@naman_deep_singh/security 1.5.1 → 1.7.0

package/README.md

@@ -1,7 +1,7 @@
 ```bash
 @naman_deep_singh/security
 
-Version: 1.5.1
+Version: 1.7.0
 
 A complete, lightweight security toolkit for Node.js & TypeScript providing:
 
@@ -13,7 +13,7 @@ A complete, lightweight security toolkit for Node.js & TypeScript providing:
 🧰 Robust token extraction (Headers, Cookies, Query, Body, WebSocket)
 🧩 Safe & strict JWT decode utilities
 🔒 AES-256-GCM encryption/decryption with HMAC and random utilities
-🚨 Standardized error handling with @naman_deep_singh/errors-utils
+🚨 Standardized error handling with @naman_deep_singh/errors
 
 ✔ Fully typed with TypeScript
 ✔ Branded token types for compile-time safety (AccessToken/RefreshToken)
@@ -220,7 +220,7 @@ const randomHex = cryptoManager.generateRandomHex(32);
 
 🚨 Error Handling
 
-This package uses standardized errors from @naman_deep_singh/errors-utils:
+This package uses standardized errors from @naman_deep_singh/errors:
 
 import {
   BadRequestError,

package/dist/cjs/core/crypto/CryptoManger.js

@@ -0,0 +1,107 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CryptoManager = void 0;
+const crypto_1 = __importDefault(require("crypto"));
+const errors_1 = require("@naman_deep_singh/errors");
+const decrypt_js_1 = require("./decrypt.js");
+const encrypt_js_1 = require("./encrypt.js");
+const hmac_js_1 = require("./hmac.js");
+/**
+ * High-level cryptography manager
+ * Wraps encryption, decryption, HMAC, and random utilities
+ */
+class CryptoManager {
+    constructor(secret) {
+        if (!secret || typeof secret !== 'string' || secret.length < 16) {
+            throw new errors_1.BadRequestError({
+                reason: 'CryptoManager secret must be a non-empty string (min 16 chars)',
+            });
+        }
+        this.secret = secret;
+    }
+    /**
+     * Encrypt data using AES-256-GCM
+     */
+    encrypt(data) {
+        if (!data || typeof data !== 'string') {
+            throw new errors_1.BadRequestError({
+                reason: 'Data to encrypt must be a non-empty string',
+            });
+        }
+        return (0, encrypt_js_1.encrypt)(data, this.secret);
+    }
+    /**
+     * Decrypt AES-256-GCM encrypted data
+     */
+    decrypt(encrypted) {
+        if (!encrypted || typeof encrypted !== 'string') {
+            throw new errors_1.BadRequestError({
+                reason: 'Encrypted value must be a non-empty string',
+            });
+        }
+        return (0, decrypt_js_1.decrypt)(encrypted, this.secret);
+    }
+    /**
+     * Create HMAC SHA-256 signature
+     */
+    createHMAC(message) {
+        if (!message || typeof message !== 'string') {
+            throw new errors_1.BadRequestError({
+                reason: 'Message must be a non-empty string',
+            });
+        }
+        return (0, hmac_js_1.hmacSign)(message, this.secret);
+    }
+    /**
+     * Verify HMAC SHA-256 signature
+     */
+    verifyHMAC(message, signature) {
+        if (!message ||
+            typeof message !== 'string' ||
+            !signature ||
+            typeof signature !== 'string') {
+            return false;
+        }
+        return (0, hmac_js_1.hmacVerify)(message, this.secret, signature);
+    }
+    /**
+     * Generate cryptographically secure random bytes
+     */
+    generateRandomBytes(length = 32) {
+        if (!Number.isInteger(length) || length <= 0) {
+            throw new errors_1.BadRequestError({
+                reason: 'Random byte length must be a positive integer',
+            });
+        }
+        return crypto_1.default.randomBytes(length);
+    }
+    /**
+     * Generate secure random hex string
+     */
+    generateRandomHex(length = 32) {
+        if (!Number.isInteger(length) || length <= 0) {
+            throw new errors_1.BadRequestError({
+                reason: 'Random hex length must be a positive integer',
+            });
+        }
+        return crypto_1.default.randomBytes(length).toString('hex');
+    }
+    /**
+     * Generate secure random string (URL-safe base64)
+     */
+    generateRandomString(length = 32) {
+        if (!Number.isInteger(length) || length <= 0) {
+            throw new errors_1.BadRequestError({
