@point3/logto-module 1.1.2 → 1.1.3

package/dist/client/oauth-client.js

@@ -0,0 +1,129 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+var OAuthClient_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SignInType = exports.OAuthClient = exports.OAuthClientToken = void 0;
+const common_1 = require("@nestjs/common");
+const axios_1 = __importDefault(require("axios"));
+const config_1 = require("./config");
+const point3_common_tool_1 = require("point3-common-tool");
+const errors_1 = require("../errors");
+const types_1 = require("./types");
+const Gulid = point3_common_tool_1.p3Values.Gulid;
+exports.OAuthClientToken = "OAuthClient";
+let OAuthClient = OAuthClient_1 = class OAuthClient {
+    constructor(config, logger) {
+        this.config = config;
+        this.logger = logger;
+        this.logtoConfig = {
+            endpoint: config.endpoint,
+            appId: config.clientId,
+            appSecret: config.clientSecret,
+            resources: config.resources,
+            scopes: config.scopes,
+            prompt: config.prompt,
+            redirectUri: config.redirectUri,
+            grantType: config_1.GrantType.AuthorizationCode,
+        };
+        this.logtoRestTemplate = new types_1.LogtoOAuthRESTTemplate(logger, this.logtoConfig.endpoint);
+        this.logtoRestTemplate.setBasic(this.logtoConfig.appId, this.logtoConfig.appSecret);
+    }
+    getSignInURI(signInType) {
+        try {
+            let uri;
+            if (signInType === SignInType.Dashboard) {
+                if (this.config.dashboardSignInUri) {
+                    uri = new URL(`${this.config.dashboardSignInUri}/auth`);
+                }
+                else {
+                    this.logger.warn("대시보드 로그인 URI 설정을 찾을 수 없어 기본 URI를 사용합니다.", this.constructor.name);
+                    uri = new URL(`${this.config.signInUri}/auth`);
+                }
+            }
+            else {
+                uri = new URL(`${this.config.signInUri}/auth`);
+            }
+            const state = Gulid.create(OAuthClient_1.prefix);
+            uri.searchParams.set("redirect_uri", this.logtoConfig.redirectUri);
+            uri.searchParams.set("response_type", "code");
+            uri.searchParams.set("scope", this.logtoConfig.scopes.join(" "));
+            uri.searchParams.set("prompt", this.logtoConfig.prompt);
+            uri.searchParams.set("client_id", this.logtoConfig.appId);
+            uri.searchParams.set("resource", this.logtoConfig.resources.join(" "));
+            uri.searchParams.set("state", state.toString());
+            return { uri: uri.toString(), state: state.toString() };
+        }
+        catch (error) {
+            throw new errors_1.SignInUriGenerationError(signInType);
+        }
+    }
+    async getSignOutURI() {
+        try {
+            const uri = new URL(`${this.config.signInUri}/session/end`);
+            uri.searchParams.set("redirect_uri", this.logtoConfig.redirectUri);
+            uri.searchParams.set("client_id", this.logtoConfig.appId);
+            return uri.toString();
+        }
+        catch (error) {
+            throw new errors_1.SignOutUriGenerationError();
+        }
+    }
+    async fetchTokenByAuthorizationCode(code) {
+        try {
+            const parameters = new URLSearchParams();
+            parameters.set("code", code);
+            parameters.set("grant_type", this.logtoConfig.grantType);
+            parameters.set("redirect_uri", this.logtoConfig.redirectUri);
+            parameters.set("resource", this.logtoConfig.resources.join(" "));
+            parameters.set("scope", this.logtoConfig.scopes.join(" "));
+            const response = await this.logtoRestTemplate.post(`${this.logtoConfig.endpoint}/token`, parameters.toString());
+            return {
+                accessToken: response.data.access_token,
+                idToken: response.data.id_token,
+            };
+        }
+        catch (error) {
+            throw new errors_1.AuthorizationCodeTokenFetchError(code);
+        }
+    }
+    async revokeToken(token) {
+        try {
+            const response = await axios_1.default.post(`${this.logtoConfig.endpoint}/token/revoke`, new URLSearchParams({
+                token: token,
+                client_id: this.logtoConfig.appId,
+            }).toString(), {
+                headers: { "Content-Type": "application/x-www-form-urlencoded" },
+            });
+            if (response.status === 200)
+                return;
+            throw new errors_1.TokenRevocationFailedError();
+        }
+        catch (error) {
+            throw new errors_1.TokenRevocationFailedError();
+        }
+    }
+};
+exports.OAuthClient = OAuthClient;
+OAuthClient.prefix = "signin";
+exports.OAuthClient = OAuthClient = OAuthClient_1 = __decorate([
+    (0, common_1.Global)(),
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [Object, Object])
+], OAuthClient);
+var SignInType;
+(function (SignInType) {
+    SignInType["Admin"] = "admin";
+    SignInType["Dashboard"] = "dashboard";
+})(SignInType || (exports.SignInType = SignInType = {}));
+//# sourceMappingURL=oauth-client.js.map

