@pawells/nestjs-auth 1.0.0-dev.3052c75

package/build/decorators/context-utils.d.ts

@@ -0,0 +1,101 @@
+import { ExecutionContext } from '@nestjs/common';
+/**
+ * Context Options for Authentication Decorators
+ *
+ * Defines options for context-aware parameter extraction in authentication decorators.
+ * Supports automatic context detection and explicit context type specification.
+ */
+export interface ContextOptions {
+    /**
+     * The execution context type. If not specified, context will be auto-detected.
+     */
+    contextType?: 'http' | 'graphql' | 'websocket' | undefined;
+    /**
+     * Whether to auto-detect the context type. Defaults to true.
+     * When true, the decorator will automatically determine the context type.
+     * When false, the contextType must be explicitly specified.
+     */
+    autoDetect?: boolean;
+}
+/**
+ * Default context options with auto-detection enabled
+ */
+export declare const DEFAULT_CONTEXT_OPTIONS: ContextOptions;
+/**
+ * Detects the execution context type from the current ExecutionContext
+ *
+ * @param ctx - The NestJS execution context
+ * @returns The detected context type ('http', 'graphql', or 'websocket'); defaults to 'http' if undetermined
+ *
+ * @example
+ * ```typescript
+ * const contextType = DetectContextType(ctx);
+ * if (contextType === 'graphql') {
+ *   // Handle GraphQL context
+ * }
+ * ```
+ */
+export declare function DetectContextType(ctx: ExecutionContext): 'http' | 'graphql' | 'websocket';
+/**
+ * Extracts the request object from any supported execution context
+ *
+ * @param ctx - The NestJS execution context
+ * @param options - Context options for extraction behavior
+ * @returns The request object from the appropriate context
+ * @throws Error if request cannot be extracted or context type is unsupported
+ *
+ * @example
+ * ```typescript
+ * const request = extractRequestFromContext(ctx);
+ * const user = request.user;
+ * const token = request.headers.authorization;
+ * ```
+ */
+export declare function ExtractRequestFromContext(ctx: ExecutionContext, options?: ContextOptions): any;
+/**
+ * Extracts the authenticated user from any supported execution context
+ *
+ * @param ctx - The NestJS execution context
+ * @param options - Context options for extraction behavior
+ * @returns The authenticated user object or undefined if not found
+ *
+ * @example
+ * ```typescript
+ * const user = extractUserFromContext(ctx);
+ * if (user) {
+ *   console.log('User ID:', user.id);
+ * }
+ * ```
+ *
+ * @example With property path
+ * ```typescript
+ * const userId = extractUserFromContext(ctx, { property: 'id' });
+ * ```
+ */
+export declare function ExtractUserFromContext(ctx: ExecutionContext, options?: ContextOptions & {
+    property?: string;
+}): any;
+/**
+ * Extracts the authorization token from any supported execution context
+ *
+ * @param ctx - The NestJS execution context
+ * @param options - Context options for extraction behavior
+ * @returns The authorization token string or undefined if not found
+ *
+ * @example
+ * ```typescript
+ * const token = extractAuthTokenFromContext(ctx);
+ * if (token) {
+ *   // Validate token
+ * }
+ * ```
+ */
+export declare function ExtractAuthTokenFromContext(ctx: ExecutionContext, options?: ContextOptions): string | undefined;
+/**
+ * Backwards compatibility aliases - exported functions use PascalCase per project conventions
+ */
+export declare const detectContextType: typeof DetectContextType;
+export declare const extractAuthTokenFromContext: typeof ExtractAuthTokenFromContext;
+export declare const extractRequestFromContext: typeof ExtractRequestFromContext;
+export declare const extractUserFromContext: typeof ExtractUserFromContext;
+//# sourceMappingURL=context-utils.d.ts.map

