@quanticjs/auth-web-bff 4.4.2 → 5.1.0

package/dist/bff.controller.d.ts

@@ -1,8 +1,10 @@
 import { Request, Response } from 'express';
 import { BffService } from './bff.service';
+import { type BffModuleOptions } from './interfaces';
 export declare class BffController {
     private readonly bffService;
-    constructor(bffService: BffService);
+    private readonly callbackPath;
+    constructor(bffService: BffService, options: BffModuleOptions);
     login(returnTo: string, res: Response): void;
     callback(code: string, state: string, req: Request, res: Response): Promise<void>;
     refresh(req: Request, res: Response): Promise<void>;

package/dist/bff.controller.js

@@ -17,18 +17,21 @@ const common_1 = require("@nestjs/common");
 const swagger_1 = require("@nestjs/swagger");
 const core_1 = require("@quanticjs/core");
 const bff_service_1 = require("./bff.service");
+const interfaces_1 = require("./interfaces");
 const VERIFIER_COOKIE = 'pkce_verifier';
 let BffController = class BffController {
     bffService;
-    constructor(bffService) {
+    callbackPath;
+    constructor(bffService, options) {
         this.bffService = bffService;
+        this.callbackPath = options.callbackPath ?? '/api/auth/callback';
     }
     login(returnTo, res) {
         const { url, codeVerifier } = this.bffService.getAuthorizationUrl(returnTo);
         res.cookie(VERIFIER_COOKIE, codeVerifier, {
             httpOnly: true,
             sameSite: 'lax',
-            path: '/auth/callback',
+            path: this.callbackPath,
             maxAge: 5 * 60 * 1000,
         });
         res.redirect(url);
@@ -36,17 +39,17 @@ let BffController = class BffController {
     async callback(code, state, req, res) {
         const codeVerifier = req.cookies?.[VERIFIER_COOKIE];
         if (!codeVerifier || !code) {
-            res.redirect('/auth/login');
+            res.redirect('/api/auth/login');
             return;
         }
-        res.clearCookie(VERIFIER_COOKIE, { path: '/auth/callback' });
+        res.clearCookie(VERIFIER_COOKIE, { path: this.callbackPath });
         try {
             const { sessionId, returnTo } = await this.bffService.handleCallback(code, state, codeVerifier);
             res.cookie(this.bffService.getCookieName(), sessionId, this.bffService.getCookieOptions());
             res.redirect(returnTo);
         }
         catch {
-            res.redirect('/auth/login?error=callback_failed');
+            res.redirect('/api/auth/login?error=callback_failed');
         }
     }
     async refresh(req, res) {
@@ -143,5 +146,6 @@ __decorate([
 exports.BffController = BffController = __decorate([
     (0, swagger_1.ApiTags)('auth'),
     (0, common_1.Controller)('auth'),
-    __metadata("design:paramtypes", [bff_service_1.BffService])
+    __param(1, (0, common_1.Inject)(interfaces_1.BFF_OPTIONS)),
+    __metadata("design:paramtypes", [bff_service_1.BffService, Object])
 ], BffController);

package/dist/bff.service.js

@@ -185,7 +185,7 @@ let BffService = class BffService {
         return url.replace(this.internalKeycloakBase, this.publicKeycloakBase);
     }
     getCallbackUrl() {
-        const callbackPath = this.options.callbackPath ?? '/auth/callback';
+        const callbackPath = this.options.callbackPath ?? '/api/auth/callback';
         return `${this.options.publicUrl}${callbackPath}`;
     }
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@quanticjs/auth-web-bff",
-  "version": "4.4.2",
+  "version": "5.1.0",
   "description": "BFF authentication module — Keycloak OIDC, Redis sessions, httpOnly cookies",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -9,7 +9,7 @@
     "clean": "rm -rf dist"
   },
   "dependencies": {
-    "@quanticjs/core": "^4.4.2"
+    "@quanticjs/core": "^5.1.0"
   },
   "peerDependencies": {
     "@nestjs/common": "^10.0.0 || ^11.0.0",