+                reason: 'Random string length must be a positive integer',
+            });
+        }
+        return crypto_1.default
+            .randomBytes(Math.ceil((length * 3) / 4))
+            .toString('base64url')
+            .slice(0, length);
+    }
+}
+exports.CryptoManager = CryptoManager;

package/dist/cjs/core/crypto/index.js

@@ -1,28 +1,15 @@
 "use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.generateStrongPassword = exports.randomToken = exports.hmacVerify = exports.hmacSign = exports.encrypt = exports.decrypt = void 0;
-var decrypt_1 = require("./decrypt");
-Object.defineProperty(exports, "decrypt", { enumerable: true, get: function () { return decrypt_1.decrypt; } });
-var encrypt_1 = require("./encrypt");
-Object.defineProperty(exports, "encrypt", { enumerable: true, get: function () { return encrypt_1.encrypt; } });
-var hmac_1 = require("./hmac");
-Object.defineProperty(exports, "hmacSign", { enumerable: true, get: function () { return hmac_1.hmacSign; } });
-Object.defineProperty(exports, "hmacVerify", { enumerable: true, get: function () { return hmac_1.hmacVerify; } });
-var random_1 = require("./random");
-Object.defineProperty(exports, "randomToken", { enumerable: true, get: function () { return random_1.randomToken; } });
-Object.defineProperty(exports, "generateStrongPassword", { enumerable: true, get: function () { return random_1.generateStrongPassword; } });
-__exportStar(require("./cryptoManager"), exports);
+exports.generateStrongPassword = exports.randomToken = exports.hmacVerify = exports.hmacSign = exports.decrypt = exports.encrypt = exports.CryptoManager = void 0;
+var CryptoManger_js_1 = require("./CryptoManger.js");
+Object.defineProperty(exports, "CryptoManager", { enumerable: true, get: function () { return CryptoManger_js_1.CryptoManager; } });
+var encrypt_js_1 = require("./encrypt.js");
+Object.defineProperty(exports, "encrypt", { enumerable: true, get: function () { return encrypt_js_1.encrypt; } });
+var decrypt_js_1 = require("./decrypt.js");
+Object.defineProperty(exports, "decrypt", { enumerable: true, get: function () { return decrypt_js_1.decrypt; } });
+var hmac_js_1 = require("./hmac.js");
+Object.defineProperty(exports, "hmacSign", { enumerable: true, get: function () { return hmac_js_1.hmacSign; } });
+Object.defineProperty(exports, "hmacVerify", { enumerable: true, get: function () { return hmac_js_1.hmacVerify; } });
+var random_js_1 = require("./random.js");
+Object.defineProperty(exports, "randomToken", { enumerable: true, get: function () { return random_js_1.randomToken; } });
+Object.defineProperty(exports, "generateStrongPassword", { enumerable: true, get: function () { return random_js_1.generateStrongPassword; } });

package/dist/cjs/core/index.js

@@ -0,0 +1,44 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.normalizePassword = exports.estimatePasswordEntropy = exports.safeCompare = exports.ensureValidPassword = exports.PasswordManager = exports.verifyPasswordWithPepperSync = exports.verifyPasswordSync = exports.verifyPasswordWithPepper = exports.verifyPassword = exports.isPasswordStrong = exports.hashPasswordWithPepperSync = exports.hashPasswordSync = exports.hashPasswordWithPepper = exports.hashPassword = exports.JWTManager = exports.safeVerifyTokenWithOptions = exports.safeVerifyToken = exports.verifyTokenWithOptions = exports.verifyToken = exports.isTokenExpired = exports.validateTokenPayload = exports.signToken = exports.parseDuration = exports.rotateRefreshToken = exports.generateTokens = exports.extractToken = exports.decodeTokenStrict = exports.decodeToken = exports.generateStrongPassword = exports.randomToken = exports.hmacVerify = exports.hmacSign = exports.decrypt = exports.encrypt = exports.CryptoManager = void 0;
+// Re-export everything from crypto module
+var index_js_1 = require("./crypto/index.js");
+Object.defineProperty(exports, "CryptoManager", { enumerable: true, get: function () { return index_js_1.CryptoManager; } });
+Object.defineProperty(exports, "encrypt", { enumerable: true, get: function () { return index_js_1.encrypt; } });
+Object.defineProperty(exports, "decrypt", { enumerable: true, get: function () { return index_js_1.decrypt; } });
