npm - @morojs/moro - Versions diffs - 1.5.17 → 1.6.1 - Mend

@morojs/moro 1.5.17 → 1.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (138) hide show

package/README.md +48 -65
package/dist/core/auth/morojs-adapter.js +12 -16
package/dist/core/auth/morojs-adapter.js.map +1 -1
package/dist/core/config/file-loader.d.ts +5 -0
package/dist/core/config/file-loader.js +171 -0
package/dist/core/config/file-loader.js.map +1 -1
package/dist/core/config/index.d.ts +10 -39
package/dist/core/config/index.js +29 -66
package/dist/core/config/index.js.map +1 -1
package/dist/core/config/loader.d.ts +7 -0
package/dist/core/config/loader.js +269 -0
package/dist/core/config/loader.js.map +1 -0
package/dist/core/config/schema.js +31 -41
package/dist/core/config/schema.js.map +1 -1
package/dist/core/config/utils.d.ts +2 -9
package/dist/core/config/utils.js +32 -19
package/dist/core/config/utils.js.map +1 -1
package/dist/core/config/validation.d.ts +17 -0
package/dist/core/config/validation.js +131 -0
package/dist/core/config/validation.js.map +1 -0
package/dist/core/database/adapters/mongodb.d.ts +0 -10
package/dist/core/database/adapters/mongodb.js +2 -23
package/dist/core/database/adapters/mongodb.js.map +1 -1
package/dist/core/database/adapters/mysql.d.ts +0 -11
package/dist/core/database/adapters/mysql.js +0 -1
package/dist/core/database/adapters/mysql.js.map +1 -1
package/dist/core/database/adapters/postgresql.d.ts +1 -9
package/dist/core/database/adapters/postgresql.js +1 -1
package/dist/core/database/adapters/postgresql.js.map +1 -1
package/dist/core/database/adapters/redis.d.ts +0 -9
package/dist/core/database/adapters/redis.js +4 -14
package/dist/core/database/adapters/redis.js.map +1 -1
package/dist/core/framework.d.ts +7 -6
package/dist/core/framework.js +16 -131
package/dist/core/framework.js.map +1 -1
package/dist/core/http/http-server.d.ts +0 -12
package/dist/core/http/http-server.js +23 -151
package/dist/core/http/http-server.js.map +1 -1
package/dist/core/http/router.d.ts +0 -12
package/dist/core/http/router.js +36 -114
package/dist/core/http/router.js.map +1 -1
package/dist/core/logger/filters.js +4 -12
package/dist/core/logger/filters.js.map +1 -1
package/dist/core/logger/index.d.ts +1 -1
package/dist/core/logger/index.js +1 -2
package/dist/core/logger/index.js.map +1 -1
package/dist/core/logger/logger.d.ts +13 -29
package/dist/core/logger/logger.js +203 -380
package/dist/core/logger/logger.js.map +1 -1
package/dist/core/logger/outputs.js +2 -0
package/dist/core/logger/outputs.js.map +1 -1
package/dist/core/middleware/built-in/auth.js +17 -88
package/dist/core/middleware/built-in/auth.js.map +1 -1
package/dist/core/middleware/built-in/cache.js +1 -3
package/dist/core/middleware/built-in/cache.js.map +1 -1
package/dist/core/middleware/built-in/index.d.ts +0 -1
package/dist/core/middleware/built-in/index.js +1 -6
package/dist/core/middleware/built-in/index.js.map +1 -1
package/dist/core/middleware/built-in/request-logger.js +2 -3
package/dist/core/middleware/built-in/request-logger.js.map +1 -1
package/dist/core/middleware/built-in/sse.js +7 -9
package/dist/core/middleware/built-in/sse.js.map +1 -1
package/dist/core/modules/auto-discovery.d.ts +0 -17
package/dist/core/modules/auto-discovery.js +12 -367
package/dist/core/modules/auto-discovery.js.map +1 -1
package/dist/core/modules/modules.js +2 -12
