@nik2208/node-auth 1.0.2

package/dist/abstract/base-oauth-strategy.abstract.d.ts

@@ -0,0 +1,26 @@
+import { AuthConfig } from '../models/auth-config.model';
+import { BaseUser } from '../models/user.model';
+import { BaseAuthStrategy } from './base-auth-strategy.abstract';
+export declare abstract class BaseOAuthStrategy<TUser extends BaseUser = BaseUser> extends BaseAuthStrategy<{
+    code: string;
+    state?: string;
+}, TUser> {
+    abstract name: string;
+    abstract getAuthorizationUrl(state?: string): string;
+    abstract handleCallback(code: string, state?: string): Promise<TUser>;
+    protected abstract exchangeCodeForTokens(code: string): Promise<{
+        accessToken: string;
+        idToken?: string;
+    }>;
+    protected abstract getUserProfile(accessToken: string): Promise<{
+        id: string;
+        email: string;
+        name?: string;
+        picture?: string;
+    }>;
+    authenticate(input: {
+        code: string;
+        state?: string;
+    }, _config: AuthConfig): Promise<TUser>;
+}
+//# sourceMappingURL=base-oauth-strategy.abstract.d.ts.map

package/dist/abstract/base-oauth-strategy.abstract.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"base-oauth-strategy.abstract.d.ts","sourceRoot":"","sources":["../../src/abstract/base-oauth-strategy.abstract.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AACzD,OAAO,EAAE,QAAQ,EAAE,MAAM,sBAAsB,CAAC;AAChD,OAAO,EAAE,gBAAgB,EAAE,MAAM,+BAA+B,CAAC;AAEjE,8BAAsB,iBAAiB,CAAC,KAAK,SAAS,QAAQ,GAAG,QAAQ,CAAE,SAAQ,gBAAgB,CAAC;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,EAAE,KAAK,CAAC;IAC1I,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IAEtB,QAAQ,CAAC,mBAAmB,CAAC,KAAK,CAAC,EAAE,MAAM,GAAG,MAAM;IACpD,QAAQ,CAAC,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,KAAK,CAAC;IACrE,SAAS,CAAC,QAAQ,CAAC,qBAAqB,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,WAAW,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAC1G,SAAS,CAAC,QAAQ,CAAC,cAAc,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,EAAE,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAEzH,YAAY,CAAC,KAAK,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,EAAE,OAAO,EAAE,UAAU,GAAG,OAAO,CAAC,KAAK,CAAC;CAGjG"}

package/dist/abstract/base-oauth-strategy.abstract.js

@@ -0,0 +1,11 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.BaseOAuthStrategy = void 0;
+const base_auth_strategy_abstract_1 = require("./base-auth-strategy.abstract");
+class BaseOAuthStrategy extends base_auth_strategy_abstract_1.BaseAuthStrategy {
+    async authenticate(input, _config) {
+        return this.handleCallback(input.code, input.state);
+    }
+}
+exports.BaseOAuthStrategy = BaseOAuthStrategy;
+//# sourceMappingURL=base-oauth-strategy.abstract.js.map

package/dist/abstract/base-oauth-strategy.abstract.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"base-oauth-strategy.abstract.js","sourceRoot":"","sources":["../../src/abstract/base-oauth-strategy.abstract.ts"],"names":[],"mappings":";;;AAEA,+EAAiE;AAEjE,MAAsB,iBAAqD,SAAQ,8CAAyD;IAQ1I,KAAK,CAAC,YAAY,CAAC,KAAuC,EAAE,OAAmB;QAC7E,OAAO,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC,IAAI,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC;IACtD,CAAC;CACF;AAXD,8CAWC"}

package/dist/auth-configurator.d.ts

@@ -0,0 +1,24 @@
+import { Router, RequestHandler } from 'express';
+import { AuthConfig } from './models/auth-config.model';
+import { IUserStore } from './interfaces/user-store.interface';
+import { TokenService } from './services/token.service';
+import { PasswordService } from './services/password.service';
+import { LocalStrategy } from './strategies/local/local.strategy';
+import { GoogleStrategy } from './strategies/oauth/google.strategy';
+import { GithubStrategy } from './strategies/oauth/github.strategy';
+import { RouterOptions } from './router/auth.router';
+export declare class AuthConfigurator {
+    private readonly config;
+    private readonly userStore;
+    private readonly _tokenService;
+    private readonly _passwordService;
+    constructor(config: AuthConfig, userStore: IUserStore);
+    middleware(): RequestHandler;
+    router(options?: RouterOptions): Router;
+    get tokenService(): TokenService;
+    get passwordService(): PasswordService;
+    strategy(name: 'local'): LocalStrategy;
+    strategy(name: 'google'): GoogleStrategy;
+    strategy(name: 'github'): GithubStrategy;
+}
+//# sourceMappingURL=auth-configurator.d.ts.map

