@nauth-toolkit/core 0.1.0

package/dist/utils/common-passwords.js

@@ -0,0 +1,108 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.loadCommonPasswords = loadCommonPasswords;
+exports.isCommonPassword = isCommonPassword;
+exports.getCommonPasswordCount = getCommonPasswordCount;
+const fs = __importStar(require("fs"));
+const path = __importStar(require("path"));
+let COMMON_PASSWORDS = null;
+function debugLog(message, isError = false) {
+    if (process.env.NAUTH_DEBUG === 'true') {
+        const prefix = isError ? '[nauth-toolkit:WARN]' : '[nauth-toolkit:INFO]';
+        process.stderr.write(`${prefix} ${message}\n`);
+    }
+}
+const FALLBACK_PASSWORDS = [
+    'password',
+    'password123',
+    '123456',
+    '123456789',
+    '12345678',
+    '12345',
+    'qwerty',
+    'abc123',
+    'password1',
+    'admin',
+    'letmein',
+    'welcome',
+    '123123',
+    'monkey',
+    '1234567',
+    'password!',
+    'qwerty123',
+    '1q2w3e4r',
+    'admin123',
+    'root',
+];
+function loadCommonPasswords() {
+    if (COMMON_PASSWORDS) {
+        return COMMON_PASSWORDS;
+    }
+    try {
+        const filePath = path.join(__dirname, '../data/common-passwords-10000.txt');
+        if (fs.existsSync(filePath)) {
+            const content = fs.readFileSync(filePath, 'utf-8');
+            COMMON_PASSWORDS = new Set(content
+                .split('\n')
+                .map((p) => p.trim().toLowerCase())
+                .filter((p) => p.length > 0));
+            debugLog(`Loaded ${COMMON_PASSWORDS.size} common passwords from file`);
+            return COMMON_PASSWORDS;
+        }
+        else {
+            debugLog(`Common passwords file not found at ${filePath}, using fallback list`, true);
+        }
+    }
+    catch (error) {
+        debugLog('Could not load common passwords file, using fallback list', true);
+        if (error instanceof Error && process.env.NAUTH_DEBUG === 'true') {
+            debugLog(`Error details: ${error.message}`, true);
+        }
+    }
+    COMMON_PASSWORDS = new Set(FALLBACK_PASSWORDS.map((p) => p.toLowerCase()));
+    debugLog(`Using fallback password list with ${COMMON_PASSWORDS.size} entries`, true);
+    return COMMON_PASSWORDS;
+}
+function isCommonPassword(password) {
+    const passwords = loadCommonPasswords();
+    return passwords.has(password.toLowerCase());
+}
+function getCommonPasswordCount() {
+    const passwords = loadCommonPasswords();
+    return passwords.size;
+}
+loadCommonPasswords();
+//# sourceMappingURL=common-passwords.js.map

package/dist/utils/common-passwords.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"common-passwords.js","sourceRoot":"","sources":["../../src/utils/common-passwords.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAoGA,kDAoCC;AAiBD,4CAGC;AAOD,wDAGC;AAtKD,uCAAyB;AACzB,2CAA6B;AA8B7B,IAAI,gBAAgB,GAAuB,IAAI,CAAC;AAWhD,SAAS,QAAQ,CAAC,OAAe,EAAE,UAAmB,KAAK;IACzD,IAAI,OAAO,CAAC,GAAG,CAAC,WAAW,KAAK,MAAM,EAAE,CAAC;QACvC,MAAM,MAAM,GAAG,OAAO,CAAC,CAAC,CAAC,sBAAsB,CAAC,CAAC,CAAC,sBAAsB,CAAC;QACzE,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,MAAM,IAAI,OAAO,IAAI,CAAC,CAAC;IACjD,CAAC;AACH,CAAC;AAQD,MAAM,kBAAkB,GAAG;IACzB,UAAU;IACV,aAAa;IACb,QAAQ;IACR,WAAW;IACX,UAAU;IACV,OAAO;IACP,QAAQ;IACR,QAAQ;IACR,WAAW;IACX,OAAO;IACP,SAAS;IACT,SAAS;IACT,QAAQ;IACR,QAAQ;IACR,SAAS;IACT,WAAW;IACX,WAAW;IACX,UAAU;IACV,UAAU;IACV,MAAM;CACP,CAAC;AAwBF,SAAgB,mBAAmB;IAEjC,IAAI,gBAAgB,EAAE,CAAC;QACrB,OAAO,gBAAgB,CAAC;IAC1B,CAAC;IAED,IAAI,CAAC;QAEH,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,oCAAoC,CAAC,CAAC;QAE5E,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC5B,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YACnD,gBAAgB,GAAG,IAAI,GAAG,CACxB,OAAO;iBACJ,KAAK,CAAC,IAAI,CAAC;iBACX,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;iBAClC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAC/B,CAAC;YAEF,QAAQ,CAAC,UAAU,gBAAgB,CAAC,IAAI,6BAA6B,CAAC,CAAC;YACvE,OAAO,gBAAgB,CAAC;QAC1B,CAAC;aAAM,CAAC;YACN,QAAQ,CAAC,sCAAsC,QAAQ,uBAAuB,EAAE,IAAI,CAAC,CAAC;QACxF,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,QAAQ,CAAC,2DAA2D,EAAE,IAAI,CAAC,CAAC;QAC5E,IAAI,KAAK,YAAY,KAAK,IAAI,OAAO,CAAC,GAAG,CAAC,WAAW,KAAK,MAAM,EAAE,CAAC;YACjE,QAAQ,CAAC,kBAAkB,KAAK,CAAC,OAAO,EAAE,EAAE,IAAI,CAAC,CAAC;QACpD,CAAC;IACH,CAAC;IAGD,gBAAgB,GAAG,IAAI,GAAG,CAAC,kBAAkB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;IAC3E,QAAQ,CAAC,qCAAqC,gBAAgB,CAAC,IAAI,UAAU,EAAE,IAAI,CAAC,CAAC;IAErF,OAAO,gBAAgB,CAAC;AAC1B,CAAC;AAiBD,SAAgB,gBAAgB,CAAC,QAAgB;IAC/C,MAAM,SAAS,GAAG,mBAAmB,EAAE,CAAC;IACxC,OAAO,SAAS,CAAC,GAAG,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,CAAC;AAC/C,CAAC;AAOD,SAAgB,sBAAsB;IACpC,MAAM,SAAS,GAAG,mBAAmB,EAAE,CAAC;IACxC,OAAO,SAAS,CAAC,IAAI,CAAC;AACxB,CAAC;AAGD,mBAAmB,EAAE,CAAC"}