+Object.defineProperty(exports, "hmacSign", { enumerable: true, get: function () { return index_js_1.hmacSign; } });
+Object.defineProperty(exports, "hmacVerify", { enumerable: true, get: function () { return index_js_1.hmacVerify; } });
+Object.defineProperty(exports, "randomToken", { enumerable: true, get: function () { return index_js_1.randomToken; } });
+Object.defineProperty(exports, "generateStrongPassword", { enumerable: true, get: function () { return index_js_1.generateStrongPassword; } });
+// Re-export everything from jwt module
+var index_js_2 = require("./jwt/index.js");
+Object.defineProperty(exports, "decodeToken", { enumerable: true, get: function () { return index_js_2.decodeToken; } });
+Object.defineProperty(exports, "decodeTokenStrict", { enumerable: true, get: function () { return index_js_2.decodeTokenStrict; } });
+Object.defineProperty(exports, "extractToken", { enumerable: true, get: function () { return index_js_2.extractToken; } });
+Object.defineProperty(exports, "generateTokens", { enumerable: true, get: function () { return index_js_2.generateTokens; } });
+Object.defineProperty(exports, "rotateRefreshToken", { enumerable: true, get: function () { return index_js_2.rotateRefreshToken; } });
+Object.defineProperty(exports, "parseDuration", { enumerable: true, get: function () { return index_js_2.parseDuration; } });
+Object.defineProperty(exports, "signToken", { enumerable: true, get: function () { return index_js_2.signToken; } });
+Object.defineProperty(exports, "validateTokenPayload", { enumerable: true, get: function () { return index_js_2.validateTokenPayload; } });
+Object.defineProperty(exports, "isTokenExpired", { enumerable: true, get: function () { return index_js_2.isTokenExpired; } });
+Object.defineProperty(exports, "verifyToken", { enumerable: true, get: function () { return index_js_2.verifyToken; } });
+Object.defineProperty(exports, "verifyTokenWithOptions", { enumerable: true, get: function () { return index_js_2.verifyTokenWithOptions; } });
+Object.defineProperty(exports, "safeVerifyToken", { enumerable: true, get: function () { return index_js_2.safeVerifyToken; } });
+Object.defineProperty(exports, "safeVerifyTokenWithOptions", { enumerable: true, get: function () { return index_js_2.safeVerifyTokenWithOptions; } });
+Object.defineProperty(exports, "JWTManager", { enumerable: true, get: function () { return index_js_2.JWTManager; } });
+// Re-export everything from password module
+var index_js_3 = require("./password/index.js");
+Object.defineProperty(exports, "hashPassword", { enumerable: true, get: function () { return index_js_3.hashPassword; } });
+Object.defineProperty(exports, "hashPasswordWithPepper", { enumerable: true, get: function () { return index_js_3.hashPasswordWithPepper; } });
+Object.defineProperty(exports, "hashPasswordSync", { enumerable: true, get: function () { return index_js_3.hashPasswordSync; } });
+Object.defineProperty(exports, "hashPasswordWithPepperSync", { enumerable: true, get: function () { return index_js_3.hashPasswordWithPepperSync; } });
+Object.defineProperty(exports, "isPasswordStrong", { enumerable: true, get: function () { return index_js_3.isPasswordStrong; } });
+Object.defineProperty(exports, "verifyPassword", { enumerable: true, get: function () { return index_js_3.verifyPassword; } });
+Object.defineProperty(exports, "verifyPasswordWithPepper", { enumerable: true, get: function () { return index_js_3.verifyPasswordWithPepper; } });
+Object.defineProperty(exports, "verifyPasswordSync", { enumerable: true, get: function () { return index_js_3.verifyPasswordSync; } });
+Object.defineProperty(exports, "verifyPasswordWithPepperSync", { enumerable: true, get: function () { return index_js_3.verifyPasswordWithPepperSync; } });
+Object.defineProperty(exports, "PasswordManager", { enumerable: true, get: function () { return index_js_3.PasswordManager; } });
+Object.defineProperty(exports, "ensureValidPassword", { enumerable: true, get: function () { return index_js_3.ensureValidPassword; } });
+Object.defineProperty(exports, "safeCompare", { enumerable: true, get: function () { return index_js_3.safeCompare; } });
+Object.defineProperty(exports, "estimatePasswordEntropy", { enumerable: true, get: function () { return index_js_3.estimatePasswordEntropy; } });
