnC;KACF;IAKD,UAAU,EAAE;QACV,IAAI,EAAE;YACJ,eAAe,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,mBAAmB,KAAK,OAAO,EAAE;SAC1E;QACD,0BAA0B,EAAE,IAAI;QAChC,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,QAAQ;QAC7B,UAAU,EAAE;YACV,SAAS,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,kBAAkB,KAAK,OAAO,EAAE,GAAG,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,IAAI,EAAE,EAAE,CAAC,EAAE;YACzH,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,kBAAkB;YACtC,eAAe,EAAE;gBACf,MAAM,EAAE,EAAE,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,uBAAuB,IAAI,EAAE,EAAE,YAAY,EAAE,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,EAAE,EAAE;gBAC5H,MAAM,EAAE,EAAE,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,uBAAuB,IAAI,EAAE,EAAE,YAAY,EAAE,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,EAAE,EAAE;aAC7H;YACD,SAAS,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,aAAa,EAAE;SACzE;QACD,WAAW,EAAE,IAAI;QACjB,OAAO,EAAE,KAAK;QACd,KAAK,EAAE;YACL,aAAa,EAAE;gBACb,KAAK,EAAE,iCAAiC;gBACxC,IAAI,EAAE,wBAAwB;aAC/B;YACD,OAAO,EAAE;gBACP,eAAe,EAAE,yBAAyB;gBAC1C,cAAc,EAAE,wBAAwB;aACzC;YACD,iBAAiB,EAAE,2CAA2C;YAC9D,IAAI,EAAE;gBACJ,IAAI,EAAE;oBACJ,IAAI,EAAE,oBAAoB;oBAC1B,IAAI,EAAE,iCAAiC;iBACxC;gBACD,IAAI,EAAE,oBAAoB;gBAC1B,IAAI,EAAE,IAAI;gBACV,MAAM,EAAE,KAAK;aACd;YACD,gBAAgB,EAAE,yCAAyC;SAC5D;QACD,GAAG,EAAE,YAAY;QACjB,aAAa,EAAE,wBAAwB;QACvC,MAAM,EAAE;YACN,QAAQ,EAAE,IAAI;SACf;QACD,OAAO,EAAE;YACP,MAAM,EAAE;gBACN,aAAa,EAAE,IAAI;aACpB;YACD,aAAa,EAAE,IAAI;SACpB;QACD,WAAW,EAAE;YACX,OAAO,EAAE;gBACP,QAAQ,EAAE;oBACR,OAAO,EAAE,IAAI;iBACd;aACF;YACD,OAAO,EAAE,IAAI;SACd;QACD,2BAA2B,EAAE,IAAI;QACjC,GAAG,EAAE;YAIH,OAAO,EAAE;gBACP,OAAO,EAAE,IAAI;gBAIb,MAAM,EAAE,oCAAoC;gBAC5C,aAAa,EAAE;oBACb,SAAS,EAAE,IAAI;iBAChB;aACF;YACD,iBAAiB,EAAE,IAAI;YACvB,MAAM,EAAE,4BAA4B;YACpC,aAAa,EAAE;gBACb,SAAS,EAAE,KAAK;aACjB;SACF;QACD,eAAe,EAAE,KAAK;QACtB,aAAa,EAAE,IAAI;QACnB,QAAQ,EAAE;YACR,SAAS,EAAE;gBACT,MAAM,EAAE,IAAI;aACb;YACD,kBAAkB,EAAE,KAAK;YACzB,GAAG,EAAE,sCAAsC;SAC5C;QACD,IAAI,EAAE,IAAI;QACV,QAAQ,EAAE;YACR,wBAAwB,EAAE;gBACxB,iBAAiB,EAAE,KAAK;gBACxB,KAAK,EAAE,KAAK;gBACZ,eAAe,EAAE,IAAI;gBACrB,UAAU,EAAE,IAAI;gBAChB,8BAA8B,EAAE,IAAI;gBACpC,UAAU,EAAE,KAAK;aAClB;YACD,wBAAwB,EAAE,IAAI;YAC9B,kBAAkB,EAAE,IAAI;SACzB;QACD,MAAM,EAAE,IAAI;QACZ,YAAY,EAAE;YACZ,OAAO,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE;YACvB,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,IAAI,EAAE,QAAQ,CAAC;SACtC;QACD,SAAS,EAAE;YACT,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,IAAA,WAAI,EAAC,SAAS,EAAE,WAAW,CAAC;SACnC;KACF;CACF,CAAC;AAKF,kBAAe,IAAA,oCAAoB,EAAC,EAAE,MAAM,EAAE,CAAC,CAAC"}

package/dist/core/common/interfaces/server-options.interface.d.ts CHANGED Viewed

@@ -38,6 +38,8 @@ export interface IBetterAuthJwtConfig {
 }
 export interface IBetterAuthPasskeyConfig {
     authenticatorAttachment?: 'cross-platform' | 'platform';
+    challengeStorage?: 'cookie' | 'database';
+    challengeTtlSeconds?: number;
     enabled?: boolean;
     origin?: string;
     residentKey?: 'discouraged' | 'preferred' | 'required';
@@ -90,8 +92,10 @@ export interface IJwt {
