@sqrzro/server 4.0.0-alpha.30 → 4.0.0-alpha.31

package/dist/chunk-U27WABYY.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../src/auth/users/utility/get-user-by-email.ts","../src/auth/mfas/create-mfa.ts","../src/auth/mfas/validate-mfa.ts","../src/auth/passwords/update-password-with-password.ts","../src/auth/resets/utility/delete-user-resets.ts","../src/auth/resets/utility/get-reset-by-id.ts","../src/auth/utility/hash-secret.ts","../src/auth/passwords/update-password-with-token.ts","../src/auth/resets/create-reset.ts","../src/auth/resets/validate-reset.ts","../src/auth/utility/create-secure-random-string.ts","../src/auth/sessions/create-session.ts","../src/auth/sessions/delete-session.ts","../src/auth/sessions/delete-user-sessions.ts","../src/auth/users/create-user.ts","../src/auth/users/delete-user.ts","../src/auth/users/validate-user.ts"],"names":["getUserByEmail","email","role","get_user_by_default","get_user_by_email_default","createMFA","name","user","key","Totp","db_default","authMFATable","and","eq","isNull","generate_id_default","resolve","reject","qrcode","err","data","create_mfa_default","validateMFA","code","ensure_session_user_default","mfa","validate_mfa_default","updatePasswordWithPassword","update_password_with_password_default","deleteUserResets","type","userID","authResetTable","delete_user_resets_default","EXPIRIES","AUTH_INVITE_EXPIRY_HOURS","AUTH_RESET_EXPIRY_HOURS","getResetByID","id","ensure_role_default","expiry","results","authUserTable","gte","get_reset_by_id_default","PW_SALT_ROUNDS","hashSecret","secret","bcrypt","hash_secret_default","updatePasswordWithToken","token","newPassword","reset","update_password_with_token_default","TOKEN_LENGTH","createReset","create_reset_default","validateReset","validate_reset_default","createSecureRandomString","alphabet","bytes","i","create_secure_random_string_default","DEFAULT_EXPIRES","HOUR_IN_MS","createSession","expiresIn","log_default","expires","storage_default","cookies","AUTH_COOKIE_NAME","create_session_default","deleteSession","cookie","get_session_cookie_default","delete_session_default","deleteUserSessions","delete_user_sessions_default","createUser","result","create_user_default","deleteUser","delete_user_default","validateUser","password","ValidationError_default","validate_user_default"],"mappings":"0bAGA,eAAeA,CAAAA,CAAeC,CAAAA,CAAeC,EAAyC,CAClF,OAAOC,CAAAA,CAAU,OAAA,CAASF,CAAAA,CAAOC,CAAI,CACzC,CAEA,IAAOE,EAAQJ,CAAAA,CCMf,eAAeK,CAAAA,CAAUC,CAAAA,CAAcL,CAAAA,CAAmC,CAKtE,GAAI,CAACA,EACD,MAAM,IAAI,MAAM,2CAA2C,CAAA,CAG/D,IAAMM,CAAAA,CAAO,MAAMH,CAAAA,CAAeH,CAAK,CAAA,CAEvC,GAAI,CAACM,CAAAA,CACD,MAAM,IAAI,KAAA,CAAM,6CAA6C,CAAA,CAGjE,IAAMC,CAAAA,CAAMC,IAAAA,CAAK,YAAY,CAAE,MAAA,CAAQH,EAAM,IAAA,CAAML,CAAM,CAAC,CAAA,CAI1D,OAAA,MAAMS,CAAAA,CACD,MAAA,CAAOC,CAAY,CAAA,CACnB,MAAMC,GAAAA,CAAIC,EAAAA,CAAGF,CAAAA,CAAa,MAAA,CAAQJ,CAAAA,CAAK,EAAE,EAAGO,MAAAA,CAAOH,CAAAA,CAAa,UAAU,CAAC,CAAC,CAAA,CAIjF,MAAMD,CAAAA,CAAG,MAAA,CAAOC,CAAY,CAAA,CAAE,MAAA,CAAO,CACjC,EAAA,CAAII,GAAAA,EAAW,CACf,IAAA,CAAM,SAAA,CACN,MAAA,CAAQP,EAAI,MAAA,CACZ,MAAA,CAAQD,EAAK,EACjB,CAAC,EAEM,IAAI,OAAA,CAAQ,CAACS,CAAAA,CAASC,CAAAA,GAAW,CACpCC,EAAO,SAAA,CACHV,CAAAA,CAAI,IACJ,CAAE,YAAA,CAAc,CAAE,OAAA,CAAS,CAAE,CAAA,CAAG,MAAA,CAAQ,CAAA,CAAG,KAAA,CAAO,CAAE,CAAA,CACpD,CAACW,CAAAA,CAAKC,CAAAA,GAAS,CACPD,CAAAA,EACAF,EAAOE,CAAG,CAAA,CAEdH,CAAAA,CAAQ,CAAE,GAAA,CAAKR,CAAAA,CAAI,OAAQ,GAAA,CAAKY,CAAK,CAAC,EAC1C,CACJ,EACJ,CAAC,CACL,CAEA,IAAOC,CAAAA,CAAQhB,ECjDf,eAAeiB,CAAAA,CAAYC,CAAAA,CAAgC,CAKvD,IAAMhB,EAAO,MAAMiB,CAAAA,EAAkB,CAE/B,CAACC,CAAG,CAAA,CAAI,MAAMf,CAAAA,CACf,MAAA,EAAO,CACP,IAAA,CAAKC,CAAY,CAAA,CACjB,MAAME,EAAAA,CAAGF,CAAAA,CAAa,MAAA,CAAQJ,CAAAA,CAAK,EAAE,CAAC,EACtC,KAAA,CAAM,CAAC,EAEZ,OAAKkB,CAAAA,CAIEhB,KAAK,QAAA,CAAS,CAAE,QAAA,CAAUc,CAAAA,CAAM,MAAA,CAAQE,CAAAA,CAAI,MAAO,CAAC,CAAA,CAHhD,KAIf,CAEA,IAAOC,EAAQJ,EC9Bf,SAASK,CAAAA,EAA4C,CACjD,MAAM,IAAI,MAAM,2BAA2B,CAC/C,CAEA,IAAOC,CAAAA,CAAQD,ECIf,eAAeE,CAAAA,CAAiBC,CAAAA,CAAiBC,EAA+B,CAC5E,MAAMrB,CAAAA,CACD,MAAA,CAAOsB,GAAc,CAAA,CACrB,MAAMpB,GAAAA,CAAIC,EAAAA,CAAGmB,IAAe,MAAA,CAAQD,CAAM,EAAGlB,EAAAA,CAAGmB,GAAAA,CAAe,IAAA,CAAMF,CAAI,CAAC,CAAC,EACpF,CAEA,IAAOG,EAAQJ,CAAAA,CCHf,IAAMK,EAAsC,CACxC,MAAA,CAAQC,IACR,GAAA,CAAKC,GAAAA,CACL,QAAA,CAAUA,GACd,CAAA,CAEA,eAAeC,EACXP,GAAAA,CACAQ,CAAAA,CACgD,CAChD,IAAMpC,CAAAA,CAAOqC,CAAAA,GAEPC,CAAAA,CAAS,IAAI,IAAA,CACnBA,CAAAA,CAAO,QAAA,CAASA,CAAAA,CAAO,UAAS,CAAIN,CAAAA,CAASJ,GAAI,CAAC,CAAA,CAElD,IAAMW,GAAAA,CAAU,MAAM/B,CAAAA,CACjB,MAAA,EAAO,CACP,IAAA,CAAKsB,GAAc,CAAA,CACnB,SAAA,CACGU,EACA9B,GAAAA,CACIC,EAAAA,CAAG6B,EAAc,EAAA,CAAIV,GAAAA,CAAe,MAAM,CAAA,CAC1CnB,EAAAA,CAAG6B,CAAAA,CAAc,KAAMxC,CAAI,CAAA,CAC3BY,OAAO4B,CAAAA,CAAc,SAAS,CAClC,CACJ,CAAA,CACC,KAAA,CACG9B,GAAAA,CACIC,EAAAA,CAAGmB,GAAAA,CAAe,GAAIM,CAAE,CAAA,CACxBzB,EAAAA,CAAGmB,GAAAA,CAAe,IAAA,CAAMF,GAAI,EAC5Ba,GAAAA,CAAIX,GAAAA,CAAe,SAAA,CAAWQ,CAAM,CACxC,CACJ,EACC,KAAA,CAAM,CAAC,EAEZ,OAAOC,GAAAA,CAAQ,CAAC,CAAA,CAAI,CAAE,GAAGA,GAAAA,CAAQ,CAAC,CAAA,CAAE,OAAQ,IAAA,CAAMA,GAAAA,CAAQ,CAAC,CAAA,CAAE,gBAAiB,EAAI,IACtF,CAEA,IAAOG,CAAAA,CAAQP,CAAAA,CC/Cf,IAAMQ,GAAiB,EAAA,CAEvB,eAAeC,GAAWC,CAAAA,CAAiC,CACvD,OAAOC,CAAAA,CAAO,IAAA,CAAKD,CAAAA,CAAQF,EAAc,CAC7C,CAEA,IAAOI,CAAAA,CAAQH,EAAAA,CCCf,eAAeI,GACXpB,GAAAA,CACAqB,CAAAA,CACAC,CAAAA,CACe,CACf,IAAMC,CAAAA,CAAQ,MAAMT,CAAAA,CAAad,GAAAA,CAAMqB,CAAK,CAAA,CAE5C,GAAI,CAACE,CAAAA,CACD,MAAM,IAAI,KAAA,CAAM,qBAAqB,CAAA,CAGzC,aAAM3C,CAAAA,CACD,MAAA,CAAOgC,CAAa,CAAA,CACpB,GAAA,CAAI,CACD,QAAA,CAAU,MAAMO,CAAAA,CAAWG,CAAW,CAC1C,CAAC,EACA,KAAA,CAAMvC,EAAAA,CAAG6B,EAAc,EAAA,CAAIW,CAAAA,CAAM,MAAM,CAAC,CAAA,CAE7C,MAAMpB,CAAAA,CAAiBH,GAAAA,CAAMuB,CAAAA,CAAM,MAAM,CAAA,CAElCA,CAAAA,CAAM,MACjB,CAEA,IAAOC,EAAAA,CAAQJ,GCvBf,IAAMK,EAAAA,CAAe,EAAA,CAErB,eAAeC,EAAAA,CAAY1B,CAAAA,CAAiB7B,EAAeC,CAAAA,CAAuC,CAC9F,IAAMK,CAAAA,CAAO,MAAMH,EAAeH,CAAAA,CAAOC,CAAI,CAAA,CAE7C,GAAI,CAACK,CAAAA,CACD,OAAO,IAAA,CAGX,MAAM0B,EAAiBH,CAAAA,CAAMvB,CAAAA,CAAK,EAAE,CAAA,CAEpC,IAAM+B,GAAAA,CAAKvB,GAAAA,CAAW,IAAA,CAAMwC,EAAY,EAExC,OAAA,MAAM7C,CAAAA,CAAG,OAAOsB,GAAc,CAAA,CAAE,OAAO,CACnC,SAAA,CAAW,IAAI,IAAA,CACf,EAAA,CAAAM,GAAAA,CACA,KAAAR,CAAAA,CACA,MAAA,CAAQvB,CAAAA,CAAK,EACjB,CAAC,CAAA,CAEM+B,GACX,CAEA,IAAOmB,EAAAA,CAAQD,GC5Bf,eAAeE,EAAAA,CAAc5B,EAAiBqB,CAAAA,CAAiC,CAC3E,OAAO,CAAA,CAAQ,MAAMP,EAAad,CAAAA,CAAMqB,CAAK,CACjD,CAEA,IAAOQ,EAAAA,CAAQD,GCRf,SAASE,IAAmC,CAE3C,IAAMC,CAAAA,CAAW,kCAAA,CAIXC,CAAAA,CAAQ,IAAI,WAAW,EAAE,CAAA,CAC/B,OAAO,eAAA,CAAgBA,CAAK,EAE5B,IAAIxB,CAAAA,CAAK,EAAA,CACT,IAAA,IAASyB,CAAAA,CAAI,CAAA,CAAGA,EAAID,CAAAA,CAAM,MAAA,CAAQC,CAAAA,EAAAA,CAEjCzB,CAAAA,EAAMuB,CAAAA,CAASC,CAAAA,CAAMC,CAAC,CAAA,EAAK,CAAC,CAAA,CAE7B,OAAOzB,CACR,CAEA,IAAO0B,CAAAA,CAAQJ,EAAAA,CCPf,IAAMK,EAAAA,CAAkB,EAAA,CAClBC,GAAa,IAAA,CAAU,GAAA,CAE7B,eAAeC,EAAAA,CAAcpC,CAAAA,CAAgBqC,CAAAA,CAAYH,GAAgC,CACrFI,GAAAA,CACI,eACA,eAAA,CACA,CAAA,0BAAA,EAA6BtC,CAAM,CAAA,oBAAA,EAAuBqC,CAAS,CAAA,MAAA,CACvE,CAAA,CAEA,IAAMlE,CAAAA,CAAOqC,GAAW,CAExB8B,GAAAA,CAAI,eAAgB,eAAA,CAAiB,CAAA,cAAA,EAAiBnE,CAAI,CAAA,qBAAA,EAAwB6B,CAAM,CAAA,CAAE,CAAA,CAE1F,IAAMO,CAAAA,CAAK0B,GAAyB,CAC9BjB,CAAAA,CAASiB,CAAAA,EAAyB,CAClCb,CAAAA,CAAQ,CAAA,EAAGb,CAAE,CAAA,CAAA,EAAIS,CAAM,CAAA,CAAA,CAEvBuB,CAAAA,CAAU,IAAI,IAAA,CAAK,KAAK,GAAA,EAAI,CAAIF,EAAYF,EAAU,CAAA,CAE5D,MAAMK,GAAAA,CAAc,OAAA,CAAQ,SAAA,CAAWjC,CAAAA,CAAI,CACvC,OAAA,CAAAgC,EACA,IAAA,CAAApE,CAAAA,CACA,OAAQ,MAAM+C,CAAAA,CAAWF,CAAM,CAAA,CAC/B,MAAA,CAAAhB,CACJ,CAAC,CAAA,CAEDsC,GAAAA,CACI,eACA,eAAA,CACA,CAAA,eAAA,EAAkB/B,CAAE,CAAA,qBAAA,EAAwBP,CAAM,UAAU7B,CAAI,CAAA,gCAAA,EAAmCoE,CAAAA,CAAQ,WAAA,EAAa,CAAA,CAC5H,GAEC,MAAME,OAAAA,EAAQ,EAAG,GAAA,CAAIC,CAAAA,CAAkBtB,CAAAA,CAAO,CAC3C,OAAA,CAAAmB,CAAAA,CACA,QAAA,CAAU,IAAA,CACV,IAAA,CAAM,GAAA,CACN,SAAU,KAAA,CACV,MAAA,CAAQ,IACZ,CAAC,CAAA,CAEDD,IACI,cAAA,CACA,eAAA,CACA,CAAA,YAAA,EAAeI,CAAgB,CAAA,WAAA,EAAc1C,CAAM,eAAeoB,CAAK,CAAA,mBAAA,EAAsBmB,EAAQ,WAAA,EAAa,EACtH,EACJ,CAEA,IAAOI,EAAAA,CAAQP,GClDf,eAAeQ,EAAAA,EAA+B,CAC1C,IAAMC,CAAAA,CAAS,MAAMC,GAAAA,EAAiB,CAEjCD,CAAAA,GAIL,MAAML,IAAc,UAAA,CAAW,SAAA,CAAWK,CAAAA,CAAO,EAAE,CAAA,CAAA,CAClD,MAAMJ,SAAQ,EAAG,MAAA,CAAOC,CAAgB,CAAA,EAC7C,CAEA,IAAOK,GAAQH,GCnBf,SAASI,IAAoC,CACzC,MAAM,IAAI,KAAA,CAAM,2BAA2B,CAC/C,CAEA,IAAOC,EAAAA,CAAQD,GCGf,eAAeE,EAAAA,CAAW7D,IAAoD,CAC1E,GAAM,CAAC8D,CAAM,CAAA,CAAI,MAAMxE,CAAAA,CAClB,MAAA,CAAOgC,CAAa,EACpB,MAAA,CAAO,CAAE,GAAGtB,GAAAA,CAAM,QAAA,CAAUA,IAAK,QAAA,CAAW,MAAM6B,CAAAA,CAAW7B,GAAAA,CAAK,QAAQ,CAAA,CAAI,IAAK,CAAC,CAAA,CACpF,SAAA,EAAU,CAEf,OAAO8D,CAAAA,EAAU,IACrB,CAEA,IAAOC,EAAAA,CAAQF,GChBf,SAASG,EAAAA,EAA4B,CACjC,MAAM,IAAI,MAAM,2BAA2B,CAC/C,CAEA,IAAOC,EAAAA,CAAQD,GCEf,eAAeE,EAAAA,CAAarF,CAAAA,CAAesF,EAAmC,CAC1E,IAAMhF,EAAO,MAAMH,CAAAA,CAAeH,CAAK,CAAA,CAEvC,GAAI,CAACM,GAAM,QAAA,EAAY,CAAE,MAAMyC,CAAAA,CAAO,OAAA,CAAQuC,EAAUhF,CAAAA,CAAK,QAAQ,CAAA,CACjE,MAAM,IAAIiF,GAAAA,CAAgB,CAAE,KAAA,CAAO,EAAA,CAAI,QAAA,CAAU,EAAG,CAAC,CAAA,CAGzD,OAAOjF,CAAAA,CAAK,EAChB,CAEA,IAAOkF,EAAAA,CAAQH","file":"chunk-U27WABYY.js","sourcesContent":["import getUserBy from './get-user-by';\nimport type { AuthUser } from './interfaces';\n\nasync function getUserByEmail(email: string, role?: number): Promise<AuthUser | null> {\n    return getUserBy('email', email, role);\n}\n\nexport default getUserByEmail;\n","import { and, eq, isNull } from 'drizzle-orm';\nimport qrcode from 'qrcode';\nimport { Totp } from 'time2fa';\n\nimport db from '../../utility/db';\nimport { generateID } from '../../utility';\n\nimport getUserByEmail from '../users/utility/get-user-by-email';\nimport { authMFATable } from '../utility/schema';\n\nimport checkMFAEnabled from './check-mfa-enabled';\nimport type { MFAObject } from './utility/interfaces';\n\nasync function createMFA(name: string, email: string): Promise<MFAObject> {\n    if (!checkMFAEnabled()) {\n        throw new Error('MFA is not enabled. Cannot generate MFA secret.');\n    }\n\n    if (!email) {\n        throw new Error('Email is required to generate MFA secret.');\n    }\n\n    const user = await getUserByEmail(email);\n\n    if (!user) {\n        throw new Error('User not found. Cannot generate MFA secret.');\n    }\n\n    const key = Totp.generateKey({ issuer: name, user: email });\n\n    // Delete all the unverified MFA entries for this user\n\n    await db\n        .delete(authMFATable)\n        .where(and(eq(authMFATable.userID, user.id), isNull(authMFATable.verifiedAt)));\n\n    // Add the new MFA entry\n\n    await db.insert(authMFATable).values({\n        id: generateID(),\n        name: 'Default',\n        secret: key.secret,\n        userID: user.id,\n    });\n\n    return new Promise((resolve, reject) => {\n        qrcode.toDataURL(\n            key.url,\n            { rendererOpts: { quality: 1 }, margin: 0, scale: 6 },\n            (err, data) => {\n                if (err) {\n                    reject(err);\n                }\n                resolve({ key: key.secret, url: data });\n            }\n        );\n    });\n}\n\nexport default createMFA;\n","import { eq } from 'drizzle-orm';\nimport { Totp } from 'time2fa';\n\nimport db from '../../utility/db';\nimport { authMFATable } from '../utility/schema';\n\nimport ensureSessionUser from '../users/ensure-session-user';\n\nimport checkMFAEnabled from './check-mfa-enabled';\n\nasync function validateMFA(code: string): Promise<boolean> {\n    if (!checkMFAEnabled()) {\n        return false;\n    }\n\n    const user = await ensureSessionUser();\n\n    const [mfa] = await db\n        .select()\n        .from(authMFATable)\n        .where(eq(authMFATable.userID, user.id))\n        .limit(1);\n\n    if (!mfa) {\n        return false;\n    }\n\n    return Totp.validate({ passcode: code, secret: mfa.secret });\n}\n\nexport default validateMFA;\n","function updatePasswordWithPassword(): Promise<void> {\n    throw new Error('Function not implemented.');\n}\n\nexport default updatePasswordWithPassword;\n","import { and, eq } from 'drizzle-orm';\n\nimport db from '../../../utility/db';\n\nimport { authResetTable } from '../../utility/schema';\n\nimport type { ResetType } from './interfaces';\n\nasync function deleteUserResets(type: ResetType, userID: string): Promise<void> {\n    await db\n        .delete(authResetTable)\n        .where(and(eq(authResetTable.userID, userID), eq(authResetTable.type, type)));\n}\n\nexport default deleteUserResets;\n","import { and, eq, gte, isNull } from 'drizzle-orm';\n\nimport db from '../../../utility/db';\n\nimport { AuthUser } from '../../users/utility/interfaces';\nimport { AUTH_INVITE_EXPIRY_HOURS, AUTH_RESET_EXPIRY_HOURS } from '../../utility/config';\nimport ensureRole from '../../utility/ensure-role';\nimport { authResetTable, authUserTable } from '../../utility/schema';\n\nimport type { AuthReset, ResetType } from './interfaces';\n\nconst EXPIRIES: Record<ResetType, number> = {\n    INVITE: AUTH_INVITE_EXPIRY_HOURS,\n    MFA: AUTH_RESET_EXPIRY_HOURS,\n    PASSWORD: AUTH_RESET_EXPIRY_HOURS,\n};\n\nasync function getResetByID(\n    type: ResetType,\n    id: string\n): Promise<(AuthReset & { user: AuthUser }) | null> {\n    const role = ensureRole();\n\n    const expiry = new Date();\n    expiry.setHours(expiry.getHours() - EXPIRIES[type]);\n\n    const results = await db\n        .select()\n        .from(authResetTable)\n        .innerJoin(\n            authUserTable,\n            and(\n                eq(authUserTable.id, authResetTable.userID),\n                eq(authUserTable.role, role),\n                isNull(authUserTable.deletedAt)\n            )\n        )\n        .where(\n            and(\n                eq(authResetTable.id, id),\n                eq(authResetTable.type, type),\n                