+Object.defineProperty(exports, "normalizePassword", { enumerable: true, get: function () { return index_js_3.normalizePassword; } });

package/dist/cjs/core/jwt/{jwtManager.js → JWTManager.js}

@@ -4,11 +4,11 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.JWTManager = void 0;
+const errors_1 = require("@naman_deep_singh/errors");
+const utils_1 = require("@naman_deep_singh/utils");
 const jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
-const signToken_1 = require("./signToken");
-const verify_1 = require("./verify");
-const errors_utils_1 = require("@naman_deep_singh/errors-utils");
-const js_extensions_1 = require("@naman_deep_singh/js-extensions");
+const signToken_js_1 = require("./signToken.js");
+const verify_js_1 = require("./verify.js");
 class JWTManager {
     constructor(config) {
         this.accessSecret = config.accessSecret;
@@ -17,7 +17,7 @@ class JWTManager {
         this.refreshExpiry = config.refreshExpiry || '7d';
         this.cacheTTL = 5 * 60 * 1000; // 5 minutes
         if (config.enableCaching) {
-            this.cache = new js_extensions_1.LRUCache(config.maxCacheSize || 100);
+            this.cache = new utils_1.LRUCache(config.maxCacheSize || 100);
         }
     }
     /** Generate both access and refresh tokens */
@@ -29,39 +29,39 @@ class JWTManager {
             return { accessToken, refreshToken };
         }
         catch (error) {
-            if (error instanceof errors_utils_1.BadRequestError || error instanceof errors_utils_1.ValidationError)
+            if (error instanceof errors_1.BadRequestError || error instanceof errors_1.ValidationError)
                 throw error;
-            throw new errors_utils_1.BadRequestError({ reason: 'Failed to generate tokens' }, error instanceof Error ? error : undefined);
+            throw new errors_1.BadRequestError({ reason: 'Failed to generate tokens' }, error instanceof Error ? error : undefined);
         }
     }
     /** Generate access token */
     async generateAccessToken(payload) {
         try {
             this.validatePayload(payload);
-            const token = (0, signToken_1.signToken)(payload, this.accessSecret, this.accessExpiry, {
+            const token = (0, signToken_js_1.signToken)(payload, this.accessSecret, this.accessExpiry, {
                 algorithm: 'HS256',
             });
             return token;
         }
         catch (error) {
-            if (error instanceof errors_utils_1.BadRequestError || error instanceof errors_utils_1.ValidationError)
+            if (error instanceof errors_1.BadRequestError || error instanceof errors_1.ValidationError)
                 throw error;
-            throw new errors_utils_1.BadRequestError({ reason: 'Failed to generate access token' }, error instanceof Error ? error : undefined);
+            throw new errors_1.BadRequestError({ reason: 'Failed to generate access token' }, error instanceof Error ? error : undefined);
         }
     }
     /** Generate refresh token */
     async generateRefreshToken(payload) {
         try {
             this.validatePayload(payload);
-            const token = (0, signToken_1.signToken)(payload, this.refreshSecret, this.refreshExpiry, {
+            const token = (0, signToken_js_1.signToken)(payload, this.refreshSecret, this.refreshExpiry, {
                 algorithm: 'HS256',
             });
             return token;
         }
         catch (error) {
-            if (error instanceof errors_utils_1.BadRequestError || error instanceof errors_utils_1.ValidationError)
+            if (error instanceof errors_1.BadRequestError || error instanceof errors_1.ValidationError)
                 throw error;
-            throw new errors_utils_1.BadRequestError({ reason: 'Failed to generate refresh token' }, error instanceof Error ? error : undefined);
+            throw new errors_1.BadRequestError({ reason: 'Failed to generate refresh token' }, error instanceof Error ? error : undefined);
         }
     }
     /** Verify access token */
@@ -91,12 +91,12 @@ class JWTManager {
     validateToken(token, secret) {
         if (!token || typeof token !== 'string')
             return false;
