npm - @tinyrack/tinyauth-server - Versions diffs - 0.0.16 → 0.1.0 - Mend

@tinyrack/tinyauth-server 0.0.16 → 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (89) hide show

package/dist/entrypoints/app.d.ts +8 -1
package/dist/entrypoints/app.d.ts.map +1 -1
package/dist/entrypoints/app.js +5 -0
package/dist/entrypoints/app.js.map +1 -1
package/dist/lib/config/client.d.ts.map +1 -1
package/dist/lib/config/client.js +5 -1
package/dist/lib/config/client.js.map +1 -1
package/dist/lib/config/identity-providers.d.ts.map +1 -1
package/dist/lib/config/identity-providers.js +10 -33
package/dist/lib/config/identity-providers.js.map +1 -1
package/dist/lib/config/url-policy.d.ts +4 -0
package/dist/lib/config/url-policy.d.ts.map +1 -0
package/dist/lib/config/url-policy.js +38 -0
package/dist/lib/config/url-policy.js.map +1 -0
package/dist/lib/pkce.d.ts.map +1 -1
package/dist/lib/pkce.js +3 -0
package/dist/lib/pkce.js.map +1 -1
package/dist/middleware/csrf.d.ts +2 -0
package/dist/middleware/csrf.d.ts.map +1 -0
package/dist/middleware/csrf.js +51 -0
package/dist/middleware/csrf.js.map +1 -0
package/dist/repositories/revoked-token.repository.d.ts +20 -0
package/dist/repositories/revoked-token.repository.d.ts.map +1 -1
package/dist/repositories/revoked-token.repository.js +44 -1
package/dist/repositories/revoked-token.repository.js.map +1 -1
package/dist/routes/api/oauth/_provider/authorize/get.d.ts.map +1 -1
package/dist/routes/api/oauth/_provider/authorize/get.js +13 -1
package/dist/routes/api/oauth/_provider/authorize/get.js.map +1 -1
package/dist/routes/api/oauth/_provider/callback/post.d.ts.map +1 -1
package/dist/routes/api/oauth/_provider/callback/post.js +30 -1
package/dist/routes/api/oauth/_provider/callback/post.js.map +1 -1
package/dist/routes/index.d.ts +8 -1
package/dist/routes/index.d.ts.map +1 -1
package/dist/routes/oauth/.well-known/openid-configuration/get.d.ts +4 -0
package/dist/routes/oauth/.well-known/openid-configuration/get.d.ts.map +1 -1
package/dist/routes/oauth/.well-known/openid-configuration/get.js +25 -2
package/dist/routes/oauth/.well-known/openid-configuration/get.js.map +1 -1
package/dist/routes/oauth/authorize/get.d.ts +2 -0
package/dist/routes/oauth/authorize/get.d.ts.map +1 -1
package/dist/routes/oauth/authorize/get.js +4 -0
package/dist/routes/oauth/authorize/get.js.map +1 -1
package/dist/routes/oauth/index.d.ts +8 -1
package/dist/routes/oauth/index.d.ts.map +1 -1
package/dist/routes/oauth/introspect/post.d.ts +1 -0
package/dist/routes/oauth/introspect/post.d.ts.map +1 -1
package/dist/routes/oauth/token/post.d.ts +1 -1
package/dist/routes/oauth/token/post.d.ts.map +1 -1
package/dist/routes/oauth/token/post.js +1 -0
package/dist/routes/oauth/token/post.js.map +1 -1
package/dist/routes/oauth/userinfo/get.d.ts.map +1 -1
package/dist/routes/oauth/userinfo/get.js +3 -0
package/dist/routes/oauth/userinfo/get.js.map +1 -1
package/dist/schemas/error.d.ts +75 -0
package/dist/schemas/error.d.ts.map +1 -1
package/dist/schemas/error.js +3 -0
package/dist/schemas/error.js.map +1 -1
package/dist/schemas/field.d.ts +1 -6
package/dist/schemas/field.d.ts.map +1 -1
package/dist/schemas/field.js +2 -3
package/dist/schemas/field.js.map +1 -1
package/dist/schemas/oauth.d.ts +1 -1
package/dist/schemas/oauth.js +1 -1
package/dist/schemas/oauth.js.map +1 -1
package/dist/schemas/response.d.ts +1 -1
package/dist/services/jwt.service.d.ts +5 -0
package/dist/services/jwt.service.d.ts.map +1 -1
package/dist/services/jwt.service.js +31 -16
package/dist/services/jwt.service.js.map +1 -1
package/dist/services/oauth-authorize.service.d.ts +5 -1
package/dist/services/oauth-authorize.service.d.ts.map +1 -1
package/dist/services/oauth-authorize.service.js +65 -16
package/dist/services/oauth-authorize.service.js.map +1 -1
package/dist/services/oauth-client.service.d.ts +1 -0
package/dist/services/oauth-client.service.d.ts.map +1 -1
package/dist/services/oauth-client.service.js +5 -0
package/dist/services/oauth-client.service.js.map +1 -1
package/dist/services/oauth-connect.service.d.ts +1 -0
package/dist/services/oauth-connect.service.d.ts.map +1 -1
package/dist/services/oauth-connect.service.js +61 -7
package/dist/services/oauth-connect.service.js.map +1 -1
package/dist/services/oauth-token.service.d.ts +8 -1
package/dist/services/oauth-token.service.d.ts.map +1 -1
package/dist/services/oauth-token.service.js +111 -30
package/dist/services/oauth-token.service.js.map +1 -1
package/package.json +1 -1
package/public/assets/{index-CLq6d6iO.js → index-DaJe6s9D.js} +12 -12
package/public/assets/{index-CLq6d6iO.js.map → index-DaJe6s9D.js.map} +1 -1
package/public/index.html +1 -1
package/readme.md +74 -25