package/dist/auth-configurator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-configurator.d.ts","sourceRoot":"","sources":["../src/auth-configurator.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AACjD,OAAO,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AACxD,OAAO,EAAE,UAAU,EAAE,MAAM,mCAAmC,CAAC;AAC/D,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EAAE,eAAe,EAAE,MAAM,6BAA6B,CAAC;AAC9D,OAAO,EAAE,aAAa,EAAE,MAAM,mCAAmC,CAAC;AAClE,OAAO,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAC;AACpE,OAAO,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAC;AAEpE,OAAO,EAAoB,aAAa,EAAE,MAAM,sBAAsB,CAAC;AAEvE,qBAAa,gBAAgB;IAKzB,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,OAAO,CAAC,QAAQ,CAAC,SAAS;IAL5B,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAe;IAC7C,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAkB;gBAGhC,MAAM,EAAE,UAAU,EAClB,SAAS,EAAE,UAAU;IAMxC,UAAU,IAAI,cAAc;IAI5B,MAAM,CAAC,OAAO,CAAC,EAAE,aAAa,GAAG,MAAM;IAIvC,IAAI,YAAY,IAAI,YAAY,CAE/B;IAED,IAAI,eAAe,IAAI,eAAe,CAErC;IAED,QAAQ,CAAC,IAAI,EAAE,OAAO,GAAG,aAAa;IACtC,QAAQ,CAAC,IAAI,EAAE,QAAQ,GAAG,cAAc;IACxC,QAAQ,CAAC,IAAI,EAAE,QAAQ,GAAG,cAAc;CAazC"}

package/dist/auth-configurator.js

@@ -0,0 +1,42 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthConfigurator = void 0;
+const token_service_1 = require("./services/token.service");
+const password_service_1 = require("./services/password.service");
+const local_strategy_1 = require("./strategies/local/local.strategy");
+const auth_middleware_1 = require("./middleware/auth.middleware");
+const auth_router_1 = require("./router/auth.router");
+class AuthConfigurator {
+    constructor(config, userStore) {
+        this.config = config;
+        this.userStore = userStore;
+        this._tokenService = new token_service_1.TokenService();
+        this._passwordService = new password_service_1.PasswordService();
+    }
+    middleware() {
+        return (0, auth_middleware_1.createAuthMiddleware)(this.config);
+    }
+    router(options) {
+        return (0, auth_router_1.createAuthRouter)(this.userStore, this.config, options);
+    }
+    get tokenService() {
+        return this._tokenService;
+    }
+    get passwordService() {
+        return this._passwordService;
+    }
+    strategy(name) {
+        switch (name) {
+            case 'local':
+                return new local_strategy_1.LocalStrategy(this.userStore, this._passwordService);
+            case 'google':
+                throw new Error('GoogleStrategy is abstract - extend it and pass via RouterOptions');
+            case 'github':
+                throw new Error('GithubStrategy is abstract - extend it and pass via RouterOptions');
+            default:
+                throw new Error(`Unknown strategy: ${name}`);
+        }
+    }
+}
+exports.AuthConfigurator = AuthConfigurator;
+//# sourceMappingURL=auth-configurator.js.map

package/dist/auth-configurator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-configurator.js","sourceRoot":"","sources":["../src/auth-configurator.ts"],"names":[],"mappings":";;;AAGA,4DAAwD;AACxD,kEAA8D;AAC9D,sEAAkE;AAGlE,kEAAoE;AACpE,sDAAuE;AAEvE,MAAa,gBAAgB;IAI3B,YACmB,MAAkB,EAClB,SAAqB;QADrB,WAAM,GAAN,MAAM,CAAY;QAClB,cAAS,GAAT,SAAS,CAAY;QAEtC,IAAI,CAAC,aAAa,GAAG,IAAI,4BAAY,EAAE,CAAC;QACxC,IAAI,CAAC,gBAAgB,GAAG,IAAI,kCAAe,EAAE,CAAC;IAChD,CAAC;IAED,UAAU;QACR,OAAO,IAAA,sCAAoB,EAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC3C,CAAC;IAED,MAAM,CAAC,OAAuB;QAC5B,OAAO,IAAA,8BAAgB,EAAC,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAChE,CAAC;IAED,IAAI,YAAY;QACd,OAAO,IAAI,CAAC,aAAa,CAAC;IAC5B,CAAC;IAED,IAAI,eAAe;QACjB,OAAO,IAAI,CAAC,gBAAgB,CAAC;IAC/B,CAAC;IAKD,QAAQ,CAAC,IAAY;QACnB,QAAQ,IAAI,EAAE,CAAC;YACb,KAAK,OAAO;gBACV,OAAO,IAAI,8BAAa,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,gBAAgB,CAAC,CAAC;YAClE,KAAK,QAAQ;gBACX,MAAM,IAAI,KAAK,CAAC,mEAAmE,CAAC,CAAC;YACvF,KAAK,QAAQ;gBACX,MAAM,IAAI,KAAK,CAAC,mEAAmE,CAAC,CAAC;YACvF;gBACE,MAAM,IAAI,KAAK,CAAC,qBAAqB,IAAI,EAAE,CAAC,CAAC;QACjD,CAAC;IACH,CAAC;CACF;AA3CD,4CA2CC"}

