@pikku/core 0.12.4 → 0.12.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (235) hide show
  1. package/CHANGELOG.md +21 -1
  2. package/dist/dev/hot-reload.d.ts +10 -0
  3. package/dist/dev/hot-reload.js +158 -0
  4. package/dist/middleware-runner.d.ts +1 -0
  5. package/dist/middleware-runner.js +5 -0
  6. package/dist/permissions.d.ts +1 -0
  7. package/dist/permissions.js +5 -0
  8. package/dist/services/content-service.d.ts +2 -0
  9. package/dist/services/in-memory-workflow-service.d.ts +1 -0
  10. package/dist/services/in-memory-workflow-service.js +16 -11
  11. package/dist/services/workflow-service.d.ts +1 -0
  12. package/dist/wirings/ai-agent/ai-agent-prepare.js +16 -1
  13. package/dist/wirings/channel/channel-middleware-runner.d.ts +1 -0
  14. package/dist/wirings/channel/channel-middleware-runner.js +5 -0
  15. package/dist/wirings/http/http-runner.js +1 -1
  16. package/dist/wirings/workflow/pikku-workflow-service.d.ts +6 -0
  17. package/dist/wirings/workflow/pikku-workflow-service.js +51 -16
  18. package/dist/wirings/workflow/workflow.types.d.ts +2 -0
  19. package/package.json +5 -3
  20. package/src/crypto-utils.test.ts +214 -0
  21. package/src/crypto-utils.ts +213 -0
  22. package/src/dev/hot-reload.test.ts +484 -0
  23. package/src/dev/hot-reload.ts +212 -0
  24. package/src/errors/error-handler.ts +62 -0
  25. package/src/errors/error.test.ts +195 -0
  26. package/src/errors/errors.ts +374 -0
  27. package/src/errors/index.ts +2 -0
  28. package/src/factory-functions.test.ts +109 -0
  29. package/src/function/function-runner.test.ts +536 -0
  30. package/src/function/function-runner.ts +365 -0
  31. package/src/function/functions.types.ts +304 -0
  32. package/src/function/index.ts +5 -0
  33. package/src/handle-error.test.ts +424 -0
  34. package/src/handle-error.ts +69 -0
  35. package/src/index.ts +118 -0
  36. package/src/internal.ts +6 -0
  37. package/src/middleware/auth-apikey.test.ts +363 -0
  38. package/src/middleware/auth-apikey.ts +47 -0
  39. package/src/middleware/auth-bearer.test.ts +450 -0
  40. package/src/middleware/auth-bearer.ts +72 -0
  41. package/src/middleware/auth-cookie.test.ts +528 -0
  42. package/src/middleware/auth-cookie.ts +80 -0
  43. package/src/middleware/cors.test.ts +424 -0
  44. package/src/middleware/cors.ts +104 -0
  45. package/src/middleware/index.ts +5 -0
  46. package/src/middleware/remote-auth.test.ts +488 -0
  47. package/src/middleware/remote-auth.ts +68 -0
  48. package/src/middleware/timeout.ts +15 -0
  49. package/src/middleware-runner.test.ts +418 -0
  50. package/src/middleware-runner.ts +240 -0
  51. package/src/permissions.test.ts +434 -0
  52. package/src/permissions.ts +327 -0
  53. package/src/pikku-request.ts +23 -0
  54. package/src/pikku-response.ts +5 -0
  55. package/src/pikku-state.test.ts +224 -0
  56. package/src/pikku-state.ts +216 -0
  57. package/src/run-tests-script.test.ts +49 -0
  58. package/src/schema.test.ts +249 -0
  59. package/src/schema.ts +151 -0
  60. package/src/services/ai-agent-runner-service.ts +41 -0
  61. package/src/services/ai-run-state-service.ts +20 -0
  62. package/src/services/ai-storage-service.ts +39 -0
  63. package/src/services/content-service.ts +81 -0
  64. package/src/services/deployment-service.ts +22 -0
  65. package/src/services/gateway-service.ts +20 -0
  66. package/src/services/gopass-secrets.ts +98 -0
  67. package/src/services/in-memory-ai-run-state-service.ts +73 -0
  68. package/src/services/in-memory-trigger-service.ts +64 -0
  69. package/src/services/in-memory-workflow-service.test.ts +351 -0
  70. package/src/services/in-memory-workflow-service.ts +512 -0
  71. package/src/services/index.ts +56 -0
  72. package/src/services/jwt-service.ts +30 -0
  73. package/src/services/local-content.ts +120 -0
  74. package/src/services/local-gateway-service.ts +62 -0
  75. package/src/services/local-secrets.test.ts +80 -0