package/dist/client/oauth-client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-client.js","sourceRoot":"","sources":["../../client/oauth-client.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CAAmE;AACnE,kDAA6C;AAC7C,qCAAoE;AACpE,2DAA4D;AAC5D,sCAKmB;AACnB,mCAA0E;AAE1E,MAAM,KAAK,GAAG,6BAAQ,CAAC,KAAK,CAAC;AAGhB,QAAA,gBAAgB,GAAG,aAAa,CAAC;AAwBvC,IAAM,WAAW,mBAAjB,MAAM,WAAW;IAapB,YACqB,MAAwB,EACxB,MAAqB;QADrB,WAAM,GAAN,MAAM,CAAkB;QACxB,WAAM,GAAN,MAAM,CAAe;QAGtC,IAAI,CAAC,WAAW,GAAG;YACf,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,KAAK,EAAE,MAAM,CAAC,QAAQ;YACtB,SAAS,EAAE,MAAM,CAAC,YAAY;YAC9B,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,WAAW,EAAE,MAAM,CAAC,WAAW;YAC/B,SAAS,EAAE,kBAAS,CAAC,iBAAiB;SACzC,CAAC;QAGF,IAAI,CAAC,iBAAiB,GAAG,IAAI,8BAAsB,CAC/C,MAAM,EACN,IAAI,CAAC,WAAW,CAAC,QAAQ,CAC5B,CAAC;QACF,IAAI,CAAC,iBAAiB,CAAC,QAAQ,CAC3B,IAAI,CAAC,WAAW,CAAC,KAAM,EACvB,IAAI,CAAC,WAAW,CAAC,SAAU,CAC9B,CAAC;IACN,CAAC;IAOM,YAAY,CACf,UAAsB;QAEtB,IAAI,CAAC;YACD,IAAI,GAAQ,CAAC;YAGb,IAAI,UAAU,KAAK,UAAU,CAAC,SAAS,EAAE,CAAC;gBACtC,IAAI,IAAI,CAAC,MAAM,CAAC,kBAAkB,EAAE,CAAC;oBACjC,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,kBAAkB,OAAO,CAAC,CAAC;gBAC5D,CAAC;qBAAM,CAAC;oBACJ,IAAI,CAAC,MAAM,CAAC,IAAI,CACZ,yCAAyC,EACzC,IAAI,CAAC,WAAW,CAAC,IAAI,CACxB,CAAC;oBACF,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS,OAAO,CAAC,CAAC;gBACnD,CAAC;YACL,CAAC;iBAAM,CAAC;gBACJ,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS,OAAO,CAAC,CAAC;YACnD,CAAC;YAGD,MAAM,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,aAAW,CAAC,MAAM,CAAC,CAAC;YAG/C,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,IAAI,CAAC,WAAW,CAAC,WAAY,CAAC,CAAC;YACpE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;YAC9C,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,MAAO,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;YAClE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,WAAW,CAAC,MAAO,CAAC,CAAC;YACzD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,WAAW,CAAC,KAAM,CAAC,CAAC;YAC3D,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,UAAU,EAAE,IAAI,CAAC,WAAW,CAAC,SAAU,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;YACxE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,QAAQ,EAAE,CAAC,CAAC;YAEhD,OAAO,EAAE,GAAG,EAAE,GAAG,CAAC,QAAQ,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,QAAQ,EAAE,EAAE,CAAC;QAC5D,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,MAAM,IAAI,iCAAwB,CAAC,UAAU,CAAC,CAAC;QACnD,CAAC;IACL,CAAC;IAMM,KAAK,CAAC,aAAa;QACtB,IAAI,CAAC;YACD,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS,cAAc,CAAC,CAAC;YAG5D,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,IAAI,CAAC,WAAW,CAAC,WAAY,CAAC,CAAC;YACpE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,WAAW,CAAC,KAAM,CAAC,CAAC;YAC3D,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;QAC1B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,MAAM,IAAI,kCAAyB,EAAE,CAAC;QAC1C,CAAC;IACL,CAAC;IAOM,KAAK,CAAC,6BAA6B,CACtC,IAAY;QAEZ,IAAI,CAAC;YAED,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;YACzC,UAAU,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YAC7B,UAAU,CAAC,GAAG,CAAC,YAAY,EAAE,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;YACzD,UAAU,CAAC,GAAG,CAAC,cAAc,EAAE,IAAI,CAAC,WAAW,CAAC,WAAY,CAAC,CAAC;YAC9D,UAAU,CAAC,GAAG,CAAC,UAAU,EAAE,IAAI,CAAC,WAAW,CAAC,SAAU,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;YAClE,UAAU,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,MAAO,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;YAG5D,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC9C,GAAG,IAAI,CAAC,WAAW,CAAC,QAAQ,QAAQ,EACpC,UAAU,CAAC,QAAQ,EAAE,CACxB,CAAC;YACF,OAAO;gBACH,WAAW,EAAE,QAAQ,CAAC,IAAI,CAAC,YAAY;gBACvC,OAAO,EAAE,QAAQ,CAAC,IAAI,CAAC,QAAQ;aAClC,CAAC;QACN,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,MAAM,IAAI,yCAAgC,CAAC,IAAI,CAAC,CAAC;QACrD,CAAC;IACL,CAAC;IAMM,KAAK,CAAC,WAAW,CAAC,KAAa;QAClC,IAAI,CAAC;YACD,MAAM,QAAQ,GAAkB,MAAM,eAAK,CAAC,IAAI,CAC5C,GAAG,IAAI,CAAC,WAAW,CAAC,QAAQ,eAAe,EAC3C,IAAI,eAAe,CAAC;gBAChB,KAAK,EAAE,KAAK;gBACZ,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,KAAM;aACrC,CAAC,CAAC,QAAQ,EAAE,EACb;gBACI,OAAO,EAAE,EAAE,cAAc,EAAE,mCAAmC,EAAE;aACnE,CACJ,CAAC;YAEF,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG;gBAAE,OAAO;YAEpC,MAAM,IAAI,mCAA0B,EAAE,CAAC;QAC3C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,MAAM,IAAI,mCAA0B,EAAE,CAAC;QAC3C,CAAC;IACL,CAAC;;AA3JQ,kCAAW;AAMJ,kBAAM,GAAW,QAAQ,AAAnB,CAAoB;sBANjC,WAAW;IAFvB,IAAA,eAAM,GAAE;IACR,IAAA,mBAAU,GAAE;;GACA,WAAW,CA4JvB;AAOD,IAAY,UAGX;AAHD,WAAY,UAAU;IAClB,6BAAe,CAAA;IACf,qCAAuB,CAAA;AAC3B,CAAC,EAHW,UAAU,0BAAV,UAAU,QAGrB"}