package/build/decorators/context-utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"context-utils.d.ts","sourceRoot":"","sources":["../../src/decorators/context-utils.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AAGlD;;;;;GAKG;AACH,MAAM,WAAW,cAAc;IAC9B;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,GAAG,WAAW,GAAG,SAAS,CAAC;IAE3D;;;;OAIG;IACH,UAAU,CAAC,EAAE,OAAO,CAAC;CACrB;AAED;;GAEG;AACH,eAAO,MAAM,uBAAuB,EAAE,cAErC,CAAC;AAEF;;;;;;;;;;;;;GAaG;AACH,wBAAgB,iBAAiB,CAAC,GAAG,EAAE,gBAAgB,GAAG,MAAM,GAAG,SAAS,GAAG,WAAW,CAgCzF;AAED;;;;;;;;;;;;;;GAcG;AACH,wBAAgB,yBAAyB,CACxC,GAAG,EAAE,gBAAgB,EACrB,OAAO,GAAE,cAAwC,GAC/C,GAAG,CAwCL;AAED;;;;;;;;;;;;;;;;;;;GAmBG;AACH,wBAAgB,sBAAsB,CACrC,GAAG,EAAE,gBAAgB,EACrB,OAAO,GAAE,cAAc,GAAG;IAAE,QAAQ,CAAC,EAAE,MAAM,CAAA;CAA4B,GACvE,GAAG,CAsBL;AAED;;;;;;;;;;;;;;GAcG;AACH,wBAAgB,2BAA2B,CAC1C,GAAG,EAAE,gBAAgB,EACrB,OAAO,GAAE,cAAwC,GAC/C,MAAM,GAAG,SAAS,CAoBpB;AAED;;GAEG;AACH,eAAO,MAAM,iBAAiB,0BAAoB,CAAC;AACnD,eAAO,MAAM,2BAA2B,oCAA8B,CAAC;AACvE,eAAO,MAAM,yBAAyB,kCAA4B,CAAC;AACnE,eAAO,MAAM,sBAAsB,+BAAyB,CAAC"}

package/build/decorators/context-utils.js

@@ -0,0 +1,178 @@
+import { GqlExecutionContext } from '@nestjs/graphql';
+/**
+ * Default context options with auto-detection enabled
+ */
+export const DEFAULT_CONTEXT_OPTIONS = {
+    autoDetect: true,
+};
+/**
+ * Detects the execution context type from the current ExecutionContext
+ *
+ * @param ctx - The NestJS execution context
+ * @returns The detected context type ('http', 'graphql', or 'websocket'); defaults to 'http' if undetermined
+ *
+ * @example
+ * ```typescript
+ * const contextType = DetectContextType(ctx);
+ * if (contextType === 'graphql') {
+ *   // Handle GraphQL context
+ * }
+ * ```
+ */
+export function DetectContextType(ctx) {
+    // Use the context type reported by NestJS rather than try/catch,
+    // because GqlExecutionContext.create() never throws - it always wraps the context.
+    const contextType = ctx.getType();
+    if (contextType === 'graphql') {
+        return 'graphql';
+    }
+    if (contextType === 'ws') {
+        return 'websocket';
+    }
+    if (contextType === 'http') {
+        return 'http';
+    }
+    // For GraphQL contexts using @nestjs/graphql, the type is 'graphql'
+    // but some setups may use 'http' with a GraphQL layer on top.
+    // Fall back to checking if GqlExecutionContext can extract GraphQL args.
+    try {
+        const gqlCtx = GqlExecutionContext.create(ctx);
+        const info = gqlCtx.getInfo();
+        if (info?.fieldName) {
+            return 'graphql';
+        }
+    }
+    catch {
+        // Not a GraphQL context
+    }
+    // Default to http if we can't determine the type
+    return 'http';
+}
+/**
+ * Extracts the request object from any supported execution context
+ *
+ * @param ctx - The NestJS execution context
+ * @param options - Context options for extraction behavior
+ * @returns The request object from the appropriate context
+ * @throws Error if request cannot be extracted or context type is unsupported
+ *
+ * @example
+ * ```typescript
+ * const request = extractRequestFromContext(ctx);
+ * const user = request.user;
+ * const token = request.headers.authorization;
+ * ```
+ */
+export function ExtractRequestFromContext(ctx, options = DEFAULT_CONTEXT_OPTIONS) {
+    const contextType = options.autoDetect
+        ? DetectContextType(ctx)
+        : options.contextType;
+    if (!contextType) {
+        throw new Error('Context type must be specified when autoDetect is false');
+    }
+    switch (contextType) {
+        case 'http':
+            return ctx.switchToHttp().getRequest();