  76. package/src/services/local-secrets.ts +94 -0
  77. package/src/services/local-variables.test.ts +61 -0
  78. package/src/services/local-variables.ts +39 -0
  79. package/src/services/logger-console.test.ts +118 -0
  80. package/src/services/logger-console.ts +98 -0
  81. package/src/services/logger.ts +57 -0
  82. package/src/services/scheduler-service.ts +86 -0
  83. package/src/services/schema-service.ts +33 -0
  84. package/src/services/scoped-secret-service.test.ts +74 -0
  85. package/src/services/scoped-secret-service.ts +41 -0
  86. package/src/services/secret-service.ts +38 -0
  87. package/src/services/trigger-service.ts +17 -0
  88. package/src/services/typed-secret-service.test.ts +93 -0
  89. package/src/services/typed-secret-service.ts +70 -0
  90. package/src/services/typed-variables-service.test.ts +73 -0
  91. package/src/services/typed-variables-service.ts +81 -0
  92. package/src/services/user-session-service.test.ts +113 -0
  93. package/src/services/user-session-service.ts +86 -0
  94. package/src/services/variables-service.ts +11 -0
  95. package/src/services/workflow-service.ts +96 -0
  96. package/src/testing/index.ts +2 -0
  97. package/src/testing/service-tests.ts +873 -0
  98. package/src/time-utils.test.ts +56 -0
  99. package/src/time-utils.ts +107 -0
  100. package/src/types/core.types.ts +478 -0
  101. package/src/types/state.types.ts +188 -0
  102. package/src/utils/hash.test.ts +68 -0
  103. package/src/utils/hash.ts +26 -0
  104. package/src/utils.test.ts +350 -0
  105. package/src/utils.ts +129 -0
  106. package/src/version.test.ts +80 -0
  107. package/src/version.ts +25 -0
  108. package/src/wirings/ai-agent/agent-dynamic-workflow.ts +469 -0
  109. package/src/wirings/ai-agent/ai-agent-helpers.test.ts +152 -0
  110. package/src/wirings/ai-agent/ai-agent-helpers.ts +76 -0
  111. package/src/wirings/ai-agent/ai-agent-memory.ts +310 -0
  112. package/src/wirings/ai-agent/ai-agent-model-config.test.ts +115 -0
  113. package/src/wirings/ai-agent/ai-agent-model-config.ts +43 -0
  114. package/src/wirings/ai-agent/ai-agent-prepare.ts +659 -0
  115. package/src/wirings/ai-agent/ai-agent-registry.test.ts +37 -0
  116. package/src/wirings/ai-agent/ai-agent-registry.ts +82 -0
  117. package/src/wirings/ai-agent/ai-agent-runner.test.ts +319 -0
  118. package/src/wirings/ai-agent/ai-agent-runner.ts +773 -0
  119. package/src/wirings/ai-agent/ai-agent-stream.test.ts +859 -0
  120. package/src/wirings/ai-agent/ai-agent-stream.ts +1153 -0
  121. package/src/wirings/ai-agent/ai-agent.types.ts +382 -0
  122. package/src/wirings/ai-agent/index.ts +37 -0
  123. package/src/wirings/channel/channel-common.ts +90 -0
  124. package/src/wirings/channel/channel-handler.ts +250 -0
  125. package/src/wirings/channel/channel-middleware-runner.ts +126 -0
  126. package/src/wirings/channel/channel-runner.ts +166 -0
  127. package/src/wirings/channel/channel-store.ts +29 -0
  128. package/src/wirings/channel/channel.types.ts +172 -0
  129. package/src/wirings/channel/define-channel-routes.ts +25 -0
  130. package/src/wirings/channel/eventhub-service.ts +34 -0
  131. package/src/wirings/channel/eventhub-store.ts +13 -0
  132. package/src/wirings/channel/index.ts +24 -0
  133. package/src/wirings/channel/local/index.ts +3 -0
  134. package/src/wirings/channel/local/local-channel-handler.ts +81 -0
  135. package/src/wirings/channel/local/local-channel-runner.test.ts +215 -0
  136. package/src/wirings/channel/local/local-channel-runner.ts +210 -0
  137. package/src/wirings/channel/local/local-eventhub-service.test.ts +95 -0
  138. package/src/wirings/channel/local/local-eventhub-service.ts +101 -0
  139. package/src/wirings/channel/log-channels.ts +20 -0
  140. package/src/wirings/channel/pikku-abstract-channel-handler.test.ts +54 -0
  141. package/src/wirings/channel/pikku-abstract-channel-handler.ts +45 -0
