npm - @nestjs-kitchen/authz - Versions diffs - 3.0.1 → 4.0.0 - Mend

@nestjs-kitchen/authz 3.0.1 → 4.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (36) hide show

package/README.md +27 -8
package/dist/authz.provider.d.ts +1 -2
package/dist/jwt/jwt-authz-als.middleware.d.ts +5 -9
package/dist/jwt/jwt-authz-als.middleware.js +6 -9
package/dist/jwt/jwt-authz.guard.d.ts +10 -23
package/dist/jwt/jwt-authz.guard.js +93 -22
package/dist/jwt/jwt-authz.module.d.ts +6 -13
package/dist/jwt/jwt-authz.module.js +3 -17
package/dist/jwt/jwt-authz.service.d.ts +3 -3
package/dist/session/session-authz-als.middleware.d.ts +3 -5
package/dist/session/session-authz-als.middleware.js +29 -50
package/dist/session/session-authz.guard.d.ts +3 -10
package/dist/session/session-authz.guard.js +33 -11
package/dist/session/session-authz.module.d.ts +4 -11
package/dist/session/session-authz.module.js +1 -13
package/dist/session/session-authz.service.d.ts +2 -2
package/dist/utils/adapter-shim.d.ts +28 -0
package/dist/utils/adapter-shim.js +174 -0
package/dist/utils/cookie-parsers.d.ts +6 -7
package/dist/utils/cookie-parsers.js +10 -0
package/dist/utils/create-set-cookie-fn.d.ts +2 -3
package/dist/utils/create-set-cookie-fn.js +2 -1
package/dist/utils/generics.d.ts +0 -1
package/dist/utils/generics.js +1 -12
package/dist/utils/get-passport-property.d.ts +1 -1
package/dist/utils/get-passport-property.js +0 -1
package/dist/utils/index.d.ts +2 -0
package/dist/utils/index.js +2 -0
package/dist/utils/safe-clone.d.ts +1 -0
package/dist/utils/safe-clone.js +15 -0
package/dist/utils/types.d.ts +0 -7
package/package.json +24 -10
package/dist/jwt/jwt-authz.strategy.d.ts +0 -17
package/dist/jwt/jwt-authz.strategy.js +0 -134
package/dist/session/session-authz.strategy.d.ts +0 -11
package/dist/session/session-authz.strategy.js +0 -70