package/dist/index.d.ts

@@ -0,0 +1,25 @@
+export { AuthConfigurator } from './auth-configurator';
+export type { IUserStore } from './interfaces/user-store.interface';
+export type { ITokenStore } from './interfaces/token-store.interface';
+export type { IAuthStrategy } from './interfaces/auth-strategy.interface';
+export type { BaseUser } from './models/user.model';
+export type { TokenPair, AccessTokenPayload } from './models/token.model';
+export type { AuthConfig } from './models/auth-config.model';
+export { AuthError } from './models/errors';
+export { BaseAuthStrategy } from './abstract/base-auth-strategy.abstract';
+export { BaseOAuthStrategy } from './abstract/base-oauth-strategy.abstract';
+export { LocalStrategy } from './strategies/local/local.strategy';
+export { GoogleStrategy } from './strategies/oauth/google.strategy';
+export { GithubStrategy } from './strategies/oauth/github.strategy';
+export { MagicLinkStrategy } from './strategies/magic-link/magic-link.strategy';
+export { SmsStrategy } from './strategies/sms/sms.strategy';
+export { TotpStrategy } from './strategies/two-factor/totp.strategy';
+export { TokenService } from './services/token.service';
+export { PasswordService } from './services/password.service';
+export { SmsService } from './services/sms.service';
+export { MailerService } from './services/mailer.service';
+export type { MailerConfig } from './models/auth-config.model';
+export { createAuthMiddleware } from './middleware/auth.middleware';
+export { createAuthRouter } from './router/auth.router';
+export type { RouterOptions } from './router/auth.router';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAEvD,YAAY,EAAE,UAAU,EAAE,MAAM,mCAAmC,CAAC;AACpE,YAAY,EAAE,WAAW,EAAE,MAAM,oCAAoC,CAAC;AACtE,YAAY,EAAE,aAAa,EAAE,MAAM,sCAAsC,CAAC;AAE1E,YAAY,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AACpD,YAAY,EAAE,SAAS,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAC1E,YAAY,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AAC7D,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAE5C,OAAO,EAAE,gBAAgB,EAAE,MAAM,wCAAwC,CAAC;AAC1E,OAAO,EAAE,iBAAiB,EAAE,MAAM,yCAAyC,CAAC;AAE5E,OAAO,EAAE,aAAa,EAAE,MAAM,mCAAmC,CAAC;AAClE,OAAO,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAC;AACpE,OAAO,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAC;AACpE,OAAO,EAAE,iBAAiB,EAAE,MAAM,6CAA6C,CAAC;AAChF,OAAO,EAAE,WAAW,EAAE,MAAM,+BAA+B,CAAC;AAC5D,OAAO,EAAE,YAAY,EAAE,MAAM,uCAAuC,CAAC;AAErE,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EAAE,eAAe,EAAE,MAAM,6BAA6B,CAAC;AAC9D,OAAO,EAAE,UAAU,EAAE,MAAM,wBAAwB,CAAC;AACpD,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAC1D,YAAY,EAAE,YAAY,EAAE,MAAM,4BAA4B,CAAC;AAE/D,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AACpE,OAAO,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AACxD,YAAY,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC"}

