@tinyrack/tinyauth-server 0.0.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (782) hide show
  1. package/LICENSE +661 -0
  2. package/dist/emails/components/email-layout.d.ts +8 -0
  3. package/dist/emails/components/email-layout.d.ts.map +1 -0
  4. package/dist/emails/components/email-layout.js +6 -0
  5. package/dist/emails/components/email-layout.js.map +1 -0
  6. package/dist/emails/i18n/en.json +26 -0
  7. package/dist/emails/i18n/index.d.ts +3 -0
  8. package/dist/emails/i18n/index.d.ts.map +1 -0
  9. package/dist/emails/i18n/index.js +12 -0
  10. package/dist/emails/i18n/index.js.map +1 -0
  11. package/dist/emails/i18n/ja.json +26 -0
  12. package/dist/emails/i18n/ko.json +26 -0
  13. package/dist/emails/render.d.ts +12 -0
  14. package/dist/emails/render.d.ts.map +1 -0
  15. package/dist/emails/render.js +22 -0
  16. package/dist/emails/render.js.map +1 -0
  17. package/dist/emails/templates/password-reset.d.ts +10 -0
  18. package/dist/emails/templates/password-reset.d.ts.map +1 -0
  19. package/dist/emails/templates/password-reset.js +10 -0
  20. package/dist/emails/templates/password-reset.js.map +1 -0
  21. package/dist/emails/templates/verification.d.ts +10 -0
  22. package/dist/emails/templates/verification.d.ts.map +1 -0
  23. package/dist/emails/templates/verification.js +10 -0
  24. package/dist/emails/templates/verification.js.map +1 -0
  25. package/dist/entities/base.entity.d.ts +23 -0
  26. package/dist/entities/base.entity.d.ts.map +1 -0
  27. package/dist/entities/base.entity.js +17 -0
  28. package/dist/entities/base.entity.js.map +1 -0
  29. package/dist/entities/email-verification.entity.d.ts +90 -0
  30. package/dist/entities/email-verification.entity.d.ts.map +1 -0
  31. package/dist/entities/email-verification.entity.js +42 -0
  32. package/dist/entities/email-verification.entity.js.map +1 -0
  33. package/dist/entities/jwt-key.entity.d.ts +256 -0
  34. package/dist/entities/jwt-key.entity.d.ts.map +1 -0
  35. package/dist/entities/jwt-key.entity.js +125 -0
  36. package/dist/entities/jwt-key.entity.js.map +1 -0
  37. package/dist/entities/oauth-client.entity.d.ts +1541 -0
  38. package/dist/entities/oauth-client.entity.d.ts.map +1 -0
  39. package/dist/entities/oauth-client.entity.js +68 -0
  40. package/dist/entities/oauth-client.entity.js.map +1 -0
  41. package/dist/entities/oauth-code.entity.d.ts +1562 -0
  42. package/dist/entities/oauth-code.entity.d.ts.map +1 -0
  43. package/dist/entities/oauth-code.entity.js +79 -0
  44. package/dist/entities/oauth-code.entity.js.map +1 -0
  45. package/dist/entities/password-reset.entity.d.ts +90 -0
  46. package/dist/entities/password-reset.entity.d.ts.map +1 -0
  47. package/dist/entities/password-reset.entity.js +39 -0
  48. package/dist/entities/password-reset.entity.js.map +1 -0
  49. package/dist/entities/pending-oauth-registration.entity.d.ts +116 -0
  50. package/dist/entities/pending-oauth-registration.entity.d.ts.map +1 -0
  51. package/dist/entities/pending-oauth-registration.entity.js +67 -0
  52. package/dist/entities/pending-oauth-registration.entity.js.map +1 -0
  53. package/dist/entities/revoked-token.entity.d.ts +1559 -0
  54. package/dist/entities/revoked-token.entity.d.ts.map +1 -0
  55. package/dist/entities/revoked-token.entity.js +68 -0
  56. package/dist/entities/revoked-token.entity.js.map +1 -0
  57. package/dist/entities/terms-content.entity.d.ts +804 -0
  58. package/dist/entities/terms-content.entity.d.ts.map +1 -0
  59. package/dist/entities/terms-content.entity.js +46 -0
  60. package/dist/entities/terms-content.entity.js.map +1 -0
