@sentropic/auth-hono 0.2.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/LICENSE +21 -0
- package/README.md +80 -0
- package/dist/contracts.d.ts +64 -0
- package/dist/contracts.d.ts.map +1 -0
- package/dist/contracts.js +85 -0
- package/dist/contracts.js.map +1 -0
- package/dist/credential-route-handlers.d.ts +13 -0
- package/dist/credential-route-handlers.d.ts.map +1 -0
- package/dist/credential-route-handlers.js +102 -0
- package/dist/credential-route-handlers.js.map +1 -0
- package/dist/email-verification.d.ts +41 -0
- package/dist/email-verification.d.ts.map +1 -0
- package/dist/email-verification.js +65 -0
- package/dist/email-verification.js.map +1 -0
- package/dist/index.d.ts +15 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +15 -0
- package/dist/index.js.map +1 -0
- package/dist/magic-link.d.ts +40 -0
- package/dist/magic-link.d.ts.map +1 -0
- package/dist/magic-link.js +94 -0
- package/dist/magic-link.js.map +1 -0
- package/dist/middleware.d.ts +25 -0
- package/dist/middleware.d.ts.map +1 -0
- package/dist/middleware.js +104 -0
- package/dist/middleware.js.map +1 -0
- package/dist/ports.d.ts +279 -0
- package/dist/ports.d.ts.map +1 -0
- package/dist/ports.js +2 -0
- package/dist/ports.js.map +1 -0
- package/dist/route-handlers.d.ts +19 -0
- package/dist/route-handlers.d.ts.map +1 -0
- package/dist/route-handlers.js +106 -0
- package/dist/route-handlers.js.map +1 -0
- package/dist/router.d.ts +59 -0
- package/dist/router.d.ts.map +1 -0
- package/dist/router.js +65 -0
- package/dist/router.js.map +1 -0
- package/dist/session-route-handlers.d.ts +9 -0
- package/dist/session-route-handlers.d.ts.map +1 -0
- package/dist/session-route-handlers.js +74 -0
- package/dist/session-route-handlers.js.map +1 -0
- package/dist/session.d.ts +33 -0
- package/dist/session.d.ts.map +1 -0
- package/dist/session.js +123 -0
- package/dist/session.js.map +1 -0
- package/dist/webauthn-authentication-route-handlers.d.ts +26 -0
- package/dist/webauthn-authentication-route-handlers.d.ts.map +1 -0
- package/dist/webauthn-authentication-route-handlers.js +97 -0
- package/dist/webauthn-authentication-route-handlers.js.map +1 -0
- package/dist/webauthn-authentication.d.ts +39 -0
- package/dist/webauthn-authentication.d.ts.map +1 -0
- package/dist/webauthn-authentication.js +110 -0
- package/dist/webauthn-authentication.js.map +1 -0
- package/dist/webauthn-registration-route-handlers.d.ts +47 -0
- package/dist/webauthn-registration-route-handlers.d.ts.map +1 -0
- package/dist/webauthn-registration-route-handlers.js +111 -0
- package/dist/webauthn-registration-route-handlers.js.map +1 -0
- package/dist/webauthn-registration.d.ts +47 -0
- package/dist/webauthn-registration.d.ts.map +1 -0
- package/dist/webauthn-registration.js +103 -0
- package/dist/webauthn-registration.js.map +1 -0
- package/package.json +98 -0
- package/src/contracts.ts +99 -0
- package/src/credential-route-handlers.ts +178 -0
- package/src/email-verification.ts +127 -0
- package/src/index.ts +14 -0
- package/src/magic-link.ts +167 -0
- package/src/middleware.ts +178 -0
- package/src/ports.ts +289 -0
- package/src/route-handlers.ts +182 -0
- package/src/router.ts +149 -0
- package/src/session-route-handlers.ts +128 -0
- package/src/session.ts +201 -0
- package/src/webauthn-authentication-route-handlers.ts +200 -0
- package/src/webauthn-authentication.ts +211 -0
- package/src/webauthn-registration-route-handlers.ts +248 -0
- package/src/webauthn-registration.ts +204 -0
|
@@ -0,0 +1,94 @@
|
|
|
1
|
+
export const createAuthMagicLinkService = (options) => {
|
|
2
|
+
const tokenBytes = options.tokenBytes ?? 32;
|
|
3
|
+
const ttlSeconds = options.ttlSeconds ?? 10 * 60;
|
|
4
|
+
return {
|
|
5
|
+
async requestMagicLink(input) {
|
|
6
|
+
const email = options.ports.accountPolicy.normalizeEmail(input.email);
|
|
7
|
+
const now = options.ports.clock.now();
|
|
8
|
+
const token = options.ports.random.token(tokenBytes);
|
|
9
|
+
const tokenHash = await options.ports.tokens.hashSecret(token);
|
|
10
|
+
const expiresAt = options.ports.clock.addSeconds(now, ttlSeconds);
|
|
11
|
+
const url = buildMagicLinkUrl(options.baseUrl, token);
|
|
12
|
+
await options.ports.magicLinks.create({
|
|
13
|
+
email,
|
|
14
|
+
expiresAt,
|
|
15
|
+
now,
|
|
16
|
+
tokenHash,
|
|
17
|
+
userId: input.userId ?? null,
|
|
18
|
+
});
|
|
19
|
+
await options.ports.emailDelivery.sendMagicLink({ email, expiresAt, token, url });
|
|
20
|
+
return {
|
|
21
|
+
expiresAt,
|
|
22
|
+
success: true,
|
|
23
|
+
};
|
|
24
|
+
},
|
|
25
|
+
async verifyMagicLink(input) {
|
|
26
|
+
const tokenHash = await options.ports.tokens.hashSecret(input.token);
|
|
27
|
+
const now = options.ports.clock.now();
|
|
28
|
+
const link = await options.ports.magicLinks.findValidByTokenHash(tokenHash, now);
|
|
29
|
+
if (!link || link.used || link.expiresAt <= now) {
|
|
30
|
+
return invalidMagicLink();
|
|
31
|
+
}
|
|
32
|
+
const email = options.ports.accountPolicy.normalizeEmail(link.email);
|
|
33
|
+
const user = await resolveMagicLinkUser(options.ports, {
|
|
34
|
+
email,
|
|
35
|
+
now,
|
|
36
|
+
userId: link.userId,
|
|
37
|
+
});
|
|
38
|
+
if (!user) {
|
|
39
|
+
return invalidMagicLink();
|
|
40
|
+
}
|
|
41
|
+
await options.ports.magicLinks.markUsed(link.id, user.id);
|
|
42
|
+
return {
|
|
43
|
+
email,
|
|
44
|
+
user,
|
|
45
|
+
valid: true,
|
|
46
|
+
};
|
|
47
|
+
},
|
|
48
|
+
};
|
|
49
|
+
};
|
|
50
|
+
const resolveMagicLinkUser = async (ports, input) => {
|
|
51
|
+
const existingUser = input.userId
|
|
52
|
+
? await ports.users.findById(input.userId)
|
|
53
|
+
: await ports.users.findByEmail(input.email);
|
|
54
|