  142. package/src/wirings/channel/serverless/index.ts +5 -0
  143. package/src/wirings/channel/serverless/serverless-channel-runner.ts +289 -0
  144. package/src/wirings/cli/channel/cli-channel-runner.ts +136 -0
  145. package/src/wirings/cli/channel/index.ts +1 -0
  146. package/src/wirings/cli/cli-runner.test.ts +403 -0
  147. package/src/wirings/cli/cli-runner.ts +529 -0
  148. package/src/wirings/cli/cli.types.ts +358 -0
  149. package/src/wirings/cli/command-parser.test.ts +445 -0
  150. package/src/wirings/cli/command-parser.ts +504 -0
  151. package/src/wirings/cli/define-cli-commands.ts +24 -0
  152. package/src/wirings/cli/index.ts +19 -0
  153. package/src/wirings/gateway/gateway-runner.test.ts +474 -0
  154. package/src/wirings/gateway/gateway-runner.ts +411 -0
  155. package/src/wirings/gateway/gateway.types.ts +149 -0
  156. package/src/wirings/gateway/index.ts +13 -0
  157. package/src/wirings/http/http-routes.test.ts +322 -0
  158. package/src/wirings/http/http-routes.ts +197 -0
  159. package/src/wirings/http/http-runner.test.ts +144 -0
  160. package/src/wirings/http/http-runner.ts +588 -0
  161. package/src/wirings/http/http.types.ts +369 -0
  162. package/src/wirings/http/index.ts +28 -0
  163. package/src/wirings/http/log-http-routes.ts +22 -0
  164. package/src/wirings/http/pikku-fetch-http-request.test.ts +237 -0
  165. package/src/wirings/http/pikku-fetch-http-request.ts +170 -0
  166. package/src/wirings/http/pikku-fetch-http-response.test.ts +82 -0
  167. package/src/wirings/http/pikku-fetch-http-response.ts +147 -0
  168. package/src/wirings/http/routers/http-router.ts +13 -0
  169. package/src/wirings/http/routers/path-to-regex.test.ts +319 -0
  170. package/src/wirings/http/routers/path-to-regex.ts +126 -0
  171. package/src/wirings/http/web-request.test.ts +236 -0
  172. package/src/wirings/http/web-request.ts +104 -0
  173. package/src/wirings/mcp/index.ts +27 -0
  174. package/src/wirings/mcp/mcp-endpoint-registry.test.ts +389 -0
  175. package/src/wirings/mcp/mcp-endpoint-registry.ts +159 -0
  176. package/src/wirings/mcp/mcp-runner.ts +323 -0
  177. package/src/wirings/mcp/mcp.types.ts +216 -0
  178. package/src/wirings/node/index.ts +2 -0
  179. package/src/wirings/node/node.types.ts +23 -0
  180. package/src/wirings/oauth2/index.ts +3 -0
  181. package/src/wirings/oauth2/oauth2-client.test.ts +929 -0
  182. package/src/wirings/oauth2/oauth2-client.ts +335 -0
  183. package/src/wirings/oauth2/oauth2.types.ts +69 -0
  184. package/src/wirings/oauth2/wire-oauth2-credential.ts +23 -0
  185. package/src/wirings/queue/index.ts +31 -0
  186. package/src/wirings/queue/queue-runner.test.ts +710 -0
  187. package/src/wirings/queue/queue-runner.ts +192 -0
  188. package/src/wirings/queue/queue.types.ts +189 -0
  189. package/src/wirings/queue/register-queue-helper.ts +60 -0
  190. package/src/wirings/queue/validate-worker-config.test.ts +108 -0
  191. package/src/wirings/queue/validate-worker-config.ts +116 -0
  192. package/src/wirings/rpc/index.ts +4 -0
  193. package/src/wirings/rpc/rpc-runner.ts +460 -0
  194. package/src/wirings/rpc/rpc-types.ts +56 -0
  195. package/src/wirings/rpc/wire-addon.ts +21 -0
  196. package/src/wirings/scheduler/index.ts +11 -0
  197. package/src/wirings/scheduler/log-schedulers.ts +20 -0
  198. package/src/wirings/scheduler/scheduler-runner.test.ts +660 -0
  199. package/src/wirings/scheduler/scheduler-runner.ts +133 -0
  200. package/src/wirings/scheduler/scheduler.types.ts +53 -0
  201. package/src/wirings/secret/index.ts +9 -0
  202. package/src/wirings/secret/secret.types.ts +32 -0
  203. package/src/wirings/secret/validate-secret-definitions.test.ts +140 -0
  204. package/src/wirings/secret/validate-secret-definitions.ts +82 -0
  205. package/src/wirings/trigger/index.ts +10 -0
  206. package/src/wirings/trigger/pikku-trigger-service.ts +112 -0
