@passlock/server 2.1.0

package/dist/schemas/passkey.js

@@ -0,0 +1,64 @@
+import { Schema } from "effect";
+/*
+ * Important. We don't use `type X = typeof X.Type` because it won't generate
+ * the Typedoc docs, so instead we mirror the types and use a dummy
+ * `type _x = satisfy<typeof X.Type, X>`
+ * kind of a type level satisfies
+ */
+/* Registration Options */
+export const UserVerification = Schema.Literal("required", "preferred", "discouraged");
+/* Passkey */
+export const CredentialDeviceType = ["singleDevice", "multiDevice"];
+export const Transports = [
+    "ble",
+    "hybrid",
+    "internal",
+    "nfc",
+    "usb",
+    "cable",
+    "smart-card",
+];
+/* Passkey */
+export const Passkey = Schema.TaggedStruct("Passkey", {
+    id: Schema.String,
+    userId: Schema.optional(Schema.String),
+    enabled: Schema.Boolean,
+    credential: Schema.Struct({
+        id: Schema.String, // webAuthnId (Base64Url)
+        userId: Schema.String, // webAuthnUserId (Base64Url)
+        username: Schema.String,
+        aaguid: Schema.String,
+        backedUp: Schema.Boolean,
+        counter: Schema.Number,
+        deviceType: Schema.Literal(...CredentialDeviceType),
+        transports: Schema.Array(Schema.Literal(...Transports)),
+        publicKey: Schema.Uint8ArrayFromBase64Url,
+        rpId: Schema.String,
+    }),
+    platform: Schema.optional(Schema.Struct({
+        icon: Schema.optional(Schema.String),
+        name: Schema.optional(Schema.String),
+    })),
+    lastUsed: Schema.optional(Schema.Number),
+    createdAt: Schema.Number,
+    updatedAt: Schema.Number,
+});
+export const PasskeySummary = Schema.TaggedStruct("PasskeySummary", {
+    id: Schema.String,
+    userId: Schema.String,
+    credential: Schema.Struct({
+        id: Schema.String,
+        userId: Schema.String,
+    }),
+    enabled: Schema.Boolean,
+    createdAt: Schema.Number,
+    lastUsed: Schema.optional(Schema.Number),
+});
+export const FindAllPasskeys = Schema.TaggedStruct("FindAllPasskeys", {
+    cursor: Schema.NullOr(Schema.String),
+    records: Schema.Array(PasskeySummary),
+});
+export const UpdatedPasskeys = Schema.TaggedStruct("UpdatedPasskeys", {
+    updated: Schema.Array(Passkey),
+});
+//# sourceMappingURL=passkey.js.map

