@navios/jwt 0.2.0 → 0.3.1

package/lib/index.js

@@ -0,0 +1,298 @@
+'use strict';
+
+var jwt = require('jsonwebtoken');
+var zod = require('zod');
+var core = require('@navios/core');
+
+function _interopDefault (e) { return e && e.__esModule ? e : { default: e }; }
+
+var jwt__default = /*#__PURE__*/_interopDefault(jwt);
+
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __knownSymbol = (name, symbol) => (symbol = Symbol[name]) ? symbol : Symbol.for("Symbol." + name);
+var __typeError = (msg) => {
+  throw TypeError(msg);
+};
+var __defNormalProp = (obj, key, value) => key in obj ? __defProp(obj, key, { enumerable: true, configurable: true, writable: true, value }) : obj[key] = value;
+var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
+var __decoratorStart = (base) => [, , , __create(null)];
+var __decoratorStrings = ["class", "method", "getter", "setter", "accessor", "field", "value", "get", "set"];
+var __expectFn = (fn) => fn !== void 0 && typeof fn !== "function" ? __typeError("Function expected") : fn;
+var __decoratorContext = (kind, name, done, metadata, fns) => ({ kind: __decoratorStrings[kind], name, metadata, addInitializer: (fn) => done._ ? __typeError("Already initialized") : fns.push(__expectFn(fn || null)) });
+var __decoratorMetadata = (array, target) => __defNormalProp(target, __knownSymbol("metadata"), array[3]);
+var __runInitializers = (array, flags, self, value) => {
+  for (var i = 0, fns = array[flags >> 1], n = fns && fns.length; i < n; i++) fns[i].call(self) ;
+  return value;
+};
+var __decorateElement = (array, flags, name, decorators, target, extra) => {
+  var it, done, ctx, k = flags & 7, p = false;
+  var j = 0;
+  var extraInitializers = array[j] || (array[j] = []);
+  var desc = k && ((target = target.prototype), k < 5 && (k > 3 || !p) && __getOwnPropDesc(target , name));
+  __name(target, name);
+  for (var i = decorators.length - 1; i >= 0; i--) {
+    ctx = __decoratorContext(k, name, done = {}, array[3], extraInitializers);
+    it = (0, decorators[i])(target, ctx), done._ = 1;
+    __expectFn(it) && (target = it);
+  }
+  return __decoratorMetadata(array, target), desc && __defProp(target, name, desc), p ? k ^ 4 ? extra : desc : target;
+};
+var RequestType = /* @__PURE__ */ ((RequestType2) => {
+  RequestType2["Sign"] = "Sign";
+  RequestType2["Verify"] = "Verify";
+  return RequestType2;
+})(RequestType || {});
+var AlgorithmType = zod.z.enum([
+  "HS256",
+  "HS384",
+  "HS512",
+  "RS256",
+  "RS384",
+  "RS512",
+  "ES256",
+  "ES384",
+  "ES512",
+  "PS256",
+  "PS384",
+  "PS512",
+  "none"
+]);
+var JwtHeaderSchema = zod.z.object({
+  alg: AlgorithmType.or(zod.z.string()),
+  typ: zod.z.string().optional(),
+  cty: zod.z.string().optional(),
+  crit: zod.z.string().array().optional(),
+  kid: zod.z.string().optional(),
+  jku: zod.z.string().optional(),
+  x5u: zod.z.union([zod.z.string(), zod.z.array(zod.z.string())]).optional(),
+  "x5t#S256": zod.z.string().optional(),
+  x5t: zod.z.string().optional(),
+  x5c: zod.z.union([zod.z.string(), zod.z.array(zod.z.string())]).optional()
+});
+var SignOptionsSchema = zod.z.object({
+  algorithm: AlgorithmType.optional(),
+  keyid: zod.z.string().optional(),
+  expiresIn: zod.z.union([zod.z.string(), zod.z.number()]).optional(),
+  notBefore: zod.z.union([zod.z.string(), zod.z.number()]).optional(),
+  audience: zod.z.union([
+    zod.z.string(),
+    zod.z.instanceof(RegExp),
+    zod.z.array(zod.z.union([zod.z.string(), zod.z.instanceof(RegExp)]))
+  ]).optional(),
+  subject: zod.z.string().optional(),
+  issuer: zod.z.string().optional(),
+  jwtid: zod.z.string().optional(),
+  mutatePayload: zod.z.boolean().optional(),
+  noTimestamp: zod.z.boolean().optional(),
+  header: JwtHeaderSchema.optional(),
+  encoding: zod.z.string().optional(),
+  allowInsecureKeySizes: zod.z.boolean().optional(),
+  allowInvalidAsymmetricKeyTypes: zod.z.boolean().optional()
+});
+var VerifyOptionsSchema = zod.z.object({
+  algorithms: AlgorithmType.array().optional(),
+  audience: zod.z.union([
+    zod.z.string(),
+    zod.z.instanceof(RegExp),
+    zod.z.array(zod.z.union([zod.z.string(), zod.z.instanceof(RegExp)]))
+  ]).optional(),
+  clockTimestamp: zod.z.number().optional(),
+  clockTolerance: zod.z.number().optional(),
+  complete: zod.z.boolean().optional(),
+  issuer: zod.z.union([zod.z.string(), zod.z.string().array()]).optional(),
+  ignoreExpiration: zod.z.boolean().optional(),
+  ignoreNotBefore: zod.z.boolean().optional(),
+  jwtid: zod.z.string().optional(),
+  nonce: zod.z.string().optional(),
+  subject: zod.z.string().optional(),
+  maxAge: zod.z.union([zod.z.string(), zod.z.number()]).optional(),
+  allowInvalidAsymmetricKeyTypes: zod.z.boolean().optional()
+});
+var SecretSchema = zod.z.union([
+  zod.z.string(),
+  zod.z.instanceof(Buffer),
+  zod.z.object({
+    type: zod.z.string()
+  }).passthrough(),
+  zod.z.object({
+    key: zod.z.union([zod.z.string(), zod.z.instanceof(Buffer)]),
+    passphrase: zod.z.string()
+  })
+]);
+var JwtServiceOptionsSchema = zod.z.object({
+  signOptions: SignOptionsSchema.optional(),
+  secret: zod.z.string().optional(),
+  publicKey: zod.z.union([zod.z.string(), zod.z.instanceof(Buffer)]).optional(),
+  privateKey: SecretSchema.optional(),
+  verifyOptions: VerifyOptionsSchema.optional(),
+  secretOrKeyProvider: zod.z.function().args(
+    zod.z.nativeEnum(RequestType),
+    zod.z.any(),
+    zod.z.union([SignOptionsSchema, VerifyOptionsSchema]).optional()
+  ).returns(zod.z.union([SecretSchema, zod.z.promise(SecretSchema)])).optional()
+});
+var JwtServiceToken = core.InjectionToken.create(
+  Symbol.for("JwtService"),
+  JwtServiceOptionsSchema
+);
+var _JwtService_decorators, _init;
+_JwtService_decorators = [core.Injectable({
+  token: JwtServiceToken
+})];
+var _JwtService = class _JwtService {
+  constructor(options = {}) {
+    this.options = options;
+  }
+  logger = core.syncInject(core.Logger, {
+    context: _JwtService.name
+  });
+  sign(payload, options = {}) {
+    const signOptions = this.mergeJwtOptions(
+      { ...options },
+      "signOptions"
+    );
+    const secret = this.getSecretKey(
+      payload,
+      options,
+      "privateKey",
+      "Sign" /* Sign */
+    );
+    if (secret instanceof Promise) {
+      secret.catch(() => {
+      });
+      this.logger.warn(
+        'For async version of "secretOrKeyProvider", please use "signAsync".'
+      );
+      throw new Error();
+    }
+    const allowedSignOptKeys = ["secret", "privateKey"];
+    const signOptKeys = Object.keys(signOptions);
+    if (typeof payload === "string" && signOptKeys.some((k) => !allowedSignOptKeys.includes(k))) {
+      throw new Error(
+        "Payload as string is not allowed with the following sign options: " + signOptKeys.join(", ")
+      );
+    }
+    return jwt__default.default.sign(payload, secret, signOptions);
+  }
+  signAsync(payload, options = {}) {
+    const signOptions = this.mergeJwtOptions(
+      { ...options },
+      "signOptions"
+    );
+    const secret = this.getSecretKey(
+      payload,
+      options,
+      "privateKey",
+      "Sign" /* Sign */
+    );
+    const allowedSignOptKeys = ["secret", "privateKey"];
+    const signOptKeys = Object.keys(signOptions);
+    if (typeof payload === "string" && signOptKeys.some((k) => !allowedSignOptKeys.includes(k))) {
+      throw new Error(
+        "Payload as string is not allowed with the following sign options: " + signOptKeys.join(", ")
+      );
+    }
+    return new Promise(
+      (resolve, reject) => Promise.resolve().then(() => secret).then((scrt) => {
+        jwt__default.default.sign(
+          payload,
+          scrt,
+          signOptions,
+          (err, encoded) => err ? reject(err) : resolve(encoded)
+        );
+      })
+    );
+  }
+  verify(token, options = {}) {
+    const verifyOptions = this.mergeJwtOptions({ ...options }, "verifyOptions");
+    const secret = this.getSecretKey(
+      token,
+      options,
+      "publicKey",
+      "Verify" /* Verify */
+    );
+    if (secret instanceof Promise) {
+      secret.catch(() => {
+      });
+      this.logger.warn(
+        'For async version of "secretOrKeyProvider", please use "verifyAsync".'