  207. package/src/wirings/trigger/trigger-runner.test.ts +79 -0
  208. package/src/wirings/trigger/trigger-runner.ts +135 -0
  209. package/src/wirings/trigger/trigger.types.ts +178 -0
  210. package/src/wirings/variable/index.ts +8 -0
  211. package/src/wirings/variable/validate-variable-definitions.test.ts +91 -0
  212. package/src/wirings/variable/validate-variable-definitions.ts +69 -0
  213. package/src/wirings/variable/variable.types.ts +22 -0
  214. package/src/wirings/workflow/dsl/index.ts +31 -0
  215. package/src/wirings/workflow/dsl/workflow-dsl.types.ts +320 -0
  216. package/src/wirings/workflow/dsl/workflow-runner.ts +28 -0
  217. package/src/wirings/workflow/graph/graph-node.ts +222 -0
  218. package/src/wirings/workflow/graph/graph-runner.test.ts +487 -0
  219. package/src/wirings/workflow/graph/graph-runner.ts +816 -0
  220. package/src/wirings/workflow/graph/graph-validation.test.ts +170 -0
  221. package/src/wirings/workflow/graph/graph-validation.ts +237 -0
  222. package/src/wirings/workflow/graph/index.ts +19 -0
  223. package/src/wirings/workflow/graph/template.test.ts +49 -0
  224. package/src/wirings/workflow/graph/template.ts +42 -0
  225. package/src/wirings/workflow/graph/wire-workflow-graph.ts +29 -0
  226. package/src/wirings/workflow/graph/workflow-graph.types.ts +104 -0
  227. package/src/wirings/workflow/index.ts +82 -0
  228. package/src/wirings/workflow/pikku-workflow-service.test.ts +200 -0
  229. package/src/wirings/workflow/pikku-workflow-service.ts +1229 -0
  230. package/src/wirings/workflow/workflow-helpers.test.ts +129 -0
  231. package/src/wirings/workflow/workflow-helpers.ts +79 -0
  232. package/src/wirings/workflow/workflow.types.ts +276 -0
  233. package/tsconfig.json +14 -0
  234. package/tsconfig.tsbuildinfo +1 -0
  235. package/lcov.info +0 -18891
@@ -0,0 +1,528 @@
1
+ import { describe, test, beforeEach } from 'node:test'
2
+ import assert from 'node:assert/strict'
3
+ import { authCookie } from './auth-cookie.js'
4
+ import { resetPikkuState } from '../pikku-state.js'
5
+ import type { CoreUserSession } from '../types/core.types.js'
6
+ import {
7
+ PikkuSessionService,
8
+ createMiddlewareSessionWireProps,
9
+ } from '../services/user-session-service.js'
10
+
11
+ beforeEach(() => {
12
+ resetPikkuState()
13
+ })
14
+
15
+ const createMockHTTPRequest = (cookies: Record<string, string> = {}) => ({
16
+ cookie: (name: string) => cookies[name] || null,
17
+ })
18
+
19
+ const createMockHTTPResponse = () => {
20
+ const setCookies: Array<{
21
+ name: string
22
+ value: string
23
+ options: any
24
+ }> = []
25
+
26
+ return {
27
+ cookie: (name: string, value: string, options: any) => {
28
+ setCookies.push({ name, value, options })
29
+ },
30
+ getCookies: () => setCookies,
31
+ }
32
+ }
33
+
34
+ const createMockLogger = () => {
35
+ const logs: Array<{ level: string; message: string }> = []
36
+ return {
37
+ info: (msg: string) => logs.push({ level: 'info', message: msg }),
38
+ warn: (msg: string) => logs.push({ level: 'warn', message: msg }),
39
+ error: (msg: string) => logs.push({ level: 'error', message: msg }),
40
+ debug: (msg: string) => logs.push({ level: 'debug', message: msg }),
41
+ getLogs: () => logs,
42
+ }
43
+ }
44
+
45
+ describe('authCookie middleware', () => {
46
+ test('should decode session from cookie on request', async () => {
47
+ const mockUserSession: CoreUserSession = { userId: 'user123' }
48
+ const SessionService = new PikkuSessionService<CoreUserSession>()
49
+ const jwtService = {
50
+ encode: async () => 'encoded-jwt',
51
+ decode: async (token: string) => {
52
+ assert.equal(token, 'cookie-jwt-value')
53
+ return mockUserSession
54
+ },
55
+ }
56
+
57
+ const middleware = authCookie({
58
+ name: 'session',
59
+ expiresIn: { value: 30, unit: 'day' },
60
+ options: { httpOnly: true },
61
+ })
62
+ let nextCalled = false
63
+
64
+ const mockResponse = createMockHTTPResponse()