package/dist/schemas/passkey.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"passkey.js","sourceRoot":"","sources":["../../src/schemas/passkey.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAA;AAE/B;;;;;GAKG;AAEH,0BAA0B;AAE1B,MAAM,CAAC,MAAM,gBAAgB,GAAG,MAAM,CAAC,OAAO,CAC5C,UAAU,EACV,WAAW,EACX,aAAa,CACd,CAAA;AAED,aAAa;AAEb,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,cAAc,EAAE,aAAa,CAAU,CAAA;AAG5E,MAAM,CAAC,MAAM,UAAU,GAAG;IACxB,KAAK;IACL,QAAQ;IACR,UAAU;IACV,KAAK;IACL,KAAK;IACL,OAAO;IACP,YAAY;CACJ,CAAA;AAGV,aAAa;AAEb,MAAM,CAAC,MAAM,OAAO,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,EAAE;IACpD,EAAE,EAAE,MAAM,CAAC,MAAM;IACjB,MAAM,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC;IACtC,OAAO,EAAE,MAAM,CAAC,OAAO;IACvB,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC;QACxB,EAAE,EAAE,MAAM,CAAC,MAAM,EAAE,yBAAyB;QAC5C,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,6BAA6B;QACpD,QAAQ,EAAE,MAAM,CAAC,MAAM;QACvB,MAAM,EAAE,MAAM,CAAC,MAAM;QACrB,QAAQ,EAAE,MAAM,CAAC,OAAO;QACxB,OAAO,EAAE,MAAM,CAAC,MAAM;QACtB,UAAU,EAAE,MAAM,CAAC,OAAO,CAAC,GAAG,oBAAoB,CAAC;QACnD,UAAU,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,GAAG,UAAU,CAAC,CAAC;QACvD,SAAS,EAAE,MAAM,CAAC,uBAAuB;QACzC,IAAI,EAAE,MAAM,CAAC,MAAM;KACpB,CAAC;IACF,QAAQ,EAAE,MAAM,CAAC,QAAQ,CACvB,MAAM,CAAC,MAAM,CAAC;QACZ,IAAI,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC;QACpC,IAAI,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC;KACrC,CAAC,CACH;IACD,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC;IACxC,SAAS,EAAE,MAAM,CAAC,MAAM;IACxB,SAAS,EAAE,MAAM,CAAC,MAAM;CACzB,CAAC,CAAA;AAMF,MAAM,CAAC,MAAM,cAAc,GAAG,MAAM,CAAC,YAAY,CAAC,gBAAgB,EAAE;IAClE,EAAE,EAAE,MAAM,CAAC,MAAM;IACjB,MAAM,EAAE,MAAM,CAAC,MAAM;IACrB,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC;QACxB,EAAE,EAAE,MAAM,CAAC,MAAM;QACjB,MAAM,EAAE,MAAM,CAAC,MAAM;KACtB,CAAC;IACF,OAAO,EAAE,MAAM,CAAC,OAAO;IACvB,SAAS,EAAE,MAAM,CAAC,MAAM;IACxB,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC;CACzC,CAAC,CAAA;AAIF,MAAM,CAAC,MAAM,eAAe,GAAG,MAAM,CAAC,YAAY,CAAC,iBAAiB,EAAE;IACpE,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;IACpC,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,cAAc,CAAC;CACtC,CAAC,CAAA;AAEF,MAAM,CAAC,MAAM,eAAe,GAAG,MAAM,CAAC,YAAY,CAAC,iBAAiB,EAAE;IACpE,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC;CAC/B,CAAC,CAAA","sourcesContent":["import { Schema } from \"effect\"\n\n/*\n * Important. We don't use `type X = typeof X.Type` because it won't generate\n * the Typedoc docs, so instead we mirror the types and use a dummy\n * `type _x = satisfy<typeof X.Type, X>`\n * kind of a type level satisfies\n */\n\n/* Registration Options */\n\nexport const UserVerification = Schema.Literal(\n  \"required\",\n  \"preferred\",\n  \"discouraged\"\n)\n\n/* Passkey */\n\nexport const CredentialDeviceType = [\"singleDevice\", \"multiDevice\"] as const\nexport type CredentialDeviceType = (typeof CredentialDeviceType)[number]\n\nexport const Transports = [\n  \"ble\",\n  \"hybrid\",\n  \"internal\",\n  \"nfc\",\n  \"usb\",\n  \"cable\",\n  \"smart-card\",\n] as const\nexport type Transports = (typeof Transports)[number]\n\n/* Passkey */\n\nexport const Passkey = Schema.TaggedStruct(\"Passkey\", {\n  id: Schema.String,\n  userId: Schema.optional(Schema.String),\n  enabled: Schema.Boolean,\n  credential: Schema.Struct({\n    id: Schema.String, // webAuthnId (Base64Url)\n    userId: Schema.String, // webAuthnUserId (Base64Url)\n    username: Schema.String,\n    aaguid: Schema.String,\n    backedUp: Schema.Boolean,\n    counter: Schema.Number,\n    deviceType: Schema.Literal(...CredentialDeviceType),\n    transports: Schema.Array(Schema.Literal(...Transports)),\n    publicKey: Schema.Uint8ArrayFromBase64Url,\n    rpId: Schema.String,\n  }),\n  platform: Schema.optional(\n    Schema.Struct({\n      icon: Schema.optional(Schema.String),\n      name: Schema.optional(Schema.String),\n    })\n  ),\n  lastUsed: Schema.optional(Schema.Number),\n  createdAt: Schema.Number,\n  updatedAt: Schema.Number,\n})\n\nexport type Passkey = typeof Passkey.Type\n\nexport type PasskeyEncoded = typeof Passkey.Encoded\n\nexport const PasskeySummary = Schema.TaggedStruct(\"PasskeySummary\", {\n  id: Schema.String,\n  userId: Schema.String,\n  credential: Schema.Struct({\n    id: Schema.String,\n    userId: Schema.String,\n  }),\n  enabled: Schema.Boolean,\n  createdAt: Schema.Number,\n  lastUsed: Schema.optional(Schema.Number),\n})\n\nexport type PasskeySummary = typeof PasskeySummary.Type\n\nexport const FindAllPasskeys = Schema.TaggedStruct(\"FindAllPasskeys\", {\n  cursor: Schema.NullOr(Schema.String),\n  records: Schema.Array(PasskeySummary),\n})\n\nexport const UpdatedPasskeys = Schema.TaggedStruct(\"UpdatedPasskeys\", {\n  updated: Schema.Array(Passkey),\n})\n"]}