     signInOptions?: JwtSignOptions;
 }
 export interface IServerOptions {
+    appUrl?: string;
     auth?: IAuth;
     automaticObjectIdFiltering?: boolean;
+    baseUrl?: string;
     betterAuth?: boolean | IBetterAuth;
     brevo?: {
         apiKey: string;

package/dist/core/modules/auth/core-auth.module.js CHANGED Viewed

@@ -15,6 +15,7 @@ const passport_1 = require("@nestjs/passport");
 const graphql_subscriptions_1 = require("graphql-subscriptions");
 const auth_guard_strategy_enum_1 = require("./auth-guard-strategy.enum");
 const legacy_auth_rate_limit_guard_1 = require("./guards/legacy-auth-rate-limit.guard");
+const roles_guard_registry_1 = require("./guards/roles-guard-registry");
 const roles_guard_1 = require("./guards/roles.guard");
 const core_auth_user_service_1 = require("./services/core-auth-user.service");
 const core_auth_service_1 = require("./services/core-auth.service");
@@ -31,11 +32,14 @@ let CoreAuthModule = CoreAuthModule_1 = class CoreAuthModule {
         if (Array.isArray(options?.imports)) {
             imports = imports.concat(options.imports);
         }
+        const rolesGuardProvider = roles_guard_registry_1.RolesGuardRegistry.isRegistered()
+            ? []
+            : (() => {
+                roles_guard_registry_1.RolesGuardRegistry.markRegistered('CoreAuthModule');
+                return [{ provide: core_1.APP_GUARD, useClass: roles_guard_1.RolesGuard }];
+            })();
         let providers = [
-            {
-                provide: core_1.APP_GUARD,
-                useClass: roles_guard_1.RolesGuard,
-            },
+            ...rolesGuardProvider,
             {
                 provide: core_auth_user_service_1.CoreAuthUserService,
                 useClass: UserService,

package/dist/core/modules/auth/core-auth.module.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"core-auth.module.js","sourceRoot":"","sources":["../../../../src/core/modules/auth/core-auth.module.ts"],"names":[],"mappings":";;;;;;;;;;AAAA,2CAAyF;AACzF,uCAAyC;AACzC,qCAA0D;AAC1D,+CAAkD;AAClD,iEAA+C;AAE/C,yEAA+D;AAC/D,wFAAiF;AACjF,sDAAkD;AAClD,8EAAwE;AACxE,oEAA+D;AAC/D,kGAAoF;AACpF,4EAAuE;AACvE,4DAAwD;AAMjD,IAAM,cAAc,sBAApB,MAAM,cAAc;IAKzB,MAAM,CAAC,OAAO,CACZ,UAAqB,EACrB,WAAsC,EACtC,OAMC;QAGD,IAAI,OAAO,GAAU;YACnB,UAAU;YACV,yBAAc,CAAC,QAAQ,CAAC,EAAE,eAAe,EAAE,CAAC,4CAAiB,CAAC,GAAG,EAAE,4CAAiB,CAAC,WAAW,CAAC,EAAE,CAAC;YACpG,eAAS,CAAC,QAAQ,CAAC,OAAO,CAAC;SAC5B,CAAC;QACF,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,OAAO,CAAC,EAAE,CAAC;YACpC,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QAC5C,CAAC;~~QAGD~~,~~IAAI~~,~~SAAS~~,GAAG;~~YAEd~~;~~gBACE~~,OAAO,EAAE,gBAAS~~;gBAClB~~,QAAQ,EAAE,wBAAU;~~aACrB~~;~~YACD~~;gBACE,OAAO,EAAE,4CAAmB;gBAC5B,QAAQ,EAAE,WAAW;aACtB;YACD;gBACE,OAAO,EAAE,SAAS;gBAClB,QAAQ,EAAE,IAAI,8BAAM,EAAE;aACvB;YACD;gBACE,OAAO,EAAE,mCAAe;gBACxB,QAAQ,EAAE,OAAO,CAAC,WAAW,IAAI,mCAAe;aACjD;YACD;gBACE,OAAO,EAAE,0BAAW;gBACpB,QAAQ,EAAE,OAAO,CAAC,WAAW,IAAI,0BAAW;aAC7C;YACD;gBACE,OAAO,EAAE,yCAAkB;gBAC3B,QAAQ,EAAE,OAAO,CAAC,kBAAkB,IAAI,yCAAkB;aAC3D;YAED,wDAAqB;YACrB,uDAAwB;SACzB,CAAC;QACF,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,SAAS,CAAC,EAAE,CAAC;YACtC,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAChD,CAAC;QAGD,OAAO;YACL,OAAO,EAAE;gBACP,mCAAe;gBACf,eAAS;gBACT,0BAAW;gBACX,yCAAkB;gBAClB,wDAAqB;gBACrB,uDAAwB;gBACxB,yBAAc;gBACd,UAAU;aACX;YACD,OAAO;YACP,MAAM,EAAE,gBAAc;YACtB,SAAS;SACV,CAAC;IACJ,CAAC;CACF,CAAA;~~AA9EY~~,wCAAc;yBAAd,cAAc;IAD1B,IAAA,eAAM,EAAC,EAAE,CAAC;GACE,cAAc,~~CA8E1B~~"}