+
if (existingUser) {
|
|
55
|
+
if (!existingUser.emailVerified || existingUser.email !== input.email || !existingUser.displayName) {
|
|
56
|
+
return ((await ports.users.update(existingUser.id, {
|
|
57
|
+
displayName: existingUser.displayName ?? ports.accountPolicy.deriveDisplayName(input.email),
|
|
58
|
+
email: existingUser.email ?? input.email,
|
|
59
|
+
emailVerified: true,
|
|
60
|
+
updatedAt: input.now,
|
|
61
|
+
})) ?? existingUser);
|
|
62
|
+
}
|
|
63
|
+
return existingUser;
|
|
64
|
+
}
|
|
65
|
+
const isFirstUser = (await ports.users.count()) === 0;
|
|
66
|
+
const status = await ports.accountPolicy.statusForNewUser({
|
|
67
|
+
email: input.email,
|
|
68
|
+
isFirstUser,
|
|
69
|
+
now: input.now,
|
|
70
|
+
});
|
|
71
|
+
const user = await ports.users.create({
|
|
72
|
+
accountStatus: status.accountStatus,
|
|
73
|
+
approvalDueAt: status.approvalDueAt,
|
|
74
|
+
displayName: ports.accountPolicy.deriveDisplayName(input.email),
|
|
75
|
+
email: input.email,
|
|
76
|
+
emailVerified: true,
|
|
77
|
+
role: await ports.accountPolicy.roleForNewUser({ email: input.email, isFirstUser }),
|
|
78
|
+
});
|
|
79
|
+
await ports.accountPolicy.afterUserCreated?.(user);
|
|
80
|
+
return user;
|
|
81
|
+
};
|
|
82
|
+
const invalidMagicLink = () => ({
|
|
83
|
+
error: {
|
|
84
|
+
code: 'invalid_or_expired_magic_link',
|
|
85
|
+
message: 'Magic link is invalid or expired.',
|
|
86
|
+
status: 400,
|
|
87
|
+
},
|
|
88
|
+
valid: false,
|
|
89
|
+
});
|
|
90
|
+
const buildMagicLinkUrl = (baseUrl, token) => {
|
|
91
|
+
const normalizedBaseUrl = baseUrl.replace(/\/+$/g, '');
|
|
92
|
+
return `${normalizedBaseUrl}/auth/magic-link/verify?token=${encodeURIComponent(token)}`;
|
|
93
|
+
};
|
|
94
|
+
//# sourceMappingURL=magic-link.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"magic-link.js","sourceRoot":"","sources":["../src/magic-link.ts"],"names":[],"mappings":"AAkDA,MAAM,CAAC,MAAM,0BAA0B,GAAG,CACxC,OAA0C,EAChB,EAAE;IAC5B,MAAM,UAAU,GAAG,OAAO,CAAC,UAAU,IAAI,EAAE,CAAC;IAC5C,MAAM,UAAU,GAAG,OAAO,CAAC,UAAU,IAAI,EAAE,GAAG,EAAE,CAAC;IAEjD,OAAO;QACL,KAAK,CAAC,gBAAgB,CAAC,KAAK;YAC1B,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,aAAa,CAAC,cAAc,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;YACtE,MAAM,GAAG,GAAG,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC;YACtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACrD,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;YAC/D,MAAM,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,UAAU,CAAC,CAAC;YAClE,MAAM,GAAG,GAAG,iBAAiB,CAAC,OAAO,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;YAEtD,MAAM,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC;gBACpC,KAAK;gBACL,SAAS;gBACT,GAAG;gBACH,SAAS;gBACT,MAAM,EAAE,KAAK,CAAC,MAAM,IAAI,IAAI;aAC7B,CAAC,CAAC;YACH,MAAM,OAAO,CAAC,KAAK,CAAC,aAAa,CAAC,aAAa,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YAElF,OAAO;gBACL,SAAS;gBACT,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;QAED,KAAK,CAAC,eAAe,CAAC,KAAK;YACzB,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;YACrE,MAAM,GAAG,GAAG,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC;YACtC,MAAM,IAAI,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,oBAAoB,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;YAEjF,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,IAAI,GAAG,EAAE,CAAC;gBAChD,OAAO,gBAAgB,EAAE,CAAC;YAC5B,CAAC;YAED,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,aAAa,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACrE,MAAM,IAAI,GAAG,MAAM,oBAAoB,CAAC,OAAO,CAAC,KAAK,EAAE;gBACrD,KAAK;gBACL,GAAG;gBACH,MAAM,EAAE,IAAI,CAAC,MAAM;aACpB,CAAC,CAAC;YAEH,IAAI,CAAC,IAAI,EAAE,CAAC;gBACV,OAAO,gBAAgB,EAAE,CAAC;YAC5B,CAAC;YAED,MAAM,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;YAE1D,OAAO;gBACL,KAAK;gBACL,IAAI;gBACJ,KAAK,EAAE,IAAI;aACZ,CAAC;QACJ,CAAC;KACF,CAAC;AACJ,CAAC,CAAC;AAEF,MAAM,oBAAoB,GAAG,KAAK,EAChC,KAAoB,EACpB,KAA0D,EACtB,EAAE;IACtC,MAAM,YAAY,GAAG,KAAK,CAAC,MAAM;QAC/B,CAAC,CAAC,MAAM,KAAK,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC;QAC1C,CAAC,CAAC,MAAM,KAAK,CAAC,KAAK,CAAC,WAAW,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;IAE/C,IAAI,YAAY,EAAE,CAAC;QACjB,IAAI,CAAC,YAAY,CAAC,aAAa,IAAI,YAAY,CAAC,KAAK,KAAK,KAAK,CAAC,KAAK,IAAI,CAAC,YAAY,CAAC,WAAW,EAAE,CAAC;YACnG,OAAO,CACL,CAAC,MAAM,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,YAAY,CAAC,EAAE,EAAE;gBACzC,WAAW,EAAE,YAAY,CAAC,WAAW,IAAI,KAAK,CAAC,aAAa,CAAC,iBAAiB,CAAC,KAAK,CAAC,KAAK,CAAC;gBAC3F,KAAK,EAAE,YAAY,CAAC,KAAK,IAAI,KAAK,CAAC,KAAK;gBACxC,aAAa,EAAE,IAAI;gBACnB,SAAS,EAAE,KAAK,CAAC,GAAG;aACrB,CAAC,CAAC,IAAI,YAAY,CACpB,CAAC;QACJ,CAAC;QAED,OAAO,YAAY,CAAC;IACtB,CAAC;IAED,MAAM,WAAW,GAAG,CAAC,MAAM,KAAK,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC,KAAK,CAAC,CAAC;IACtD,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,aAAa,CAAC,gBAAgB,CAAC;QACxD,KAAK,EAAE,KAAK,CAAC,KAAK;QAClB,WAAW;QACX,GAAG,EAAE,KAAK,CAAC,GAAG;KACf,CAAC,CAAC;IACH,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC;QACpC,aAAa,EAAE,MAAM,CAAC,aAAa;QACnC,aAAa,EAAE,MAAM,CAAC,aAAa;QACnC,WAAW,EAAE,KAAK,CAAC,aAAa,CAAC,iBAAiB,CAAC,KAAK,CAAC,KAAK,CAAC;QAC/D,KAAK,EAAE,KAAK,CAAC,KAAK;QAClB,aAAa,EAAE,IAAI;QACnB,IAAI,EAAE,MAAM,KAAK,CAAC,aAAa,CAAC,cAAc,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,KAAK,EAAE,WAAW,EAAE,CAAC;KACpF,CAAC,CAAC;IAEH,MAAM,KAAK,CAAC,aAAa,CAAC,gBAAgB,EAAE,CAAC,IAAI,CAAC,CAAC;IAEnD,OAAO,IAAI,CAAC;AACd,CAAC,CAAC;AAEF,MAAM,gBAAgB,GAAG,GAAkC,EAAE,CAAC,CAAC;IAC7D,KAAK,EAAE;QACL,IAAI,EAAE,+BAA+B;QACrC,OAAO,EAAE,mCAAmC;QAC5C,MAAM,EAAE,GAAG;KACZ;IACD,KAAK,EAAE,KAAK;CACb,CAAC,CAAC;AAEH,MAAM,iBAAiB,GAAG,CAAC,OAAe,EAAE,KAAa,EAAU,EAAE;IACnE,MAAM,iBAAiB,GAAG,OAAO,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;IACvD,OAAO,GAAG,iBAAiB,iCAAiC,kBAAkB,CAAC,KAAK,CAAC,EAAE,CAAC;AAC1F,CAAC,CAAC"}