package/dist/schemas/principal.d.ts

@@ -0,0 +1,88 @@
+import { Schema } from "effect";
+export declare const PrincipalSchema: Schema.TaggedStruct<"Principal", {
+    id: typeof Schema.String;
+    authenticatorId: typeof Schema.String;
+    authenticatorType: Schema.Literal<["passkey"]>;
+    createdAt: typeof Schema.Number;
+    expiresAt: typeof Schema.Number;
+    passkey: Schema.optional<Schema.Struct<{
+        userVerified: typeof Schema.Boolean;
+        verified: typeof Schema.Boolean;
+    }>>;
+    userId: typeof Schema.String;
+}>;
+export type Principal = {
+    readonly _tag: "Principal";
+    readonly id: string;
+    readonly userId: string;
+    readonly createdAt: number;
+    readonly authenticatorId: string;
+    readonly authenticatorType: "passkey";
+    readonly passkey?: {
+        readonly userVerified: boolean;
+        readonly verified: boolean;
+    } | undefined;
+    readonly expiresAt: number;
+};
+export declare const isPrincipal: (payload: unknown) => payload is Principal;
+export declare const ExtendedPrincipalSchema: Schema.TaggedStruct<"ExtendedPrincipal", {
+    id: typeof Schema.String;
+    authenticatorId: typeof Schema.String;
+    authenticatorType: Schema.Literal<["passkey"]>;
+    createdAt: typeof Schema.Number;
+    expiresAt: typeof Schema.Number;
+    passkey: Schema.optional<Schema.Struct<{
+        platformName: Schema.optional<typeof Schema.String>;
+        userVerified: typeof Schema.Boolean;
+        verified: typeof Schema.Boolean;
+    }>>;
+    userId: typeof Schema.String;
+    metadata: Schema.Struct<{
+        ipAddress: Schema.optional<typeof Schema.String>;
+        userAgent: Schema.optional<typeof Schema.String>;
+    }>;
+}>;
+export type ExtendedPrincipal = {
+    readonly _tag: "ExtendedPrincipal";
+    readonly id: string;
+    readonly authenticatorId: string;
+    readonly authenticatorType: "passkey";
+    readonly passkey?: {
+        readonly userVerified: boolean;
+        readonly verified: boolean;
+        readonly platformName?: string | undefined;
+    } | undefined;
+    readonly createdAt: number;
+    readonly expiresAt: number;
+    readonly userId: string;
+    readonly metadata: {
+        readonly ipAddress?: string | undefined;
+        readonly userAgent?: string | undefined;
+    };
+};
+export declare const isExtendedPrincipal: (payload: unknown) => payload is ExtendedPrincipal;
+export declare const IdTokenSchema: Schema.TaggedStruct<"IdToken", {
+    "a:id": typeof Schema.String;
+    "a:typ": typeof Schema.String;
+    aud: typeof Schema.String;
+    exp: typeof Schema.Number;
+    iat: typeof Schema.Number;
+    iss: Schema.Literal<["passlock.dev"]>;
+    jti: typeof Schema.String;
+    "pk:uv": typeof Schema.Boolean;
+    sub: typeof Schema.String;
+}>;
+export type IdToken = {
+    readonly "a:id": string;
+    readonly "a:typ": string;
+    readonly aud: string;
+    readonly exp: number;
+    readonly iat: number;
+    readonly iss: "passlock.dev";
+    readonly jti: string;
+    readonly "pk:uv": boolean;
+    readonly sub: string;
+    readonly _tag: "IdToken";
+};
+export declare const isIdToken: (payload: unknown) => payload is IdToken;
+//# sourceMappingURL=principal.d.ts.map