package/dist/client/types.d.ts

@@ -0,0 +1,45 @@
+import { axiosAdapter, p3Values } from 'point3-common-tool';
+export declare class LogtoUserAlreadyExistsError extends Error {
+    constructor(message: string);
+}
+export declare enum LogtoPasswordAlgorithm {
+    Argon2i = "Argon2i",
+    Argon2id = "Argon2id",
+    Argon2d = "Argon2d",
+    SHA1 = "SHA1",
+    Bcrypt = "Bcrypt"
+}
+export type LogtoUser = {
+    username: string;
+    primaryPhone?: string;
+    primaryEmail: string;
+    password: string;
+    passwordAlgorithm?: LogtoPasswordAlgorithm;
+    name: string;
+    avatar?: string;
+    customData?: Record<string, any>;
+};
+export type LogtoUserResponse = {
+    id: string;
+} & LogtoUser;
+export type LogtoRole = {
+    name: string;
+    description: string;
+    type: string;
+    isDefault?: boolean;
+};
+export type LogtoRoleResponse = {
+    id: string;
+} & LogtoRole;
+export declare class VerificationMethodType {
+    static phone: typeof p3Values.PhoneNumber;
+    static email: typeof p3Values.Email;
+}
+export declare class SMSVerificationResponse {
+    verificationId: string;
+    expiresAt: string;
+    constructor(verificationId: string, expiresAt: string);
+}
+export declare class LogtoOAuthRESTTemplate extends axiosAdapter.RESTTemplate {
+}
+export declare const LogtoLoggerServiceToken: unique symbol;

package/dist/client/types.js

@@ -0,0 +1,37 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LogtoLoggerServiceToken = exports.LogtoOAuthRESTTemplate = exports.SMSVerificationResponse = exports.VerificationMethodType = exports.LogtoPasswordAlgorithm = exports.LogtoUserAlreadyExistsError = void 0;
+const point3_common_tool_1 = require("point3-common-tool");
+class LogtoUserAlreadyExistsError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = 'UserAlreadyExistsError';
+    }
+}
+exports.LogtoUserAlreadyExistsError = LogtoUserAlreadyExistsError;
+var LogtoPasswordAlgorithm;
+(function (LogtoPasswordAlgorithm) {
+    LogtoPasswordAlgorithm["Argon2i"] = "Argon2i";
+    LogtoPasswordAlgorithm["Argon2id"] = "Argon2id";
+    LogtoPasswordAlgorithm["Argon2d"] = "Argon2d";
+    LogtoPasswordAlgorithm["SHA1"] = "SHA1";
+    LogtoPasswordAlgorithm["Bcrypt"] = "Bcrypt";
+})(LogtoPasswordAlgorithm || (exports.LogtoPasswordAlgorithm = LogtoPasswordAlgorithm = {}));
+class VerificationMethodType {
+}
+exports.VerificationMethodType = VerificationMethodType;
+VerificationMethodType.phone = point3_common_tool_1.p3Values.PhoneNumber;
+VerificationMethodType.email = point3_common_tool_1.p3Values.Email;
+class SMSVerificationResponse {
+    constructor(verificationId, expiresAt) {
+        this.verificationId = verificationId;
+        this.expiresAt = expiresAt;
+    }
+}
+exports.SMSVerificationResponse = SMSVerificationResponse;
+class LogtoOAuthRESTTemplate extends point3_common_tool_1.axiosAdapter.RESTTemplate {
+}
+exports.LogtoOAuthRESTTemplate = LogtoOAuthRESTTemplate;
+;
+exports.LogtoLoggerServiceToken = Symbol.for("LogtoLoggerService");
+//# sourceMappingURL=types.js.map

package/dist/client/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../client/types.ts"],"names":[],"mappings":";;;AAAA,2DAA4D;AAQ5D,MAAa,2BAA4B,SAAQ,KAAK;IAClD,YAAY,OAAe;QACvB,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,wBAAwB,CAAC;IACzC,CAAC;CACJ;AALD,kEAKC;AAUD,IAAY,sBAMX;AAND,WAAY,sBAAsB;IAC9B,6CAAmB,CAAA;IACnB,+CAAqB,CAAA;IACrB,6CAAmB,CAAA;IACnB,uCAAa,CAAA;IACb,2CAAiB,CAAA;AACrB,CAAC,EANW,sBAAsB,sCAAtB,sBAAsB,QAMjC;AAuED,MAAa,sBAAsB;;AAAnC,wDAGC;AAFU,4BAAK,GAAG,6BAAQ,CAAC,WAAW,CAAC;AAC7B,4BAAK,GAAG,6BAAQ,CAAC,KAAK,CAAC;AAUlC,MAAa,uBAAuB;IAIhC,YAAY,cAAsB,EAAE,SAAiB;QACjD,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;QACrC,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;IAC/B,CAAC;CACJ;AARD,0DAQC;AAQD,MAAa,sBAAuB,SAAQ,iCAAY,CAAC,YAAY;CAAG;AAAxE,wDAAwE;AAAA,CAAC;AAO5D,QAAA,uBAAuB,GAAG,MAAM,CAAC,GAAG,CAAC,oBAAoB,CAAC,CAAC"}

package/dist/errors.d.ts

@@ -0,0 +1,24 @@
+export declare class LogtoError extends Error {
+    constructor(e: string | Error);
+}
+export declare class UserMissingRequiredFieldsError extends LogtoError {
+    constructor();
+}
+export declare class UserNotFoundError extends LogtoError {
+    constructor(email: string, phone: string);
+}
+export declare class MultipleUsersFoundError extends LogtoError {
+    constructor(email: string, phone: string);
+}
+export declare class TokenRevocationFailedError extends LogtoError {
+    constructor();
+}
+export declare class AuthorizationCodeTokenFetchError extends LogtoError {
+    constructor(code: string);
+}
+export declare class SignInUriGenerationError extends LogtoError {
+    constructor(signInType: string);
+}
+export declare class SignOutUriGenerationError extends LogtoError {
+    constructor();
+}