-        return (0, verify_1.safeVerifyToken)(token, secret).valid;
+        return (0, verify_js_1.safeVerifyToken)(token, secret).valid;
     }
     /** Rotate refresh token */
     async rotateRefreshToken(oldToken) {
         if (!oldToken || typeof oldToken !== 'string') {
-            throw new errors_utils_1.ValidationError({
+            throw new errors_1.ValidationError({
                 reason: 'Old refresh token must be a non-empty string',
             });
         }
@@ -104,7 +104,7 @@ class JWTManager {
         const payload = { ...decoded };
         delete payload.iat;
         delete payload.exp;
-        const newToken = (0, signToken_1.signToken)(payload, this.refreshSecret, this.refreshExpiry);
+        const newToken = (0, signToken_js_1.signToken)(payload, this.refreshSecret, this.refreshExpiry);
         return newToken;
     }
     /** Check if token is expired */
@@ -144,17 +144,17 @@ class JWTManager {
     /** Private helper methods */
     validatePayload(payload) {
         if (!payload || typeof payload !== 'object') {
-            throw new errors_utils_1.ValidationError({
+            throw new errors_1.ValidationError({
                 reason: 'Payload must be a non-null object',
             });
         }
         if (Object.keys(payload).length === 0) {
-            throw new errors_utils_1.ValidationError({ reason: 'Payload cannot be empty' });
+            throw new errors_1.ValidationError({ reason: 'Payload cannot be empty' });
         }
     }
     async verifyTokenWithCache(token, secret, type) {
         if (!token || typeof token !== 'string') {
-            throw new errors_utils_1.ValidationError({
+            throw new errors_1.ValidationError({
                 reason: `${type} token must be a non-empty string`,
             });
         }
@@ -163,20 +163,20 @@ class JWTManager {
             const cached = this.cache.get(cacheKey);
             if (cached && Date.now() - cached.timestamp <= this.cacheTTL) {
                 if (!cached.valid)
-                    throw new errors_utils_1.UnauthorizedError({
+                    throw new errors_1.UnauthorizedError({
                         reason: `${type} token is invalid or expired`,
                     });
                 return cached.payload;
             }
         }
-        const { valid, payload, error } = (0, verify_1.safeVerifyToken)(token, secret);
+        const { valid, payload, error } = (0, verify_js_1.safeVerifyToken)(token, secret);
         if (!valid || !payload || typeof payload === 'string') {
             this.cache?.set(cacheKey, {
                 valid: false,
                 payload: {},
                 timestamp: Date.now(),
             });
-            throw new errors_utils_1.UnauthorizedError({
+            throw new errors_1.UnauthorizedError({
                 reason: `${type} token is invalid or expired`,
                 cause: error,
             });

package/dist/cjs/core/jwt/decode.js

@@ -2,8 +2,7 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.decodeToken = decodeToken;
 exports.decodeTokenStrict = decodeTokenStrict;
-const errors_utils_1 = require("@naman_deep_singh/errors-utils");
-// src/jwt/decodeToken.ts
+const errors_1 = require("@naman_deep_singh/errors");
 const jsonwebtoken_1 = require("jsonwebtoken");
 /**
  * Flexible decode
@@ -20,7 +19,7 @@ function decodeToken(token) {
 function decodeTokenStrict(token) {
     const decoded = (0, jsonwebtoken_1.decode)(token);
     if (!decoded || typeof decoded === 'string') {
-        throw new errors_utils_1.BadRequestError({
+        throw new errors_1.BadRequestError({
             reason: 'Invalid JWT payload structure',
         });
     }

package/dist/cjs/core/jwt/generateTokens.js

@@ -2,18 +2,18 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.generateTokens = void 0;
 exports.rotateRefreshToken = rotateRefreshToken;
-const errors_utils_1 = require("@naman_deep_singh/errors-utils");
-const signToken_1 = require("./signToken");
-const verify_1 = require("./verify");
+const errors_1 = require("@naman_deep_singh/errors");
+const signToken_js_1 = require("./signToken.js");
+const verify_js_1 = require("./verify.js");
 // Helper function to create branded tokens