1	+ {"version":3,"file":"core-auth.module.js","sourceRoot":"","sources":["../../../../src/core/modules/auth/core-auth.module.ts"],"names":[],"mappings":";;;;;;;;;;AAAA,2CAAyF;AACzF,uCAAyC;AACzC,qCAA0D;AAC1D,+CAAkD;AAClD,iEAA+C;AAE/C,yEAA+D;AAC/D,wFAAiF;AACjF,wEAAmE;AACnE,sDAAkD;AAClD,8EAAwE;AACxE,oEAA+D;AAC/D,kGAAoF;AACpF,4EAAuE;AACvE,4DAAwD;AAMjD,IAAM,cAAc,sBAApB,MAAM,cAAc;IAKzB,MAAM,CAAC,OAAO,CACZ,UAAqB,EACrB,WAAsC,EACtC,OAMC;QAGD,IAAI,OAAO,GAAU;YACnB,UAAU;YACV,yBAAc,CAAC,QAAQ,CAAC,EAAE,eAAe,EAAE,CAAC,4CAAiB,CAAC,GAAG,EAAE,4CAAiB,CAAC,WAAW,CAAC,EAAE,CAAC;YACpG,eAAS,CAAC,QAAQ,CAAC,OAAO,CAAC;SAC5B,CAAC;QACF,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,OAAO,CAAC,EAAE,CAAC;YACpC,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QAC5C,CAAC;QAID,MAAM,kBAAkB,GAAG,yCAAkB,CAAC,YAAY,EAAE;YAC1D,CAAC,CAAC,EAAE;YACJ,CAAC,CAAC,CAAC,GAAG,EAAE;gBACJ,yCAAkB,CAAC,cAAc,CAAC,gBAAgB,CAAC,CAAC;gBACpD,OAAO,CAAC,EAAE,OAAO,EAAE,gBAAS,EAAE,QAAQ,EAAE,wBAAU,EAAE,CAAC,CAAC;YACxD,CAAC,CAAC,EAAE,CAAC;QAET,IAAI,SAAS,GAAG;YAEd,GAAG,kBAAkB;YACrB;gBACE,OAAO,EAAE,4CAAmB;gBAC5B,QAAQ,EAAE,WAAW;aACtB;YACD;gBACE,OAAO,EAAE,SAAS;gBAClB,QAAQ,EAAE,IAAI,8BAAM,EAAE;aACvB;YACD;gBACE,OAAO,EAAE,mCAAe;gBACxB,QAAQ,EAAE,OAAO,CAAC,WAAW,IAAI,mCAAe;aACjD;YACD;gBACE,OAAO,EAAE,0BAAW;gBACpB,QAAQ,EAAE,OAAO,CAAC,WAAW,IAAI,0BAAW;aAC7C;YACD;gBACE,OAAO,EAAE,yCAAkB;gBAC3B,QAAQ,EAAE,OAAO,CAAC,kBAAkB,IAAI,yCAAkB;aAC3D;YAED,wDAAqB;YACrB,uDAAwB;SACzB,CAAC;QACF,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,SAAS,CAAC,EAAE,CAAC;YACtC,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAChD,CAAC;QAGD,OAAO;YACL,OAAO,EAAE;gBACP,mCAAe;gBACf,eAAS;gBACT,0BAAW;gBACX,yCAAkB;gBAClB,wDAAqB;gBACrB,uDAAwB;gBACxB,yBAAc;gBACd,UAAU;aACX;YACD,OAAO;YACP,MAAM,EAAE,gBAAc;YACtB,SAAS;SACV,CAAC;IACJ,CAAC;CACF,CAAA;AAnFY,wCAAc;yBAAd,cAAc;IAD1B,IAAA,eAAM,EAAC,EAAE,CAAC;GACE,cAAc,CAmF1B"}

package/dist/core/modules/auth/guards/roles-guard-registry.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+export declare class RolesGuardRegistry {
+    private static readonly logger;
+    private static registered;
+    private static registeredBy;
+    static isRegistered(): boolean;
+    static getRegisteredBy(): null | string;
+    static markRegistered(moduleName?: string): void;
+    static reset(): void;
+}

package/dist/core/modules/auth/guards/roles-guard-registry.js ADDED Viewed

@@ -0,0 +1,30 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RolesGuardRegistry = void 0;
+const common_1 = require("@nestjs/common");
+class RolesGuardRegistry {
+    static isRegistered() {
+        return this.registered;
+    }
+    static getRegisteredBy() {