package/dist/utils/context-storage.d.ts

@@ -0,0 +1,13 @@
+export declare class ContextStorage {
+    private static als;
+    static run<T>(callback: () => T): T;
+    static set<T>(key: string, value: T): void;
+    static get<T>(key: string): T | undefined;
+    static has(key: string): boolean;
+    static delete(key: string): boolean;
+    static clear(): void;
+    static keys(): string[];
+    static getStore(): Map<string, unknown> | undefined;
+    static enterStore<T>(store: Map<string, unknown>, callback: () => T): T;
+}
+//# sourceMappingURL=context-storage.d.ts.map

package/dist/utils/context-storage.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"context-storage.d.ts","sourceRoot":"","sources":["../../src/utils/context-storage.ts"],"names":[],"mappings":"AA0BA,qBAAa,cAAc;IACzB,OAAO,CAAC,MAAM,CAAC,GAAG,CAAiD;IAmBnE,MAAM,CAAC,GAAG,CAAC,CAAC,EAAE,QAAQ,EAAE,MAAM,CAAC,GAAG,CAAC;IAkBnC,MAAM,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI;IAoB1C,MAAM,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,GAAG,CAAC,GAAG,SAAS;IAkBzC,MAAM,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO;IAgBhC,MAAM,CAAC,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO;IAgBnC,MAAM,CAAC,KAAK,IAAI,IAAI;IAkBpB,MAAM,CAAC,IAAI,IAAI,MAAM,EAAE;IAiBvB,MAAM,CAAC,QAAQ,IAAI,GAAG,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,SAAS;IAenD,MAAM,CAAC,UAAU,CAAC,CAAC,EAAE,KAAK,EAAE,GAAG,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,QAAQ,EAAE,MAAM,CAAC,GAAG,CAAC;CAGxE"}

package/dist/utils/context-storage.js

@@ -0,0 +1,54 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ContextStorage = void 0;
+const async_hooks_1 = require("async_hooks");
+class ContextStorage {
+    static als = new async_hooks_1.AsyncLocalStorage();
+    static run(callback) {
+        const store = new Map();
+        return this.als.run(store, callback);
+    }
+    static set(key, value) {
+        const store = this.als.getStore();
+        if (!store) {
+            throw new Error('Context not initialized. Call ContextStorage.run() first.');
+        }
+        store.set(key, value);
+    }
+    static get(key) {
+        const store = this.als.getStore();
+        return store?.get(key);
+    }
+    static has(key) {
+        const store = this.als.getStore();
+        return store?.has(key) || false;
+    }
+    static delete(key) {
+        const store = this.als.getStore();
+        if (!store) {
+            return false;
+        }
+        return store.delete(key);
+    }
+    static clear() {
+        const store = this.als.getStore();
+        if (store) {
+            store.clear();
+        }
+    }
+    static keys() {
+        const store = this.als.getStore();
+        if (!store) {
+            return [];
+        }
+        return Array.from(store.keys());
+    }
+    static getStore() {
+        return this.als.getStore();
+    }
+    static enterStore(store, callback) {
+        return this.als.run(store, callback);
+    }
+}
+exports.ContextStorage = ContextStorage;
+//# sourceMappingURL=context-storage.js.map

package/dist/utils/context-storage.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"context-storage.js","sourceRoot":"","sources":["../../src/utils/context-storage.ts"],"names":[],"mappings":";;;AAAA,6CAAgD;AA0BhD,MAAa,cAAc;IACjB,MAAM,CAAC,GAAG,GAAG,IAAI,+BAAiB,EAAwB,CAAC;IAmBnE,MAAM,CAAC,GAAG,CAAI,QAAiB;QAC7B,MAAM,KAAK,GAAG,IAAI,GAAG,EAAmB,CAAC;QACzC,OAAO,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;IACvC,CAAC;IAeD,MAAM,CAAC,GAAG,CAAI,GAAW,EAAE,KAAQ;QACjC,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC;QAClC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CAAC,2DAA2D,CAAC,CAAC;QAC/E,CAAC;QACD,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IACxB,CAAC;IAcD,MAAM,CAAC,GAAG,CAAI,GAAW;QACvB,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC;QAClC,OAAO,KAAK,EAAE,GAAG,CAAC,GAAG,CAAkB,CAAC;IAC1C,CAAC;IAeD,MAAM,CAAC,GAAG,CAAC,GAAW;QACpB,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC;QAClC,OAAO,KAAK,EAAE,GAAG,CAAC,GAAG,CAAC,IAAI,KAAK,CAAC;IAClC,CAAC;IAaD,MAAM,CAAC,MAAM,CAAC,GAAW;QACvB,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC;QAClC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,KAAK,CAAC;QACf,CAAC;QACD,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IAC3B,CAAC;IAUD,MAAM,CAAC,KAAK;QACV,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC;QAClC,IAAI,KAAK,EAAE,CAAC;YACV,KAAK,CAAC,KAAK,EAAE,CAAC;QAChB,CAAC;IACH,CAAC;IAaD,MAAM,CAAC,IAAI;QACT,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC;QAClC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;IAClC,CAAC;IAWD,MAAM,CAAC,QAAQ;QACb,OAAO,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC;IAC7B,CAAC;IAaD,MAAM,CAAC,UAAU,CAAI,KAA2B,EAAE,QAAiB;QACjE,OAAO,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;IACvC,CAAC;;AAhKH,wCAiKC"}

