npm - @naylence/runtime - Versions diffs - 0.3.5-test.910 → 0.3.5-test.913 - Mend

@naylence/runtime 0.3.5-test.910 → 0.3.5-test.913

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (47) hide show

package/dist/cjs/naylence/fame/config/extended-fame-config.js CHANGED Viewed

@@ -57,6 +57,57 @@ const CONFIG_SEARCH_PATHS = [
 ];
 const fsModuleSpecifier = String.fromCharCode(102) + String.fromCharCode(115);
 let cachedFsModule = null;
+// Capture this module's URL without triggering TypeScript's import.meta restriction on CJS builds
+const currentModuleUrl = (() => {
+    try {
+        return (0, eval)('import.meta.url');
+    }
+    catch {
+        return undefined;
+    }
+})();
+// Shared flag that allows synchronous waiting for the Node-specific require shim
+const requireReadyFlag = logging_types_js_1.isNode && typeof SharedArrayBuffer !== 'undefined'
+    ? new Int32Array(new SharedArrayBuffer(Int32Array.BYTES_PER_ELEMENT))
+    : null;
+if (requireReadyFlag) {
+    // 0 means initializing, 1 means ready (success or failure)
+    Atomics.store(requireReadyFlag, 0, 0);
+    // Prepare a CommonJS-style require when running in pure ESM contexts
+    void (async () => {
+        try {
+            if (typeof require !== 'function') {
+                const moduleNamespace = (await Promise.resolve().then(() => __importStar(require('node:module'))));
+                const createRequire = moduleNamespace.createRequire;
+                if (typeof createRequire === 'function') {
+                    const fallbackPath = `${process.cwd()}/.__naylence_require_shim__.mjs`;
+                    const nodeRequire = createRequire(currentModuleUrl ?? fallbackPath);
+                    globalThis.require = nodeRequire;
+                }
+            }
+        }
+        catch {
+            // Ignore failures – getFsModule will surface a helpful error when needed
+        }
+    })()
+        .catch(() => {
+        // Ignore async errors – the ready flag will still unblock consumers
+    })
+        .finally(() => {
+        Atomics.store(requireReadyFlag, 0, 1);
+        Atomics.notify(requireReadyFlag, 0);
+    });
+}
+function ensureRequireReady() {
+    if (!requireReadyFlag) {
+        return;
+    }
+    if (Atomics.load(requireReadyFlag, 0) === 1) {
+        return;
+    }
+    // Block until the asynchronous loader finishes initialising
+    Atomics.wait(requireReadyFlag, 0, 0);
+}
 function getFsModule() {
     if (cachedFsModule) {
         return cachedFsModule;
@@ -64,6 +115,7 @@ function getFsModule() {
     if (!logging_types_js_1.isNode) {
         throw new Error('File system access is not available in this environment');
     }
+    ensureRequireReady();
     if (typeof require === 'function') {
         try {
             cachedFsModule = require(fsModuleSpecifier);

package/dist/cjs/naylence/fame/factory-manifest.js CHANGED Viewed

@@ -71,6 +71,7 @@ exports.MODULES = [
     "./security/auth/noop-token-verifier-factory.js",
     "./security/auth/oauth2-authorizer-factory.js",
     "./security/auth/oauth2-client-credentials-token-provider-factory.js",
+    "./security/auth/oauth2-pkce-token-provider-factory.js",
     "./security/auth/query-param-auth-injection-strategy-factory.js",
     "./security/auth/shared-secret-authorizer-factory.js",
     "./security/auth/shared-secret-token-provider-factory.js",
@@ -144,6 +145,7 @@ exports.MODULE_LOADERS = {
     "./security/auth/noop-token-verifier-factory.js": () => Promise.resolve().then(() => __importStar(require("./security/auth/noop-token-verifier-factory.js"))),
     "./security/auth/oauth2-authorizer-factory.js": () => Promise.resolve().then(() => __importStar(require("./security/auth/oauth2-authorizer-factory.js"))),
     "./security/auth/oauth2-client-credentials-token-provider-factory.js": () => Promise.resolve().then(() => __importStar(require("./security/auth/oauth2-client-credentials-token-provider-factory.js"))),
+    "./security/auth/oauth2-pkce-token-provider-factory.js": () => Promise.resolve().then(() => __importStar(require("./security/auth/oauth2-pkce-token-provider-factory.js"))),
     "./security/auth/query-param-auth-injection-strategy-factory.js": () => Promise.resolve().then(() => __importStar(require("./security/auth/query-param-auth-injection-strategy-factory.js"))),
     "./security/auth/shared-secret-authorizer-factory.js": () => Promise.resolve().then(() => __importStar(require("./security/auth/shared-secret-authorizer-factory.js"))),
     "./security/auth/shared-secret-token-provider-factory.js": () => Promise.resolve().then(() => __importStar(require("./security/auth/shared-secret-token-provider-factory.js"))),