  61. package/dist/entities/terms.entity.d.ts +797 -0
  62. package/dist/entities/terms.entity.d.ts.map +1 -0
  63. package/dist/entities/terms.entity.js +42 -0
  64. package/dist/entities/terms.entity.js.map +1 -0
  65. package/dist/entities/user-consent.entity.d.ts +1555 -0
  66. package/dist/entities/user-consent.entity.d.ts.map +1 -0
  67. package/dist/entities/user-consent.entity.js +66 -0
  68. package/dist/entities/user-consent.entity.js.map +1 -0
  69. package/dist/entities/user-oauth.entity.d.ts +75 -0
  70. package/dist/entities/user-oauth.entity.d.ts.map +1 -0
  71. package/dist/entities/user-oauth.entity.js +45 -0
  72. package/dist/entities/user-oauth.entity.js.map +1 -0
  73. package/dist/entities/user-passkey.entity.d.ts +145 -0
  74. package/dist/entities/user-passkey.entity.d.ts.map +1 -0
  75. package/dist/entities/user-passkey.entity.js +64 -0
  76. package/dist/entities/user-passkey.entity.js.map +1 -0
  77. package/dist/entities/user-terms-consent.entity.d.ts +804 -0
  78. package/dist/entities/user-terms-consent.entity.d.ts.map +1 -0
  79. package/dist/entities/user-terms-consent.entity.js +62 -0
  80. package/dist/entities/user-terms-consent.entity.js.map +1 -0
  81. package/dist/entities/user-totp-recovery-code.entity.d.ts +527 -0
  82. package/dist/entities/user-totp-recovery-code.entity.d.ts.map +1 -0
  83. package/dist/entities/user-totp-recovery-code.entity.js +34 -0
  84. package/dist/entities/user-totp-recovery-code.entity.js.map +1 -0
  85. package/dist/entities/user-totp.entity.d.ts +527 -0
  86. package/dist/entities/user-totp.entity.d.ts.map +1 -0
  87. package/dist/entities/user-totp.entity.js +38 -0
  88. package/dist/entities/user-totp.entity.js.map +1 -0
  89. package/dist/entities/user.entity.d.ts +533 -0
  90. package/dist/entities/user.entity.d.ts.map +1 -0
  91. package/dist/entities/user.entity.js +70 -0
  92. package/dist/entities/user.entity.js.map +1 -0
  93. package/dist/entrypoints/app.d.ts +1300 -0
  94. package/dist/entrypoints/app.d.ts.map +1 -0
  95. package/dist/entrypoints/app.js +64 -0
  96. package/dist/entrypoints/app.js.map +1 -0
  97. package/dist/entrypoints/config/index.d.ts +2 -0
  98. package/dist/entrypoints/config/index.d.ts.map +1 -0
  99. package/dist/entrypoints/config/index.js +2 -0
  100. package/dist/entrypoints/config/index.js.map +1 -0
  101. package/dist/entrypoints/database/d1/cli.d.ts +3 -0
  102. package/dist/entrypoints/database/d1/cli.d.ts.map +1 -0
  103. package/dist/entrypoints/database/d1/cli.js +12 -0
  104. package/dist/entrypoints/database/d1/cli.js.map +1 -0
  105. package/dist/entrypoints/database/d1/compiled-functions.d.ts +666 -0
  106. package/dist/entrypoints/database/d1/compiled-functions.d.ts.map +1 -0
  107. package/dist/entrypoints/database/d1/compiled-functions.js +8365 -0
  108. package/dist/entrypoints/database/d1/compiled-functions.js.map +1 -0
  109. package/dist/entrypoints/database/d1/d1.d.ts +5 -0
  110. package/dist/entrypoints/database/d1/d1.d.ts.map +1 -0
  111. package/dist/entrypoints/database/d1/d1.js +39 -0
  112. package/dist/entrypoints/database/d1/d1.js.map +1 -0
  113. package/dist/entrypoints/database/postgres/cli.d.ts +3 -0
  114. package/dist/entrypoints/database/postgres/cli.d.ts.map +1 -0
  115. package/dist/entrypoints/database/postgres/cli.js +9 -0
  116. package/dist/entrypoints/database/postgres/cli.js.map +1 -0
  117. package/dist/entrypoints/database/postgres/compiled-functions.d.ts +666 -0
  118. package/dist/entrypoints/database/postgres/compiled-functions.d.ts.map +1 -0
