@nauth-toolkit/core 0.1.0

package/dist/services/trusted-device.service.d.ts

@@ -0,0 +1,29 @@
+import { Repository } from 'typeorm';
+import { NAuthConfig } from '../interfaces/config.interface';
+import { NAuthLogger } from '../utils/nauth-logger';
+import { BaseTrustedDevice } from '../entities/trusted-device.entity';
+export declare class TrustedDeviceService {
+    private readonly config;
+    private readonly logger;
+    private readonly trustedDeviceRepository?;
+    constructor(config: NAuthConfig, logger: NAuthLogger, trustedDeviceRepository?: Repository<BaseTrustedDevice> | undefined);
+    createTrustedDevice(userId: number, deviceName?: string | null, deviceType?: string | null, ipAddress?: string | null, userAgent?: string | null, platform?: string | null, browser?: string | null): Promise<string>;
+    isDeviceTrusted(deviceToken: string | null | undefined, userId: number): Promise<boolean>;
+    validateDeviceToken(deviceToken: string | null | undefined, userId: number): Promise<{
+        isValid: boolean;
+        isSuspicious: boolean;
+    }>;
+    revokeTrustedDevice(deviceToken: string, userId: number): Promise<void>;
+    getUserTrustedDevices(userId: number): Promise<Omit<BaseTrustedDevice, 'deviceTokenHash'>[]>;
+    revokeAllTrustedDevices(userId: number): Promise<{
+        revokedCount: number;
+        devices: Array<{
+            id: number | string;
+            deviceName: string | null;
+            lastUsedAt: Date | null;
+            trustedUntil: Date | null;
+        }>;
+    }>;
+    private hashDeviceToken;
+}
+//# sourceMappingURL=trusted-device.service.d.ts.map

package/dist/services/trusted-device.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"trusted-device.service.d.ts","sourceRoot":"","sources":["../../src/services/trusted-device.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAC7D,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAEpD,OAAO,EAAE,iBAAiB,EAAE,MAAM,mCAAmC,CAAC;AAmCtE,qBAAa,oBAAoB;IAE7B,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,OAAO,CAAC,QAAQ,CAAC,uBAAuB,CAAC;gBAFxB,MAAM,EAAE,WAAW,EACnB,MAAM,EAAE,WAAW,EACnB,uBAAuB,CAAC,EAAE,UAAU,CAAC,iBAAiB,CAAC,YAAA;IAoBpE,mBAAmB,CACvB,MAAM,EAAE,MAAM,EACd,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,EAC1B,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,EAC1B,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,EACzB,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,EACzB,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,EACxB,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,GACtB,OAAO,CAAC,MAAM,CAAC;IAqFZ,eAAe,CAAC,WAAW,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IA2DzF,mBAAmB,CACvB,WAAW,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,EACtC,MAAM,EAAE,MAAM,GACb,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,YAAY,EAAE,OAAO,CAAA;KAAE,CAAC;IAwBjD,mBAAmB,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAsBvE,qBAAqB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,iBAAiB,EAAE,iBAAiB,CAAC,EAAE,CAAC;IA8B5F,uBAAuB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC;QACrD,YAAY,EAAE,MAAM,CAAC;QACrB,OAAO,EAAE,KAAK,CAAC;YACb,EAAE,EAAE,MAAM,GAAG,MAAM,CAAC;YACpB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;YAC1B,UAAU,EAAE,IAAI,GAAG,IAAI,CAAC;YACxB,YAAY,EAAE,IAAI,GAAG,IAAI,CAAC;SAC3B,CAAC,CAAC;KACJ,CAAC;IAiCF,OAAO,CAAC,eAAe;CAGxB"}