+      );
+      throw new Error();
+    }
+    return jwt__default.default.verify(token, secret, verifyOptions);
+  }
+  verifyAsync(token, options = {}) {
+    const verifyOptions = this.mergeJwtOptions({ ...options }, "verifyOptions");
+    const secret = this.getSecretKey(
+      token,
+      options,
+      "publicKey",
+      "Verify" /* Verify */
+    );
+    return new Promise(
+      (resolve, reject) => Promise.resolve().then(() => secret).then((scrt) => {
+        jwt__default.default.verify(
+          token,
+          scrt,
+          verifyOptions,
+          (err, decoded) => err ? reject(err) : resolve(decoded)
+        );
+      }).catch(reject)
+    );
+  }
+  decode(token, options) {
+    return jwt__default.default.decode(token, options);
+  }
+  mergeJwtOptions(options, key) {
+    delete options.secret;
+    if (key === "signOptions") {
+      delete options.privateKey;
+    } else {
+      delete options.publicKey;
+    }
+    return options ? {
+      ...this.options[key] || {},
+      ...options
+    } : (
+      // @ts-expect-error We check it
+      this.options[key]
+    );
+  }
+  getSecretKey(token, options, key, secretRequestType) {
+    const secret = this.options.secretOrKeyProvider ? this.options.secretOrKeyProvider(secretRequestType, token, options) : options?.secret || this.options.secret || (key === "privateKey" ? options?.privateKey || this.options.privateKey : options?.publicKey || this.options.publicKey) || this.options[key];
+    return secret;
+  }
+};
+_init = __decoratorStart();
+_JwtService = __decorateElement(_init, 0, "JwtService", _JwtService_decorators, _JwtService);
+__runInitializers(_init, 1, _JwtService);
+var JwtService = _JwtService;
+function provideJwtService(config) {
+  if (typeof config === "function") {
+    return core.InjectionToken.factory(JwtServiceToken, config);
+  }
+  return core.InjectionToken.bound(JwtServiceToken, config);
+}
+
+// src/index.mts
+var TokenExpiredError = jwt__default.default.TokenExpiredError;
+var NotBeforeError = jwt__default.default.NotBeforeError;
+var JsonWebTokenError = jwt__default.default.JsonWebTokenError;
+
+exports.AlgorithmType = AlgorithmType;
+exports.JsonWebTokenError = JsonWebTokenError;
+exports.JwtHeaderSchema = JwtHeaderSchema;
+exports.JwtService = JwtService;
+exports.JwtServiceOptionsSchema = JwtServiceOptionsSchema;
+exports.JwtServiceToken = JwtServiceToken;
+exports.NotBeforeError = NotBeforeError;
+exports.RequestType = RequestType;
+exports.SecretSchema = SecretSchema;
+exports.SignOptionsSchema = SignOptionsSchema;
+exports.TokenExpiredError = TokenExpiredError;
+exports.VerifyOptionsSchema = VerifyOptionsSchema;
+exports.provideJwtService = provideJwtService;
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/lib/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/options/jwt-service.options.mts","../src/jwt.service.mts","../src/jwt-service.provider.mts","../src/index.mts"],"names":["RequestType","z","InjectionToken","Injectable","syncInject","Logger","jwt"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAIO,IAAK,WAAA,qBAAAA,YAAAA,KAAL;AACL,EAAAA,aAAA,MAAA,CAAA,GAAO,MAAA;AACP,EAAAA,aAAA,QAAA,CAAA,GAAS,QAAA;AAFC,EAAA,OAAAA,YAAAA;AAAA,CAAA,EAAA,WAAA,IAAA,EAAA;AAKL,IAAM,aAAA,GAAgBC,MAAE,IAAA,CAAK;AAAA,EAClC,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA;AACF,CAAC;AAEM,IAAM,eAAA,GAAkBA,MAAE,MAAA,CAAO;AAAA,EACtC,GAAA,EAAK,aAAA,CAAc,EAAA,CAAGA,KAAA,CAAE,QAAQ,CAAA;AAAA,EAChC,GAAA,EAAKA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,GAAA,EAAKA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,MAAMA,KAAA,CAAE,MAAA,EAAO,CAAE,KAAA,GAAQ,QAAA,EAAS;AAAA,EAClC,GAAA,EAAKA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,GAAA,EAAKA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,GAAA,EAAKA,KAAA,CAAE,KAAA,CAAM,CAACA,MAAE,MAAA,EAAO,EAAGA,KAAA,CAAE,KAAA,CAAMA,MAAE,MAAA,EAAQ,CAAC,CAAC,EAAE,QAAA,EAAS;AAAA,EACzD,UAAA,EAAYA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAChC,GAAA,EAAKA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,GAAA,EAAKA,KAAA,CAAE,KAAA,CAAM,CAACA,MAAE,MAAA,EAAO,EAAGA,KAAA,CAAE,KAAA,CAAMA,MAAE,MAAA,EAAQ,CAAC,CAAC,EAAE,QAAA;AAClD,CAAC;AAIM,IAAM,iBAAA,GAAoBA,MAAE,MAAA,CAAO;AAAA,EACxC,SAAA,EAAW,cAAc,QAAA,EAAS;AAAA,EAClC,KAAA,EAAOA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,SAAA,EAAWA,KAAA,CAAE,KAAA,CAAM,CAACA,KAAA,CAAE,MAAA,EAAO,EAAGA,KAAA,CAAE,MAAA,EAAQ,CAAC,CAAA,CAAE,QAAA,EAAS;AAAA,EACtD,SAAA,EAAWA,KAAA,CAAE,KAAA,CAAM,CAACA,KAAA,CAAE,MAAA,EAAO,EAAGA,KAAA,CAAE,MAAA,EAAQ,CAAC,CAAA,CAAE,QAAA,EAAS;AAAA,EACtD,QAAA,EAAUA,MACP,KAAA,CAAM;AAAA,IACLA,MAAE,MAAA,EAAO;AAAA,IACTA,KAAA,CAAE,WAAW,MAAM,CAAA;AAAA,IACnBA,KAAA,CAAE,KAAA,CAAMA,KAAA,CAAE,KAAA,CAAM,CAACA,KAAA,CAAE,MAAA,EAAO,EAAGA,KAAA,CAAE,UAAA,CAAW,MAAM,CAAC,CAAC,CAAC;AAAA,GACpD,EACA,QAAA,EAAS;AAAA,EACZ,OAAA,EAASA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC7B,MAAA,EAAQA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC5B,KAAA,EAAOA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,aAAA,EAAeA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EACpC,WAAA,EAAaA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EAClC,MAAA,EAAQ,gBAAgB,QAAA,EAAS;AAAA,EACjC,QAAA,EAAUA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,qBAAA,EAAuBA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EAC5C,8BAAA,EAAgCA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA;AAC9C,CAAC;AAIM,IAAM,mBAAA,GAAsBA,MAAE,MAAA,CAAO;AAAA,EAC1C,UAAA,EAAY,aAAA,CAAc,KAAA,EAAM,CAAE,QAAA,EAAS;AAAA,EAC3C,QAAA,EAAUA,MACP,KAAA,CAAM;AAAA,IACLA,MAAE,MAAA,EAAO;AAAA,IACTA,KAAA,CAAE,WAAW,MAAM,CAAA;AAAA,IACnBA,KAAA,CAAE,KAAA,CAAMA,KAAA,CAAE,KAAA,CAAM,CAACA,KAAA,CAAE,MAAA,EAAO,EAAGA,KAAA,CAAE,UAAA,CAAW,MAAM,CAAC,CAAC,CAAC;AAAA,GACpD,EACA,QAAA,EAAS;AAAA,EACZ,cAAA,EAAgBA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,cAAA,EAAgBA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,QAAA,EAAUA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EAC/B,MAAA,EAAQA,KAAA,CAAE,KAAA,CAAM,CAACA,MAAE,MAAA,EAAO,EAAGA,KAAA,CAAE,MAAA,EAAO,CAAE,KAAA,EAAO,CAAC,EAAE,QAAA,EAAS;AAAA,EAC3D,gBAAA,EAAkBA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EACvC,eAAA,EAAiBA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EACtC,KAAA,EAAOA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,KAAA,EAAOA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,OAAA,EAASA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC7B,MAAA,EAAQA,KAAA,CAAE,KAAA,CAAM,CAACA,KAAA,CAAE,MAAA,EAAO,EAAGA,KAAA,CAAE,MAAA,EAAQ,CAAC,CAAA,CAAE,QAAA,EAAS;AAAA,EACnD,8BAAA,EAAgCA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA;AAC9C,CAAC;AAIM,IAAM,YAAA,GAAeA,MAAE,KAAA,CAAM;AAAA,EAClCA,MAAE,MAAA,EAAO;AAAA,EACTA,KAAA,CAAE,WAAW,MAAM,CAAA;AAAA,EACnBA,MACG,MAAA,CAAO;AAAA,IACN,IAAA,EAAMA,MAAE,MAAA;AAAO,GAChB,EACA,WAAA,EAAY;AAAA,EACfA,MAAE,MAAA,CAAO;AAAA,IACP,GAAA,EAAKA,KAAA,CAAE,KAAA,CAAM,CAACA,KAAA,CAAE,MAAA,EAAO,EAAGA,KAAA,CAAE,UAAA,CAAW,MAAM,CAAC,CAAC,CAAA;AAAA,IAC/C,UAAA,EAAYA,MAAE,MAAA;AAAO,GACtB;AACH,CAAC;AAIM,IAAM,uBAAA,GAA0BA,MAAE,MAAA,CAAO;AAAA,EAC9C,WAAA,EAAa,kBAAkB,QAAA,EAAS;AAAA,EACxC,MAAA,EAAQA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC5B,SAAA,EAAWA,KAAA,CAAE,KAAA,CAAM,CAACA,KAAA,CAAE,MAAA,EAAO,EAAGA,KAAA,CAAE,UAAA,CAAW,MAAM,CAAC,CAAC,EAAE,QAAA,EAAS;AAAA,EAChE,UAAA,EAAY,aAAa,QAAA,EAAS;AAAA,EAClC,aAAA,EAAe,oBAAoB,QAAA,EAAS;AAAA,EAC5C,mBAAA,EAAqBA,KAAA,CAClB,QAAA,EAAS,CACT,IAAA;AAAA,IACCA,KAAA,CAAE,WAAW,WAAW,CAAA;AAAA,IACxBA,MAAE,GAAA,EAAI;AAAA,IACNA,MAAE,KAAA,CAAM,CAAC,mBAAmB,mBAAmB,CAAC,EAAE,QAAA;AAAS,GAC7D,CACC,OAAA,CAAQA,KAAA,CAAE,KAAA,CAAM,CAAC,YAAA,EAAcA,KAAA,CAAE,OAAA,CAAQ,YAAY,CAAC,CAAC,CAAC,EACxD,QAAA;AACL,CAAC;ACtGM,IAAM,kBAAkBC,mBAAA,CAAe,MAAA;AAAA,EAC5C,MAAA,CAAO,IAAI,YAAY,CAAA;AAAA,EACvB;AACF;AArBA,IAAA,sBAAA,EAAA,KAAA;AAuBA,sBAAA,GAAA,CAACC,eAAA,CAAW;AAAA,EACV,KAAA,EAAO;AACT,CAAC,CAAA,CAAA;AACM,IAAM,WAAA,GAAN,MAAM,WAAA,CAAW