@skillstew/common 1.0.1 → 1.0.2

package/build/errors/AppError.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ApplicationError = exports.InfrastructureError = exports.DomainError = exports.AppError = void 0;
+class AppError extends Error {
+    constructor(message, code, context) {
+        super(message);
+        this.message = message;
+        this.code = code;
+        this.context = context;
+        this.name = this.constructor.name;
+        Object.setPrototypeOf(this, new.target.prototype);
+    }
+}
+exports.AppError = AppError;
+class DomainError extends AppError {
+}
+exports.DomainError = DomainError;
+class InfrastructureError extends AppError {
+}
+exports.InfrastructureError = InfrastructureError;
+class ApplicationError extends AppError {
+}
+exports.ApplicationError = ApplicationError;

package/build/errors/JwtErrors.js

@@ -0,0 +1,50 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.TokenRoleMismatchError = exports.InvalidTokenRoleError = exports.InvalidTokenError = exports.AccessTokenVerifyError = exports.RefreshTokenVerifyError = exports.EmailVerificationJwtVerifyError = exports.JwtError = void 0;
+const AppError_1 = require("./AppError");
+const JwtErrorCodes_1 = require("./codes/JwtErrorCodes");
+class JwtError extends AppError_1.InfrastructureError {
+    constructor(code) {
+        super(JwtErrorCodes_1.JwtErrorCodes[code], code);
+    }
+    toJSON() {
+        return { error: this.name, message: this.message, code: this.code };
+    }
+}
+exports.JwtError = JwtError;
+class EmailVerificationJwtVerifyError extends JwtError {
+    constructor() {
+        super("EMAIL_VERIFICATION_JWT_VERIFY_ERROR");
+    }
+}
+exports.EmailVerificationJwtVerifyError = EmailVerificationJwtVerifyError;
+class RefreshTokenVerifyError extends JwtError {
+    constructor() {
+        super("REFRESH_TOKEN_VERIFY_ERROR");
+    }
+}
+exports.RefreshTokenVerifyError = RefreshTokenVerifyError;
+class AccessTokenVerifyError extends JwtError {
+    constructor() {
+        super("ACCESS_TOKEN_VERIFY_ERROR");
+    }
+}
+exports.AccessTokenVerifyError = AccessTokenVerifyError;
+class InvalidTokenError extends JwtError {
+    constructor() {
+        super("INVALID_TOKEN_ERROR");
+    }
+}
+exports.InvalidTokenError = InvalidTokenError;
+class InvalidTokenRoleError extends JwtError {
+    constructor() {
+        super("INVALID_TOKEN_ROLE_ERROR");
+    }
+}
+exports.InvalidTokenRoleError = InvalidTokenRoleError;
+class TokenRoleMismatchError extends JwtError {
+    constructor() {
+        super("TOKEN_ROLE_MISMATCH_ERROR");
+    }
+}
+exports.TokenRoleMismatchError = TokenRoleMismatchError;

package/build/errors/UnauthenticatedError.js

@@ -0,0 +1,13 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UnauthenticatedError = void 0;
+const AppError_1 = require("./AppError");
+class UnauthenticatedError extends AppError_1.ApplicationError {
+    constructor() {
+        super("Unauthenticated", "USER_UNAUTHENTICATED");
+    }
+    toJSON() {
+        return { name: this.name, message: this.message };
+    }
+}
+exports.UnauthenticatedError = UnauthenticatedError;

package/build/errors/codes/JwtErrorCodes.js

@@ -0,0 +1,12 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JwtErrorCodes = void 0;
+var JwtErrorCodes;
+(function (JwtErrorCodes) {
+    JwtErrorCodes["EMAIL_VERIFICATION_JWT_VERIFY_ERROR"] = "Invalid email verification jwt";
+    JwtErrorCodes["REFRESH_TOKEN_VERIFY_ERROR"] = "Invalid refresh token";
+    JwtErrorCodes["ACCESS_TOKEN_VERIFY_ERROR"] = "Invalid access token";
+    JwtErrorCodes["INVALID_TOKEN_ERROR"] = "Invalid token";
+    JwtErrorCodes["INVALID_TOKEN_ROLE_ERROR"] = "Invalid role identifier";
+    JwtErrorCodes["TOKEN_ROLE_MISMATCH_ERROR"] = "Role mismatch between payload and header";
+})(JwtErrorCodes || (exports.JwtErrorCodes = JwtErrorCodes = {}));

package/build/index.js

@@ -0,0 +1,23 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./errors/AppError"), exports);
+__exportStar(require("./errors/JwtErrors"), exports);
+__exportStar(require("./errors/UnauthenticatedError"), exports);
+__exportStar(require("./errors/codes/JwtErrorCodes"), exports);
+__exportStar(require("./jwt-utils/JwtHelper"), exports);
+__exportStar(require("./middlewares/authMiddleware"), exports);
+__exportStar(require("./types/UserRoles"), exports);

