@technomoron/api-server-base 1.1.13 → 2.0.0-beta.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (116) hide show
  1. package/README.txt +25 -2
  2. package/dist/cjs/api-server-base.cjs +448 -111
  3. package/dist/cjs/api-server-base.d.ts +91 -34
  4. package/dist/cjs/auth-api/auth-module.d.ts +105 -0
  5. package/dist/cjs/auth-api/auth-module.js +1180 -0
  6. package/dist/cjs/auth-api/compat-auth-storage.d.ts +57 -0
  7. package/dist/cjs/auth-api/compat-auth-storage.js +128 -0
  8. package/dist/cjs/auth-api/mem-auth-store.d.ts +68 -0
  9. package/dist/cjs/auth-api/mem-auth-store.js +141 -0
  10. package/dist/cjs/{auth-module.d.ts → auth-api/module.d.ts} +7 -7
  11. package/dist/cjs/{auth-module.cjs → auth-api/module.js} +1 -1
  12. package/dist/cjs/auth-api/sql-auth-store.d.ts +77 -0
  13. package/dist/cjs/auth-api/sql-auth-store.js +172 -0
  14. package/dist/cjs/auth-api/storage.d.ts +38 -0
  15. package/dist/cjs/{auth-storage.cjs → auth-api/storage.js} +17 -7
  16. package/dist/cjs/auth-api/types.d.ts +34 -0
  17. package/dist/cjs/auth-api/types.js +2 -0
  18. package/dist/cjs/index.cjs +41 -7
  19. package/dist/cjs/index.d.ts +29 -5
  20. package/dist/cjs/oauth/base.d.ts +10 -0
  21. package/dist/cjs/oauth/base.js +6 -0
  22. package/dist/cjs/oauth/memory.d.ts +16 -0
  23. package/dist/cjs/oauth/memory.js +99 -0
  24. package/dist/cjs/oauth/models.d.ts +45 -0
  25. package/dist/cjs/oauth/models.js +58 -0
  26. package/dist/cjs/oauth/sequelize.d.ts +68 -0
  27. package/dist/cjs/oauth/sequelize.js +210 -0
  28. package/dist/cjs/oauth/types.d.ts +50 -0
  29. package/dist/cjs/oauth/types.js +3 -0
  30. package/dist/cjs/passkey/base.d.ts +16 -0
  31. package/dist/cjs/passkey/base.js +6 -0
  32. package/dist/cjs/passkey/memory.d.ts +27 -0
  33. package/dist/cjs/passkey/memory.js +86 -0
  34. package/dist/cjs/passkey/models.d.ts +25 -0
  35. package/dist/cjs/passkey/models.js +115 -0
  36. package/dist/cjs/passkey/sequelize.d.ts +55 -0
  37. package/dist/cjs/passkey/sequelize.js +220 -0
  38. package/dist/cjs/passkey/service.d.ts +20 -0
  39. package/dist/cjs/passkey/service.js +356 -0
  40. package/dist/cjs/passkey/types.d.ts +78 -0
  41. package/dist/cjs/passkey/types.js +2 -0
  42. package/dist/cjs/token/base.d.ts +38 -0
  43. package/dist/cjs/token/base.js +114 -0
  44. package/dist/cjs/token/memory.d.ts +19 -0
  45. package/dist/cjs/token/memory.js +149 -0
  46. package/dist/cjs/token/sequelize.d.ts +58 -0
  47. package/dist/cjs/token/sequelize.js +404 -0
  48. package/dist/cjs/token/types.d.ts +27 -0
  49. package/dist/cjs/token/types.js +2 -0
  50. package/dist/cjs/user/base.d.ts +26 -0
  51. package/dist/cjs/user/base.js +45 -0
  52. package/dist/cjs/user/memory.d.ts +35 -0
  53. package/dist/cjs/user/memory.js +173 -0
  54. package/dist/cjs/user/sequelize.d.ts +41 -0
  55. package/dist/cjs/user/sequelize.js +182 -0
  56. package/dist/cjs/user/types.d.ts +11 -0
  57. package/dist/cjs/user/types.js +2 -0
  58. package/dist/esm/api-server-base.d.ts +91 -34
  59. package/dist/esm/api-server-base.js +447 -110
  60. package/dist/esm/auth-api/auth-module.d.ts +105 -0
  61. package/dist/esm/auth-api/auth-module.js +1178 -0
  62. package/dist/esm/auth-api/compat-auth-storage.d.ts +57 -0
  63. package/dist/esm/auth-api/compat-auth-storage.js +124 -0
  64. package/dist/esm/auth-api/mem-auth-store.d.ts +68 -0
  65. package/dist/esm/auth-api/mem-auth-store.js +137 -0