package/dist/core/modules/modules.js.map +1 -1
package/dist/core/networking/adapters/ws-adapter.d.ts +1 -1
package/dist/core/networking/adapters/ws-adapter.js +2 -2
package/dist/core/networking/adapters/ws-adapter.js.map +1 -1
package/dist/core/networking/service-discovery.js +7 -7
package/dist/core/networking/service-discovery.js.map +1 -1
package/dist/core/routing/index.d.ts +0 -20
package/dist/core/routing/index.js +13 -178
package/dist/core/routing/index.js.map +1 -1
package/dist/core/runtime/node-adapter.js +6 -12
package/dist/core/runtime/node-adapter.js.map +1 -1
package/dist/moro.d.ts +0 -48
package/dist/moro.js +148 -456
package/dist/moro.js.map +1 -1
package/dist/types/config.d.ts +2 -58
package/dist/types/core.d.ts +40 -34
package/dist/types/http.d.ts +1 -16
package/dist/types/logger.d.ts +0 -7
package/dist/types/module.d.ts +0 -11
package/package.json +2 -2
package/src/core/auth/morojs-adapter.ts +13 -18
package/src/core/config/file-loader.ts +233 -0
package/src/core/config/index.ts +32 -77
package/src/core/config/loader.ts +633 -0
package/src/core/config/schema.ts +31 -41
package/src/core/config/utils.ts +29 -22
package/src/core/config/validation.ts +140 -0
package/src/core/database/README.md +16 -26
package/src/core/database/adapters/mongodb.ts +2 -30
package/src/core/database/adapters/mysql.ts +0 -14
package/src/core/database/adapters/postgresql.ts +2 -12
package/src/core/database/adapters/redis.ts +4 -27
package/src/core/framework.ts +23 -163
package/src/core/http/http-server.ts +36 -176
package/src/core/http/router.ts +38 -127
package/src/core/logger/filters.ts +4 -12
package/src/core/logger/index.ts +0 -1
package/src/core/logger/logger.ts +216 -427
package/src/core/logger/outputs.ts +2 -0
package/src/core/middleware/built-in/auth.ts +17 -98
package/src/core/middleware/built-in/cache.ts +1 -3
package/src/core/middleware/built-in/index.ts +0 -8
package/src/core/middleware/built-in/request-logger.ts +1 -3
package/src/core/middleware/built-in/sse.ts +7 -9
package/src/core/modules/auto-discovery.ts +13 -476
package/src/core/modules/modules.ts +9 -20
package/src/core/networking/adapters/ws-adapter.ts +5 -2
package/src/core/networking/service-discovery.ts +7 -6
package/src/core/routing/index.ts +14 -198
package/src/core/runtime/node-adapter.ts +6 -12
package/src/moro.ts +166 -554
package/src/types/config.ts +2 -59
package/src/types/core.ts +45 -47
package/src/types/http.ts +1 -23
package/src/types/logger.ts +0 -9
package/src/types/module.ts +0 -12
package/dist/core/config/config-manager.d.ts +0 -44
package/dist/core/config/config-manager.js +0 -114
package/dist/core/config/config-manager.js.map +0 -1
package/dist/core/config/config-sources.d.ts +0 -21
package/dist/core/config/config-sources.js +0 -502
package/dist/core/config/config-sources.js.map +0 -1
package/dist/core/config/config-validator.d.ts +0 -21
package/dist/core/config/config-validator.js +0 -765
package/dist/core/config/config-validator.js.map +0 -1
package/dist/core/middleware/built-in/jwt-helpers.d.ts +0 -118
package/dist/core/middleware/built-in/jwt-helpers.js +0 -221
package/dist/core/middleware/built-in/jwt-helpers.js.map +0 -1
package/src/core/config/config-manager.ts +0 -133
package/src/core/config/config-sources.ts +0 -596
package/src/core/config/config-validator.ts +0 -1078
package/src/core/middleware/built-in/jwt-helpers.ts +0 -240