package/dist/schemas/principal.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"principal.d.ts","sourceRoot":"","sources":["../../src/schemas/principal.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAA;AAK/B,eAAO,MAAM,eAAe;;;;;;;;;;;EAa1B,CAAA;AAEF,MAAM,MAAM,SAAS,GAAG;IACtB,QAAQ,CAAC,IAAI,EAAE,WAAW,CAAA;IAC1B,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAA;IAChC,QAAQ,CAAC,iBAAiB,EAAE,SAAS,CAAA;IACrC,QAAQ,CAAC,OAAO,CAAC,EACb;QACE,QAAQ,CAAC,YAAY,EAAE,OAAO,CAAA;QAC9B,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAA;KAC3B,GACD,SAAS,CAAA;IACb,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;CAC3B,CAAA;AAED,eAAO,MAAM,WAAW,GAAI,SAAS,OAAO,KAAG,OAAO,IAAI,SACrB,CAAA;AAIrC,eAAO,MAAM,uBAAuB;;;;;;;;;;;;;;;;EAqBnC,CAAA;AAED,MAAM,MAAM,iBAAiB,GAAG;IAC9B,QAAQ,CAAC,IAAI,EAAE,mBAAmB,CAAA;IAClC,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAA;IAChC,QAAQ,CAAC,iBAAiB,EAAE,SAAS,CAAA;IACrC,QAAQ,CAAC,OAAO,CAAC,EACb;QACE,QAAQ,CAAC,YAAY,EAAE,OAAO,CAAA;QAC9B,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAA;QAC1B,QAAQ,CAAC,YAAY,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;KAC3C,GACD,SAAS,CAAA;IACb,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,QAAQ,EAAE;QACjB,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;QACvC,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;KACxC,CAAA;CACF,CAAA;AAED,eAAO,MAAM,mBAAmB,GAC9B,SAAS,OAAO,KACf,OAAO,IAAI,iBAAgE,CAAA;AAO9E,eAAO,MAAM,aAAa;;;;;;;;;;EAUxB,CAAA;AAEF,MAAM,MAAM,OAAO,GAAG;IACpB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAA;IACxB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;IACpB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;IACpB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;IACpB,QAAQ,CAAC,GAAG,EAAE,cAAc,CAAA;IAC5B,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;IACpB,QAAQ,CAAC,OAAO,EAAE,OAAO,CAAA;IACzB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;IACpB,QAAQ,CAAC,IAAI,EAAE,SAAS,CAAA;CACzB,CAAA;AAED,eAAO,MAAM,SAAS,GAAI,SAAS,OAAO,KAAG,OAAO,IAAI,OACrB,CAAA"}

package/dist/schemas/principal.js

@@ -0,0 +1,46 @@
+import { Schema } from "effect";
+/* Principal */
+export const PrincipalSchema = Schema.TaggedStruct("Principal", {
+    id: Schema.String,
+    authenticatorId: Schema.String,
+    authenticatorType: Schema.Literal("passkey"),
+    createdAt: Schema.Number,
+    expiresAt: Schema.Number,
+    passkey: Schema.optional(Schema.Struct({
+        userVerified: Schema.Boolean,
+        verified: Schema.Boolean,
+    })),
+    userId: Schema.String,
+});
+export const isPrincipal = (payload) => Schema.is(PrincipalSchema)(payload);
+export const ExtendedPrincipalSchema = Schema.TaggedStruct("ExtendedPrincipal", {
+    id: Schema.String,
+    authenticatorId: Schema.String,
+    authenticatorType: Schema.Literal("passkey"),
+    createdAt: Schema.Number,
+    expiresAt: Schema.Number,
+    passkey: Schema.optional(Schema.Struct({
+        platformName: Schema.optional(Schema.String),
+        userVerified: Schema.Boolean,
+        verified: Schema.Boolean,
+    })),
+    userId: Schema.String,
+    metadata: Schema.Struct({
+        ipAddress: Schema.optional(Schema.String),
+        userAgent: Schema.optional(Schema.String),
+    }),
+});
+export const isExtendedPrincipal = (payload) => Schema.is(ExtendedPrincipalSchema)(payload);
+export const IdTokenSchema = Schema.TaggedStruct("IdToken", {
+    "a:id": Schema.String,
+    "a:typ": Schema.String,
+    aud: Schema.String,
+    exp: Schema.Number,
+    iat: Schema.Number,
+    iss: Schema.Literal("passlock.dev"),
+    jti: Schema.String,
+    "pk:uv": Schema.Boolean,
+    sub: Schema.String,
+});
+export const isIdToken = (payload) => Schema.is(IdTokenSchema)(payload);
+//# sourceMappingURL=principal.js.map