package/dist/services/trusted-device.service.js

@@ -0,0 +1,190 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.TrustedDeviceService = void 0;
+const crypto_1 = require("crypto");
+class TrustedDeviceService {
+    config;
+    logger;
+    trustedDeviceRepository;
+    constructor(config, logger, trustedDeviceRepository) {
+        this.config = config;
+        this.logger = logger;
+        this.trustedDeviceRepository = trustedDeviceRepository;
+    }
+    async createTrustedDevice(userId, deviceName, deviceType, ipAddress, userAgent, platform, browser) {
+        if (!this.config.mfa?.rememberDevices || this.config.mfa.rememberDevices === 'never') {
+            throw new Error('rememberDevices is not enabled in configuration');
+        }
+        if (!this.trustedDeviceRepository) {
+            this.logger?.warn?.('TrustedDeviceRepository not available - trusted device feature disabled');
+            throw new Error('TrustedDeviceRepository not available');
+        }
+        const crypto = await Promise.resolve().then(() => __importStar(require('crypto')));
+        const deviceToken = crypto.randomUUID();
+        const deviceTokenHash = this.hashDeviceToken(deviceToken);
+        const rememberDeviceDays = this.config.mfa.rememberDeviceDays || 30;
+        const trustedUntil = new Date();
+        trustedUntil.setDate(trustedUntil.getDate() + rememberDeviceDays);
+        const existing = await this.trustedDeviceRepository.findOne({
+            where: {
+                userId,
+                deviceTokenHash,
+            },
+        });
+        if (existing) {
+            await this.trustedDeviceRepository.update({ userId, deviceTokenHash }, {
+                trustedUntil,
+                lastUsedAt: new Date(),
+                deviceName: deviceName || null,
+                deviceType: deviceType || null,
+                ipAddress: ipAddress || null,
+                userAgent: userAgent || null,
+                platform: platform || null,
+                browser: browser || null,
+            });
+            this.logger?.debug?.(`Updated trusted device for user ${userId}`);
+            return deviceToken;
+        }
+        const trustedDevice = this.trustedDeviceRepository.create({
+            userId,
+            deviceTokenHash,
+            deviceId: null,
+            deviceName: deviceName || null,
+            deviceType: deviceType || null,
+            ipAddress: ipAddress || null,
+            userAgent: userAgent || null,
+            platform: platform || null,
+            browser: browser || null,
+            trustedUntil,
+            lastUsedAt: new Date(),
+        });
+        await this.trustedDeviceRepository.save(trustedDevice);
+        this.logger?.debug?.(`Created trusted device for user ${userId}, expires ${trustedUntil.toISOString()}`);
+        return deviceToken;
+    }
+    async isDeviceTrusted(deviceToken, userId) {
+        if (!deviceToken || !this.trustedDeviceRepository) {
+            return false;
+        }
+        if (!this.config.mfa?.rememberDevices || this.config.mfa.rememberDevices === 'never') {
+            return false;
+        }
+        const deviceTokenHash = this.hashDeviceToken(deviceToken);
+        const trustedDevice = await this.trustedDeviceRepository.findOne({
+            where: {
+                userId,
+                deviceTokenHash,
+            },
+        });
+        if (!trustedDevice) {
+            return false;
+        }
+        const trustedUntil = trustedDevice.trustedUntil;
+        if (new Date() > new Date(trustedUntil)) {
+            await this.trustedDeviceRepository.delete({
+                userId,
+                deviceTokenHash,
+            });
+            this.logger?.debug?.(`Trusted device expired for user ${userId}`);
+            return false;
+        }
+        const lastUsedAt = trustedDevice.lastUsedAt;
+        const now = new Date();
+        const fifteenMinutesMs = 15 * 60 * 1000;
+        if (!lastUsedAt || now.getTime() - new Date(lastUsedAt).getTime() > fifteenMinutesMs) {
+            await this.trustedDeviceRepository.update({ userId, deviceTokenHash }, { lastUsedAt: now });
+        }
+        return true;
+    }
+    async validateDeviceToken(deviceToken, userId) {
+        if (!deviceToken) {
+            return { isValid: false, isSuspicious: false };
+        }
+        const isTrusted = await this.isDeviceTrusted(deviceToken, userId);
+        const isSuspicious = !isTrusted && deviceToken !== null && deviceToken !== undefined;
+        return { isValid: isTrusted, isSuspicious };
+    }
+    async revokeTrustedDevice(deviceToken, userId) {
+        if (!this.trustedDeviceRepository) {
+            return;
+        }
+        const deviceTokenHash = this.hashDeviceToken(deviceToken);
+        await this.trustedDeviceRepository.delete({
+            userId,
+            deviceTokenHash,
+        });
+        this.logger?.debug?.(`Revoked trusted device for user ${userId}`);
+    }
+    async getUserTrustedDevices(userId) {
+        if (!this.trustedDeviceRepository) {
+            return [];
+        }
+        const devices = await this.trustedDeviceRepository.find({
+            where: { userId },
+            order: { lastUsedAt: 'DESC' },
+        });
+        const now = new Date();
+        const validDevices = devices.filter((d) => new Date(d.trustedUntil) > now);
+        return validDevices.map((d) => {
+            const { deviceTokenHash, ...rest } = d;
+            return rest;
+        });
+    }
+    async revokeAllTrustedDevices(userId) {
+        if (!this.trustedDeviceRepository) {
+            return { revokedCount: 0, devices: [] };
+        }
+        const devices = await this.trustedDeviceRepository.find({
+            where: { userId },
+            order: { lastUsedAt: 'DESC' },
+        });
+        const deviceInfo = devices.map((d) => ({
+            id: d.id,
+            deviceName: d.deviceName ?? null,
+            lastUsedAt: d.lastUsedAt ?? null,
+            trustedUntil: d.trustedUntil ?? null,
+        }));
+        const result = await this.trustedDeviceRepository.delete({ userId });
+        const deletedCount = typeof result.affected === 'number' ? result.affected : 0;
+        this.logger?.debug?.(`Revoked ${deletedCount} trusted device(s) for user ${userId}`);
+        return { revokedCount: deletedCount, devices: deviceInfo };
+    }
+    hashDeviceToken(token) {
+        return (0, crypto_1.createHash)('sha256').update(token).digest('hex');
+    }
+}
+exports.TrustedDeviceService = TrustedDeviceService;
+//# sourceMappingURL=trusted-device.service.js.map

