npm - @mastra/auth-supabase - Versions diffs - 0.0.0-fix-generate-title-20250616171351 - Mend

@mastra/auth-supabase 0.0.0-fix-generate-title-20250616171351

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (23) hide show

package/.turbo/turbo-build.log +30 -0
package/CHANGELOG.md +15 -0
package/LICENSE.md +7 -0
package/README.md +81 -0
package/dist/_tsup-dts-rollup.d.cts +18 -0
package/dist/_tsup-dts-rollup.d.ts +18 -0
package/dist/chunk-JLXWUSDO.js +972 -0
package/dist/chunk-N62AETLJ.js +7 -0
package/dist/getMachineId-bsd-IPBZSYCM.js +21 -0
package/dist/getMachineId-darwin-UJH25LDA.js +22 -0
package/dist/getMachineId-linux-YF3RLZNP.js +17 -0
package/dist/getMachineId-unsupported-UOUTBEEW.js +9 -0
package/dist/getMachineId-win-PKATJI4A.js +23 -0
package/dist/index.cjs +1553 -0
package/dist/index.d.cts +1 -0
package/dist/index.d.ts +1 -0
package/dist/index.js +380 -0
package/eslint.config.js +6 -0
package/package.json +40 -0
package/src/index.test.ts +152 -0
package/src/index.ts +55 -0
package/tsconfig.json +5 -0
package/vitest.config.ts +8 -0

package/dist/index.d.cts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { MastraAuthSupabase } from './_tsup-dts-rollup.cjs';

package/dist/index.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { MastraAuthSupabase } from './_tsup-dts-rollup.js';