  119. package/dist/entrypoints/database/postgres/compiled-functions.js +8365 -0
  120. package/dist/entrypoints/database/postgres/compiled-functions.js.map +1 -0
  121. package/dist/entrypoints/database/postgres/postgres.d.ts +9 -0
  122. package/dist/entrypoints/database/postgres/postgres.d.ts.map +1 -0
  123. package/dist/entrypoints/database/postgres/postgres.js +34 -0
  124. package/dist/entrypoints/database/postgres/postgres.js.map +1 -0
  125. package/dist/entrypoints/database/sqlite/cli.d.ts +3 -0
  126. package/dist/entrypoints/database/sqlite/cli.d.ts.map +1 -0
  127. package/dist/entrypoints/database/sqlite/cli.js +6 -0
  128. package/dist/entrypoints/database/sqlite/cli.js.map +1 -0
  129. package/dist/entrypoints/database/sqlite/compiled-functions.d.ts +666 -0
  130. package/dist/entrypoints/database/sqlite/compiled-functions.d.ts.map +1 -0
  131. package/dist/entrypoints/database/sqlite/compiled-functions.js +8365 -0
  132. package/dist/entrypoints/database/sqlite/compiled-functions.js.map +1 -0
  133. package/dist/entrypoints/database/sqlite/sqlite.d.ts +6 -0
  134. package/dist/entrypoints/database/sqlite/sqlite.d.ts.map +1 -0
  135. package/dist/entrypoints/database/sqlite/sqlite.js +32 -0
  136. package/dist/entrypoints/database/sqlite/sqlite.js.map +1 -0
  137. package/dist/entrypoints/frontend/cloudflare.d.ts +2 -0
  138. package/dist/entrypoints/frontend/cloudflare.d.ts.map +1 -0
  139. package/dist/entrypoints/frontend/cloudflare.js +2 -0
  140. package/dist/entrypoints/frontend/cloudflare.js.map +1 -0
  141. package/dist/entrypoints/frontend/index.d.ts +6 -0
  142. package/dist/entrypoints/frontend/index.d.ts.map +1 -0
  143. package/dist/entrypoints/frontend/index.js +3 -0
  144. package/dist/entrypoints/frontend/index.js.map +1 -0
  145. package/dist/entrypoints/frontend/proxy.d.ts +2 -0
  146. package/dist/entrypoints/frontend/proxy.d.ts.map +1 -0
  147. package/dist/entrypoints/frontend/proxy.js +2 -0
  148. package/dist/entrypoints/frontend/proxy.js.map +1 -0
  149. package/dist/entrypoints/frontend/static.d.ts +2 -0
  150. package/dist/entrypoints/frontend/static.d.ts.map +1 -0
  151. package/dist/entrypoints/frontend/static.js +2 -0
  152. package/dist/entrypoints/frontend/static.js.map +1 -0
  153. package/dist/entrypoints/identity-providers/apple.d.ts +14 -0
  154. package/dist/entrypoints/identity-providers/apple.d.ts.map +1 -0
  155. package/dist/entrypoints/identity-providers/apple.js +23 -0
  156. package/dist/entrypoints/identity-providers/apple.js.map +1 -0
  157. package/dist/entrypoints/identity-providers/generic-oauth.d.ts +25 -0
  158. package/dist/entrypoints/identity-providers/generic-oauth.d.ts.map +1 -0
  159. package/dist/entrypoints/identity-providers/generic-oauth.js +20 -0
  160. package/dist/entrypoints/identity-providers/generic-oauth.js.map +1 -0
  161. package/dist/entrypoints/identity-providers/github.d.ts +13 -0
  162. package/dist/entrypoints/identity-providers/github.d.ts.map +1 -0
  163. package/dist/entrypoints/identity-providers/github.js +24 -0
  164. package/dist/entrypoints/identity-providers/github.js.map +1 -0
  165. package/dist/entrypoints/identity-providers/google.d.ts +13 -0
  166. package/dist/entrypoints/identity-providers/google.d.ts.map +1 -0
  167. package/dist/entrypoints/identity-providers/google.js +24 -0
  168. package/dist/entrypoints/identity-providers/google.js.map +1 -0
  169. package/dist/entrypoints/index.d.ts +3 -0
  170. package/dist/entrypoints/index.d.ts.map +1 -0
  171. package/dist/entrypoints/index.js +3 -0