package/dist/services/trusted-device.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"trusted-device.service.js","sourceRoot":"","sources":["../../src/services/trusted-device.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAGA,mCAAoC;AAoCpC,MAAa,oBAAoB;IAEZ;IACA;IACA;IAHnB,YACmB,MAAmB,EACnB,MAAmB,EACnB,uBAAuD;QAFvD,WAAM,GAAN,MAAM,CAAa;QACnB,WAAM,GAAN,MAAM,CAAa;QACnB,4BAAuB,GAAvB,uBAAuB,CAAgC;IACvE,CAAC;IAmBJ,KAAK,CAAC,mBAAmB,CACvB,MAAc,EACd,UAA0B,EAC1B,UAA0B,EAC1B,SAAyB,EACzB,SAAyB,EACzB,QAAwB,EACxB,OAAuB;QAEvB,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,eAAe,IAAI,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,eAAe,KAAK,OAAO,EAAE,CAAC;YACrF,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;QACrE,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,uBAAuB,EAAE,CAAC;YAClC,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,yEAAyE,CAAC,CAAC;YAC/F,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;QAC3D,CAAC;QAGD,MAAM,MAAM,GAAG,wDAAa,QAAQ,GAAC,CAAC;QACtC,MAAM,WAAW,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QAGxC,MAAM,eAAe,GAAG,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,CAAC;QAI1D,MAAM,kBAAkB,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,kBAAkB,IAAI,EAAE,CAAC;QACpE,MAAM,YAAY,GAAG,IAAI,IAAI,EAAE,CAAC;QAChC,YAAY,CAAC,OAAO,CAAC,YAAY,CAAC,OAAO,EAAE,GAAG,kBAAkB,CAAC,CAAC;QAGlE,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,OAAO,CAAC;YAC1D,KAAK,EAAE;gBACL,MAAM;gBACN,eAAe;aAChB;SACF,CAAC,CAAC;QAEH,IAAI,QAAQ,EAAE,CAAC;YAEb,MAAM,IAAI,CAAC,uBAAuB,CAAC,MAAM,CACvC,EAAE,MAAM,EAAE,eAAe,EAAE,EAC3B;gBACE,YAAY;gBACZ,UAAU,EAAE,IAAI,IAAI,EAAE;gBACtB,UAAU,EAAE,UAAU,IAAI,IAAI;gBAC9B,UAAU,EAAE,UAAU,IAAI,IAAI;gBAC9B,SAAS,EAAE,SAAS,IAAI,IAAI;gBAC5B,SAAS,EAAE,SAAS,IAAI,IAAI;gBAC5B,QAAQ,EAAE,QAAQ,IAAI,IAAI;gBAC1B,OAAO,EAAE,OAAO,IAAI,IAAI;aACzB,CACF,CAAC;YACF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,mCAAmC,MAAM,EAAE,CAAC,CAAC;YAClE,OAAO,WAAW,CAAC;QACrB,CAAC;QAGD,MAAM,aAAa,GAAG,IAAI,CAAC,uBAAuB,CAAC,MAAM,CAAC;YACxD,MAAM;YACN,eAAe;YACf,QAAQ,EAAE,IAAI;YACd,UAAU,EAAE,UAAU,IAAI,IAAI;YAC9B,UAAU,EAAE,UAAU,IAAI,IAAI;YAC9B,SAAS,EAAE,SAAS,IAAI,IAAI;YAC5B,SAAS,EAAE,SAAS,IAAI,IAAI;YAC5B,QAAQ,EAAE,QAAQ,IAAI,IAAI;YAC1B,OAAO,EAAE,OAAO,IAAI,IAAI;YACxB,YAAY;YACZ,UAAU,EAAE,IAAI,IAAI,EAAE;SACvB,CAAC,CAAC;QAEH,MAAM,IAAI,CAAC,uBAAuB,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QACvD,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,mCAAmC,MAAM,aAAa,YAAY,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;QAEzG,OAAO,WAAW,CAAC;IACrB,CAAC;IAgBD,KAAK,CAAC,eAAe,CAAC,WAAsC,EAAE,MAAc;QAC1E,IAAI,CAAC,WAAW,IAAI,CAAC,IAAI,CAAC,uBAAuB,EAAE,CAAC;YAClD,OAAO,KAAK,CAAC;QACf,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,eAAe,IAAI,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,eAAe,KAAK,OAAO,EAAE,CAAC;YACrF,OAAO,KAAK,CAAC;QACf,CAAC;QAGD,MAAM,eAAe,GAAG,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,CAAC;QAG1D,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,OAAO,CAAC;YAC/D,KAAK,EAAE;gBACL,MAAM;gBACN,eAAe;aAChB;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,aAAa,EAAE,CAAC;YAGnB,OAAO,KAAK,CAAC;QACf,CAAC;QAGD,MAAM,YAAY,GAAG,aAAa,CAAC,YAAY,CAAC;QAChD,IAAI,IAAI,IAAI,EAAE,GAAG,IAAI,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;YAExC,MAAM,IAAI,CAAC,uBAAuB,CAAC,MAAM,CAAC;gBACxC,MAAM;gBACN,eAAe;aAChB,CAAC,CAAC;YACH,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,mCAAmC,MAAM,EAAE,CAAC,CAAC;YAClE,OAAO,KAAK,CAAC;QACf,CAAC;QAGD,MAAM,UAAU,GAAG,aAAa,CAAC,UAAU,CAAC;QAC5C,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,MAAM,gBAAgB,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;QACxC,IAAI,CAAC,UAAU,IAAI,GAAG,CAAC,OAAO,EAAE,GAAG,IAAI,IAAI,CAAC,UAAU,CAAC,CAAC,OAAO,EAAE,GAAG,gBAAgB,EAAE,CAAC;YACrF,MAAM,IAAI,CAAC,uBAAuB,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,eAAe,EAAE,EAAE,EAAE,UAAU,EAAE,GAAG,EAAE,CAAC,CAAC;QAC9F,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAYD,KAAK,CAAC,mBAAmB,CACvB,WAAsC,EACtC,MAAc;QAGd,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,YAAY,EAAE,KAAK,EAAE,CAAC;QACjD,CAAC;QAGD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;QAGlE,MAAM,YAAY,GAAG,CAAC,SAAS,IAAI,WAAW,KAAK,IAAI,IAAI,WAAW,KAAK,SAAS,CAAC;QAErF,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,YAAY,EAAE,CAAC;IAC9C,CAAC;IAWD,KAAK,CAAC,mBAAmB,CAAC,WAAmB,EAAE,MAAc;QAC3D,IAAI,CAAC,IAAI,CAAC,uBAAuB,EAAE,CAAC;YAClC,OAAO;QACT,CAAC;QAED,MAAM,eAAe,GAAG,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,CAAC;QAC1D,MAAM,IAAI,CAAC,uBAAuB,CAAC,MAAM,CAAC;YACxC,MAAM;YACN,eAAe;SAChB,CAAC,CAAC;QAEH,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,mCAAmC,MAAM,EAAE,CAAC,CAAC;IACpE,CAAC;IAUD,KAAK,CAAC,qBAAqB,CAAC,MAAc;QACxC,IAAI,CAAC,IAAI,CAAC,uBAAuB,EAAE,CAAC;YAClC,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,IAAI,CAAC;YACtD,KAAK,EAAE,EAAE,MAAM,EAAE;YACjB,KAAK,EAAE,EAAE,UAAU,EAAE,MAAM,EAAE;SAC9B,CAAC,CAAC;QAGH,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,MAAM,YAAY,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC,YAAY,CAAC,GAAG,GAAG,CAAC,CAAC;QAG3E,OAAO,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;YAC5B,MAAM,EAAE,eAAe,EAAE,GAAG,IAAI,EAAE,GAAG,CAAC,CAAC;YACvC,OAAO,IAAI,CAAC;QACd,CAAC,CAAC,CAAC;IACL,CAAC;IAWD,KAAK,CAAC,uBAAuB,CAAC,MAAc;QAS1C,IAAI,CAAC,IAAI,CAAC,uBAAuB,EAAE,CAAC;YAClC,OAAO,EAAE,YAAY,EAAE,CAAC,EAAE,OAAO,EAAE,EAAE,EAAE,CAAC;QAC1C,CAAC;QAGD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,IAAI,CAAC;YACtD,KAAK,EAAE,EAAE,MAAM,EAAE;YACjB,KAAK,EAAE,EAAE,UAAU,EAAE,MAAM,EAAE;SAC9B,CAAC,CAAC;QAKH,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACrC,EAAE,EAAE,CAAC,CAAC,EAAE;YACR,UAAU,EAAE,CAAC,CAAC,UAAU,IAAI,IAAI;YAChC,UAAU,EAAE,CAAC,CAAC,UAAU,IAAI,IAAI;YAChC,YAAY,EAAE,CAAC,CAAC,YAAY,IAAI,IAAI;SACrC,CAAC,CAAC,CAAC;QAGJ,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;QACrE,MAAM,YAAY,GAAG,OAAO,MAAM,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;QAC/E,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,WAAW,YAAY,+BAA+B,MAAM,EAAE,CAAC,CAAC;QACrF,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,OAAO,EAAE,UAAU,EAAE,CAAC;IAC7D,CAAC;IAOO,eAAe,CAAC,KAAa;QACnC,OAAO,IAAA,mBAAU,EAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAC1D,CAAC;CACF;AA3SD,oDA2SC"}