package/dist/index.js ADDED Viewed

@@ -0,0 +1,380 @@
+import { SpanKind, trace, context, propagation, SpanStatusCode } from './chunk-JLXWUSDO.js';
+import { createClient } from '@supabase/supabase-js';
+// ../../packages/core/dist/chunk-BE2B3X5T.js
+function hasActiveTelemetry(tracerName = "default-tracer") {
+  try {
+    return !!trace.getTracer(tracerName);
+  } catch {
+    return false;
+  }
+}
+function getBaggageValues(ctx) {
+  const currentBaggage = propagation.getBaggage(ctx);
+  const requestId = currentBaggage?.getEntry("http.request_id")?.value;
+  const componentName = currentBaggage?.getEntry("componentName")?.value;
+  const runId = currentBaggage?.getEntry("runId")?.value;
+  return {
+    requestId,
+    componentName,
+    runId
+  };
+}
+function withSpan(options) {
+  return function(_target, propertyKey, descriptor) {
+    if (!descriptor || typeof descriptor === "number") return;
+    const originalMethod = descriptor.value;
+    const methodName = String(propertyKey);
+    descriptor.value = function(...args) {
+      if (options?.skipIfNoTelemetry && !hasActiveTelemetry(options?.tracerName)) {
+        return originalMethod.apply(this, args);
+      }
+      const tracer = trace.getTracer(options?.tracerName ?? "default-tracer");
+      let spanName;
+      let spanKind;
+      if (typeof options === "string") {
+        spanName = options;
+      } else if (options) {
+        spanName = options.spanName || methodName;
+        spanKind = options.spanKind;
+      } else {
+        spanName = methodName;
+      }
+      const span = tracer.startSpan(spanName, { kind: spanKind });
+      let ctx = trace.setSpan(context.active(), span);
+      args.forEach((arg, index) => {
+        try {
+          span.setAttribute(`${spanName}.argument.${index}`, JSON.stringify(arg));
+        } catch {
+          span.setAttribute(`${spanName}.argument.${index}`, "[Not Serializable]");
+        }
+      });
+      const { requestId, componentName, runId } = getBaggageValues(ctx);
+      if (requestId) {
+        span.setAttribute("http.request_id", requestId);
+      }
+      if (componentName) {
+        span.setAttribute("componentName", componentName);
+        span.setAttribute("runId", runId);
+      } else if (this && this.name) {
+        span.setAttribute("componentName", this.name);
+        span.setAttribute("runId", this.runId);
+        ctx = propagation.setBaggage(
+          ctx,
+          propagation.createBaggage({
+            // @ts-ignore
+            componentName: { value: this.name },
+            // @ts-ignore
+            runId: { value: this.runId },
+            // @ts-ignore
+            "http.request_id": { value: requestId }
+          })
+        );
+      }
+      let result;
+      try {
+        result = context.with(ctx, () => originalMethod.apply(this, args));
+        if (result instanceof Promise) {
+          return result.then((resolvedValue) => {
+            try {
+              span.setAttribute(`${spanName}.result`, JSON.stringify(resolvedValue));
+            } catch {
+              span.setAttribute(`${spanName}.result`, "[Not Serializable]");
+            }
+            return resolvedValue;
+          }).finally(() => span.end());
+        }
+        try {
+          span.setAttribute(`${spanName}.result`, JSON.stringify(result));
+        } catch {
+          span.setAttribute(`${spanName}.result`, "[Not Serializable]");
+        }
+        return result;
+      } catch (error) {
+        span.setStatus({
+          code: SpanStatusCode.ERROR,
+          message: error instanceof Error ? error.message : "Unknown error"
+        });
+        if (error instanceof Error) {
+          span.recordException(error);
+        }
+        throw error;
+      } finally {
+        if (!(result instanceof Promise)) {
+          span.end();
+        }
+      }
+    };
+    return descriptor;
+  };
+}
+function InstrumentClass(options) {
+  return function(target) {
+    const methods = Object.getOwnPropertyNames(target.prototype);
+    methods.forEach((method) => {
+      if (options?.excludeMethods?.includes(method) || method === "constructor") return;
+      if (options?.methodFilter && !options.methodFilter(method)) return;
+      const descriptor = Object.getOwnPropertyDescriptor(target.prototype, method);
+      if (descriptor && typeof descriptor.value === "function") {
+        Object.defineProperty(
+          target.prototype,
+          method,
+          withSpan({
+            spanName: options?.prefix ? `${options.prefix}.${method}` : method,
+            skipIfNoTelemetry: true,
+            spanKind: options?.spanKind || SpanKind.INTERNAL,
+            tracerName: options?.tracerName
+          })(target, method, descriptor)
+        );
+      }
+    });
+    return target;
+  };
+}
+// ../../packages/core/dist/chunk-5YDTZN2X.js
+var RegisteredLogger = {
+  LLM: "LLM"};
+var LogLevel = {
+  DEBUG: "debug",
+  INFO: "info",
+  WARN: "warn",
+  ERROR: "error"};
+var MastraLogger = class {
+  name;
+  level;
+  transports;
+  constructor(options = {}) {
+    this.name = options.name || "Mastra";
+    this.level = options.level || LogLevel.ERROR;
+    this.transports = new Map(Object.entries(options.transports || {}));
+  }
+  getTransports() {
+    return this.transports;
+  }
+  trackException(_error) {
+  }
+  async getLogs(transportId, params) {
+    if (!transportId || !this.transports.has(transportId)) {
+      return { logs: [], total: 0, page: params?.page ?? 1, perPage: params?.perPage ?? 100, hasMore: false };
+    }
+    return this.transports.get(transportId).getLogs(params) ?? {
+      logs: [],
+      total: 0,
+      page: params?.page ?? 1,
+      perPage: params?.perPage ?? 100,
+      hasMore: false
+    };
+  }
+  async getLogsByRunId({
+    transportId,
+    runId,
+    fromDate,
+    toDate,
+    logLevel,
+    filters,
+    page,
+    perPage
+  }) {
+    if (!transportId || !this.transports.has(transportId) || !runId) {
+      return { logs: [], total: 0, page: page ?? 1, perPage: perPage ?? 100, hasMore: false };
+    }
+    return this.transports.get(transportId).getLogsByRunId({ runId, fromDate, toDate, logLevel, filters, page, perPage }) ?? {
+      logs: [],
+      total: 0,
+      page: page ?? 1,
+      perPage: perPage ?? 100,
+      hasMore: false
+    };
+  }
+};
+var ConsoleLogger = class extends MastraLogger {
+  constructor(options = {}) {