+        case 'graphql': {
+            const gqlCtx = GqlExecutionContext.create(ctx);
+            return gqlCtx.getContext().req;
+        }
+        case 'websocket': {
+            const wsCtx = ctx.switchToWs();
+            const client = wsCtx.getClient();
+            // Socket.IO provides handshake data with headers; raw WebSockets use upgradeReq
+            // Attempt to return an object with headers for header-based auth extraction
+            if (client?.handshake) {
+                // Socket.IO client — has handshake with headers
+                return { headers: client.handshake.headers, ...client };
+            }
+            if (client?.upgradeReq?.headers) {
+                // Raw WS — has upgradeReq with headers
+                return { headers: client.upgradeReq.headers, ...client };
+            }
+            // Fallback to raw client if no headers available
+            return client;
+        }
+        default:
+            throw new Error(`Unsupported context type: ${contextType}`);
+    }
+}
+/**
+ * Extracts the authenticated user from any supported execution context
+ *
+ * @param ctx - The NestJS execution context
+ * @param options - Context options for extraction behavior
+ * @returns The authenticated user object or undefined if not found
+ *
+ * @example
+ * ```typescript
+ * const user = extractUserFromContext(ctx);
+ * if (user) {
+ *   console.log('User ID:', user.id);
+ * }
+ * ```
+ *
+ * @example With property path
+ * ```typescript
+ * const userId = extractUserFromContext(ctx, { property: 'id' });
+ * ```
+ */
+export function ExtractUserFromContext(ctx, options = DEFAULT_CONTEXT_OPTIONS) {
+    const request = ExtractRequestFromContext(ctx, options);
+    if (!request) {
+        return undefined;
+    }
+    let { user } = request;
+    if (options.property && user) {
+        // Extract nested property using dot notation
+        const keys = options.property.split('.');
+        for (const key of keys) {
+            if (user && typeof user === 'object') {
+                user = user[key];
+            }
+            else {
+                return undefined;
+            }
+        }
+    }
+    return user;
+}
+/**
+ * Extracts the authorization token from any supported execution context
+ *
+ * @param ctx - The NestJS execution context
+ * @param options - Context options for extraction behavior
+ * @returns The authorization token string or undefined if not found
+ *
+ * @example
+ * ```typescript
+ * const token = extractAuthTokenFromContext(ctx);
+ * if (token) {
+ *   // Validate token
+ * }
+ * ```
+ */
+export function ExtractAuthTokenFromContext(ctx, options = DEFAULT_CONTEXT_OPTIONS) {
+    const request = ExtractRequestFromContext(ctx, options);
+    if (!request) {
+        return undefined;
+    }
+    // Try different common header variations
+    const authHeader = request.headers?.authorization ??
+        request.headers?.Authorization ??
+        request.headers?.['authorization'] ??
+        request.headers?.['Authorization'];
+    if (typeof authHeader === 'string') {
+        // Remove 'Bearer ' prefix if present
+        return authHeader.replace(/^Bearer\s+/i, '');
+    }
+    return undefined;
+}
+/**
+ * Backwards compatibility aliases - exported functions use PascalCase per project conventions
+ */
+export const detectContextType = DetectContextType;
+export const extractAuthTokenFromContext = ExtractAuthTokenFromContext;
+export const extractRequestFromContext = ExtractRequestFromContext;
+export const extractUserFromContext = ExtractUserFromContext;
+//# sourceMappingURL=context-utils.js.map