package/dist/storage/account-lockout-storage.service.d.ts

@@ -0,0 +1,16 @@
+import { AccountLockoutStorage, StorageAdapter } from '../interfaces/storage-adapter.interface';
+export declare class AccountLockoutStorageService implements AccountLockoutStorage {
+    private readonly storageAdapter;
+    private readonly keyPrefix;
+    private readonly lockKeyPrefix;
+    constructor(storageAdapter: StorageAdapter);
+    recordFailedAttempt(ipAddress: string): Promise<number>;
+    getFailedAttempts(ipAddress: string): Promise<number>;
+    isAccountLocked(ipAddress: string): Promise<boolean>;
+    blockIpAdresss(ipAddress: string, duration: number, reason: string): Promise<void>;
+    unblockIPAdress(ipAddress: string): Promise<void>;
+    resetFailedAttempts(ipAddress: string): Promise<void>;
+    private getKey;
+    private getLockKey;
+}
+//# sourceMappingURL=account-lockout-storage.service.d.ts.map

package/dist/storage/account-lockout-storage.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"account-lockout-storage.service.d.ts","sourceRoot":"","sources":["../../src/storage/account-lockout-storage.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,qBAAqB,EAAE,cAAc,EAAE,MAAM,yCAAyC,CAAC;AAQhG,qBAAa,4BAA6B,YAAW,qBAAqB;IAI5D,OAAO,CAAC,QAAQ,CAAC,cAAc;IAH3C,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAuB;IACjD,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAsB;gBAEvB,cAAc,EAAE,cAAc;IAOrD,mBAAmB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAUvD,iBAAiB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAWrD,eAAe,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAWpD,cAAc,CAAC,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAelF,eAAe,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAUjD,mBAAmB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAK3D,OAAO,CAAC,MAAM;IAId,OAAO,CAAC,UAAU;CAGnB"}

package/dist/storage/account-lockout-storage.service.js

@@ -0,0 +1,50 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AccountLockoutStorageService = void 0;
+class AccountLockoutStorageService {
+    storageAdapter;
+    keyPrefix = 'nauth:lockout:ip:';
+    lockKeyPrefix = 'nauth:locked:ip:';
+    constructor(storageAdapter) {
+        this.storageAdapter = storageAdapter;
+    }
+    async recordFailedAttempt(ipAddress) {
+        const key = this.getKey(ipAddress);
+        return await this.storageAdapter.incr(key);
+    }
+    async getFailedAttempts(ipAddress) {
+        const key = this.getKey(ipAddress);
+        const value = await this.storageAdapter.get(key);
+        return value ? parseInt(value, 10) : 0;
+    }
+    async isAccountLocked(ipAddress) {
+        const lockKey = this.getLockKey(ipAddress);
+        return await this.storageAdapter.exists(lockKey);
+    }
+    async blockIpAdresss(ipAddress, duration, reason) {
+        const lockKey = this.getLockKey(ipAddress);
+        const lockData = JSON.stringify({
+            reason,
+            lockedAt: new Date().toISOString(),
+            lockedUntil: new Date(Date.now() + duration * 1000).toISOString(),
+        });
+        await this.storageAdapter.set(lockKey, lockData, duration);
+    }
+    async unblockIPAdress(ipAddress) {
+        const lockKey = this.getLockKey(ipAddress);
+        await this.storageAdapter.del(lockKey);
+        await this.resetFailedAttempts(ipAddress);
+    }
+    async resetFailedAttempts(ipAddress) {
+        const key = this.getKey(ipAddress);
+        await this.storageAdapter.del(key);
+    }
+    getKey(ipAddress) {
+        return `${this.keyPrefix}${ipAddress}`;
+    }
+    getLockKey(ipAddress) {
+        return `${this.lockKeyPrefix}${ipAddress}`;
+    }
+}
+exports.AccountLockoutStorageService = AccountLockoutStorageService;
+//# sourceMappingURL=account-lockout-storage.service.js.map