gte(authResetTable.createdAt, expiry)\n            )\n        )\n        .limit(1);\n\n    return results[0] ? { ...results[0].resets, user: results[0].user_credentials } : null;\n}\n\nexport default getResetByID;\n","import bcrypt from 'bcryptjs';\n\nconst PW_SALT_ROUNDS = 12;\n\nasync function hashSecret(secret: string): Promise<string> {\n    return bcrypt.hash(secret, PW_SALT_ROUNDS);\n}\n\nexport default hashSecret;\n","import { eq } from 'drizzle-orm';\n\nimport db from '../../utility/db';\n\nimport deleteUserResets from '../resets/utility/delete-user-resets';\nimport getResetByID from '../resets/utility/get-reset-by-id';\nimport hashSecret from '../utility/hash-secret';\nimport { authUserTable, ResetType } from '../utility/schema';\n\nasync function updatePasswordWithToken(\n    type: ResetType,\n    token: string,\n    newPassword: string\n): Promise<string> {\n    const reset = await getResetByID(type, token);\n\n    if (!reset) {\n        throw new Error('RESET_TOKEN_INVALID');\n    }\n\n    await db\n        .update(authUserTable)\n        .set({\n            password: await hashSecret(newPassword),\n        })\n        .where(eq(authUserTable.id, reset.userID));\n\n    await deleteUserResets(type, reset.userID);\n\n    return reset.userID;\n}\n\nexport default updatePasswordWithToken;\n","import db from '../../utility/db';\nimport { generateID } from '../../utility';\n\nimport getUserByEmail from '../users/utility/get-user-by-email';\nimport { authResetTable } from '../utility/schema';\n\nimport deleteUserResets from './utility/delete-user-resets';\nimport type { ResetType } from './utility/interfaces';\n\nconst TOKEN_LENGTH = 48;\n\nasync function createReset(type: ResetType, email: string, role?: number): Promise<string | null> {\n    const user = await getUserByEmail(email, role);\n\n    if (!user) {\n        return null;\n    }\n\n    await deleteUserResets(type, user.id);\n\n    const id = generateID(null, TOKEN_LENGTH);\n\n    await db.insert(authResetTable).values({\n        createdAt: new Date(),\n        id,\n        type,\n        userID: user.id,\n    });\n\n    return id;\n}\n\nexport default createReset;\n","import type { ResetType } from '../utility/schema';\n\nimport getResetByID from './utility/get-reset-by-id';\n\nasync function validateReset(type: ResetType, token: string): Promise<boolean> {\n    return Boolean(await getResetByID(type, token));\n}\n\nexport default validateReset;\n","function createSecureRandomString(): string {\n\t// Human readable alphabet (a-z, 0-9 without l, o, 0, 1 to avoid confusion)\n\tconst alphabet = \"abcdefghijkmnpqrstuvwxyz23456789\";\n\n\t// Generate 24 bytes = 192 bits of entropy.\n\t// We're only going to use 5 bits per byte so the total entropy will be 192 * 5 / 8 = 120 bits\n\tconst bytes = new Uint8Array(24);\n\tcrypto.getRandomValues(bytes);\n\n\tlet id = \"\";\n\tfor (let i = 0; i < bytes.length; i++) {\n\t\t// >> 3 \"removes\" the right-most 3 bits of the byte\n\t\tid += alphabet[bytes[i] >> 3];\n\t}\n\treturn id;\n}\n\nexport default createSecureRandomString;","import { cookies } from 'next/headers';\n\nimport serverStorage from '../../storage';\nimport log from '../../utility/log';\n\nimport { AUTH_COOKIE_NAME } from '../utility/config';\nimport createSecureRandomString from '../utility/create-secure-random-string';\nimport