@lyrolab/nest-shared 1.7.1 → 1.8.0

package/CHANGELOG.md

@@ -1,9 +1,9 @@
-## [1.7.1](https://github.com/lyrolab/nest-shared/compare/v1.7.0...v1.7.1) (2026-02-15)
+# [1.8.0](https://github.com/lyrolab/nest-shared/compare/v1.7.1...v1.8.0) (2026-02-15)
 
 
-### Bug Fixes
+### Features
 
-* add repository url for npm provenance validation ([804c2ef](https://github.com/lyrolab/nest-shared/commit/804c2ef362121dc98180c86e95db06d8af35cf8e))
+* add shared auth module with Keycloak JWT support ([2cc2eaf](https://github.com/lyrolab/nest-shared/commit/2cc2eaf6af7d9a2b74d9d1be5a546ea769ec0513))
 
 ## [1.0.1](https://github.com/lyrolab/nest-shared/compare/v1.0.0...v1.0.1) (2025-04-10)
 

package/dist/auth/auth.constants.d.ts

@@ -0,0 +1 @@
+export declare const AUTH_MODULE_OPTIONS = "AUTH_MODULE_OPTIONS";

package/dist/auth/auth.constants.js

@@ -0,0 +1,5 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AUTH_MODULE_OPTIONS = void 0;
+exports.AUTH_MODULE_OPTIONS = "AUTH_MODULE_OPTIONS";
+//# sourceMappingURL=auth.constants.js.map

package/dist/auth/auth.constants.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.constants.js","sourceRoot":"","sources":["../../src/auth/auth.constants.ts"],"names":[],"mappings":";;;AAAa,QAAA,mBAAmB,GAAG,qBAAqB,CAAA"}

package/dist/auth/decorators/current-user.decorator.d.ts

@@ -0,0 +1 @@
+export declare const CurrentUser: (...dataOrPipes: unknown[]) => ParameterDecorator;

package/dist/auth/decorators/current-user.decorator.js

@@ -0,0 +1,11 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CurrentUser = void 0;
+const common_1 = require("@nestjs/common");
+exports.CurrentUser = (0, common_1.createParamDecorator)((data, ctx) => {
+    const request = ctx
+        .switchToHttp()
+        .getRequest();
+    return request.user;
+});
+//# sourceMappingURL=current-user.decorator.js.map

package/dist/auth/decorators/current-user.decorator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"current-user.decorator.js","sourceRoot":"","sources":["../../../src/auth/decorators/current-user.decorator.ts"],"names":[],"mappings":";;;AAAA,2CAAuE;AAI1D,QAAA,WAAW,GAAG,IAAA,6BAAoB,EAC7C,CAAC,IAAa,EAAE,GAAqB,EAAY,EAAE;IACjD,MAAM,OAAO,GAAG,GAAG;SAChB,YAAY,EAAE;SACd,UAAU,EAAgC,CAAA;IAC7C,OAAO,OAAO,CAAC,IAAI,CAAA;AACrB,CAAC,CACF,CAAA"}

package/dist/auth/decorators/public.decorator.d.ts

@@ -0,0 +1,2 @@
+export declare const IS_PUBLIC_KEY = "isPublic";
+export declare const Public: () => import("@nestjs/common").CustomDecorator<string>;

package/dist/auth/decorators/public.decorator.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Public = exports.IS_PUBLIC_KEY = void 0;
+const common_1 = require("@nestjs/common");
+exports.IS_PUBLIC_KEY = "isPublic";
+const Public = () => (0, common_1.SetMetadata)(exports.IS_PUBLIC_KEY, true);
+exports.Public = Public;
+//# sourceMappingURL=public.decorator.js.map

