@naman_deep_singh/security 1.3.0 → 1.3.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (84) hide show
  1. package/README.md +1 -1
  2. package/dist/cjs/core/crypto/cryptoManager.js +9 -3
  3. package/dist/cjs/core/crypto/decrypt.js +6 -6
  4. package/dist/cjs/core/crypto/encrypt.js +4 -4
  5. package/dist/cjs/core/crypto/hmac.js +1 -1
  6. package/dist/cjs/core/crypto/index.d.ts +5 -5
  7. package/dist/cjs/core/crypto/random.js +2 -2
  8. package/dist/cjs/core/jwt/decode.d.ts +1 -1
  9. package/dist/cjs/core/jwt/decode.js +2 -2
  10. package/dist/cjs/core/jwt/extractToken.js +7 -7
  11. package/dist/cjs/core/jwt/generateTokens.d.ts +2 -2
  12. package/dist/cjs/core/jwt/generateTokens.js +10 -6
  13. package/dist/cjs/core/jwt/index.d.ts +8 -8
  14. package/dist/cjs/core/jwt/jwtManager.d.ts +3 -2
  15. package/dist/cjs/core/jwt/jwtManager.js +66 -86
  16. package/dist/cjs/core/jwt/parseDuration.js +3 -3
  17. package/dist/cjs/core/jwt/signToken.d.ts +1 -1
  18. package/dist/cjs/core/jwt/signToken.js +7 -7
  19. package/dist/cjs/core/jwt/types.d.ts +1 -1
  20. package/dist/cjs/core/jwt/validateToken.d.ts +2 -2
  21. package/dist/cjs/core/jwt/validateToken.js +3 -3
  22. package/dist/cjs/core/jwt/verify.d.ts +3 -2
  23. package/dist/cjs/core/password/hash.js +1 -1
  24. package/dist/cjs/core/password/index.d.ts +3 -3
  25. package/dist/cjs/core/password/passwordManager.d.ts +1 -1
  26. package/dist/cjs/core/password/passwordManager.js +32 -31
  27. package/dist/cjs/core/password/strength.d.ts +1 -1
  28. package/dist/cjs/core/password/strength.js +4 -4
  29. package/dist/cjs/core/password/utils.js +2 -2
  30. package/dist/cjs/core/password/verify.js +1 -1
  31. package/dist/cjs/index.d.ts +6 -6
  32. package/dist/cjs/index.js +2 -2
  33. package/dist/cjs/interfaces/jwt.interface.d.ts +1 -1
  34. package/dist/esm/core/crypto/cryptoManager.js +10 -4
  35. package/dist/esm/core/crypto/decrypt.js +7 -7
  36. package/dist/esm/core/crypto/encrypt.js +5 -5
  37. package/dist/esm/core/crypto/hmac.js +2 -2
  38. package/dist/esm/core/crypto/index.d.ts +5 -5
  39. package/dist/esm/core/crypto/index.js +5 -5
  40. package/dist/esm/core/crypto/random.js +3 -3
  41. package/dist/esm/core/jwt/decode.d.ts +1 -1
  42. package/dist/esm/core/jwt/decode.js +3 -3
  43. package/dist/esm/core/jwt/extractToken.js +7 -7
  44. package/dist/esm/core/jwt/generateTokens.d.ts +2 -2
  45. package/dist/esm/core/jwt/generateTokens.js +12 -8
  46. package/dist/esm/core/jwt/index.d.ts +8 -8
  47. package/dist/esm/core/jwt/index.js +8 -8
  48. package/dist/esm/core/jwt/jwtManager.d.ts +3 -2
  49. package/dist/esm/core/jwt/jwtManager.js +70 -90
  50. package/dist/esm/core/jwt/parseDuration.js +3 -3
  51. package/dist/esm/core/jwt/signToken.d.ts +1 -1
  52. package/dist/esm/core/jwt/signToken.js +9 -9
  53. package/dist/esm/core/jwt/types.d.ts +1 -1
  54. package/dist/esm/core/jwt/validateToken.d.ts +2 -2
  55. package/dist/esm/core/jwt/validateToken.js +3 -3
  56. package/dist/esm/core/jwt/verify.d.ts +3 -2
  57. package/dist/esm/core/jwt/verify.js +1 -1
  58. package/dist/esm/core/password/hash.js +3 -3
  59. package/dist/esm/core/password/index.d.ts +3 -3
  60. package/dist/esm/core/password/index.js +3 -3
  61. package/dist/esm/core/password/passwordManager.d.ts +1 -1
  62. package/dist/esm/core/password/passwordManager.js +34 -33
  63. package/dist/esm/core/password/strength.d.ts +1 -1
  64. package/dist/esm/core/password/strength.js +5 -5
  65. package/dist/esm/core/password/utils.js +4 -4