package/dist/errors.js

@@ -0,0 +1,62 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SignOutUriGenerationError = exports.SignInUriGenerationError = exports.AuthorizationCodeTokenFetchError = exports.TokenRevocationFailedError = exports.MultipleUsersFoundError = exports.UserNotFoundError = exports.UserMissingRequiredFieldsError = exports.LogtoError = void 0;
+class LogtoError extends Error {
+    constructor(e) {
+        super(typeof e === 'string' ? e : e.message);
+        Error.captureStackTrace(this, this.constructor);
+        this.name = 'LogtoError';
+        this.message = typeof e == 'string' ? e : e.message || '';
+    }
+}
+exports.LogtoError = LogtoError;
+class UserMissingRequiredFieldsError extends LogtoError {
+    constructor() {
+        super('사용자 생성에 필요한 필수 정보가 누락되었습니다.');
+        this.name = "UserMissingRequiredFieldsError";
+    }
+}
+exports.UserMissingRequiredFieldsError = UserMissingRequiredFieldsError;
+class UserNotFoundError extends LogtoError {
+    constructor(email, phone) {
+        super(`이메일: ${email}, 전화번호: ${phone}로 사용자를 찾을 수 없습니다.`);
+        this.name = "UserNotFoundError";
+    }
+}
+exports.UserNotFoundError = UserNotFoundError;
+class MultipleUsersFoundError extends LogtoError {
+    constructor(email, phone) {
+        super(`이메일: ${email}, 전화번호: ${phone}로 여러 사용자가 발견되었습니다.`);
+        this.name = "MultipleUsersFoundError";
+    }
+}
+exports.MultipleUsersFoundError = MultipleUsersFoundError;
+class TokenRevocationFailedError extends LogtoError {
+    constructor() {
+        super('토큰 해지에 실패했습니다.');
+        this.name = "TokenRevocationFailedError";
+    }
+}
+exports.TokenRevocationFailedError = TokenRevocationFailedError;
+class AuthorizationCodeTokenFetchError extends LogtoError {
+    constructor(code) {
+        super(`인증 코드를 사용한 토큰 발급에 실패했습니다. 코드: ${code}`);
+        this.name = "AuthorizationCodeTokenFetchError";
+    }
+}
+exports.AuthorizationCodeTokenFetchError = AuthorizationCodeTokenFetchError;
+class SignInUriGenerationError extends LogtoError {
+    constructor(signInType) {
+        super(`로그인 URI 생성에 실패했습니다. 타입: ${signInType}`);
+        this.name = "SignInUriGenerationError";
+    }
+}
+exports.SignInUriGenerationError = SignInUriGenerationError;
+class SignOutUriGenerationError extends LogtoError {
+    constructor() {
+        super('로그아웃 URI 생성에 실패했습니다.');
+        this.name = "SignOutUriGenerationError";
+    }
+}
+exports.SignOutUriGenerationError = SignOutUriGenerationError;
+//# sourceMappingURL=errors.js.map

package/dist/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../errors.ts"],"names":[],"mappings":";;;AAAA,MAAa,UAAW,SAAQ,KAAK;IACjC,YAAY,CAAiB;QACzB,KAAK,CAAC,OAAO,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;QAC7C,KAAK,CAAC,iBAAiB,CAAC,IAAI,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC;QAChD,IAAI,CAAC,IAAI,GAAG,YAAY,CAAC;QACzB,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,IAAI,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,IAAI,EAAE,CAAC;IAC9D,CAAC;CACJ;AAPD,gCAOC;AAED,MAAa,8BAA+B,SAAQ,UAAU;IAC1D;QACI,KAAK,CAAC,6BAA6B,CAAC,CAAC;QACrC,IAAI,CAAC,IAAI,GAAG,gCAAgC,CAAC;IACjD,CAAC;CACJ;AALD,wEAKC;AAED,MAAa,iBAAkB,SAAQ,UAAU;IAC7C,YAAY,KAAa,EAAE,KAAa;QACpC,KAAK,CAAC,QAAQ,KAAK,WAAW,KAAK,mBAAmB,CAAC,CAAC;QACxD,IAAI,CAAC,IAAI,GAAG,mBAAmB,CAAC;IACpC,CAAC;CACJ;AALD,8CAKC;AAED,MAAa,uBAAwB,SAAQ,UAAU;IACnD,YAAY,KAAa,EAAE,KAAa;QACpC,KAAK,CAAC,QAAQ,KAAK,WAAW,KAAK,oBAAoB,CAAC,CAAC;QACzD,IAAI,CAAC,IAAI,GAAG,yBAAyB,CAAC;IAC1C,CAAC;CACJ;AALD,0DAKC;AAED,MAAa,0BAA2B,SAAQ,UAAU;IACtD;QACI,KAAK,CAAC,gBAAgB,CAAC,CAAC;QACxB,IAAI,CAAC,IAAI,GAAG,4BAA4B,CAAC;IAC7C,CAAC;CACJ;AALD,gEAKC;AAED,MAAa,gCAAiC,SAAQ,UAAU;IAC5D,YAAY,IAAY;QACpB,KAAK,CAAC,iCAAiC,IAAI,EAAE,CAAC,CAAC;QAC/C,IAAI,CAAC,IAAI,GAAG,kCAAkC,CAAC;IACnD,CAAC;CACJ;AALD,4EAKC;AAED,MAAa,wBAAyB,SAAQ,UAAU;IACpD,YAAY,UAAkB;QAC1B,KAAK,CAAC,2BAA2B,UAAU,EAAE,CAAC,CAAC;QAC/C,IAAI,CAAC,IAAI,GAAG,0BAA0B,CAAC;IAC3C,CAAC;CACJ;AALD,4DAKC;AAED,MAAa,yBAA0B,SAAQ,UAAU;IACrD;QACI,KAAK,CAAC,sBAAsB,CAAC,CAAC;QAC9B,IAAI,CAAC,IAAI,GAAG,2BAA2B,CAAC;IAC5C,CAAC;CACJ;AALD,8DAKC"}