;AAAA,EAKtB,WAAA,CAA6B,OAAA,GAA6B,EAAC,EAAG;AAAjC,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAAA,EAAkC;AAAA,EAJ/D,MAAA,GAASC,gBAAWC,WAAA,EAAQ;AAAA,IAC1B,SAAS,WAAA,CAAW;AAAA,GACrB,CAAA;AAAA,EASD,IAAA,CACE,OAAA,EACA,OAAA,GAA0B,EAAC,EACnB;AACR,IAAA,MAAM,cAAc,IAAA,CAAK,eAAA;AAAA,MACvB,EAAE,GAAG,OAAA,EAAQ;AAAA,MACb;AAAA,KACF;AACA,IAAA,MAAM,SAAS,IAAA,CAAK,YAAA;AAAA,MAClB,OAAA;AAAA,MACA,OAAA;AAAA,MACA,YAAA;AAAA,MAAA,MAAA;AAAA,KAEF;AAEA,IAAA,IAAI,kBAAkB,OAAA,EAAS;AAC7B,MAAA,MAAA,CAAO,MAAM,MAAM;AAAA,MAAC,CAAC,CAAA;AACrB,MAAA,IAAA,CAAK,MAAA,CAAO,IAAA;AAAA,QACV;AAAA,OACF;AACA,MAAA,MAAM,IAAI,KAAA,EAAM;AAAA,IAClB;AAEA,IAAA,MAAM,kBAAA,GAAqB,CAAC,QAAA,EAAU,YAAY,CAAA;AAClD,IAAA,MAAM,WAAA,GAAc,MAAA,CAAO,IAAA,CAAK,WAAW,CAAA;AAC3C,IAAA,IACE,OAAO,OAAA,KAAY,QAAA,IACnB,WAAA,CAAY,IAAA,CAAK,CAAC,CAAA,KAAM,CAAC,kBAAA,CAAmB,QAAA,CAAS,CAAC,CAAC,CAAA,EACvD;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,oEAAA,GACE,WAAA,CAAY,IAAA,CAAK,IAAI;AAAA,OACzB;AAAA,IACF;AAEA,IAAA,OAAOC,oBAAA,CAAI,IAAA,CAAK,OAAA,EAAS,MAAA,EAAQ,WAAW,CAAA;AAAA,EAC9C;AAAA,EAOA,SAAA,CACE,OAAA,EACA,OAAA,GAA0B,EAAC,EACV;AACjB,IAAA,MAAM,cAAc,IAAA,CAAK,eAAA;AAAA,MACvB,EAAE,GAAG,OAAA,EAAQ;AAAA,MACb;AAAA,KACF;AACA,IAAA,MAAM,SAAS,IAAA,CAAK,YAAA;AAAA,MAClB,OAAA;AAAA,MACA,OAAA;AAAA,MACA,YAAA;AAAA,MAAA,MAAA;AAAA,KAEF;AAEA,IAAA,MAAM,kBAAA,GAAqB,CAAC,QAAA,EAAU,YAAY,CAAA;AAClD,IAAA,MAAM,WAAA,GAAc,MAAA,CAAO,IAAA,CAAK,WAAW,CAAA;AAC3C,IAAA,IACE,OAAO,OAAA,KAAY,QAAA,IACnB,WAAA,CAAY,IAAA,CAAK,CAAC,CAAA,KAAM,CAAC,kBAAA,CAAmB,QAAA,CAAS,CAAC,CAAC,CAAA,EACvD;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,oEAAA,GACE,WAAA,CAAY,IAAA,CAAK,IAAI;AAAA,OACzB;AAAA,IACF;AAEA,IAAA,OAAO,IAAI,OAAA;AAAA,MAAQ,CAAC,OAAA,EAAS,MAAA,KAC3B,OAAA,CAAQ,OAAA,EAAQ,CACb,IAAA,CAAK,MAAM,MAAM,CAAA,CACjB,IAAA,CAAK,CAAC,IAAA,KAA6B;AAClC,QAAAA,oBAAA,CAAI,IAAA;AAAA,UAAK,OAAA;AAAA,UAAS,IAAA;AAAA,UAAM,WAAA;AAAA,UAAa,CAAC,KAAK,OAAA,KACzC,GAAA,GAAM,OAAO,GAAG,CAAA,GAAI,QAAQ,OAAiB;AAAA,SAC/C;AAAA,MACF,CAAC;AAAA,KACL;AAAA,EACF;AAAA,EAEA,MAAA,CACE,KAAA,EACA,OAAA,GAA4B,EAAC,EAC1B;AACH,IAAA,MAAM,gBAAgB,IAAA,CAAK,eAAA,CAAgB,EAAE,GAAG,OAAA,IAAW,eAAe,CAAA;AAC1E,IAAA,MAAM,SAAS,IAAA,CAAK,YAAA;AAAA,MAClB,KAAA;AAAA,MACA,OAAA;AAAA,MACA,WAAA;AAAA,MAAA,QAAA;AAAA,KAEF;AAEA,IAAA,IAAI,kBAAkB,OAAA,EAAS;AAC7B,MAAA,MAAA,CAAO,MAAM,MAAM;AAAA,MAAC,CAAC,CAAA;AACrB,MAAA,IAAA,CAAK,MAAA,CAAO,IAAA;AAAA,QACV;AAAA,OACF;AACA,MAAA,MAAM,IAAI,KAAA,EAAM;AAAA,IAClB;AAGA,IAAA,OAAOA,oBAAA,CAAI,MAAA,CAAO,KAAA,EAAO,MAAA,EAAQ,aAAa,CAAA;AAAA,EAChD;AAAA,EAEA,WAAA,CACE,KAAA,EACA,OAAA,GAA4B,EAAC,EACjB;AACZ,IAAA,MAAM,gBAAgB,IAAA,CAAK,eAAA,CAAgB,EAAE,GAAG,OAAA,IAAW,eAAe,CAAA;AAC1E,IAAA,MAAM,SAAS,IAAA,CAAK,YAAA;AAAA,MAClB,KAAA;AAAA,MACA,OAAA;AAAA,MACA,WAAA;AAAA,MAAA,QAAA;AAAA,KAEF;AAEA,IAAA,OAAO,IAAI,OAAA;AAAA,MAAQ,CAAC,OAAA,EAAS,MAAA,KAC3B,OAAA,CAAQ,OAAA,EAAQ,CACb,IAAA,CAAK,MAAM,MAAM,CAAA,CACjB,IAAA,CAAK,CAAC,IAAA,KAA6B;AAElC,QAAAA,oBAAA,CAAI,MAAA;AAAA,UAAO,KAAA;AAAA,UAAO,IAAA;AAAA,UAAM,aAAA;AAAA,UAAe,CAAC,KAAK,OAAA,KAC3C,GAAA,GAAM,OAAO,GAAG,CAAA,GAAI,QAAQ,OAAY;AAAA,SAC1C;AAAA,MACF,CAAC,CAAA,CACA,KAAA,CAAM,MAAM;AAAA,KACjB;AAAA,EACF;AAAA,EAEA,MAAA,CAAgB,OAAe,OAAA,EAAgC;AAC7D,IAAA,OAAOA,oBAAA,CAAI,MAAA,CAAO,KAAA,EAAO,OAAO,CAAA;AAAA,EAClC;AAAA,EAEQ,eAAA,CACN,SACA,GAAA,EAC6B;AAC7B,IAAA,OAAO,OAAA,CAAQ,MAAA;AACf,IAAA,IAAI,QAAQ,aAAA,EAAe;AACzB,MAAA,OAAQ,OAAA,CAA2B,UAAA;AAAA,IACrC,CAAA,MAAO;AACL,MAAA,OAAQ,OAAA,CAA6B,SAAA;AAAA,IACvC;AACA,IAAA,OAAO,OAAA,GACH;AAAA,MACE,GAAI,IAAA,CAAK,OAAA,CAAQ,GAAG,KAAK,EAAC;AAAA,MAC1B,GAAG;AAAA,KACL;AAAA;AAAA,MAEA,IAAA,CAAK,QAAQ,GAAG;AAAA,KAAA;AAAA,EACtB;AAAA,EAEQ,YAAA,CACN,KAAA,EACA,OAAA,EACA,GAAA,EACA,iBAAA,EACkD;AAClD,IAAA,MAAM,MAAA,GAAS,IAAA,CAAK,OAAA,CAAQ,mBAAA,GACxB,IAAA,CAAK,OAAA,CAAQ,mBAAA,CAAoB,iBAAA,EAAmB,KAAA,EAAO,OAAO,CAAA,GAClE,OAAA,EAAS,UACT,IAAA,CAAK,OAAA,CAAQ,MAAA,KACZ,GAAA,KAAQ,YAAA,GACJ,OAAA,EAA4B,UAAA,IAAc,IAAA,CAAK,OAAA,CAAQ,UAAA,GACvD,OAAA,EAA8B,SAAA,IAC/B,IAAA,CAAK,OAAA,CAAQ,SAAA,CAAA,IACjB,IAAA,CAAK,QAAQ,GAAG,CAAA;AAEpB,IAAA,OAAO,MAAA;AAAA,EACT;AACF,CAAA;AAvLO,KAAA,GAAA,gBAAA,CAAA,CAAA;AAAM,WAAA,GAAN,0CAHP,sBAAA,EAGa,WAAA,CAAA;AAAN,iBAAA,CAAA,KAAA,EAAA,CAAA,EAAM,WAAA,CAAA;AAAN,IAAM,UAAA,GAAN;ACXA,SAAS,kBACd,MAAA,EAGoE;AACpE,EAAA,IAAI,OAAO,WAAW,UAAA,EAAY;AAChC,IAAA,OAAOJ,mBAAAA,CAAe,OAAA,CAAQ,eAAA,EAAiB,MAAM,CAAA;AAAA,EACvD;AACA,EAAA,OAAOA,mBAAAA,CAAe,KAAA,CAAM,eAAA,EAAiB,MAAM,CAAA;AACrD;;;ACnBO,IAAM,oBAAoBI,oBAAAA,CAAI;AAC9B,IAAM,iBAAiBA,oBAAAA,CAAI;AAC3B,IAAM,oBAAoBA,oBAAAA,CAAI","file":"index.js","sourcesContent":["import type { Secret as JwtSecret } from 'jsonwebtoken'\n\nimport { z } from 'zod'\n\nexport enum RequestType {\n  Sign = 'Sign',\n  Verify = 'Verify',\n}\n\nexport const AlgorithmType = z.enum([\n  'HS256',\n  'HS384',\n  'HS512',\n  'RS256',\n  'RS384',\n  'RS512',\n  'ES256',\n  'ES384',\n  'ES512',\n  'PS256',\n  'PS384',\n  'PS512',\n  'none',\n])\n\nexport const JwtHeaderSchema = z.object({\n  alg: AlgorithmType.or(z.string()),\n  typ: z.string().optional(),\n  cty: z.string().optional(),\n  crit: z.string().array().optional(),\n  kid: z.string().optional(),\n  jku: z.string().optional(),\n  x5u: z.union([z.string(), z.array(z.string())]).optional(),\n  'x5t#S256': z.string().optional(),\n  x5t: z.string().optional(),\n  x5c: z.union([z.string(), z.array(z.string())]).optional(),\n})\n\nexport type JwtHeader = z.infer<typeof JwtHeaderSchema>\n\nexport const SignOptionsSchema = z.object({\n  algorithm: AlgorithmType.optional(),\n  keyid: z.string().optional(),\n  expiresIn: z.union([z.string(), z.number()]).optional(),\n  notBefore: z.union([z.string(), z.number()]).optional(),\n  audience: z\n    .union([\n      z.string(),\n      z.instanceof(RegExp),\n      z.array(z.union([z.string(), z.instanceof(RegExp)])),\n    ])\n    .optional(),\n  subject: z.string().optional(),\n  issuer: z.string().optional(),\n  jwtid: z.string().optional(),\n  mutatePayload: z.boolean().optional(),\n  noTimestamp: z.boolean().optional(),\n  header: JwtHeaderSchema.optional(),\n  encoding: z.string().optional(),\n  allowInsecureKeySizes: z.boolean().optional(),\n  allowInvalidAsymmetricKeyTypes: z.boolean().optional(),\n})\n\nexport type SignOptions = z.infer<typeof SignOptionsSchema>\n\nexport const VerifyOptionsSchema = z.object({\n  algorithms: AlgorithmType.array().optional(),\n  audience: z\n    .union([\n      z.string(),\n      z.instanceof(RegExp),\n      z.array(z.union([z.string(), z.instanceof(RegExp)])),\n    ])\n    .optional(),\n  clockTimestamp: z.number().optional(),\n  clockTolerance: z.number().optional(),\n  complete: z.boolean().optional(),\n  issuer: z.union([z.string(), z.string().array()]).optional(),\n  ignoreExpiration: z.boolean().optional(),\n  ignoreNotBefore: z.boolean().optional(),\n  jwtid: z.string().optional(),\n  nonce: z.string().optional(),\n  subject: z.string().optional(),\n  maxAge: z.union([z.string(), z.number()]).optional(),\n  allowInvalidAsymmetricKeyTypes: z.boolean().optional(),\n})\n\nexport type VerifyOptions = z.infer<typeof VerifyOptionsSchema>\n\nexport const SecretSchema = z.union([\n  z.string(),\n  z.instanceof(Buffer),\n  z\n    .object({\n      type: z.string(),\n    })\n    .passthrough(),\n  z.object({\n    key: z.union([z.string(), z.instanceof(Buffer)]),\n    passphrase: z.string(),\n  }),\n])\n\nexport type Secret = z.infer<typeof SecretSchema>\n\nexport const JwtServiceOptionsSchema = z.object({\n  signOptions: SignOptionsSchema.optional(),\n  secret: z.string().optional(),\n  publicKey: z.union([z.string(), z.instanceof(Buffer)]).optional(),\n  privateKey: SecretSchema.optional(),\n  verifyOptions: VerifyOptionsSchema.optional(),\n  secretOrKeyProvider: z\n    .function()\n    .args(\n      z.nativeEnum(RequestType),\n      z.any(),\n      z.union([SignOptionsSchema, VerifyOptionsSchema]).optional(),\n    )\n    .returns(z.union([SecretSchema, z.promise(SecretSchema)]))\n    .optional(),\n})\n\nexport type JwtServiceOptions = z.infer<typeof JwtServiceOptionsSchema>\n\nexport interface JwtSignOptions extends SignOptions {\n  secret?: string | Buffer\n  privateKey?: Secret\n}\n\nexport interface JwtVerifyOptions extends VerifyOptions {\n  secret?: string | Buffer\n  publicKey?: string | Buffer\n}\n\nexport type GetSecretKeyResult = string | Buffer | JwtSecret\n","import { Injectable, InjectionToken, Logger, syncInject } from '@navios/core'\n\nimport jwt from 'jsonwebtoken'\n\nimport type {\n  GetSecretKeyResult,\n  JwtServiceOptions,\n  JwtSignOptions,\n  JwtVerifyOptions,\n  SignOptions,\n  VerifyOptions,\n} from './options/jwt-service.options.mjs'\n\nimport {\n  JwtServiceOptionsSchema,\n  RequestType,\n} from './options/jwt-service.options.mjs'\n\nexport const JwtServiceToken = InjectionToken.create(\n  Symbol.for('JwtService'),\n  JwtServiceOptionsSchema,\n)\n\n@Injectable({\n  token: JwtServiceToken,\n})\nexport class JwtService {\n  logger = syncInject(Logger, {\n    context: JwtService.name,\n  })\n\n  constructor(private readonly options: JwtServiceOptions = {}) {}\n\n  sign(\n    payload: string,\n    options?: Omit<JwtSignOptions, keyof SignOptions>,\n  ): string\n  sign(payload: Buffer | object, options?: JwtSignOptions): string\n  sign(\n    payload: string | Buffer | object,\n    options: JwtSignOptions = {},\n  ): string {\n    const signOptions = this.mergeJwtOptions(\n      { ...options },\n      'signOptions',\n    ) as jwt.SignOptions\n    const secret = this.getSecretKey(\n      payload,\n      options,\n      'privateKey',\n      RequestType.Sign,\n    )\n\n    if (secret instanceof Promise) {\n      secret.catch(() => {}) // suppress rejection from async provider\n      this.logger.warn(\n        'For async version of \"secretOrKeyProvider\", please use \"signAsync\".',\n      )\n      throw new Error()\n    }\n\n    const allowedSignOptKeys = ['secret', 'privateKey']\n    const signOptKeys = Object.keys(signOptions)\n    if (\n      typeof payload === 'string' &&\n      signOptKeys.some((k) => !allowedSignOptKeys.includes(k))\n    ) {\n      throw new Error(\n        'Payload as string is not allowed with the following sign options: ' +\n          signOptKeys.join(', '),\n      )\n    }\n\n    return jwt.sign(payload, secret, signOptions)\n  }\n\n  signAsync(\n    payload: string,\n    options?: Omit<JwtSignOptions, keyof jwt.SignOptions>,\n  ): Promise<string>\n  signAsync(payload: Buffer | object, options?: JwtSignOptions): Promise<string>\n  signAsync(\n    payload: string | Buffer | object,\n    options: JwtSignOptions = {},\n  ): Promise<string> {\n    const signOptions = this.mergeJwtOptions(\n      { ...options },\n      'signOptions',\n    ) as jwt.SignOptions\n    const secret = this.getSecretKey(\n      payload,\n      options,\n      'privateKey',\n      RequestType.Sign,\n    )\n\n    const allowedSignOptKeys = ['secret', 'privateKey']\n    const signOptKeys = Object.keys(signOptions)\n    if (\n      typeof payload === 'string' &&\n      signOptKeys.some((k) => !allowedSignOptKeys.includes(k))\n    ) {\n      throw new Error(\n        'Payload as string is not allowed with the following sign options: ' +\n          signOptKeys.join(', '),\n      )\n    }\n\n    return new Promise((resolve, reject) =>\n      Promise.resolve()\n        .then(() => secret)\n        .then((scrt: GetSecretKeyResult) => {\n          jwt.sign(payload, scrt, signOptions, (err, encoded) =>\n            err ? reject(err) : resolve(encoded as string),\n          )\n        }),\n    )\n  }\n\n  verify<T extends object = any>(\n    token: string,\n    options: JwtVerifyOptions = {},\n  ): T {\n    const verifyOptions = this.mergeJwtOptions({ ...options }, 'verifyOptions')\n    const secret = this.getSecretKey(\n      token,\n      options,\n      'publicKey',\n      RequestType.Verify,\n    )\n\n    if (secret instanceof Promise) {\n      secret.catch(() => {}) // suppress rejection from async provider\n      this.logger.warn(\n        'For async version of \"secretOrKeyProvider\", please use \"verifyAsync\".',\n      )\n      throw new Error()\n    }\n\n    // @ts-expect-error We check it\n    return jwt.verify(token, secret, verifyOptions) as unknown as T\n  }\n\n  verifyAsync<T extends object = any>(\n    token: string,\n    options: JwtVerifyOptions = {},\n  ): Promise<T> {\n    const verifyOptions = this.mergeJwtOptions({ ...options }, 'verifyOptions')\n    const secret = this.getSecretKey(\n      token,\n      options,\n      'publicKey',\n      RequestType.Verify,\n    )\n\n    return new Promise((resolve, reject) =>\n      Promise.resolve()\n        .then(() => secret)\n        .then((scrt: GetSecretKeyResult) => {\n          // @ts-expect-error We check it\n          jwt.verify(token, scrt, verifyOptions, (err, decoded) =>\n            err ? reject(err) : resolve(decoded as T),\n          )\n        })\n        .catch(reject),\n    )\n  }\n\n  decode<T = any>(token: string, options?: jwt.DecodeOptions): T {\n    return jwt.decode(token, options) as T\n  }\n\n  private mergeJwtOptions(\n    options: JwtVerifyOptions | JwtSignOptions,\n    key: 'verifyOptions' | 'signOptions',\n  ): VerifyOptions | SignOptions {\n    delete options.secret\n    if (key === 'signOptions') {\n      delete (options as JwtSignOptions).privateKey\n    } else {\n      delete (options as JwtVerifyOptions).publicKey\n    }\n    return options\n      ? {\n          ...(this.options[key] || {}),\n          ...options,\n        }\n      : // @ts-expect-error We check it\n        this.options[key]\n  }\n\n  private getSecretKey(\n    token: string | object | Buffer,\n    options: JwtVerifyOptions | JwtSignOptions,\n    key: 'publicKey' | 'privateKey',\n    secretRequestType: RequestType,\n  ): GetSecretKeyResult | Promise<GetSecretKeyResult> {\n    const secret = this.options.secretOrKeyProvider\n      ? this.options.secretOrKeyProvider(secretRequestType, token, options)\n      : options?.secret ||\n        this.options.secret ||\n        (key === 'privateKey'\n          ? (options as JwtSignOptions)?.privateKey || this.options.privateKey\n          : (options as JwtVerifyOptions)?.publicKey ||\n            this.options.publicKey) ||\n        this.options[key]\n\n    return secret as GetSecretKeyResult\n  }\n}\n","import type { BoundInjectionToken, FactoryInjectionToken } from '@navios/core'\n\nimport { InjectionToken } from '@navios/core'\n\nimport type { JwtServiceOptions } from './options/jwt-service.options.mjs'\n\nimport { JwtService, JwtServiceToken } from './jwt.service.mjs'\nimport { JwtServiceOptionsSchema } from './options/jwt-service.options.mjs'\n\nexport function provideJwtService(\n  config: JwtServiceOptions,\n): BoundInjectionToken<JwtService, typeof JwtServiceOptionsSchema>\nexport function provideJwtService(\n  config: () => Promise<JwtServiceOptions>,\n): FactoryInjectionToken<JwtService, typeof JwtServiceOptionsSchema>\nexport function provideJwtService(\n  config: JwtServiceOptions | (() => Promise<JwtServiceOptions>),\n):\n  | BoundInjectionToken<JwtService, typeof JwtServiceOptionsSchema>\n  | FactoryInjectionToken<JwtService, typeof JwtServiceOptionsSchema> {\n  if (typeof config === 'function') {\n    return InjectionToken.factory(JwtServiceToken, config)\n  }\n  return InjectionToken.bound(JwtServiceToken, config)\n}\n","import jwt from 'jsonwebtoken'\n\nexport * from './options/jwt-service.options.mjs'\nexport * from './jwt.service.mjs'\nexport * from './jwt-service.provider.mjs'\nexport const TokenExpiredError = jwt.TokenExpiredError\nexport const NotBeforeError = jwt.NotBeforeError\nexport const JsonWebTokenError = jwt.JsonWebTokenError\n"]}

package/{dist → lib}/index.mjs

@@ -1,3 +1,7 @@
+import jwt from 'jsonwebtoken';
+import { z } from 'zod';
+import { InjectionToken, Injectable, syncInject, Logger } from '@navios/core';