package/dist/jwt/jwt-authz.strategy.js DELETED Viewed

@@ -1,134 +0,0 @@
-"use strict";
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.createRefreshStrategy = exports.createJwtStrategy = void 0;
-const node_async_hooks_1 = require("node:async_hooks");
-const common_1 = require("@nestjs/common");
-const passport_1 = require("@nestjs/passport");
-const jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
-const passport_custom_1 = require("passport-custom");
-const authz_provider_1 = require("../authz.provider");
-const constants_1 = require("../constants");
-const errors_1 = require("../errors");
-const utils_1 = require("../utils");
-const extract_jwt_1 = require("./extract-jwt");
-const createJwtStrategy = ([JWT_STRATEGY, AUTHZ_PROVIDER, ALS_PROVIDER]) => {
-    let JwtStrategy = class JwtStrategy extends (0, passport_1.PassportStrategy)(passport_custom_1.Strategy, JWT_STRATEGY) {
-        constructor(authzProvider, als) {
-            super();
-            this.authzProvider = authzProvider;
-            this.als = als;
-            if (typeof this.authzProvider.authenticate !== 'function') {
-                throw new errors_1.AuthzError(`InternalError: Method 'authenticate' from abstract class 'AuthzProvider' must be implemented.`);
-            }
-        }
-        async validate(req) {
-            const store = (0, utils_1.getAlsStore)(this.als);
-            const authOptions = store.authOptions;
-            if (!authOptions.jwt.verify) {
-                return [null, new errors_1.AuthzError(`InternalError: Refresh verify options must be implemented.`)];
-            }
-            const extractor = extract_jwt_1.ExtractJwt.fromExtractors(authOptions.jwt.jwtFromRequest);
-            req[constants_1.PASSPORT_PROPERTY] = authOptions.passportProperty;
-            const token = extractor(req);
-            if (!token) {
-                return [null, new errors_1.AuthzAnonymousError('AnonymousError: Cannnot find token.')];
-            }
-            let user = undefined;
-            try {
-                const payload = jsonwebtoken_1.default.verify(token, authOptions.jwt.secretOrPublicKey, authOptions.jwt.verify);
-                user = await this.authzProvider.authenticate(payload, req);
-            }
-            catch (error) {
-                return [
-                    null,
-                    error instanceof Error
-                        ? new errors_1.AuthzVerificationError(`${error.name}: ${error.message}`, error)
-                        : new errors_1.AuthzVerificationError(`${error}`)
-                ];
-            }
-            store.user = user;
-            store.jwtVerifiedBy = constants_1.JwtValidationType.JWT;
-            if (!user) {
-                return [null, new errors_1.AuthzAnonymousError('AnonymousError: Cannnot find user.')];
-            }
-            return user;
-        }
-    };
-    JwtStrategy = __decorate([
-        __param(0, (0, common_1.Inject)(AUTHZ_PROVIDER)),
-        __param(1, (0, common_1.Inject)(ALS_PROVIDER)),
-        __metadata("design:paramtypes", [authz_provider_1.AuthzProviderClass,
-            node_async_hooks_1.AsyncLocalStorage])
-    ], JwtStrategy);
-    return (0, common_1.mixin)(JwtStrategy);
-};
-exports.createJwtStrategy = createJwtStrategy;
-const createRefreshStrategy = ([JWT_REFRESH_STRATEGY, AUTHZ_PROVIDER, ALS_PROVIDER]) => {
-    let RefreshStrategy = class RefreshStrategy extends (0, passport_1.PassportStrategy)(passport_custom_1.Strategy, JWT_REFRESH_STRATEGY) {
-        constructor(authzProvider, als) {
-            super();
-            this.authzProvider = authzProvider;
-            this.als = als;
-            if (typeof this.authzProvider.authenticate !== 'function') {
-                throw new errors_1.AuthzError(`InternalError: Method 'authenticate' from abstract class 'AuthzProvider' must be implemented.`);
-            }
-        }
-        async validate(req) {
-            const store = (0, utils_1.getAlsStore)(this.als);
-            const authOptions = store.authOptions;
-            if (!authOptions.refresh.verify) {
-                return [null, new errors_1.AuthzError(`InternalError: Refresh verify options must be implemented.`)];
-            }
-            const extractor = extract_jwt_1.ExtractJwt.fromExtractors(authOptions.refresh.jwtFromRequest);
-            req[constants_1.PASSPORT_PROPERTY] = authOptions.passportProperty;
-            const token = extractor(req);
-            if (!token) {
-                return [null, new errors_1.AuthzAnonymousError('AnonymousError: Cannnot find token.')];
-            }
-            let user = undefined;
-            try {
-                const payload = jsonwebtoken_1.default.verify(token, authOptions.refresh.secretOrPublicKey, authOptions.refresh.verify);
-                const decodePayload = (0, utils_1.decodeMsgpackrString)(payload.data);
-                user = await this.authzProvider.authenticate(decodePayload, req);
-            }
-            catch (error) {
-                return [
-                    null,
-                    error instanceof Error
-                        ? new errors_1.AuthzVerificationError(`${error.name}: ${error.message}`, error)
-                        : new errors_1.AuthzVerificationError(`${error}`)
-                ];
-            }
-            store.user = user;
-            store.jwtVerifiedBy = constants_1.JwtValidationType.REFRESH;
-            if (!user) {
-                return [null, new errors_1.AuthzAnonymousError('AnonymousError: Cannnot find user.')];
-            }
-            return user;
-        }
-    };
-    RefreshStrategy = __decorate([
-        (0, common_1.Injectable)(),
-        __param(0, (0, common_1.Inject)(AUTHZ_PROVIDER)),
-        __param(1, (0, common_1.Inject)(ALS_PROVIDER)),
-        __metadata("design:paramtypes", [authz_provider_1.AuthzProviderClass,
-            node_async_hooks_1.AsyncLocalStorage])
-    ], RefreshStrategy);
-    return (0, common_1.mixin)(RefreshStrategy);
-};
-exports.createRefreshStrategy = createRefreshStrategy;