package/dist/index.d.ts

@@ -0,0 +1,4 @@
+export * as token from "./token";
+export * as client from "./client";
+export * as stateless from "./stateless";
+export * as module from "./module";

package/dist/index.js

@@ -0,0 +1,41 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.module = exports.stateless = exports.client = exports.token = void 0;
+exports.token = __importStar(require("./token"));
+exports.client = __importStar(require("./client"));
+exports.stateless = __importStar(require("./stateless"));
+exports.module = __importStar(require("./module"));
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,iDAAiC;AACjC,mDAAmC;AACnC,yDAAyC;AACzC,mDAAmC"}

package/dist/module.d.ts

@@ -0,0 +1,27 @@
+import { DynamicModule, Type } from '@nestjs/common';
+export declare const LOGTO_MODULE_OPTIONS: unique symbol;
+export interface LogtoLoggerOptions {
+    module?: Type<any>;
+    token: Symbol | string;
+}
+export interface LogtoModuleOptions {
+    global?: boolean;
+    enableClient?: boolean;
+    logger: LogtoLoggerOptions & {
+        module: Type<any>;
+    };
+}
+export interface LogtoModuleFactoryOptions {
+    enableClient?: boolean;
+}
+export interface LogtoModuleAsyncOptions {
+    global?: boolean;
+    imports?: Type<any>[];
+    loggerToken: Symbol | string;
+    useFactory: (...args: any[]) => LogtoModuleFactoryOptions | Promise<LogtoModuleFactoryOptions>;
+    inject?: any[];
+}
+export declare class LogtoModule {
+    static forRoot(options: LogtoModuleOptions): DynamicModule;
+    static forRootAsync(options: LogtoModuleAsyncOptions): DynamicModule;
+}