package/dist/utils/cookie-names.util.d.ts

@@ -0,0 +1,7 @@
+import { NAuthConfig } from '../interfaces/config.interface';
+export declare function getCookieNamePrefix(config?: NAuthConfig): string;
+export declare function getAccessTokenCookieName(config?: NAuthConfig): string;
+export declare function getRefreshTokenCookieName(config?: NAuthConfig): string;
+export declare function getDeviceTokenCookieName(config?: NAuthConfig): string;
+export declare function getCsrfTokenCookieName(config?: NAuthConfig): string;
+//# sourceMappingURL=cookie-names.util.d.ts.map

package/dist/utils/cookie-names.util.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cookie-names.util.d.ts","sourceRoot":"","sources":["../../src/utils/cookie-names.util.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAO7D,wBAAgB,mBAAmB,CAAC,MAAM,CAAC,EAAE,WAAW,GAAG,MAAM,CAEhE;AAOD,wBAAgB,wBAAwB,CAAC,MAAM,CAAC,EAAE,WAAW,GAAG,MAAM,CAGrE;AAOD,wBAAgB,yBAAyB,CAAC,MAAM,CAAC,EAAE,WAAW,GAAG,MAAM,CAGtE;AAOD,wBAAgB,wBAAwB,CAAC,MAAM,CAAC,EAAE,WAAW,GAAG,MAAM,CAGrE;AAWD,wBAAgB,sBAAsB,CAAC,MAAM,CAAC,EAAE,WAAW,GAAG,MAAM,CASnE"}

package/dist/utils/cookie-names.util.js

@@ -0,0 +1,30 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getCookieNamePrefix = getCookieNamePrefix;
+exports.getAccessTokenCookieName = getAccessTokenCookieName;
+exports.getRefreshTokenCookieName = getRefreshTokenCookieName;
+exports.getDeviceTokenCookieName = getDeviceTokenCookieName;
+exports.getCsrfTokenCookieName = getCsrfTokenCookieName;
+function getCookieNamePrefix(config) {
+    return config?.tokenDelivery?.cookieNamePrefix || 'nauth_';
+}
+function getAccessTokenCookieName(config) {
+    const prefix = getCookieNamePrefix(config);
+    return `${prefix}access_token`;
+}
+function getRefreshTokenCookieName(config) {
+    const prefix = getCookieNamePrefix(config);
+    return `${prefix}refresh_token`;
+}
+function getDeviceTokenCookieName(config) {
+    const prefix = getCookieNamePrefix(config);
+    return `${prefix}device_token`;
+}
+function getCsrfTokenCookieName(config) {
+    if (config?.security?.csrf?.cookieName) {
+        return config.security.csrf.cookieName;
+    }
+    const prefix = getCookieNamePrefix(config);
+    return `${prefix}csrf_token`;
+}
+//# sourceMappingURL=cookie-names.util.js.map

package/dist/utils/cookie-names.util.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cookie-names.util.js","sourceRoot":"","sources":["../../src/utils/cookie-names.util.ts"],"names":[],"mappings":";;AAcA,kDAEC;AAOD,4DAGC;AAOD,8DAGC;AAOD,4DAGC;AAWD,wDASC;AApDD,SAAgB,mBAAmB,CAAC,MAAoB;IACtD,OAAO,MAAM,EAAE,aAAa,EAAE,gBAAgB,IAAI,QAAQ,CAAC;AAC7D,CAAC;AAOD,SAAgB,wBAAwB,CAAC,MAAoB;IAC3D,MAAM,MAAM,GAAG,mBAAmB,CAAC,MAAM,CAAC,CAAC;IAC3C,OAAO,GAAG,MAAM,cAAc,CAAC;AACjC,CAAC;AAOD,SAAgB,yBAAyB,CAAC,MAAoB;IAC5D,MAAM,MAAM,GAAG,mBAAmB,CAAC,MAAM,CAAC,CAAC;IAC3C,OAAO,GAAG,MAAM,eAAe,CAAC;AAClC,CAAC;AAOD,SAAgB,wBAAwB,CAAC,MAAoB;IAC3D,MAAM,MAAM,GAAG,mBAAmB,CAAC,MAAM,CAAC,CAAC;IAC3C,OAAO,GAAG,MAAM,cAAc,CAAC;AACjC,CAAC;AAWD,SAAgB,sBAAsB,CAAC,MAAoB;IAEzD,IAAI,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC;QACvC,OAAO,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,UAAU,CAAC;IACzC,CAAC;IAGD,MAAM,MAAM,GAAG,mBAAmB,CAAC,MAAM,CAAC,CAAC;IAC3C,OAAO,GAAG,MAAM,YAAY,CAAC;AAC/B,CAAC"}

package/dist/utils/cookies.util.d.ts

@@ -0,0 +1,12 @@
+import { NAuthConfig } from '../interfaces/config.interface';
+export interface CookieOptions {
+    domain?: string;
+    path?: string;
+    secure?: boolean;
+    sameSite?: 'strict' | 'lax' | 'none';
+}
+export declare function clearAuthCookies(res: {
+    cookie?: Function;
+    setCookie?: Function;
+}, config?: NAuthConfig | CookieOptions, opt?: CookieOptions, forgetDevice?: boolean): void;
+//# sourceMappingURL=cookies.util.d.ts.map

package/dist/utils/cookies.util.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cookies.util.d.ts","sourceRoot":"","sources":["../../src/utils/cookies.util.ts"],"names":[],"mappings":"AAMA,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAQ7D,MAAM,WAAW,aAAa;IAC5B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;CACtC;AAgBD,wBAAgB,gBAAgB,CAC9B,GAAG,EAAE;IAAE,MAAM,CAAC,EAAE,QAAQ,CAAC;IAAC,SAAS,CAAC,EAAE,QAAQ,CAAA;CAAE,EAChD,MAAM,CAAC,EAAE,WAAW,GAAG,aAAa,EACpC,GAAG,CAAC,EAAE,aAAa,EACnB,YAAY,GAAE,OAAe,GAC5B,IAAI,CAqDN"}