|
|
@@ -0,0 +1,25 @@
|
|
|
1
|
+
import type { MiddlewareHandler } from 'hono';
|
|
2
|
+
import type { AuthHonoPorts, AuthHonoSessionClaims, AuthHonoSessionRecord, AuthHonoUserRecord } from './ports.js';
|
|
3
|
+
export interface AuthHonoAuthContext {
|
|
4
|
+
role: string;
|
|
5
|
+
session: AuthHonoSessionClaims;
|
|
6
|
+
sessionRecord: AuthHonoSessionRecord;
|
|
7
|
+
token: string;
|
|
8
|
+
user: AuthHonoUserRecord;
|
|
9
|
+
}
|
|
10
|
+
export interface AuthHonoMiddlewareVariables {
|
|
11
|
+
auth: AuthHonoAuthContext;
|
|
12
|
+
session: AuthHonoSessionClaims;
|
|
13
|
+
user: AuthHonoUserRecord;
|
|
14
|
+
}
|
|
15
|
+
export interface AuthHonoMiddlewareEnv {
|
|
16
|
+
Variables: AuthHonoMiddlewareVariables;
|
|
17
|
+
}
|
|
18
|
+
export interface CreateAuthMiddlewareOptions {
|
|
19
|
+
ports: AuthHonoPorts;
|
|
20
|
+
unauthorizedCode?: string;
|
|
21
|
+
unauthorizedMessage?: string;
|
|
22
|
+
}
|
|
23
|
+
export declare const createRequireAuth: (options: CreateAuthMiddlewareOptions) => MiddlewareHandler;
|
|
24
|
+
export declare const createOptionalAuth: (options: CreateAuthMiddlewareOptions) => MiddlewareHandler;
|
|
25
|
+
//# sourceMappingURL=middleware.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"middleware.d.ts","sourceRoot":"","sources":["../src/middleware.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAW,iBAAiB,EAAQ,MAAM,MAAM,CAAC;AAE7D,OAAO,KAAK,EACV,aAAa,EACb,qBAAqB,EACrB,qBAAqB,EACrB,kBAAkB,EACnB,MAAM,YAAY,CAAC;AAEpB,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,qBAAqB,CAAC;IAC/B,aAAa,EAAE,qBAAqB,CAAC;IACrC,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,kBAAkB,CAAC;CAC1B;AAED,MAAM,WAAW,2BAA2B;IAC1C,IAAI,EAAE,mBAAmB,CAAC;IAC1B,OAAO,EAAE,qBAAqB,CAAC;IAC/B,IAAI,EAAE,kBAAkB,CAAC;CAC1B;AAED,MAAM,WAAW,qBAAqB;IACpC,SAAS,EAAE,2BAA2B,CAAC;CACxC;AAED,MAAM,WAAW,2BAA2B;IAC1C,KAAK,EAAE,aAAa,CAAC;IACrB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,mBAAmB,CAAC,EAAE,MAAM,CAAC;CAC9B;AAOD,eAAO,MAAM,iBAAiB,YAAa,2BAA2B,KAAG,iBAmBxE,CAAC;AAEF,eAAO,MAAM,kBAAkB,YAAa,2BAA2B,KAAG,iBAczE,CAAC"}
|
|
@@ -0,0 +1,104 @@
|
|
|
1
|
+
export const createRequireAuth = (options) => {
|
|
2
|
+
return async (c, next) => {
|
|
3
|
+
const result = await authenticateRequest(c, options);
|
|
4
|
+
if (result.kind === 'missing') {
|
|
5
|
+
return authError(c, {
|
|
6
|
+
code: options.unauthorizedCode ?? 'unauthorized',
|
|
7
|
+
message: options.unauthorizedMessage ?? 'Authentication required.',
|
|
8
|
+
status: 401,
|
|
9
|
+
});
|
|
10
|
+
}
|
|
11
|
+
if (result.kind === 'rejected') {
|
|
12
|
+
return authError(c, result);
|
|
13
|
+
}
|
|
14
|
+
setAuthContext(c, result.auth);
|
|
15
|
+
await next();
|
|
16
|
+
};
|
|
17
|
+
};
|
|
18
|
+
export const createOptionalAuth = (options) => {
|
|
19
|
+
return async (c, next) => {
|
|
20
|
+
const result = await authenticateRequest(c, options);
|
|
21
|
+
if (result.kind === 'rejected') {
|
|
22
|
+
return authError(c, result);
|
|
23
|
+
}
|
|
24
|
+
if (result.kind === 'authenticated') {
|
|
25
|
+
setAuthContext(c, result.auth);
|
|
26
|
+
}
|
|
27
|
+
await next();
|
|
28
|
+
};
|
|
29
|
+
};
|
|
30
|
+
const authenticateRequest = async (c, options) => {
|
|
31
|
+
const token = readBearerToken(c.req.raw) ?? options.ports.cookies.readSessionToken(c.req.raw);
|
|
32
|
+
if (!token) {
|
|
33
|
+
return { kind: 'missing' };
|
|
34
|
+
}
|
|
35
|
+
const now = options.ports.clock.now();
|
|
36
|
+
const claims = await options.ports.tokens.verifySessionToken(token);
|
|
37
|
+
if (!claims) {
|
|
38
|
+
return invalidSession();
|
|
39
|
+
}
|
|
40
|
+
const tokenHash = await options.ports.tokens.hashSecret(token);
|
|
41
|
+
const sessionRecord = await options.ports.sessions.findByTokenHash(tokenHash);
|
|
42
|
+
if (!sessionRecord ||
|
|
43
|
+
sessionRecord.id !== claims.sessionId ||
|
|
44
|
+
sessionRecord.userId !== claims.userId ||
|
|
45
|
+
sessionRecord.revokedAt ||
|
|
46
|
+
sessionRecord.expiresAt <= now) {
|
|
47
|
+
return invalidSession();
|
|
48
|
+
}
|
|
49
|
+
const user = await options.ports.users.findById(claims.userId);
|
|
50
|
+
if (!user) {
|
|
51
|
+
return invalidSession();
|
|
52
|
+
}
|
|
53
|
+
const decision = await options.ports.accountPolicy.canAuthenticate(user, now);
|
|
54
|
+
if (!decision.allowed) {
|
|
55
|
+
return {
|
|
56
|
+
kind: 'rejected',
|
|
57
|
+
code: decision.code ?? 'forbidden',
|
|
58
|
+
message: decision.message ?? 'Authentication is not allowed for this account.',
|
|
59
|
+
status: decision.status === 401 ? 401 : 403,
|
|
60
|
+
};
|
|
61
|
+
}
|
|
62
|
+
const role = await options.ports.accountPolicy.resolveSessionRole(user, now);
|
|
63
|
+
const session = { ...claims, role };
|
|
64
|
+
await options.ports.sessions.touch(sessionRecord.id, now);
|
|
65
|
+
return {
|
|
66
|
+
kind: 'authenticated',
|
|
67
|
+
auth: {
|
|
68
|
+
role,
|
|
69
|
+
session,
|
|
70
|
+
sessionRecord,
|
|
71
|
+
token,
|
|
72
|
+
user,
|
|
73
|
+
},
|
|
74
|
+
};
|
|
75
|
+
};
|
|
76
|
+
const invalidSession = () => ({
|
|
77
|
+
kind: 'rejected',
|
|
78
|
+
code: 'invalid_session',
|
|
79
|
+
message: 'Session is invalid or expired.',
|
|
80
|
+
status: 401,
|
|
81
|
+
});
|
|
82
|
+
const readBearerToken = (request) => {
|
|
83
|
+
const header = request.headers.get('Authorization');
|
|
84
|
+
if (!header) {
|
|
85
|
+
return null;
|
|
86
|
+
}
|
|
87
|
+
const match = /^Bearer\s+(.+)$/i.exec(header);
|
|
88
|
+
return match?.[1]?.trim() || null;
|
|
89
|
+
};
|
|
90
|
+
const setAuthContext = (c, auth) => {
|
|
91
|
