@meridianjs/user 0.1.2 → 0.1.3

package/dist/index.d.mts

@@ -13,6 +13,14 @@ declare class UserModuleService extends UserModuleService_base {
     deactivateUser(userId: string): Promise<any>;
     /** Return the total number of registered users. */
     countUsers(): Promise<number>;
+    /** Store a new session record when a token is issued. */
+    createSession(jti: string, userId: string, expiresAt: Date): Promise<void>;
+    /** Returns true if the session is valid (exists, not revoked, not expired). */
+    isSessionValid(jti: string): Promise<boolean>;
+    /** Revoke a single session by jti (logout). */
+    revokeSession(jti: string): Promise<void>;
+    /** Revoke all active sessions for a user (admin-initiated kick). */
+    revokeAllUserSessions(userId: string): Promise<void>;
 }
 
 declare const USER_MODULE = "userModuleService";

package/dist/index.d.ts

@@ -13,6 +13,14 @@ declare class UserModuleService extends UserModuleService_base {
     deactivateUser(userId: string): Promise<any>;
     /** Return the total number of registered users. */
     countUsers(): Promise<number>;
+    /** Store a new session record when a token is issued. */
+    createSession(jti: string, userId: string, expiresAt: Date): Promise<void>;
+    /** Returns true if the session is valid (exists, not revoked, not expired). */
+    isSessionValid(jti: string): Promise<boolean>;
+    /** Revoke a single session by jti (logout). */
+    revokeSession(jti: string): Promise<void>;
+    /** Revoke all active sessions for a user (admin-initiated kick). */
+    revokeAllUserSessions(userId: string): Promise<void>;
 }
 
 declare const USER_MODULE = "userModuleService";

package/dist/index.js

@@ -25,10 +25,10 @@ __export(index_exports, {
   default: () => index_default
 });
 module.exports = __toCommonJS(index_exports);
-var import_framework_utils5 = require("@meridianjs/framework-utils");
+var import_framework_utils6 = require("@meridianjs/framework-utils");
 
 // src/service.ts
-var import_framework_utils3 = require("@meridianjs/framework-utils");
+var import_framework_utils4 = require("@meridianjs/framework-utils");
 
 // src/models/user.ts
 var import_framework_utils = require("@meridianjs/framework-utils");
@@ -42,6 +42,7 @@ var User = import_framework_utils.model.define("user", {
   role: import_framework_utils.model.enum(["super-admin", "admin", "moderator", "member"]).default("member"),
   is_active: import_framework_utils.model.boolean().default(true),
   last_login_at: import_framework_utils.model.date().nullable(),
+  app_role_id: import_framework_utils.model.text().nullable(),
   metadata: import_framework_utils.model.json().nullable()
 }, [
   { columns: ["email"], unique: true }
@@ -59,8 +60,22 @@ var Team = import_framework_utils2.model.define("team", {
 });
 var team_default = Team;
 