package/dist/auth/decorators/public.decorator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"public.decorator.js","sourceRoot":"","sources":["../../../src/auth/decorators/public.decorator.ts"],"names":[],"mappings":";;;AAAA,2CAA4C;AAE/B,QAAA,aAAa,GAAG,UAAU,CAAA;AAChC,MAAM,MAAM,GAAG,GAAG,EAAE,CAAC,IAAA,oBAAW,EAAC,qBAAa,EAAE,IAAI,CAAC,CAAA;AAA/C,QAAA,MAAM,UAAyC"}

package/dist/auth/guards/jwt-auth.guard.d.ts

@@ -0,0 +1,9 @@
+import { ExecutionContext } from "@nestjs/common";
+import { Reflector } from "@nestjs/core";
+declare const JwtAuthGuard_base: import("@nestjs/passport").Type<import("@nestjs/passport").IAuthGuard>;
+export declare class JwtAuthGuard extends JwtAuthGuard_base {
+    private reflector;
+    constructor(reflector: Reflector);
+    canActivate(context: ExecutionContext): boolean | Promise<boolean> | import("rxjs").Observable<boolean>;
+}
+export {};

package/dist/auth/guards/jwt-auth.guard.js

@@ -0,0 +1,41 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JwtAuthGuard = void 0;
+const common_1 = require("@nestjs/common");
+const core_1 = require("@nestjs/core");
+const passport_1 = require("@nestjs/passport");
+const public_decorator_1 = require("../decorators/public.decorator");
+let JwtAuthGuard = class JwtAuthGuard extends (0, passport_1.AuthGuard)("jwt") {
+    reflector;
+    constructor(reflector) {
+        super();
+        this.reflector = reflector;
+    }
+    canActivate(context) {
+        const isPublic = this.reflector.getAllAndOverride(public_decorator_1.IS_PUBLIC_KEY, [
+            context.getHandler(),
+            context.getClass(),
+        ]);
+        if (isPublic)
+            return true;
+        const request = context.switchToHttp().getRequest();
+        if (request.path === "/health" || request.path.startsWith("/api"))
+            return true;
+        return super.canActivate(context);
+    }
+};
+exports.JwtAuthGuard = JwtAuthGuard;
+exports.JwtAuthGuard = JwtAuthGuard = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [core_1.Reflector])
+], JwtAuthGuard);
+//# sourceMappingURL=jwt-auth.guard.js.map

package/dist/auth/guards/jwt-auth.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt-auth.guard.js","sourceRoot":"","sources":["../../../src/auth/guards/jwt-auth.guard.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,2CAA6D;AAC7D,uCAAwC;AACxC,+CAA4C;AAE5C,qEAA8D;AAGvD,IAAM,YAAY,GAAlB,MAAM,YAAa,SAAQ,IAAA,oBAAS,EAAC,KAAK,CAAC;IAC5B;IAApB,YAAoB,SAAoB;QACtC,KAAK,EAAE,CAAA;QADW,cAAS,GAAT,SAAS,CAAW;IAExC,CAAC;IAED,WAAW,CAAC,OAAyB;QACnC,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,iBAAiB,CAAU,gCAAa,EAAE;YACxE,OAAO,CAAC,UAAU,EAAE;YACpB,OAAO,CAAC,QAAQ,EAAE;SACnB,CAAC,CAAA;QACF,IAAI,QAAQ;YAAE,OAAO,IAAI,CAAA;QAGzB,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAW,CAAA;QAC5D,IAAI,OAAO,CAAC,IAAI,KAAK,SAAS,IAAI,OAAO,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC;YAC/D,OAAO,IAAI,CAAA;QAEb,OAAO,KAAK,CAAC,WAAW,CAAC,OAAO,CAAC,CAAA;IACnC,CAAC;CACF,CAAA;AAnBY,oCAAY;uBAAZ,YAAY;IADxB,IAAA,mBAAU,GAAE;qCAEoB,gBAAS;GAD7B,YAAY,CAmBxB"}

package/dist/auth/helpers/keycloak.helper.d.ts

@@ -0,0 +1,4 @@
+export declare function keycloakConfig(url: string, realm: string): {
+    jwksUri: string;
+    issuer: string;
+};