package/dist/utils/cookies.util.js

@@ -0,0 +1,48 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.clearAuthCookies = clearAuthCookies;
+const cookie_names_util_1 = require("./cookie-names.util");
+function clearAuthCookies(res, config, opt, forgetDevice = false) {
+    let cookieOptions;
+    let nauthConfig;
+    if (config && 'tokenDelivery' in config) {
+        nauthConfig = config;
+        cookieOptions = opt;
+    }
+    else {
+        cookieOptions = config;
+    }
+    const base = {
+        httpOnly: true,
+        secure: cookieOptions?.secure !== false,
+        sameSite: (cookieOptions?.sameSite || 'strict'),
+        path: cookieOptions?.path || '/',
+        domain: cookieOptions?.domain,
+        maxAge: 0,
+    };
+    const accessTokenName = (0, cookie_names_util_1.getAccessTokenCookieName)(nauthConfig);
+    const refreshTokenName = (0, cookie_names_util_1.getRefreshTokenCookieName)(nauthConfig);
+    const csrfTokenName = (0, cookie_names_util_1.getCsrfTokenCookieName)(nauthConfig);
+    const deviceTokenName = (0, cookie_names_util_1.getDeviceTokenCookieName)(nauthConfig);
+    const csrfBase = {
+        ...base,
+        httpOnly: false,
+    };
+    if (typeof res.cookie === 'function') {
+        res.cookie(accessTokenName, '', base);
+        res.cookie(refreshTokenName, '', base);
+        res.cookie(csrfTokenName, '', csrfBase);
+        if (forgetDevice) {
+            res.cookie(deviceTokenName, '', base);
+        }
+    }
+    else if (typeof res.setCookie === 'function') {
+        res.setCookie(accessTokenName, '', base);
+        res.setCookie(refreshTokenName, '', base);
+        res.setCookie(csrfTokenName, '', csrfBase);
+        if (forgetDevice) {
+            res.setCookie(deviceTokenName, '', base);
+        }
+    }
+}
+//# sourceMappingURL=cookies.util.js.map

package/dist/utils/cookies.util.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cookies.util.js","sourceRoot":"","sources":["../../src/utils/cookies.util.ts"],"names":[],"mappings":";;AAmCA,4CA0DC;AAtFD,2DAK6B;AAuB7B,SAAgB,gBAAgB,CAC9B,GAAgD,EAChD,MAAoC,EACpC,GAAmB,EACnB,eAAwB,KAAK;IAG7B,IAAI,aAAwC,CAAC;IAC7C,IAAI,WAAoC,CAAC;IAEzC,IAAI,MAAM,IAAI,eAAe,IAAI,MAAM,EAAE,CAAC;QAExC,WAAW,GAAG,MAAqB,CAAC;QACpC,aAAa,GAAG,GAAG,CAAC;IACtB,CAAC;SAAM,CAAC;QAEN,aAAa,GAAG,MAAmC,CAAC;IACtD,CAAC;IAED,MAAM,IAAI,GAAG;QACX,QAAQ,EAAE,IAAa;QACvB,MAAM,EAAE,aAAa,EAAE,MAAM,KAAK,KAAK;QACvC,QAAQ,EAAE,CAAC,aAAa,EAAE,QAAQ,IAAI,QAAQ,CAA8B;QAC5E,IAAI,EAAE,aAAa,EAAE,IAAI,IAAI,GAAG;QAChC,MAAM,EAAE,aAAa,EAAE,MAAM;QAC7B,MAAM,EAAE,CAAC;KACV,CAAC;IAEF,MAAM,eAAe,GAAG,IAAA,4CAAwB,EAAC,WAAW,CAAC,CAAC;IAC9D,MAAM,gBAAgB,GAAG,IAAA,6CAAyB,EAAC,WAAW,CAAC,CAAC;IAChE,MAAM,aAAa,GAAG,IAAA,0CAAsB,EAAC,WAAW,CAAC,CAAC;IAC1D,MAAM,eAAe,GAAG,IAAA,4CAAwB,EAAC,WAAW,CAAC,CAAC;IAG9D,MAAM,QAAQ,GAAG;QACf,GAAG,IAAI;QACP,QAAQ,EAAE,KAAc;KACzB,CAAC;IAEF,IAAI,OAAO,GAAG,CAAC,MAAM,KAAK,UAAU,EAAE,CAAC;QACrC,GAAG,CAAC,MAAM,CAAC,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAC;QACtC,GAAG,CAAC,MAAM,CAAC,gBAAgB,EAAE,EAAE,EAAE,IAAI,CAAC,CAAC;QACvC,GAAG,CAAC,MAAM,CAAC,aAAa,EAAE,EAAE,EAAE,QAAQ,CAAC,CAAC;QAGxC,IAAI,YAAY,EAAE,CAAC;YACjB,GAAG,CAAC,MAAM,CAAC,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;SAAM,IAAI,OAAO,GAAG,CAAC,SAAS,KAAK,UAAU,EAAE,CAAC;QAC/C,GAAG,CAAC,SAAS,CAAC,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAC;QACzC,GAAG,CAAC,SAAS,CAAC,gBAAgB,EAAE,EAAE,EAAE,IAAI,CAAC,CAAC;QAC1C,GAAG,CAAC,SAAS,CAAC,aAAa,EAAE,EAAE,EAAE,QAAQ,CAAC,CAAC;QAG3C,IAAI,YAAY,EAAE,CAAC;YACjB,GAAG,CAAC,SAAS,CAAC,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;AACH,CAAC"}

package/dist/utils/index.d.ts

@@ -0,0 +1,8 @@
+export * from './pii-redactor';
+export * from './ip-extractor';
+export * from './nauth-logger';
+export * from './cookies.util';
+export * from './cookie-names.util';
+export * from './context-storage';
+export * from './token-delivery-policy';
+//# sourceMappingURL=index.d.ts.map

package/dist/utils/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AAIA,cAAc,gBAAgB,CAAC;AAC/B,cAAc,gBAAgB,CAAC;AAC/B,cAAc,gBAAgB,CAAC;AAC/B,cAAc,gBAAgB,CAAC;AAC/B,cAAc,qBAAqB,CAAC;AACpC,cAAc,mBAAmB,CAAC;AAClC,cAAc,yBAAyB,CAAC"}

