npm - @naman_deep_singh/security - Versions diffs - 1.2.0 → 1.3.1 - Mend

@naman_deep_singh/security 1.2.0 → 1.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (95) hide show

package/README.md +355 -176
package/dist/cjs/core/crypto/cryptoManager.d.ts +111 -0
package/dist/cjs/core/crypto/cryptoManager.js +191 -0
package/dist/cjs/core/crypto/decrypt.js +6 -6
package/dist/cjs/core/crypto/encrypt.js +4 -4
package/dist/cjs/core/crypto/hmac.js +1 -1
package/dist/cjs/core/crypto/index.d.ts +5 -4
package/dist/cjs/core/crypto/index.js +12 -4
package/dist/cjs/core/crypto/random.js +2 -2
package/dist/cjs/core/jwt/decode.d.ts +1 -1
package/dist/cjs/core/jwt/decode.js +2 -2
package/dist/cjs/core/jwt/extractToken.js +7 -7
package/dist/cjs/core/jwt/generateTokens.d.ts +2 -2
package/dist/cjs/core/jwt/generateTokens.js +10 -6
package/dist/cjs/core/jwt/index.d.ts +8 -8
package/dist/cjs/core/jwt/jwtManager.d.ts +67 -0
package/dist/cjs/core/jwt/jwtManager.js +299 -0
package/dist/cjs/core/jwt/parseDuration.js +3 -3
package/dist/cjs/core/jwt/signToken.d.ts +1 -1
package/dist/cjs/core/jwt/signToken.js +7 -7
package/dist/cjs/core/jwt/types.d.ts +1 -1
package/dist/cjs/core/jwt/validateToken.d.ts +2 -2
package/dist/cjs/core/jwt/validateToken.js +3 -3
package/dist/cjs/core/jwt/verify.d.ts +3 -2
package/dist/cjs/core/password/hash.js +1 -1
package/dist/cjs/core/password/index.d.ts +3 -3
package/dist/cjs/core/password/passwordManager.d.ts +29 -0
package/dist/cjs/core/password/passwordManager.js +243 -0
package/dist/cjs/core/password/strength.d.ts +1 -1
package/dist/cjs/core/password/strength.js +4 -4
package/dist/cjs/core/password/utils.js +2 -2
package/dist/cjs/core/password/verify.js +1 -1
package/dist/cjs/index.d.ts +9 -5
package/dist/cjs/index.js +2 -2
package/dist/cjs/interfaces/jwt.interface.d.ts +47 -0
package/dist/cjs/interfaces/jwt.interface.js +2 -0
package/dist/cjs/interfaces/password.interface.d.ts +60 -0
package/dist/cjs/interfaces/password.interface.js +2 -0
package/dist/esm/core/crypto/cryptoManager.d.ts +111 -0
package/dist/esm/core/crypto/cryptoManager.js +186 -0
package/dist/esm/core/crypto/decrypt.js +7 -7
package/dist/esm/core/crypto/encrypt.js +5 -5
package/dist/esm/core/crypto/hmac.js +2 -2
package/dist/esm/core/crypto/index.d.ts +5 -4
package/dist/esm/core/crypto/index.js +5 -4
package/dist/esm/core/crypto/random.js +3 -3
package/dist/esm/core/jwt/decode.d.ts +1 -1
package/dist/esm/core/jwt/decode.js +3 -3
package/dist/esm/core/jwt/extractToken.js +7 -7
package/dist/esm/core/jwt/generateTokens.d.ts +2 -2
package/dist/esm/core/jwt/generateTokens.js +12 -8
package/dist/esm/core/jwt/index.d.ts +8 -8
package/dist/esm/core/jwt/index.js +8 -8
package/dist/esm/core/jwt/jwtManager.d.ts +67 -0
package/dist/esm/core/jwt/jwtManager.js +292 -0
package/dist/esm/core/jwt/parseDuration.js +3 -3
package/dist/esm/core/jwt/signToken.d.ts +1 -1
package/dist/esm/core/jwt/signToken.js +9 -9
package/dist/esm/core/jwt/types.d.ts +1 -1
package/dist/esm/core/jwt/validateToken.d.ts +2 -2
package/dist/esm/core/jwt/validateToken.js +3 -3
package/dist/esm/core/jwt/verify.d.ts +3 -2
package/dist/esm/core/jwt/verify.js +1 -1
package/dist/esm/core/password/hash.js +3 -3
package/dist/esm/core/password/index.d.ts +3 -3
package/dist/esm/core/password/index.js +3 -3
package/dist/esm/core/password/passwordManager.d.ts +29 -0
package/dist/esm/core/password/passwordManager.js +236 -0
package/dist/esm/core/password/strength.d.ts +1 -1
package/dist/esm/core/password/strength.js +5 -5
package/dist/esm/core/password/utils.js +4 -4
package/dist/esm/core/password/verify.js +2 -2
package/dist/esm/index.d.ts +9 -5
package/dist/esm/index.js +7 -7
package/dist/esm/interfaces/jwt.interface.d.ts +47 -0
package/dist/esm/interfaces/jwt.interface.js +1 -0
package/dist/esm/interfaces/password.interface.d.ts +60 -0
package/dist/esm/interfaces/password.interface.js +1 -0
package/dist/types/core/crypto/cryptoManager.d.ts +111 -0
package/dist/types/core/crypto/index.d.ts +5 -4
package/dist/types/core/jwt/decode.d.ts +1 -1
package/dist/types/core/jwt/generateTokens.d.ts +2 -2
package/dist/types/core/jwt/index.d.ts +8 -8
package/dist/types/core/jwt/jwtManager.d.ts +67 -0
package/dist/types/core/jwt/signToken.d.ts +1 -1
package/dist/types/core/jwt/types.d.ts +1 -1
package/dist/types/core/jwt/validateToken.d.ts +2 -2
package/dist/types/core/jwt/verify.d.ts +3 -2
package/dist/types/core/password/index.d.ts +3 -3
package/dist/types/core/password/passwordManager.d.ts +29 -0
package/dist/types/core/password/strength.d.ts +1 -1
package/dist/types/index.d.ts +9 -5
package/dist/types/interfaces/jwt.interface.d.ts +47 -0
package/dist/types/interfaces/password.interface.d.ts +60 -0
package/package.json +4 -3