package/dist/auth/helpers/keycloak.helper.js

@@ -0,0 +1,10 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.keycloakConfig = keycloakConfig;
+function keycloakConfig(url, realm) {
+    return {
+        jwksUri: `${url}/realms/${realm}/protocol/openid-connect/certs`,
+        issuer: `${url}/realms/${realm}`,
+    };
+}
+//# sourceMappingURL=keycloak.helper.js.map

package/dist/auth/helpers/keycloak.helper.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"keycloak.helper.js","sourceRoot":"","sources":["../../../src/auth/helpers/keycloak.helper.ts"],"names":[],"mappings":";;AAAA,wCAQC;AARD,SAAgB,cAAc,CAC5B,GAAW,EACX,KAAa;IAEb,OAAO;QACL,OAAO,EAAE,GAAG,GAAG,WAAW,KAAK,gCAAgC;QAC/D,MAAM,EAAE,GAAG,GAAG,WAAW,KAAK,EAAE;KACjC,CAAA;AACH,CAAC"}

package/dist/auth/index.d.ts

@@ -0,0 +1,8 @@
+export * from "./shared-auth.module";
+export * from "./auth.constants";
+export * from "./interfaces/auth-module-options.interface";
+export * from "./models/jwt-payload";
+export * from "./decorators/current-user.decorator";
+export * from "./decorators/public.decorator";
+export * from "./guards/jwt-auth.guard";
+export * from "./helpers/keycloak.helper";

package/dist/auth/index.js

@@ -0,0 +1,25 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./shared-auth.module"), exports);
+__exportStar(require("./auth.constants"), exports);
+__exportStar(require("./interfaces/auth-module-options.interface"), exports);
+__exportStar(require("./models/jwt-payload"), exports);
+__exportStar(require("./decorators/current-user.decorator"), exports);
+__exportStar(require("./decorators/public.decorator"), exports);
+__exportStar(require("./guards/jwt-auth.guard"), exports);
+__exportStar(require("./helpers/keycloak.helper"), exports);
+//# sourceMappingURL=index.js.map

package/dist/auth/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,uDAAoC;AACpC,mDAAgC;AAChC,6EAA0D;AAC1D,uDAAoC;AACpC,sEAAmD;AACnD,gEAA6C;AAC7C,0DAAuC;AACvC,4DAAyC"}

package/dist/auth/interfaces/auth-module-options.interface.d.ts

@@ -0,0 +1,14 @@
+import { ModuleMetadata, Type } from "@nestjs/common";
+export interface AuthModuleOptions {
+    jwksUri: string;
+    issuer: string;
+}
+export interface AuthModuleAsyncOptions extends Pick<ModuleMetadata, "imports"> {
+    useFactory?: (...args: any[]) => Promise<AuthModuleOptions> | AuthModuleOptions;
+    inject?: any[];
+    useClass?: Type<AuthOptionsFactory>;
+    useExisting?: Type<AuthOptionsFactory>;
+}
+export interface AuthOptionsFactory {
+    createAuthOptions(): Promise<AuthModuleOptions> | AuthModuleOptions;
+}

package/dist/auth/interfaces/auth-module-options.interface.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=auth-module-options.interface.js.map

package/dist/auth/interfaces/auth-module-options.interface.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-module-options.interface.js","sourceRoot":"","sources":["../../../src/auth/interfaces/auth-module-options.interface.ts"],"names":[],"mappings":""}

package/dist/auth/models/jwt-payload.d.ts

@@ -0,0 +1,15 @@
+export interface JwtPayload {
+    sub: string;
+    email?: string;
+    preferred_username?: string;
+    given_name?: string;
+    family_name?: string;
+    realm_access?: {
+        roles: string[];
+    };
+}
+export interface AuthUser {
+    id: string;
+    email?: string;
+    name?: string;
+}