+
const typedContext = c;
|
|
92
|
+
typedContext.set('auth', auth);
|
|
93
|
+
typedContext.set('session', auth.session);
|
|
94
|
+
typedContext.set('user', auth.user);
|
|
95
|
+
};
|
|
96
|
+
const authError = (c, error) => {
|
|
97
|
+
return c.json({
|
|
98
|
+
error: {
|
|
99
|
+
code: error.code,
|
|
100
|
+
message: error.message,
|
|
101
|
+
},
|
|
102
|
+
}, error.status);
|
|
103
|
+
};
|
|
104
|
+
//# sourceMappingURL=middleware.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"middleware.js","sourceRoot":"","sources":["../src/middleware.ts"],"names":[],"mappings":"AAsCA,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC,OAAoC,EAAqB,EAAE;IAC3F,OAAO,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;QACvB,MAAM,MAAM,GAAG,MAAM,mBAAmB,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QAErD,IAAI,MAAM,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;YAC9B,OAAO,SAAS,CAAC,CAAC,EAAE;gBAClB,IAAI,EAAE,OAAO,CAAC,gBAAgB,IAAI,cAAc;gBAChD,OAAO,EAAE,OAAO,CAAC,mBAAmB,IAAI,0BAA0B;gBAClE,MAAM,EAAE,GAAG;aACZ,CAAC,CAAC;QACL,CAAC;QAED,IAAI,MAAM,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;YAC/B,OAAO,SAAS,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;QAC9B,CAAC;QAED,cAAc,CAAC,CAAC,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC;QAC/B,MAAM,IAAI,EAAE,CAAC;IACf,CAAC,CAAC;AACJ,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,OAAoC,EAAqB,EAAE;IAC5F,OAAO,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;QACvB,MAAM,MAAM,GAAG,MAAM,mBAAmB,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QAErD,IAAI,MAAM,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;YAC/B,OAAO,SAAS,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;QAC9B,CAAC;QAED,IAAI,MAAM,CAAC,IAAI,KAAK,eAAe,EAAE,CAAC;YACpC,cAAc,CAAC,CAAC,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC;QACjC,CAAC;QAED,MAAM,IAAI,EAAE,CAAC;IACf,CAAC,CAAC;AACJ,CAAC,CAAC;AAEF,MAAM,mBAAmB,GAAG,KAAK,EAC/B,CAAU,EACV,OAAoC,EACf,EAAE;IACvB,MAAM,KAAK,GAAG,eAAe,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAE9F,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;IAC7B,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC;IACtC,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,kBAAkB,CAAC,KAAK,CAAC,CAAC;IAEpE,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,cAAc,EAAE,CAAC;IAC1B,CAAC;IAED,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;IAC/D,MAAM,aAAa,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,QAAQ,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC;IAE9E,IACE,CAAC,aAAa;QACd,aAAa,CAAC,EAAE,KAAK,MAAM,CAAC,SAAS;QACrC,aAAa,CAAC,MAAM,KAAK,MAAM,CAAC,MAAM;QACtC,aAAa,CAAC,SAAS;QACvB,aAAa,CAAC,SAAS,IAAI,GAAG,EAC9B,CAAC;QACD,OAAO,cAAc,EAAE,CAAC;IAC1B,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAE/D,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,cAAc,EAAE,CAAC;IAC1B,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,aAAa,CAAC,eAAe,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAE9E,IAAI,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC;QACtB,OAAO;YACL,IAAI,EAAE,UAAU;YAChB,IAAI,EAAE,QAAQ,CAAC,IAAI,IAAI,WAAW;YAClC,OAAO,EAAE,QAAQ,CAAC,OAAO,IAAI,iDAAiD;YAC9E,MAAM,EAAE,QAAQ,CAAC,MAAM,KAAK,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG;SAC5C,CAAC;IACJ,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,aAAa,CAAC,kBAAkB,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC7E,MAAM,OAAO,GAAG,EAAE,GAAG,MAAM,EAAE,IAAI,EAAE,CAAC;IAEpC,MAAM,OAAO,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,aAAa,CAAC,EAAE,EAAE,GAAG,CAAC,CAAC;IAE1D,OAAO;QACL,IAAI,EAAE,eAAe;QACrB,IAAI,EAAE;YACJ,IAAI;YACJ,OAAO;YACP,aAAa;YACb,KAAK;YACL,IAAI;SACL;KACF,CAAC;AACJ,CAAC,CAAC;AAEF,MAAM,cAAc,GAAG,GAAe,EAAE,CAAC,CAAC;IACxC,IAAI,EAAE,UAAU;IAChB,IAAI,EAAE,iBAAiB;IACvB,OAAO,EAAE,gCAAgC;IACzC,MAAM,EAAE,GAAG;CACZ,CAAC,CAAC;AAEH,MAAM,eAAe,GAAG,CAAC,OAAgB,EAAiB,EAAE;IAC1D,MAAM,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;IAEpD,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,KAAK,GAAG,kBAAkB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC9C,OAAO,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,IAAI,CAAC;AACpC,CAAC,CAAC;AAEF,MAAM,cAAc,GAAG,CAAC,CAAU,EAAE,IAAyB,EAAQ,EAAE;IACrE,MAAM,YAAY,GAAG,CAAmC,CAAC;IACzD,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;IAC/B,YAAY,CAAC,GAAG,CAAC,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;IAC1C,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;AACtC,CAAC,CAAC;AAEF,MAAM,SAAS,GAAG,CAChB,CAAU,EACV,KAA2D,EACjD,EAAE;IACZ,OAAO,CAAC,CAAC,IAAI,CACX;QACE,KAAK,EAAE;YACL,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,OAAO,EAAE,KAAK,CAAC,OAAO;SACvB;KACF,EACD,KAAK,CAAC,MAAM,CACb,CAAC;AACJ,CAAC,CAAC"}
|
package/dist/ports.d.ts
ADDED
|
@@ -0,0 +1,279 @@
|
|
|
1
|
+
export type AuthHonoAccountStatus = 'active' | 'pending_admin_approval' | 'approval_expired_readonly' | 'disabled_by_user' | 'disabled_by_admin' | (string & {});
|
|
2
|
+
export type AuthHonoChallengeType = 'registration' | 'authentication';
|
|
3
|
+
export interface AuthHonoDeviceInfo {
|
|
4
|
+
name?: string;
|
|
5
|
+
ipAddress?: string;
|
|
6
|
+
userAgent?: string;
|
|
7
|
+
}
|
|
8
|
+
export interface AuthHonoUserRecord {
|
|
9
|
+
id: string;
|
|
10
|
+
email: string | null;
|
|
11
|
+
displayName: string | null;
|
|
12
|
+
role: string;
|
|
13
|
+
emailVerified: boolean;
|
|
14
|
+
accountStatus: AuthHonoAccountStatus;
|
|
15
|
+
approvalDueAt: Date | null;
|
|
16
|
+
createdAt: Date;
|
|
17
|
+
updatedAt: Date;
|
|
18
|
+
}
|
|
19
|
+
export interface AuthHonoCreateUserInput {
|
|
20
|
+
email: string;
|
|
21
|
+
displayName?: string | null;
|
|
22
|
+
role: string;
|
|
23
|
+
emailVerified?: boolean;
|
|
24