package/dist/session/session-authz.strategy.d.ts DELETED Viewed

@@ -1,11 +0,0 @@
-import { AsyncLocalStorage } from 'node:async_hooks';
-import { type Type } from '@nestjs/common';
-import type { Request } from 'express';
-import { AuthzProviderClass } from '../authz.provider';
-import type { SessionAlsType } from './session-authz-als.middleware';
-export declare const createSessionAuthzStrategy: ([SESSION_STRATEGY, AUTHZ_PROVIDER, ALS_PROVIDER]: [string, any, any]) => Type<Omit<{
-    readonly authzProvider: AuthzProviderClass<unknown, unknown>;
-    readonly als: AsyncLocalStorage<SessionAlsType<unknown, unknown>>;
-    validate(req: Request): Promise<{}>;
-    authenticate(req: Request, options?: any): any;
-}, "als" | "authzProvider">>;

package/dist/session/session-authz.strategy.js DELETED Viewed

@@ -1,70 +0,0 @@
-"use strict";
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.createSessionAuthzStrategy = void 0;
-const node_async_hooks_1 = require("node:async_hooks");
-const common_1 = require("@nestjs/common");
-const passport_1 = require("@nestjs/passport");
-const passport_custom_1 = require("passport-custom");
-const authz_provider_1 = require("../authz.provider");
-const constants_1 = require("../constants");
-const errors_1 = require("../errors");
-const utils_1 = require("../utils");
-const createSessionAuthzStrategy = ([SESSION_STRATEGY, AUTHZ_PROVIDER, ALS_PROVIDER]) => {
-    let SessionAuthzStrategy = class SessionAuthzStrategy extends (0, passport_1.PassportStrategy)(passport_custom_1.Strategy, SESSION_STRATEGY) {
-        constructor(authzProvider, als) {
-            super();
-            this.authzProvider = authzProvider;
-            this.als = als;
-            if (typeof this.authzProvider.authenticate !== 'function') {
-                throw new errors_1.AuthzError(`InternalError: Method 'authenticate' from abstract class 'AuthzProvider' must be implemented.`);
-            }
-        }
-        async validate(req) {
-            const store = (0, utils_1.getAlsStore)(this.als);
-            const authOptions = store.authOptions;
-            // @ts-ignore
-            req[constants_1.PASSPORT_PROPERTY] = authOptions.passportProperty;
-            const payload = req?.session?.[constants_1.SESSION_PASSPORT_KEY]?.user;
-            if (!payload) {
-                return [null, new errors_1.AuthzAnonymousError('AnonymousError: Cannnot find session.')];
-            }
-            let user = undefined;
-            try {
-                user = await this.authzProvider.authenticate(payload, req);
-            }
-            catch (error) {
-                return [
-                    null,
-                    error instanceof Error
-                        ? new errors_1.AuthzVerificationError(`${error.name}: ${error.message}`, error)
-                        : new errors_1.AuthzVerificationError(`${error}`)
-                ];
-            }
-            store.user = user;
-            if (!user) {
-                return [null, new errors_1.AuthzAnonymousError('AnonymousError: Cannnot find user.')];
-            }
-            return user;
-        }
-    };
-    SessionAuthzStrategy = __decorate([
-        __param(0, (0, common_1.Inject)(AUTHZ_PROVIDER)),
-        __param(1, (0, common_1.Inject)(ALS_PROVIDER)),
-        __metadata("design:paramtypes", [authz_provider_1.AuthzProviderClass,
-            node_async_hooks_1.AsyncLocalStorage])
-    ], SessionAuthzStrategy);
-    return (0, common_1.mixin)(SessionAuthzStrategy);
-};
-exports.createSessionAuthzStrategy = createSessionAuthzStrategy;