package/dist/utils/index.js

@@ -0,0 +1,24 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./pii-redactor"), exports);
+__exportStar(require("./ip-extractor"), exports);
+__exportStar(require("./nauth-logger"), exports);
+__exportStar(require("./cookies.util"), exports);
+__exportStar(require("./cookie-names.util"), exports);
+__exportStar(require("./context-storage"), exports);
+__exportStar(require("./token-delivery-policy"), exports);
+//# sourceMappingURL=index.js.map

package/dist/utils/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAIA,iDAA+B;AAC/B,iDAA+B;AAC/B,iDAA+B;AAC/B,iDAA+B;AAC/B,sDAAoC;AACpC,oDAAkC;AAClC,0DAAwC"}

package/dist/utils/ip-extractor.d.ts

@@ -0,0 +1,12 @@
+export interface IpExtractorOptions {
+    filterPrivateIps?: boolean;
+    trustedProxies?: string[];
+    useLeftmostIp?: boolean;
+}
+export declare function extractClientIp(req: any, options?: IpExtractorOptions): string;
+export declare function isPrivateIp(ip: string): boolean;
+export declare function getIpGeolocation(_ip: string): {
+    country?: string;
+    city?: string;
+};
+//# sourceMappingURL=ip-extractor.d.ts.map

package/dist/utils/ip-extractor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ip-extractor.d.ts","sourceRoot":"","sources":["../../src/utils/ip-extractor.ts"],"names":[],"mappings":"AA0CA,MAAM,WAAW,kBAAkB;IAKjC,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAM3B,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAO1B,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB;AASD,wBAAgB,eAAe,CAAC,GAAG,EAAE,GAAG,EAAE,OAAO,GAAE,kBAAuB,GAAG,MAAM,CA6DlF;AA8DD,wBAAgB,WAAW,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAe/C;AAQD,wBAAgB,gBAAgB,CAAC,GAAG,EAAE,MAAM,GAAG;IAAE,OAAO,CAAC,EAAE,MAAM,CAAC;IAAC,IAAI,CAAC,EAAE,MAAM,CAAA;CAAE,CAGjF"}

package/dist/utils/ip-extractor.js

@@ -0,0 +1,88 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.extractClientIp = extractClientIp;
+exports.isPrivateIp = isPrivateIp;
+exports.getIpGeolocation = getIpGeolocation;
+function extractClientIp(req, options = {}) {
+    const { filterPrivateIps = false, useLeftmostIp = true } = options;
+    const headers = [
+        'x-forwarded-for',
+        'cf-connecting-ip',
+        'x-real-ip',
+        'x-client-ip',
+        'fastly-client-ip',
+        'akamai-origin-hop',
+        'true-client-ip',
+        'x-original-forwarded-for',
+    ];
+    const reqHeaders = req.headers || {};
+    for (const header of headers) {
+        const variations = [
+            header,
+            header.toUpperCase(),
+            header
+                .split('-')
+                .map((part) => part.charAt(0).toUpperCase() + part.slice(1))
+                .join('-'),
+        ];
+        let value = null;
+        for (const variant of variations) {
+            if (reqHeaders[variant]) {
+                value = reqHeaders[variant];
+                break;
+            }
+        }
+        if (value) {
+            const ip = extractIpFromHeader(value, useLeftmostIp);
+            if (ip && isValidIp(ip)) {
+                if (filterPrivateIps && isPrivateIp(ip)) {
+                    continue;
+                }
+                return ip;
+            }
+        }
+    }
+    const fallbackIp = req.ip || req.socket?.remoteAddress || req.connection?.remoteAddress || '0.0.0.0';
+    if (fallbackIp === '::1' || fallbackIp === '::ffff:127.0.0.1') {
+        return '127.0.0.1';
+    }
+    const cleanIp = fallbackIp.replace(/^::ffff:/, '');
+    return cleanIp;
+}
+function extractIpFromHeader(value, useLeftmost) {
+    const valueStr = Array.isArray(value) ? value[0] : value;
+    if (!valueStr)
+        return null;
+    const ips = valueStr
+        .split(',')
+        .map((ip) => ip.trim())
+        .filter(Boolean);
+    if (ips.length === 0)
+        return null;
+    return useLeftmost ? ips[0] : ips[ips.length - 1];
+}
+function isValidIp(ip) {
+    const ipv4Regex = /^(\d{1,3}\.){3}\d{1,3}$/;
+    if (ipv4Regex.test(ip)) {
+        const parts = ip.split('.').map(Number);
+        return parts.every((part) => part >= 0 && part <= 255);
+    }
+    const ipv6Regex = /^([0-9a-fA-F]{0,4}:){2,7}[0-9a-fA-F]{0,4}$/;
+    return ipv6Regex.test(ip);
+}
+function isPrivateIp(ip) {
+    if (ip === '127.0.0.1' || ip === '::1' || ip.startsWith('127.')) {
+        return true;
+    }
+    const privateRanges = [
+        /^10\./,
+        /^172\.(1[6-9]|2[0-9]|3[0-1])\./,
+        /^192\.168\./,
+        /^169\.254\./,
+    ];
+    return privateRanges.some((regex) => regex.test(ip));
+}
+function getIpGeolocation(_ip) {
+    return {};
+}
+//# sourceMappingURL=ip-extractor.js.map