+// src/models/user-session.ts
+var import_framework_utils3 = require("@meridianjs/framework-utils");
+var UserSession = import_framework_utils3.model.define("user_session", {
+  id: import_framework_utils3.model.id().primaryKey(),
+  user_id: import_framework_utils3.model.text(),
+  jti: import_framework_utils3.model.text(),
+  expires_at: import_framework_utils3.model.dateTime(),
+  revoked_at: import_framework_utils3.model.dateTime().nullable()
+}, [
+  { columns: ["jti"], unique: true },
+  { columns: ["user_id"] }
+]);
+var user_session_default = UserSession;
+
 // src/service.ts
-var UserModuleService = class extends (0, import_framework_utils3.MeridianService)({ User: user_default, Team: team_default }) {
+var UserModuleService = class extends (0, import_framework_utils4.MeridianService)({ User: user_default, Team: team_default, UserSession: user_session_default }) {
   // Subclasses store their own container reference for custom methods
   container;
   constructor(container) {
@@ -90,30 +105,71 @@ var UserModuleService = class extends (0, import_framework_utils3.MeridianServic
     const [, count] = await userRepository.findAndCount({});
     return count;
   }
+  // ── Session management (stateful JWT) ───────────────────────────────────────
+  /** Store a new session record when a token is issued. */
+  async createSession(jti, userId, expiresAt) {
+    const repo = this.container.resolve("userSessionRepository");
+    const session = repo.create({ jti, user_id: userId, expires_at: expiresAt });
+    await repo.persistAndFlush(session);
+  }
+  /** Returns true if the session is valid (exists, not revoked, not expired). */
+  async isSessionValid(jti) {
+    const repo = this.container.resolve("userSessionRepository");
+    try {
+      const session = await repo.findOne({ jti });
+      if (!session) return false;
+      if (session.revoked_at) return false;
+      if (new Date(session.expires_at) < /* @__PURE__ */ new Date()) return false;
+      return true;
+    } catch {
+      return false;
+    }
+  }
+  /** Revoke a single session by jti (logout). */
+  async revokeSession(jti) {
+    const repo = this.container.resolve("userSessionRepository");
+    const session = await repo.findOne({ jti });
+    if (session) {
+      session.revoked_at = /* @__PURE__ */ new Date();
+      await repo.flush();
+    }
+  }
+  /** Revoke all active sessions for a user (admin-initiated kick). */
+  async revokeAllUserSessions(userId) {
+    const repo = this.container.resolve("userSessionRepository");
+    const sessions = await repo.find({ user_id: userId, revoked_at: null });
+    const now = /* @__PURE__ */ new Date();
+    for (const s of sessions) {
+      s.revoked_at = now;
+    }
+    if (sessions.length > 0) await repo.flush();
+  }
 };
 
 // src/loaders/default.ts
-var import_framework_utils4 = require("@meridianjs/framework-utils");
-var UserSchema = (0, import_framework_utils4.dmlToEntitySchema)(user_default);
-var TeamSchema = (0, import_framework_utils4.dmlToEntitySchema)(team_default);
-var entitySchemas = [UserSchema, TeamSchema];
+var import_framework_utils5 = require("@meridianjs/framework-utils");
+var UserSchema = (0, import_framework_utils5.dmlToEntitySchema)(user_default);
+var TeamSchema = (0, import_framework_utils5.dmlToEntitySchema)(team_default);
+var UserSessionSchema = (0, import_framework_utils5.dmlToEntitySchema)(user_session_default);
+var entitySchemas = [UserSchema, TeamSchema, UserSessionSchema];
 async function defaultLoader({ container }) {
   const config = container.resolve("config");
   const { databaseUrl } = config.projectConfig;
-  const orm = await (0, import_framework_utils4.createModuleOrm)(entitySchemas, databaseUrl);
+  const orm = await (0, import_framework_utils5.createModuleOrm)(entitySchemas, databaseUrl);
   const em = orm.em.fork();
   container.register({
-    userRepository: (0, import_framework_utils4.createRepository)(em, "user"),
-    teamRepository: (0, import_framework_utils4.createRepository)(em, "team"),
+    userRepository: (0, import_framework_utils5.createRepository)(em, "user"),
+    teamRepository: (0, import_framework_utils5.createRepository)(em, "team"),
+    userSessionRepository: (0, import_framework_utils5.createRepository)(em, "user_session"),
     userOrm: orm
   });
 }
 
 // src/index.ts
 var USER_MODULE = "userModuleService";
-var index_default = (0, import_framework_utils5.Module)(USER_MODULE, {
+var index_default = (0, import_framework_utils6.Module)(USER_MODULE, {
   service: UserModuleService,
-  models: [user_default, team_default],
+  models: [user_default, team_default, user_session_default],
   loaders: [defaultLoader],
   linkable: {
     user: { tableName: "user", primaryKey: "id" },

package/dist/index.mjs

@@ -16,6 +16,7 @@ var User = model.define("user", {
   role: model.enum(["super-admin", "admin", "moderator", "member"]).default("member"),
   is_active: model.boolean().default(true),
   last_login_at: model.date().nullable(),
+  app_role_id: model.text().nullable(),
   metadata: model.json().nullable()
 }, [
   { columns: ["email"], unique: true }
@@ -33,8 +34,22 @@ var Team = model2.define("team", {
 });
 var team_default = Team;
 