package/build/decorators/context-utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"context-utils.js","sourceRoot":"","sources":["../../src/decorators/context-utils.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAC;AAsBtD;;GAEG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAmB;IACtD,UAAU,EAAE,IAAI;CAChB,CAAC;AAEF;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,iBAAiB,CAAC,GAAqB;IACtD,iEAAiE;IACjE,mFAAmF;IACnF,MAAM,WAAW,GAAG,GAAG,CAAC,OAAO,EAAU,CAAC;IAE1C,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;QAC/B,OAAO,SAAS,CAAC;IAClB,CAAC;IAED,IAAI,WAAW,KAAK,IAAI,EAAE,CAAC;QAC1B,OAAO,WAAW,CAAC;IACpB,CAAC;IAED,IAAI,WAAW,KAAK,MAAM,EAAE,CAAC;QAC5B,OAAO,MAAM,CAAC;IACf,CAAC;IAED,oEAAoE;IACpE,8DAA8D;IAC9D,yEAAyE;IACzE,IAAI,CAAC;QACJ,MAAM,MAAM,GAAG,mBAAmB,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC/C,MAAM,IAAI,GAAG,MAAM,CAAC,OAAO,EAAE,CAAC;QAC9B,IAAI,IAAI,EAAE,SAAS,EAAE,CAAC;YACrB,OAAO,SAAS,CAAC;QAClB,CAAC;IACF,CAAC;IAAC,MAAM,CAAC;QACR,wBAAwB;IACzB,CAAC;IAED,iDAAiD;IACjD,OAAO,MAAM,CAAC;AACf,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,yBAAyB,CACxC,GAAqB,EACrB,UAA0B,uBAAuB;IAEjD,MAAM,WAAW,GAAG,OAAO,CAAC,UAAU;QACrC,CAAC,CAAC,iBAAiB,CAAC,GAAG,CAAC;QACxB,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC;IAEvB,IAAI,CAAC,WAAW,EAAE,CAAC;QAClB,MAAM,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAC;IAC5E,CAAC;IAED,QAAQ,WAAW,EAAE,CAAC;QACrB,KAAK,MAAM;YACV,OAAO,GAAG,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;QAExC,KAAK,SAAS,CAAC,CAAC,CAAC;YAChB,MAAM,MAAM,GAAG,mBAAmB,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YAC/C,OAAO,MAAM,CAAC,UAAU,EAAE,CAAC,GAAG,CAAC;QAChC,CAAC;QAED,KAAK,WAAW,CAAC,CAAC,CAAC;YAClB,MAAM,KAAK,GAAG,GAAG,CAAC,UAAU,EAAE,CAAC;YAC/B,MAAM,MAAM,GAAG,KAAK,CAAC,SAAS,EAAE,CAAC;YAEjC,gFAAgF;YAChF,4EAA4E;YAC5E,IAAI,MAAM,EAAE,SAAS,EAAE,CAAC;gBACvB,gDAAgD;gBAChD,OAAO,EAAE,OAAO,EAAE,MAAM,CAAC,SAAS,CAAC,OAAO,EAAE,GAAG,MAAM,EAAE,CAAC;YACzD,CAAC;YACD,IAAI,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,CAAC;gBACjC,uCAAuC;gBACvC,OAAO,EAAE,OAAO,EAAE,MAAM,CAAC,UAAU,CAAC,OAAO,EAAE,GAAG,MAAM,EAAE,CAAC;YAC1D,CAAC;YAED,iDAAiD;YACjD,OAAO,MAAM,CAAC;QACf,CAAC;QAED;YACC,MAAM,IAAI,KAAK,CAAC,6BAA6B,WAAW,EAAE,CAAC,CAAC;IAC9D,CAAC;AACF,CAAC;AAED;;;;;;;;;;;;;;;;;;;GAmBG;AACH,MAAM,UAAU,sBAAsB,CACrC,GAAqB,EACrB,UAAkD,uBAAuB;IAEzE,MAAM,OAAO,GAAG,yBAAyB,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IAExD,IAAI,CAAC,OAAO,EAAE,CAAC;QACd,OAAO,SAAS,CAAC;IAClB,CAAC;IAED,IAAI,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC;IAEvB,IAAI,OAAO,CAAC,QAAQ,IAAI,IAAI,EAAE,CAAC;QAC9B,6CAA6C;QAC7C,MAAM,IAAI,GAAG,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACzC,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;YACxB,IAAI,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;gBACtC,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC;YAClB,CAAC;iBAAM,CAAC;gBACP,OAAO,SAAS,CAAC;YAClB,CAAC;QACF,CAAC;IACF,CAAC;IAED,OAAO,IAAI,CAAC;AACb,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,2BAA2B,CAC1C,GAAqB,EACrB,UAA0B,uBAAuB;IAEjD,MAAM,OAAO,GAAG,yBAAyB,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IAExD,IAAI,CAAC,OAAO,EAAE,CAAC;QACd,OAAO,SAAS,CAAC;IAClB,CAAC;IAED,yCAAyC;IACzC,MAAM,UAAU,GACf,OAAO,CAAC,OAAO,EAAE,aAAa;QAC9B,OAAO,CAAC,OAAO,EAAE,aAAa;QAC9B,OAAO,CAAC,OAAO,EAAE,CAAC,eAAe,CAAC;QAClC,OAAO,CAAC,OAAO,EAAE,CAAC,eAAe,CAAC,CAAC;IAEpC,IAAI,OAAO,UAAU,KAAK,QAAQ,EAAE,CAAC;QACpC,qCAAqC;QACrC,OAAO,UAAU,CAAC,OAAO,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC;IAC9C,CAAC;IAED,OAAO,SAAS,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG,iBAAiB,CAAC;AACnD,MAAM,CAAC,MAAM,2BAA2B,GAAG,2BAA2B,CAAC;AACvE,MAAM,CAAC,MAAM,yBAAyB,GAAG,yBAAyB,CAAC;AACnE,MAAM,CAAC,MAAM,sBAAsB,GAAG,sBAAsB,CAAC"}