65
+
66
+ await middleware(
67
+ {
68
+ jwt: jwtService,
69
+ logger: createMockLogger(),
70
+ } as any,
71
+ {
72
+ ...createMiddlewareSessionWireProps(SessionService),
73
+ http: {
74
+ request: createMockHTTPRequest({ session: 'cookie-jwt-value' }),
75
+ response: mockResponse,
76
+ },
77
+ } as any,
78
+ async () => {
79
+ nextCalled = true
80
+ }
81
+ )
82
+
83
+ assert.equal(nextCalled, true)
84
+ assert.deepEqual(SessionService.get(), mockUserSession)
85
+ })
86
+
87
+ test('should set cookie in response when session changes', async () => {
88
+ const mockUserSession: CoreUserSession = { userId: 'user456' }
89
+ const SessionService = new PikkuSessionService<CoreUserSession>()
90
+ const jwtService = {
91
+ encode: async (expiresIn: any, payload: any) => {
92
+ assert.deepEqual(expiresIn, { value: 7, unit: 'day' })
93
+ assert.deepEqual(payload, mockUserSession)
94
+ return 'new-encoded-jwt'
95
+ },
96
+ decode: async () => null,
97
+ }
98
+
99
+ const middleware = authCookie({
100
+ name: 'auth_token',
101
+ expiresIn: { value: 7, unit: 'day' },
102
+ options: { httpOnly: true, secure: true, sameSite: 'strict' },
103
+ })
104
+
105
+ const mockResponse = createMockHTTPResponse()
106
+
107
+ await middleware(
108
+ {
109
+ jwt: jwtService,
110
+ logger: createMockLogger(),
111
+ } as any,
112
+ {
113
+ ...createMiddlewareSessionWireProps(SessionService),
114
+ http: {
115
+ request: createMockHTTPRequest({}),
116
+ response: mockResponse,
117
+ },
118
+ } as any,
119
+ async () => {
120
+ // Simulate session change
121
+ SessionService.set(mockUserSession)
122
+ }
123
+ )
124
+
125
+ const setCookies = mockResponse.getCookies()
126
+ assert.equal(setCookies.length, 1)
127
+ assert.equal(setCookies[0].name, 'auth_token')
128
+ assert.equal(setCookies[0].value, 'new-encoded-jwt')
129
+ assert.equal(setCookies[0].options.httpOnly, true)
130
+ assert.equal(setCookies[0].options.secure, true)
131
+ assert.equal(setCookies[0].options.sameSite, 'strict')
132
+ assert(setCookies[0].options.expires instanceof Date)
133
+ })
134
+
135
+ test('should not set cookie when session does not change', async () => {
136
+ const mockUserSession: CoreUserSession = { userId: 'user789' }
137
+ const SessionService = new PikkuSessionService<CoreUserSession>()
138
+ const jwtService = {
139
+ encode: async () => 'encoded-jwt',
140
+ decode: async () => mockUserSession,
141
+ }
142
+
143
+ const middleware = authCookie({
144
+ name: 'session',
145
+ expiresIn: { value: 30, unit: 'day' },
146
+ options: { httpOnly: true },
147
+ })
148
+
149
+ const mockResponse = createMockHTTPResponse()
150
+
151
+ await middleware(
152
+ {
153
+ jwt: jwtService,
154
+ logger: createMockLogger(),
155
+ } as any,
156
+ {
157
+ ...createMiddlewareSessionWireProps(SessionService),
158
+ http: {
159
+ request: createMockHTTPRequest({ session: 'existing-jwt' }),
160
+ response: mockResponse,
161
+ },
162
+ } as any,
163
+ async () => {
164
+ // Session is loaded but not changed
165
+ }
166
+ )
167
+
168
+ const setCookies = mockResponse.getCookies()
169
+ assert.equal(setCookies.length, 0)
170
+ })
171
+
172
+ test('should not decode cookie when cookie is missing', async () => {
173
+ const SessionService = new PikkuSessionService<CoreUserSession>()
174
+ let decodeCalled = false
175
+ const jwtService = {
176
+ encode: async () => 'encoded-jwt',
177
+ decode: async () => {
178
+ decodeCalled = true
179
+ return { userId: 'test' }
180
+ },
181
+ }
182
+
183
+ const middleware = authCookie({
184
+ name: 'session',
185
+ expiresIn: { value: 30, unit: 'day' },
186
+ options: { httpOnly: true },
187
+ })
188
+ let nextCalled = false
189
+
190
+ const mockResponse = createMockHTTPResponse()
191
+
192
+ await middleware(
193
+ {
194
+ jwt: jwtService,
195
+ logger: createMockLogger(),
196
+ } as any,
197
+ {
198
+ ...createMiddlewareSessionWireProps(SessionService),