package/dist/utils/ip-extractor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ip-extractor.js","sourceRoot":"","sources":["../../src/utils/ip-extractor.ts"],"names":[],"mappings":";;AAsEA,0CA6DC;AA8DD,kCAeC;AAQD,4CAGC;AArJD,SAAgB,eAAe,CAAC,GAAQ,EAAE,UAA8B,EAAE;IACxE,MAAM,EAAE,gBAAgB,GAAG,KAAK,EAAE,aAAa,GAAG,IAAI,EAAE,GAAG,OAAO,CAAC;IAGnE,MAAM,OAAO,GAAG;QACd,iBAAiB;QACjB,kBAAkB;QAClB,WAAW;QACX,aAAa;QACb,kBAAkB;QAClB,mBAAmB;QACnB,gBAAgB;QAChB,0BAA0B;KAC3B,CAAC;IAGF,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC;IAGrC,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAE7B,MAAM,UAAU,GAAG;YACjB,MAAM;YACN,MAAM,CAAC,WAAW,EAAE;YACpB,MAAM;iBACH,KAAK,CAAC,GAAG,CAAC;iBACV,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;iBAC3D,IAAI,CAAC,GAAG,CAAC;SACb,CAAC;QAEF,IAAI,KAAK,GAAG,IAAI,CAAC;QACjB,KAAK,MAAM,OAAO,IAAI,UAAU,EAAE,CAAC;YACjC,IAAI,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;gBACxB,KAAK,GAAG,UAAU,CAAC,OAAO,CAAC,CAAC;gBAC5B,MAAM;YACR,CAAC;QACH,CAAC;QAED,IAAI,KAAK,EAAE,CAAC;YACV,MAAM,EAAE,GAAG,mBAAmB,CAAC,KAAK,EAAE,aAAa,CAAC,CAAC;YACrD,IAAI,EAAE,IAAI,SAAS,CAAC,EAAE,CAAC,EAAE,CAAC;gBACxB,IAAI,gBAAgB,IAAI,WAAW,CAAC,EAAE,CAAC,EAAE,CAAC;oBACxC,SAAS;gBACX,CAAC;gBACD,OAAO,EAAE,CAAC;YACZ,CAAC;QACH,CAAC;IACH,CAAC;IAGD,MAAM,UAAU,GAAG,GAAG,CAAC,EAAE,IAAI,GAAG,CAAC,MAAM,EAAE,aAAa,IAAI,GAAG,CAAC,UAAU,EAAE,aAAa,IAAI,SAAS,CAAC;IAGrG,IAAI,UAAU,KAAK,KAAK,IAAI,UAAU,KAAK,kBAAkB,EAAE,CAAC;QAC9D,OAAO,WAAW,CAAC;IACrB,CAAC;IAGD,MAAM,OAAO,GAAG,UAAU,CAAC,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC,CAAC;IAEnD,OAAO,OAAO,CAAC;AACjB,CAAC;AASD,SAAS,mBAAmB,CAAC,KAAwB,EAAE,WAAoB;IACzE,MAAM,QAAQ,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;IAEzD,IAAI,CAAC,QAAQ;QAAE,OAAO,IAAI,CAAC;IAG3B,MAAM,GAAG,GAAG,QAAQ;SACjB,KAAK,CAAC,GAAG,CAAC;SACV,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,IAAI,EAAE,CAAC;SACtB,MAAM,CAAC,OAAO,CAAC,CAAC;IAEnB,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAGlC,OAAO,WAAW,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;AACpD,CAAC;AAQD,SAAS,SAAS,CAAC,EAAU;IAE3B,MAAM,SAAS,GAAG,yBAAyB,CAAC;IAC5C,IAAI,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,CAAC;QACvB,MAAM,KAAK,GAAG,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACxC,OAAO,KAAK,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,IAAI,CAAC,IAAI,IAAI,IAAI,GAAG,CAAC,CAAC;IACzD,CAAC;IAGD,MAAM,SAAS,GAAG,4CAA4C,CAAC;IAC/D,OAAO,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;AAC5B,CAAC;AAmBD,SAAgB,WAAW,CAAC,EAAU;IAEpC,IAAI,EAAE,KAAK,WAAW,IAAI,EAAE,KAAK,KAAK,IAAI,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QAChE,OAAO,IAAI,CAAC;IACd,CAAC;IAGD,MAAM,aAAa,GAAG;QACpB,OAAO;QACP,gCAAgC;QAChC,aAAa;QACb,aAAa;KACd,CAAC;IAEF,OAAO,aAAa,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC;AACvD,CAAC;AAQD,SAAgB,gBAAgB,CAAC,GAAW;IAE1C,OAAO,EAAE,CAAC;AACZ,CAAC"}

package/dist/utils/nauth-logger.d.ts

@@ -0,0 +1,20 @@
+import { LoggerService, NAuthLoggerConfig } from '../interfaces/config.interface';
+export declare class NAuthLogger implements LoggerService {
+    private static readonly PREFIX;
+    private readonly logger?;
+    private readonly piiRedactor;
+    private readonly enablePiiRedaction;
+    private readonly logLevel?;
+    constructor(config?: LoggerService | NAuthLoggerConfig);
+    log(message: any, ...optionalParams: any[]): any;
+    error(message: any, ...optionalParams: any[]): any;
+    warn(message: any, ...optionalParams: any[]): any;
+    debug(message: any, ...optionalParams: any[]): any;
+    verbose(message: any, ...optionalParams: any[]): any;
+    private processMessage;
+    private processParams;
+    private shouldLog;
+    isEnabled(): boolean;
+    isPiiRedactionEnabled(): boolean;
+}
+//# sourceMappingURL=nauth-logger.d.ts.map

package/dist/utils/nauth-logger.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"nauth-logger.d.ts","sourceRoot":"","sources":["../../src/utils/nauth-logger.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,aAAa,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAC;AAwClF,qBAAa,WAAY,YAAW,aAAa;IAC/C,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAY;IAE1C,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAgB;IACxC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAc;IAC1C,OAAO,CAAC,QAAQ,CAAC,kBAAkB,CAAU;IAC7C,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAS;gBAEvB,MAAM,CAAC,EAAE,aAAa,GAAG,iBAAiB;IA8BtD,GAAG,CAAC,OAAO,EAAE,GAAG,EAAE,GAAG,cAAc,EAAE,GAAG,EAAE,GAAG,GAAG;IAWhD,KAAK,CAAC,OAAO,EAAE,GAAG,EAAE,GAAG,cAAc,EAAE,GAAG,EAAE,GAAG,GAAG;IAWlD,IAAI,CAAC,OAAO,EAAE,GAAG,EAAE,GAAG,cAAc,EAAE,GAAG,EAAE,GAAG,GAAG;IAWjD,KAAK,CAAC,OAAO,EAAE,GAAG,EAAE,GAAG,cAAc,EAAE,GAAG,EAAE,GAAG,GAAG;IAWlD,OAAO,CAAC,OAAO,EAAE,GAAG,EAAE,GAAG,cAAc,EAAE,GAAG,EAAE,GAAG,GAAG;IAYpD,OAAO,CAAC,cAAc;IAyBtB,OAAO,CAAC,aAAa;IA+BrB,OAAO,CAAC,SAAS;IAajB,SAAS,IAAI,OAAO;IAOpB,qBAAqB,IAAI,OAAO;CAGjC"}