package/build/decorators/graphql-auth-decorators.d.ts

@@ -0,0 +1,144 @@
+/**
+ * GraphQL Authentication Decorators
+ *
+ * These decorators provide GraphQL-specific authentication and authorization
+ * functionality by extending the base decorators with GraphQL context options.
+ * They maintain the same API as the base decorators but automatically configure
+ * for GraphQL execution context.
+ *
+ * @packageDocumentation
+ */
+/**
+ * GraphQL-specific Public decorator
+ *
+ * Marks GraphQL resolvers as publicly accessible, bypassing authentication.
+ * Equivalent to @Public() but explicitly configured for GraphQL context.
+ *
+ * @returns Method decorator that marks the GraphQL resolver as public
+ *
+ * @example
+ * ```typescript
+ * @GraphQLPublic()
+ * @Query(() => String)
+ * async getHealth(): Promise<string> {
+ *   return 'OK';
+ * }
+ * ```
+ */
+export declare const GraphQLPublic: () => MethodDecorator;
+/**
+ * GraphQL-specific Auth decorator
+ *
+ * Marks GraphQL resolvers as requiring authentication.
+ * Equivalent to @Auth() but explicitly configured for GraphQL context.
+ *
+ * @returns Method decorator that marks the GraphQL resolver as requiring authentication
+ *
+ * @example
+ * ```typescript
+ * @GraphQLAuth()
+ * @Query(() => User)
+ * async getCurrentUser(@GraphQLCurrentUser() user: User): Promise<User> {
+ *   return user;
+ * }
+ * ```
+ */
+export declare const GraphQLAuth: () => MethodDecorator;
+/**
+ * GraphQL-specific Roles decorator
+ *
+ * Specifies the roles required to access GraphQL resolvers.
+ * Equivalent to @Roles() but explicitly configured for GraphQL context.
+ *
+ * @param roles - Array of role names required for access
+ * @returns Method decorator that specifies role requirements for GraphQL resolvers
+ *
+ * @example
+ * ```typescript
+ * @GraphQLRoles('admin', 'moderator')
+ * @Query(() => [User])
+ * async getUsers(): Promise<User[]> {
+ *   // Only users with 'admin' or 'moderator' roles can access
+ * }
+ * ```
+ */
+export declare const GraphQLRoles: (...roles: string[]) => MethodDecorator;
+/**
+ * GraphQL-specific CurrentUser decorator
+ *
+ * Injects the currently authenticated user into GraphQL resolver parameters.
+ * Uses GraphQL context to extract the user object populated by authentication guards.
+ *
+ * @param property - Optional property path to extract from the user object (e.g., 'id', 'profile.name')
+ * @returns Parameter decorator that injects the current user from GraphQL context
+ *
+ * @example
+ * ```typescript
+ * @Query(() => User)
+ * async getCurrentUser(@GraphQLCurrentUser() user: User): Promise<User> {
+ *   return user;
+ * }
+ * ```
+ *
+ * @example With property access
+ * ```typescript
+ * @Query(() => String)
+ * async getUserId(@GraphQLCurrentUser('id') userId: string): Promise<string> {
+ *   return userId;
+ * }
+ * ```
+ */
+export declare function GraphQLCurrentUser(property?: string): ParameterDecorator;
+/**
+ * GraphQL-specific AuthToken decorator
+ *
+ * Injects the authorization token from GraphQL request context headers.
+ * Useful for custom token validation in GraphQL resolvers.
+ *
+ * @returns Parameter decorator that injects the authorization token
+ *
+ * @example
+ * ```typescript
+ * @Query(() => Boolean)
+ * async validateToken(@GraphQLAuthToken() token: string): Promise<boolean> {
+ *   return this.authService.validateToken(token);
+ * }
+ * ```
+ */
+export declare const GraphQLAuthToken: () => ParameterDecorator;
+/**
+ * GraphQL Context Parameter decorator
+ *
+ * Injects the entire GraphQL context object into resolver parameters.
+ * Provides access to request, response, and other context data in GraphQL resolvers.
+ *
+ * @returns Parameter decorator that injects the GraphQL context
+ *
+ * @example
+ * ```typescript
+ * @Query(() => String)
+ * async getRequestId(@GraphQLContextParam() context: any): Promise<string> {
+ *   return context.req.headers['x-request-id'];
+ * }
+ * ```
+ */
+export declare const GraphQLContextParam: () => ParameterDecorator;
+/**
+ * GraphQL User alias for GraphQLCurrentUser
+ *
+ * Alternative name for GraphQLCurrentUser decorator specifically for GraphQL contexts.
+ * Provides the same functionality with a more explicit name.
+ *
+ * @param property - Optional property path to extract from the user object
+ * @returns Parameter decorator that injects the current user
+ *
+ * @example
+ * ```typescript
+ * @Query(() => User)
+ * async getCurrentUser(@GraphQLUser() user: User): Promise<User> {
+ *   return user;
+ * }
+ * ```
+ */
+export declare const GraphQLUser: typeof GraphQLCurrentUser;
+//# sourceMappingURL=graphql-auth-decorators.d.ts.map