package/dist/schemas/principal.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"principal.js","sourceRoot":"","sources":["../../src/schemas/principal.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAA;AAG/B,eAAe;AAEf,MAAM,CAAC,MAAM,eAAe,GAAG,MAAM,CAAC,YAAY,CAAC,WAAW,EAAE;IAC9D,EAAE,EAAE,MAAM,CAAC,MAAM;IACjB,eAAe,EAAE,MAAM,CAAC,MAAM;IAC9B,iBAAiB,EAAE,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC;IAC5C,SAAS,EAAE,MAAM,CAAC,MAAM;IACxB,SAAS,EAAE,MAAM,CAAC,MAAM;IACxB,OAAO,EAAE,MAAM,CAAC,QAAQ,CACtB,MAAM,CAAC,MAAM,CAAC;QACZ,YAAY,EAAE,MAAM,CAAC,OAAO;QAC5B,QAAQ,EAAE,MAAM,CAAC,OAAO;KACzB,CAAC,CACH;IACD,MAAM,EAAE,MAAM,CAAC,MAAM;CACtB,CAAC,CAAA;AAkBF,MAAM,CAAC,MAAM,WAAW,GAAG,CAAC,OAAgB,EAAwB,EAAE,CACpE,MAAM,CAAC,EAAE,CAAC,eAAe,CAAC,CAAC,OAAO,CAAC,CAAA;AAIrC,MAAM,CAAC,MAAM,uBAAuB,GAAG,MAAM,CAAC,YAAY,CACxD,mBAAmB,EACnB;IACE,EAAE,EAAE,MAAM,CAAC,MAAM;IACjB,eAAe,EAAE,MAAM,CAAC,MAAM;IAC9B,iBAAiB,EAAE,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC;IAC5C,SAAS,EAAE,MAAM,CAAC,MAAM;IACxB,SAAS,EAAE,MAAM,CAAC,MAAM;IACxB,OAAO,EAAE,MAAM,CAAC,QAAQ,CACtB,MAAM,CAAC,MAAM,CAAC;QACZ,YAAY,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC;QAC5C,YAAY,EAAE,MAAM,CAAC,OAAO;QAC5B,QAAQ,EAAE,MAAM,CAAC,OAAO;KACzB,CAAC,CACH;IACD,MAAM,EAAE,MAAM,CAAC,MAAM;IACrB,QAAQ,EAAE,MAAM,CAAC,MAAM,CAAC;QACtB,SAAS,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC;QACzC,SAAS,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC;KAC1C,CAAC;CACH,CACF,CAAA;AAuBD,MAAM,CAAC,MAAM,mBAAmB,GAAG,CACjC,OAAgB,EACc,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,uBAAuB,CAAC,CAAC,OAAO,CAAC,CAAA;AAO9E,MAAM,CAAC,MAAM,aAAa,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,EAAE;IAC1D,MAAM,EAAE,MAAM,CAAC,MAAM;IACrB,OAAO,EAAE,MAAM,CAAC,MAAM;IACtB,GAAG,EAAE,MAAM,CAAC,MAAM;IAClB,GAAG,EAAE,MAAM,CAAC,MAAM;IAClB,GAAG,EAAE,MAAM,CAAC,MAAM;IAClB,GAAG,EAAE,MAAM,CAAC,OAAO,CAAC,cAAc,CAAC;IACnC,GAAG,EAAE,MAAM,CAAC,MAAM;IAClB,OAAO,EAAE,MAAM,CAAC,OAAO;IACvB,GAAG,EAAE,MAAM,CAAC,MAAM;CACnB,CAAC,CAAA;AAeF,MAAM,CAAC,MAAM,SAAS,GAAG,CAAC,OAAgB,EAAsB,EAAE,CAChE,MAAM,CAAC,EAAE,CAAC,aAAa,CAAC,CAAC,OAAO,CAAC,CAAA","sourcesContent":["import { Schema } from \"effect\"\nimport type { satisfy } from \"./satisfy.js\"\n\n/* Principal */\n\nexport const PrincipalSchema = Schema.TaggedStruct(\"Principal\", {\n  id: Schema.String,\n  authenticatorId: Schema.String,\n  authenticatorType: Schema.Literal(\"passkey\"),\n  createdAt: Schema.Number,\n  expiresAt: Schema.Number,\n  passkey: Schema.optional(\n    Schema.Struct({\n      userVerified: Schema.Boolean,\n      verified: Schema.Boolean,\n    })\n  ),\n  userId: Schema.String,\n})\n\nexport type Principal = {\n  readonly _tag: \"Principal\"\n  readonly id: string\n  readonly userId: string\n  readonly createdAt: number\n  readonly authenticatorId: string\n  readonly authenticatorType: \"passkey\"\n  readonly passkey?:\n    | {\n        readonly userVerified: boolean\n        readonly verified: boolean\n      }\n    | undefined\n  readonly expiresAt: number\n}\n\nexport const isPrincipal = (payload: unknown): payload is Principal =>\n  Schema.is(PrincipalSchema)(payload)\n\ntype _Principal = satisfy<typeof PrincipalSchema.Type, Principal>\n\nexport const ExtendedPrincipalSchema = Schema.TaggedStruct(\n  \"ExtendedPrincipal\",\n  {\n    id: Schema.String,\n    authenticatorId: Schema.String,\n    authenticatorType: Schema.Literal(\"passkey\"),\n    createdAt: Schema.Number,\n    expiresAt: Schema.Number,\n    passkey: Schema.optional(\n      Schema.Struct({\n        platformName: Schema.optional(Schema.String),\n        userVerified: Schema.Boolean,\n        verified: Schema.Boolean,\n      })\n    ),\n    userId: Schema.String,\n    metadata: Schema.Struct({\n      ipAddress: Schema.optional(Schema.String),\n      userAgent: Schema.optional(Schema.String),\n    }),\n  }\n)\n\nexport type ExtendedPrincipal = {\n  readonly _tag: \"ExtendedPrincipal\"\n  readonly id: string\n  readonly authenticatorId: string\n  readonly authenticatorType: \"passkey\"\n  readonly passkey?:\n    | {\n        readonly userVerified: boolean\n        readonly verified: boolean\n        readonly platformName?: string | undefined\n      }\n    | undefined\n  readonly createdAt: number\n  readonly expiresAt: number\n  readonly userId: string\n  readonly metadata: {\n    readonly ipAddress?: string | undefined\n    readonly userAgent?: string | undefined\n  }\n}\n\nexport const isExtendedPrincipal = (\n  payload: unknown\n): payload is ExtendedPrincipal => Schema.is(ExtendedPrincipalSchema)(payload)\n\ntype _ExtendedPrincipal = satisfy<\n  typeof ExtendedPrincipalSchema.Type,\n  ExtendedPrincipal\n>\n\nexport const IdTokenSchema = Schema.TaggedStruct(\"IdToken\", {\n  \"a:id\": Schema.String,\n  \"a:typ\": Schema.String,\n  aud: Schema.String,\n  exp: Schema.Number,\n  iat: Schema.Number,\n  iss: Schema.Literal(\"passlock.dev\"),\n  jti: Schema.String,\n  \"pk:uv\": Schema.Boolean,\n  sub: Schema.String,\n})\n\nexport type IdToken = {\n  readonly \"a:id\": string\n  readonly \"a:typ\": string\n  readonly aud: string\n  readonly exp: number\n  readonly iat: number\n  readonly iss: \"passlock.dev\"\n  readonly jti: string\n  readonly \"pk:uv\": boolean\n  readonly sub: string\n  readonly _tag: \"IdToken\"\n}\n\nexport const isIdToken = (payload: unknown): payload is IdToken =>\n  Schema.is(IdTokenSchema)(payload)\n\ntype _IdToken = satisfy<typeof IdTokenSchema.Type, IdToken>\n"]}