 /* const createBrandedToken = <T extends string>(token: string, _brand: T): T => {
     return token as T
 } */
 const generateTokens = (payload, accessSecret, refreshSecret, accessExpiry = '15m', refreshExpiry = '7d') => {
-    const accessToken = (0, signToken_1.signToken)(payload, accessSecret, accessExpiry, {
+    const accessToken = (0, signToken_js_1.signToken)(payload, accessSecret, accessExpiry, {
         algorithm: 'HS256',
     });
-    const refreshToken = (0, signToken_1.signToken)(payload, refreshSecret, refreshExpiry, {
+    const refreshToken = (0, signToken_js_1.signToken)(payload, refreshSecret, refreshExpiry, {
         algorithm: 'HS256',
     });
     return {
@@ -23,15 +23,15 @@ const generateTokens = (payload, accessSecret, refreshSecret, accessExpiry = '15
 };
 exports.generateTokens = generateTokens;
 function rotateRefreshToken(oldToken, secret) {
-    const decoded = (0, verify_1.verifyToken)(oldToken, secret);
+    const decoded = (0, verify_js_1.verifyToken)(oldToken, secret);
     if (typeof decoded === 'string') {
-        throw new errors_utils_1.TokenMalformedError({
+        throw new errors_1.TokenMalformedError({
             reason: 'Invalid token payload — expected JWT payload object',
         });
     }
     const payload = { ...decoded };
     delete payload.iat;
     delete payload.exp;
-    const newToken = (0, signToken_1.signToken)(payload, secret, '7d');
+    const newToken = (0, signToken_js_1.signToken)(payload, secret, '7d');
     return newToken;
 }

package/dist/cjs/core/jwt/index.js

@@ -1,24 +1,25 @@
 "use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
 Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./decode"), exports);
-__exportStar(require("./extractToken"), exports);
-__exportStar(require("./generateTokens"), exports);
-__exportStar(require("./parseDuration"), exports);
-__exportStar(require("./signToken"), exports);
-__exportStar(require("./types"), exports);
-__exportStar(require("./validateToken"), exports);
-__exportStar(require("./verify"), exports);
+exports.JWTManager = exports.safeVerifyTokenWithOptions = exports.safeVerifyToken = exports.verifyTokenWithOptions = exports.verifyToken = exports.isTokenExpired = exports.validateTokenPayload = exports.signToken = exports.parseDuration = exports.rotateRefreshToken = exports.generateTokens = exports.extractToken = exports.decodeTokenStrict = exports.decodeToken = void 0;
+var decode_js_1 = require("./decode.js");
+Object.defineProperty(exports, "decodeToken", { enumerable: true, get: function () { return decode_js_1.decodeToken; } });
+Object.defineProperty(exports, "decodeTokenStrict", { enumerable: true, get: function () { return decode_js_1.decodeTokenStrict; } });
+var extractToken_js_1 = require("./extractToken.js");
+Object.defineProperty(exports, "extractToken", { enumerable: true, get: function () { return extractToken_js_1.extractToken; } });
+var generateTokens_js_1 = require("./generateTokens.js");
+Object.defineProperty(exports, "generateTokens", { enumerable: true, get: function () { return generateTokens_js_1.generateTokens; } });
+Object.defineProperty(exports, "rotateRefreshToken", { enumerable: true, get: function () { return generateTokens_js_1.rotateRefreshToken; } });
+var parseDuration_js_1 = require("./parseDuration.js");
+Object.defineProperty(exports, "parseDuration", { enumerable: true, get: function () { return parseDuration_js_1.parseDuration; } });
+var signToken_js_1 = require("./signToken.js");
+Object.defineProperty(exports, "signToken", { enumerable: true, get: function () { return signToken_js_1.signToken; } });
+var validateToken_js_1 = require("./validateToken.js");
+Object.defineProperty(exports, "validateTokenPayload", { enumerable: true, get: function () { return validateToken_js_1.validateTokenPayload; } });
+Object.defineProperty(exports, "isTokenExpired", { enumerable: true, get: function () { return validateToken_js_1.isTokenExpired; } });
+var verify_js_1 = require("./verify.js");
+Object.defineProperty(exports, "verifyToken", { enumerable: true, get: function () { return verify_js_1.verifyToken; } });
+Object.defineProperty(exports, "verifyTokenWithOptions", { enumerable: true, get: function () { return verify_js_1.verifyTokenWithOptions; } });