package/dist/module.js

@@ -0,0 +1,171 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LogtoModule = exports.LOGTO_MODULE_OPTIONS = void 0;
+const config_1 = require("@nestjs/config");
+const client_1 = require("./client");
+const token_1 = require("./token");
+const stateless_1 = require("./stateless");
+exports.LOGTO_MODULE_OPTIONS = Symbol('LOGTO_MODULE_OPTIONS');
+class LogtoModule {
+    static forRoot(options) {
+        const { global = false, enableClient = false, logger } = options;
+        const baseProviders = [
+            {
+                provide: client_1.LogtoLoggerServiceToken,
+                useExisting: logger.token,
+            },
+            {
+                provide: token_1.LogtoTokenVerifierToken,
+                useFactory: (configService) => {
+                    return new token_1.LogtoTokenVerifier({
+                        jwksUri: configService.getOrThrow('LOGTO_JWKS_URI'),
+                        issuer: configService.getOrThrow('LOGTO_AUTH_ISSUER'),
+                    });
+                },
+                inject: [config_1.ConfigService],
+            },
+            {
+                provide: stateless_1.LogtoTokenGuardToken,
+                useClass: stateless_1.LogtoTokenGuard,
+            },
+        ];
+        const clientProviders = enableClient
+            ? [
+                {
+                    provide: client_1.OAuthClientToken,
+                    useFactory: (configService, loggerService) => {
+                        return new client_1.OAuthClient({
+                            endpoint: configService.getOrThrow('LOGTO_AUTH_ENDPOINT'),
+                            clientId: configService.getOrThrow('LOGTO_CLIENT_ID'),
+                            clientSecret: configService.getOrThrow('LOGTO_CLIENT_SECRET'),
+                            resources: [configService.getOrThrow('LOGTO_RESOURCES')],
+                            scopes: configService.getOrThrow('LOGTO_SCOPES').split(','),
+                            prompt: configService.getOrThrow('LOGTO_PROMPT'),
+                            redirectUri: configService.getOrThrow('LOGTO_REDIRECT_URI'),
+                            signInUri: configService.getOrThrow('LOGTO_SIGN_IN_URI'),
+                            dashboardSignInUri: configService.getOrThrow('LOGTO_DASHBOARD_SIGN_IN_URI'),
+                        }, loggerService);
+                    },
+                    inject: [config_1.ConfigService, client_1.LogtoLoggerServiceToken],
+                },
+                {
+                    provide: client_1.LogtoLoginSessionToken,
+                    useFactory: (configService, loggerService, oauthClient) => {
+                        return new client_1.LogtoLoginSession(configService.getOrThrow('LOGTO_M2M_API_URL'), loggerService, oauthClient);
+                    },
+                    inject: [config_1.ConfigService, client_1.LogtoLoggerServiceToken, client_1.OAuthClientToken],
+                },
+                {
+                    provide: client_1.LogtoM2MClientToken,
+                    useFactory: (configService, tokenVerifier, loggerService) => {
+                        return new client_1.LogtoM2MClient({
+                            endpoint: configService.getOrThrow('LOGTO_AUTH_ENDPOINT'),
+                            clientId: configService.getOrThrow('LOGTO_M2M_CLIENT_ID'),
+                            clientSecret: configService.getOrThrow('LOGTO_M2M_CLIENT_SECRET'),
+                            resource: configService.getOrThrow('LOGTO_M2M_RESOURCE'),
+                            apiUrl: configService.getOrThrow('LOGTO_M2M_API_URL'),
+                            scopes: ['all'],
+                        }, tokenVerifier, loggerService);
+                    },
+                    inject: [config_1.ConfigService, token_1.LogtoTokenVerifierToken, client_1.LogtoLoggerServiceToken],
+                },
+            ]
+            : [];
+        const providers = [...baseProviders, ...clientProviders];
+        return {
+            module: LogtoModule,
+            global,
+            imports: [config_1.ConfigModule, logger.module],
+            providers,
+            exports: providers,
+        };
+    }
+    static forRootAsync(options) {
+        const { global = false, imports = [], loggerToken, useFactory, inject = [] } = options;
+        const asyncOptionsProvider = {
+            provide: exports.LOGTO_MODULE_OPTIONS,
+            useFactory,
+            inject,
+        };
+        const baseProviders = [
+            asyncOptionsProvider,
+            {
+                provide: client_1.LogtoLoggerServiceToken,
+                useExisting: loggerToken,
+            },
+            {
+                provide: token_1.LogtoTokenVerifierToken,
+                useFactory: (configService) => {
+                    return new token_1.LogtoTokenVerifier({
+                        jwksUri: configService.getOrThrow('LOGTO_JWKS_URI'),
+                        issuer: configService.getOrThrow('LOGTO_AUTH_ISSUER'),
+                    });
+                },
+                inject: [config_1.ConfigService],
+            },
+            {
+                provide: stateless_1.LogtoTokenGuardToken,
+                useClass: stateless_1.LogtoTokenGuard,
+            },
+        ];
+        const clientProviders = [
+            {
+                provide: client_1.OAuthClientToken,
+                useFactory: (opts, configService, loggerService) => {
+                    if (opts.enableClient) {
+                        return new client_1.OAuthClient({
+                            endpoint: configService.getOrThrow('LOGTO_AUTH_ENDPOINT'),
+                            clientId: configService.getOrThrow('LOGTO_CLIENT_ID'),
+                            clientSecret: configService.getOrThrow('LOGTO_CLIENT_SECRET'),
+                            resources: [configService.getOrThrow('LOGTO_RESOURCES')],
+                            scopes: configService.getOrThrow('LOGTO_SCOPES').split(','),
+                            prompt: configService.getOrThrow('LOGTO_PROMPT'),
+                            redirectUri: configService.getOrThrow('LOGTO_REDIRECT_URI'),
+                            signInUri: configService.getOrThrow('LOGTO_SIGN_IN_URI'),
+                            dashboardSignInUri: configService.getOrThrow('LOGTO_DASHBOARD_SIGN_IN_URI'),
+                        }, loggerService);
+                    }
+                    return null;
+                },
+                inject: [exports.LOGTO_MODULE_OPTIONS, config_1.ConfigService, client_1.LogtoLoggerServiceToken],
+            },
+            {
+                provide: client_1.LogtoLoginSessionToken,
+                useFactory: (opts, configService, loggerService, oauthClient) => {
+                    if (opts.enableClient) {
+                        return new client_1.LogtoLoginSession(configService.getOrThrow('LOGTO_M2M_API_URL'), loggerService, oauthClient);
+                    }
+                    return null;
+                },
+                inject: [exports.LOGTO_MODULE_OPTIONS, config_1.ConfigService, client_1.LogtoLoggerServiceToken, client_1.OAuthClientToken],
+            },
+            {
+                provide: client_1.LogtoM2MClientToken,
+                useFactory: (opts, configService, tokenVerifier, loggerService) => {
+                    if (opts.enableClient) {
+                        return new client_1.LogtoM2MClient({
+                            endpoint: configService.getOrThrow('LOGTO_AUTH_ENDPOINT'),
+                            clientId: configService.getOrThrow('LOGTO_M2M_CLIENT_ID'),
+                            clientSecret: configService.getOrThrow('LOGTO_M2M_CLIENT_SECRET'),
+                            resource: configService.getOrThrow('LOGTO_M2M_RESOURCE'),
+                            apiUrl: configService.getOrThrow('LOGTO_M2M_API_URL'),
+                            scopes: ['all'],
+                        }, tokenVerifier, loggerService);
+                    }
+                    return null;
+                },
+                inject: [exports.LOGTO_MODULE_OPTIONS, config_1.ConfigService, token_1.LogtoTokenVerifierToken, client_1.LogtoLoggerServiceToken],
+            },
+        ];
+        const providers = [...baseProviders, ...clientProviders];
+        return {
+            module: LogtoModule,
+            global,
+            imports: [config_1.ConfigModule, ...imports],
+            providers,
+            exports: providers,
+        };
+    }
+}
+exports.LogtoModule = LogtoModule;
+//# sourceMappingURL=module.js.map