package/dist/auth/models/jwt-payload.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=jwt-payload.js.map

package/dist/auth/models/jwt-payload.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt-payload.js","sourceRoot":"","sources":["../../../src/auth/models/jwt-payload.ts"],"names":[],"mappings":""}

package/dist/auth/shared-auth.module.d.ts

@@ -0,0 +1,8 @@
+import { DynamicModule } from "@nestjs/common";
+import { AuthModuleAsyncOptions, AuthModuleOptions } from "./interfaces/auth-module-options.interface";
+export declare class SharedAuthModule {
+    static forRoot(options: AuthModuleOptions): DynamicModule;
+    static forRootAsync(options: AuthModuleAsyncOptions): DynamicModule;
+    private static createAsyncProviders;
+    private static createAsyncOptionsProvider;
+}

package/dist/auth/shared-auth.module.js

@@ -0,0 +1,82 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var SharedAuthModule_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SharedAuthModule = void 0;
+const common_1 = require("@nestjs/common");
+const passport_1 = require("@nestjs/passport");
+const auth_constants_1 = require("./auth.constants");
+const jwt_auth_guard_1 = require("./guards/jwt-auth.guard");
+const jwt_strategy_1 = require("./strategies/jwt.strategy");
+let SharedAuthModule = SharedAuthModule_1 = class SharedAuthModule {
+    static forRoot(options) {
+        return {
+            module: SharedAuthModule_1,
+            global: true,
+            imports: [passport_1.PassportModule.register({ defaultStrategy: "jwt" })],
+            providers: [
+                {
+                    provide: auth_constants_1.AUTH_MODULE_OPTIONS,
+                    useValue: options,
+                },
+                jwt_strategy_1.JwtStrategy,
+                jwt_auth_guard_1.JwtAuthGuard,
+            ],
+            exports: [auth_constants_1.AUTH_MODULE_OPTIONS, jwt_auth_guard_1.JwtAuthGuard],
+        };
+    }
+    static forRootAsync(options) {
+        return {
+            module: SharedAuthModule_1,
+            global: true,
+            imports: [
+                passport_1.PassportModule.register({ defaultStrategy: "jwt" }),
+                ...(options.imports || []),
+            ],
+            providers: [
+                ...this.createAsyncProviders(options),
+                jwt_strategy_1.JwtStrategy,
+                jwt_auth_guard_1.JwtAuthGuard,
+            ],
+            exports: [auth_constants_1.AUTH_MODULE_OPTIONS, jwt_auth_guard_1.JwtAuthGuard],
+        };
+    }
+    static createAsyncProviders(options) {
+        if (options.useExisting || options.useFactory) {
+            return [this.createAsyncOptionsProvider(options)];
+        }
+        return [
+            this.createAsyncOptionsProvider(options),
+            {
+                provide: options.useClass,
+                useClass: options.useClass,
+            },
+        ];
+    }
+    static createAsyncOptionsProvider(options) {
+        if (options.useFactory) {
+            return {
+                provide: auth_constants_1.AUTH_MODULE_OPTIONS,
+                useFactory: options.useFactory,
+                inject: options.inject || [],
+            };
+        }
+        return {
+            provide: auth_constants_1.AUTH_MODULE_OPTIONS,
+            useFactory: async (optionsFactory) => {
+                return optionsFactory.createAuthOptions();
+            },
+            inject: [options.useExisting || options.useClass],
+        };
+    }
+};
+exports.SharedAuthModule = SharedAuthModule;
+exports.SharedAuthModule = SharedAuthModule = SharedAuthModule_1 = __decorate([
+    (0, common_1.Module)({})
+], SharedAuthModule);
+//# sourceMappingURL=shared-auth.module.js.map