+Object.defineProperty(exports, "safeVerifyToken", { enumerable: true, get: function () { return verify_js_1.safeVerifyToken; } });
+Object.defineProperty(exports, "safeVerifyTokenWithOptions", { enumerable: true, get: function () { return verify_js_1.safeVerifyTokenWithOptions; } });
+var JWTManager_js_1 = require("./JWTManager.js");
+Object.defineProperty(exports, "JWTManager", { enumerable: true, get: function () { return JWTManager_js_1.JWTManager; } });

package/dist/cjs/core/jwt/parseDuration.js

@@ -1,7 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.parseDuration = parseDuration;
-const errors_utils_1 = require("@naman_deep_singh/errors-utils");
+const errors_1 = require("@naman_deep_singh/errors");
 const TIME_UNITS = {
     s: 1,
     m: 60,
@@ -19,12 +19,12 @@ function parseDuration(input) {
         const value = Number.parseInt(match[1], 10);
         const unit = match[2].toLowerCase();
         if (!TIME_UNITS[unit]) {
-            throw new errors_utils_1.ValidationError({ reason: `Invalid time unit: ${unit}` });
+            throw new errors_1.ValidationError({ reason: `Invalid time unit: ${unit}` });
         }
         totalSeconds += value * TIME_UNITS[unit];
     }
     if (totalSeconds === 0) {
-        throw new errors_utils_1.ValidationError({ reason: `Invalid expiry format: "${input}"` });
+        throw new errors_1.ValidationError({ reason: `Invalid expiry format: "${input}"` });
     }
     return totalSeconds;
 }

package/dist/cjs/core/jwt/signToken.js

@@ -1,16 +1,16 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.signToken = void 0;
-const errors_utils_1 = require("@naman_deep_singh/errors-utils");
+const errors_1 = require("@naman_deep_singh/errors");
 const jsonwebtoken_1 = require("jsonwebtoken");
-const parseDuration_1 = require("./parseDuration");
+const parseDuration_js_1 = require("./parseDuration.js");
 function getExpiryTimestamp(seconds) {
     return Math.floor(Date.now() / 1000) + seconds;
 }
 const signToken = (payload, secret, expiresIn = '1h', options = {}) => {
-    const seconds = (0, parseDuration_1.parseDuration)(expiresIn);
+    const seconds = (0, parseDuration_js_1.parseDuration)(expiresIn);
     if (!seconds || seconds < 10) {
-        throw new errors_utils_1.ValidationError({ reason: 'Token expiry too small' });
+        throw new errors_1.ValidationError({ reason: 'Token expiry too small' });
     }
     const tokenPayload = {
         ...payload,

package/dist/cjs/core/jwt/validateToken.js

@@ -2,7 +2,7 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.validateTokenPayload = validateTokenPayload;
 exports.isTokenExpired = isTokenExpired;
-const errors_utils_1 = require("@naman_deep_singh/errors-utils");
+const errors_1 = require("@naman_deep_singh/errors");
 /**
  * Validates a JWT payload according to the provided rules.
  * Throws ValidationError if validation fails.
@@ -12,7 +12,7 @@ function validateTokenPayload(payload, rules = { requiredFields: ['exp', 'iat']
     // 1. Required fields
     for (const field of requiredFields) {
         if (!(field in payload)) {
-            throw new errors_utils_1.ValidationError({
+            throw new errors_1.ValidationError({
                 reason: `Missing required field: ${field}`,
             });
         }
@@ -20,7 +20,7 @@ function validateTokenPayload(payload, rules = { requiredFields: ['exp', 'iat']
     // 2. Forbidden fields
     for (const field of forbiddenFields) {
         if (field in payload) {
-            throw new errors_utils_1.ValidationError({
+            throw new errors_1.ValidationError({
                 reason: `Forbidden field in token: ${field}`,
             });
         }
@@ -29,7 +29,7 @@ function validateTokenPayload(payload, rules = { requiredFields: ['exp', 'iat']
     for (const key in validateTypes) {
         const expectedType = validateTypes[key];
         if (key in payload && typeof payload[key] !== expectedType) {
-            throw new errors_utils_1.ValidationError({
+            throw new errors_1.ValidationError({
                 reason: `Invalid type for ${key}. Expected ${expectedType}, got ${typeof payload[key]}`,
             });
         }