package/build/jwt-utils/JwtHelper.js

@@ -0,0 +1,43 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JwtHelper = void 0;
+const jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
+const JwtErrors_1 = require("../errors/JwtErrors");
+function isUserRole(role) {
+    return ["ADMIN", "EXPERT", "USER"].includes(role);
+}
+class JwtHelper {
+    constructor({ userAccessTokenSecret, expertAccessTokenSecret, adminAccessTokenSecret, }) {
+        this.verifyAccessToken = (jwtToken) => {
+            const decoded = jsonwebtoken_1.default.decode(jwtToken, { complete: true });
+            if (!decoded || !decoded.header) {
+                throw new JwtErrors_1.InvalidTokenError();
+            }
+            const header = decoded.header;
+            const role = header.kid;
+            if (!role || !isUserRole(role)) {
+                throw new JwtErrors_1.InvalidTokenRoleError();
+            }
+            let payload;
+            try {
+                payload = jsonwebtoken_1.default.verify(jwtToken, this._AccessSecrets[role]);
+            }
+            catch (err) {
+                throw new JwtErrors_1.AccessTokenVerifyError();
+            }
+            if (!(role === payload.role)) {
+                throw new JwtErrors_1.TokenRoleMismatchError();
+            }
+            return payload;
+        };
+        this._AccessSecrets = {
+            USER: userAccessTokenSecret,
+            ADMIN: adminAccessTokenSecret,
+            EXPERT: expertAccessTokenSecret,
+        };
+    }
+}
+exports.JwtHelper = JwtHelper;

package/build/middlewares/authMiddleware.js

@@ -0,0 +1,32 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthMiddleware = void 0;
+const UnauthenticatedError_1 = require("../errors/UnauthenticatedError");
+const JwtHelper_1 = require("../jwt-utils/JwtHelper");
+class AuthMiddleware {
+    constructor(userAccessTokenSecret, expertAccessTokenSecret, adminAccessTokenSecret) {
+        this.verify = (req, _res, next) => {
+            var _a;
+            try {
+                const token = (_a = req.headers["authorization"]) === null || _a === void 0 ? void 0 : _a.split(" ")[1];
+                if (!token) {
+                    throw new UnauthenticatedError_1.UnauthenticatedError();
+                }
+                const payload = this._jwtHelper.verifyAccessToken(token);
+                req.user = Object.assign(Object.assign({ id: payload.userId }, (payload.role === "ADMIN"
+                    ? { userame: payload.username }
+                    : { email: payload.email })), { role: payload.role });
+                next();
+            }
+            catch (err) {
+                next(err);
+            }
+        };
+        this._jwtHelper = new JwtHelper_1.JwtHelper({
+            userAccessTokenSecret,
+            expertAccessTokenSecret,
+            adminAccessTokenSecret,
+        });
+    }
+}
+exports.AuthMiddleware = AuthMiddleware;

package/build/types/UserRoles.js

@@ -0,0 +1,4 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.USER_ROLES = void 0;
+exports.USER_ROLES = ["USER", "EXPERT", "ADMIN"];

package/package.json

@@ -1,8 +1,13 @@
 {
   "name": "@skillstew/common",
-  "version": "1.0.1",
-  "main": "index.js",
-  "scripts": {},
+  "version": "1.0.2",
+  "main": "./build/index.js",
+  "types": "./build/index.d.ts",
+  "scripts": {
+    "del": "del ./build/*",
+    "build": "npm run del && tsc",
+    "pub": "git add . && git commit -m \"Updates to common\" && npm version patch && npm run build && npm publish"
+  },
   "keywords": [],
   "author": "",
   "license": "ISC",
@@ -10,6 +15,7 @@
   "dependencies": {
     "@types/express": "^5.0.3",
     "@types/jsonwebtoken": "^9.0.10",
+    "del-cli": "^6.0.0",
     "express": "^5.1.0",
     "jsonwebtoken": "^9.0.2"
   }

package/src/index.ts

@@ -0,0 +1,9 @@
+export * from "./errors/AppError";
+export * from "./errors/JwtErrors";
+export * from "./errors/UnauthenticatedError";
+export * from "./errors/codes/JwtErrorCodes";
+
+export * from "./jwt-utils/JwtHelper";
+export * from "./middlewares/authMiddleware";
+
+export * from "./types/UserRoles";

package/tsconfig.json

@@ -61,7 +61,7 @@
     // "inlineSourceMap": true,                          /* Include sourcemap files inside the emitted JavaScript. */
     // "noEmit": true,                                   /* Disable emitting files from a compilation. */
     // "outFile": "./",                                  /* Specify a file that bundles all outputs into one JavaScript file. If 'declaration' is true, also designates a file that bundles all .d.ts output. */
-    // "outDir": "./",                                   /* Specify an output folder for all emitted files. */
+    "outDir": "./build" /* Specify an output folder for all emitted files. */,
     // "removeComments": true,                           /* Disable emitting comments. */
     // "importHelpers": true,                            /* Allow importing helper functions from tslib once per project, instead of including them per-file. */
     // "downlevelIteration": true,                       /* Emit more compliant, but verbose and less performant JavaScript for iteration. */