+
 var __create = Object.create;
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
@@ -7,50 +11,28 @@ var __typeError = (msg) => {
 };
 var __defNormalProp = (obj, key, value) => key in obj ? __defProp(obj, key, { enumerable: true, configurable: true, writable: true, value }) : obj[key] = value;
 var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
-var __decoratorStart = (base) => [, , , __create((base == null ? void 0 : base[__knownSymbol("metadata")]) ?? null)];
+var __decoratorStart = (base) => [, , , __create(null)];
 var __decoratorStrings = ["class", "method", "getter", "setter", "accessor", "field", "value", "get", "set"];
 var __expectFn = (fn) => fn !== void 0 && typeof fn !== "function" ? __typeError("Function expected") : fn;
 var __decoratorContext = (kind, name, done, metadata, fns) => ({ kind: __decoratorStrings[kind], name, metadata, addInitializer: (fn) => done._ ? __typeError("Already initialized") : fns.push(__expectFn(fn || null)) });
 var __decoratorMetadata = (array, target) => __defNormalProp(target, __knownSymbol("metadata"), array[3]);
 var __runInitializers = (array, flags, self, value) => {
-  for (var i = 0, fns = array[flags >> 1], n = fns && fns.length; i < n; i++) flags & 1 ? fns[i].call(self) : value = fns[i].call(self, value);
+  for (var i = 0, fns = array[flags >> 1], n = fns && fns.length; i < n; i++) fns[i].call(self) ;
   return value;
 };
 var __decorateElement = (array, flags, name, decorators, target, extra) => {
-  var fn, it, done, ctx, access, k = flags & 7, s = !!(flags & 8), p = !!(flags & 16);
-  var j = k > 3 ? array.length + 1 : k ? s ? 1 : 2 : 0, key = __decoratorStrings[k + 5];
-  var initializers = k > 3 && (array[j - 1] = []), extraInitializers = array[j] || (array[j] = []);
-  var desc = k && (!p && !s && (target = target.prototype), k < 5 && (k > 3 || !p) && __getOwnPropDesc(k < 4 ? target : { get [name]() {
-    return __privateGet(this, extra);
-  }, set [name](x) {
-    return __privateSet(this, extra, x);
-  } }, name));
-  k ? p && k < 4 && __name(extra, (k > 2 ? "set " : k > 1 ? "get " : "") + name) : __name(target, name);
+  var it, done, ctx, k = flags & 7, p = false;
+  var j = 0;
+  var extraInitializers = array[j] || (array[j] = []);
+  var desc = k && ((target = target.prototype), k < 5 && (k > 3 || !p) && __getOwnPropDesc(target , name));
+  __name(target, name);
   for (var i = decorators.length - 1; i >= 0; i--) {
     ctx = __decoratorContext(k, name, done = {}, array[3], extraInitializers);
-    if (k) {
-      ctx.static = s, ctx.private = p, access = ctx.access = { has: p ? (x) => __privateIn(target, x) : (x) => name in x };
-      if (k ^ 3) access.get = p ? (x) => (k ^ 1 ? __privateGet : __privateMethod)(x, target, k ^ 4 ? extra : desc.get) : (x) => x[name];
-      if (k > 2) access.set = p ? (x, y) => __privateSet(x, target, y, k ^ 4 ? extra : desc.set) : (x, y) => x[name] = y;
-    }
-    it = (0, decorators[i])(k ? k < 4 ? p ? extra : desc[key] : k > 4 ? void 0 : { get: desc.get, set: desc.set } : target, ctx), done._ = 1;
-    if (k ^ 4 || it === void 0) __expectFn(it) && (k > 4 ? initializers.unshift(it) : k ? p ? extra = it : desc[key] = it : target = it);
-    else if (typeof it !== "object" || it === null) __typeError("Object expected");
-    else __expectFn(fn = it.get) && (desc.get = fn), __expectFn(fn = it.set) && (desc.set = fn), __expectFn(fn = it.init) && initializers.unshift(fn);
+    it = (0, decorators[i])(target, ctx), done._ = 1;
+    __expectFn(it) && (target = it);
   }
-  return k || __decoratorMetadata(array, target), desc && __defProp(target, name, desc), p ? k ^ 4 ? extra : desc : target;
+  return __decoratorMetadata(array, target), desc && __defProp(target, name, desc), p ? k ^ 4 ? extra : desc : target;
 };
-var __accessCheck = (obj, member, msg) => member.has(obj) || __typeError("Cannot " + msg);
-var __privateIn = (member, obj) => Object(obj) !== obj ? __typeError('Cannot use the "in" operator on this value') : member.has(obj);
-var __privateGet = (obj, member, getter) => (__accessCheck(obj, member, "read from private field"), getter ? getter.call(obj) : member.get(obj));
-var __privateSet = (obj, member, value, setter) => (__accessCheck(obj, member, "write to private field"), setter ? setter.call(obj, value) : member.set(obj, value), value);
-var __privateMethod = (obj, member, method) => (__accessCheck(obj, member, "access private method"), method);
-
-// packages/jwt/src/index.mts
-import jwt2 from "jsonwebtoken";
-
-// packages/jwt/src/options/jwt-service.options.mts
-import { z } from "zod";
 var RequestType = /* @__PURE__ */ ((RequestType2) => {
   RequestType2["Sign"] = "Sign";
   RequestType2["Verify"] = "Verify";
@@ -88,7 +70,11 @@ var SignOptionsSchema = z.object({
   keyid: z.string().optional(),
   expiresIn: z.union([z.string(), z.number()]).optional(),
   notBefore: z.union([z.string(), z.number()]).optional(),
-  audience: z.union([z.string(), z.string().array()]).optional(),
+  audience: z.union([
+    z.string(),
+    z.instanceof(RegExp),
+    z.array(z.union([z.string(), z.instanceof(RegExp)]))
+  ]).optional(),
   subject: z.string().optional(),
   issuer: z.string().optional(),
   jwtid: z.string().optional(),
@@ -101,7 +87,11 @@ var SignOptionsSchema = z.object({
 });
 var VerifyOptionsSchema = z.object({
   algorithms: AlgorithmType.array().optional(),
-  audience: z.union([z.string(), z.instanceof(RegExp), z.string().array()]).optional(),
+  audience: z.union([
+    z.string(),
+    z.instanceof(RegExp),
+    z.array(z.union([z.string(), z.instanceof(RegExp)]))
+  ]).optional(),
   clockTimestamp: z.number().optional(),
   clockTolerance: z.number().optional(),
   complete: z.boolean().optional(),
@@ -137,12 +127,14 @@ var JwtServiceOptionsSchema = z.object({
     z.union([SignOptionsSchema, VerifyOptionsSchema]).optional()
   ).returns(z.union([SecretSchema, z.promise(SecretSchema)])).optional()
 });
-
-// packages/jwt/src/jwt.service.mts
-import { Injectable, Logger, syncInject } from "@navios/core";
-import jwt from "jsonwebtoken";
+var JwtServiceToken = InjectionToken.create(
+  Symbol.for("JwtService"),
+  JwtServiceOptionsSchema
+);
 var _JwtService_decorators, _init;
-_JwtService_decorators = [Injectable()];
+_JwtService_decorators = [Injectable({
+  token: JwtServiceToken
+})];
 var _JwtService = class _JwtService {
   constructor(options = {}) {
     this.options = options;
@@ -263,39 +255,14 @@ var _JwtService = class _JwtService {
     );
   }
   getSecretKey(token, options, key, secretRequestType) {
-    const secret = this.options.secretOrKeyProvider ? this.options.secretOrKeyProvider(secretRequestType, token, options) : (options == null ? void 0 : options.secret) || this.options.secret || (key === "privateKey" ? (options == null ? void 0 : options.privateKey) || this.options.privateKey : (options == null ? void 0 : options.publicKey) || this.options.publicKey) || this.options[key];
+    const secret = this.options.secretOrKeyProvider ? this.options.secretOrKeyProvider(secretRequestType, token, options) : options?.secret || this.options.secret || (key === "privateKey" ? options?.privateKey || this.options.privateKey : options?.publicKey || this.options.publicKey) || this.options[key];
     return secret;
   }
 };
-_init = __decoratorStart(null);
+_init = __decoratorStart();
 _JwtService = __decorateElement(_init, 0, "JwtService", _JwtService_decorators, _JwtService);
 __runInitializers(_init, 1, _JwtService);
 var JwtService = _JwtService;
-
-// packages/jwt/src/jwt-service.provider.mts
-import {
-  Injectable as Injectable2,
-  InjectableType,
-  InjectionToken,
-  resolveService
-} from "@navios/core";
-var JwtServiceToken = InjectionToken.create(
-  JwtService,
-  JwtServiceOptionsSchema
-);
-var _JwtServiceFactory_decorators, _init2;