199
+ http: {
200
+ request: createMockHTTPRequest({}),
201
+ response: mockResponse,
202
+ },
203
+ } as any,
204
+ async () => {
205
+ nextCalled = true
206
+ }
207
+ )
208
+
209
+ assert.equal(nextCalled, true)
210
+ assert.equal(decodeCalled, false)
211
+ assert.equal(SessionService.get(), undefined)
212
+ })
213
+
214
+ test('should not set session when JWT decode returns null', async () => {
215
+ const SessionService = new PikkuSessionService<CoreUserSession>()
216
+ const jwtService = {
217
+ encode: async () => 'encoded-jwt',
218
+ decode: async () => null,
219
+ }
220
+
221
+ const middleware = authCookie({
222
+ name: 'session',
223
+ expiresIn: { value: 30, unit: 'day' },
224
+ options: { httpOnly: true },
225
+ })
226
+ let nextCalled = false
227
+
228
+ const mockResponse = createMockHTTPResponse()
229
+
230
+ await middleware(
231
+ {
232
+ jwt: jwtService,
233
+ logger: createMockLogger(),
234
+ } as any,
235
+ {
236
+ ...createMiddlewareSessionWireProps(SessionService),
237
+ http: {
238
+ request: createMockHTTPRequest({ session: 'invalid-jwt' }),
239
+ response: mockResponse,
240
+ },
241
+ } as any,
242
+ async () => {
243
+ nextCalled = true
244
+ }
245
+ )
246
+
247
+ assert.equal(nextCalled, true)
248
+ assert.equal(SessionService.get(), undefined)
249
+ })
250
+
251
+ test('should skip middleware when session already exists', async () => {
252
+ const existingSession: CoreUserSession = { userId: 'existing' }
253
+ const SessionService = new PikkuSessionService<CoreUserSession>()
254
+ SessionService.setInitial(existingSession)
255
+
256
+ let decodeCalled = false
257
+ const jwtService = {
258
+ encode: async () => 'encoded-jwt',
259
+ decode: async () => {
260
+ decodeCalled = true
261
+ return { userId: 'new' }
262
+ },
263
+ }
264
+
265
+ const middleware = authCookie({
266
+ name: 'session',
267
+ expiresIn: { value: 30, unit: 'day' },
268
+ options: { httpOnly: true },
269
+ })
270
+ let nextCalled = false
271
+
272
+ const mockResponse = createMockHTTPResponse()
273
+
274
+ await middleware(
275
+ {
276
+ jwt: jwtService,
277
+ logger: createMockLogger(),
278
+ } as any,
279
+ {
280
+ ...createMiddlewareSessionWireProps(SessionService),
281
+ http: {
282
+ request: createMockHTTPRequest({ session: 'some-jwt' }),
283
+ response: mockResponse,
284
+ },
285
+ } as any,
286
+ async () => {
287
+ nextCalled = true
288
+ }
289
+ )
290
+
291
+ assert.equal(nextCalled, true)
292
+ assert.equal(decodeCalled, false)
293
+ assert.deepEqual(SessionService.get(), existingSession)
294
+ })
295
+
296
+ test('should skip middleware when http.request is not available', async () => {
297
+ const SessionService = new PikkuSessionService<CoreUserSession>()
298
+ const jwtService = {
299
+ encode: async () => 'encoded-jwt',
300
+ decode: async () => ({ userId: 'test' }),
301
+ }
302
+
303
+ const middleware = authCookie({
304
+ name: 'session',
305
+ expiresIn: { value: 30, unit: 'day' },
306
+ options: { httpOnly: true },
307
+ })
308
+ let nextCalled = false
309
+
310
+ await middleware(
311
+ {
312
+ jwt: jwtService,
313
+ logger: createMockLogger(),
314
+ } as any,
315
+ { ...createMiddlewareSessionWireProps(SessionService) } as any,
316
+ async () => {
317
+ nextCalled = true
318
+ }
319
+ )
320
+
321
+ assert.equal(nextCalled, true)
322
+ assert.equal(SessionService.get(), undefined)
323
+ })
324
+
325
+ test('should not decode when jwtService is not available on request', async () => {
326
+ const SessionService = new PikkuSessionService<CoreUserSession>()
327
+
328
+ const middleware = authCookie({
329
+ name: 'session',
330
+ expiresIn: { value: 30, unit: 'day' },
331
+ options: { httpOnly: true },
332
+ })
333
+ let nextCalled = false
334
+
335
+ const mockResponse = createMockHTTPResponse()
336
+
337
+ await middleware(
338
+ {
339
+ jwt: undefined,
340
+ logger: createMockLogger(),
341
+ } as any,