  66. package/dist/esm/core/password/verify.js +2 -2
  67. package/dist/esm/index.d.ts +6 -6
  68. package/dist/esm/index.js +7 -7
  69. package/dist/esm/interfaces/jwt.interface.d.ts +1 -1
  70. package/dist/types/core/crypto/index.d.ts +5 -5
  71. package/dist/types/core/jwt/decode.d.ts +1 -1
  72. package/dist/types/core/jwt/generateTokens.d.ts +2 -2
  73. package/dist/types/core/jwt/index.d.ts +8 -8
  74. package/dist/types/core/jwt/jwtManager.d.ts +3 -2
  75. package/dist/types/core/jwt/signToken.d.ts +1 -1
  76. package/dist/types/core/jwt/types.d.ts +1 -1
  77. package/dist/types/core/jwt/validateToken.d.ts +2 -2
  78. package/dist/types/core/jwt/verify.d.ts +3 -2
  79. package/dist/types/core/password/index.d.ts +3 -3
  80. package/dist/types/core/password/passwordManager.d.ts +1 -1
  81. package/dist/types/core/password/strength.d.ts +1 -1
  82. package/dist/types/index.d.ts +6 -6
  83. package/dist/types/interfaces/jwt.interface.d.ts +1 -1
  84. package/package.json +5 -4
package/dist/esm/core/password/strength.js CHANGED
@@ -1,4 +1,4 @@
1
- import { BadRequestError, ValidationError } from "@naman_deep_singh/errors-utils";
1
+ import { BadRequestError, ValidationError, } from '@naman_deep_singh/errors-utils';
2
2
  export const isPasswordStrong = (password, options = {}) => {
3
3
  if (!password)
4
4
  throw new BadRequestError('Invalid password provided');
@@ -6,12 +6,12 @@ export const isPasswordStrong = (password, options = {}) => {
6
6
  if (password.length < minLength)
7
7
  throw new ValidationError(`Password must be at least ${minLength} characters`);
8
8
  if (requireUppercase && !/[A-Z]/.test(password))
9
- throw new ValidationError("Password must include uppercase letters");
9
+ throw new ValidationError('Password must include uppercase letters');
10
10
  if (requireLowercase && !/[a-z]/.test(password))
11
- throw new ValidationError("Password must include lowercase letters");
11
+ throw new ValidationError('Password must include lowercase letters');
12
12
  if (requireNumbers && !/[0-9]/.test(password))
13
- throw new ValidationError("Password must include numbers");
13
+ throw new ValidationError('Password must include numbers');
14
14
  if (requireSymbols && !/[^A-Za-z0-9]/.test(password))
15
- throw new ValidationError("Password must include symbols");
15
+ throw new ValidationError('Password must include symbols');
16
16
  return true;
17
17
  };
package/dist/esm/core/password/utils.js CHANGED
@@ -1,7 +1,7 @@
1
- import crypto from "crypto";
2
- import { BadRequestError } from "@naman_deep_singh/errors-utils";
1
+ import crypto from 'crypto';
2
+ import { BadRequestError } from '@naman_deep_singh/errors-utils';
3
3
  export function ensureValidPassword(password) {
4
- if (!password || typeof password !== "string") {
4
+ if (!password || typeof password !== 'string') {
5
5
  throw new BadRequestError('Invalid password provided');
6
6
  }
7
7
  }
@@ -25,5 +25,5 @@ export function estimatePasswordEntropy(password) {
25
25
  return password.length * Math.log2(pool);
26
26
  }
27
27
  export function normalizePassword(password) {
28
- return password.normalize("NFKC");
28
+ return password.normalize('NFKC');
29
29
  }
package/dist/esm/core/password/verify.js CHANGED
@@ -1,5 +1,5 @@
1
- import bcrypt from "bcryptjs";
2
- import { UnauthorizedError } from "@naman_deep_singh/errors-utils";
1
+ import { UnauthorizedError } from '@naman_deep_singh/errors-utils';
2
+ import bcrypt from 'bcryptjs';
3
3
  /**
4
4
  * Compare a password with a stored hash asynchronously.