|
+
accountStatus?: AuthHonoAccountStatus;
|
|
25
|
+
approvalDueAt?: Date | null;
|
|
26
|
+
}
|
|
27
|
+
export interface AuthHonoUpdateUserInput {
|
|
28
|
+
email?: string | null;
|
|
29
|
+
displayName?: string | null;
|
|
30
|
+
role?: string;
|
|
31
|
+
emailVerified?: boolean;
|
|
32
|
+
accountStatus?: AuthHonoAccountStatus;
|
|
33
|
+
approvalDueAt?: Date | null;
|
|
34
|
+
updatedAt?: Date;
|
|
35
|
+
}
|
|
36
|
+
export interface AuthHonoUserPort {
|
|
37
|
+
findById(userId: string): Promise<AuthHonoUserRecord | null>;
|
|
38
|
+
findByEmail(email: string): Promise<AuthHonoUserRecord | null>;
|
|
39
|
+
create(input: AuthHonoCreateUserInput): Promise<AuthHonoUserRecord>;
|
|
40
|
+
update(userId: string, input: AuthHonoUpdateUserInput): Promise<AuthHonoUserRecord | null>;
|
|
41
|
+
count(): Promise<number>;
|
|
42
|
+
}
|
|
43
|
+
export interface AuthHonoCredentialRecord {
|
|
44
|
+
id: string;
|
|
45
|
+
userId: string;
|
|
46
|
+
credentialId: string;
|
|
47
|
+
publicKey: Uint8Array | ArrayBuffer | string;
|
|
48
|
+
counter: number;
|
|
49
|
+
transports: string[] | null;
|
|
50
|
+
name: string | null;
|
|
51
|
+
deviceType: string | null;
|
|
52
|
+
backedUp: boolean | null;
|
|
53
|
+
lastUsedAt: Date | null;
|
|
54
|
+
createdAt: Date;
|
|
55
|
+
revokedAt: Date | null;
|
|
56
|
+
}
|
|
57
|
+
export interface AuthHonoCreateCredentialInput {
|
|
58
|
+
userId: string;
|
|
59
|
+
credentialId: string;
|
|
60
|
+
publicKey: Uint8Array | ArrayBuffer | string;
|
|
61
|
+
counter: number;
|
|
62
|
+
transports?: string[] | null;
|
|
63
|
+
name?: string | null;
|
|
64
|
+
deviceType?: string | null;
|
|
65
|
+
backedUp?: boolean | null;
|
|
66
|
+
}
|
|
67
|
+
export interface AuthHonoCredentialPort {
|
|
68
|
+
findById(credentialRecordId: string): Promise<AuthHonoCredentialRecord | null>;
|
|
69
|
+
findByCredentialId(credentialId: string): Promise<AuthHonoCredentialRecord | null>;
|
|
70
|
+
listForUser(userId: string): Promise<AuthHonoCredentialRecord[]>;
|
|
71
|
+
create(input: AuthHonoCreateCredentialInput): Promise<AuthHonoCredentialRecord>;
|
|
72
|
+
updateCounter(credentialId: string, counter: number, lastUsedAt?: Date): Promise<void>;
|
|
73
|
+
rename(credentialRecordId: string, userId: string, name: string): Promise<AuthHonoCredentialRecord | null>;
|
|
74
|
+
revoke(credentialRecordId: string, userId: string): Promise<boolean>;
|
|
75
|
+
}
|
|
76
|
+
export interface AuthHonoChallengeRecord {
|
|
77
|
+
id: string;
|
|
78
|
+
challenge: string;
|
|
79
|
+
userId: string | null;
|
|
80
|
+
type: AuthHonoChallengeType;
|
|
81
|
+
expiresAt: Date;
|
|
82
|
+
used: boolean;
|
|
83
|
+
createdAt: Date;
|
|
84
|
+
}
|
|
85
|
+
export interface AuthHonoCreateChallengeInput {
|
|
86
|
+
challenge: string;
|
|
87
|
+
userId?: string | null;
|
|
88
|
+
type: AuthHonoChallengeType;
|
|
89
|
+
expiresAt: Date;
|
|
90
|
+
}
|
|
91
|
+
export interface AuthHonoChallengePort {
|
|
92
|
+
create(input: AuthHonoCreateChallengeInput): Promise<AuthHonoChallengeRecord>;
|
|
93
|
+
findValid(challenge: string, type: AuthHonoChallengeType): Promise<AuthHonoChallengeRecord | null>;
|
|
94
|
+
markUsed(challenge: string): Promise<void>;
|
|
95
|
+
purgeExpired(now: Date): Promise<number>;
|
|
96
|
+
}
|
|
97
|
+
export interface AuthHonoSessionRecord {
|
|
98
|
+
id: string;
|
|
99
|
+
userId: string;
|
|
100
|
+
sessionTokenHash: string;
|
|
101
|
+
refreshTokenHash: string | null;
|
|
102
|
+
deviceName: string | null;
|
|
103
|
+
ipAddress: string | null;
|
|
104
|
+
userAgent: string | null;
|
|
105
|
+
mfaVerified: boolean;
|
|
106
|
+
expiresAt: Date;
|
|
107
|
+
createdAt: Date;
|
|
108
|
+
lastActivityAt: Date;
|
|
109
|
+
revokedAt: Date | null;
|
|
110
|
+
}
|
|
111
|
+
export interface AuthHonoCreateSessionInput {
|
|
112
|
+
id: string;
|
|
113
|
+
userId: string;
|
|
114
|
+
sessionTokenHash: string;
|
|
115
|
+
refreshTokenHash?: string | null;
|
|
116
|
+
deviceInfo?: AuthHonoDeviceInfo;
|
|
117
|
+
mfaVerified?: boolean;
|
|
118
|
+
expiresAt: Date;
|
|
119
|
+
now: Date;
|
|
120
|
+
}
|
|
121
|
+
export interface AuthHonoSessionPort {
|
|
122
|
+
create(input: AuthHonoCreateSessionInput): Promise<AuthHonoSessionRecord>;
|
|
123
|
+
findById(sessionId: string): Promise<AuthHonoSessionRecord | null>;
|
|
124
|
+
findByTokenHash(sessionTokenHash: string): Promise<AuthHonoSessionRecord | null>;
|
|
125
|
+
findByRefreshTokenHash(refreshTokenHash: string): Promise<AuthHonoSessionRecord | null>;
|
|
126
|
+
touch(sessionId: string, now: Date): Promise<void>;
|
|
127
|
+
updateTokens(input: {
|
|
128
|
+
expiresAt: Date;
|
|
129
|
+
refreshTokenHash: string;
|
|
130
|
+
sessionId: string;
|
|
131
|
+
sessionTokenHash: string;
|
|
132
|
+
}): Promise<AuthHonoSessionRecord | null>;
|
|
133
|
+
revoke(sessionId: string): Promise<boolean>;
|
|
134
|
+
revokeAllForUser(userId: string): Promise<number>;
|
|
135
|
+
listForUser(userId: string): Promise<AuthHonoSessionRecord[]>;
|
|
136
|
+
}
|
|
137
|
+
export interface AuthHonoEmailVerificationRecord {
|
|
138
|
+
id: string;
|
|
139
|
+
email: string;
|
|
140
|
+
codeHash: string;
|
|
141
|
+
verificationToken: string | null;
|
|
142
|
+
expiresAt: Date;
|
|
143
|
+
used: boolean;
|
|
144
|
+
createdAt: Date;
|
|
145
|
+
}
|
|
146
|
+
export interface AuthHonoEmailVerificationPort {
|
|
147
|
+
countRecent(email: string, since: Date): Promise<number>;
|
|
148
|
+
createCode(input: {
|
|
149
|
+
email: string;
|
|
150
|
+
codeHash: string;
|
|
151
|
+
expiresAt: Date;
|
|
152
|
+
now: Date;
|
|
153
|
+
}): Promise<AuthHonoEmailVerificationRecord>;
|
|
154
|
+