package/dist/module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"module.js","sourceRoot":"","sources":["../module.ts"],"names":[],"mappings":";;;AACA,2CAA6D;AAC7D,qCASkB;AAClB,mCAAsE;AACtE,2CAAoE;AAGvD,QAAA,oBAAoB,GAAG,MAAM,CAAC,sBAAsB,CAAC,CAAC;AAsDnE,MAAa,WAAW;IAwBpB,MAAM,CAAC,OAAO,CAAC,OAA2B;QACtC,MAAM,EAAE,MAAM,GAAG,KAAK,EAAE,YAAY,GAAG,KAAK,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC;QAEjE,MAAM,aAAa,GAAe;YAC9B;gBACI,OAAO,EAAE,gCAAuB;gBAChC,WAAW,EAAE,MAAM,CAAC,KAAK;aAC5B;YACD;gBACI,OAAO,EAAE,+BAAuB;gBAChC,UAAU,EAAE,CAAC,aAA4B,EAAE,EAAE;oBACzC,OAAO,IAAI,0BAAkB,CAAC;wBAC1B,OAAO,EAAE,aAAa,CAAC,UAAU,CAAS,gBAAgB,CAAC;wBAC3D,MAAM,EAAE,aAAa,CAAC,UAAU,CAAS,mBAAmB,CAAC;qBAChE,CAAC,CAAC;gBACP,CAAC;gBACD,MAAM,EAAE,CAAC,sBAAa,CAAC;aAC1B;YACD;gBACI,OAAO,EAAE,gCAAoB;gBAC7B,QAAQ,EAAE,2BAAe;aAC5B;SACJ,CAAC;QAEF,MAAM,eAAe,GAAe,YAAY;YAC5C,CAAC,CAAC;gBACI;oBACI,OAAO,EAAE,yBAAgB;oBACzB,UAAU,EAAE,CAAC,aAA4B,EAAE,aAA4B,EAAE,EAAE;wBACvE,OAAO,IAAI,oBAAW,CAClB;4BACI,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAS,qBAAqB,CAAC;4BACjE,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAS,iBAAiB,CAAC;4BAC7D,YAAY,EAAE,aAAa,CAAC,UAAU,CAAS,qBAAqB,CAAC;4BACrE,SAAS,EAAE,CAAC,aAAa,CAAC,UAAU,CAAS,iBAAiB,CAAC,CAAC;4BAChE,MAAM,EAAE,aAAa,CAAC,UAAU,CAAS,cAAc,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC;4BACnE,MAAM,EAAE,aAAa,CAAC,UAAU,CAAS,cAAc,CAAW;4BAClE,WAAW,EAAE,aAAa,CAAC,UAAU,CAAS,oBAAoB,CAAC;4BACnE,SAAS,EAAE,aAAa,CAAC,UAAU,CAAS,mBAAmB,CAAC;4BAChE,kBAAkB,EAAE,aAAa,CAAC,UAAU,CAAS,6BAA6B,CAAC;yBACtF,EACD,aAAa,CAChB,CAAC;oBACN,CAAC;oBACD,MAAM,EAAE,CAAC,sBAAa,EAAE,gCAAuB,CAAC;iBACnD;gBACD;oBACI,OAAO,EAAE,+BAAsB;oBAC/B,UAAU,EAAE,CACR,aAA4B,EAC5B,aAA4B,EAC5B,WAAwB,EAC1B,EAAE;wBACA,OAAO,IAAI,0BAAiB,CACxB,aAAa,CAAC,UAAU,CAAS,mBAAmB,CAAC,EACrD,aAAa,EACb,WAAW,CACd,CAAC;oBACN,CAAC;oBACD,MAAM,EAAE,CAAC,sBAAa,EAAE,gCAAuB,EAAE,yBAAgB,CAAC;iBACrE;gBACD;oBACI,OAAO,EAAE,4BAAmB;oBAC5B,UAAU,EAAE,CACR,aAA4B,EAC5B,aAAiC,EACjC,aAA4B,EAC9B,EAAE;wBACA,OAAO,IAAI,uBAAc,CACrB;4BACI,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAS,qBAAqB,CAAC;4BACjE,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAS,qBAAqB,CAAC;4BACjE,YAAY,EAAE,aAAa,CAAC,UAAU,CAAS,yBAAyB,CAAC;4BACzE,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAS,oBAAoB,CAAC;4BAChE,MAAM,EAAE,aAAa,CAAC,UAAU,CAAS,mBAAmB,CAAC;4BAC7D,MAAM,EAAE,CAAC,KAAK,CAAC;yBAClB,EACD,aAAa,EACb,aAAa,CAChB,CAAC;oBACN,CAAC;oBACD,MAAM,EAAE,CAAC,sBAAa,EAAE,+BAAuB,EAAE,gCAAuB,CAAC;iBAC5E;aACJ;YACH,CAAC,CAAC,EAAE,CAAC;QAET,MAAM,SAAS,GAAG,CAAC,GAAG,aAAa,EAAE,GAAG,eAAe,CAAC,CAAC;QAEzD,OAAO;YACH,MAAM,EAAE,WAAW;YACnB,MAAM;YACN,OAAO,EAAE,CAAC,qBAAY,EAAE,MAAM,CAAC,MAAM,CAAC;YACtC,SAAS;YACT,OAAO,EAAE,SAAS;SACrB,CAAC;IACN,CAAC;IAqBD,MAAM,CAAC,YAAY,CAAC,OAAgC;QAChD,MAAM,EAAE,MAAM,GAAG,KAAK,EAAE,OAAO,GAAG,EAAE,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,GAAG,EAAE,EAAE,GAAG,OAAO,CAAC;QAEvF,MAAM,oBAAoB,GAAa;YACnC,OAAO,EAAE,4BAAoB;YAC7B,UAAU;YACV,MAAM;SACT,CAAC;QAEF,MAAM,aAAa,GAAe;YAC9B,oBAAoB;YACpB;gBACI,OAAO,EAAE,gCAAuB;gBAChC,WAAW,EAAE,WAAW;aAC3B;YACD;gBACI,OAAO,EAAE,+BAAuB;gBAChC,UAAU,EAAE,CAAC,aAA4B,EAAE,EAAE;oBACzC,OAAO,IAAI,0BAAkB,CAAC;wBAC1B,OAAO,EAAE,aAAa,CAAC,UAAU,CAAS,gBAAgB,CAAC;wBAC3D,MAAM,EAAE,aAAa,CAAC,UAAU,CAAS,mBAAmB,CAAC;qBAChE,CAAC,CAAC;gBACP,CAAC;gBACD,MAAM,EAAE,CAAC,sBAAa,CAAC;aAC1B;YACD;gBACI,OAAO,EAAE,gCAAoB;gBAC7B,QAAQ,EAAE,2BAAe;aAC5B;SACJ,CAAC;QAEF,MAAM,eAAe,GAAe;YAChC;gBACI,OAAO,EAAE,yBAAgB;gBACzB,UAAU,EAAE,CACR,IAA+B,EAC/B,aAA4B,EAC5B,aAA4B,EAC9B,EAAE;oBACA,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;wBACpB,OAAO,IAAI,oBAAW,CAClB;4BACI,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAS,qBAAqB,CAAC;4BACjE,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAS,iBAAiB,CAAC;4BAC7D,YAAY,EAAE,aAAa,CAAC,UAAU,CAAS,qBAAqB,CAAC;4BACrE,SAAS,EAAE,CAAC,aAAa,CAAC,UAAU,CAAS,iBAAiB,CAAC,CAAC;4BAChE,MAAM,EAAE,aAAa,CAAC,UAAU,CAAS,cAAc,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC;4BACnE,MAAM,EAAE,aAAa,CAAC,UAAU,CAAS,cAAc,CAAW;4BAClE,WAAW,EAAE,aAAa,CAAC,UAAU,CAAS,oBAAoB,CAAC;4BACnE,SAAS,EAAE,aAAa,CAAC,UAAU,CAAS,mBAAmB,CAAC;4BAChE,kBAAkB,EAAE,aAAa,CAAC,UAAU,CAAS,6BAA6B,CAAC;yBACtF,EACD,aAAa,CAChB,CAAC;oBACN,CAAC;oBACD,OAAO,IAAI,CAAC;gBAChB,CAAC;gBACD,MAAM,EAAE,CAAC,4BAAoB,EAAE,sBAAa,EAAE,gCAAuB,CAAC;aACzE;YACD;gBACI,OAAO,EAAE,+BAAsB;gBAC/B,UAAU,EAAE,CACR,IAA+B,EAC/B,aAA4B,EAC5B,aAA4B,EAC5B,WAAwB,EAC1B,EAAE;oBACA,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;wBACpB,OAAO,IAAI,0BAAiB,CACxB,aAAa,CAAC,UAAU,CAAS,mBAAmB,CAAC,EACrD,aAAa,EACb,WAAW,CACd,CAAC;oBACN,CAAC;oBACD,OAAO,IAAI,CAAC;gBAChB,CAAC;gBACD,MAAM,EAAE,CAAC,4BAAoB,EAAE,sBAAa,EAAE,gCAAuB,EAAE,yBAAgB,CAAC;aAC3F;YACD;gBACI,OAAO,EAAE,4BAAmB;gBAC5B,UAAU,EAAE,CACR,IAA+B,EAC/B,aAA4B,EAC5B,aAAiC,EACjC,aAA4B,EAC9B,EAAE;oBACA,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;wBACpB,OAAO,IAAI,uBAAc,CACrB;4BACI,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAS,qBAAqB,CAAC;4BACjE,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAS,qBAAqB,CAAC;4BACjE,YAAY,EAAE,aAAa,CAAC,UAAU,CAAS,yBAAyB,CAAC;4BACzE,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAS,oBAAoB,CAAC;4BAChE,MAAM,EAAE,aAAa,CAAC,UAAU,CAAS,mBAAmB,CAAC;4BAC7D,MAAM,EAAE,CAAC,KAAK,CAAC;yBAClB,EACD,aAAa,EACb,aAAa,CAChB,CAAC;oBACN,CAAC;oBACD,OAAO,IAAI,CAAC;gBAChB,CAAC;gBACD,MAAM,EAAE,CAAC,4BAAoB,EAAE,sBAAa,EAAE,+BAAuB,EAAE,gCAAuB,CAAC;aAClG;SACJ,CAAC;QAEF,MAAM,SAAS,GAAG,CAAC,GAAG,aAAa,EAAE,GAAG,eAAe,CAAC,CAAC;QAEzD,OAAO;YACH,MAAM,EAAE,WAAW;YACnB,MAAM;YACN,OAAO,EAAE,CAAC,qBAAY,EAAE,GAAG,OAAO,CAAC;YACnC,SAAS;YACT,OAAO,EAAE,SAAS;SACrB,CAAC;IACN,CAAC;CACJ;AAhQD,kCAgQC"}

