@rpcbase/auth 0.109.0 → 0.111.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (59) hide show
  1. package/dist/handler-BH38xcvj.js +60 -0
  2. package/dist/handler-BH38xcvj.js.map +1 -0
  3. package/dist/handler-Bjxe8iM2.js +67 -0
  4. package/dist/handler-Bjxe8iM2.js.map +1 -0
  5. package/dist/handler-CVeU9Nyf.js +85 -0
  6. package/dist/handler-CVeU9Nyf.js.map +1 -0
  7. package/dist/handler-CrTy-N1A.js +51 -0
  8. package/dist/handler-CrTy-N1A.js.map +1 -0
  9. package/dist/handler-D2-FmmDc.js +56 -0
  10. package/dist/handler-D2-FmmDc.js.map +1 -0
  11. package/dist/handler-D4-sXlBe.js +74 -0
  12. package/dist/handler-D4-sXlBe.js.map +1 -0
  13. package/dist/handler-D87G4mz9.js +67 -0
  14. package/dist/handler-D87G4mz9.js.map +1 -0
  15. package/dist/handler-DKrwSIQz.js +19 -0
  16. package/dist/handler-DKrwSIQz.js.map +1 -0
  17. package/dist/handler-tJUJWqII.js +59 -0
  18. package/dist/handler-tJUJWqII.js.map +1 -0
  19. package/dist/index.js +657 -684
  20. package/dist/index.js.map +1 -1
  21. package/dist/middleware-BbKZ_rOe.js +18 -0
  22. package/dist/middleware-BbKZ_rOe.js.map +1 -0
  23. package/dist/oauth/index.js +625 -746
  24. package/dist/oauth/index.js.map +1 -1
  25. package/dist/routes.js +18 -9
  26. package/dist/routes.js.map +1 -1
  27. package/dist/schemas-BKnjeqQ9.js +3380 -0
  28. package/dist/schemas-BKnjeqQ9.js.map +1 -0
  29. package/dist/sign-in-C9a-NvBu.js +18 -0
  30. package/dist/sign-in-C9a-NvBu.js.map +1 -0
  31. package/dist/sign-up-DqDJxb2D.js +18 -0
  32. package/dist/sign-up-DqDJxb2D.js.map +1 -0
  33. package/package.json +1 -1
  34. package/dist/handler-BNDemOGd.js +0 -79
  35. package/dist/handler-BNDemOGd.js.map +0 -1
  36. package/dist/handler-Bt53h0sk.js +0 -64
  37. package/dist/handler-Bt53h0sk.js.map +0 -1
  38. package/dist/handler-C4cw739Z.js +0 -59
  39. package/dist/handler-C4cw739Z.js.map +0 -1
  40. package/dist/handler-Ck7oLQ_R.js +0 -87
  41. package/dist/handler-Ck7oLQ_R.js.map +0 -1
  42. package/dist/handler-CyP6R8FM.js +0 -24
  43. package/dist/handler-CyP6R8FM.js.map +0 -1
  44. package/dist/handler-D6zJn86A.js +0 -82
  45. package/dist/handler-D6zJn86A.js.map +0 -1
  46. package/dist/handler-D8HfTbUs.js +0 -58
  47. package/dist/handler-D8HfTbUs.js.map +0 -1
  48. package/dist/handler-DfEsSB4T.js +0 -74
  49. package/dist/handler-DfEsSB4T.js.map +0 -1
  50. package/dist/handler-xEpHnzkZ.js +0 -58
  51. package/dist/handler-xEpHnzkZ.js.map +0 -1
  52. package/dist/index-Bxz6YdiB.js +0 -20
  53. package/dist/index-Bxz6YdiB.js.map +0 -1
  54. package/dist/index-C_uBu_fP.js +0 -20
  55. package/dist/index-C_uBu_fP.js.map +0 -1
  56. package/dist/middleware-5Zwy7HRL.js +0 -25
  57. package/dist/middleware-5Zwy7HRL.js.map +0 -1
  58. package/dist/schemas-Dn3gHDGz.js +0 -3706
  59. package/dist/schemas-Dn3gHDGz.js.map +0 -1
package/dist/handler-tJUJWqII.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"handler-tJUJWqII.js","names":["z","Route","requestSchema","object","email","string","RequestPayload","infer","responseSchema","success","boolean","error","optional","ResponsePayload","crypto","Api","ApiHandler","Ctx","models","sendEmail","AuthSessionUser","ResendOtp","resendOtp","RequestPayload","ResponsePayload","payload","ctx","Promise","User","getGlobal","parsed","requestSchema","safeParse","success","res","status","error","email","data","user","findOne","emailVerificationCode","randomInt","toString","padStart","emailVerificationExpiresAt","Date","now","save","to","subject","html","text","err","console","warn","api","post","Route"],"sources":["../src/api/resend-otp/index.ts","../src/api/resend-otp/handler.ts"],"sourcesContent":["import { z } from \"zod\"\n\n\nexport const Route = \"/api/rb/auth/resend-otp\"\n\nexport const requestSchema = z.object({\n email: z.string().email(),\n})\n\nexport type RequestPayload = z.infer<typeof requestSchema>\n\nexport const responseSchema = z.object({\n success: z.boolean(),\n error: z.string().optional(),\n})\n\nexport type ResponsePayload = z.infer<typeof responseSchema>\n\n","import crypto from \"crypto\"\n\nimport { Api, ApiHandler, Ctx } from \"@rpcbase/api\"\nimport { models } from \"@rpcbase/db\"\nimport { sendEmail } from \"@rpcbase/server\"\n\nimport type { AuthSessionUser } from \"../../types\"\n\nimport * as ResendOtp from \"./index\"\n\n\nconst resendOtp: ApiHandler<ResendOtp.RequestPayload, ResendOtp.ResponsePayload, AuthSessionUser> = async (\n payload,\n ctx: Ctx<AuthSessionUser>\n): Promise<ResendOtp.ResponsePayload> => {\n const User = await models.getGlobal(\"RBUser\", ctx)\n\n const parsed = ResendOtp.requestSchema.safeParse(payload)\n\n if (!parsed.success) {\n ctx.res.status(400)\n return { success: false, error: \"invalid_payload\" }\n }\n\n const { email } = parsed.data\n\n const user = await User.findOne({ email })\n\n if (!user) {\n // TODO(auth): avoid account enumeration (return a generic success response even when the user doesn't exist)\n ctx.res.status(404)\n return { success: false, error: \"user_not_found\" }\n }\n\n // TODO(auth): add server-side throttling / rate limiting for resend-otp\n const emailVerificationCode = crypto.randomInt(0, 1_000_000).toString().padStart(6, \"0\")\n const emailVerificationExpiresAt = new Date(Date.now() + 10 * 60 * 1000)\n\n user.emailVerificationCode = emailVerificationCode\n user.emailVerificationExpiresAt = emailVerificationExpiresAt\n await user.save()\n\n try {\n await sendEmail({\n to: email,\n subject: `Your verification code: ${emailVerificationCode}`,\n html: `\n <p>Your verification code is <strong>${emailVerificationCode}</strong>. It expires in 10 minutes.</p>\n <p>If you didn't request this, you can ignore this message.</p>\n `,\n text: `Your verification code is ${emailVerificationCode}. It expires in 10 minutes. If you didn't request this, you can ignore this message.`,\n })\n } catch (err) {\n console.warn(\"failed to resend otp email\", err)\n }\n\n return { success: true }\n}\n\nexport default (api: Api<AuthSessionUser>) => {\n api.post(ResendOtp.Route, resendOtp)\n}\n"],"mappings":";;;;;AAGA,IAAaC,QAAQ;AAErB,IAAaC,gBAAgBF,OAAS,EACpCI,OAAOJ,QAAU,CAACI,OAAM,EACzB,CAAC;AAI4BJ,OAAS;CACrCS,SAAST,SAAW;CACpBW,OAAOX,QAAU,CAACY,UAAS;CAC5B,CAAC;;;ACHF,IAAMU,YAA8F,OAClGG,SACAC,QACuC;CACvC,MAAME,OAAO,MAAMV,OAAOW,UAAU,UAAUH,IAAI;CAElD,MAAMI,SAAAA,cAAiCE,UAAUP,QAAQ;AAEzD,KAAI,CAACK,OAAOG,SAAS;AACnBP,MAAIQ,IAAIC,OAAO,IAAI;AACnB,SAAO;GAAEF,SAAS;GAAOG,OAAO;GAAmB;;CAGrD,MAAM,EAAEC,UAAUP,OAAOQ;CAEzB,MAAMC,OAAO,MAAMX,KAAKY,QAAQ,EAAEH,OAAO,CAAC;AAE1C,KAAI,CAACE,MAAM;AAETb,MAAIQ,IAAIC,OAAO,IAAI;AACnB,SAAO;GAAEF,SAAS;GAAOG,OAAO;GAAkB;;CAIpD,MAAMK,wBAAwB3B,OAAO4B,UAAU,GAAG,IAAU,CAACC,UAAU,CAACC,SAAS,GAAG,IAAI;CACxF,MAAMC,6BAA6B,IAAIC,KAAKA,KAAKC,KAAK,GAAG,MAAU,IAAK;AAExER,MAAKE,wBAAwBA;AAC7BF,MAAKM,6BAA6BA;AAClC,OAAMN,KAAKS,MAAM;AAEjB,KAAI;AACF,QAAM7B,UAAU;GACd8B,IAAIZ;GACJa,SAAS,2BAA2BT;GACpCU,MAAM;+CACmCV,sBAAqB;;;GAG9DW,MAAM,6BAA6BX,sBAAqB;GACzD,CAAC;UACKY,KAAK;AACZC,UAAQC,KAAK,8BAA8BF,IAAI;;AAGjD,QAAO,EAAEpB,SAAS,MAAM;;AAG1B,IAAA,mBAAgBuB,QAA8B;AAC5CA,KAAIC,KAAKpC,OAAiBC,UAAU"}