package/dist/storage/account-lockout-storage.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"account-lockout-storage.service.js","sourceRoot":"","sources":["../../src/storage/account-lockout-storage.service.ts"],"names":[],"mappings":";;;AAQA,MAAa,4BAA4B;IAIV;IAHZ,SAAS,GAAG,mBAAmB,CAAC;IAChC,aAAa,GAAG,kBAAkB,CAAC;IAEpD,YAA6B,cAA8B;QAA9B,mBAAc,GAAd,cAAc,CAAgB;IAAG,CAAC;IAO/D,KAAK,CAAC,mBAAmB,CAAC,SAAiB;QACzC,MAAM,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QACnC,OAAO,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC7C,CAAC;IAOD,KAAK,CAAC,iBAAiB,CAAC,SAAiB;QACvC,MAAM,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QACnC,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACjD,OAAO,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACzC,CAAC;IAOD,KAAK,CAAC,eAAe,CAAC,SAAiB;QACrC,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;QAC3C,OAAO,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IACnD,CAAC;IAQD,KAAK,CAAC,cAAc,CAAC,SAAiB,EAAE,QAAgB,EAAE,MAAc;QACtE,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;QAC3C,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC;YAC9B,MAAM;YACN,QAAQ,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YAClC,WAAW,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,QAAQ,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE;SAClE,CAAC,CAAC;QAEH,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,OAAO,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC;IAC7D,CAAC;IAMD,KAAK,CAAC,eAAe,CAAC,SAAiB;QACrC,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;QAC3C,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QACvC,MAAM,IAAI,CAAC,mBAAmB,CAAC,SAAS,CAAC,CAAC;IAC5C,CAAC;IAMD,KAAK,CAAC,mBAAmB,CAAC,SAAiB;QACzC,MAAM,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QACnC,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IACrC,CAAC;IAEO,MAAM,CAAC,SAAiB;QAC9B,OAAO,GAAG,IAAI,CAAC,SAAS,GAAG,SAAS,EAAE,CAAC;IACzC,CAAC;IAEO,UAAU,CAAC,SAAiB;QAClC,OAAO,GAAG,IAAI,CAAC,aAAa,GAAG,SAAS,EAAE,CAAC;IAC7C,CAAC;CACF;AAhFD,oEAgFC"}

package/dist/storage/index.d.ts

@@ -0,0 +1,4 @@
+export * from './memory-storage.adapter';
+export * from './rate-limit-storage.service';
+export * from './account-lockout-storage.service';
+//# sourceMappingURL=index.d.ts.map

package/dist/storage/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/storage/index.ts"],"names":[],"mappings":"AAAA,cAAc,0BAA0B,CAAC;AACzC,cAAc,8BAA8B,CAAC;AAC7C,cAAc,mCAAmC,CAAC"}

package/dist/storage/index.js

@@ -0,0 +1,20 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./memory-storage.adapter"), exports);
+__exportStar(require("./rate-limit-storage.service"), exports);
+__exportStar(require("./account-lockout-storage.service"), exports);
+//# sourceMappingURL=index.js.map

package/dist/storage/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/storage/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2DAAyC;AACzC,+DAA6C;AAC7C,oEAAkD"}

package/dist/storage/memory-storage.adapter.d.ts

@@ -0,0 +1,33 @@
+import { StorageAdapter } from '../interfaces/storage-adapter.interface';
+export declare class MemoryStorageAdapter implements StorageAdapter {
+    private store;
+    private hashes;
+    private lists;
+    private cleanupInterval;
+    initialize(): Promise<void>;
+    isHealthy(): Promise<boolean>;
+    get(key: string): Promise<string | null>;
+    set(key: string, value: string, ttlSeconds?: number, options?: {
+        nx?: boolean;
+    }): Promise<string | null>;
+    del(key: string): Promise<void>;
+    exists(key: string): Promise<boolean>;
+    incr(key: string, ttlSeconds?: number): Promise<number>;
+    decr(key: string): Promise<number>;
+    expire(key: string, ttl: number): Promise<void>;
+    ttl(key: string): Promise<number>;
+    hget(key: string, field: string): Promise<string | null>;
+    hset(key: string, field: string, value: string): Promise<void>;
+    hgetall(key: string): Promise<Record<string, string>>;
+    hdel(key: string, ...fields: string[]): Promise<number>;
+    lpush(key: string, value: string): Promise<void>;
+    lrange(key: string, start: number, stop: number): Promise<string[]>;
+    llen(key: string): Promise<number>;
+    keys(pattern: string): Promise<string[]>;
+    scan(cursor: number, pattern: string, count: number): Promise<[number, string[]]>;
+    cleanup(): Promise<void>;
+    disconnect(): Promise<void>;
+    private cleanupExpired;
+    private patternToRegex;
+}
+//# sourceMappingURL=memory-storage.adapter.d.ts.map

package/dist/storage/memory-storage.adapter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"memory-storage.adapter.d.ts","sourceRoot":"","sources":["../../src/storage/memory-storage.adapter.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,yCAAyC,CAAC;AAmCzE,qBAAa,oBAAqB,YAAW,cAAc;IAEzD,OAAO,CAAC,KAAK,CAAuC;IAGpD,OAAO,CAAC,MAAM,CAA+C;IAG7D,OAAO,CAAC,KAAK,CAAoC;IAGjD,OAAO,CAAC,eAAe,CAA+B;IAMhD,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAW3B,SAAS,IAAI,OAAO,CAAC,OAAO,CAAC;IAe7B,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAsBxC,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAAE,EAAE,CAAC,EAAE,OAAO,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IA+BxG,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAS/B,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAkBrC,IAAI,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAwCvD,IAAI,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAYlC,MAAM,CAAC,GAAG,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAa/C,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAwBjC,IAAI,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAWxD,IAAI,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAc9D,OAAO,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAarD,IAAI,CAAC,GAAG,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IA4BvD,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAgBhD,MAAM,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAanE,IAAI,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAclC,IAAI,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAYxC,IAAI,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;IAgBjF,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAOxB,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAoBjC,OAAO,CAAC,cAAc;IAsBtB,OAAO,CAAC,cAAc;CASvB"}