package/dist/schemas/satisfy.d.ts

@@ -0,0 +1,2 @@
+export type satisfy<base, t extends base> = t;
+//# sourceMappingURL=satisfy.d.ts.map

package/dist/schemas/satisfy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"satisfy.d.ts","sourceRoot":"","sources":["../../src/schemas/satisfy.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,OAAO,CAAC,IAAI,EAAE,CAAC,SAAS,IAAI,IAAI,CAAC,CAAA"}

package/dist/schemas/satisfy.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=satisfy.js.map

package/dist/schemas/satisfy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"satisfy.js","sourceRoot":"","sources":["../../src/schemas/satisfy.ts"],"names":[],"mappings":"","sourcesContent":["export type satisfy<base, t extends base> = t\n"]}

package/dist/schemas/signup.d.ts

@@ -0,0 +1,13 @@
+import { Schema } from "effect";
+export declare const SignupPayload: Schema.Struct<{
+    email: typeof Schema.String;
+    firstName: typeof Schema.String;
+    lastName: typeof Schema.String;
+}>;
+export type SignupPayload = typeof SignupPayload.Type;
+export declare const TenancyData: Schema.TaggedStruct<"TenancyData", {
+    apiKey: Schema.Redacted<typeof Schema.String>;
+    tenancyId: typeof Schema.String;
+}>;
+export type TenancyData = typeof TenancyData.Type;
+//# sourceMappingURL=signup.d.ts.map

package/dist/schemas/signup.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"signup.d.ts","sourceRoot":"","sources":["../../src/schemas/signup.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAA;AAE/B,eAAO,MAAM,aAAa;;;;EAIxB,CAAA;AAEF,MAAM,MAAM,aAAa,GAAG,OAAO,aAAa,CAAC,IAAI,CAAA;AAErD,eAAO,MAAM,WAAW;;;EAGtB,CAAA;AAEF,MAAM,MAAM,WAAW,GAAG,OAAO,WAAW,CAAC,IAAI,CAAA"}

package/dist/schemas/signup.js

@@ -0,0 +1,11 @@
+import { Schema } from "effect";
+export const SignupPayload = Schema.Struct({
+    email: Schema.String,
+    firstName: Schema.String,
+    lastName: Schema.String,
+});
+export const TenancyData = Schema.TaggedStruct("TenancyData", {
+    apiKey: Schema.Redacted(Schema.String),
+    tenancyId: Schema.String,
+});
+//# sourceMappingURL=signup.js.map

package/dist/schemas/signup.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"signup.js","sourceRoot":"","sources":["../../src/schemas/signup.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAA;AAE/B,MAAM,CAAC,MAAM,aAAa,GAAG,MAAM,CAAC,MAAM,CAAC;IACzC,KAAK,EAAE,MAAM,CAAC,MAAM;IACpB,SAAS,EAAE,MAAM,CAAC,MAAM;IACxB,QAAQ,EAAE,MAAM,CAAC,MAAM;CACxB,CAAC,CAAA;AAIF,MAAM,CAAC,MAAM,WAAW,GAAG,MAAM,CAAC,YAAY,CAAC,aAAa,EAAE;IAC5D,MAAM,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC;IACtC,SAAS,EAAE,MAAM,CAAC,MAAM;CACzB,CAAC,CAAA","sourcesContent":["import { Schema } from \"effect\"\n\nexport const SignupPayload = Schema.Struct({\n  email: Schema.String,\n  firstName: Schema.String,\n  lastName: Schema.String,\n})\n\nexport type SignupPayload = typeof SignupPayload.Type\n\nexport const TenancyData = Schema.TaggedStruct(\"TenancyData\", {\n  apiKey: Schema.Redacted(Schema.String),\n  tenancyId: Schema.String,\n})\n\nexport type TenancyData = typeof TenancyData.Type\n"]}

package/dist/shared.d.ts

@@ -0,0 +1,19 @@
+export type PasslockOptions = {
+    tenancyId: string;
+    /**
+     * @default https://api.passlock.dev
+     */
+    endpoint?: string;
+};
+export interface AuthenticatedOptions extends PasslockOptions {
+    apiKey: string;
+}
+export declare class UnexpectedError extends Error {
+    readonly _tag: string;
+    constructor(data: {
+        _tag: string;
+        message: string;
+    });
+    readonly toString: () => string;
+}
+//# sourceMappingURL=shared.d.ts.map

package/dist/shared.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"shared.d.ts","sourceRoot":"","sources":["../src/shared.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,eAAe,GAAG;IAC5B,SAAS,EAAE,MAAM,CAAA;IAEjB;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAA;CAClB,CAAA;AAED,MAAM,WAAW,oBAAqB,SAAQ,eAAe;IAC3D,MAAM,EAAE,MAAM,CAAA;CACf;AAED,qBAAa,eAAgB,SAAQ,KAAK;IACxC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;gBAET,IAAI,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE;IAKnD,SAAkB,QAAQ,QAAO,MAAM,CACC;CACzC"}

package/dist/shared.js

@@ -0,0 +1,9 @@
+export class UnexpectedError extends Error {
+    _tag;
+    constructor(data) {
+        super(data.message);
+        this._tag = data._tag;
+    }
+    toString = () => `${this.message} (_tag: ${this._tag})`;
+}
+//# sourceMappingURL=shared.js.map