ensureRole from '../utility/ensure-role';\nimport hashSecret from '../utility/hash-secret';\n\nconst DEFAULT_EXPIRES = 24;\nconst HOUR_IN_MS = 60 * 60 * 1000;\n\nasync function createSession(userID: string, expiresIn = DEFAULT_EXPIRES): Promise<void> {\n    log(\n        'auth:session',\n        'createSession',\n        `Creating session for user ${userID} with expiration of ${expiresIn} hours`\n    );\n\n    const role = ensureRole();\n\n    log('auth:session', 'createSession', `Assigned role ${role} to session for user ${userID}`);\n\n    const id = createSecureRandomString();\n    const secret = createSecureRandomString();\n    const token = `${id}.${secret}`;\n\n    const expires = new Date(Date.now() + expiresIn * HOUR_IN_MS);\n\n    await serverStorage.setItem('session', id, {\n        expires,\n        role,\n        secret: await hashSecret(secret),\n        userID,\n    });\n\n    log(\n        'auth:session',\n        'createSession',\n        `Set session ID ${id} and secret for user ${userID} (role ${role}) in storage with expiration at ${expires.toISOString()}`\n    );\n\n    (await cookies()).set(AUTH_COOKIE_NAME, token, {\n        expires,\n        httpOnly: true,\n        path: '/',\n        sameSite: 'lax',\n        secure: true,\n    });\n\n    log(\n        'auth:session',\n        'createSession',\n        `Set cookie '${AUTH_COOKIE_NAME}' for user ${userID} with token ${token} and expiration at ${expires.toISOString()}`\n    );\n}\n\nexport default createSession;\n","import { cookies } from 'next/headers';\n\nimport serverStorage from '../../storage';\n\nimport { AUTH_COOKIE_NAME } from '../utility/config';\n\nimport getSessionCookie from './utility/get-session-cookie';\n\nasync function deleteSession(): Promise<void> {\n    const cookie = await getSessionCookie();\n\n    if (!cookie) {\n        return;\n    }\n\n    await serverStorage.removeItem('session', cookie.id);\n    (await cookies()).delete(AUTH_COOKIE_NAME);\n}\n\nexport default deleteSession;\n","function deleteUserSessions(): Promise<void> {\n    throw new Error('Function not implemented.');\n}\n\nexport default deleteUserSessions;\n","import db from '../../utility/db';\n\nimport hashSecret from '../utility/hash-secret';\nimport { authUserTable } from '../utility/schema';\n\nimport type { AuthUser, AuthUserDataWithID } from './utility/interfaces';\n\nasync function createUser(data: AuthUserDataWithID): Promise<AuthUser | null> {\n    const [result] = await db\n        .insert(authUserTable)\n        .values({ ...data, password: data.password ? await hashSecret(data.password) : null })\n        .returning();\n\n    return result ?? null;\n}\n\nexport default createUser;\n","function deleteUser(): Promise<void> {\n    throw new Error('Function not implemented.');\n}\n\nexport default deleteUser;\n","import bcrypt from 'bcryptjs';\n\nimport ValidationError from '../../forms/ValidationError';\n\nimport getUserByEmail from './utility/get-user-by-email';\n\nasync function validateUser(email: string, password: string): Promise<string> {\n    const user = await getUserByEmail(email);\n\n    if (!user?.password || !(await bcrypt.compare(password, user.password))) {\n        throw new ValidationError({ email: '', password: '' });\n    }\n\n    return user.id;\n}\n\nexport default validateUser;\n"]}