+        return this.registeredBy;
+    }
+    static markRegistered(moduleName = 'Unknown') {
+        if (this.registered) {
+            this.logger.debug(`RolesGuard already registered by ${this.registeredBy}, skipping registration from ${moduleName}`);
+            return;
+        }
+        this.registered = true;
+        this.registeredBy = moduleName;
+        this.logger.debug(`RolesGuard registered globally by ${moduleName}`);
+    }
+    static reset() {
+        this.registered = false;
+        this.registeredBy = null;
+    }
+}
+exports.RolesGuardRegistry = RolesGuardRegistry;
+RolesGuardRegistry.logger = new common_1.Logger('RolesGuardRegistry');
+RolesGuardRegistry.registered = false;
+RolesGuardRegistry.registeredBy = null;
+//# sourceMappingURL=roles-guard-registry.js.map

package/dist/core/modules/auth/guards/roles-guard-registry.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"roles-guard-registry.js","sourceRoot":"","sources":["../../../../../src/core/modules/auth/guards/roles-guard-registry.ts"],"names":[],"mappings":";;;AAAA,2CAAwC;AAWxC,MAAa,kBAAkB;IAQ7B,MAAM,CAAC,YAAY;QACjB,OAAO,IAAI,CAAC,UAAU,CAAC;IACzB,CAAC;IAKD,MAAM,CAAC,eAAe;QACpB,OAAO,IAAI,CAAC,YAAY,CAAC;IAC3B,CAAC;IAQD,MAAM,CAAC,cAAc,CAAC,aAAqB,SAAS;QAClD,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;YACpB,IAAI,CAAC,MAAM,CAAC,KAAK,CACf,oCAAoC,IAAI,CAAC,YAAY,gCAAgC,UAAU,EAAE,CAClG,CAAC;YACF,OAAO;QACT,CAAC;QACD,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;QACvB,IAAI,CAAC,YAAY,GAAG,UAAU,CAAC;QAC/B,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,qCAAqC,UAAU,EAAE,CAAC,CAAC;IACvE,CAAC;IAMD,MAAM,CAAC,KAAK;QACV,IAAI,CAAC,UAAU,GAAG,KAAK,CAAC;QACxB,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC;IAC3B,CAAC;;AA5CH,gDA6CC;AA5CyB,yBAAM,GAAG,IAAI,eAAM,CAAC,oBAAoB,CAAC,CAAC;AACnD,6BAAU,GAAG,KAAK,CAAC;AACnB,+BAAY,GAAkB,IAAI,CAAC"}

package/dist/core/modules/better-auth/better-auth.config.d.ts CHANGED Viewed

@@ -5,5 +5,8 @@ export interface CreateBetterAuthOptions {
     config: IBetterAuth;
     db: any;
     fallbackSecrets?: (string | undefined)[];
+    serverAppUrl?: string;
+    serverBaseUrl?: string;
+    serverEnv?: string;
 }
 export declare function createBetterAuthInstance(options: CreateBetterAuthOptions): BetterAuthInstance | null;

package/dist/core/modules/better-auth/better-auth.config.js CHANGED Viewed

@@ -17,20 +17,28 @@ function createBetterAuthInstance(options) {
     if (config?.enabled === false) {
         return null;
     }
-    const validation = validateConfig(config, fallbackSecrets);
+    const resolvedUrls = resolveUrls(options);
+    for (const warning of resolvedUrls.warnings) {
+        logger.log(warning);
+    }
+    const passkeyNormalization = normalizePasskeyConfig(config, resolvedUrls);
+    for (const warning of passkeyNormalization.warnings) {
+        logger.warn(warning);
+    }
+    const validation = validateConfig(config, fallbackSecrets, passkeyNormalization);
     for (const warning of validation.warnings) {
         logger.warn(warning);
     }
     if (!validation.valid) {