findLatestValidCode(email: string, codeHash: string, now: Date): Promise<AuthHonoEmailVerificationRecord | null>;
|
|
155
|
+
markUsedWithVerificationToken(id: string, verificationToken: string): Promise<void>;
|
|
156
|
+
verifyToken(email: string, verificationToken: string, now: Date): Promise<boolean>;
|
|
157
|
+
}
|
|
158
|
+
export interface AuthHonoMagicLinkRecord {
|
|
159
|
+
id: string;
|
|
160
|
+
tokenHash: string;
|
|
161
|
+
email: string;
|
|
162
|
+
userId: string | null;
|
|
163
|
+
expiresAt: Date;
|
|
164
|
+
used: boolean;
|
|
165
|
+
createdAt: Date;
|
|
166
|
+
}
|
|
167
|
+
export interface AuthHonoMagicLinkPort {
|
|
168
|
+
create(input: {
|
|
169
|
+
email: string;
|
|
170
|
+
tokenHash: string;
|
|
171
|
+
userId?: string | null;
|
|
172
|
+
expiresAt: Date;
|
|
173
|
+
now: Date;
|
|
174
|
+
}): Promise<AuthHonoMagicLinkRecord>;
|
|
175
|
+
findValidByTokenHash(tokenHash: string, now: Date): Promise<AuthHonoMagicLinkRecord | null>;
|
|
176
|
+
markUsed(id: string, userId?: string | null): Promise<void>;
|
|
177
|
+
}
|
|
178
|
+
export interface AuthHonoEmailDeliveryPort {
|
|
179
|
+
sendVerificationCode(input: {
|
|
180
|
+
email: string;
|
|
181
|
+
code: string;
|
|
182
|
+
expiresAt: Date;
|
|
183
|
+
}): Promise<void>;
|
|
184
|
+
sendMagicLink(input: {
|
|
185
|
+
email: string;
|
|
186
|
+
token: string;
|
|
187
|
+
expiresAt: Date;
|
|
188
|
+
url: string;
|
|
189
|
+
}): Promise<void>;
|
|
190
|
+
}
|
|
191
|
+
export interface AuthHonoCookiePort {
|
|
192
|
+
readSessionToken(request: Request): string | null;
|
|
193
|
+
readRefreshToken(request: Request): string | null;
|
|
194
|
+
serializeSessionCookie(input: {
|
|
195
|
+
token: string;
|
|
196
|
+
expiresAt: Date;
|
|
197
|
+
}): string;
|
|
198
|
+
serializeRefreshCookie(input: {
|
|
199
|
+
token: string;
|
|
200
|
+
expiresAt: Date;
|
|
201
|
+
}): string;
|
|
202
|
+
serializeClearedSessionCookie(): string;
|
|
203
|
+
serializeClearedRefreshCookie(): string;
|
|
204
|
+
}
|
|
205
|
+
export interface AuthHonoSessionClaims {
|
|
206
|
+
userId: string;
|
|
207
|
+
sessionId: string;
|
|
208
|
+
role: string;
|
|
209
|
+
email?: string | null;
|
|
210
|
+
displayName?: string | null;
|
|
211
|
+
}
|
|
212
|
+
export interface AuthHonoTokenPort {
|
|
213
|
+
hashSecret(secret: string): Promise<string> | string;
|
|
214
|
+
signSessionToken(claims: AuthHonoSessionClaims, expiresAt: Date): Promise<string>;
|
|
215
|
+
verifySessionToken(token: string): Promise<AuthHonoSessionClaims | null>;
|
|
216
|
+
signVerificationToken(input: {
|
|
217
|
+
email: string;
|
|
218
|
+
expiresAt: Date;
|
|
219
|
+
}): Promise<string>;
|
|
220
|
+
}
|
|
221
|
+
export type AuthHonoAuditLevel = 'debug' | 'info' | 'warn' | 'error';
|
|
222
|
+
export interface AuthHonoAuditLogPort {
|
|
223
|
+
record(level: AuthHonoAuditLevel, event: string, fields?: Record<string, unknown>): Promise<void> | void;
|
|
224
|
+
}
|
|
225
|
+
export interface AuthHonoClockPort {
|
|
226
|
+
now(): Date;
|
|
227
|
+
addSeconds(date: Date, seconds: number): Date;
|
|
228
|
+
}
|
|
229
|
+
export interface AuthHonoRandomPort {
|
|
230
|
+
uuid(): string;
|
|
231
|
+
bytes(length: number): Uint8Array;
|
|
232
|
+
numericCode(length: number): string;
|
|
233
|
+
token(bytes: number): string;
|
|
234
|
+
}
|
|
235
|
+
export interface AuthHonoAccountPolicyDecision {
|
|
236
|
+
allowed: boolean;
|
|
237
|
+
status?: number;
|
|
238
|
+
code?: string;
|
|
239
|
+
message?: string;
|
|
240
|
+
}
|
|
241
|
+
export interface AuthHonoAccountPolicyPort {
|
|
242
|
+
normalizeEmail(email: string): string;
|
|
243
|
+
deriveDisplayName(email: string): string;
|
|
244
|
+
resolveUserVerification?(user: AuthHonoUserRecord): 'discouraged' | 'preferred' | 'required';
|
|
245
|
+
roleForNewUser(input: {
|
|
246
|
+
email: string;
|
|
247
|
+
isFirstUser: boolean;
|
|
248
|
+
}): Promise<string> | string;
|
|
249
|
+
statusForNewUser(input: {
|
|
250
|
+
email: string;
|
|
251
|
+
isFirstUser: boolean;
|
|
252
|
+
now: Date;
|
|
253
|
+
}): Promise<{
|
|
254
|
+
accountStatus: AuthHonoAccountStatus;
|
|
255
|
+
approvalDueAt: Date | null;
|
|
256
|
+
}> | {
|
|
257
|
+
accountStatus: AuthHonoAccountStatus;
|
|
258
|
+
approvalDueAt: Date | null;
|
|
259
|
+
};
|
|
260
|
+
canAuthenticate(user: AuthHonoUserRecord, now: Date): Promise<AuthHonoAccountPolicyDecision> | AuthHonoAccountPolicyDecision;
|
|
261
|
+
resolveSessionRole(user: AuthHonoUserRecord, now: Date): Promise<string> | string;
|
|
262
|
+
afterUserCreated?(user: AuthHonoUserRecord): Promise<void> | void;
|
|
263
|
+
}
|
|
264
|
+
export interface AuthHonoPorts {
|
|
265
|
+
users: AuthHonoUserPort;
|
|
266
|
+
credentials: AuthHonoCredentialPort;
|
|
267
|
+
challenges: AuthHonoChallengePort;
|
|
268
|
+
sessions: AuthHonoSessionPort;
|
|
269
|
+
emailVerification: AuthHonoEmailVerificationPort;
|
|
270
|
+
magicLinks: AuthHonoMagicLinkPort;
|
|
271
|
+
emailDelivery: AuthHonoEmailDeliveryPort;
|
|
272
|
+
cookies: AuthHonoCookiePort;
|
|
273
|
+
tokens: AuthHonoTokenPort;
|
|
274
|
+
auditLog: AuthHonoAuditLogPort;
|
|
275
|
+
clock: AuthHonoClockPort;
|
|
276
|
+
random: AuthHonoRandomPort;
|
|
277
|
+
accountPolicy: AuthHonoAccountPolicyPort;
|
|
278
|
+
}
|
|
279
|
+