+// src/models/user-session.ts
+import { model as model3 } from "@meridianjs/framework-utils";
+var UserSession = model3.define("user_session", {
+  id: model3.id().primaryKey(),
+  user_id: model3.text(),
+  jti: model3.text(),
+  expires_at: model3.dateTime(),
+  revoked_at: model3.dateTime().nullable()
+}, [
+  { columns: ["jti"], unique: true },
+  { columns: ["user_id"] }
+]);
+var user_session_default = UserSession;
+
 // src/service.ts
-var UserModuleService = class extends MeridianService({ User: user_default, Team: team_default }) {
+var UserModuleService = class extends MeridianService({ User: user_default, Team: team_default, UserSession: user_session_default }) {
   // Subclasses store their own container reference for custom methods
   container;
   constructor(container) {
@@ -64,13 +79,53 @@ var UserModuleService = class extends MeridianService({ User: user_default, Team
     const [, count] = await userRepository.findAndCount({});
     return count;
   }
+  // ── Session management (stateful JWT) ───────────────────────────────────────
+  /** Store a new session record when a token is issued. */
+  async createSession(jti, userId, expiresAt) {
+    const repo = this.container.resolve("userSessionRepository");
+    const session = repo.create({ jti, user_id: userId, expires_at: expiresAt });
+    await repo.persistAndFlush(session);
+  }
+  /** Returns true if the session is valid (exists, not revoked, not expired). */
+  async isSessionValid(jti) {
+    const repo = this.container.resolve("userSessionRepository");
+    try {
+      const session = await repo.findOne({ jti });
+      if (!session) return false;
+      if (session.revoked_at) return false;
+      if (new Date(session.expires_at) < /* @__PURE__ */ new Date()) return false;
+      return true;
+    } catch {
+      return false;
+    }
+  }
+  /** Revoke a single session by jti (logout). */
+  async revokeSession(jti) {
+    const repo = this.container.resolve("userSessionRepository");
+    const session = await repo.findOne({ jti });
+    if (session) {
+      session.revoked_at = /* @__PURE__ */ new Date();
+      await repo.flush();
+    }
+  }
+  /** Revoke all active sessions for a user (admin-initiated kick). */
+  async revokeAllUserSessions(userId) {
+    const repo = this.container.resolve("userSessionRepository");
+    const sessions = await repo.find({ user_id: userId, revoked_at: null });
+    const now = /* @__PURE__ */ new Date();
+    for (const s of sessions) {
+      s.revoked_at = now;
+    }
+    if (sessions.length > 0) await repo.flush();
+  }
 };
 
 // src/loaders/default.ts
 import { dmlToEntitySchema, createRepository, createModuleOrm } from "@meridianjs/framework-utils";
 var UserSchema = dmlToEntitySchema(user_default);
 var TeamSchema = dmlToEntitySchema(team_default);
-var entitySchemas = [UserSchema, TeamSchema];
+var UserSessionSchema = dmlToEntitySchema(user_session_default);
+var entitySchemas = [UserSchema, TeamSchema, UserSessionSchema];
 async function defaultLoader({ container }) {
   const config = container.resolve("config");
   const { databaseUrl } = config.projectConfig;
@@ -79,6 +134,7 @@ async function defaultLoader({ container }) {
   container.register({
     userRepository: createRepository(em, "user"),
     teamRepository: createRepository(em, "team"),
+    userSessionRepository: createRepository(em, "user_session"),
     userOrm: orm
   });
 }
@@ -87,7 +143,7 @@ async function defaultLoader({ container }) {
 var USER_MODULE = "userModuleService";
 var index_default = Module(USER_MODULE, {
   service: UserModuleService,
-  models: [user_default, team_default],
+  models: [user_default, team_default, user_session_default],
   loaders: [defaultLoader],
   linkable: {
     user: { tableName: "user", primaryKey: "id" },

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@meridianjs/user",
-  "version": "0.1.2",
+  "version": "0.1.3",
   "description": "Meridian user module — User and Team domain models",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",