         throw new Error(`BetterAuth configuration invalid: ${validation.errors.join('; ')}`);
     }
-    const plugins = buildPlugins(config);
+    const plugins = buildPlugins(config, passkeyNormalization);
     const socialProviders = buildSocialProviders(config);
-    const trustedOrigins = buildTrustedOrigins(config);
+    const trustedOrigins = buildTrustedOrigins(config, passkeyNormalization, resolvedUrls);
     const additionalFields = buildUserFields(config);
     const betterAuthConfig = {
         basePath: config.basePath || '/iam',
-        baseURL: config.baseUrl || 'http://localhost:3000',
+        baseURL: resolvedUrls.baseUrl || config.baseUrl || 'http://localhost:3000',
         database: (0, mongodb_1.mongodbAdapter)(db),
         emailAndPassword: {
             enabled: config.emailAndPassword?.enabled !== false,
@@ -49,7 +57,7 @@ function createBetterAuthInstance(options) {
     const finalConfig = config.options ? { ...betterAuthConfig, ...config.options } : betterAuthConfig;
     return (0, better_auth_1.betterAuth)(finalConfig);
 }
-function buildPlugins(config) {
+function buildPlugins(config, passkeyNormalization) {
     const plugins = [];
     const jwtExplicitlyDisabled = config.jwt === false || (typeof config.jwt === 'object' && config.jwt?.enabled === false);
     if (!jwtExplicitlyDisabled) {
@@ -60,30 +68,31 @@ function buildPlugins(config) {
             },
         }));
     }
-    const twoFactorConfig = getPluginConfig(config.twoFactor);
-    if (twoFactorConfig) {
+    const twoFactorExplicitlyDisabled = config.twoFactor === false || (typeof config.twoFactor === 'object' && config.twoFactor?.enabled === false);
+    if (!twoFactorExplicitlyDisabled) {
+        const twoFactorConfig = typeof config.twoFactor === 'object' ? config.twoFactor : {};
         plugins.push((0, plugins_1.twoFactor)({
             issuer: twoFactorConfig.appName || 'Nest Server',
         }));
     }
-    const passkeyConfig = getPluginConfig(config.passkey);
-    if (passkeyConfig) {
+    if (passkeyNormalization.enabled && passkeyNormalization.normalizedConfig) {
+        const normalizedPasskey = passkeyNormalization.normalizedConfig;
         const passkeyOptions = {
-            origin: passkeyConfig.origin || 'http://localhost:3000',
-            rpID: passkeyConfig.rpId || 'localhost',
-            rpName: passkeyConfig.rpName || 'Nest Server',
+            origin: normalizedPasskey.origin,
+            rpID: normalizedPasskey.rpId,
+            rpName: normalizedPasskey.rpName,
         };
-        if (passkeyConfig.authenticatorAttachment) {
-            passkeyOptions.authenticatorAttachment = passkeyConfig.authenticatorAttachment;
+        if (normalizedPasskey.authenticatorAttachment) {
+            passkeyOptions.authenticatorAttachment = normalizedPasskey.authenticatorAttachment;
         }
-        if (passkeyConfig.residentKey) {
-            passkeyOptions.residentKey = passkeyConfig.residentKey;
+        if (normalizedPasskey.residentKey) {