package/dist/index.js

@@ -0,0 +1,36 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createAuthRouter = exports.createAuthMiddleware = exports.MailerService = exports.SmsService = exports.PasswordService = exports.TokenService = exports.TotpStrategy = exports.SmsStrategy = exports.MagicLinkStrategy = exports.GithubStrategy = exports.GoogleStrategy = exports.LocalStrategy = exports.BaseOAuthStrategy = exports.BaseAuthStrategy = exports.AuthError = exports.AuthConfigurator = void 0;
+var auth_configurator_1 = require("./auth-configurator");
+Object.defineProperty(exports, "AuthConfigurator", { enumerable: true, get: function () { return auth_configurator_1.AuthConfigurator; } });
+var errors_1 = require("./models/errors");
+Object.defineProperty(exports, "AuthError", { enumerable: true, get: function () { return errors_1.AuthError; } });
+var base_auth_strategy_abstract_1 = require("./abstract/base-auth-strategy.abstract");
+Object.defineProperty(exports, "BaseAuthStrategy", { enumerable: true, get: function () { return base_auth_strategy_abstract_1.BaseAuthStrategy; } });
+var base_oauth_strategy_abstract_1 = require("./abstract/base-oauth-strategy.abstract");
+Object.defineProperty(exports, "BaseOAuthStrategy", { enumerable: true, get: function () { return base_oauth_strategy_abstract_1.BaseOAuthStrategy; } });
+var local_strategy_1 = require("./strategies/local/local.strategy");
+Object.defineProperty(exports, "LocalStrategy", { enumerable: true, get: function () { return local_strategy_1.LocalStrategy; } });
+var google_strategy_1 = require("./strategies/oauth/google.strategy");
+Object.defineProperty(exports, "GoogleStrategy", { enumerable: true, get: function () { return google_strategy_1.GoogleStrategy; } });
+var github_strategy_1 = require("./strategies/oauth/github.strategy");
+Object.defineProperty(exports, "GithubStrategy", { enumerable: true, get: function () { return github_strategy_1.GithubStrategy; } });
+var magic_link_strategy_1 = require("./strategies/magic-link/magic-link.strategy");
+Object.defineProperty(exports, "MagicLinkStrategy", { enumerable: true, get: function () { return magic_link_strategy_1.MagicLinkStrategy; } });
+var sms_strategy_1 = require("./strategies/sms/sms.strategy");
+Object.defineProperty(exports, "SmsStrategy", { enumerable: true, get: function () { return sms_strategy_1.SmsStrategy; } });
+var totp_strategy_1 = require("./strategies/two-factor/totp.strategy");
+Object.defineProperty(exports, "TotpStrategy", { enumerable: true, get: function () { return totp_strategy_1.TotpStrategy; } });
+var token_service_1 = require("./services/token.service");
+Object.defineProperty(exports, "TokenService", { enumerable: true, get: function () { return token_service_1.TokenService; } });
+var password_service_1 = require("./services/password.service");
+Object.defineProperty(exports, "PasswordService", { enumerable: true, get: function () { return password_service_1.PasswordService; } });
+var sms_service_1 = require("./services/sms.service");
+Object.defineProperty(exports, "SmsService", { enumerable: true, get: function () { return sms_service_1.SmsService; } });
+var mailer_service_1 = require("./services/mailer.service");
+Object.defineProperty(exports, "MailerService", { enumerable: true, get: function () { return mailer_service_1.MailerService; } });
+var auth_middleware_1 = require("./middleware/auth.middleware");
+Object.defineProperty(exports, "createAuthMiddleware", { enumerable: true, get: function () { return auth_middleware_1.createAuthMiddleware; } });
+var auth_router_1 = require("./router/auth.router");
+Object.defineProperty(exports, "createAuthRouter", { enumerable: true, get: function () { return auth_router_1.createAuthRouter; } });
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;AAAA,yDAAuD;AAA9C,qHAAA,gBAAgB,OAAA;AASzB,0CAA4C;AAAnC,mGAAA,SAAS,OAAA;AAElB,sFAA0E;AAAjE,+HAAA,gBAAgB,OAAA;AACzB,wFAA4E;AAAnE,iIAAA,iBAAiB,OAAA;AAE1B,oEAAkE;AAAzD,+GAAA,aAAa,OAAA;AACtB,sEAAoE;AAA3D,iHAAA,cAAc,OAAA;AACvB,sEAAoE;AAA3D,iHAAA,cAAc,OAAA;AACvB,mFAAgF;AAAvE,wHAAA,iBAAiB,OAAA;AAC1B,8DAA4D;AAAnD,2GAAA,WAAW,OAAA;AACpB,uEAAqE;AAA5D,6GAAA,YAAY,OAAA;AAErB,0DAAwD;AAA/C,6GAAA,YAAY,OAAA;AACrB,gEAA8D;AAArD,mHAAA,eAAe,OAAA;AACxB,sDAAoD;AAA3C,yGAAA,UAAU,OAAA;AACnB,4DAA0D;AAAjD,+GAAA,aAAa,OAAA;AAGtB,gEAAoE;AAA3D,uHAAA,oBAAoB,OAAA;AAC7B,oDAAwD;AAA/C,+GAAA,gBAAgB,OAAA"}

package/dist/interfaces/auth-strategy.interface.d.ts

@@ -0,0 +1,6 @@
+import { AuthConfig } from '../models/auth-config.model';
+export interface IAuthStrategy<TInput = unknown, TOutput = unknown> {
+    name: string;
+    authenticate(input: TInput, config: AuthConfig): Promise<TOutput>;
+}
+//# sourceMappingURL=auth-strategy.interface.d.ts.map

package/dist/interfaces/auth-strategy.interface.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-strategy.interface.d.ts","sourceRoot":"","sources":["../../src/interfaces/auth-strategy.interface.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAEzD,MAAM,WAAW,aAAa,CAAC,MAAM,GAAG,OAAO,EAAE,OAAO,GAAG,OAAO;IAChE,IAAI,EAAE,MAAM,CAAC;IACb,YAAY,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;CACnE"}