package/dist/utils/nauth-logger.js

@@ -0,0 +1,129 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.NAuthLogger = void 0;
+const pii_redactor_1 = require("./pii-redactor");
+class NAuthLogger {
+    static PREFIX = 'NAUTH:';
+    logger;
+    piiRedactor;
+    enablePiiRedaction;
+    logLevel;
+    constructor(config) {
+        if (!config) {
+            this.logger = undefined;
+            this.enablePiiRedaction = true;
+            this.piiRedactor = new pii_redactor_1.PiiRedactor();
+        }
+        else if ('instance' in config) {
+            this.logger = config.instance;
+            this.enablePiiRedaction = config.enablePiiRedaction !== false;
+            this.logLevel = config.logLevel;
+            this.piiRedactor = new pii_redactor_1.PiiRedactor({
+                redactEmails: this.enablePiiRedaction,
+                redactIpAddresses: this.enablePiiRedaction,
+                redactTokens: this.enablePiiRedaction,
+                redactPhoneNumbers: this.enablePiiRedaction,
+                redactNames: this.enablePiiRedaction,
+                redactPasswords: true,
+            });
+        }
+        else {
+            this.logger = config;
+            this.enablePiiRedaction = true;
+            this.piiRedactor = new pii_redactor_1.PiiRedactor();
+        }
+    }
+    log(message, ...optionalParams) {
+        if (!this.logger || !this.shouldLog('log'))
+            return;
+        const processedMessage = this.processMessage(message);
+        const processedParams = this.processParams(optionalParams);
+        return this.logger.log(processedMessage, ...processedParams);
+    }
+    error(message, ...optionalParams) {
+        if (!this.logger || !this.shouldLog('error'))
+            return;
+        const processedMessage = this.processMessage(message);
+        const processedParams = this.processParams(optionalParams);
+        return this.logger.error(processedMessage, ...processedParams);
+    }
+    warn(message, ...optionalParams) {
+        if (!this.logger || !this.shouldLog('warn'))
+            return;
+        const processedMessage = this.processMessage(message);
+        const processedParams = this.processParams(optionalParams);
+        return this.logger.warn(processedMessage, ...processedParams);
+    }
+    debug(message, ...optionalParams) {
+        if (!this.logger || !this.logger.debug || !this.shouldLog('debug'))
+            return;
+        const processedMessage = this.processMessage(message);
+        const processedParams = this.processParams(optionalParams);
+        return this.logger.debug(processedMessage, ...processedParams);
+    }
+    verbose(message, ...optionalParams) {
+        if (!this.logger || !this.logger.verbose || !this.shouldLog('verbose'))
+            return;
+        const processedMessage = this.processMessage(message);
+        const processedParams = this.processParams(optionalParams);
+        return this.logger.verbose(processedMessage, ...processedParams);
+    }
+    processMessage(message) {
+        let processedMessage;
+        if (typeof message === 'string') {
+            processedMessage = message;
+        }
+        else if (typeof message === 'object') {
+            processedMessage = JSON.stringify(message);
+        }
+        else {
+            processedMessage = String(message);
+        }
+        if (this.enablePiiRedaction) {
+            processedMessage = this.piiRedactor.redactMessage(processedMessage);
+        }
+        return `${NAuthLogger.PREFIX} ${processedMessage}`;
+    }
+    processParams(params) {
+        if (!this.enablePiiRedaction || params.length === 0) {
+            return params;
+        }
+        return params.map((param) => {
+            if (typeof param === 'string') {
+                return this.piiRedactor.redactMessage(param);
+            }
+            else if (typeof param === 'object') {
+                try {
+                    const stringified = JSON.stringify(param);
+                    const redacted = this.piiRedactor.redactMessage(stringified);
+                    try {
+                        return JSON.parse(redacted);
+                    }
+                    catch {
+                        return redacted;
+                    }
+                }
+                catch {
+                    return '[Object with circular reference or invalid JSON]';
+                }
+            }
+            return param;
+        });
+    }
+    shouldLog(level) {
+        if (!this.logLevel)
+            return true;
+        const levels = ['error', 'warn', 'log', 'debug', 'verbose'];
+        const configLevel = levels.indexOf(this.logLevel);
+        const messageLevel = levels.indexOf(level);
+        return messageLevel <= configLevel;
+    }
+    isEnabled() {
+        return !!this.logger;
+    }
+    isPiiRedactionEnabled() {
+        return this.enablePiiRedaction;
+    }
+}
+exports.NAuthLogger = NAuthLogger;
+//# sourceMappingURL=nauth-logger.js.map