package/public/index.html CHANGED Viewed

@@ -18,7 +18,7 @@
     <!-- Preload critical API data for faster initial render -->
     <link rel="preload" href="/api/config" as="fetch" crossorigin="anonymous" />
     <link rel="preload" href="/api/user/session" as="fetch" crossorigin="anonymous" />
-    <script type="module" crossorigin src="/assets/index-CLq6d6iO.js"></script>
+    <script type="module" crossorigin src="/assets/index-DaJe6s9D.js"></script>
     <link rel="stylesheet" crossorigin href="/assets/index-6odabbrQ.css">
   </head>
   <body>

package/readme.md CHANGED Viewed

@@ -1,41 +1,80 @@
-# tinyauth
+<div align="center">
-A lightweight, self-hosted OpenID Connect (OIDC) Provider.
+# TinyAuth
+**A lightweight, self-hosted OpenID Connect provider for modern applications.**
+[![CI](https://github.com/tinyrack-net/tinyauth/actions/workflows/ci.yml/badge.svg)](https://github.com/tinyrack-net/tinyauth/actions/workflows/ci.yml)
+[![npm server](https://img.shields.io/npm/v/@tinyrack/tinyauth-server?label=server)](https://www.npmjs.com/package/@tinyrack/tinyauth-server)
+[![npm standalone](https://img.shields.io/npm/v/@tinyrack/tinyauth-standalone?label=standalone)](https://www.npmjs.com/package/@tinyrack/tinyauth-standalone)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
+[![Node.js](https://img.shields.io/badge/node-%3E%3D24-brightgreen)](https://nodejs.org/)
+[Documentation](https://tinyauth.tinyrack.net/en/) · [Configuration](https://tinyauth.tinyrack.net/en/configuration/overview/) · [한국어](https://tinyauth.tinyrack.net/ko/)
+</div>
+---
+TinyAuth is a self-hosted OpenID Connect (OIDC) provider that gives your apps a standards-based login system without bringing in a full identity platform.
+It supports OAuth2/OIDC authorization code flows, PKCE, password login, passkeys, TOTP, social login, and a customizable multilingual frontend. Run it as a standalone server, ship it with Docker, or embed the server package in your own Node.js application.
 ## Features
-- **OIDC/OAuth2 Compliant** - Authorization Code Flow with PKCE support
-- **Multiple Auth Methods** - Password, Passkey/WebAuthn, Social Login (GitHub, Google, Apple, Generic OAuth)
-- **Two-Factor Authentication** - TOTP and Passkey as 2FA
-- **Multi-language** - English, Korean, Japanese
-- **Customizable UI** - Themes, branding, background images, terms of service
-- **Database Support** - PostgreSQL, SQLite
-- **Docker Ready** - Production-ready container with health checks
+- **OIDC/OAuth2 provider** with authorization code flow, PKCE, discovery, token, userinfo, introspection, and revocation endpoints
+- **Multiple sign-in methods** including password, passkeys/WebAuthn, GitHub, Google, Apple, and generic OAuth/OIDC providers