package/dist/interfaces/auth-strategy.interface.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=auth-strategy.interface.js.map

package/dist/interfaces/auth-strategy.interface.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-strategy.interface.js","sourceRoot":"","sources":["../../src/interfaces/auth-strategy.interface.ts"],"names":[],"mappings":""}

package/dist/interfaces/token-store.interface.d.ts

@@ -0,0 +1,10 @@
+export interface ITokenStore {
+    saveRefreshToken(userId: string, token: string, expiry: Date): Promise<void>;
+    findRefreshToken(token: string): Promise<{
+        userId: string;
+        expiry: Date;
+    } | null>;
+    deleteRefreshToken(token: string): Promise<void>;
+    deleteAllUserTokens(userId: string): Promise<void>;
+}
+//# sourceMappingURL=token-store.interface.d.ts.map

package/dist/interfaces/token-store.interface.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-store.interface.d.ts","sourceRoot":"","sources":["../../src/interfaces/token-store.interface.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,WAAW;IAC1B,gBAAgB,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC7E,gBAAgB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,IAAI,CAAA;KAAE,GAAG,IAAI,CAAC,CAAC;IAClF,kBAAkB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACjD,mBAAmB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CACpD"}

package/dist/interfaces/token-store.interface.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=token-store.interface.js.map

package/dist/interfaces/token-store.interface.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-store.interface.js","sourceRoot":"","sources":["../../src/interfaces/token-store.interface.ts"],"names":[],"mappings":""}

package/dist/interfaces/user-store.interface.d.ts

@@ -0,0 +1,23 @@
+import { BaseUser } from '../models/user.model';
+export interface IUserStore<U extends BaseUser = BaseUser> {
+    findByEmail(email: string): Promise<U | null>;
+    findById(id: string): Promise<U | null>;
+    create(data: Partial<U>): Promise<U>;
+    updateRefreshToken(userId: string, token: string | null, expiry: Date | null): Promise<void>;
+    updateResetToken(userId: string, token: string | null, expiry: Date | null): Promise<void>;
+    updatePassword(userId: string, hashedPassword: string): Promise<void>;
+    updateTotpSecret(userId: string, secret: string | null): Promise<void>;
+    updateMagicLinkToken(userId: string, token: string | null, expiry: Date | null): Promise<void>;
+    updateSmsCode(userId: string, code: string | null, expiry: Date | null): Promise<void>;
+    /**
+     * Find a user by their password-reset token.
+     * Required to support the POST /auth/reset-password endpoint.
+     */
+    findByResetToken?(token: string): Promise<U | null>;
+    /**
+     * Find a user by their magic-link token.
+     * Required to support the POST /auth/magic-link/verify endpoint.
+     */
+    findByMagicLinkToken?(token: string): Promise<U | null>;
+}
+//# sourceMappingURL=user-store.interface.d.ts.map

package/dist/interfaces/user-store.interface.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-store.interface.d.ts","sourceRoot":"","sources":["../../src/interfaces/user-store.interface.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,sBAAsB,CAAC;AAEhD,MAAM,WAAW,UAAU,CAAC,CAAC,SAAS,QAAQ,GAAG,QAAQ;IACvD,WAAW,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;IAC9C,QAAQ,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;IACxC,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;IACrC,kBAAkB,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,IAAI,EAAE,MAAM,EAAE,IAAI,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC7F,gBAAgB,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,IAAI,EAAE,MAAM,EAAE,IAAI,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC3F,cAAc,CAAC,MAAM,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACtE,gBAAgB,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACvE,oBAAoB,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,IAAI,EAAE,MAAM,EAAE,IAAI,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC/F,aAAa,CAAC,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI,EAAE,MAAM,EAAE,IAAI,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAEvF;;;OAGG;IACH,gBAAgB,CAAC,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;IAEpD;;;OAGG;IACH,oBAAoB,CAAC,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;CACzD"}

package/dist/interfaces/user-store.interface.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=user-store.interface.js.map

package/dist/interfaces/user-store.interface.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-store.interface.js","sourceRoot":"","sources":["../../src/interfaces/user-store.interface.ts"],"names":[],"mappings":""}

package/dist/middleware/auth.middleware.d.ts

@@ -0,0 +1,12 @@
+import { RequestHandler } from 'express';
+import { AuthConfig } from '../models/auth-config.model';
+import { AccessTokenPayload } from '../models/token.model';
+declare global {
+    namespace Express {
+        interface Request {
+            user?: AccessTokenPayload;
+        }
+    }
+}
+export declare function createAuthMiddleware(config: AuthConfig): RequestHandler;
+//# sourceMappingURL=auth.middleware.d.ts.map