package/dist/auth/shared-auth.module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"shared-auth.module.js","sourceRoot":"","sources":["../../src/auth/shared-auth.module.ts"],"names":[],"mappings":";;;;;;;;;;AAAA,2CAAgE;AAChE,+CAAiD;AACjD,qDAAsD;AACtD,4DAAsD;AAMtD,4DAAuD;AAGhD,IAAM,gBAAgB,wBAAtB,MAAM,gBAAgB;IAC3B,MAAM,CAAC,OAAO,CAAC,OAA0B;QACvC,OAAO;YACL,MAAM,EAAE,kBAAgB;YACxB,MAAM,EAAE,IAAI;YACZ,OAAO,EAAE,CAAC,yBAAc,CAAC,QAAQ,CAAC,EAAE,eAAe,EAAE,KAAK,EAAE,CAAC,CAAC;YAC9D,SAAS,EAAE;gBACT;oBACE,OAAO,EAAE,oCAAmB;oBAC5B,QAAQ,EAAE,OAAO;iBAClB;gBACD,0BAAW;gBACX,6BAAY;aACb;YACD,OAAO,EAAE,CAAC,oCAAmB,EAAE,6BAAY,CAAC;SAC7C,CAAA;IACH,CAAC;IAED,MAAM,CAAC,YAAY,CAAC,OAA+B;QACjD,OAAO;YACL,MAAM,EAAE,kBAAgB;YACxB,MAAM,EAAE,IAAI;YACZ,OAAO,EAAE;gBACP,yBAAc,CAAC,QAAQ,CAAC,EAAE,eAAe,EAAE,KAAK,EAAE,CAAC;gBACnD,GAAG,CAAC,OAAO,CAAC,OAAO,IAAI,EAAE,CAAC;aAC3B;YACD,SAAS,EAAE;gBACT,GAAG,IAAI,CAAC,oBAAoB,CAAC,OAAO,CAAC;gBACrC,0BAAW;gBACX,6BAAY;aACb;YACD,OAAO,EAAE,CAAC,oCAAmB,EAAE,6BAAY,CAAC;SAC7C,CAAA;IACH,CAAC;IAEO,MAAM,CAAC,oBAAoB,CACjC,OAA+B;QAE/B,IAAI,OAAO,CAAC,WAAW,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC;YAC9C,OAAO,CAAC,IAAI,CAAC,0BAA0B,CAAC,OAAO,CAAC,CAAC,CAAA;QACnD,CAAC;QAED,OAAO;YACL,IAAI,CAAC,0BAA0B,CAAC,OAAO,CAAC;YACxC;gBACE,OAAO,EAAE,OAAO,CAAC,QAAS;gBAC1B,QAAQ,EAAE,OAAO,CAAC,QAAS;aAC5B;SACF,CAAA;IACH,CAAC;IAEO,MAAM,CAAC,0BAA0B,CACvC,OAA+B;QAE/B,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC;YACvB,OAAO;gBACL,OAAO,EAAE,oCAAmB;gBAC5B,UAAU,EAAE,OAAO,CAAC,UAAU;gBAC9B,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,EAAE;aAC7B,CAAA;QACH,CAAC;QAED,OAAO;YACL,OAAO,EAAE,oCAAmB;YAC5B,UAAU,EAAE,KAAK,EAAE,cAAkC,EAAE,EAAE;gBACvD,OAAO,cAAc,CAAC,iBAAiB,EAAE,CAAA;YAC3C,CAAC;YACD,MAAM,EAAE,CAAC,OAAO,CAAC,WAAW,IAAI,OAAO,CAAC,QAAS,CAAC;SACnD,CAAA;IACH,CAAC;CACF,CAAA;AAtEY,4CAAgB;2BAAhB,gBAAgB;IAD5B,IAAA,eAAM,EAAC,EAAE,CAAC;GACE,gBAAgB,CAsE5B"}