package/build/decorators/graphql-auth-decorators.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"graphql-auth-decorators.d.ts","sourceRoot":"","sources":["../../src/decorators/graphql-auth-decorators.ts"],"names":[],"mappings":"AAIA;;;;;;;;;GASG;AAEH;;;;;;;;;;;;;;;;GAgBG;AACH,eAAO,MAAM,aAAa,uBAAS,CAAC;AAEpC;;;;;;;;;;;;;;;;GAgBG;AACH,eAAO,MAAM,WAAW,uBAAO,CAAC;AAEhC;;;;;;;;;;;;;;;;;GAiBG;AACH,eAAO,MAAM,YAAY,yCAAQ,CAAC;AAElC;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,wBAAgB,kBAAkB,CAAC,QAAQ,CAAC,EAAE,MAAM,GAAG,kBAAkB,CAExE;AAED;;;;;;;;;;;;;;;GAeG;AACH,eAAO,MAAM,gBAAgB,QAAO,kBAA2D,CAAC;AAEhG;;;;;;;;;;;;;;;GAeG;AACH,eAAO,MAAM,mBAAmB,QAAO,kBAKpC,CAAC;AAEJ;;;;;;;;;;;;;;;;GAgBG;AACH,eAAO,MAAM,WAAW,2BAAqB,CAAC"}