+            passkeyOptions.residentKey = normalizedPasskey.residentKey;
         }
-        if (passkeyConfig.userVerification) {
-            passkeyOptions.userVerification = passkeyConfig.userVerification;
+        if (normalizedPasskey.userVerification) {
+            passkeyOptions.userVerification = normalizedPasskey.userVerification;
         }
-        if (passkeyConfig.webAuthnChallengeCookie) {
-            passkeyOptions.webAuthnChallengeCookie = passkeyConfig.webAuthnChallengeCookie;
+        if (normalizedPasskey.webAuthnChallengeCookie) {
+            passkeyOptions.webAuthnChallengeCookie = normalizedPasskey.webAuthnChallengeCookie;
         }
         plugins.push((0, passkey_1.passkey)(passkeyOptions));
     }
@@ -106,13 +115,15 @@ function buildSocialProviders(config) {
     }
     return socialProvidersConfig;
 }
-function buildTrustedOrigins(config) {
+function buildTrustedOrigins(config, passkeyNormalization, resolvedUrls) {
     if (config.trustedOrigins?.length) {
         return config.trustedOrigins;
     }
-    const isPasskeyEnabled = isPluginEnabled(config.passkey);
-    if (!isPasskeyEnabled && config.baseUrl) {
-        return [config.baseUrl];
+    if (passkeyNormalization.enabled && passkeyNormalization.trustedOrigins?.length) {
+        return passkeyNormalization.trustedOrigins;
+    }
+    if (resolvedUrls.appUrl) {
+        return [resolvedUrls.appUrl];
     }
     return undefined;
 }
@@ -167,20 +178,6 @@ function getAutoGeneratedSecret() {
     }
     return cachedAutoGeneratedSecret;
 }
-function getPluginConfig(config) {
-    if (!isPluginEnabled(config))
-        return undefined;
-    if (typeof config === 'boolean')
-        return {};
-    return config;
-}
-function isPluginEnabled(config) {
-    if (config === undefined)
-        return false;
-    if (typeof config === 'boolean')
-        return config;
-    return config.enabled !== false;
-}
 function isValidSecretLength(secret) {
     return secret && secret.length >= 32;
 }
@@ -193,7 +190,136 @@ function isValidUrl(url) {
         return false;
     }
 }
-function validateConfig(config, fallbackSecrets) {
+const LOCALHOST_DEFAULTS = {
+    API_URL: 'http://localhost:3000',
+    APP_URL: 'http://localhost:3001',
+};
+const LOCALHOST_ENVS = ['local', 'ci', 'e2e'];
+function deriveAppUrlFromBaseUrl(baseUrl) {
+    try {
+        const url = new URL(baseUrl);
+        const hostname = url.hostname;
+        if (hostname.startsWith('api.')) {
+            url.hostname = hostname.substring(4);
+            return url.origin;
+        }
+        return url.origin;
+    }
+    catch {
+        return baseUrl;
+    }
+}
+function extractRpIdFromUrl(url) {
+    try {
+        const parsedUrl = new URL(url);
+        const hostname = parsedUrl.hostname;
+        if (hostname === 'localhost' || hostname === '127.0.0.1') {
+            return 'localhost';
+        }
+        const parts = hostname.split('.');
+        if (parts.length <= 2) {
+            return hostname;
+        }
+        return parts.slice(-2).join('.');
+    }
+    catch {