package/dist/middleware/auth.middleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.middleware.d.ts","sourceRoot":"","sources":["../../src/middleware/auth.middleware.ts"],"names":[],"mappings":"AAAA,OAAO,EAAmC,cAAc,EAAE,MAAM,SAAS,CAAC;AAC1E,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AACzD,OAAO,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AAG3D,OAAO,CAAC,MAAM,CAAC;IACb,UAAU,OAAO,CAAC;QAChB,UAAU,OAAO;YACf,IAAI,CAAC,EAAE,kBAAkB,CAAC;SAC3B;KACF;CACF;AAID,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,UAAU,GAAG,cAAc,CAevE"}

package/dist/middleware/auth.middleware.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createAuthMiddleware = createAuthMiddleware;
+const token_service_1 = require("../services/token.service");
+const tokenService = new token_service_1.TokenService();
+function createAuthMiddleware(config) {
+    return (req, res, next) => {
+        const token = tokenService.extractTokenFromCookie(req, 'accessToken');
+        if (!token) {
+            res.status(403).json({ error: 'No access token provided' });
+            return;
+        }
+        try {
+            const payload = tokenService.verifyAccessToken(token, config);
+            req.user = payload;
+            next();
+        }
+        catch {
+            res.status(403).json({ error: 'Invalid or expired access token' });
+        }
+    };
+}
+//# sourceMappingURL=auth.middleware.js.map

package/dist/middleware/auth.middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.middleware.js","sourceRoot":"","sources":["../../src/middleware/auth.middleware.ts"],"names":[],"mappings":";;AAeA,oDAeC;AA3BD,6DAAyD;AAUzD,MAAM,YAAY,GAAG,IAAI,4BAAY,EAAE,CAAC;AAExC,SAAgB,oBAAoB,CAAC,MAAkB;IACrD,OAAO,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAQ,EAAE;QAC/D,MAAM,KAAK,GAAG,YAAY,CAAC,sBAAsB,CAAC,GAAG,EAAE,aAAa,CAAC,CAAC;QACtE,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,0BAA0B,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QACD,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,YAAY,CAAC,iBAAiB,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;YAC9D,GAAG,CAAC,IAAI,GAAG,OAAO,CAAC;YACnB,IAAI,EAAE,CAAC;QACT,CAAC;QAAC,MAAM,CAAC;YACP,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,iCAAiC,EAAE,CAAC,CAAC;QACrE,CAAC;IACH,CAAC,CAAC;AACJ,CAAC"}

package/dist/models/auth-config.model.d.ts

@@ -0,0 +1,96 @@
+/**
+ * Configuration for the built-in HTTP-based mailer transport.
+ *
+ * The mailer makes a POST request to `endpoint` with a JSON body:
+ * ```
+ * POST {endpoint}
+ * X-API-Key: {apiKey}
+ * Content-Type: application/json
+ *
+ * { "to": "...", "subject": "...", "html": "...", "text": "...", "from": "...", "fromName": "..." }
+ * ```
+ *
+ * If you prefer to control email sending yourself, omit `mailer` and use
+ * the `sendMagicLink`, `sendPasswordReset`, and `sendWelcome` callbacks instead.
+ */
+export interface MailerConfig {
+    /** Full URL of the HTTP mailer endpoint (receives a POST with JSON body). */
+    endpoint: string;
+    /** API key sent as the `X-API-Key` header. */
+    apiKey: string;
+    /** Sender email address. */
+    from: string;
+    /** Sender display name (optional). */
+    fromName?: string;
+    /**
+     * Default language for built-in email templates.
+     * Supported: `'en'` (default) | `'it'`.
+     * Can be overridden per-request via `emailLang` in the request body.
+     */
+    defaultLang?: 'en' | 'it';
+}
+export interface AuthConfig {
+    accessTokenSecret: string;
+    refreshTokenSecret: string;
+    accessTokenExpiresIn?: string;
+    refreshTokenExpiresIn?: string;
+    cookieOptions?: {
+        secure?: boolean;
+        sameSite?: 'strict' | 'lax' | 'none';
+        domain?: string;
+    };
+    bcryptSaltRounds?: number;
+    sms?: {
+        endpoint: string;
+        apiKey: string;
+        username: string;
+        password: string;
+        codeExpiresInMinutes?: number;
+    };
+    email?: {
+        /**
+         * Base URL of your site, used to build reset / magic-link URLs.
+         * Example: `'https://yourapp.com'`
+         */
+        siteUrl?: string;
+        /**
+         * Concrete HTTP mailer transport configuration.
+         * When set, the library sends emails automatically using the built-in
+         * templates (password reset, magic link, welcome) via HTTP POST.
+         * Callback overrides below always take precedence over the mailer transport.
+         */
+        mailer?: MailerConfig;
+        /**
+         * Override: custom magic-link email sender.
+         * When provided, this callback is used instead of `mailer`.
+         */
+        sendMagicLink?: (to: string, token: string, link: string, lang?: string) => Promise<void>;
+        /**
+         * Override: custom password-reset email sender.
+         * When provided, this callback is used instead of `mailer`.
+         */
+        sendPasswordReset?: (to: string, token: string, link: string, lang?: string) => Promise<void>;
+        /**
+         * Override: custom welcome email sender.
+         * When provided, this callback is used instead of `mailer`.
+         */
+        sendWelcome?: (to: string, data: Record<string, unknown>, lang?: string) => Promise<void>;
+    };
+    oauth?: {
+        google?: {
+            clientId: string;
+            clientSecret: string;
+            callbackUrl: string;
+            projectId?: string;
+        };
+        github?: {
+            clientId: string;
+            clientSecret: string;
+            callbackUrl: string;
+        };
+    };
+    twoFactor?: {
+        appName?: string;
+    };
+}
+//# sourceMappingURL=auth-config.model.d.ts.map