package/dist/utils/nauth-logger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"nauth-logger.js","sourceRoot":"","sources":["../../src/utils/nauth-logger.ts"],"names":[],"mappings":";;;AAEA,iDAA6C;AAuC7C,MAAa,WAAW;IACd,MAAM,CAAU,MAAM,GAAG,QAAQ,CAAC;IAEzB,MAAM,CAAiB;IACvB,WAAW,CAAc;IACzB,kBAAkB,CAAU;IAC5B,QAAQ,CAAU;IAEnC,YAAY,MAA0C;QACpD,IAAI,CAAC,MAAM,EAAE,CAAC;YAEZ,IAAI,CAAC,MAAM,GAAG,SAAS,CAAC;YACxB,IAAI,CAAC,kBAAkB,GAAG,IAAI,CAAC;YAC/B,IAAI,CAAC,WAAW,GAAG,IAAI,0BAAW,EAAE,CAAC;QACvC,CAAC;aAAM,IAAI,UAAU,IAAI,MAAM,EAAE,CAAC;YAEhC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC;YAC9B,IAAI,CAAC,kBAAkB,GAAG,MAAM,CAAC,kBAAkB,KAAK,KAAK,CAAC;YAC9D,IAAI,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;YAChC,IAAI,CAAC,WAAW,GAAG,IAAI,0BAAW,CAAC;gBACjC,YAAY,EAAE,IAAI,CAAC,kBAAkB;gBACrC,iBAAiB,EAAE,IAAI,CAAC,kBAAkB;gBAC1C,YAAY,EAAE,IAAI,CAAC,kBAAkB;gBACrC,kBAAkB,EAAE,IAAI,CAAC,kBAAkB;gBAC3C,WAAW,EAAE,IAAI,CAAC,kBAAkB;gBACpC,eAAe,EAAE,IAAI;aACtB,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YAEN,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;YACrB,IAAI,CAAC,kBAAkB,GAAG,IAAI,CAAC;YAC/B,IAAI,CAAC,WAAW,GAAG,IAAI,0BAAW,EAAE,CAAC;QACvC,CAAC;IACH,CAAC;IAKD,GAAG,CAAC,OAAY,EAAE,GAAG,cAAqB;QACxC,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC;YAAE,OAAO;QAEnD,MAAM,gBAAgB,GAAG,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QACtD,MAAM,eAAe,GAAG,IAAI,CAAC,aAAa,CAAC,cAAc,CAAC,CAAC;QAC3D,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,gBAAgB,EAAE,GAAG,eAAe,CAAC,CAAC;IAC/D,CAAC;IAKD,KAAK,CAAC,OAAY,EAAE,GAAG,cAAqB;QAC1C,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;YAAE,OAAO;QAErD,MAAM,gBAAgB,GAAG,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QACtD,MAAM,eAAe,GAAG,IAAI,CAAC,aAAa,CAAC,cAAc,CAAC,CAAC;QAC3D,OAAO,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,gBAAgB,EAAE,GAAG,eAAe,CAAC,CAAC;IACjE,CAAC;IAKD,IAAI,CAAC,OAAY,EAAE,GAAG,cAAqB;QACzC,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC;YAAE,OAAO;QAEpD,MAAM,gBAAgB,GAAG,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QACtD,MAAM,eAAe,GAAG,IAAI,CAAC,aAAa,CAAC,cAAc,CAAC,CAAC;QAC3D,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,GAAG,eAAe,CAAC,CAAC;IAChE,CAAC;IAKD,KAAK,CAAC,OAAY,EAAE,GAAG,cAAqB;QAC1C,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;YAAE,OAAO;QAE3E,MAAM,gBAAgB,GAAG,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QACtD,MAAM,eAAe,GAAG,IAAI,CAAC,aAAa,CAAC,cAAc,CAAC,CAAC;QAC3D,OAAO,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,gBAAgB,EAAE,GAAG,eAAe,CAAC,CAAC;IACjE,CAAC;IAKD,OAAO,CAAC,OAAY,EAAE,GAAG,cAAqB;QAC5C,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC;YAAE,OAAO;QAE/E,MAAM,gBAAgB,GAAG,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QACtD,MAAM,eAAe,GAAG,IAAI,CAAC,aAAa,CAAC,cAAc,CAAC,CAAC;QAC3D,OAAO,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,gBAAgB,EAAE,GAAG,eAAe,CAAC,CAAC;IACnE,CAAC;IAMO,cAAc,CAAC,OAAY;QACjC,IAAI,gBAAwB,CAAC;QAE7B,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAChC,gBAAgB,GAAG,OAAO,CAAC;QAC7B,CAAC;aAAM,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAEvC,gBAAgB,GAAG,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;QAC7C,CAAC;aAAM,CAAC;YACN,gBAAgB,GAAG,MAAM,CAAC,OAAO,CAAC,CAAC;QACrC,CAAC;QAGD,IAAI,IAAI,CAAC,kBAAkB,EAAE,CAAC;YAC5B,gBAAgB,GAAG,IAAI,CAAC,WAAW,CAAC,aAAa,CAAC,gBAAgB,CAAC,CAAC;QACtE,CAAC;QAGD,OAAO,GAAG,WAAW,CAAC,MAAM,IAAI,gBAAgB,EAAE,CAAC;IACrD,CAAC;IAMO,aAAa,CAAC,MAAa;QACjC,IAAI,CAAC,IAAI,CAAC,kBAAkB,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACpD,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,OAAO,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE;YAC1B,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;gBAC9B,OAAO,IAAI,CAAC,WAAW,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;YAC/C,CAAC;iBAAM,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;gBAErC,IAAI,CAAC;oBACH,MAAM,WAAW,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;oBAC1C,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC;oBAC7D,IAAI,CAAC;wBACH,OAAO,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;oBAC9B,CAAC;oBAAC,MAAM,CAAC;wBACP,OAAO,QAAQ,CAAC;oBAClB,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC;oBAEP,OAAO,kDAAkD,CAAC;gBAC5D,CAAC;YACH,CAAC;YACD,OAAO,KAAK,CAAC;QACf,CAAC,CAAC,CAAC;IACL,CAAC;IAMO,SAAS,CAAC,KAAa;QAC7B,IAAI,CAAC,IAAI,CAAC,QAAQ;YAAE,OAAO,IAAI,CAAC;QAEhC,MAAM,MAAM,GAAG,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,SAAS,CAAC,CAAC;QAC5D,MAAM,WAAW,GAAG,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAClD,MAAM,YAAY,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;QAE3C,OAAO,YAAY,IAAI,WAAW,CAAC;IACrC,CAAC;IAKD,SAAS;QACP,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC;IACvB,CAAC;IAKD,qBAAqB;QACnB,OAAO,IAAI,CAAC,kBAAkB,CAAC;IACjC,CAAC;;AA5KH,kCA6KC"}

package/dist/utils/pii-redactor.d.ts

@@ -0,0 +1,16 @@
+import { LogMetadata, PiiRedactionOptions } from '../interfaces/logger.interface';
+export declare class PiiRedactor {
+    private options;
+    constructor(options?: PiiRedactionOptions);
+    redactMessage(message: string): string;
+    redactMetadata(metadata?: LogMetadata): LogMetadata | undefined;
+    private redactEmails;
+    private redactIpAddresses;
+    private redactIpAddress;
+    private redactTokens;
+    private redactPhoneNumbers;
+    private redactNames;
+    private redactPasswords;
+    private redactObject;
+}
+//# sourceMappingURL=pii-redactor.d.ts.map