package/dist/shared.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"shared.js","sourceRoot":"","sources":["../src/shared.ts"],"names":[],"mappings":"AAaA,MAAM,OAAO,eAAgB,SAAQ,KAAK;IAC/B,IAAI,CAAQ;IAErB,YAAY,IAAuC;QACjD,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;QACnB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAA;IACvB,CAAC;IAEiB,QAAQ,GAAG,GAAW,EAAE,CACxC,GAAG,IAAI,CAAC,OAAO,WAAW,IAAI,CAAC,IAAI,GAAG,CAAA;CACzC","sourcesContent":["export type PasslockOptions = {\n  tenancyId: string\n\n  /**\n   * @default https://api.passlock.dev\n   */\n  endpoint?: string\n}\n\nexport interface AuthenticatedOptions extends PasslockOptions {\n  apiKey: string\n}\n\nexport class UnexpectedError extends Error {\n  readonly _tag: string\n\n  constructor(data: { _tag: string; message: string }) {\n    super(data.message)\n    this._tag = data._tag\n  }\n\n  override readonly toString = (): string =>\n    `${this.message} (_tag: ${this._tag})`\n}\n"]}

package/package.json

@@ -0,0 +1,93 @@
+{
+  "name": "@passlock/server",
+  "version": "2.1.0",
+  "description": "Passkey authentication library for Fetch capable backends (Node, Bun, Vercel, Cloudflare workers etc.)",
+  "keywords": [
+    "passkey",
+    "webauthn",
+    "node",
+    "Bun",
+    "Vercel",
+    "CF Workers"
+  ],
+  "homepage": "https://passlock.dev",
+  "bugs": {
+    "url": "https://github.com/passlock-dev/passlock/issues",
+    "email": "team@passlock.dev"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/passlock-dev/passlock.git",
+    "directory": "packages/server"
+  },
+  "license": "MIT",
+  "author": {
+    "name": "Toby Hobson",
+    "email": "toby@passlock.dev"
+  },
+  "type": "module",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "default": "./dist/index.js"
+    },
+    "./safe": {
+      "types": "./dist/safe.d.ts",
+      "import": "./dist/safe.js",
+      "default": "./dist/safe.js"
+    },
+    "./effect": {
+      "types": "./dist/effect.d.ts",
+      "import": "./dist/effect.js",
+      "default": "./dist/effect.js"
+    }
+  },
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "files": [
+    "dist",
+    "!dist/**/*.test.*",
+    "!dist/**/*.spec.*"
+  ],
+  "dependencies": {
+    "effect": "3.19.19",
+    "jose": "^6.2.0"
+  },
+  "devDependencies": {
+    "@biomejs/biome": "^2.4.6",
+    "@effect/vitest": "^0.27.0",
+    "globals": "^17.4.0",
+    "npm-check-updates": "^19.6.3",
+    "publint": "0.3.18",
+    "rimraf": "^6.1.3",
+    "tsx": "4.21.0",
+    "typedoc": "^0.28.17",
+    "typescript": "^5.9.3",
+    "vite-tsconfig-paths": "^6.1.1",
+    "vitest": "^3.2.4"
+  },
+  "engines": {
+    "node": ">=20"
+  },
+  "scripts": {
+    "build": "tsc -p tsconfig.build.json",
+    "build:clean": "$npm_execpath run clean:full && $npm_execpath run build",
+    "build:production": "$npm_execpath run build:clean && $npm_execpath run build:readme && $npm_execpath run replaceTokens && echo '' && publint",
+    "build:readme": "VERSION=${npm_package_version} tsx ../../scripts/replace-readme-tokens.ts ./packages/server",
+    "typedoc": "typedoc",
+    "clean": "tsc -p tsconfig.build.json --clean",
+    "clean:full": "rimraf dist tsconfig.build.tsbuildinfo",
+    "replaceTokens": "VERSION=${npm_package_version} tsx ../../scripts/replace-tokens.ts ./packages/server",
+    "test:unit": "vitest --project unit run",
+    "test:unit:watch": "vitest --project unit",
+    "test:integration": "vitest --project integration run",
+    "test:all": "vitest --project unit --project integration run",
+    "typecheck": "tsc -p tsconfig.test.json --noEmit",
+    "lint": "biome check .",
+    "lint:fix": "biome check --fix .",
+    "lint:ci": "biome ci .",
+    "format": "biome format --fix .",
+    "format:check": "biome format ."
+  }
+}