342
+ {
343
+ ...createMiddlewareSessionWireProps(SessionService),
344
+ http: {
345
+ request: createMockHTTPRequest({ session: 'some-jwt' }),
346
+ response: mockResponse,
347
+ },
348
+ } as any,
349
+ async () => {
350
+ nextCalled = true
351
+ }
352
+ )
353
+
354
+ assert.equal(nextCalled, true)
355
+ assert.equal(SessionService.get(), undefined)
356
+ })
357
+
358
+ test('should warn when jwtService is not available on response and session changed', async () => {
359
+ const mockUserSession: CoreUserSession = { userId: 'user999' }
360
+ const SessionService = new PikkuSessionService<CoreUserSession>()
361
+ const mockLogger = createMockLogger()
362
+
363
+ const middleware = authCookie({
364
+ name: 'session',
365
+ expiresIn: { value: 30, unit: 'day' },
366
+ options: { httpOnly: true },
367
+ })
368
+
369
+ const mockResponse = createMockHTTPResponse()
370
+
371
+ await middleware(
372
+ {
373
+ jwt: undefined,
374
+ logger: mockLogger,
375
+ } as any,
376
+ {
377
+ ...createMiddlewareSessionWireProps(SessionService),
378
+ http: {
379
+ request: createMockHTTPRequest({}),
380
+ response: mockResponse,
381
+ },
382
+ } as any,
383
+ async () => {
384
+ // Simulate session change
385
+ SessionService.set(mockUserSession)
386
+ }
387
+ )
388
+
389
+ const logs = mockLogger.getLogs()
390
+ assert.equal(logs.length, 1)
391
+ assert.equal(logs[0].level, 'warn')
392
+ assert.equal(
393
+ logs[0].message,
394
+ 'No JWT service available, unable to set cookie'
395
+ )
396
+
397
+ const setCookies = mockResponse.getCookies()
398
+ assert.equal(setCookies.length, 0)
399
+ })
400
+
401
+ test('should not set cookie when http.response is not available', async () => {
402
+ const mockUserSession: CoreUserSession = { userId: 'user888' }
403
+ const SessionService = new PikkuSessionService<CoreUserSession>()
404
+ const jwtService = {
405
+ encode: async () => 'encoded-jwt',
406
+ decode: async () => null,
407
+ }
408
+
409
+ const middleware = authCookie({
410
+ name: 'session',
411
+ expiresIn: { value: 30, unit: 'day' },
412
+ options: { httpOnly: true },
413
+ })
414
+
415
+ await middleware(
416
+ {
417
+ jwt: jwtService,
418
+ logger: createMockLogger(),
419
+ } as any,
420
+ {
421
+ ...createMiddlewareSessionWireProps(SessionService),
422
+ http: {
423
+ request: createMockHTTPRequest({}),
424
+ response: undefined,
425
+ },
426
+ } as any,
427
+ async () => {
428
+ // Simulate session change
429
+ SessionService.set(mockUserSession)
430
+ }
431
+ )
432
+
433
+ // Should complete without errors even though response is not available
434
+ assert.equal(SessionService.get(), mockUserSession)
435
+ })
436
+
437
+ test('should handle custom cookie name', async () => {
438
+ const mockUserSession: CoreUserSession = { userId: 'custom-user' }
439
+ const SessionService = new PikkuSessionService<CoreUserSession>()
440
+ const jwtService = {
441
+ encode: async () => 'custom-encoded-jwt',
442
+ decode: async (token: string) => {
443
+ assert.equal(token, 'custom-cookie-value')
444
+ return mockUserSession
445
+ },
446
+ }
447
+
448
+ const middleware = authCookie({
449
+ name: 'my_custom_cookie',
450
+ expiresIn: { value: 1, unit: 'hour' },
451
+ options: {},
452
+ })
453
+
454
+ const mockResponse = createMockHTTPResponse()
455
+
456
+ await middleware(
457
+ {
458
+ jwt: jwtService,
459
+ logger: createMockLogger(),
460
+ } as any,
461
+ {
462
+ ...createMiddlewareSessionWireProps(SessionService),
463
+ http: {
464
+ request: createMockHTTPRequest({
465
+ my_custom_cookie: 'custom-cookie-value',
466
+ }),
467
+ response: mockResponse,
468
+ },
469
+ } as any,
470
+ async () => {
471
+ // Modify session to trigger cookie setting
472
+ SessionService.set({ ...mockUserSession, extra: 'data' })
473
+ }
474
+ )
475
+
476
+ const setCookies = mockResponse.getCookies()
477
+ assert.equal(setCookies.length, 1)
478
