@nauth-toolkit/core 0.1.133 → 0.2.0

package/README.md

@@ -1,9 +1,29 @@
 # @nauth-toolkit/core
 
-Core authentication toolkit for Node JS
+**Authentication that lives in your codebase.**
 
-## Preview Release Notice
+The platform-agnostic engine behind nauth-toolkit. All authentication business logic lives here — no framework-specific code. Runs inside your server process, stores data in your own database, makes zero external API calls.
 
-**This is a preview release for internal testing. Do not use in production yet.**
+Free to use. NestJS, Express, and Fastify all run the same core.
 
-This package is part of nauth-toolkit and is currently in early access/preview. Features and APIs may change between releases. For production use, please wait for the stable v1.0 release.
+## What's inside
+
+- **Auth flows** — signup, login, email/phone verification, forgot/change password, account lockout
+- **Social OAuth** — Google, Apple, Facebook with web and native mobile flows, automatic account linking
+- **Multi-factor auth** — TOTP, SMS, email OTP, WebAuthn passkeys, recovery codes, adaptive MFA by login risk
+- **JWT lifecycle** — access + refresh tokens, rotation with reuse detection, cookie or JSON delivery
+- **Sessions** — concurrent limits, device tracking, IP geolocation, trusted devices, revocation
+- **Security** — Argon2id hashing, CSRF protection, rate limiting, audit trail for every event
+- **Challenge-based architecture** — multi-step flows (verification, MFA, password changes) return challenge states, not errors
+- **Single config** — one TypeScript object defines your entire auth policy; everything bootstraps from it
+
+## Usage
+
+For most setups, install the adapter for your framework:
+
+- **NestJS** — [`@nauth-toolkit/nestjs`](https://www.npmjs.com/package/@nauth-toolkit/nestjs)
+- **Express / Fastify** — install this package directly and call `NAuth.create()`
+
+Then add storage, MFA, social, and email/SMS providers as needed. Each is a separate package you opt into.
+
+**Docs:** [nauth.dev](https://nauth.dev) · **Examples:** [github.com/noorixorg/nauth](https://github.com/noorixorg/nauth) · **Live demo:** [demo.nauth.dev](https://demo.nauth.dev)

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@nauth-toolkit/core",
-  "version": "0.1.133",
-  "description": "Core authentication toolkit for Node JS",
+  "version": "0.2.0",
+  "description": "Embedded authentication engine for Node.js — NestJS, Express, Fastify",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "exports": {
@@ -32,7 +32,7 @@
     }
   },
   "scripts": {
-    "build": "yarn clean && tsc -b && node dist/openapi/generate-openapi.js",
+    "build": "pnpm run clean && tsc -b && node dist/openapi/generate-openapi.js",
     "clean": "rm -rf dist *.tsbuildinfo",
     "test": "jest",
     "lint": "eslint src --ext .ts",
@@ -49,7 +49,7 @@
   },
   "peerDependencies": {
     "@maxmind/geoip2-node": "^4.0.0 || ^5.0.0 || ^6.0.0",
-    "@nauth-toolkit/recaptcha": "^0.1.133",
+    "@nauth-toolkit/recaptcha": "^0.2.0",
     "typeorm": "^0.3.0"
   },
   "peerDependenciesMeta": {
@@ -76,12 +76,36 @@
     "access": "public",
     "tag": "latest"
   },
-  "license": "SEE LICENSE IN LICENSE",
+  "license": "SEE LICENSE",
   "keywords": [
-    "nestjs",
+    "nauth",
     "authentication",
+    "auth",
+    "nodejs",
+    "typescript",
     "jwt",
-    "typeorm"
+    "oauth",
+    "mfa",
+    "2fa",
+    "totp",
+    "passkey",
+    "webauthn",
+    "social-login",
+    "session-management",
+    "express",
+    "fastify",
+    "nestjs",
+    "email-verification",
+    "phone-verification",
+    "magic-link",
+    "password-reset",
+    "refresh-token",
+    "adaptive-security",
+    "rate-limiting",
+    "account-lockout",
+    "audit-log",
+    "recaptcha",
+    "security"
   ],
   "files": [
     "dist",
@@ -91,6 +115,7 @@
   "sideEffects": false,
   "repository": {
     "type": "git",
-    "url": "https://github.com/noorixorg/nauth-toolkit"
-  }
+    "url": "https://github.com/noorixorg/nauth"
+  },
+  "homepage": "https://nauth.dev"
 }