5
5
  */
package/dist/esm/index.d.ts CHANGED
@@ -1,9 +1,9 @@
1
- export * from "./core/password";
2
- export * from "./core/jwt";
3
- export * from "./core/crypto";
4
- export { BadRequestError, UnauthorizedError, ValidationError, InternalServerError } from "@naman_deep_singh/errors-utils";
5
- import * as JWTUtils from "./core/jwt";
6
- import * as CryptoUtils from "./core/crypto";
1
+ export * from './core/password';
2
+ export * from './core/jwt';
3
+ export * from './core/crypto';
4
+ export { BadRequestError, UnauthorizedError, ValidationError, InternalServerError, } from '@naman_deep_singh/errors-utils';
5
+ import * as CryptoUtils from './core/crypto';
6
+ import * as JWTUtils from './core/jwt';
7
7
  declare const _default: {
8
8
  decrypt: (data: string, secret: string) => string;
9
9
  encrypt: (text: string, secret: string) => string;
package/dist/esm/index.js CHANGED
@@ -1,11 +1,11 @@
1
- export * from "./core/password";
2
- export * from "./core/jwt";
3
- export * from "./core/crypto";
1
+ export * from './core/password';
2
+ export * from './core/jwt';
3
+ export * from './core/crypto';
4
4
  // Re-export common errors for convenience
5
- export { BadRequestError, UnauthorizedError, ValidationError, InternalServerError } from "@naman_deep_singh/errors-utils";
6
- import * as PasswordUtils from "./core/password";
7
- import * as JWTUtils from "./core/jwt";
8
- import * as CryptoUtils from "./core/crypto";
5
+ export { BadRequestError, UnauthorizedError, ValidationError, InternalServerError, } from '@naman_deep_singh/errors-utils';
6
+ import * as CryptoUtils from './core/crypto';
7
+ import * as JWTUtils from './core/jwt';
8
+ import * as PasswordUtils from './core/password';
9
9
  export default {
10
10
  ...PasswordUtils,
11
11
  ...JWTUtils,
package/dist/esm/interfaces/jwt.interface.d.ts CHANGED
@@ -1,4 +1,4 @@
1
- import { JwtPayload, Secret } from "jsonwebtoken";
1
+ import type { JwtPayload, Secret } from 'jsonwebtoken';
2
2
  export interface AccessToken extends String {
3
3
  readonly __type: 'AccessToken';
4
4
  }
package/dist/types/core/crypto/index.d.ts CHANGED
@@ -1,5 +1,5 @@
1
- export { decrypt } from "./decrypt";
2
- export { encrypt } from "./encrypt";
3
- export { hmacSign, hmacVerify } from "./hmac";
4
- export { randomToken, generateStrongPassword } from "./random";
5
- export * from "./cryptoManager";
1
+ export { decrypt } from './decrypt';
2
+ export { encrypt } from './encrypt';
3
+ export { hmacSign, hmacVerify } from './hmac';
4
+ export { randomToken, generateStrongPassword } from './random';
5
+ export * from './cryptoManager';
package/dist/types/core/jwt/decode.d.ts CHANGED
@@ -1,4 +1,4 @@
1
- import { JwtPayload } from "jsonwebtoken";
1
+ import { type JwtPayload } from 'jsonwebtoken';
2
2
  /**
3
3
  * Flexible decode
4
4
  * Returns: null | string | JwtPayload
package/dist/types/core/jwt/generateTokens.d.ts CHANGED
@@ -1,4 +1,4 @@
1
- import { Secret } from "jsonwebtoken";
2
- import { RefreshToken, TokenPair } from "./types";
1
+ import { type Secret } from 'jsonwebtoken';
2
+ import type { RefreshToken, TokenPair } from './types';
3
3