package/build/decorators/graphql-auth-decorators.js

@@ -0,0 +1,152 @@
+import { createParamDecorator } from '@nestjs/common';
+import { GqlExecutionContext } from '@nestjs/graphql';
+import { Auth, Public, Roles, CurrentUser, AuthToken } from './auth-decorators.js';
+/**
+ * GraphQL Authentication Decorators
+ *
+ * These decorators provide GraphQL-specific authentication and authorization
+ * functionality by extending the base decorators with GraphQL context options.
+ * They maintain the same API as the base decorators but automatically configure
+ * for GraphQL execution context.
+ *
+ * @packageDocumentation
+ */
+/**
+ * GraphQL-specific Public decorator
+ *
+ * Marks GraphQL resolvers as publicly accessible, bypassing authentication.
+ * Equivalent to @Public() but explicitly configured for GraphQL context.
+ *
+ * @returns Method decorator that marks the GraphQL resolver as public
+ *
+ * @example
+ * ```typescript
+ * @GraphQLPublic()
+ * @Query(() => String)
+ * async getHealth(): Promise<string> {
+ *   return 'OK';
+ * }
+ * ```
+ */
+export const GraphQLPublic = Public;
+/**
+ * GraphQL-specific Auth decorator
+ *
+ * Marks GraphQL resolvers as requiring authentication.
+ * Equivalent to @Auth() but explicitly configured for GraphQL context.
+ *
+ * @returns Method decorator that marks the GraphQL resolver as requiring authentication
+ *
+ * @example
+ * ```typescript
+ * @GraphQLAuth()
+ * @Query(() => User)
+ * async getCurrentUser(@GraphQLCurrentUser() user: User): Promise<User> {
+ *   return user;
+ * }
+ * ```
+ */
+export const GraphQLAuth = Auth;
+/**
+ * GraphQL-specific Roles decorator
+ *
+ * Specifies the roles required to access GraphQL resolvers.
+ * Equivalent to @Roles() but explicitly configured for GraphQL context.
+ *
+ * @param roles - Array of role names required for access
+ * @returns Method decorator that specifies role requirements for GraphQL resolvers
+ *
+ * @example
+ * ```typescript
+ * @GraphQLRoles('admin', 'moderator')
+ * @Query(() => [User])
+ * async getUsers(): Promise<User[]> {
+ *   // Only users with 'admin' or 'moderator' roles can access
+ * }
+ * ```
+ */
+export const GraphQLRoles = Roles;
+/**
+ * GraphQL-specific CurrentUser decorator
+ *
+ * Injects the currently authenticated user into GraphQL resolver parameters.
+ * Uses GraphQL context to extract the user object populated by authentication guards.
+ *
+ * @param property - Optional property path to extract from the user object (e.g., 'id', 'profile.name')
+ * @returns Parameter decorator that injects the current user from GraphQL context
+ *
+ * @example
+ * ```typescript
+ * @Query(() => User)
+ * async getCurrentUser(@GraphQLCurrentUser() user: User): Promise<User> {
+ *   return user;
+ * }
+ * ```
+ *
+ * @example With property access
+ * ```typescript
+ * @Query(() => String)
+ * async getUserId(@GraphQLCurrentUser('id') userId: string): Promise<string> {
+ *   return userId;
+ * }
+ * ```
+ */
+export function GraphQLCurrentUser(property) {
+    return CurrentUser(property, { contextType: 'graphql' });
+}
+/**
+ * GraphQL-specific AuthToken decorator
+ *
+ * Injects the authorization token from GraphQL request context headers.
+ * Useful for custom token validation in GraphQL resolvers.
+ *
+ * @returns Parameter decorator that injects the authorization token
+ *
+ * @example
+ * ```typescript
+ * @Query(() => Boolean)
+ * async validateToken(@GraphQLAuthToken() token: string): Promise<boolean> {
+ *   return this.authService.validateToken(token);
+ * }
+ * ```
+ */
+export const GraphQLAuthToken = () => AuthToken({ contextType: 'graphql' });
+/**
+ * GraphQL Context Parameter decorator
+ *
+ * Injects the entire GraphQL context object into resolver parameters.
+ * Provides access to request, response, and other context data in GraphQL resolvers.
+ *
+ * @returns Parameter decorator that injects the GraphQL context
+ *
+ * @example
+ * ```typescript
+ * @Query(() => String)
+ * async getRequestId(@GraphQLContextParam() context: any): Promise<string> {
+ *   return context.req.headers['x-request-id'];
+ * }
+ * ```
+ */
+export const GraphQLContextParam = () => createParamDecorator((_data, ctx) => {
+    const gqlCtx = GqlExecutionContext.create(ctx);
+    return gqlCtx.getContext();
+})();
+/**
+ * GraphQL User alias for GraphQLCurrentUser
+ *
+ * Alternative name for GraphQLCurrentUser decorator specifically for GraphQL contexts.
+ * Provides the same functionality with a more explicit name.
+ *
+ * @param property - Optional property path to extract from the user object
+ * @returns Parameter decorator that injects the current user
+ *
+ * @example
+ * ```typescript
+ * @Query(() => User)
+ * async getCurrentUser(@GraphQLUser() user: User): Promise<User> {
+ *   return user;
+ * }
+ * ```
+ */
+export const GraphQLUser = GraphQLCurrentUser;
+//# sourceMappingURL=graphql-auth-decorators.js.map

package/build/decorators/graphql-auth-decorators.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"graphql-auth-decorators.js","sourceRoot":"","sources":["../../src/decorators/graphql-auth-decorators.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAoB,MAAM,gBAAgB,CAAC;AACxE,OAAO,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAC;AACtD,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AAEnF;;;;;;;;;GASG;AAEH;;;;;;;;;;;;;;;;GAgBG;AACH,MAAM,CAAC,MAAM,aAAa,GAAG,MAAM,CAAC;AAEpC;;;;;;;;;;;;;;;;GAgBG;AACH,MAAM,CAAC,MAAM,WAAW,GAAG,IAAI,CAAC;AAEhC;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,CAAC,MAAM,YAAY,GAAG,KAAK,CAAC;AAElC;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,MAAM,UAAU,kBAAkB,CAAC,QAAiB;IACnD,OAAO,WAAW,CAAC,QAAQ,EAAE,EAAE,WAAW,EAAE,SAAS,EAAE,CAAC,CAAC;AAC1D,CAAC;AAED;;;;;;;;;;;;;;;GAeG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,GAAuB,EAAE,CAAC,SAAS,CAAC,EAAE,WAAW,EAAE,SAAS,EAAE,CAAC,CAAC;AAEhG;;;;;;;;;;;;;;;GAeG;AACH,MAAM,CAAC,MAAM,mBAAmB,GAAG,GAAuB,EAAE,CAAC,oBAAoB,CAChF,CAAC,KAAc,EAAE,GAAqB,EAAE,EAAE;IACzC,MAAM,MAAM,GAAG,mBAAmB,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IAC/C,OAAO,MAAM,CAAC,UAAU,EAAE,CAAC;AAC5B,CAAC,CACD,EAAE,CAAC;AAEJ;;;;;;;;;;;;;;;;GAgBG;AACH,MAAM,CAAC,MAAM,WAAW,GAAG,kBAAkB,CAAC"}