  172. package/dist/entrypoints/index.js.map +1 -0
  173. package/dist/entrypoints/mail/nodemailer.d.ts +11 -0
  174. package/dist/entrypoints/mail/nodemailer.d.ts.map +1 -0
  175. package/dist/entrypoints/mail/nodemailer.js +30 -0
  176. package/dist/entrypoints/mail/nodemailer.js.map +1 -0
  177. package/dist/entrypoints/scheduler/croner.d.ts +6 -0
  178. package/dist/entrypoints/scheduler/croner.d.ts.map +1 -0
  179. package/dist/entrypoints/scheduler/croner.js +22 -0
  180. package/dist/entrypoints/scheduler/croner.js.map +1 -0
  181. package/dist/entrypoints/services.d.ts +3 -0
  182. package/dist/entrypoints/services.d.ts.map +1 -0
  183. package/dist/entrypoints/services.js +2 -0
  184. package/dist/entrypoints/services.js.map +1 -0
  185. package/dist/lib/app-env.d.ts +17 -0
  186. package/dist/lib/app-env.d.ts.map +1 -0
  187. package/dist/lib/app-env.js +2 -0
  188. package/dist/lib/app-env.js.map +1 -0
  189. package/dist/lib/base64url.d.ts +33 -0
  190. package/dist/lib/base64url.d.ts.map +1 -0
  191. package/dist/lib/base64url.js +93 -0
  192. package/dist/lib/base64url.js.map +1 -0
  193. package/dist/lib/config/account-deletion.d.ts +11 -0
  194. package/dist/lib/config/account-deletion.d.ts.map +1 -0
  195. package/dist/lib/config/account-deletion.js +16 -0
  196. package/dist/lib/config/account-deletion.js.map +1 -0
  197. package/dist/lib/config/auth.d.ts +109 -0
  198. package/dist/lib/config/auth.d.ts.map +1 -0
  199. package/dist/lib/config/auth.js +155 -0
  200. package/dist/lib/config/auth.js.map +1 -0
  201. package/dist/lib/config/branding.d.ts +134 -0
  202. package/dist/lib/config/branding.d.ts.map +1 -0
  203. package/dist/lib/config/branding.js +83 -0
  204. package/dist/lib/config/branding.js.map +1 -0
  205. package/dist/lib/config/cleanup.d.ts +59 -0
  206. package/dist/lib/config/cleanup.d.ts.map +1 -0
  207. package/dist/lib/config/cleanup.js +119 -0
  208. package/dist/lib/config/cleanup.js.map +1 -0
  209. package/dist/lib/config/client.d.ts +30 -0
  210. package/dist/lib/config/client.d.ts.map +1 -0
  211. package/dist/lib/config/client.js +43 -0
  212. package/dist/lib/config/client.js.map +1 -0
  213. package/dist/lib/config/database.d.ts +8 -0
  214. package/dist/lib/config/database.d.ts.map +1 -0
  215. package/dist/lib/config/database.js +8 -0
  216. package/dist/lib/config/database.js.map +1 -0
  217. package/dist/lib/config/email.d.ts +17 -0
  218. package/dist/lib/config/email.d.ts.map +1 -0
  219. package/dist/lib/config/email.js +7 -0
  220. package/dist/lib/config/email.js.map +1 -0
  221. package/dist/lib/config/frontend.d.ts +12 -0
  222. package/dist/lib/config/frontend.d.ts.map +1 -0
  223. package/dist/lib/config/frontend.js +7 -0
  224. package/dist/lib/config/frontend.js.map +1 -0
  225. package/dist/lib/config/i18n.d.ts +31 -0
  226. package/dist/lib/config/i18n.d.ts.map +1 -0
  227. package/dist/lib/config/i18n.js +23 -0
  228. package/dist/lib/config/i18n.js.map +1 -0
  229. package/dist/lib/config/identity-providers.d.ts +66 -0
  230. package/dist/lib/config/identity-providers.d.ts.map +1 -0
  231. package/dist/lib/config/identity-providers.js +71 -0
  232. package/dist/lib/config/identity-providers.js.map +1 -0
  233. package/dist/lib/config/index.d.ts +41 -0
  234. package/dist/lib/config/index.d.ts.map +1 -0
  235. package/dist/lib/config/index.js +21 -0
  236. package/dist/lib/config/index.js.map +1 -0
  237. package/dist/lib/config/logging.d.ts +52 -0
  238. package/dist/lib/config/logging.d.ts.map +1 -0
  239. package/dist/lib/config/logging.js +41 -0
