npm - @thinkingcat/auth-utils - Versions diffs - 1.0.22 → 1.0.23 - Mend

@thinkingcat/auth-utils 1.0.22 → 1.0.23

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist/index.js +27 -4
package/package.json +1 -1

package/dist/index.js CHANGED Viewed

@@ -419,14 +419,21 @@ async function createAuthResponse(accessToken, secret, options) {
     const { payload } = tokenResult;
     // 2. NextAuth JWT 생성
     const jwt = createNextAuthJWT(payload, serviceId);
+    // refreshToken 추가
+    if (refreshToken) {
+        jwt.refreshToken = refreshToken;
+    }
+    // accessTokenExpires 추가 (15분)
+    jwt.accessTokenExpires = Date.now() + (15 * 60 * 1000);
     debugLog('createAuthResponse', 'JWT created:', {
         hasId: !!jwt.id,
         hasEmail: !!jwt.email,
         hasRole: !!jwt.role,
+        hasRefreshToken: !!jwt.refreshToken,
     });
-    // 3. NextAuth 세션 토큰 생성 전략
-    // NextAuth의 JWT 콜백이 custom tokens를 읽어서 자동으로 NextAuth 세션을 생성
-    debugLog('createAuthResponse', 'Custom tokens will be set, NextAuth JWT callback will handle session creation');
+    // 3. NextAuth session cookie 생성
+    const nextAuthToken = await encodeNextAuthToken(jwt, secret);
+    debugLog('createAuthResponse', 'NextAuth session token encoded');
     // 5. HTML 생성
     const displayText = text || serviceId;
     const html = redirectPath
@@ -440,7 +447,23 @@ async function createAuthResponse(accessToken, secret, options) {
             'Content-Type': 'text/html',
         },
     });
-    // 4. 쿠키 설정
+    // 4. NextAuth session cookie 설정
+    const nextAuthCookieName = isProduction
+        ? '__Secure-next-auth.session-token'
+        : 'next-auth.session-token';
+    const cookieOptions = {
+        httpOnly: true,
+        secure: isProduction,
+        sameSite: isProduction ? 'none' : 'lax',
+        path: '/',
+        maxAge: 30 * 24 * 60 * 60, // 30일
+    };
+    if (cookieDomain) {
+        cookieOptions.domain = cookieDomain;
+    }
+    response.cookies.set(nextAuthCookieName, nextAuthToken, cookieOptions);
+    debugLog('createAuthResponse', 'NextAuth session cookie set:', nextAuthCookieName);
+    // 5. 커스텀 토큰 쿠키 설정
     if (refreshToken) {
         setCustomTokens(response, accessToken, refreshToken, {
             cookiePrefix,

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@thinkingcat/auth-utils",
-  "version": "1.0.22",
+  "version": "1.0.23",
   "description": "Authentication utilities for ThinkingCat SSO services with conditional logging",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",