-_JwtServiceFactory_decorators = [Injectable2({
-  token: JwtServiceToken,
-  type: InjectableType.Factory
-})];
-var JwtServiceFactory = class {
-  create(ctx, args) {
-    return resolveService(ctx, JwtService, [args]);
-  }
-};
-_init2 = __decoratorStart(null);
-JwtServiceFactory = __decorateElement(_init2, 0, "JwtServiceFactory", _JwtServiceFactory_decorators, JwtServiceFactory);
-__runInitializers(_init2, 1, JwtServiceFactory);
 function provideJwtService(config) {
   if (typeof config === "function") {
     return InjectionToken.factory(JwtServiceToken, config);
@@ -303,24 +270,11 @@ function provideJwtService(config) {
   return InjectionToken.bound(JwtServiceToken, config);
 }
 
-// packages/jwt/src/index.mts
-var TokenExpiredError = jwt2.TokenExpiredError;
-var NotBeforeError = jwt2.NotBeforeError;
-var JsonWebTokenError = jwt2.JsonWebTokenError;
-export {
-  AlgorithmType,
-  JsonWebTokenError,
-  JwtHeaderSchema,
-  JwtService,
-  JwtServiceFactory,
-  JwtServiceOptionsSchema,
-  JwtServiceToken,
-  NotBeforeError,
-  RequestType,
-  SecretSchema,
-  SignOptionsSchema,
-  TokenExpiredError,
-  VerifyOptionsSchema,
-  provideJwtService
-};
+// src/index.mts
+var TokenExpiredError = jwt.TokenExpiredError;
+var NotBeforeError = jwt.NotBeforeError;
+var JsonWebTokenError = jwt.JsonWebTokenError;
+
+export { AlgorithmType, JsonWebTokenError, JwtHeaderSchema, JwtService, JwtServiceOptionsSchema, JwtServiceToken, NotBeforeError, RequestType, SecretSchema, SignOptionsSchema, TokenExpiredError, VerifyOptionsSchema, provideJwtService };
+//# sourceMappingURL=index.mjs.map
 //# sourceMappingURL=index.mjs.map

package/lib/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/options/jwt-service.options.mts","../src/jwt.service.mts","../src/jwt-service.provider.mts","../src/index.mts"],"names":["RequestType","InjectionToken","jwt"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAIO,IAAK,WAAA,qBAAAA,YAAAA,KAAL;AACL,EAAAA,aAAA,MAAA,CAAA,GAAO,MAAA;AACP,EAAAA,aAAA,QAAA,CAAA,GAAS,QAAA;AAFC,EAAA,OAAAA,YAAAA;AAAA,CAAA,EAAA,WAAA,IAAA,EAAA;AAKL,IAAM,aAAA,GAAgB,EAAE,IAAA,CAAK;AAAA,EAClC,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA,OAAA;AAAA,EACA;AACF,CAAC;AAEM,IAAM,eAAA,GAAkB,EAAE,MAAA,CAAO;AAAA,EACtC,GAAA,EAAK,aAAA,CAAc,EAAA,CAAG,CAAA,CAAE,QAAQ,CAAA;AAAA,EAChC,GAAA,EAAK,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,GAAA,EAAK,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,MAAM,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,GAAQ,QAAA,EAAS;AAAA,EAClC,GAAA,EAAK,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,GAAA,EAAK,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,GAAA,EAAK,CAAA,CAAE,KAAA,CAAM,CAAC,EAAE,MAAA,EAAO,EAAG,CAAA,CAAE,KAAA,CAAM,EAAE,MAAA,EAAQ,CAAC,CAAC,EAAE,QAAA,EAAS;AAAA,EACzD,UAAA,EAAY,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAChC,GAAA,EAAK,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,GAAA,EAAK,CAAA,CAAE,KAAA,CAAM,CAAC,EAAE,MAAA,EAAO,EAAG,CAAA,CAAE,KAAA,CAAM,EAAE,MAAA,EAAQ,CAAC,CAAC,EAAE,QAAA;AAClD,CAAC;AAIM,IAAM,iBAAA,GAAoB,EAAE,MAAA,CAAO;AAAA,EACxC,SAAA,EAAW,cAAc,QAAA,EAAS;AAAA,EAClC,KAAA,EAAO,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,SAAA,EAAW,CAAA,CAAE,KAAA,CAAM,CAAC,CAAA,CAAE,MAAA,EAAO,EAAG,CAAA,CAAE,MAAA,EAAQ,CAAC,CAAA,CAAE,QAAA,EAAS;AAAA,EACtD,SAAA,EAAW,CAAA,CAAE,KAAA,CAAM,CAAC,CAAA,CAAE,MAAA,EAAO,EAAG,CAAA,CAAE,MAAA,EAAQ,CAAC,CAAA,CAAE,QAAA,EAAS;AAAA,EACtD,QAAA,EAAU,EACP,KAAA,CAAM;AAAA,IACL,EAAE,MAAA,EAAO;AAAA,IACT,CAAA,CAAE,WAAW,MAAM,CAAA;AAAA,IACnB,CAAA,CAAE,KAAA,CAAM,CAAA,CAAE,KAAA,CAAM,CAAC,CAAA,CAAE,MAAA,EAAO,EAAG,CAAA,CAAE,UAAA,CAAW,MAAM,CAAC,CAAC,CAAC;AAAA,GACpD,EACA,QAAA,EAAS;AAAA,EACZ,OAAA,EAAS,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC7B,MAAA,EAAQ,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC5B,KAAA,EAAO,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,aAAA,EAAe,CAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EACpC,WAAA,EAAa,CAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EAClC,MAAA,EAAQ,gBAAgB,QAAA,EAAS;AAAA,EACjC,QAAA,EAAU,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,qBAAA,EAAuB,CAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EAC5C,8BAAA,EAAgC,CAAA,CAAE,OAAA,EAAQ,CAAE,QAAA;AAC9C,CAAC;AAIM,IAAM,mBAAA,GAAsB,EAAE,MAAA,CAAO;AAAA,EAC1C,UAAA,EAAY,aAAA,CAAc,KAAA,EAAM,CAAE,QAAA,EAAS;AAAA,EAC3C,QAAA,EAAU,EACP,KAAA,CAAM;AAAA,IACL,EAAE,MAAA,EAAO;AAAA,IACT,CAAA,CAAE,WAAW,MAAM,CAAA;AAAA,IACnB,CAAA,CAAE,KAAA,CAAM,CAAA,CAAE,KAAA,CAAM,CAAC,CAAA,CAAE,MAAA,EAAO,EAAG,CAAA,CAAE,UAAA,CAAW,MAAM,CAAC,CAAC,CAAC;AAAA,GACpD,EACA,QAAA,EAAS;AAAA,EACZ,cAAA,EAAgB,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,cAAA,EAAgB,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,QAAA,EAAU,CAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EAC/B,MAAA,EAAQ,CAAA,CAAE,KAAA,CAAM,CAAC,EAAE,MAAA,EAAO,EAAG,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,EAAO,CAAC,EAAE,QAAA,EAAS;AAAA,EAC3D,gBAAA,EAAkB,CAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EACvC,eAAA,EAAiB,CAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EACtC,KAAA,EAAO,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,KAAA,EAAO,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,OAAA,EAAS,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC7B,MAAA,EAAQ,CAAA,CAAE,KAAA,CAAM,CAAC,CAAA,CAAE,MAAA,EAAO,EAAG,CAAA,CAAE,MAAA,EAAQ,CAAC,CAAA,CAAE,QAAA,EAAS;AAAA,EACnD,8BAAA,EAAgC,CAAA,CAAE,OAAA,EAAQ,CAAE,QAAA;AAC9C,CAAC;AAIM,IAAM,YAAA,GAAe,EAAE,KAAA,CAAM;AAAA,EAClC,EAAE,MAAA,EAAO;AAAA,EACT,CAAA,CAAE,WAAW,MAAM,CAAA;AAAA,EACnB,EACG,MAAA,CAAO;AAAA,IACN,IAAA,EAAM,EAAE,MAAA;AAAO,GAChB,EACA,WAAA,EAAY;AAAA,EACf,EAAE,MAAA,CAAO;AAAA,IACP,GAAA,EAAK,CAAA,CAAE,KAAA,CAAM,CAAC,CAAA,CAAE,MAAA,EAAO,EAAG,CAAA,CAAE,UAAA,CAAW,MAAM,CAAC,CAAC,CAAA;AAAA,IAC/C,UAAA,EAAY,EAAE,MAAA;AAAO,GACtB;AACH,CAAC;AAIM,IAAM,uBAAA,GAA0B,EAAE,MAAA,CAAO;AAAA,EAC9C,WAAA,EAAa,kBAAkB,QAAA,EAAS;AAAA,EACxC,MAAA,EAAQ,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC5B,SAAA,EAAW,CAAA,CAAE,KAAA,CAAM,CAAC,CAAA,CAAE,MAAA,EAAO,EAAG,CAAA,CAAE,UAAA,CAAW,MAAM,CAAC,CAAC,EAAE,QAAA,EAAS;AAAA,EAChE,UAAA,EAAY,aAAa,QAAA,EAAS;AAAA,EAClC,aAAA,EAAe,oBAAoB,QAAA,EAAS;AAAA,EAC5C,mBAAA,EAAqB,CAAA,CAClB,QAAA,EAAS,CACT,IAAA;AAAA,IACC,CAAA,CAAE,WAAW,WAAW,CAAA;AAAA,IACxB,EAAE,GAAA,EAAI;AAAA,IACN,EAAE,KAAA,CAAM,CAAC,mBAAmB,mBAAmB,CAAC,EAAE,QAAA;AAAS,GAC7D,CACC,OAAA,CAAQ,CAAA,CAAE,KAAA,CAAM,CAAC,YAAA,EAAc,CAAA,CAAE,OAAA,CAAQ,YAAY,CAAC,CAAC,CAAC,EACxD,QAAA;AACL,CAAC;ACtGM,IAAM,kBAAkB,cAAA,CAAe,MAAA;AAAA,EAC5C,MAAA,CAAO,IAAI,YAAY,CAAA;AAAA,EACvB;AACF;AArBA,IAAA,sBAAA,EAAA,KAAA;AAuBA,sBAAA,GAAA,CAAC,UAAA,CAAW;AAAA,EACV,KAAA,EAAO;AACT,CAAC,CAAA,CAAA;AACM,IAAM,WAAA,GAAN,MAAM,WAAA,CAAW;AAAA,EAKtB,WAAA,CAA6B,OAAA,GAA6B,EAAC,EAAG;AAAjC,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAAA,EAAkC;AAAA,EAJ/D,MAAA,GAAS,WAAW,MAAA,EAAQ;AAAA,IAC1B,SAAS,WAAA,CAAW;AAAA,GACrB,CAAA;AAAA,EASD,IAAA,CACE,OAAA,EACA,OAAA,GAA0B,EAAC,EACnB;AACR,IAAA,MAAM,cAAc,IAAA,CAAK,eAAA;AAAA,MACvB,EAAE,GAAG,OAAA,EAAQ;AAAA,MACb;AAAA,KACF;AACA,IAAA,MAAM,SAAS,IAAA,CAAK,YAAA;AAAA,MAClB,OAAA;AAAA,MACA,OAAA;AAAA,MACA,YAAA;AAAA,MAAA,MAAA;AAAA,KAEF;AAEA,IAAA,IAAI,kBAAkB,OAAA,EAAS;AAC7B,MAAA,MAAA,CAAO,MAAM,MAAM;AAAA,MAAC,CAAC,CAAA;AACrB,MAAA,IAAA,CAAK,MAAA,CAAO,IAAA;AAAA,QACV;AAAA,OACF;AACA,MAAA,MAAM,IAAI,KAAA,EAAM;AAAA,IAClB;AAEA,IAAA,MAAM,kBAAA,GAAqB,CAAC,QAAA,EAAU,YAAY,CAAA;AAClD,IAAA,MAAM,WAAA,GAAc,MAAA,CAAO,IAAA,CAAK,WAAW,CAAA;AAC3C,IAAA,IACE,OAAO,OAAA,KAAY,QAAA,IACnB,WAAA,CAAY,IAAA,CAAK,CAAC,CAAA,KAAM,CAAC,kBAAA,CAAmB,QAAA,CAAS,CAAC,CAAC,CAAA,EACvD;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,oEAAA,GACE,WAAA,CAAY,IAAA,CAAK,IAAI;AAAA,OACzB;AAAA,IACF;AAEA,IAAA,OAAO,GAAA,CAAI,IAAA,CAAK,OAAA,EAAS,MAAA,EAAQ,WAAW,CAAA;AAAA,EAC9C;AAAA,EAOA,SAAA,CACE,OAAA,EACA,OAAA,GAA0B,EAAC,EACV;AACjB,IAAA,MAAM,cAAc,IAAA,CAAK,eAAA;AAAA,MACvB,EAAE,GAAG,OAAA,EAAQ;AAAA,MACb;AAAA,KACF;AACA,IAAA,MAAM,SAAS,IAAA,CAAK