  66. package/dist/esm/{auth-module.d.ts → auth-api/module.d.ts} +7 -7
  67. package/dist/esm/{auth-module.js → auth-api/module.js} +1 -1
  68. package/dist/esm/auth-api/sql-auth-store.d.ts +77 -0
  69. package/dist/esm/auth-api/sql-auth-store.js +168 -0
  70. package/dist/esm/auth-api/storage.d.ts +38 -0
  71. package/dist/esm/{auth-storage.js → auth-api/storage.js} +15 -5
  72. package/dist/esm/auth-api/types.d.ts +34 -0
  73. package/dist/esm/auth-api/types.js +1 -0
  74. package/dist/esm/index.d.ts +29 -5
  75. package/dist/esm/index.js +19 -2
  76. package/dist/esm/oauth/base.d.ts +10 -0
  77. package/dist/esm/oauth/base.js +2 -0
  78. package/dist/esm/oauth/memory.d.ts +16 -0
  79. package/dist/esm/oauth/memory.js +92 -0
  80. package/dist/esm/oauth/models.d.ts +45 -0
  81. package/dist/esm/oauth/models.js +51 -0
  82. package/dist/esm/oauth/sequelize.d.ts +68 -0
  83. package/dist/esm/oauth/sequelize.js +199 -0
  84. package/dist/esm/oauth/types.d.ts +50 -0
  85. package/dist/esm/oauth/types.js +2 -0
  86. package/dist/esm/passkey/base.d.ts +16 -0
  87. package/dist/esm/passkey/base.js +2 -0
  88. package/dist/esm/passkey/memory.d.ts +27 -0
  89. package/dist/esm/passkey/memory.js +82 -0
  90. package/dist/esm/passkey/models.d.ts +25 -0
  91. package/dist/esm/passkey/models.js +108 -0
  92. package/dist/esm/passkey/sequelize.d.ts +55 -0
  93. package/dist/esm/passkey/sequelize.js +216 -0
  94. package/dist/esm/passkey/service.d.ts +20 -0
  95. package/dist/esm/passkey/service.js +319 -0
  96. package/dist/esm/passkey/types.d.ts +78 -0
  97. package/dist/esm/passkey/types.js +1 -0
  98. package/dist/esm/token/base.d.ts +38 -0
  99. package/dist/esm/token/base.js +107 -0
  100. package/dist/esm/token/memory.d.ts +19 -0
  101. package/dist/esm/token/memory.js +145 -0
  102. package/dist/esm/token/sequelize.d.ts +58 -0
  103. package/dist/esm/token/sequelize.js +400 -0
  104. package/dist/esm/token/types.d.ts +27 -0
  105. package/dist/esm/token/types.js +1 -0
  106. package/dist/esm/user/base.d.ts +26 -0
  107. package/dist/esm/user/base.js +38 -0
  108. package/dist/esm/user/memory.d.ts +35 -0
  109. package/dist/esm/user/memory.js +169 -0
  110. package/dist/esm/user/sequelize.d.ts +41 -0
  111. package/dist/esm/user/sequelize.js +176 -0
  112. package/dist/esm/user/types.d.ts +11 -0
  113. package/dist/esm/user/types.js +1 -0
  114. package/package.json +13 -3
  115. package/dist/cjs/auth-storage.d.ts +0 -133
  116. package/dist/esm/auth-storage.d.ts +0 -133
package/dist/esm/auth-api/auth-module.d.ts ADDED
@@ -0,0 +1,105 @@
1
+ import { type ApiRequest, type ApiRoute, type ApiServer } from '../api-server-base.js';
2
+ import { BaseAuthModule, type AuthProviderModule } from './module.js';
3
+ import type { AuthAdapter, AuthIdentifier } from './types.js';
4
+ import type { OAuthCallbackParams, OAuthCallbackResult, OAuthStartParams, OAuthStartResult } from '../oauth/types.js';
5
+ import type { TokenPair, Token } from '../token/types.js';
6
+ interface CanImpersonateContext<UserEntity> {
7
+ apiReq: ApiRequest;
8
+ realUser: UserEntity;
9
+ realUserId: AuthIdentifier;
10
+ targetUser: UserEntity;
11
+ effectiveUserId: AuthIdentifier;
12
+ }
13
+ interface AuthModuleOptions<UserEntity> {
14
+ namespace?: string;
15
+ defaultDomain?: string;
16
+ canImpersonate?: (context: CanImpersonateContext<UserEntity>) => Promise<boolean> | boolean;
17
+ }