package/dist/types/core/jwt/signToken.d.ts CHANGED Viewed

@@ -1,2 +1,2 @@
-import { Secret, SignOptions } from "jsonwebtoken";
+import { type Secret, type SignOptions } from 'jsonwebtoken';
 export declare const signToken: (payload: Record<string, unknown>, secret: Secret, expiresIn?: string | number, options?: SignOptions) => string;

package/dist/types/core/jwt/types.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { JwtPayload } from "jsonwebtoken";
+import type { JwtPayload } from 'jsonwebtoken';
 export interface AccessTokenBrand {
     readonly access: unique symbol;
 }

package/dist/types/core/jwt/validateToken.d.ts CHANGED Viewed

@@ -1,8 +1,8 @@
-import { JwtPayload } from "node_modules/@types/jsonwebtoken";
+import type { JwtPayload } from 'node_modules/@types/jsonwebtoken';
 export interface TokenRequirements {
     requiredFields?: string[];
     forbiddenFields?: string[];
-    validateTypes?: Record<string, "string" | "number" | "boolean">;
+    validateTypes?: Record<string, 'string' | 'number' | 'boolean'>;
 }
 export declare function validateTokenPayload(payload: Record<string, unknown>, rules?: TokenRequirements): {
     valid: true;

package/dist/types/core/jwt/verify.d.ts CHANGED Viewed

@@ -1,5 +1,6 @@
-import jwt, { Secret, JwtPayload } from "jsonwebtoken";
-import { VerificationResult } from "./types";
+import type jwt from 'jsonwebtoken';
+import { type JwtPayload, type Secret } from 'jsonwebtoken';
+import type { VerificationResult } from './types';
 /**
  * Verify token (throws if invalid or expired)
  */

package/dist/types/core/password/index.d.ts CHANGED Viewed

@@ -1,3 +1,3 @@
-export * from "./hash";
-export * from "./strength";
-export * from "./verify";
+export * from './hash';
+export * from './strength';
+export * from './verify';