  240. package/dist/lib/config/logging.js.map +1 -0
  241. package/dist/lib/config/openapi.d.ts +15 -0
  242. package/dist/lib/config/openapi.d.ts.map +1 -0
  243. package/dist/lib/config/openapi.js +28 -0
  244. package/dist/lib/config/openapi.js.map +1 -0
  245. package/dist/lib/config/registration.d.ts +15 -0
  246. package/dist/lib/config/registration.d.ts.map +1 -0
  247. package/dist/lib/config/registration.js +24 -0
  248. package/dist/lib/config/registration.js.map +1 -0
  249. package/dist/lib/config/resolved.d.ts +274 -0
  250. package/dist/lib/config/resolved.d.ts.map +1 -0
  251. package/dist/lib/config/resolved.js +45 -0
  252. package/dist/lib/config/resolved.js.map +1 -0
  253. package/dist/lib/config/scheduler.d.ts +13 -0
  254. package/dist/lib/config/scheduler.d.ts.map +1 -0
  255. package/dist/lib/config/scheduler.js +14 -0
  256. package/dist/lib/config/scheduler.js.map +1 -0
  257. package/dist/lib/config/security.d.ts +11 -0
  258. package/dist/lib/config/security.d.ts.map +1 -0
  259. package/dist/lib/config/security.js +42 -0
  260. package/dist/lib/config/security.js.map +1 -0
  261. package/dist/lib/config/server.d.ts +13 -0
  262. package/dist/lib/config/server.d.ts.map +1 -0
  263. package/dist/lib/config/server.js +45 -0
  264. package/dist/lib/config/server.js.map +1 -0
  265. package/dist/lib/config/terms.d.ts +47 -0
  266. package/dist/lib/config/terms.d.ts.map +1 -0
  267. package/dist/lib/config/terms.js +71 -0
  268. package/dist/lib/config/terms.js.map +1 -0
  269. package/dist/lib/config/tokens.d.ts +32 -0
  270. package/dist/lib/config/tokens.d.ts.map +1 -0
  271. package/dist/lib/config/tokens.js +47 -0
  272. package/dist/lib/config/tokens.js.map +1 -0
  273. package/dist/lib/config/user.d.ts +22 -0
  274. package/dist/lib/config/user.d.ts.map +1 -0
  275. package/dist/lib/config/user.js +18 -0
  276. package/dist/lib/config/user.js.map +1 -0
  277. package/dist/lib/crypto.d.ts +106 -0
  278. package/dist/lib/crypto.d.ts.map +1 -0
  279. package/dist/lib/crypto.js +253 -0
  280. package/dist/lib/crypto.js.map +1 -0
  281. package/dist/lib/database/compiled-functions.d.ts +16 -0
  282. package/dist/lib/database/compiled-functions.d.ts.map +1 -0
  283. package/dist/lib/database/compiled-functions.js +66 -0
  284. package/dist/lib/database/compiled-functions.js.map +1 -0
  285. package/dist/lib/database/entities.d.ts +10 -0
  286. package/dist/lib/database/entities.d.ts.map +1 -0
  287. package/dist/lib/database/entities.js +43 -0
  288. package/dist/lib/database/entities.js.map +1 -0
  289. package/dist/lib/duration.d.ts +44 -0
  290. package/dist/lib/duration.d.ts.map +1 -0
  291. package/dist/lib/duration.js +103 -0
  292. package/dist/lib/duration.js.map +1 -0
  293. package/dist/lib/email-pattern.d.ts +16 -0
  294. package/dist/lib/email-pattern.d.ts.map +1 -0
  295. package/dist/lib/email-pattern.js +41 -0
  296. package/dist/lib/email-pattern.js.map +1 -0
  297. package/dist/lib/frontend/cloudflare.d.ts +12 -0
  298. package/dist/lib/frontend/cloudflare.d.ts.map +1 -0
  299. package/dist/lib/frontend/cloudflare.js +34 -0
  300. package/dist/lib/frontend/cloudflare.js.map +1 -0
  301. package/dist/lib/frontend/proxy.d.ts +24 -0
  302. package/dist/lib/frontend/proxy.d.ts.map +1 -0
  303. package/dist/lib/frontend/proxy.js +38 -0
  304. package/dist/lib/frontend/proxy.js.map +1 -0
  305. package/dist/lib/frontend/static.d.ts +21 -0
  306. package/dist/lib/frontend/static.d.ts.map +1 -0
  307. package/dist/lib/frontend/static.js +108 -0
  308. package/dist/lib/frontend/static.js.map +1 -0