package/dist/cjs/naylence/fame/http/jwks-api-router.js CHANGED Viewed

@@ -1,14 +1,12 @@
 "use strict";
 /**
- * JWKS (JSON Web Key Set) API router for Express
+ * JWKS (JSON Web Key Set) API plugin for Fastify
  *
  * Provides /.well-known/jwks.json endpoint for public key discovery
  * Used by OAuth2/JWT token verification
  */
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.createJwksRouter = createJwksRouter;
-const tslib_1 = require("tslib");
-const express_1 = tslib_1.__importDefault(require("express"));
 const logging_js_1 = require("../util/logging.js");
 const logger = (0, logging_js_1.getLogger)('naylence.fame.http.jwks_api_router');
 const DEFAULT_PREFIX = '';
@@ -88,23 +86,22 @@ function filterKeysByType(jwksData, allowedTypes) {
     return { ...jwksData, keys: filteredKeys };
 }
 /**
- * Create an Express router that exposes JWKS at /.well-known/jwks.json
+ * Create a Fastify plugin that exposes JWKS at /.well-known/jwks.json
  *
  * @param options - Router configuration options
- * @returns Express router with JWKS endpoint
+ * @returns Fastify plugin with JWKS endpoint
  *
  * @example
  * ```typescript
- * import express from 'express';
+ * import Fastify from 'fastify';
  * import { createJwksRouter } from '@naylence/runtime';
  *
- * const app = express();
+ * const app = Fastify();
  * const cryptoProvider = new MyCryptoProvider();
- * app.use(createJwksRouter({ cryptoProvider }));
+ * app.register(createJwksRouter({ cryptoProvider }));
  * ```
  */
 function createJwksRouter(options = {}) {
-    const router = express_1.default.Router();
     const { getJwksJson, cryptoProvider, prefix = DEFAULT_PREFIX, keyTypes, } = normalizeCreateJwksRouterOptions(options);
     // Get JWKS data
     let jwks;
@@ -127,14 +124,15 @@ function createJwksRouter(options = {}) {
         key_types: allowedKeyTypes,
         total_keys: jwks.keys.length,
     });
-    // JWKS endpoint
-    router.get(`${prefix}/.well-known/jwks.json`, (_req, res) => {
-        const filteredJwks = filterKeysByType(jwks, allowedKeyTypes);
-        logger.debug('jwks_served', {
-            total_keys: jwks.keys.length,
-            filtered_keys: filteredJwks.keys.length,
+    const plugin = async (instance) => {
+        instance.get(`${prefix}/.well-known/jwks.json`, async (_request, reply) => {
+            const filteredJwks = filterKeysByType(jwks, allowedKeyTypes);
+            logger.debug('jwks_served', {
+                total_keys: jwks.keys.length,
+                filtered_keys: filteredJwks.keys.length,
+            });
+            reply.send(filteredJwks);
         });
-        res.json(filteredJwks);
-    });
-    return router;
+    };
+    return plugin;
 }

package/dist/cjs/naylence/fame/http/oauth2-server.js CHANGED Viewed

@@ -26,7 +26,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.createApp = createApp;
 exports.main = main;
 const tslib_1 = require("tslib");
-const express_1 = tslib_1.__importDefault(require("express"));
+const fastify_1 = tslib_1.__importDefault(require("fastify"));
 const oauth2_token_router_js_1 = require("./oauth2-token-router.js");
 const jwks_api_router_js_1 = require("./jwks-api-router.js");
 const openid_configuration_router_js_1 = require("./openid-configuration-router.js");
@@ -58,23 +58,18 @@ async function getCryptoProvider() {
     return DefaultCryptoProvider.create();
 }
 /**
- * Create and configure the OAuth2 Express application
+ * Create and configure the OAuth2 Fastify application
  */
 async function createApp() {
-    const app = (0, express_1.default)();
-    // Middleware
-    app.use(express_1.default.json());
-    app.use(express_1.default.urlencoded({ extended: true }));
+    const app = (0, fastify_1.default)({ logger: false });
     // Get crypto provider
     const cryptoProvider = await getCryptoProvider();
     // Add routers
-    app.use((0, oauth2_token_router_js_1.createOAuth2TokenRouter)({ cryptoProvider }));
-    app.use((0, jwks_api_router_js_1.createJwksRouter)({ cryptoProvider }));
-    app.use((0, openid_configuration_router_js_1.createOpenIDConfigurationRouter)());
+    app.register((0, oauth2_token_router_js_1.createOAuth2TokenRouter)({ cryptoProvider }));
+    app.register((0, jwks_api_router_js_1.createJwksRouter)({ cryptoProvider }));
+    app.register((0, openid_configuration_router_js_1.createOpenIDConfigurationRouter)());
     // Health check endpoint
-    app.get('/health', (_req, res) => {
-        res.json({ status: 'ok' });
-    });
+    app.get('/health', async () => ({ status: 'ok' }));
     return app;
 }
 /**
@@ -102,25 +97,27 @@ async function main() {
     });
     const app = await createApp();
     // Start server
-    app.listen(port, host, () => {
-        logger.info('oauth2_server_started', {
-            host,
-            port,
-            endpoints: {
-                token: '/oauth/token',
-                jwks: '/.well-known/jwks.json',
-                openid_config: '/.well-known/openid-configuration',
-                health: '/health',
-            },
-        });
+    await app.listen({ port, host });
+    logger.info('oauth2_server_started', {
+        host,
+        port,
+        endpoints: {
+            token: '/oauth/token',
+            jwks: '/.well-known/jwks.json',
+            openid_config: '/.well-known/openid-configuration',
+            health: '/health',
+        },
     });
+    const shutdown = (signal) => {
+        logger.info('oauth2_server_shutting_down', { signal });
+        app
+            .close()
+            .catch((error) => logger.error('oauth2_server_shutdown_error', {
+            error: error instanceof Error ? error.message : String(error),
+        }))
+            .finally(() => process.exit(0));
+    };
     // Graceful shutdown
-    process.on('SIGINT', () => {
-        logger.info('oauth2_server_shutting_down', { signal: 'SIGINT' });
-        process.exit(0);
-    });
-    process.on('SIGTERM', () => {
-        logger.info('oauth2_server_shutting_down', { signal: 'SIGTERM' });
-        process.exit(0);
-    });
+    process.on('SIGINT', () => shutdown('SIGINT'));
+    process.on('SIGTERM', () => shutdown('SIGTERM'));
 }