package/src/core/logger/outputs.ts CHANGED Viewed

@@ -29,6 +29,7 @@ export class FileOutput implements LogOutput {
       // TODO: Implement log rotation if needed
     } catch (error) {
+      // Use console.error as fallback since this is the logger itself
       console.error('File logger error:', error);
     }
   }
@@ -76,6 +77,7 @@ export class WebhookOutput implements LogOutput {
         throw new Error(`Webhook failed: ${response.status}`);
       }
     } catch (error) {
+      // Use console.error as fallback since this is the logger itself
       console.error('Webhook logger error:', error);
     }
   }

package/src/core/middleware/built-in/auth.ts CHANGED Viewed

@@ -12,7 +12,6 @@ import {
   CredentialsProvider,
   EmailProvider,
 } from '../../../types/auth';
-import { safeVerifyJWT, createAuthErrorResponse } from './jwt-helpers';
 const logger = createFrameworkLogger('AuthMiddleware');
@@ -152,15 +151,7 @@ export const auth = (options: AuthOptions): MiddlewareInterface => ({
           return authInstance.getSession({ req });
         },
         getToken: async () => {
-          try {
-            return authInstance.verifyJWT(authRequest.token || '');
-          } catch (error: any) {
-            // Handle JWT errors gracefully in getToken method
-            logger.debug('Failed to verify token in getToken', 'TokenValidation', {
-              error: error.message,
-            });
-            return null;
-          }
+          return authInstance.verifyJWT(authRequest.token || '');
         },
         getCsrfToken: async () => {
           return authInstance.getCsrfToken();
@@ -186,60 +177,8 @@ export const auth = (options: AuthOptions): MiddlewareInterface => ({
           if (decoded) {
             session = await authInstance.getSession({ req: { ...req, token } });
           }
-        } catch (error: any) {
-          // Handle specific JWT errors gracefully and return proper HTTP responses
-          if (error.name === 'TokenExpiredError') {
-            logger.debug('JWT token expired', 'TokenValidation', {
-              message: error.message,
-              expiredAt: error.expiredAt,
-            });
-            // If this is a protected route request, return a proper 401 response
-            if (req.headers.accept?.includes('application/json')) {
-              return res.status(401).json(
-                createAuthErrorResponse({
-                  type: 'expired',
-                  message: error.message,
-                  expiredAt: error.expiredAt,
-                })
-              );
-            }
-          } else if (error.name === 'JsonWebTokenError') {
-            logger.debug('Invalid JWT token format', 'TokenValidation', {
-              message: error.message,
-            });
-            // If this is a protected route request, return a proper 401 response
-            if (req.headers.accept?.includes('application/json')) {
-              return res.status(401).json(
-                createAuthErrorResponse({
-                  type: 'invalid',
-                  message: error.message,
-                })
-              );
-            }
-          } else if (error.name === 'NotBeforeError') {
-            logger.debug('JWT token not active yet', 'TokenValidation', {
-              message: error.message,
-              date: error.date,
-            });
-            // If this is a protected route request, return a proper 401 response
-            if (req.headers.accept?.includes('application/json')) {
-              return res.status(401).json(
-                createAuthErrorResponse({
-                  type: 'malformed',
-                  message: error.message,
-                  date: error.date,
-                })
-              );
-            }
-          } else {
-            logger.debug('JWT token validation failed', 'TokenValidation', {
-              error: error.message || error,
-            });
-          }
-          // Continue with unauthenticated state for non-API requests
+        } catch (error) {
+          logger.debug('Invalid JWT token', 'TokenValidation', { error });
         }
       }
@@ -290,11 +229,11 @@ export const auth = (options: AuthOptions): MiddlewareInterface => ({
   },
 });
-// Auth.js implementation with proper JWT handling
+// Mock Auth.js implementation (would be replaced with actual Auth.js)
 async function initializeAuthJS(config: AuthOptions): Promise<any> {
   return {
     handler: async (req: any, res: any) => {
-      // Basic Auth.js request handler
+      // Mock Auth.js request handler
       const path = req.url.replace(config.basePath!, '');
       if (path.startsWith('/signin')) {
@@ -315,7 +254,7 @@ async function initializeAuthJS(config: AuthOptions): Promise<any> {
     },
     getSession: async ({ req }: { req: any }) => {
-      // Basic session retrieval
+      // Mock session retrieval
       const sessionId =
         req.cookies?.['next-auth.session-token'] ||
         req.cookies?.['__Secure-next-auth.session-token'];
@@ -331,53 +270,33 @@ async function initializeAuthJS(config: AuthOptions): Promise<any> {
     },
     verifyJWT: async (token: string) => {
-      const secret = process.env.JWT_SECRET || config.jwt?.secret || config.secret || '';
-      // Use the safe JWT verification function
-      const result = safeVerifyJWT(token, secret);
-      if (!result.success) {
-        // Create a custom error that includes the structured error information
-        const customError = new Error(result.error?.message || 'JWT verification failed');
-        // Add the error type information for upstream handling
-        (customError as any).jwtErrorType = result.error?.type;
-        (customError as any).jwtErrorDetails = result.error;
-        // Map the safe error types back to standard JWT error names for compatibility
-        if (result.error?.type === 'expired') {
-          customError.name = 'TokenExpiredError';
-          (customError as any).expiredAt = result.error.expiredAt;
-        } else if (result.error?.type === 'invalid') {
-          customError.name = 'JsonWebTokenError';
-        } else if (result.error?.type === 'malformed') {
-          customError.name = 'NotBeforeError';
-          (customError as any).date = result.error.date;
-        }
-        throw customError;
+      // Mock JWT verification
+      try {
+        // In real implementation, use jose or jsonwebtoken
+        const payload = JSON.parse(Buffer.from(token.split('.')[1], 'base64').toString());
+        return payload;
+      } catch {
+        return null;
       }
-      return result.payload;
     },
     signIn: async (provider?: string, options?: any) => {
-      // Basic sign in redirect
+      // Mock sign in
       return { url: `${config.basePath}/signin${provider ? `/${provider}` : ''}` };
     },
     signOut: async (options?: any) => {
-      // Basic sign out redirect
+      // Mock sign out
       return { url: `${config.basePath}/signout` };
     },
     updateSession: async (session: any) => {
-      // Basic session update
+      // Mock session update
       return session;
     },
     getCsrfToken: async () => {
-      // Basic CSRF token generation
+      // Mock CSRF token generation
       const crypto = require('crypto');
       return crypto.randomBytes(32).toString('hex');
     },