  309. package/dist/lib/interpolate-html.d.ts +34 -0
  310. package/dist/lib/interpolate-html.d.ts.map +1 -0
  311. package/dist/lib/interpolate-html.js +63 -0
  312. package/dist/lib/interpolate-html.js.map +1 -0
  313. package/dist/lib/ip-utils.d.ts +61 -0
  314. package/dist/lib/ip-utils.d.ts.map +1 -0
  315. package/dist/lib/ip-utils.js +213 -0
  316. package/dist/lib/ip-utils.js.map +1 -0
  317. package/dist/lib/locale.d.ts +57 -0
  318. package/dist/lib/locale.d.ts.map +1 -0
  319. package/dist/lib/locale.js +25 -0
  320. package/dist/lib/locale.js.map +1 -0
  321. package/dist/lib/logger.d.ts +14 -0
  322. package/dist/lib/logger.d.ts.map +1 -0
  323. package/dist/lib/logger.js +41 -0
  324. package/dist/lib/logger.js.map +1 -0
  325. package/dist/lib/openapi.d.ts +35 -0
  326. package/dist/lib/openapi.d.ts.map +1 -0
  327. package/dist/lib/openapi.js +33 -0
  328. package/dist/lib/openapi.js.map +1 -0
  329. package/dist/lib/password-policy.d.ts +39 -0
  330. package/dist/lib/password-policy.d.ts.map +1 -0
  331. package/dist/lib/password-policy.js +51 -0
  332. package/dist/lib/password-policy.js.map +1 -0
  333. package/dist/lib/pkce.d.ts +26 -0
  334. package/dist/lib/pkce.d.ts.map +1 -0
  335. package/dist/lib/pkce.js +52 -0
  336. package/dist/lib/pkce.js.map +1 -0
  337. package/dist/lib/scopes.d.ts +10 -0
  338. package/dist/lib/scopes.d.ts.map +1 -0
  339. package/dist/lib/scopes.js +35 -0
  340. package/dist/lib/scopes.js.map +1 -0
  341. package/dist/lib/swagger-tags.d.ts +15 -0
  342. package/dist/lib/swagger-tags.d.ts.map +1 -0
  343. package/dist/lib/swagger-tags.js +15 -0
  344. package/dist/lib/swagger-tags.js.map +1 -0
  345. package/dist/middleware/auth.d.ts +64 -0
  346. package/dist/middleware/auth.d.ts.map +1 -0
  347. package/dist/middleware/auth.js +123 -0
  348. package/dist/middleware/auth.js.map +1 -0
  349. package/dist/middleware/logger.d.ts +18 -0
  350. package/dist/middleware/logger.d.ts.map +1 -0
  351. package/dist/middleware/logger.js +38 -0
  352. package/dist/middleware/logger.js.map +1 -0
  353. package/dist/middleware/mikro-orm.d.ts +3 -0
  354. package/dist/middleware/mikro-orm.d.ts.map +1 -0
  355. package/dist/middleware/mikro-orm.js +11 -0
  356. package/dist/middleware/mikro-orm.js.map +1 -0
  357. package/dist/middleware/services.d.ts +8 -0
  358. package/dist/middleware/services.d.ts.map +1 -0
  359. package/dist/middleware/services.js +8 -0
  360. package/dist/middleware/services.js.map +1 -0
  361. package/dist/middleware/session.d.ts +63 -0
  362. package/dist/middleware/session.d.ts.map +1 -0
  363. package/dist/middleware/session.js +89 -0
  364. package/dist/middleware/session.js.map +1 -0
  365. package/dist/middleware/trusted-proxy-guard.d.ts +7 -0
  366. package/dist/middleware/trusted-proxy-guard.d.ts.map +1 -0
  367. package/dist/middleware/trusted-proxy-guard.js +34 -0
  368. package/dist/middleware/trusted-proxy-guard.js.map +1 -0
  369. package/dist/repositories/email-verification.repository.d.ts +18 -0
  370. package/dist/repositories/email-verification.repository.d.ts.map +1 -0
  371. package/dist/repositories/email-verification.repository.js +47 -0
  372. package/dist/repositories/email-verification.repository.js.map +1 -0
  373. package/dist/repositories/jwt-key.repository.d.ts +49 -0
  374. package/dist/repositories/jwt-key.repository.d.ts.map +1 -0
  375. package/dist/repositories/jwt-key.repository.js +72 -0
  376. package/dist/repositories/jwt-key.repository.js.map +1 -0
  377. package/dist/repositories/oauth-client.repository.d.ts +5 -0