+    super(options);
+  }
+  debug(message, ...args) {
+    if (this.level === LogLevel.DEBUG) {
+      console.debug(message, ...args);
+    }
+  }
+  info(message, ...args) {
+    if (this.level === LogLevel.INFO || this.level === LogLevel.DEBUG) {
+      console.info(message, ...args);
+    }
+  }
+  warn(message, ...args) {
+    if (this.level === LogLevel.WARN || this.level === LogLevel.INFO || this.level === LogLevel.DEBUG) {
+      console.warn(message, ...args);
+    }
+  }
+  error(message, ...args) {
+    if (this.level === LogLevel.ERROR || this.level === LogLevel.WARN || this.level === LogLevel.INFO || this.level === LogLevel.DEBUG) {
+      console.error(message, ...args);
+    }
+  }
+  async getLogs(_transportId, _params) {
+    return { logs: [], total: 0, page: _params?.page ?? 1, perPage: _params?.perPage ?? 100, hasMore: false };
+  }
+  async getLogsByRunId(_args) {
+    return { logs: [], total: 0, page: _args.page ?? 1, perPage: _args.perPage ?? 100, hasMore: false };
+  }
+};
+// ../../packages/core/dist/chunk-5IEKR756.js
+var MastraBase = class {
+  component = RegisteredLogger.LLM;
+  logger;
+  name;
+  telemetry;
+  constructor({ component, name }) {
+    this.component = component || RegisteredLogger.LLM;
+    this.name = name;
+    this.logger = new ConsoleLogger({ name: `${this.component} - ${this.name}` });
+  }
+  /**
+   * Set the logger for the agent
+   * @param logger
+   */
+  __setLogger(logger) {
+    this.logger = logger;
+    if (this.component !== RegisteredLogger.LLM) {
+      this.logger.debug(`Logger updated [component=${this.component}] [name=${this.name}]`);
+    }
+  }
+  /**
+   * Set the telemetry for the
+   * @param telemetry
+   */
+  __setTelemetry(telemetry) {
+    this.telemetry = telemetry;
+    if (this.component !== RegisteredLogger.LLM) {
+      this.logger.debug(`Telemetry updated [component=${this.component}] [name=${this.telemetry.name}]`);
+    }
+  }
+  /**
+   * Get the telemetry on the vector
+   * @returns telemetry
+   */
+  __getTelemetry() {
+    return this.telemetry;
+  }
+  /*
+    get experimental_telemetry config
+    */
+  get experimental_telemetry() {
+    return this.telemetry ? {
+      // tracer: this.telemetry.tracer,
+      tracer: this.telemetry.getBaggageTracer(),
+      isEnabled: !!this.telemetry.tracer
+    } : void 0;
+  }
+};
+// ../../packages/core/dist/chunk-C6A6W6XS.js
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __knownSymbol = (name, symbol) => (symbol = Symbol[name]) ? symbol : Symbol.for("Symbol." + name);
+var __typeError = (msg) => {
+  throw TypeError(msg);
+};
+var __defNormalProp = (obj, key, value) => key in obj ? __defProp(obj, key, {
+  enumerable: true,
+  configurable: true,
+  writable: true,
+  value
+}) : obj[key] = value;
+var __name = (target, value) => __defProp(target, "name", {
+  value,
+  configurable: true
+});
+var __decoratorStart = (base) => [, , , __create(base?.[__knownSymbol("metadata")] ?? null)];
+var __decoratorStrings = ["class", "method", "getter", "setter", "accessor", "field", "value", "get", "set"];
+var __expectFn = (fn) => fn !== void 0 && typeof fn !== "function" ? __typeError("Function expected") : fn;
+var __decoratorContext = (kind, name, done, metadata, fns) => ({
+  kind: __decoratorStrings[kind],
+  name,
+  metadata,
+  addInitializer: (fn) => done._ ? __typeError("Already initialized") : fns.push(__expectFn(fn || null))
+});
+var __decoratorMetadata = (array, target) => __defNormalProp(target, __knownSymbol("metadata"), array[3]);
+var __runInitializers = (array, flags, self, value) => {
+  for (var i = 0, fns = array[flags >> 1], n = fns && fns.length; i < n; i++) fns[i].call(self) ;
+  return value;
+};
+var __decorateElement = (array, flags, name, decorators, target, extra) => {
+  var it, done, ctx, k = flags & 7, p = false;
+  var j = 0;
+  var extraInitializers = array[j] || (array[j] = []);
+  var desc = k && ((target = target.prototype), k < 5 && (k > 3 || !p) && __getOwnPropDesc(target , name));
+  __name(target, name);
+  for (var i = decorators.length - 1; i >= 0; i--) {
+    ctx = __decoratorContext(k, name, done = {}, array[3], extraInitializers);
+    it = (0, decorators[i])(target, ctx), done._ = 1;
+    __expectFn(it) && (target = it);
+  }
+  return __decoratorMetadata(array, target), desc && __defProp(target, name, desc), p ? k ^ 4 ? extra : desc : target;
+};
+// ../../packages/core/dist/server/index.js
+var _MastraAuthProvider_decorators;
+var _init;
+var _a;
+_MastraAuthProvider_decorators = [InstrumentClass({
+  prefix: "auth",
+  excludeMethods: ["__setTools", "__setLogger", "__setTelemetry", "#log"]
+})];
+var MastraAuthProvider = class extends (_a = MastraBase) {
+  constructor(options) {
+    super({
+      component: "AUTH",
+      name: options?.name
+    });
+    if (options?.authorizeUser) {
+      this.authorizeUser = options.authorizeUser.bind(this);
+    }
+  }
+  registerOptions(opts) {
+    if (opts?.authorizeUser) {
+      this.authorizeUser = opts.authorizeUser.bind(this);
+    }
+  }
+};
+MastraAuthProvider = /* @__PURE__ */ ((_) => {
+  _init = __decoratorStart(_a);
+  MastraAuthProvider = __decorateElement(_init, 0, "MastraAuthProvider", _MastraAuthProvider_decorators, MastraAuthProvider);
+  __runInitializers(_init, 1, MastraAuthProvider);
+  return MastraAuthProvider;
+})();
+var MastraAuthSupabase = class extends MastraAuthProvider {
+  supabase;
+  constructor(options) {
+    super({ name: options?.name ?? "supabase" });
+    const supabaseUrl = options?.url ?? process.env.SUPABASE_URL;
+    const supabaseAnonKey = options?.anonKey ?? process.env.SUPABASE_ANON_KEY;
+    if (!supabaseUrl || !supabaseAnonKey) {
+      throw new Error(
+        "Supabase URL and anon key are required, please provide them in the options or set the environment variables SUPABASE_URL and SUPABASE_ANON_KEY"
+      );
+    }
+    this.supabase = createClient(supabaseUrl, supabaseAnonKey);
+    this.registerOptions(options);
+  }
+  async authenticateToken(token) {
+    const { data, error } = await this.supabase.auth.getUser(token);
+    if (error) {
+      return null;
+    }
+    return data.user;
+  }
+  async authorizeUser(user) {
+    const { data, error } = await this.supabase.from("users").select("isAdmin").eq("id", user?.id).single();
+    if (error) {
+      return false;
+    }
+    const isAdmin = data?.isAdmin;
+    return isAdmin;
+  }
+};
+export { MastraAuthSupabase };