package/dist/types/core/password/passwordManager.d.ts ADDED Viewed

@@ -0,0 +1,29 @@
+import type { HashedPassword, IPasswordManager, PasswordConfig, PasswordStrength, PasswordValidationResult } from '../../interfaces/password.interface';
+export declare class PasswordManager implements IPasswordManager {
+    private defaultConfig;
+    constructor(config?: PasswordConfig);
+    /**
+     * Hash a password asynchronously using bcrypt
+     */
+    hash(password: string, salt?: string): Promise<HashedPassword>;
+    /**
+     * Verify password against hash and salt
+     */
+    verify(password: string, hash: string, salt: string): Promise<boolean>;
+    /**
+     * Generate a random password
+     */
+    generate(length?: number, options?: PasswordConfig): string;
+    /**
+     * Validate password against configuration
+     */
+    validate(password: string, config?: PasswordConfig): PasswordValidationResult;
+    /**
+     * Check password strength
+     */
+    checkStrength(password: string): PasswordStrength;
+    /**
+     * Check if password hash needs upgrade (different salt rounds)
+     */
+    needsUpgrade(hash: string, currentConfig: PasswordConfig): boolean;
+}

package/dist/types/core/password/strength.d.ts CHANGED Viewed

@@ -1,2 +1,2 @@
-import { PasswordStrengthOptions } from "./types";
+import type { PasswordStrengthOptions } from './types';
 export declare const isPasswordStrong: (password: string, options?: PasswordStrengthOptions) => boolean;

package/dist/types/index.d.ts CHANGED Viewed

@@ -1,8 +1,9 @@
-export * from "./core/password";
-export * from "./core/jwt";
-export * from "./core/crypto";
-export { BadRequestError, UnauthorizedError, ValidationError, InternalServerError } from "@naman_deep_singh/errors-utils";
-import * as JWTUtils from "./core/jwt";
+export * from './core/password';
+export * from './core/jwt';
+export * from './core/crypto';
+export { BadRequestError, UnauthorizedError, ValidationError, InternalServerError, } from '@naman_deep_singh/errors-utils';
+import * as CryptoUtils from './core/crypto';
+import * as JWTUtils from './core/jwt';
 declare const _default: {
     decrypt: (data: string, secret: string) => string;
     encrypt: (text: string, secret: string) => string;
@@ -10,6 +11,9 @@ declare const _default: {
     hmacVerify: (message: string, secret: string, signature: string) => boolean;
     randomToken: (length?: number) => string;
     generateStrongPassword: (length?: number) => string;
+    CryptoManager: typeof CryptoUtils.CryptoManager;
+    createCryptoManager: (config?: CryptoUtils.CryptoManagerConfig) => CryptoUtils.CryptoManager;
+    cryptoManager: CryptoUtils.CryptoManager;
     decodeToken(token: string): null | string | import("node_modules/@types/jsonwebtoken").JwtPayload;
     decodeTokenStrict(token: string): import("node_modules/@types/jsonwebtoken").JwtPayload;
     extractToken(sources: JWTUtils.TokenSources): string | null;