  378. package/dist/repositories/oauth-client.repository.d.ts.map +1 -0
  379. package/dist/repositories/oauth-client.repository.js +4 -0
  380. package/dist/repositories/oauth-client.repository.js.map +1 -0
  381. package/dist/repositories/oauth-code.repository.d.ts +19 -0
  382. package/dist/repositories/oauth-code.repository.d.ts.map +1 -0
  383. package/dist/repositories/oauth-code.repository.js +32 -0
  384. package/dist/repositories/oauth-code.repository.js.map +1 -0
  385. package/dist/repositories/password-reset.repository.d.ts +19 -0
  386. package/dist/repositories/password-reset.repository.d.ts.map +1 -0
  387. package/dist/repositories/password-reset.repository.js +53 -0
  388. package/dist/repositories/password-reset.repository.js.map +1 -0
  389. package/dist/repositories/pending-oauth-registration.repository.d.ts +38 -0
  390. package/dist/repositories/pending-oauth-registration.repository.d.ts.map +1 -0
  391. package/dist/repositories/pending-oauth-registration.repository.js +50 -0
  392. package/dist/repositories/pending-oauth-registration.repository.js.map +1 -0
  393. package/dist/repositories/revoked-token.repository.d.ts +32 -0
  394. package/dist/repositories/revoked-token.repository.d.ts.map +1 -0
  395. package/dist/repositories/revoked-token.repository.js +43 -0
  396. package/dist/repositories/revoked-token.repository.js.map +1 -0
  397. package/dist/repositories/terms-content.repository.d.ts +5 -0
  398. package/dist/repositories/terms-content.repository.d.ts.map +1 -0
  399. package/dist/repositories/terms-content.repository.js +4 -0
  400. package/dist/repositories/terms-content.repository.js.map +1 -0
  401. package/dist/repositories/terms.repository.d.ts +9 -0
  402. package/dist/repositories/terms.repository.d.ts.map +1 -0
  403. package/dist/repositories/terms.repository.js +12 -0
  404. package/dist/repositories/terms.repository.js.map +1 -0
  405. package/dist/repositories/user-consent.repository.d.ts +22 -0
  406. package/dist/repositories/user-consent.repository.d.ts.map +1 -0
  407. package/dist/repositories/user-consent.repository.js +51 -0
  408. package/dist/repositories/user-consent.repository.js.map +1 -0
  409. package/dist/repositories/user-oauth.repository.d.ts +68 -0
  410. package/dist/repositories/user-oauth.repository.d.ts.map +1 -0
  411. package/dist/repositories/user-oauth.repository.js +94 -0
  412. package/dist/repositories/user-oauth.repository.js.map +1 -0
  413. package/dist/repositories/user-passkey.repository.d.ts +187 -0
  414. package/dist/repositories/user-passkey.repository.d.ts.map +1 -0
  415. package/dist/repositories/user-passkey.repository.js +61 -0
  416. package/dist/repositories/user-passkey.repository.js.map +1 -0
  417. package/dist/repositories/user-terms-consent.repository.d.ts +38 -0
  418. package/dist/repositories/user-terms-consent.repository.d.ts.map +1 -0
  419. package/dist/repositories/user-terms-consent.repository.js +71 -0
  420. package/dist/repositories/user-terms-consent.repository.js.map +1 -0
  421. package/dist/repositories/user-totp-recovery-code.repository.d.ts +376 -0
  422. package/dist/repositories/user-totp-recovery-code.repository.d.ts.map +1 -0
  423. package/dist/repositories/user-totp-recovery-code.repository.js +41 -0
  424. package/dist/repositories/user-totp-recovery-code.repository.js.map +1 -0
  425. package/dist/repositories/user-totp.repository.d.ts +564 -0
  426. package/dist/repositories/user-totp.repository.d.ts.map +1 -0
  427. package/dist/repositories/user-totp.repository.js +56 -0