+ assert.equal(setCookies[0].name, 'my_custom_cookie')
479
+ })
480
+
481
+ test('should properly set expiration time in cookie options', async () => {
482
+ const mockUserSession: CoreUserSession = { userId: 'expiry-test' }
483
+ const SessionService = new PikkuSessionService<CoreUserSession>()
484
+ const jwtService = {
485
+ encode: async () => 'encoded-jwt',
486
+ decode: async () => null,
487
+ }
488
+
489
+ const middleware = authCookie({
490
+ name: 'session',
491
+ expiresIn: { value: 15, unit: 'minute' },
492
+ options: { httpOnly: true },
493
+ })
494
+
495
+ const mockResponse = createMockHTTPResponse()
496
+ const beforeTime = new Date()
497
+
498
+ await middleware(
499
+ {
500
+ jwt: jwtService,
501
+ logger: createMockLogger(),
502
+ } as any,
503
+ {
504
+ ...createMiddlewareSessionWireProps(SessionService),
505
+ http: {
506
+ request: createMockHTTPRequest({}),
507
+ response: mockResponse,
508
+ },
509
+ } as any,
510
+ async () => {
511
+ SessionService.set(mockUserSession)
512
+ }
513
+ )
514
+
515
+ const afterTime = new Date()
516
+ const setCookies = mockResponse.getCookies()
517
+ assert.equal(setCookies.length, 1)
518
+
519
+ const expiresDate = setCookies[0].options.expires
520
+ assert(expiresDate instanceof Date)
521
+
522
+ // Expiration should be approximately 15 minutes from now
523
+ const expectedExpiry = new Date(beforeTime.getTime() + 15 * 60 * 1000)
524
+ const timeDiff = Math.abs(expiresDate.getTime() - expectedExpiry.getTime())
525
+ // Allow 5 second tolerance for test execution time
526
+ assert(timeDiff < 5000, `Time difference ${timeDiff}ms is too large`)
527
+ })
528
+ })
@@ -0,0 +1,80 @@
1
+ import type { SerializeOptions } from 'cookie'
2
+ import { pikkuMiddleware, pikkuMiddlewareFactory } from '../types/core.types.js'
3
+ import type { RelativeTimeInput } from '../time-utils.js'
4
+ import { getRelativeTimeOffsetFromNow } from '../time-utils.js'
5
+
6
+ /**
7
+ * Cookie-based session middleware that uses JWT for encoding/decoding session data.
8
+ *
9
+ * Reads session from a cookie on incoming requests and automatically updates the cookie
10
+ * when the session changes (e.g., after login).
11
+ *
12
+ * @param options.name - Cookie name
13
+ * @param options.expiresIn - Cookie expiration time (e.g., { value: 30, unit: 'day' })
14
+ * @param options.options - Cookie serialization options (httpOnly, secure, sameSite, etc.)
15
+ *
16
+ * @example
17
+ * ```typescript
18
+ * import { authCookie } from '@pikku/core/middleware'
19
+ *
20
+ * addHTTPMiddleware([
21
+ * authCookie({
22
+ * name: 'session',
23
+ * expiresIn: { value: 30, unit: 'day' },
24
+ * options: {
25
+ * httpOnly: true,
26
+ * secure: true,
27
+ * sameSite: 'strict',
28
+ * path: '/'
29
+ * }
30
+ * })
31
+ * ])
32
+ * ```
33
+ */
34
+ export const authCookie = pikkuMiddlewareFactory<{
35
+ name: string
36
+ options: SerializeOptions
37
+ expiresIn: RelativeTimeInput
38
+ }>(({ name, options, expiresIn }) =>
39
+ pikkuMiddleware(
40
+ async (
41
+ { jwt: jwtService, logger },
42
+ { http, setSession, getSession, session, hasSessionChanged },
43
+ next
44
+ ) => {
45
+ if (!http?.request || !setSession || session) {
46
+ return next()
47
+ }
48
+
49
+ const cookieValue = http.request.cookie(name)
50
+ if (cookieValue && jwtService) {
51
+ const userSession = await jwtService.decode(cookieValue)
52
+ if (userSession) {
53
+ setSession?.(userSession)
54
+ }
55
+ }
56
+
57
+ await next()
58
+
59
+ if (!http?.response) {
60
+ return
61
+ }
62
+
63
+ if (hasSessionChanged?.()) {
64
+ const currentSession = await getSession?.()
65
+ if (jwtService) {
66
+ http.response.cookie(
67
+ name,
68
+ await jwtService.encode(expiresIn, currentSession),
69
+ {
70
+ ...options,
71
+ expires: getRelativeTimeOffsetFromNow(expiresIn),
72
+ }
73
+ )
74
+ } else {
75
+ logger.warn('No JWT service available, unable to set cookie')
76
+ }
77
+ }
78
+ }
79
+ )
80
+ )