package/dist/storage/memory-storage.adapter.js

@@ -0,0 +1,195 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MemoryStorageAdapter = void 0;
+class MemoryStorageAdapter {
+    store = new Map();
+    hashes = new Map();
+    lists = new Map();
+    cleanupInterval = null;
+    async initialize() {
+        this.cleanupInterval = setInterval(() => {
+            this.cleanupExpired();
+        }, 60000);
+    }
+    async isHealthy() {
+        return true;
+    }
+    async get(key) {
+        const stored = this.store.get(key);
+        if (!stored)
+            return null;
+        if (stored.expiresAt && stored.expiresAt < Date.now()) {
+            this.store.delete(key);
+            return null;
+        }
+        return stored.value;
+    }
+    async set(key, value, ttlSeconds, options) {
+        if (options?.nx) {
+            const existing = this.store.get(key);
+            if (existing) {
+                if (existing.expiresAt && existing.expiresAt < Date.now()) {
+                    this.store.delete(key);
+                }
+                else {
+                    return null;
+                }
+            }
+        }
+        const stored = { value };
+        if (ttlSeconds) {
+            stored.expiresAt = Date.now() + ttlSeconds * 1000;
+        }
+        this.store.set(key, stored);
+        return value;
+    }
+    async del(key) {
+        this.store.delete(key);
+    }
+    async exists(key) {
+        const value = await this.get(key);
+        return value !== null;
+    }
+    async incr(key, ttlSeconds) {
+        const stored = this.store.get(key);
+        let currentValue = '0';
+        let existingExpiry;
+        const wasNewKey = !stored || (stored.expiresAt && stored.expiresAt < Date.now());
+        if (stored) {
+            if (stored.expiresAt && stored.expiresAt < Date.now()) {
+                this.store.delete(key);
+            }
+            else {
+                currentValue = stored.value;
+                existingExpiry = stored.expiresAt;
+            }
+        }
+        const newValue = (parseInt(currentValue || '0', 10) + 1).toString();
+        const newStored = { value: newValue };
+        if (wasNewKey && ttlSeconds !== undefined) {
+            newStored.expiresAt = Date.now() + ttlSeconds * 1000;
+        }
+        else if (existingExpiry) {
+            newStored.expiresAt = existingExpiry;
+        }
+        this.store.set(key, newStored);
+        return parseInt(newValue, 10);
+    }
+    async decr(key) {
+        const current = await this.get(key);
+        const newValue = (parseInt(current || '0', 10) - 1).toString();
+        await this.set(key, newValue);
+        return parseInt(newValue, 10);
+    }
+    async expire(key, ttl) {
+        const stored = this.store.get(key);
+        if (stored) {
+            stored.expiresAt = Date.now() + ttl * 1000;
+            this.store.set(key, stored);
+        }
+    }
+    async ttl(key) {
+        const stored = this.store.get(key);
+        if (!stored)
+            return -2;
+        if (!stored.expiresAt)
+            return -1;
+        const remaining = Math.floor((stored.expiresAt - Date.now()) / 1000);
+        return remaining > 0 ? remaining : -2;
+    }
+    async hget(key, field) {
+        const hash = this.hashes.get(key);
+        return hash?.get(field) ?? null;
+    }
+    async hset(key, field, value) {
+        let hash = this.hashes.get(key);
+        if (!hash) {
+            hash = new Map();
+            this.hashes.set(key, hash);
+        }
+        hash.set(field, value);
+    }
+    async hgetall(key) {
+        const hash = this.hashes.get(key);
+        if (!hash)
+            return {};
+        return Object.fromEntries(hash.entries());
+    }
+    async hdel(key, ...fields) {
+        const hash = this.hashes.get(key);
+        if (!hash)
+            return 0;
+        let deleted = 0;
+        for (const field of fields) {
+            if (hash.delete(field)) {
+                deleted++;
+            }
+        }
+        if (hash.size === 0) {
+            this.hashes.delete(key);
+        }
+        return deleted;
+    }
+    async lpush(key, value) {
+        let list = this.lists.get(key);
+        if (!list) {
+            list = [];
+            this.lists.set(key, list);
+        }
+        list.unshift(value);
+    }
+    async lrange(key, start, stop) {
+        const list = this.lists.get(key);
+        if (!list)
+            return [];
+        const end = stop === -1 ? list.length : stop + 1;
+        return list.slice(start, end);
+    }
+    async llen(key) {
+        const list = this.lists.get(key);
+        return list?.length ?? 0;
+    }
+    async keys(pattern) {
+        const regex = this.patternToRegex(pattern);
+        return Array.from(this.store.keys()).filter((key) => regex.test(key));
+    }
+    async scan(cursor, pattern, count) {
+        const allKeys = await this.keys(pattern);
+        const start = cursor;
+        const end = Math.min(cursor + count, allKeys.length);
+        const keys = allKeys.slice(start, end);
+        const newCursor = end >= allKeys.length ? 0 : end;
+        return [newCursor, keys];
+    }
+    async cleanup() {
+        this.cleanupExpired();
+    }
+    async disconnect() {
+        if (this.cleanupInterval) {
+            clearInterval(this.cleanupInterval);
+            this.cleanupInterval = null;
+        }
+        this.store.clear();
+        this.hashes.clear();
+        this.lists.clear();
+    }
+    cleanupExpired() {
+        const now = Date.now();
+        const keysToDelete = [];
+        for (const [key, stored] of this.store.entries()) {
+            if (stored.expiresAt && stored.expiresAt < now) {
+                keysToDelete.push(key);
+            }
+        }
+        for (const key of keysToDelete) {
+            this.store.delete(key);
+        }
+    }
+    patternToRegex(pattern) {
+        const escaped = pattern.replace(/[.+^${}()|[\]\\]/g, '\\$&');
+        const regex = escaped.replace(/\*/g, '.*').replace(/\?/g, '.');
+        return new RegExp(`^${regex}$`);
+    }
+}
+exports.MemoryStorageAdapter = MemoryStorageAdapter;
+//# sourceMappingURL=memory-storage.adapter.js.map