package/dist/auth/strategies/jwt.strategy.d.ts

@@ -0,0 +1,11 @@
+import { Strategy } from "passport-jwt";
+import { AuthModuleOptions } from "../interfaces/auth-module-options.interface";
+import { AuthUser, JwtPayload } from "../models/jwt-payload";
+declare const JwtStrategy_base: new (...args: [opt: import("passport-jwt").StrategyOptionsWithRequest] | [opt: import("passport-jwt").StrategyOptionsWithoutRequest]) => Strategy & {
+    validate(...args: any[]): unknown;
+};
+export declare class JwtStrategy extends JwtStrategy_base {
+    constructor(options: AuthModuleOptions);
+    validate(payload: JwtPayload): AuthUser;
+}
+export {};

package/dist/auth/strategies/jwt.strategy.js

@@ -0,0 +1,49 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JwtStrategy = void 0;
+const common_1 = require("@nestjs/common");
+const passport_1 = require("@nestjs/passport");
+const passport_jwt_1 = require("passport-jwt");
+const jwks_rsa_1 = require("jwks-rsa");
+const auth_constants_1 = require("../auth.constants");
+let JwtStrategy = class JwtStrategy extends (0, passport_1.PassportStrategy)(passport_jwt_1.Strategy) {
+    constructor(options) {
+        super({
+            jwtFromRequest: passport_jwt_1.ExtractJwt.fromAuthHeaderAsBearerToken(),
+            ignoreExpiration: false,
+            secretOrKeyProvider: (0, jwks_rsa_1.passportJwtSecret)({
+                cache: true,
+                rateLimit: true,
+                jwksRequestsPerMinute: 5,
+                jwksUri: options.jwksUri,
+            }),
+            issuer: options.issuer,
+        });
+    }
+    validate(payload) {
+        return {
+            id: payload.sub,
+            email: payload.email,
+            name: payload.preferred_username,
+        };
+    }
+};
+exports.JwtStrategy = JwtStrategy;
+exports.JwtStrategy = JwtStrategy = __decorate([
+    (0, common_1.Injectable)(),
+    __param(0, (0, common_1.Inject)(auth_constants_1.AUTH_MODULE_OPTIONS)),
+    __metadata("design:paramtypes", [Object])
+], JwtStrategy);
+//# sourceMappingURL=jwt.strategy.js.map

package/dist/auth/strategies/jwt.strategy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt.strategy.js","sourceRoot":"","sources":["../../../src/auth/strategies/jwt.strategy.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAAmD;AACnD,+CAAmD;AACnD,+CAAmD;AACnD,uCAA4C;AAC5C,sDAAuD;AAKhD,IAAM,WAAW,GAAjB,MAAM,WAAY,SAAQ,IAAA,2BAAgB,EAAC,uBAAQ,CAAC;IACzD,YAAyC,OAA0B;QACjE,KAAK,CAAC;YACJ,cAAc,EAAE,yBAAU,CAAC,2BAA2B,EAAE;YACxD,gBAAgB,EAAE,KAAK;YACvB,mBAAmB,EAAE,IAAA,4BAAiB,EAAC;gBACrC,KAAK,EAAE,IAAI;gBACX,SAAS,EAAE,IAAI;gBACf,qBAAqB,EAAE,CAAC;gBACxB,OAAO,EAAE,OAAO,CAAC,OAAO;aACzB,CAAC;YACF,MAAM,EAAE,OAAO,CAAC,MAAM;SACvB,CAAC,CAAA;IACJ,CAAC;IAED,QAAQ,CAAC,OAAmB;QAC1B,OAAO;YACL,EAAE,EAAE,OAAO,CAAC,GAAG;YACf,KAAK,EAAE,OAAO,CAAC,KAAK;YACpB,IAAI,EAAE,OAAO,CAAC,kBAAkB;SACjC,CAAA;IACH,CAAC;CACF,CAAA;AAtBY,kCAAW;sBAAX,WAAW;IADvB,IAAA,mBAAU,GAAE;IAEE,WAAA,IAAA,eAAM,EAAC,oCAAmB,CAAC,CAAA;;GAD7B,WAAW,CAsBvB"}