package/dist/cli/index.d.ts

@@ -1 +0,0 @@
-#!/usr/bin/env node

package/dist/cli/index.js

@@ -1,3 +0,0 @@
-#!/usr/bin/env node
-import {program}from'commander';import {spawn}from'child_process';import {dirname,resolve}from'path';import {fileURLToPath}from'url';var i=dirname(fileURLToPath(import.meta.url)),b=resolve(i,"../../node_modules/.bin/tsx"),f=resolve(i,"./scripts");async function u(n){let a=spawn(b,[`${resolve(f,n)}.ts`],{stdio:"inherit"});return new Promise((s,m)=>{a.on("close",o=>{o===0?s():m(new Error(`Script ${n} exited with code ${o}`));});})}var t=u;program.command("db:generate").action(async()=>await t("db-generate"));program.command("db:reset").action(async()=>await t("db-reset"));program.command("db:seed").action(async()=>await t("db-seed"));program.parse();//# sourceMappingURL=index.js.map
-//# sourceMappingURL=index.js.map

package/dist/cli/index.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/cli/utility/run-script.ts","../../src/cli/index.ts"],"names":["__dirname","dirname","fileURLToPath","binPath","resolve","scriptPath","runScript","file","ls","spawn","reject","code","run_script_default","program"],"mappings":";qIAIA,IAAMA,CAAAA,CAAYC,OAAAA,CAAQC,aAAAA,CAAc,MAAA,CAAA,IAAA,CAAY,GAAG,CAAC,CAAA,CAElDC,CAAAA,CAAUC,OAAAA,CAAQJ,CAAAA,CAAW,6BAA6B,CAAA,CAC1DK,CAAAA,CAAaD,OAAAA,CAAQJ,CAAAA,CAAW,WAAW,CAAA,CAEjD,eAAeM,CAAAA,CAAUC,CAAAA,CAAc,CACnC,IAAMC,CAAAA,CAAKC,KAAAA,CAAMN,CAAAA,CAAS,CAAC,CAAA,EAAGC,OAAAA,CAAQC,CAAAA,CAAYE,CAAI,CAAC,CAAA,GAAA,CAAK,CAAA,CAAG,CAAE,KAAA,CAAO,SAAU,CAAC,CAAA,CAEnF,OAAO,IAAI,OAAA,CAAc,CAACH,CAAAA,CAASM,CAAAA,GAAW,CAC1CF,CAAAA,CAAG,EAAA,CAAG,OAAA,CAAUG,CAAAA,EAAS,CACjBA,CAAAA,GAAS,CAAA,CACTP,CAAAA,EAAQ,CAERM,CAAAA,CAAO,IAAI,KAAA,CAAM,CAAA,OAAA,EAAUH,CAAI,CAAA,kBAAA,EAAqBI,CAAI,CAAA,CAAE,CAAC,EAEnE,CAAC,EACL,CAAC,CACL,CAEA,IAAOC,CAAAA,CAAQN,CAAAA,CCjBfO,OAAAA,CAAQ,OAAA,CAAQ,aAAa,CAAA,CAAE,MAAA,CAAO,SAAY,MAAMD,CAAAA,CAAU,aAAa,CAAC,CAAA,CAChFC,OAAAA,CAAQ,OAAA,CAAQ,UAAU,CAAA,CAAE,MAAA,CAAO,SAAY,MAAMD,CAAAA,CAAU,UAAU,CAAC,CAAA,CAC1EC,OAAAA,CAAQ,OAAA,CAAQ,SAAS,CAAA,CAAE,MAAA,CAAO,SAAY,MAAMD,CAAAA,CAAU,SAAS,CAAC,CAAA,CAExEC,OAAAA,CAAQ,KAAA,EAAM","file":"index.js","sourcesContent":["import { spawn } from 'node:child_process';\nimport { dirname, resolve } from 'node:path';\nimport { fileURLToPath } from 'node:url';\n\nconst __dirname = dirname(fileURLToPath(import.meta.url));\n\nconst binPath = resolve(__dirname, '../../node_modules/.bin/tsx');\nconst scriptPath = resolve(__dirname, './scripts');\n\nasync function runScript(file: string) {\n    const ls = spawn(binPath, [`${resolve(scriptPath, file)}.ts`], { stdio: 'inherit' });\n\n    return new Promise<void>((resolve, reject) => {\n        ls.on('close', (code) => {\n            if (code === 0) {\n                resolve();\n            } else {\n                reject(new Error(`Script ${file} exited with code ${code}`));\n            }\n        });\n    });\n}\n\nexport default runScript;\n","#!/usr/bin/env node\n\nimport { program } from 'commander';\n\nimport runScript from './utility/run-script';\n\nprogram.command('db:generate').action(async () => await runScript('db-generate'));\nprogram.command('db:reset').action(async () => await runScript('db-reset'));\nprogram.command('db:seed').action(async () => await runScript('db-seed'));\n\nprogram.parse();\n"]}