package/build/decorators/index.d.ts

@@ -0,0 +1,5 @@
+export { Auth, Public, Roles, Permissions, CurrentUser, AuthToken, IS_PUBLIC_KEY, ROLES_KEY, PERMISSIONS_KEY, detectContextType, extractRequestFromContext, extractUserFromContext, extractAuthTokenFromContext, } from './auth-decorators.js';
+export type { ContextOptions } from './auth-decorators.js';
+export { GraphQLPublic, GraphQLAuth, GraphQLRoles, GraphQLCurrentUser, GraphQLAuthToken, GraphQLContextParam, GraphQLUser, } from './graphql-auth-decorators.js';
+export { ExtractRequestFromContext, ExtractUserFromContext, ExtractAuthTokenFromContext, DetectContextType } from './context-utils.js';
+//# sourceMappingURL=index.d.ts.map

package/build/decorators/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/decorators/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACN,IAAI,EACJ,MAAM,EACN,KAAK,EACL,WAAW,EACX,WAAW,EACX,SAAS,EACT,aAAa,EACb,SAAS,EACT,eAAe,EACf,iBAAiB,EACjB,yBAAyB,EACzB,sBAAsB,EACtB,2BAA2B,GAC3B,MAAM,sBAAsB,CAAC;AAE9B,YAAY,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAE3D,OAAO,EACN,aAAa,EACb,WAAW,EACX,YAAY,EACZ,kBAAkB,EAClB,gBAAgB,EAChB,mBAAmB,EACnB,WAAW,GACX,MAAM,8BAA8B,CAAC;AAEtC,OAAO,EAAE,yBAAyB,EAAE,sBAAsB,EAAE,2BAA2B,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC"}

package/build/decorators/index.js

@@ -0,0 +1,4 @@
+export { Auth, Public, Roles, Permissions, CurrentUser, AuthToken, IS_PUBLIC_KEY, ROLES_KEY, PERMISSIONS_KEY, detectContextType, extractRequestFromContext, extractUserFromContext, extractAuthTokenFromContext, } from './auth-decorators.js';
+export { GraphQLPublic, GraphQLAuth, GraphQLRoles, GraphQLCurrentUser, GraphQLAuthToken, GraphQLContextParam, GraphQLUser, } from './graphql-auth-decorators.js';
+export { ExtractRequestFromContext, ExtractUserFromContext, ExtractAuthTokenFromContext, DetectContextType } from './context-utils.js';
+//# sourceMappingURL=index.js.map

package/build/decorators/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/decorators/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACN,IAAI,EACJ,MAAM,EACN,KAAK,EACL,WAAW,EACX,WAAW,EACX,SAAS,EACT,aAAa,EACb,SAAS,EACT,eAAe,EACf,iBAAiB,EACjB,yBAAyB,EACzB,sBAAsB,EACtB,2BAA2B,GAC3B,MAAM,sBAAsB,CAAC;AAI9B,OAAO,EACN,aAAa,EACb,WAAW,EACX,YAAY,EACZ,kBAAkB,EAClB,gBAAgB,EAChB,mBAAmB,EACnB,WAAW,GACX,MAAM,8BAA8B,CAAC;AAEtC,OAAO,EAAE,yBAAyB,EAAE,sBAAsB,EAAE,2BAA2B,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC"}

package/build/guards/index.d.ts

@@ -0,0 +1,4 @@
+export { JwtAuthGuard } from './jwt-auth.guard.js';
+export { RoleGuard } from './role.guard.js';
+export { PermissionGuard } from './permission.guard.js';
+//# sourceMappingURL=index.d.ts.map

package/build/guards/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/guards/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AACnD,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC5C,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC"}

package/build/guards/index.js

@@ -0,0 +1,4 @@
+export { JwtAuthGuard } from './jwt-auth.guard.js';
+export { RoleGuard } from './role.guard.js';
+export { PermissionGuard } from './permission.guard.js';
+//# sourceMappingURL=index.js.map

package/build/guards/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/guards/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AACnD,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC5C,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC"}