package/dist/stateless/decorator.d.ts

@@ -0,0 +1,7 @@
+import { applyDecorators } from '@nestjs/common';
+type LogtoProtectedOptions<T> = Partial<{
+    requiredScopes: string[];
+    requiredRoles: (T | 'management-point3')[];
+}>;
+export declare function LogtoProtected<RoleType>(options?: LogtoProtectedOptions<RoleType>): ReturnType<typeof applyDecorators>;
+export {};

package/dist/stateless/decorator.js

@@ -0,0 +1,10 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LogtoProtected = LogtoProtected;
+const common_1 = require("@nestjs/common");
+const guard_1 = require("./guard");
+function LogtoProtected(options) {
+    const { requiredScopes, requiredRoles } = options ?? {};
+    return (0, common_1.applyDecorators)((0, common_1.UseGuards)(guard_1.LogtoTokenGuard), (0, common_1.SetMetadata)('requiredScopes', requiredScopes && requiredScopes.length > 0 ? requiredScopes : undefined), (0, common_1.SetMetadata)('requiredRoles', requiredRoles && requiredRoles.length > 0 ? requiredRoles : undefined));
+}
+//# sourceMappingURL=decorator.js.map

package/dist/stateless/decorator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"decorator.js","sourceRoot":"","sources":["../../stateless/decorator.ts"],"names":[],"mappings":";;AAQA,wCAOC;AAfD,2CAAyE;AACzE,mCAA0C;AAO1C,SAAgB,cAAc,CAAW,OAAyC;IAChF,MAAM,EAAE,cAAc,EAAE,aAAa,EAAE,GAAG,OAAO,IAAI,EAAE,CAAC;IACxD,OAAO,IAAA,wBAAe,EACpB,IAAA,kBAAS,EAAC,uBAAe,CAAC,EAC1B,IAAA,oBAAW,EAAC,gBAAgB,EAAE,cAAc,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC,EACvG,IAAA,oBAAW,EAAC,eAAe,EAAE,aAAa,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC,CACpG,CAAC;AACJ,CAAC"}

package/dist/stateless/guard.d.ts

@@ -0,0 +1,10 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { LogtoTokenVerifier } from '../token';
+export declare const LogtoTokenGuardToken: unique symbol;
+export declare class LogtoTokenGuard implements CanActivate {
+    private tokenVerifier;
+    private reflector;
+    constructor(tokenVerifier: LogtoTokenVerifier);
+    canActivate(context: ExecutionContext): Promise<boolean>;
+    private extractBearerTokenFrom;
+}