+        return 'localhost';
+    }
+}
+function normalizePasskeyConfig(config, resolvedUrls) {
+    const warnings = [];
+    const isExplicitlyDisabled = config.passkey === false || (typeof config.passkey === 'object' && config.passkey?.enabled === false);
+    if (isExplicitlyDisabled) {
+        return { enabled: false, normalizedConfig: null, trustedOrigins: null, warnings };
+    }
+    const rawConfig = typeof config.passkey === 'object' ? config.passkey : {};
+    const finalRpId = rawConfig.rpId || resolvedUrls.rpId;
+    const finalOrigin = rawConfig.origin || resolvedUrls.appUrl;
+    const finalTrustedOrigins = config.trustedOrigins?.length ? config.trustedOrigins : resolvedUrls.appUrl ? [resolvedUrls.appUrl] : undefined;
+    const hasRequiredConfig = finalRpId && finalOrigin && finalTrustedOrigins?.length;
+    if (!hasRequiredConfig) {
+        const missingFields = [];
+        if (!finalRpId)
+            missingFields.push('rpId');
+        if (!finalOrigin)
+            missingFields.push('origin');
+        if (!finalTrustedOrigins?.length)
+            missingFields.push('trustedOrigins');
+        warnings.push(`⚠️ PASSKEY DISABLED: Cannot auto-detect required values (${missingFields.join(', ')}). ` +
+            'To enable Passkey, set baseUrl in your config or configure passkey values explicitly.');
+        warnings.push('Fix options:\n' +
+            '  1. Set baseUrl: "https://api.example.com" → auto-detects appUrl, rpId, origin\n' +
+            '  2. Set env: "local" → uses localhost:3000 (API) and localhost:3001 (App) defaults\n' +
+            '  3. Disable Passkey explicitly: passkey: false (no warning)');
+        return { enabled: false, normalizedConfig: null, trustedOrigins: null, warnings };
+    }
+    if (!rawConfig.rpId && resolvedUrls.rpId) {
+        warnings.push(`PASSKEY: Using rpId="${finalRpId}" (auto-detected from appUrl)`);
+    }
+    if (!rawConfig.origin && resolvedUrls.appUrl) {
+        warnings.push(`PASSKEY: Using origin="${finalOrigin}" (= appUrl)`);
+    }
+    if (!config.trustedOrigins?.length && resolvedUrls.appUrl) {
+        warnings.push(`PASSKEY: Using trustedOrigins=${JSON.stringify(finalTrustedOrigins)} (= [appUrl])`);
+    }
+    const normalizedConfig = {
+        origin: finalOrigin,
+        rpId: finalRpId,
+        rpName: rawConfig.rpName || 'Nest Server',
+    };
+    if (rawConfig.authenticatorAttachment) {
+        normalizedConfig.authenticatorAttachment = rawConfig.authenticatorAttachment;
+    }
+    if (rawConfig.challengeStorage) {
+        normalizedConfig.challengeStorage = rawConfig.challengeStorage;
+    }
+    if (rawConfig.challengeTtlSeconds) {
+        normalizedConfig.challengeTtlSeconds = rawConfig.challengeTtlSeconds;
+    }
+    if (rawConfig.residentKey) {
+        normalizedConfig.residentKey = rawConfig.residentKey;
+    }
+    if (rawConfig.userVerification) {
+        normalizedConfig.userVerification = rawConfig.userVerification;
+    }
+    if (rawConfig.webAuthnChallengeCookie) {
+        normalizedConfig.webAuthnChallengeCookie = rawConfig.webAuthnChallengeCookie;