package/dist/cjs/core/jwt/verify.js

@@ -1,7 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.safeVerifyTokenWithOptions = exports.safeVerifyToken = exports.verifyTokenWithOptions = exports.verifyToken = void 0;
-const errors_utils_1 = require("@naman_deep_singh/errors-utils");
+const errors_1 = require("@naman_deep_singh/errors");
 const jsonwebtoken_1 = require("jsonwebtoken");
 /**
  * Verify token (throws UnauthorizedError if invalid or expired)
@@ -12,12 +12,12 @@ const verifyToken = (token, secret) => {
     }
     catch (error) {
         if (error.name === 'TokenExpiredError') {
-            throw new errors_utils_1.UnauthorizedError({ reason: 'Token has expired' }, error);
+            throw new errors_1.UnauthorizedError({ reason: 'Token has expired' }, error);
         }
         if (error.name === 'JsonWebTokenError') {
-            throw new errors_utils_1.UnauthorizedError({ reason: 'Invalid token' }, error);
+            throw new errors_1.UnauthorizedError({ reason: 'Invalid token' }, error);
         }
-        throw new errors_utils_1.UnauthorizedError({ reason: 'Failed to verify token' }, error);
+        throw new errors_1.UnauthorizedError({ reason: 'Failed to verify token' }, error);
     }
 };
 exports.verifyToken = verifyToken;
@@ -30,12 +30,12 @@ const verifyTokenWithOptions = (token, secret, options = {}) => {
     }
     catch (error) {
         if (error.name === 'TokenExpiredError') {
-            throw new errors_utils_1.UnauthorizedError({ reason: 'Token has expired' }, error);
+            throw new errors_1.UnauthorizedError({ reason: 'Token has expired' }, error);
         }
         if (error.name === 'JsonWebTokenError') {
-            throw new errors_utils_1.UnauthorizedError({ reason: 'Invalid token' }, error);
+            throw new errors_1.UnauthorizedError({ reason: 'Invalid token' }, error);
         }
-        throw new errors_utils_1.UnauthorizedError({ reason: 'Failed to verify token' }, error);
+        throw new errors_1.UnauthorizedError({ reason: 'Failed to verify token' }, error);
     }
 };
 exports.verifyTokenWithOptions = verifyTokenWithOptions;
@@ -50,13 +50,13 @@ const safeVerifyToken = (token, secret) => {
     catch (error) {
         let wrappedError;
         if (error.name === 'TokenExpiredError') {
-            wrappedError = new errors_utils_1.UnauthorizedError({ reason: 'Token has expired' }, error);
+            wrappedError = new errors_1.UnauthorizedError({ reason: 'Token has expired' }, error);
         }
         else if (error.name === 'JsonWebTokenError') {
-            wrappedError = new errors_utils_1.UnauthorizedError({ reason: 'Invalid token' }, error);
+            wrappedError = new errors_1.UnauthorizedError({ reason: 'Invalid token' }, error);
         }
         else {
-            wrappedError = new errors_utils_1.UnauthorizedError({ reason: 'Failed to verify token' }, error);
+            wrappedError = new errors_1.UnauthorizedError({ reason: 'Failed to verify token' }, error);
         }
         return { valid: false, error: wrappedError };
     }
@@ -73,15 +73,15 @@ const safeVerifyTokenWithOptions = (token, secret, options = {}) => {
     catch (error) {
         let wrappedError;
         if (error.name === 'TokenExpiredError') {
-            wrappedError = new errors_utils_1.UnauthorizedError({ reason: 'Token has expired' }, error instanceof Error ? error : undefined);
+            wrappedError = new errors_1.UnauthorizedError({ reason: 'Token has expired' }, error instanceof Error ? error : undefined);
         }
         else if (error.name === 'JsonWebTokenError') {
-            wrappedError = new errors_utils_1.UnauthorizedError({
+            wrappedError = new errors_1.UnauthorizedError({
                 reason: 'Invalid token',
             }, error instanceof Error ? error : undefined);
         }
         else {
-            wrappedError = new errors_utils_1.UnauthorizedError({ reason: 'Failed to verify token' }, error instanceof Error ? error : undefined);
+            wrappedError = new errors_1.UnauthorizedError({ reason: 'Failed to verify token' }, error instanceof Error ? error : undefined);
         }
         return { valid: false, error: wrappedError };
     }