package/eslint.config.js ADDED Viewed

@@ -0,0 +1,6 @@
+import { createConfig } from '@internal/lint/eslint';
+const config = await createConfig();
+/** @type {import("eslint").Linter.Config[]} */
+export default [...config];

package/package.json ADDED Viewed

@@ -0,0 +1,40 @@
+{
+  "name": "@mastra/auth-supabase",
+  "version": "0.0.0-fix-generate-title-20250616171351",
+  "description": "Mastra Supabase Auth integration",
+  "type": "module",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": {
+        "types": "./dist/index.d.ts",
+        "default": "./dist/index.js"
+      },
+      "require": {
+        "types": "./dist/index.d.cts",
+        "default": "./dist/index.cjs"
+      }
+    },
+    "./package.json": "./package.json"
+  },
+  "license": "Elastic-2.0",
+  "dependencies": {
+    "@supabase/supabase-js": "^2.50.0"
+  },
+  "devDependencies": {
+    "@types/node": "^20.19.0",
+    "eslint": "^9.28.0",
+    "tsup": "^8.5.0",
+    "typescript": "^5.8.3",
+    "vitest": "^2.1.9",
+    "@internal/lint": "0.0.0-fix-generate-title-20250616171351",
+    "@mastra/core": "0.0.0-fix-generate-title-20250616171351"
+  },
+  "scripts": {
+    "build": "tsup src/index.ts --format esm,cjs --experimental-dts --clean --treeshake",
+    "build:watch": "pnpm build --watch",
+    "test": "vitest run",
+    "lint": "eslint ."
+  }
+}