+    }
+    return {
+        enabled: true,
+        normalizedConfig,
+        trustedOrigins: finalTrustedOrigins,
+        warnings,
+    };
+}
+function resolveUrls(options) {
+    const { config, serverAppUrl, serverBaseUrl, serverEnv } = options;
+    const warnings = [];
+    const usesLocalhostDefaults = LOCALHOST_ENVS.includes(serverEnv || '');
+    let baseUrl = config.baseUrl || serverBaseUrl;
+    if (!baseUrl && usesLocalhostDefaults) {
+        baseUrl = LOCALHOST_DEFAULTS.API_URL;
+        warnings.push(`URL: Using localhost default baseUrl="${baseUrl}" (env: '${serverEnv}')`);
+    }
+    let appUrl = serverAppUrl;
+    const isBaseUrlLocalhost = baseUrl && (baseUrl.includes('localhost') || baseUrl.includes('127.0.0.1'));
+    if (!appUrl && usesLocalhostDefaults && isBaseUrlLocalhost) {
+        appUrl = LOCALHOST_DEFAULTS.APP_URL;
+        warnings.push(`URL: Using localhost default appUrl="${appUrl}" (env: '${serverEnv}')`);
+    }
+    if (!appUrl && baseUrl) {
+        appUrl = deriveAppUrlFromBaseUrl(baseUrl);
+        if (appUrl !== baseUrl) {
+            warnings.push(`URL: Auto-derived appUrl="${appUrl}" from baseUrl="${baseUrl}"`);
+        }
+    }
+    let rpId;
+    if (appUrl) {
+        rpId = extractRpIdFromUrl(appUrl);
+    }
+    return { appUrl, baseUrl, rpId, warnings };
+}
+function validateConfig(config, fallbackSecrets, passkeyNormalization) {
     const errors = [];
     const warnings = [];
     let secretSource = 'explicit';
@@ -236,15 +362,18 @@ function validateConfig(config, fallbackSecrets) {
             }
         }
     }
-    const isPasskeyEnabled = isPluginEnabled(config.passkey);
-    if (isPasskeyEnabled && !config.trustedOrigins?.length) {
-        errors.push('PASSKEY CORS: trustedOrigins is REQUIRED when Passkey is enabled. ' +
-            'Passkey uses credentials which requires explicit CORS origins (wildcard "*" is not allowed). ' +
-            'Configure betterAuth.trustedOrigins with your frontend URLs, e.g.: ["http://localhost:3001", "https://app.example.com"]');
+    if (passkeyNormalization?.trustedOrigins) {
+        for (const origin of passkeyNormalization.trustedOrigins) {
+            if (!isValidUrl(origin)) {
+                errors.push(`Invalid auto-detected trustedOrigin format: ${origin}`);
+            }
+        }
     }
-    const passkeyConfig = typeof config.passkey === 'object' ? config.passkey : null;
-    if (passkeyConfig?.enabled && passkeyConfig.origin && !isValidUrl(passkeyConfig.origin)) {
-        errors.push(`Invalid passkey origin format: ${passkeyConfig.origin}`);
+    if (passkeyNormalization?.enabled && passkeyNormalization.normalizedConfig) {
+        const normalizedOrigin = passkeyNormalization.normalizedConfig.origin;
+        if (!isValidUrl(normalizedOrigin)) {
+            errors.push(`Invalid passkey origin format: ${normalizedOrigin}`);
+        }
     }
     if (config.socialProviders) {
         for (const [name, provider] of Object.entries(config.socialProviders)) {