  export declare const generateTokens: (payload: Record<string, unknown>, accessSecret: Secret, refreshSecret: Secret, accessExpiry?: string | number, refreshExpiry?: string | number) => TokenPair;
4
4
  export declare function rotateRefreshToken(oldToken: string, secret: Secret): RefreshToken;
package/dist/types/core/jwt/index.d.ts CHANGED
@@ -1,8 +1,8 @@
1
- export * from "./decode";
2
- export * from "./extractToken";
3
- export * from "./generateTokens";
4
- export * from "./parseDuration";
5
- export * from "./signToken";
6
- export * from "./types";
7
- export * from "./validateToken";
8
- export * from "./verify";
1
+ export * from './decode';
2
+ export * from './extractToken';
3
+ export * from './generateTokens';
4
+ export * from './parseDuration';
5
+ export * from './signToken';
6
+ export * from './types';
7
+ export * from './validateToken';
8
+ export * from './verify';
package/dist/types/core/jwt/jwtManager.d.ts CHANGED
@@ -1,11 +1,12 @@
1
- import { JwtPayload, Secret } from "jsonwebtoken";
2
- import { ITokenManager, TokenPair, AccessToken, RefreshToken, JWTConfig, TokenValidationOptions } from "../../interfaces/jwt.interface";
1
+ import { type JwtPayload, type Secret } from 'jsonwebtoken';
2
+ import type { AccessToken, ITokenManager, JWTConfig, RefreshToken, TokenPair, TokenValidationOptions } from '../../interfaces/jwt.interface';
3
3
  export declare class JWTManager implements ITokenManager {
4
4
  private accessSecret;
5
5
  private refreshSecret;
6
6
  private accessExpiry;
7
7
  private refreshExpiry;
8
8
  private cache?;
9
+ private cacheTTL;
9
10
  constructor(config: JWTConfig);
10
11
  /**
11
12
  * Generate both access and refresh tokens
package/dist/types/core/jwt/signToken.d.ts CHANGED
@@ -1,2 +1,2 @@
1
- import { Secret, SignOptions } from "jsonwebtoken";
1
+ import { type Secret, type SignOptions } from 'jsonwebtoken';
2
2
  export declare const signToken: (payload: Record<string, unknown>, secret: Secret, expiresIn?: string | number, options?: SignOptions) => string;
package/dist/types/core/jwt/types.d.ts CHANGED
@@ -1,4 +1,4 @@
1
- import { JwtPayload } from "jsonwebtoken";
1
+ import type { JwtPayload } from 'jsonwebtoken';
2
2
  export interface AccessTokenBrand {
3
3
  readonly access: unique symbol;
4
4
  }
package/dist/types/core/jwt/validateToken.d.ts CHANGED
@@ -1,8 +1,8 @@
1
- import { JwtPayload } from "node_modules/@types/jsonwebtoken";
1
+ import type { JwtPayload } from 'node_modules/@types/jsonwebtoken';
2
2
  export interface TokenRequirements {
3
3
  requiredFields?: string[];
4
4
  forbiddenFields?: string[];
5
- validateTypes?: Record<string, "string" | "number" | "boolean">;
5
+ validateTypes?: Record<string, 'string' | 'number' | 'boolean'>;
6
6
  }
7
7
  export declare function validateTokenPayload(payload: Record<string, unknown>, rules?: TokenRequirements): {
8
8
  valid: true;
package/dist/types/core/jwt/verify.d.ts CHANGED
@@ -1,5 +1,6 @@
1
- import jwt, { Secret, JwtPayload } from "jsonwebtoken";
2
- import { VerificationResult } from "./types";
1
+ import type jwt from 'jsonwebtoken';
2
+ import { type JwtPayload, type Secret } from 'jsonwebtoken';
3
+ import type { VerificationResult } from './types';
3
4
  /**
4
5
  * Verify token (throws if invalid or expired)