//# sourceMappingURL=ports.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"ports.d.ts","sourceRoot":"","sources":["../src/ports.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,qBAAqB,GAC7B,QAAQ,GACR,wBAAwB,GACxB,2BAA2B,GAC3B,kBAAkB,GAClB,mBAAmB,GACnB,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC;AAElB,MAAM,MAAM,qBAAqB,GAAG,cAAc,GAAG,gBAAgB,CAAC;AAEtE,MAAM,WAAW,kBAAkB;IACjC,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,kBAAkB;IACjC,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,aAAa,EAAE,OAAO,CAAC;IACvB,aAAa,EAAE,qBAAqB,CAAC;IACrC,aAAa,EAAE,IAAI,GAAG,IAAI,CAAC;IAC3B,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,IAAI,CAAC;CACjB;AAED,MAAM,WAAW,uBAAuB;IACtC,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,aAAa,CAAC,EAAE,qBAAqB,CAAC;IACtC,aAAa,CAAC,EAAE,IAAI,GAAG,IAAI,CAAC;CAC7B;AAED,MAAM,WAAW,uBAAuB;IACtC,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,aAAa,CAAC,EAAE,qBAAqB,CAAC;IACtC,aAAa,CAAC,EAAE,IAAI,GAAG,IAAI,CAAC;IAC5B,SAAS,CAAC,EAAE,IAAI,CAAC;CAClB;AAED,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,kBAAkB,GAAG,IAAI,CAAC,CAAC;IAC7D,WAAW,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,kBAAkB,GAAG,IAAI,CAAC,CAAC;IAC/D,MAAM,CAAC,KAAK,EAAE,uBAAuB,GAAG,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACpE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,uBAAuB,GAAG,OAAO,CAAC,kBAAkB,GAAG,IAAI,CAAC,CAAC;IAC3F,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC,CAAC;CAC1B;AAED,MAAM,WAAW,wBAAwB;IACvC,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,UAAU,GAAG,WAAW,GAAG,MAAM,CAAC;IAC7C,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,EAAE,GAAG,IAAI,CAAC;IAC5B,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;IACpB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,QAAQ,EAAE,OAAO,GAAG,IAAI,CAAC;IACzB,UAAU,EAAE,IAAI,GAAG,IAAI,CAAC;IACxB,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,IAAI,GAAG,IAAI,CAAC;CACxB;AAED,MAAM,WAAW,6BAA6B;IAC5C,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,UAAU,GAAG,WAAW,GAAG,MAAM,CAAC;IAC7C,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,CAAC,EAAE,MAAM,EAAE,GAAG,IAAI,CAAC;IAC7B,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,QAAQ,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;CAC3B;AAED,MAAM,WAAW,sBAAsB;IACrC,QAAQ,CAAC,kBAAkB,EAAE,MAAM,GAAG,OAAO,CAAC,wBAAwB,GAAG,IAAI,CAAC,CAAC;IAC/E,kBAAkB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,wBAAwB,GAAG,IAAI,CAAC,CAAC;IACnF,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,wBAAwB,EAAE,CAAC,CAAC;IACjE,MAAM,CAAC,KAAK,EAAE,6BAA6B,GAAG,OAAO,CAAC,wBAAwB,CAAC,CAAC;IAChF,aAAa,CAAC,YAAY,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACvF,MAAM,CAAC,kBAAkB,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,wBAAwB,GAAG,IAAI,CAAC,CAAC;IAC3G,MAAM,CAAC,kBAAkB,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;CACtE;AAED,MAAM,WAAW,uBAAuB;IACtC,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,IAAI,EAAE,qBAAqB,CAAC;IAC5B,SAAS,EAAE,IAAI,CAAC;IAChB,IAAI,EAAE,OAAO,CAAC;IACd,SAAS,EAAE,IAAI,CAAC;CACjB;AAED,MAAM,WAAW,4BAA4B;IAC3C,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,IAAI,EAAE,qBAAqB,CAAC;IAC5B,SAAS,EAAE,IAAI,CAAC;CACjB;AAED,MAAM,WAAW,qBAAqB;IACpC,MAAM,CAAC,KAAK,EAAE,4BAA4B,GAAG,OAAO,CAAC,uBAAuB,CAAC,CAAC;IAC9E,SAAS,CAAC,SAAS,EAAE,MAAM,EAAE,IAAI,EAAE,qBAAqB,GAAG,OAAO,CAAC,uBAAuB,GAAG,IAAI,CAAC,CAAC;IACnG,QAAQ,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC3C,YAAY,CAAC,GAAG,EAAE,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;CAC1C;AAED,MAAM,WAAW,qBAAqB;IACpC,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,gBAAgB,EAAE,MAAM,CAAC;IACzB,gBAAgB,EAAE,MAAM,GAAG,IAAI,CAAC;IAChC,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,WAAW,EAAE,OAAO,CAAC;IACrB,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,IAAI,CAAC;IAChB,cAAc,EAAE,IAAI,CAAC;IACrB,SAAS,EAAE,IAAI,GAAG,IAAI,CAAC;CACxB;AAED,MAAM,WAAW,0BAA0B;IACzC,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,gBAAgB,EAAE,MAAM,CAAC;IACzB,gBAAgB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACjC,UAAU,CAAC,EAAE,kBAAkB,CAAC;IAChC,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,SAAS,EAAE,IAAI,CAAC;IAChB,GAAG,EAAE,IAAI,CAAC;CACX;AAED,MAAM,WAAW,mBAAmB;IAClC,MAAM,CAAC,KAAK,EAAE,0BAA0B,GAAG,OAAO,CAAC,qBAAqB,CAAC,CAAC;IAC1E,QAAQ,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,qBAAqB,GAAG,IAAI,CAAC,CAAC;IACnE,eAAe,CAAC,gBAAgB,EAAE,MAAM,GAAG,OAAO,CAAC,qBAAqB,GAAG,IAAI,CAAC,CAAC;IACjF,sBAAsB,CAAC,gBAAgB,EAAE,MAAM,GAAG,OAAO,CAAC,qBAAqB,GAAG,IAAI,CAAC,CAAC;IACxF,KAAK,CAAC,SAAS,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACnD,YAAY,CAAC,KAAK,EAAE;QAClB,SAAS,EAAE,IAAI,CAAC;QAChB,gBAAgB,EAAE,MAAM,CAAC;QACzB,SAAS,EAAE,MAAM,CAAC;QAClB,gBAAgB,EAAE,MAAM,CAAC;KAC1B,GAAG,OAAO,CAAC,qBAAqB,GAAG,IAAI,CAAC,CAAC;IAC1C,MAAM,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IAC5C,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAClD,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,qBAAqB,EAAE,CAAC,CAAC;CAC/D;AAED,MAAM,WAAW,+BAA+B;IAC9C,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,iBAAiB,EAAE,MAAM,GAAG,IAAI,CAAC;IACjC,SAAS,EAAE,IAAI,CAAC;IAChB,IAAI,EAAE,OAAO,CAAC;IACd,SAAS,EAAE,IAAI,CAAC;CACjB;AAED,MAAM,WAAW,6BAA6B;IAC5C,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACzD,UAAU,CAAC,KAAK,EAAE;QAChB,KAAK,EAAE,MAAM,CAAC;QACd,QAAQ,EAAE,MAAM,CAAC;QACjB,SAAS,EAAE,IAAI,CAAC;QAChB,GAAG,EAAE,IAAI,CAAC;KACX,GAAG,OAAO,CAAC,+BAA+B,CAAC,CAAC;IAC7C,mBAAmB,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,GAAG,OAAO,CAAC,+BAA+B,GAAG,IAAI,CAAC,CAAC;IACjH,6BAA6B,CAAC,EAAE,EAAE,MAAM,EAAE,iBAAiB,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACpF,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,iBAAiB,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;CACpF;AAED,MAAM,WAAW,uBAAuB;IACtC,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,SAAS,EAAE,IAAI,CAAC;IAChB,IAAI,EAAE,OAAO,CAAC;IACd,SAAS,EAAE,IAAI,CAAC;CACjB;AAED,MAAM,WAAW,qBAAqB;IACpC,MAAM,CAAC,KAAK,EAAE;QACZ,KAAK,EAAE,MAAM,CAAC;QACd,SAAS,EAAE,MAAM,CAAC;QAClB,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;QACvB,