package/dist/storage/memory-storage.adapter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"memory-storage.adapter.js","sourceRoot":"","sources":["../../src/storage/memory-storage.adapter.ts"],"names":[],"mappings":";;;AAmCA,MAAa,oBAAoB;IAEvB,KAAK,GAA6B,IAAI,GAAG,EAAE,CAAC;IAG5C,MAAM,GAAqC,IAAI,GAAG,EAAE,CAAC;IAGrD,KAAK,GAA0B,IAAI,GAAG,EAAE,CAAC;IAGzC,eAAe,GAA0B,IAAI,CAAC;IAMtD,KAAK,CAAC,UAAU;QAEd,IAAI,CAAC,eAAe,GAAG,WAAW,CAAC,GAAG,EAAE;YACtC,IAAI,CAAC,cAAc,EAAE,CAAC;QACxB,CAAC,EAAE,KAAK,CAAC,CAAC;IACZ,CAAC;IAMD,KAAK,CAAC,SAAS;QACb,OAAO,IAAI,CAAC;IACd,CAAC;IAaD,KAAK,CAAC,GAAG,CAAC,GAAW;QACnB,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAGnC,IAAI,CAAC,MAAM;YAAE,OAAO,IAAI,CAAC;QAGzB,IAAI,MAAM,CAAC,SAAS,IAAI,MAAM,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;YACtD,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACvB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,MAAM,CAAC,KAAK,CAAC;IACtB,CAAC;IASD,KAAK,CAAC,GAAG,CAAC,GAAW,EAAE,KAAa,EAAE,UAAmB,EAAE,OAA0B;QAEnF,IAAI,OAAO,EAAE,EAAE,EAAE,CAAC;YAChB,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACrC,IAAI,QAAQ,EAAE,CAAC;gBAEb,IAAI,QAAQ,CAAC,SAAS,IAAI,QAAQ,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;oBAE1D,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;gBACzB,CAAC;qBAAM,CAAC;oBAEN,OAAO,IAAI,CAAC;gBACd,CAAC;YACH,CAAC;QACH,CAAC;QAED,MAAM,MAAM,GAAgB,EAAE,KAAK,EAAE,CAAC;QAGtC,IAAI,UAAU,EAAE,CAAC;YACf,MAAM,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,UAAU,GAAG,IAAI,CAAC;QACpD,CAAC;QAED,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;QAC5B,OAAO,KAAK,CAAC;IACf,CAAC;IAMD,KAAK,CAAC,GAAG,CAAC,GAAW;QACnB,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACzB,CAAC;IAOD,KAAK,CAAC,MAAM,CAAC,GAAW;QACtB,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAClC,OAAO,KAAK,KAAK,IAAI,CAAC;IACxB,CAAC;IAeD,KAAK,CAAC,IAAI,CAAC,GAAW,EAAE,UAAmB;QACzC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAGnC,IAAI,YAAY,GAAG,GAAG,CAAC;QACvB,IAAI,cAAkC,CAAC;QACvC,MAAM,SAAS,GAAG,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,SAAS,IAAI,MAAM,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;QAEjF,IAAI,MAAM,EAAE,CAAC;YACX,IAAI,MAAM,CAAC,SAAS,IAAI,MAAM,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;gBAEtD,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACzB,CAAC;iBAAM,CAAC;gBAEN,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC;gBAC5B,cAAc,GAAG,MAAM,CAAC,SAAS,CAAC;YACpC,CAAC;QACH,CAAC;QAED,MAAM,QAAQ,GAAG,CAAC,QAAQ,CAAC,YAAY,IAAI,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC;QACpE,MAAM,SAAS,GAAgB,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC;QAGnD,IAAI,SAAS,IAAI,UAAU,KAAK,SAAS,EAAE,CAAC;YAC1C,SAAS,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,UAAU,GAAG,IAAI,CAAC;QACvD,CAAC;aAAM,IAAI,cAAc,EAAE,CAAC;YAC1B,SAAS,CAAC,SAAS,GAAG,cAAc,CAAC;QACvC,CAAC;QAED,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;QAC/B,OAAO,QAAQ,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;IAChC,CAAC;IASD,KAAK,CAAC,IAAI,CAAC,GAAW;QACpB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACpC,MAAM,QAAQ,GAAG,CAAC,QAAQ,CAAC,OAAO,IAAI,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC;QAC/D,MAAM,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;QAC9B,OAAO,QAAQ,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;IAChC,CAAC;IAOD,KAAK,CAAC,MAAM,CAAC,GAAW,EAAE,GAAW;QACnC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACnC,IAAI,MAAM,EAAE,CAAC;YACX,MAAM,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,GAAG,GAAG,IAAI,CAAC;YAC3C,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;QAC9B,CAAC;IACH,CAAC;IAOD,KAAK,CAAC,GAAG,CAAC,GAAW;QACnB,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAGnC,IAAI,CAAC,MAAM;YAAE,OAAO,CAAC,CAAC,CAAC;QAGvB,IAAI,CAAC,MAAM,CAAC,SAAS;YAAE,OAAO,CAAC,CAAC,CAAC;QAGjC,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,GAAG,IAAI,CAAC,CAAC;QACrE,OAAO,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACxC,CAAC;IAYD,KAAK,CAAC,IAAI,CAAC,GAAW,EAAE,KAAa;QACnC,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAClC,OAAO,IAAI,EAAE,GAAG,CAAC,KAAK,CAAC,IAAI,IAAI,CAAC;IAClC,CAAC;IAQD,KAAK,CAAC,IAAI,CAAC,GAAW,EAAE,KAAa,EAAE,KAAa;QAClD,IAAI,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAChC,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,IAAI,GAAG,IAAI,GAAG,EAAE,CAAC;YACjB,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAC7B,CAAC;QACD,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;IACzB,CAAC;IAOD,KAAK,CAAC,OAAO,CAAC,GAAW;QACvB,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAClC,IAAI,CAAC,IAAI;YAAE,OAAO,EAAE,CAAC;QAErB,OAAO,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;IAC5C,CAAC;IAQD,KAAK,CAAC,IAAI,CAAC,GAAW,EAAE,GAAG,MAAgB;QACzC,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAClC,IAAI,CAAC,IAAI;YAAE,OAAO,CAAC,CAAC;QAEpB,IAAI,OAAO,GAAG,CAAC,CAAC;QAChB,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,IAAI,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;gBACvB,OAAO,EAAE,CAAC;YACZ,CAAC;QACH,CAAC;QAGD,IAAI,IAAI,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;YACpB,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC1B,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAWD,KAAK,CAAC,KAAK,CAAC,GAAW,EAAE,KAAa;QACpC,IAAI,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC/B,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,IAAI,GAAG,EAAE,CAAC;YACV,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAC5B,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;IACtB,CAAC;IASD,KAAK,CAAC,MAAM,CAAC,GAAW,EAAE,KAAa,EAAE,IAAY;QACnD,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACjC,IAAI,CAAC,IAAI;YAAE,OAAO,EAAE,CAAC;QAErB,MAAM,GAAG,GAAG,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC;QACjD,OAAO,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IAChC,CAAC;IAOD,KAAK,CAAC,IAAI,CAAC,GAAW;QACpB,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACjC,OAAO,IAAI,EAAE,MAAM,IAAI,CAAC,CAAC;IAC3B,CAAC;IAWD,KAAK,CAAC,IAAI,CAAC,OAAe;QACxB,MAAM,KAAK,GAAG,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QAC3C,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;IACxE,CAAC;IASD,KAAK,CAAC,IAAI,CAAC,MAAc,EAAE,OAAe,EAAE,KAAa;QACvD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACzC,MAAM,KAAK,GAAG,MAAM,CAAC;QACrB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,GAAG,KAAK,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC;QACrD,MAAM,IAAI,GAAG,OAAO,CAAC,KAAK,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;QACvC,MAAM,SAAS,GAAG,GAAG,IAAI,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC;QAClD,OAAO,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;IAC3B,CAAC;IASD,KAAK,CAAC,OAAO;QACX,IAAI,CAAC,cAAc,EAAE,CAAC;IACxB,CAAC;IAKD,KAAK,CAAC,UAAU;QAEd,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACzB,aAAa,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;YACpC,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC;QAC9B,CAAC;QAGD,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;QACnB,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;QACpB,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;IACrB,CAAC;IASO,cAAc;QACpB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,YAAY,GAAa,EAAE,CAAC;QAGlC,KAAK,MAAM,CAAC,GAAG,EAAE,MAAM,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC;YACjD,IAAI,MAAM,CAAC,SAAS,IAAI,MAAM,CAAC,SAAS,GAAG,GAAG,EAAE,CAAC;gBAC/C,YAAY,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACzB,CAAC;QACH,CAAC;QAGD,KAAK,MAAM,GAAG,IAAI,YAAY,EAAE,CAAC;YAC/B,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACzB,CAAC;IACH,CAAC;IAOO,cAAc,CAAC,OAAe;QAEpC,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,mBAAmB,EAAE,MAAM,CAAC,CAAC;QAG7D,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;QAE/D,OAAO,IAAI,MAAM,CAAC,IAAI,KAAK,GAAG,CAAC,CAAC;IAClC,CAAC;CACF;AAvZD,oDAuZC"}