5
6
  */
package/dist/types/core/password/index.d.ts CHANGED
@@ -1,3 +1,3 @@
1
- export * from "./hash";
2
- export * from "./strength";
3
- export * from "./verify";
1
+ export * from './hash';
2
+ export * from './strength';
3
+ export * from './verify';
package/dist/types/core/password/passwordManager.d.ts CHANGED
@@ -1,4 +1,4 @@
1
- import { IPasswordManager, PasswordConfig, PasswordValidationResult, HashedPassword, PasswordStrength } from "../../interfaces/password.interface";
1
+ import type { HashedPassword, IPasswordManager, PasswordConfig, PasswordStrength, PasswordValidationResult } from '../../interfaces/password.interface';
2
2
  export declare class PasswordManager implements IPasswordManager {
3
3
  private defaultConfig;
4
4
  constructor(config?: PasswordConfig);
package/dist/types/core/password/strength.d.ts CHANGED
@@ -1,2 +1,2 @@
1
- import { PasswordStrengthOptions } from "./types";
1
+ import type { PasswordStrengthOptions } from './types';
2
2
  export declare const isPasswordStrong: (password: string, options?: PasswordStrengthOptions) => boolean;
package/dist/types/index.d.ts CHANGED
@@ -1,9 +1,9 @@
1
- export * from "./core/password";
2
- export * from "./core/jwt";
3
- export * from "./core/crypto";
4
- export { BadRequestError, UnauthorizedError, ValidationError, InternalServerError } from "@naman_deep_singh/errors-utils";
5
- import * as JWTUtils from "./core/jwt";
6
- import * as CryptoUtils from "./core/crypto";
1
+ export * from './core/password';
2
+ export * from './core/jwt';
3
+ export * from './core/crypto';
4
+ export { BadRequestError, UnauthorizedError, ValidationError, InternalServerError, } from '@naman_deep_singh/errors-utils';
5
+ import * as CryptoUtils from './core/crypto';
6
+ import * as JWTUtils from './core/jwt';
7
7
  declare const _default: {
8
8
  decrypt: (data: string, secret: string) => string;
9
9
  encrypt: (text: string, secret: string) => string;
package/dist/types/interfaces/jwt.interface.d.ts CHANGED
@@ -1,4 +1,4 @@
1
- import { JwtPayload, Secret } from "jsonwebtoken";
1
+ import type { JwtPayload, Secret } from 'jsonwebtoken';
2
2
  export interface AccessToken extends String {
3
3
  readonly __type: 'AccessToken';
4
4
  }
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@naman_deep_singh/security",
3
- "version": "1.3.0",
3
+ "version": "1.3.2",
4
4
  "description": "Security utilities for password hashing and JWT token management with TypeScript",
5
5
  "type": "module",
6
6
  "main": "./dist/cjs/index.js",
@@ -28,15 +28,16 @@
28
28
  "author": "Naman Deep Singh",
29
29
  "license": "ISC",
30
30
  "dependencies": {
31
- "@naman_deep_singh/errors-utils": "^1.0.0",
31
+ "@naman_deep_singh/errors-utils": "^1.1.1",
32
+ "@naman_deep_singh/js-extensions": "^1.3.2",
32
33
  "bcryptjs": "^3.0.3",
33
34
  "jsonwebtoken": "^9.0.2"
34
35
  },
35
36
  "devDependencies": {
36
37
  "@types/bcryptjs": "^2.4.6",
37
38
  "@types/jsonwebtoken": "^9.0.10",
38
- "typescript": "^5.9.3",
39
- "rimraf": "^5.0.5"
39
+ "rimraf": "^5.0.5",
40
+ "typescript": "^5.9.3"
40
41
  },
41
42
  "scripts": {
42
43
  "build": "pnpm run build:types && tsc -p tsconfig.cjs.json && tsc -p tsconfig.esm.json",