package/src/index.test.ts ADDED Viewed

@@ -0,0 +1,152 @@
+import { createClient } from '@supabase/supabase-js';
+import type { User } from '@supabase/supabase-js';
+import { describe, it, expect, vi, beforeEach } from 'vitest';
+import { MastraAuthSupabase } from './index';
+// Mock Supabase client
+vi.mock('@supabase/supabase-js', () => ({
+  createClient: vi.fn(),
+}));
+describe('MastraAuthSupabase', () => {
+  const mockSupabaseUrl = 'https://test.supabase.co';
+  const mockSupabaseAnonKey = 'test-anon-key';
+  const mockUser: User = {
+    id: 'test-user-id',
+    email: 'test@example.com',
+    created_at: '',
+    aud: '',
+    role: '',
+    app_metadata: {},
+    user_metadata: {},
+  };
+  let authProvider: MastraAuthSupabase;
+  let mockSupabaseClient: any;
+  beforeEach(() => {
+    // Reset environment variables
+    vi.resetModules();
+    process.env.SUPABASE_URL = mockSupabaseUrl;
+    process.env.SUPABASE_ANON_KEY = mockSupabaseAnonKey;
+    // Setup mock Supabase client
+    mockSupabaseClient = {
+      auth: {
+        getUser: vi.fn(),
+      },
+      from: vi.fn().mockReturnThis(),
+      select: vi.fn().mockReturnThis(),
+      eq: vi.fn().mockReturnThis(),
+      single: vi.fn(),
+    };
+    (createClient as any).mockReturnValue(mockSupabaseClient);
+    authProvider = new MastraAuthSupabase();
+  });
+  describe('constructor', () => {
+    it('should create instance with environment variables', () => {
+      expect(createClient).toHaveBeenCalledWith(mockSupabaseUrl, mockSupabaseAnonKey);
+    });
+    it('should create instance with provided options', () => {
+      const customUrl = 'https://custom.supabase.co';
+      const customKey = 'custom-key';
+      new MastraAuthSupabase({ url: customUrl, anonKey: customKey });
+      expect(createClient).toHaveBeenCalledWith(customUrl, customKey);
+    });
+    it('should throw error when required credentials are missing', () => {
+      delete process.env.SUPABASE_URL;
+      delete process.env.SUPABASE_ANON_KEY;
+      expect(() => new MastraAuthSupabase()).toThrow('Supabase URL and anon key are required');
+    });
+  });
+  describe('authenticateToken', () => {
+    it('should return user when token is valid', async () => {
+      const mockToken = 'valid-token';
+      mockSupabaseClient.auth.getUser.mockResolvedValue({
+        data: { user: mockUser },
+        error: null,
+      });
+      const result = await authProvider.authenticateToken(mockToken);
+      expect(result).toEqual(mockUser);
+      expect(mockSupabaseClient.auth.getUser).toHaveBeenCalledWith(mockToken);
+    });
+    it('should return null when token is invalid', async () => {
+      const mockToken = 'invalid-token';
+      mockSupabaseClient.auth.getUser.mockResolvedValue({
+        data: { user: null },
+        error: new Error('Invalid token'),
+      });
+      const result = await authProvider.authenticateToken(mockToken);
+      expect(result).toBeNull();
+    });
+  });
+  describe('authorizeUser', () => {
+    it('should return true for admin users', async () => {
+      mockSupabaseClient.single.mockResolvedValue({
+        data: { isAdmin: true },
+        error: null,
+      });
+      const result = await authProvider.authorizeUser(mockUser);
+      expect(result).toBe(true);
+      expect(mockSupabaseClient.from).toHaveBeenCalledWith('users');
+      expect(mockSupabaseClient.select).toHaveBeenCalledWith('isAdmin');
+      expect(mockSupabaseClient.eq).toHaveBeenCalledWith('id', mockUser.id);
+    });
+    it('should return false for non-admin users', async () => {
+      mockSupabaseClient.single.mockResolvedValue({
+        data: { isAdmin: false },
+        error: null,
+      });
+      const result = await authProvider.authorizeUser(mockUser);
+      expect(result).toBe(false);
+    });
+    it('should return false when user data cannot be retrieved', async () => {
+      mockSupabaseClient.single.mockResolvedValue({
+        data: null,
+        error: new Error('Database error'),
+      });
+      const result = await authProvider.authorizeUser(mockUser);
+      expect(result).toBe(false);
+    });
+  });
+  it('can be overridden with custom authorization logic', async () => {
+    // class CustomSupabase extends MastraAuthSupabase {
+    // }
+    const supabase = new MastraAuthSupabase({
+      async authorizeUser(user: any): Promise<boolean> {
+        // Custom authorization logic that checks for specific permissions
+        return user?.permissions?.includes('admin') ?? false;
+      },
+    });
+    // Test with admin user
+    const adminUser = { sub: 'user123', permissions: ['admin'] } as unknown as User;
+    expect(await supabase.authorizeUser(adminUser)).toBe(true);
+    // Test with non-admin user
+    const regularUser = { sub: 'user456', permissions: ['read'] } as unknown as User;
+    expect(await supabase.authorizeUser(regularUser)).toBe(false);
+    // Test with user without permissions
+    const noPermissionsUser = { sub: 'user789' } as unknown as User;
+    expect(await supabase.authorizeUser(noPermissionsUser)).toBe(false);
+  });
+});