package/dist/cli/scripts/db-generate.ts

@@ -1,31 +0,0 @@
-import { spawn } from 'node:child_process';
-import { dirname, resolve } from 'node:path';
-import { fileURLToPath } from 'node:url';
-
-const __dirname = dirname(fileURLToPath(import.meta.url));
-
-const binPath = resolve(__dirname, '../../../node_modules/.bin/drizzle-kit');
-const configPath = resolve(__dirname, '../static/drizzle.config.cjs');
-
-async function main() {
-    const ls = spawn(binPath, ['generate', `--config=${configPath}`], { stdio: 'inherit' });
-
-    return new Promise<void>((resolve, reject) => {
-        ls.on('close', (code) => {
-            if (code === 0) {
-                resolve();
-            } else {
-                reject();
-            }
-        });
-    });
-}
-
-main()
-    .then(() => {
-        process.exit(0);
-    })
-    .catch((err) => {
-        console.error(err);
-        process.exit(1);
-    });

package/dist/cli/scripts/db-reset.ts

@@ -1,56 +0,0 @@
-import { readdir, readFile } from 'node:fs/promises';
-import { extname, resolve } from 'node:path';
-
-import { Client } from 'pg';
-
-import dotenv from 'dotenv';
-dotenv.config({ path: resolve(process.cwd(), '.env'), quiet: true });
-
-const migrationPath = resolve(process.cwd(), './database/migrations');
-
-async function getMigrationQuery(): Promise<string> {
-    const files = (await readdir(migrationPath))
-        .filter((file) => extname(file) === '.sql')
-        .map((file) => resolve(migrationPath, file));
-
-    let query = [];
-
-    for (const file of files) {
-        query.push(await readFile(file, 'utf-8'));
-    }
-
-    return query.join('\n');
-}
-
-async function main() {
-    if (!process.env.DATABASE_URL) {
-        throw new Error('DATABASE_URL is not defined');
-    }
-
-    const environment = process.env.APP_ENV;
-
-    if (!environment || !['development', 'test'].includes(environment)) {
-        throw new Error('APP_ENV is not defined, or does not support migration.');
-    }
-
-    const client = new Client(process.env.DATABASE_URL);
-    await client.connect();
-
-    await client.query(
-        'SET client_min_messages TO WARNING; DROP SCHEMA IF EXISTS auth CASCADE; DROP SCHEMA IF EXISTS public CASCADE; CREATE SCHEMA public;'
-    );
-
-    const query = await getMigrationQuery();
-    await client.query(query);
-
-    await client.end();
-}
-
-main()
-    .then(() => {
-        process.exit(0);
-    })
-    .catch((err) => {
-        console.error(err);
-        process.exit(1);
-    });

package/dist/cli/scripts/db-seed.ts

@@ -1,32 +0,0 @@
-import { readdir } from 'node:fs/promises';
-import { resolve } from 'node:path';
-
-import dotenv from 'dotenv';
-dotenv.config({ path: resolve(process.cwd(), '.env'), quiet: true });
-
-const seedPath = resolve(process.cwd(), './database/seeds');
-
-async function runSeedFile(file: string) {
-    const seedModule = await import(file);
-
-    if (typeof seedModule.default === 'function') {
-        await seedModule.default();
-    }
-}
-
-async function main() {
-    const files = (await readdir(seedPath)).map((file) => resolve(seedPath, file));
-
-    for (const file of files) {
-        await runSeedFile(file);
-    }
-}
-
-main()
-    .then(() => {
-        process.exit(0);
-    })
-    .catch((err) => {
-        console.error(err);
-        process.exit(1);
-    });

package/dist/cli/static/drizzle.config.cjs

@@ -1,19 +0,0 @@
-require('dotenv/config');
-const { defineConfig } = require('drizzle-kit');
-
-if (!process.env.DATABASE_URL) {
-    throw new Error('DATABASE_URL is not defined. Database migration cannot be generated.');
-}
-
-module.exports = defineConfig({
-    dbCredentials: {
-        url: process.env.DATABASE_URL,
-    },
-    dialect: 'postgresql',
-    out: './database/migrations',
-    schema: [
-        require.resolve('@sqrzro/server/auth/schema'),
-        './src/schema/**/*.ts',
-        './src/**/schema.ts',
-    ],
-});

package/dist/interfaces-Gqu85VTW.d.ts

@@ -1,7 +0,0 @@
-interface AuthSession {
-    expires: Date;
-    secret: string;
-    userID: string;
-}
-
-export type { AuthSession as A };