package/dist/storage/rate-limit-storage.service.d.ts

@@ -0,0 +1,11 @@
+import { RateLimitStorage, StorageAdapter } from '../interfaces/storage-adapter.interface';
+export declare class RateLimitStorageService implements RateLimitStorage {
+    private readonly storageAdapter;
+    private readonly keyPrefix;
+    constructor(storageAdapter: StorageAdapter);
+    incrementRateLimit(identifier: string, endpoint: string, windowMs: number): Promise<number>;
+    getRateLimit(identifier: string, endpoint: string): Promise<number>;
+    resetRateLimit(identifier: string, endpoint: string): Promise<void>;
+    private getKey;
+}
+//# sourceMappingURL=rate-limit-storage.service.d.ts.map

package/dist/storage/rate-limit-storage.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limit-storage.service.d.ts","sourceRoot":"","sources":["../../src/storage/rate-limit-storage.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,cAAc,EAAE,MAAM,yCAAyC,CAAC;AAK3F,qBAAa,uBAAwB,YAAW,gBAAgB;IAGlD,OAAO,CAAC,QAAQ,CAAC,cAAc;IAF3C,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAsB;gBAEnB,cAAc,EAAE,cAAc;IAErD,kBAAkB,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAa3F,YAAY,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMnE,cAAc,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAKzE,OAAO,CAAC,MAAM;CAGf"}

package/dist/storage/rate-limit-storage.service.js

@@ -0,0 +1,33 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RateLimitStorageService = void 0;
+class RateLimitStorageService {
+    storageAdapter;
+    keyPrefix = 'nauth:ratelimit:';
+    constructor(storageAdapter) {
+        this.storageAdapter = storageAdapter;
+    }
+    async incrementRateLimit(identifier, endpoint, windowMs) {
+        const key = this.getKey(identifier, endpoint);
+        const count = await this.storageAdapter.incr(key);
+        if (count === 1) {
+            const ttl = Math.ceil(windowMs / 1000);
+            await this.storageAdapter.expire(key, ttl);
+        }
+        return count;
+    }
+    async getRateLimit(identifier, endpoint) {
+        const key = this.getKey(identifier, endpoint);
+        const value = await this.storageAdapter.get(key);
+        return value ? parseInt(value, 10) : 0;
+    }
+    async resetRateLimit(identifier, endpoint) {
+        const key = this.getKey(identifier, endpoint);
+        await this.storageAdapter.del(key);
+    }
+    getKey(identifier, endpoint) {
+        return `${this.keyPrefix}${identifier}:${endpoint}`;
+    }
+}
+exports.RateLimitStorageService = RateLimitStorageService;
+//# sourceMappingURL=rate-limit-storage.service.js.map