package/src/index.ts ADDED Viewed

@@ -0,0 +1,55 @@
+import type { MastraAuthProviderOptions } from '@mastra/core/server';
+import { MastraAuthProvider } from '@mastra/core/server';
+import { createClient } from '@supabase/supabase-js';
+import type { SupabaseClient, User } from '@supabase/supabase-js';
+interface MastraAuthSupabaseOptions extends MastraAuthProviderOptions<User> {
+  url?: string;
+  anonKey?: string;
+}
+export class MastraAuthSupabase extends MastraAuthProvider<User> {
+  protected supabase: SupabaseClient;
+  constructor(options?: MastraAuthSupabaseOptions) {
+    super({ name: options?.name ?? 'supabase' });
+    const supabaseUrl = options?.url ?? process.env.SUPABASE_URL;
+    const supabaseAnonKey = options?.anonKey ?? process.env.SUPABASE_ANON_KEY;
+    if (!supabaseUrl || !supabaseAnonKey) {
+      throw new Error(
+        'Supabase URL and anon key are required, please provide them in the options or set the environment variables SUPABASE_URL and SUPABASE_ANON_KEY',
+      );
+    }
+    this.supabase = createClient(supabaseUrl, supabaseAnonKey);
+    this.registerOptions(options);
+  }
+  async authenticateToken(token: string): Promise<User | null> {
+    const { data, error } = await this.supabase.auth.getUser(token);
+    if (error) {
+      return null;
+    }
+    return data.user;
+  }
+  async authorizeUser(user: User) {
+    // Get user data from Supabase
+    const { data, error } = await this.supabase.from('users').select('isAdmin').eq('id', user?.id).single();
+    if (error) {
+      return false;
+    }
+    const isAdmin = data?.isAdmin;
+    // Check permissions based on role
+    return isAdmin;
+  }
+}

package/tsconfig.json ADDED Viewed

@@ -0,0 +1,5 @@
+{
+  "extends": "../../tsconfig.node.json",
+  "include": ["src/**/*"],
+  "exclude": ["node_modules", "**/*.test.ts"]
+}

package/vitest.config.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import { defineConfig } from 'vitest/config';
+export default defineConfig({
+  test: {
+    globals: true,
+    include: ['src/**/*.test.ts'],
+  },
+});