package/dist/models/auth-config.model.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-config.model.d.ts","sourceRoot":"","sources":["../../src/models/auth-config.model.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AACH,MAAM,WAAW,YAAY;IAC3B,6EAA6E;IAC7E,QAAQ,EAAE,MAAM,CAAC;IACjB,8CAA8C;IAC9C,MAAM,EAAE,MAAM,CAAC;IACf,4BAA4B;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,sCAAsC;IACtC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB;;;;OAIG;IACH,WAAW,CAAC,EAAE,IAAI,GAAG,IAAI,CAAC;CAC3B;AAED,MAAM,WAAW,UAAU;IACzB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,kBAAkB,EAAE,MAAM,CAAC;IAC3B,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,aAAa,CAAC,EAAE;QACd,MAAM,CAAC,EAAE,OAAO,CAAC;QACjB,QAAQ,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;QACrC,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB,CAAC;IACF,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,GAAG,CAAC,EAAE;QACJ,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,EAAE,MAAM,CAAC;QACf,QAAQ,EAAE,MAAM,CAAC;QACjB,QAAQ,EAAE,MAAM,CAAC;QACjB,oBAAoB,CAAC,EAAE,MAAM,CAAC;KAC/B,CAAC;IACF,KAAK,CAAC,EAAE;QACN;;;WAGG;QACH,OAAO,CAAC,EAAE,MAAM,CAAC;QAEjB;;;;;WAKG;QACH,MAAM,CAAC,EAAE,YAAY,CAAC;QAEtB;;;WAGG;QACH,aAAa,CAAC,EAAE,CAAC,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;QAE1F;;;WAGG;QACH,iBAAiB,CAAC,EAAE,CAAC,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;QAE9F;;;WAGG;QACH,WAAW,CAAC,EAAE,CAAC,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,IAAI,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;KAC3F,CAAC;IACF,KAAK,CAAC,EAAE;QACN,MAAM,CAAC,EAAE;YACP,QAAQ,EAAE,MAAM,CAAC;YACjB,YAAY,EAAE,MAAM,CAAC;YACrB,WAAW,EAAE,MAAM,CAAC;YACpB,SAAS,CAAC,EAAE,MAAM,CAAC;SACpB,CAAC;QACF,MAAM,CAAC,EAAE;YACP,QAAQ,EAAE,MAAM,CAAC;YACjB,YAAY,EAAE,MAAM,CAAC;YACrB,WAAW,EAAE,MAAM,CAAC;SACrB,CAAC;KACH,CAAC;IACF,SAAS,CAAC,EAAE;QACV,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,CAAC;CACH"}

package/dist/models/auth-config.model.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=auth-config.model.js.map

package/dist/models/auth-config.model.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-config.model.js","sourceRoot":"","sources":["../../src/models/auth-config.model.ts"],"names":[],"mappings":""}

package/dist/models/errors.d.ts

@@ -0,0 +1,6 @@
+export declare class AuthError extends Error {
+    readonly code: string;
+    readonly statusCode: number;
+    constructor(message: string, code: string, statusCode?: number);
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/models/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/models/errors.ts"],"names":[],"mappings":"AAAA,qBAAa,SAAU,SAAQ,KAAK;aAGhB,IAAI,EAAE,MAAM;aACZ,UAAU,EAAE,MAAM;gBAFlC,OAAO,EAAE,MAAM,EACC,IAAI,EAAE,MAAM,EACZ,UAAU,GAAE,MAAY;CAK3C"}

package/dist/models/errors.js

@@ -0,0 +1,13 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthError = void 0;
+class AuthError extends Error {
+    constructor(message, code, statusCode = 401) {
+        super(message);
+        this.code = code;
+        this.statusCode = statusCode;
+        this.name = 'AuthError';
+    }
+}
+exports.AuthError = AuthError;
+//# sourceMappingURL=errors.js.map