SAAS,EAAE,IAAI,CAAC;QAChB,GAAG,EAAE,IAAI,CAAC;KACX,GAAG,OAAO,CAAC,uBAAuB,CAAC,CAAC;IACrC,oBAAoB,CAAC,SAAS,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,GAAG,OAAO,CAAC,uBAAuB,GAAG,IAAI,CAAC,CAAC;IAC5F,QAAQ,CAAC,EAAE,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CAC7D;AAED,MAAM,WAAW,yBAAyB;IACxC,oBAAoB,CAAC,KAAK,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,IAAI,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC7F,aAAa,CAAC,KAAK,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,IAAI,CAAC;QAAC,GAAG,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CACrG;AAED,MAAM,WAAW,kBAAkB;IACjC,gBAAgB,CAAC,OAAO,EAAE,OAAO,GAAG,MAAM,GAAG,IAAI,CAAC;IAClD,gBAAgB,CAAC,OAAO,EAAE,OAAO,GAAG,MAAM,GAAG,IAAI,CAAC;IAClD,sBAAsB,CAAC,KAAK,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,IAAI,CAAA;KAAE,GAAG,MAAM,CAAC;IAC1E,sBAAsB,CAAC,KAAK,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,IAAI,CAAA;KAAE,GAAG,MAAM,CAAC;IAC1E,6BAA6B,IAAI,MAAM,CAAC;IACxC,6BAA6B,IAAI,MAAM,CAAC;CACzC;AAED,MAAM,WAAW,qBAAqB;IACpC,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAC7B;AAED,MAAM,WAAW,iBAAiB;IAChC,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,GAAG,MAAM,CAAC;IACrD,gBAAgB,CAAC,MAAM,EAAE,qBAAqB,EAAE,SAAS,EAAE,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAClF,kBAAkB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,qBAAqB,GAAG,IAAI,CAAC,CAAC;IACzE,qBAAqB,CAAC,KAAK,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,IAAI,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;CACnF;AAED,MAAM,MAAM,kBAAkB,GAAG,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC;AAErE,MAAM,WAAW,oBAAoB;IACnC,MAAM,CAAC,KAAK,EAAE,kBAAkB,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CAC1G;AAED,MAAM,WAAW,iBAAiB;IAChC,GAAG,IAAI,IAAI,CAAC;IACZ,UAAU,CAAC,IAAI,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;CAC/C;AAED,MAAM,WAAW,kBAAkB;IACjC,IAAI,IAAI,MAAM,CAAC;IACf,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,CAAC;IAClC,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAAC;IACpC,KAAK,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAAC;CAC9B;AAED,MAAM,WAAW,6BAA6B;IAC5C,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,yBAAyB;IACxC,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAAC;IACtC,iBAAiB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAAC;IACzC,uBAAuB,CAAC,CAAC,IAAI,EAAE,kBAAkB,GAAG,aAAa,GAAG,WAAW,GAAG,UAAU,CAAC;IAC7F,cAAc,CAAC,KAAK,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,OAAO,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,CAAC,GAAG,MAAM,CAAC;IACzF,gBAAgB,CAAC,KAAK,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,OAAO,CAAC;QAAC,GAAG,EAAE,IAAI,CAAA;KAAE,GAAG,OAAO,CAAC;QACnF,aAAa,EAAE,qBAAqB,CAAC;QACrC,aAAa,EAAE,IAAI,GAAG,IAAI,CAAC;KAC5B,CAAC,GAAG;QACH,aAAa,EAAE,qBAAqB,CAAC;QACrC,aAAa,EAAE,IAAI,GAAG,IAAI,CAAC;KAC5B,CAAC;IACF,eAAe,CAAC,IAAI,EAAE,kBAAkB,EAAE,GAAG,EAAE,IAAI,GAAG,OAAO,CAAC,6BAA6B,CAAC,GAAG,6BAA6B,CAAC;IAC7H,kBAAkB,CAAC,IAAI,EAAE,kBAAkB,EAAE,GAAG,EAAE,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,GAAG,MAAM,CAAC;IAClF,gBAAgB,CAAC,CAAC,IAAI,EAAE,kBAAkB,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CACnE;AAED,MAAM,WAAW,aAAa;IAC5B,KAAK,EAAE,gBAAgB,CAAC;IACxB,WAAW,EAAE,sBAAsB,CAAC;IACpC,UAAU,EAAE,qBAAqB,CAAC;IAClC,QAAQ,EAAE,mBAAmB,CAAC;IAC9B,iBAAiB,EAAE,6BAA6B,CAAC;IACjD,UAAU,EAAE,qBAAqB,CAAC;IAClC,aAAa,EAAE,yBAAyB,CAAC;IACzC,OAAO,EAAE,kBAAkB,CAAC;IAC5B,MAAM,EAAE,iBAAiB,CAAC;IAC1B,QAAQ,EAAE,oBAAoB,CAAC;IAC/B,KAAK,EAAE,iBAAiB,CAAC;IACzB,MAAM,EAAE,kBAAkB,CAAC;IAC3B,aAAa,EAAE,yBAAyB,CAAC;CAC1C"}
|
package/dist/ports.js
ADDED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"ports.js","sourceRoot":"","sources":["../src/ports.ts"],"names":[],"mappings":""}
|
|
@@ -0,0 +1,19 @@
|
|
|
1
|
+
import type { AuthHonoEmailVerificationService } from './email-verification.js';
|
|
2
|
+
import type { AuthHonoMagicLinkService, AuthHonoRequestMagicLinkResult } from './magic-link.js';
|
|
3
|
+
import type { AuthHonoRouteHandlers } from './router.js';
|
|
4
|
+
export interface CreateAuthEmailRouteHandlersOptions {
|
|
5
|
+
service: AuthHonoEmailVerificationService;
|
|
6
|
+
}
|
|
7
|
+
export interface CreateAuthMagicLinkRouteHandlersOptions {
|
|
8
|
+
formatRequestMagicLinkSuccess?: (result: Extract<AuthHonoRequestMagicLinkResult, {
|
|
9
|
+
success: true;
|
|
10
|
+
}>) => AuthHonoMagicLinkRequestSuccessResponse;
|
|
11
|
+
service: AuthHonoMagicLinkService;
|
|
12
|
+
}
|
|
13
|
+
export interface AuthHonoMagicLinkRequestSuccessResponse {
|
|
14
|
+
success: true;
|
|
15
|
+
[key: string]: unknown;
|
|
16
|
+
}
|
|
17
|
+
export declare const createAuthEmailRouteHandlers: (options: CreateAuthEmailRouteHandlersOptions) => AuthHonoRouteHandlers;
|
|
18
|
+
export declare const createAuthMagicLinkRouteHandlers: (options: CreateAuthMagicLinkRouteHandlersOptions) => AuthHonoRouteHandlers;
|
|
19
|
+
//# sourceMappingURL=route-handlers.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"route-handlers.d.ts","sourceRoot":"","sources":["../src/route-handlers.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,gCAAgC,EAAE,MAAM,yBAAyB,CAAC;AAChF,OAAO,KAAK,EAAE,wBAAwB,EAAE,8BAA8B,EAAE,MAAM,iBAAiB,CAAC;AAChG,OAAO,KAAK,EAAE,qBAAqB,EAAE,MAAM,aAAa,CAAC;AAEzD,MAAM,WAAW,mCAAmC;IAClD,OAAO,EAAE,gCAAgC,CAAC;CAC3C;AAED,MAAM,WAAW,uCAAuC;IACtD,6BAA6B,CAAC,EAAE,CAC9B,MAAM,EAAE,OAAO,CAAC,8BAA8B,EAAE;QAAE,OAAO,EAAE,IAAI,CAAA;KAAE,CAAC,KAC/D,uCAAuC,CAAC;IAC7C,OAAO,EAAE,wBAAwB,CAAC;CACnC;AAED,MAAM,WAAW,uCAAuC;IACtD,OAAO,EAAE,IAAI,CAAC;IACd,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAyBD,eAAO,MAAM,4BAA4B,YAC9B,mCAAmC,KAC3C,qBAuCD,CAAC;AAEH,eAAO,MAAM,gCAAgC,YAClC,uCAAuC,KAC/C,qBAwCD,CAAC"}
|