package/src/core/middleware/built-in/cache.ts CHANGED Viewed

@@ -188,9 +188,7 @@ export const cache = (options: CacheOptions = {}): MiddlewareInterface => ({
           parts.push(`stale-while-revalidate=${directives.staleWhileRevalidate}`);
         }
-        if (!res.headersSent) {
-          res.setHeader('Cache-Control', parts.join(', '));
-        }
+        res.setHeader('Cache-Control', parts.join(', '));
         return res;
       };

package/src/core/middleware/built-in/index.ts CHANGED Viewed

@@ -33,14 +33,6 @@ export {
   sessionHelpers,
 } from './auth-helpers';
-// JWT Utilities for Custom Middleware
-export {
-  safeVerifyJWT,
-  extractJWTFromHeader,
-  createAuthErrorResponse,
-  type JWTVerificationResult,
-} from './jwt-helpers';
 export {
   extendedProviders,
   enterpriseProviders,

package/src/core/middleware/built-in/request-logger.ts CHANGED Viewed

@@ -1,7 +1,5 @@
 // Simple request logging middleware
-import { createFrameworkLogger } from '../../logger';
-const logger = createFrameworkLogger('RequestLogger');
+import { logger } from '../../logger';
 export const requestLogger = async (context: any): Promise<void> => {
   const startTime = Date.now();

package/src/core/middleware/built-in/sse.ts CHANGED Viewed

@@ -35,15 +35,13 @@ export const sse = (
       logger.debug('Setting up SSE connection', 'SSESetup');
       // Set SSE headers
-      if (!res.headersSent) {
-        res.writeHead(200, {
-          'Content-Type': 'text/event-stream',
-          'Cache-Control': 'no-cache',
-          Connection: 'keep-alive',
-          'Access-Control-Allow-Origin': options.cors ? '*' : undefined,
-          'Access-Control-Allow-Headers': options.cors ? 'Cache-Control' : undefined,
-        });
-      }
+      res.writeHead(200, {
+        'Content-Type': 'text/event-stream',
+        'Cache-Control': 'no-cache',
+        Connection: 'keep-alive',
+        'Access-Control-Allow-Origin': options.cors ? '*' : undefined,
+        'Access-Control-Allow-Headers': options.cors ? 'Cache-Control' : undefined,
+      });
       // Add SSE methods to response
       res.sendEvent = (data: any, event?: string, id?: string) => {