package/dist/models/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../../src/models/errors.ts"],"names":[],"mappings":";;;AAAA,MAAa,SAAU,SAAQ,KAAK;IAClC,YACE,OAAe,EACC,IAAY,EACZ,aAAqB,GAAG;QAExC,KAAK,CAAC,OAAO,CAAC,CAAC;QAHC,SAAI,GAAJ,IAAI,CAAQ;QACZ,eAAU,GAAV,UAAU,CAAc;QAGxC,IAAI,CAAC,IAAI,GAAG,WAAW,CAAC;IAC1B,CAAC;CACF;AATD,8BASC"}

package/dist/models/token.model.d.ts

@@ -0,0 +1,12 @@
+export interface TokenPair {
+    accessToken: string;
+    refreshToken: string;
+}
+export interface AccessTokenPayload {
+    sub: string;
+    email: string;
+    role?: string;
+    iat?: number;
+    exp?: number;
+}
+//# sourceMappingURL=token.model.d.ts.map

package/dist/models/token.model.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token.model.d.ts","sourceRoot":"","sources":["../../src/models/token.model.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,SAAS;IACxB,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,kBAAkB;IACjC,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;CACd"}

package/dist/models/token.model.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=token.model.js.map

package/dist/models/token.model.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token.model.js","sourceRoot":"","sources":["../../src/models/token.model.ts"],"names":[],"mappings":""}

package/dist/models/user.model.d.ts

@@ -0,0 +1,18 @@
+export interface BaseUser {
+    id: string;
+    email: string;
+    password?: string;
+    role?: string;
+    refreshToken?: string | null;
+    refreshTokenExpiry?: Date | null;
+    resetToken?: string | null;
+    resetTokenExpiry?: Date | null;
+    totpSecret?: string | null;
+    isTotpEnabled?: boolean;
+    magicLinkToken?: string | null;
+    magicLinkTokenExpiry?: Date | null;
+    smsCode?: string | null;
+    smsCodeExpiry?: Date | null;
+    phoneNumber?: string | null;
+}
+//# sourceMappingURL=user.model.d.ts.map

package/dist/models/user.model.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"user.model.d.ts","sourceRoot":"","sources":["../../src/models/user.model.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,kBAAkB,CAAC,EAAE,IAAI,GAAG,IAAI,CAAC;IACjC,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,gBAAgB,CAAC,EAAE,IAAI,GAAG,IAAI,CAAC;IAC/B,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,oBAAoB,CAAC,EAAE,IAAI,GAAG,IAAI,CAAC;IACnC,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,aAAa,CAAC,EAAE,IAAI,GAAG,IAAI,CAAC;IAC5B,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAC7B"}

package/dist/models/user.model.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=user.model.js.map

package/dist/models/user.model.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"user.model.js","sourceRoot":"","sources":["../../src/models/user.model.ts"],"names":[],"mappings":""}

package/dist/router/auth.router.d.ts

@@ -0,0 +1,13 @@
+import { Router, RequestHandler } from 'express';
+import { IUserStore } from '../interfaces/user-store.interface';
+import { AuthConfig } from '../models/auth-config.model';
+import { GoogleStrategy } from '../strategies/oauth/google.strategy';
+import { GithubStrategy } from '../strategies/oauth/github.strategy';
+export interface RouterOptions {
+    googleStrategy?: GoogleStrategy;
+    githubStrategy?: GithubStrategy;
+    /** Optional rate limiter middleware applied to sensitive auth endpoints (login, refresh, password reset, etc.). */
+    rateLimiter?: RequestHandler;
+}
+export declare function createAuthRouter(userStore: IUserStore, config: AuthConfig, options?: RouterOptions): Router;
+//# sourceMappingURL=auth.router.d.ts.map

package/dist/router/auth.router.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.router.d.ts","sourceRoot":"","sources":["../../src/router/auth.router.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAqB,cAAc,EAAE,MAAM,SAAS,CAAC;AACpE,OAAO,EAAE,UAAU,EAAE,MAAM,oCAAoC,CAAC;AAChE,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAQzD,OAAO,EAAE,cAAc,EAAE,MAAM,qCAAqC,CAAC;AACrE,OAAO,EAAE,cAAc,EAAE,MAAM,qCAAqC,CAAC;AAIrE,MAAM,WAAW,aAAa;IAC5B,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,mHAAmH;IACnH,WAAW,CAAC,EAAE,cAAc,CAAC;CAC9B;AAgBD,wBAAgB,gBAAgB,CAC9B,SAAS,EAAE,UAAU,EACrB,MAAM,EAAE,UAAU,EAClB,OAAO,GAAE,aAAkB,GAC1B,MAAM,CAsUR"}