18
+ type TokenMetadata = Partial<Token> & {
19
+ sessionCookie?: boolean;
20
+ };
21
+ interface TokenIssueOptions extends TokenMetadata {
22
+ expires?: Date;
23
+ sessionCookie?: boolean;
24
+ }
25
+ interface NormalizedTokenMetadata extends TokenMetadata {
26
+ domain: string;
27
+ fingerprint: string;
28
+ label: string;
29
+ browser: string;
30
+ device: string;
31
+ ip: string;
32
+ os: string;
33
+ }
34
+ type TokenClaims = TokenMetadata & {
35
+ uid: string;
36
+ exp?: number;
37
+ iat?: number;
38
+ };
39
+ type AuthCapableServer<PublicUser> = ApiServer & {
40
+ initiateOAuth?: (params: OAuthStartParams) => Promise<OAuthStartResult>;
41
+ completeOAuth?: (params: OAuthCallbackParams) => Promise<OAuthCallbackResult<PublicUser>>;
42
+ };
43
+ export default class AuthModule<UserEntity, PublicUser> extends BaseAuthModule<UserEntity> implements AuthProviderModule<UserEntity> {
44
+ static defaultNamespace: string;
45
+ server: AuthCapableServer<PublicUser>;
46
+ private readonly defaultDomain?;
47
+ private readonly canImpersonateHook?;
48
+ constructor(options?: AuthModuleOptions<UserEntity>);
49
+ protected get storage(): AuthAdapter<UserEntity, PublicUser>;
50
+ protected canImpersonate(apiReq: ApiRequest, realUser: UserEntity, targetUser: UserEntity): Promise<boolean>;
51
+ protected ensureImpersonationAllowed(apiReq: ApiRequest, realUser: UserEntity, targetUser: UserEntity): Promise<void>;
52
+ protected buildTokenPayload(user: UserEntity, metadata?: TokenMetadata): TokenClaims;
53
+ protected buildTokenMetadata(metadata?: TokenMetadata): NormalizedTokenMetadata;
54
+ protected enrichTokenMetadata(apiReq: ApiRequest, metadata?: TokenMetadata): TokenMetadata;
55
+ private sessionRefreshTtlSeconds;
56
+ private normalizeRefreshTtlSeconds;
57
+ private resolveSessionPreferences;
58
+ private mergeSessionPreferences;
59
+ private sessionPrefsFromRecord;
60
+ private validateCredentialId;
61
+ private normalizeCredentialId;
62
+ private toIsoDate;
63
+ private cookieOptions;
64
+ private setJwtCookies;
65
+ issueTokens(apiReq: ApiRequest, user: UserEntity, metadata?: TokenIssueOptions): Promise<TokenPair>;
66
+ private assertAuthReady;
67
+ private parseLoginBody;
68
+ private parseImpersonationRequest;
69
+ private resolveImpersonationIdentifier;
70
+ private buildImpersonationMetadata;
71
+ private getUserOrThrow;
72
+ private getRealUserIdentifier;
73
+ private resolveActorContext;
74
+ private extractRefreshToken;
75
+ private normalizeScope;
76
+ private postLogin;
77
+ private postRefresh;
78
+ private postLogout;
79
+ private postWhoAmI;
80
+ private postPasskeyChallenge;
81
+ private postPasskeyVerify;
82
+ private getPasskeys;
83
+ private deletePasskey;
84
+ private postImpersonation;
85
+ private deleteImpersonation;
86
+ private getUserFromPasskey;
87
+ private postOAuthStart;
88
+ private postOAuthCallback;
89
+ private postOAuthAuthorize;
90
+ private postOAuthToken;
91
+ private handleAuthorizationCodeGrant;
92
+ private handleRefreshTokenGrant;
93
+ private clearOAuthCookies;
94
+ private buildTokenResponse;
95
+ private resolveScope;
96
+ private resolveClientAuthentication;
97
+ private assertRedirectUriAllowed;
98
+ private resolveUserForOAuth;
99
+ private hasPasskeyService;
100
+ private hasOAuthStore;
101
+ private storageImplements;
102
+ private storageImplementsAll;
103
+ defineRoutes(): ApiRoute[];
104
+ }
105
+ export {};