,YAAA;AAAA,MAClB,OAAA;AAAA,MACA,OAAA;AAAA,MACA,YAAA;AAAA,MAAA,MAAA;AAAA,KAEF;AAEA,IAAA,MAAM,kBAAA,GAAqB,CAAC,QAAA,EAAU,YAAY,CAAA;AAClD,IAAA,MAAM,WAAA,GAAc,MAAA,CAAO,IAAA,CAAK,WAAW,CAAA;AAC3C,IAAA,IACE,OAAO,OAAA,KAAY,QAAA,IACnB,WAAA,CAAY,IAAA,CAAK,CAAC,CAAA,KAAM,CAAC,kBAAA,CAAmB,QAAA,CAAS,CAAC,CAAC,CAAA,EACvD;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,oEAAA,GACE,WAAA,CAAY,IAAA,CAAK,IAAI;AAAA,OACzB;AAAA,IACF;AAEA,IAAA,OAAO,IAAI,OAAA;AAAA,MAAQ,CAAC,OAAA,EAAS,MAAA,KAC3B,OAAA,CAAQ,OAAA,EAAQ,CACb,IAAA,CAAK,MAAM,MAAM,CAAA,CACjB,IAAA,CAAK,CAAC,IAAA,KAA6B;AAClC,QAAA,GAAA,CAAI,IAAA;AAAA,UAAK,OAAA;AAAA,UAAS,IAAA;AAAA,UAAM,WAAA;AAAA,UAAa,CAAC,KAAK,OAAA,KACzC,GAAA,GAAM,OAAO,GAAG,CAAA,GAAI,QAAQ,OAAiB;AAAA,SAC/C;AAAA,MACF,CAAC;AAAA,KACL;AAAA,EACF;AAAA,EAEA,MAAA,CACE,KAAA,EACA,OAAA,GAA4B,EAAC,EAC1B;AACH,IAAA,MAAM,gBAAgB,IAAA,CAAK,eAAA,CAAgB,EAAE,GAAG,OAAA,IAAW,eAAe,CAAA;AAC1E,IAAA,MAAM,SAAS,IAAA,CAAK,YAAA;AAAA,MAClB,KAAA;AAAA,MACA,OAAA;AAAA,MACA,WAAA;AAAA,MAAA,QAAA;AAAA,KAEF;AAEA,IAAA,IAAI,kBAAkB,OAAA,EAAS;AAC7B,MAAA,MAAA,CAAO,MAAM,MAAM;AAAA,MAAC,CAAC,CAAA;AACrB,MAAA,IAAA,CAAK,MAAA,CAAO,IAAA;AAAA,QACV;AAAA,OACF;AACA,MAAA,MAAM,IAAI,KAAA,EAAM;AAAA,IAClB;AAGA,IAAA,OAAO,GAAA,CAAI,MAAA,CAAO,KAAA,EAAO,MAAA,EAAQ,aAAa,CAAA;AAAA,EAChD;AAAA,EAEA,WAAA,CACE,KAAA,EACA,OAAA,GAA4B,EAAC,EACjB;AACZ,IAAA,MAAM,gBAAgB,IAAA,CAAK,eAAA,CAAgB,EAAE,GAAG,OAAA,IAAW,eAAe,CAAA;AAC1E,IAAA,MAAM,SAAS,IAAA,CAAK,YAAA;AAAA,MAClB,KAAA;AAAA,MACA,OAAA;AAAA,MACA,WAAA;AAAA,MAAA,QAAA;AAAA,KAEF;AAEA,IAAA,OAAO,IAAI,OAAA;AAAA,MAAQ,CAAC,OAAA,EAAS,MAAA,KAC3B,OAAA,CAAQ,OAAA,EAAQ,CACb,IAAA,CAAK,MAAM,MAAM,CAAA,CACjB,IAAA,CAAK,CAAC,IAAA,KAA6B;AAElC,QAAA,GAAA,CAAI,MAAA;AAAA,UAAO,KAAA;AAAA,UAAO,IAAA;AAAA,UAAM,aAAA;AAAA,UAAe,CAAC,KAAK,OAAA,KAC3C,GAAA,GAAM,OAAO,GAAG,CAAA,GAAI,QAAQ,OAAY;AAAA,SAC1C;AAAA,MACF,CAAC,CAAA,CACA,KAAA,CAAM,MAAM;AAAA,KACjB;AAAA,EACF;AAAA,EAEA,MAAA,CAAgB,OAAe,OAAA,EAAgC;AAC7D,IAAA,OAAO,GAAA,CAAI,MAAA,CAAO,KAAA,EAAO,OAAO,CAAA;AAAA,EAClC;AAAA,EAEQ,eAAA,CACN,SACA,GAAA,EAC6B;AAC7B,IAAA,OAAO,OAAA,CAAQ,MAAA;AACf,IAAA,IAAI,QAAQ,aAAA,EAAe;AACzB,MAAA,OAAQ,OAAA,CAA2B,UAAA;AAAA,IACrC,CAAA,MAAO;AACL,MAAA,OAAQ,OAAA,CAA6B,SAAA;AAAA,IACvC;AACA,IAAA,OAAO,OAAA,GACH;AAAA,MACE,GAAI,IAAA,CAAK,OAAA,CAAQ,GAAG,KAAK,EAAC;AAAA,MAC1B,GAAG;AAAA,KACL;AAAA;AAAA,MAEA,IAAA,CAAK,QAAQ,GAAG;AAAA,KAAA;AAAA,EACtB;AAAA,EAEQ,YAAA,CACN,KAAA,EACA,OAAA,EACA,GAAA,EACA,iBAAA,EACkD;AAClD,IAAA,MAAM,MAAA,GAAS,IAAA,CAAK,OAAA,CAAQ,mBAAA,GACxB,IAAA,CAAK,OAAA,CAAQ,mBAAA,CAAoB,iBAAA,EAAmB,KAAA,EAAO,OAAO,CAAA,GAClE,OAAA,EAAS,UACT,IAAA,CAAK,OAAA,CAAQ,MAAA,KACZ,GAAA,KAAQ,YAAA,GACJ,OAAA,EAA4B,UAAA,IAAc,IAAA,CAAK,OAAA,CAAQ,UAAA,GACvD,OAAA,EAA8B,SAAA,IAC/B,IAAA,CAAK,OAAA,CAAQ,SAAA,CAAA,IACjB,IAAA,CAAK,QAAQ,GAAG,CAAA;AAEpB,IAAA,OAAO,MAAA;AAAA,EACT;AACF,CAAA;AAvLO,KAAA,GAAA,gBAAA,CAAA,CAAA;AAAM,WAAA,GAAN,0CAHP,sBAAA,EAGa,WAAA,CAAA;AAAN,iBAAA,CAAA,KAAA,EAAA,CAAA,EAAM,WAAA,CAAA;AAAN,IAAM,UAAA,GAAN;ACXA,SAAS,kBACd,MAAA,EAGoE;AACpE,EAAA,IAAI,OAAO,WAAW,UAAA,EAAY;AAChC,IAAA,OAAOC,cAAAA,CAAe,OAAA,CAAQ,eAAA,EAAiB,MAAM,CAAA;AAAA,EACvD;AACA,EAAA,OAAOA,cAAAA,CAAe,KAAA,CAAM,eAAA,EAAiB,MAAM,CAAA;AACrD;;;ACnBO,IAAM,oBAAoBC,GAAAA,CAAI;AAC9B,IAAM,iBAAiBA,GAAAA,CAAI;AAC3B,IAAM,oBAAoBA,GAAAA,CAAI","file":"index.mjs","sourcesContent":["import type { Secret as JwtSecret } from 'jsonwebtoken'\n\nimport { z } from 'zod'\n\nexport enum RequestType {\n  Sign = 'Sign',\n  Verify = 'Verify',\n}\n\nexport const AlgorithmType = z.enum([\n  'HS256',\n  'HS384',\n  'HS512',\n  'RS256',\n  'RS384',\n  'RS512',\n  'ES256',\n  'ES384',\n  'ES512',\n  'PS256',\n  'PS384',\n  'PS512',\n  'none',\n])\n\nexport const JwtHeaderSchema = z.object({\n  alg: AlgorithmType.or(z.string()),\n  typ: z.string().optional(),\n  cty: z.string().optional(),\n  crit: z.string().array().optional(),\n  kid: z.string().optional(),\n  jku: z.string().optional(),\n  x5u: z.union([z.string(), z.array(z.string())]).optional(),\n  'x5t#S256': z.string().optional(),\n  x5t: z.string().optional(),\n  x5c: z.union([z.string(), z.array(z.string())]).optional(),\n})\n\nexport type JwtHeader = z.infer<typeof JwtHeaderSchema>\n\nexport const SignOptionsSchema = z.object({\n  algorithm: AlgorithmType.optional(),\n  keyid: z.string().optional(),\n  expiresIn: z.union([z.string(), z.number()]).optional(),\n  notBefore: z.union([z.string(), z.number()]).optional(),\n  audience: z\n    .union([\n      z.string(),\n      z.instanceof(RegExp),\n      z.array(z.union([z.string(), z.instanceof(RegExp)])),\n    ])\n    .optional(),\n  subject: z.string().optional(),\n  issuer: z.string().optional(),\n  jwtid: z.string().optional(),\n  mutatePayload: z.boolean().optional(),\n  noTimestamp: z.boolean().optional(),\n  header: JwtHeaderSchema.optional(),\n  encoding: z.string().optional(),\n  allowInsecureKeySizes: z.boolean().optional(),\n  allowInvalidAsymmetricKeyTypes: z.boolean().optional(),\n})\n\nexport type SignOptions = z.infer<typeof SignOptionsSchema>\n\nexport const VerifyOptionsSchema = z.object({\n  algorithms: AlgorithmType.array().optional(),\n  audience: z\n    .union([\n      z.string(),\n      z.instanceof(RegExp),\n      z.array(z.union([z.string(), z.instanceof(RegExp)])),\n    ])\n    .optional(),\n  clockTimestamp: z.number().optional(),\n  clockTolerance: z.number().optional(),\n  complete: z.boolean().optional(),\n  issuer: z.union([z.string(), z.string().array()]).optional(),\n  ignoreExpiration: z.boolean().optional(),\n  ignoreNotBefore: z.boolean().optional(),\n  jwtid: z.string().optional(),\n  nonce: z.string().optional(),\n  subject: z.string().optional(),\n  maxAge: z.union([z.string(), z.number()]).optional(),\n  allowInvalidAsymmetricKeyTypes: z.boolean().optional(),\n})\n\nexport type VerifyOptions = z.infer<typeof VerifyOptionsSchema>\n\nexport const SecretSchema = z.union([\n  z.string(),\n  z.instanceof(Buffer),\n  z\n    .object({\n      type: z.string(),\n    })\n    .passthrough(),\n  z.object({\n    key: z.union([z.string(), z.instanceof(Buffer)]),\n    passphrase: z.string(),\n  }),\n])\n\nexport type Secret = z.infer<typeof SecretSchema>\n\nexport const JwtServiceOptionsSchema = z.object({\n  signOptions: SignOptionsSchema.optional(),\n  secret: z.string().optional(),\n  publicKey: z.union([z.string(), z.instanceof(Buffer)]).optional(),\n  privateKey: SecretSchema.optional(),\n  verifyOptions: VerifyOptionsSchema.optional(),\n  secretOrKeyProvider: z\n    .function()\n    .args(\n      z.nativeEnum(RequestType),\n      z.any(),\n      z.union([SignOptionsSchema, VerifyOptionsSchema]).optional(),\n    )\n    .returns(z.union([SecretSchema, z.promise(SecretSchema)]))\n    .optional(),\n})\n\nexport type JwtServiceOptions = z.infer<typeof JwtServiceOptionsSchema>\n\nexport interface JwtSignOptions extends SignOptions {\n  secret?: string | Buffer\n  privateKey?: Secret\n}\n\nexport interface JwtVerifyOptions extends VerifyOptions {\n  secret?: string | Buffer\n  publicKey?: string | Buffer\n}\n\nexport type GetSecretKeyResult = string | Buffer | JwtSecret\n","import { Injectable, InjectionToken, Logger, syncInject } from '@navios/core'\n\nimport jwt from 'jsonwebtoken'\n\nimport type {\n  GetSecretKeyResult,\n  JwtServiceOptions,\n  JwtSignOptions,\n  JwtVerifyOptions,\n  SignOptions,\n  VerifyOptions,\n} from './options/jwt-service.options.mjs'\n\nimport {\n  JwtServiceOptionsSchema,\n  RequestType,\n} from './options/jwt-service.options.mjs'\n\nexport const JwtServiceToken = InjectionToken.create(\n  Symbol.for('JwtService'),\n  JwtServiceOptionsSchema,\n)\n\n@Injectable({\n  token: JwtServiceToken,\n})\nexport class JwtService {\n  logger = syncInject(Logger, {\n    context: JwtService.name,\n  })\n\n  constructor(private readonly options: JwtServiceOptions = {}) {}\n\n  sign(\n    payload: string,\n    options?: Omit<JwtSignOptions, keyof SignOptions>,\n  ): string\n  sign(payload: Buffer | object, options?: JwtSignOptions): string\n  sign(\n    payload: string | Buffer | object,\n    options: JwtSignOptions = {},\n  ): string {\n    const signOptions = this.mergeJwtOptions(\n      { ...options },\n      'signOptions',\n    ) as jwt.SignOptions\n    const secret = this.getSecretKey(\n      payload,\n      options,\n      'privateKey',\n      RequestType.Sign,\n    )\n\n    if (secret instanceof Promise) {\n      secret.catch(() => {}) // suppress rejection from async provider\n      this.logger.warn(\n        'For async version of \"secretOrKeyProvider\", please use \"signAsync\".',\n      )\n      throw new Error()\n    }\n\n    const allowedSignOptKeys = ['secret', 'privateKey']\n    const signOptKeys = Object.keys(signOptions)\n    if (\n      typeof payload === 'string' &&\n      signOptKeys.some((k) => !allowedSignOptKeys.includes(k))\n    ) {\n      throw new Error(\n        'Payload as string is not allowed with the following sign options: ' +\n          signOptKeys.join(', '),\n      )\n    }\n\n    return jwt.sign(payload, secret, signOptions)\n  }\n\n  signAsync(\n    payload: string,\n    options?: Omit<JwtSignOptions, keyof jwt.SignOptions>,\n  ): Promise<string>\n  signAsync(payload: Buffer | object, options?: JwtSignOptions): Promise<string>\n  signAsync(\n    payload: string | Buffer | object,\n    options: JwtSignOptions = {},\n  ): Promise<string> {\n    const signOptions = this.mergeJwtOptions(\n      { ...options },\n      'signOptions',\n    ) as jwt.SignOptions\n    const secret = this.getSecretKey(\n      payload,\n      options,\n      'privateKey',\n      RequestType.Sign,\n    )\n\n    const allowedSignOptKeys = ['secret', 'privateKey']\n    const signOptKeys = Object.keys(signOptions)\n    if (\n      typeof payload === 'string' &&\n      signOptKeys.some((k) => !allowedSignOptKeys.includes(k))\n    ) {\n      throw new Error(\n        'Payload as string is not allowed with the following sign options: ' +\n          signOptKeys.join(', '),\n      )\n    }\n\n    return new Promise((resolve, reject) =>\n      Promise.resolve()\n        .then(() => secret)\n        .then((scrt: GetSecretKeyResult) => {\n          jwt.sign(payload, scrt, signOptions, (err, encoded) =>\n            err ? reject(err) : resolve(encoded as string),\n          )\n        }),\n    )\n  }\n\n  verify<T extends object = any>(\n    token: string,\n    options: JwtVerifyOptions = {},\n  ): T {\n    const verifyOptions = this.mergeJwtOptions({ ...options }, 'verifyOptions')\n    const secret = this.getSecretKey(\n      token,\n      options,\n      'publicKey',\n      RequestType.Verify,\n    )\n\n    if (secret instanceof Promise) {\n      secret.catch(() => {}) // suppress rejection from async provider\n      this.logger.warn(\n        'For async version of \"secretOrKeyProvider\", please use \"verifyAsync\".',\n      )\n      throw new Error()\n    }\n\n    // @ts-expect-error We check it\n    return jwt.verify(token, secret, verifyOptions) as unknown as T\n  }\n\n  verifyAsync<T extends object = any>(\n    token: string,\n    options: JwtVerifyOptions = {},\n  ): Promise<T> {\n    const verifyOptions = this.mergeJwtOptions({ ...options }, 'verifyOptions')\n    const secret = this.getSecretKey(\n      token,\n      options,\n      'publicKey',\n      RequestType.Verify,\n    )\n\n    return new Promise((resolve, reject) =>\n      Promise.resolve()\n        .then(() => secret)\n        .then((scrt: GetSecretKeyResult) => {\n          // @ts-expect-error We check it\n          jwt.verify(token, scrt, verifyOptions, (err, decoded) =>\n            err ? reject(err) : resolve(decoded as T),\n          )\n        })\n        .catch(reject),\n    )\n  }\n\n  decode<T = any>(token: string, options?: jwt.DecodeOptions): T {\n    return jwt.decode(token, options) as T\n  }\n\n  private mergeJwtOptions(\n    options: JwtVerifyOptions | JwtSignOptions,\n    key: 'verifyOptions' | 'signOptions',\n  ): VerifyOptions | SignOptions {\n    delete options.secret\n    if (key === 'signOptions') {\n      delete (options as JwtSignOptions).privateKey\n    } else {\n      delete (options as JwtVerifyOptions).publicKey\n    }\n    return options\n      ? {\n          ...(this.options[key] || {}),\n          ...options,\n        }\n      : // @ts-expect-error We check it\n        this.options[key]\n  }\n\n  private getSecretKey(\n    token: string | object | Buffer,\n    options: JwtVerifyOptions | JwtSignOptions,\n    key: 'publicKey' | 'privateKey',\n    secretRequestType: RequestType,\n  ): GetSecretKeyResult | Promise<GetSecretKeyResult> {\n    const secret = this.options.secretOrKeyProvider\n      ? this.options.secretOrKeyProvider(secretRequestType, token, options)\n      : options?.secret ||\n        this.options.secret ||\n        (key === 'privateKey'\n          ? (options as JwtSignOptions)?.privateKey || this.options.privateKey\n          : (options as JwtVerifyOptions)?.publicKey ||\n            this.options.publicKey) ||\n        this.options[key]\n\n    return secret as GetSecretKeyResult\n  }\n}\n","import type { BoundInjectionToken, FactoryInjectionToken } from '@navios/core'\n\nimport { InjectionToken } from '@navios/core'\n\nimport type { JwtServiceOptions } from './options/jwt-service.options.mjs'\n\nimport { JwtService, JwtServiceToken } from './jwt.service.mjs'\nimport { JwtServiceOptionsSchema } from './options/jwt-service.options.mjs'\n\nexport function provideJwtService(\n  config: JwtServiceOptions,\n): BoundInjectionToken<JwtService, typeof JwtServiceOptionsSchema>\nexport function provideJwtService(\n  config: () => Promise<JwtServiceOptions>,\n): FactoryInjectionToken<JwtService, typeof JwtServiceOptionsSchema>\nexport function provideJwtService(\n  config: JwtServiceOptions | (() => Promise<JwtServiceOptions>),\n):\n  | BoundInjectionToken<JwtService, typeof JwtServiceOptionsSchema>\n  | FactoryInjectionToken<JwtService, typeof JwtServiceOptionsSchema> {\n  if (typeof config === 'function') {\n    return InjectionToken.factory(JwtServiceToken, config)\n  }\n  return InjectionToken.bound(JwtServiceToken, config)\n}\n","import jwt from 'jsonwebtoken'\n\nexport * from './options/jwt-service.options.mjs'\nexport * from './jwt.service.mjs'\nexport * from './jwt-service.provider.mjs'\nexport const TokenExpiredError = jwt.TokenExpiredError\nexport const NotBeforeError = jwt.NotBeforeError\nexport const JsonWebTokenError = jwt.JsonWebTokenError\n"]}

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@navios/jwt",
   "description": "JWT authentication and authorization for Navios",
-  "version": "0.2.0",
+  "version": "0.3.1",
   "author": {
     "name": "Oleksandr Hanzha",
     "email": "alex@granted.name"
@@ -12,30 +12,29 @@
     "url": "https://github.com/Arilas/navios.git"
   },
   "license": "MIT",
-  "typings": "./dist/index.d.ts",
-  "main": "./dist/index.js",
-  "module": "./dist/index.mjs",
   "peerDependencies": {
-    "@navios/core": "^0.2.1",
+    "@navios/core": "^0.3.0",
     "zod": "^3.23.8"
   },
+  "typings": "./lib/index.d.mts",
+  "main": "./lib/index.js",
+  "module": "./lib/index.mjs",
   "exports": {
     ".": {
       "import": {
-        "types": "./dist/index.d.mts",
-        "default": "./dist/index.mjs"
+        "types": "./lib/index.d.mts",
+        "default": "./lib/index.mjs"
       },
       "require": {
-        "types": "./dist/index.d.ts",
-        "default": "./dist/index.js"
+        "types": "./lib/index.d.ts",
+        "default": "./lib/index.js"
       }
-    },
-    "./package.json": "./package.json"
+    }
   },
   "devDependencies": {
-    "@navios/core": "^0.2.1",
-    "@types/jsonwebtoken": "^9.0.9",
-    "zod": "^3.24.4"
+    "@navios/core": "^0.3.0",
+    "@types/jsonwebtoken": "^9.0.10",
+    "zod": "^3.25.76"
   },
   "dependencies": {
     "jsonwebtoken": "^9.0.2"