+- **Two-factor authentication** with TOTP and passkey-based second factors
+- **Config-driven deployment** through a single YAML file
+- **Customizable frontend** with themes, branding, background images, language selection, and terms flows
+- **Database support** for SQLite and PostgreSQL
+- **Standalone or embedded usage** through Docker, the standalone CLI, or `@tinyrack/tinyauth-server`
-## Quick Start
+## Installation
+### Docker
+```bash
+docker run --rm \
+  -p 8080:8080 \
+  -v ./config.yaml:/opt/config.yaml \
+  ghcr.io/tinyrack-net/tinyauth:latest
+```
+### Standalone CLI
 ```bash
-docker run -p 8080:8080 -v ./config.yaml:/opt/config.yaml ghcr.io/tinyrack-net/tinyauth
+npm install -g @tinyrack/tinyauth-standalone
 ```
-Visit `http://localhost:8080/.well-known/openid-configuration` to verify the server is running.
+```bash
+tinyauth serve --config-path ./config.yaml
+```
-## Configuration
+### Server package
-All configuration is done via `config.yaml`:
+Use the server package when you want to embed TinyAuth in your own Node.js runtime.
+```bash
+npm install @tinyrack/tinyauth-server
+```
+## Quick Start
+Create a minimal `config.yaml`:
 ```yaml
 app:
-  host: https://auth.example.com
+  host: http://localhost:8080
   port: 8080
 security:
-  session_secret: <your-session-secret>
-  hash_secret: <your-hash-secret>
+  session_secret: change-me-session-secret
+  hash_secret: change-me-hash-secret
 database:
   type: sqlite
-  path: data.db
+  path: ./data.db
 basic_authentication_methods:
   password:
@@ -44,20 +83,30 @@ basic_authentication_methods:
     enabled: true
 ```
-See [documentation](https://tinyauth.tinyrack.net) for full configuration options.
+Start TinyAuth:
+```bash
+docker run --rm \
+  -p 8080:8080 \
+  -v ./config.yaml:/opt/config.yaml \
+  ghcr.io/tinyrack-net/tinyauth:latest
+```
-## Development
+Verify the OIDC discovery endpoint:
 ```bash
-pnpm install
-pnpm dev
+curl http://localhost:8080/.well-known/openid-configuration
 ```
 ## Examples
-- `examples/clients/nextjs-ssr` - Next.js OIDC client
-- `examples/clients/react-spa` - React SPA PKCE client
-- `examples/servers/node-hono-sqlite` - Node.js library-mode deployment of `@tinyrack/tinyauth-server` with Hono, SQLite, and the bundled TinyAuth frontend
+- `examples/clients/nextjs-ssr` — Next.js OIDC client with server-side token handling
+- `examples/clients/react-spa` — React SPA using authorization code flow with PKCE
+- `examples/servers/node-hono-sqlite` — Hono + SQLite deployment using `@tinyrack/tinyauth-server` and the bundled frontend
+## Documentation
+For configuration guides, client integration examples, deployment notes, and the API reference, visit the **[TinyAuth documentation site](https://tinyauth.tinyrack.net/en/)**.
 ## License