package/dist/types/interfaces/jwt.interface.d.ts ADDED Viewed

@@ -0,0 +1,47 @@
+import type { JwtPayload, Secret } from 'jsonwebtoken';
+export interface AccessToken extends String {
+    readonly __type: 'AccessToken';
+}
+export interface RefreshToken extends String {
+    readonly __type: 'RefreshToken';
+}
+export interface TokenPair {
+    accessToken: AccessToken;
+    refreshToken: RefreshToken;
+}
+export interface JWTConfig {
+    accessSecret: Secret;
+    refreshSecret: Secret;
+    accessExpiry?: string | number;
+    refreshExpiry?: string | number;
+    enableCaching?: boolean;
+    maxCacheSize?: number;
+}
+export interface TokenValidationOptions {
+    ignoreExpiration?: boolean;
+    ignoreNotBefore?: boolean;
+    audience?: string | string[];
+    issuer?: string;
+    algorithms?: string[];
+}
+export interface TokenGenerationOptions {
+    algorithm?: string;
+    expiresIn?: string | number;
+    audience?: string | string[];
+    issuer?: string;
+    subject?: string;
+    kid?: string;
+}
+export interface ITokenManager {
+    generateTokens(payload: Record<string, unknown>): Promise<TokenPair>;
+    generateAccessToken(payload: Record<string, unknown>): Promise<AccessToken>;
+    generateRefreshToken(payload: Record<string, unknown>): Promise<RefreshToken>;
+    verifyAccessToken(token: string): Promise<JwtPayload | string>;
+    verifyRefreshToken(token: string): Promise<JwtPayload | string>;
+    decodeToken(token: string, complete?: boolean): JwtPayload | string | null;
+    extractTokenFromHeader(authHeader: string): string | null;
+    validateToken(token: string, secret: Secret, options?: TokenValidationOptions): boolean;
+    rotateRefreshToken(oldToken: string): Promise<RefreshToken>;
+    isTokenExpired(token: string): boolean;
+    getTokenExpiration(token: string): Date | null;
+}

package/dist/types/interfaces/password.interface.d.ts ADDED Viewed

@@ -0,0 +1,60 @@
+export interface PasswordConfig {
+    saltRounds?: number;
+    minLength?: number;
+    maxLength?: number;
+    requireUppercase?: boolean;
+    requireLowercase?: boolean;
+    requireNumbers?: boolean;
+    requireSpecialChars?: boolean;
+    customRules?: PasswordRule[];
+}
+export interface PasswordRule {
+    test: (password: string) => boolean;
+    message: string;
+}
+export interface PasswordStrength {
+    score: number;
+    label: 'very-weak' | 'weak' | 'fair' | 'good' | 'strong';
+    feedback: string[];
+    suggestions: string[];
+}
+export interface PasswordValidationResult {
+    isValid: boolean;
+    errors: string[];
+    strength: PasswordStrength;
+}
+export interface HashedPassword {
+    hash: string;
+    salt: string;
+}
+export interface IPasswordManager {
+    hash(password: string, salt?: string): Promise<HashedPassword>;
+    verify(password: string, hash: string, salt: string): Promise<boolean>;
+    generate(length?: number, options?: PasswordConfig): string;
+    validate(password: string, config?: PasswordConfig): PasswordValidationResult;
+    checkStrength(password: string): PasswordStrength;
+    needsUpgrade(hash: string, currentConfig: PasswordConfig): boolean;
+}
+export interface IPasswordStrengthChecker {
+    analyze(password: string): PasswordStrength;
+    checkLength(password: string): {
+        valid: boolean;
+        message: string;
+    };
+    checkComplexity(password: string, config: PasswordConfig): {
+        valid: boolean;
+        message: string;
+    }[];
+    checkCommonPasswords(password: string): {
+        valid: boolean;
+        message: string;
+    };
+    checkSequential(password: string): {
+        valid: boolean;
+        message: string;
+    };
+    checkRepetition(password: string): {
+        valid: boolean;
+        message: string;
+    };
+}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@naman_deep_singh/security",
-  "version": "1.2.0",
+  "version": "1.3.1",
   "description": "Security utilities for password hashing and JWT token management with TypeScript",
   "type": "module",
   "main": "./dist/cjs/index.js",
@@ -29,14 +29,15 @@
   "license": "ISC",
   "dependencies": {
     "@naman_deep_singh/errors-utils": "^1.0.0",
+    "@naman_deep_singh/js-extensions": "^1.3.2",
     "bcryptjs": "^3.0.3",
     "jsonwebtoken": "^9.0.2"
   },
   "devDependencies": {
     "@types/bcryptjs": "^2.4.6",
     "@types/jsonwebtoken": "^9.0.10",
-    "typescript": "^5.9.3",
-    "rimraf": "^5.0.5"
+    "rimraf": "^5.0.5",
+    "typescript": "^5.9.3"
   },
   "scripts": {
     "build": "pnpm run build:types && tsc -p tsconfig.cjs.json && tsc -p tsconfig.esm.json",