  428. package/dist/repositories/user-totp.repository.js.map +1 -0
  429. package/dist/repositories/user.repository.d.ts +32 -0
  430. package/dist/repositories/user.repository.d.ts.map +1 -0
  431. package/dist/repositories/user.repository.js +70 -0
  432. package/dist/repositories/user.repository.js.map +1 -0
  433. package/dist/routes/.well-known/index.d.ts +12 -0
  434. package/dist/routes/.well-known/index.d.ts.map +1 -0
  435. package/dist/routes/.well-known/index.js +4 -0
  436. package/dist/routes/.well-known/index.js.map +1 -0
  437. package/dist/routes/.well-known/openid-configuration/get.d.ts +19 -0
  438. package/dist/routes/.well-known/openid-configuration/get.d.ts.map +1 -0
  439. package/dist/routes/.well-known/openid-configuration/get.js +12 -0
  440. package/dist/routes/.well-known/openid-configuration/get.js.map +1 -0
  441. package/dist/routes/api/auth/email/resend/post.d.ts +22 -0
  442. package/dist/routes/api/auth/email/resend/post.d.ts.map +1 -0
  443. package/dist/routes/api/auth/email/resend/post.js +64 -0
  444. package/dist/routes/api/auth/email/resend/post.js.map +1 -0
  445. package/dist/routes/api/auth/email/verify/post.d.ts +29 -0
  446. package/dist/routes/api/auth/email/verify/post.d.ts.map +1 -0
  447. package/dist/routes/api/auth/email/verify/post.js +55 -0
  448. package/dist/routes/api/auth/email/verify/post.js.map +1 -0
  449. package/dist/routes/api/auth/index.d.ts +275 -0
  450. package/dist/routes/api/auth/index.d.ts.map +1 -0
  451. package/dist/routes/api/auth/index.js +25 -0
  452. package/dist/routes/api/auth/index.js.map +1 -0
  453. package/dist/routes/api/auth/login/post.d.ts +30 -0
  454. package/dist/routes/api/auth/login/post.d.ts.map +1 -0
  455. package/dist/routes/api/auth/login/post.js +76 -0
  456. package/dist/routes/api/auth/login/post.js.map +1 -0
  457. package/dist/routes/api/auth/logout/post.d.ts +14 -0
  458. package/dist/routes/api/auth/logout/post.d.ts.map +1 -0
  459. package/dist/routes/api/auth/logout/post.js +21 -0
  460. package/dist/routes/api/auth/logout/post.js.map +1 -0
  461. package/dist/routes/api/auth/passkey/options/post.d.ts +31 -0
  462. package/dist/routes/api/auth/passkey/options/post.d.ts.map +1 -0
  463. package/dist/routes/api/auth/passkey/options/post.js +43 -0
  464. package/dist/routes/api/auth/passkey/options/post.js.map +1 -0
  465. package/dist/routes/api/auth/passkey/verify/post.d.ts +41 -0
  466. package/dist/routes/api/auth/passkey/verify/post.d.ts.map +1 -0
  467. package/dist/routes/api/auth/passkey/verify/post.js +75 -0
  468. package/dist/routes/api/auth/passkey/verify/post.js.map +1 -0
  469. package/dist/routes/api/auth/password/forgot/post.d.ts +22 -0
  470. package/dist/routes/api/auth/password/forgot/post.d.ts.map +1 -0
  471. package/dist/routes/api/auth/password/forgot/post.js +72 -0
  472. package/dist/routes/api/auth/password/forgot/post.js.map +1 -0
  473. package/dist/routes/api/auth/password/reset/post.d.ts +19 -0
  474. package/dist/routes/api/auth/password/reset/post.d.ts.map +1 -0
  475. package/dist/routes/api/auth/password/reset/post.js +62 -0
  476. package/dist/routes/api/auth/password/reset/post.js.map +1 -0
  477. package/dist/routes/api/auth/register/post.d.ts +39 -0
  478. package/dist/routes/api/auth/register/post.d.ts.map +1 -0
  479. package/dist/routes/api/auth/register/post.js +95 -0
  480. package/dist/routes/api/auth/register/post.js.map +1 -0
  481. package/dist/routes/api/auth/totp/recovery/verify/post.d.ts +36 -0
  482. package/dist/routes/api/auth/totp/recovery/verify/post.d.ts.map +1 -0
  483. package/dist/routes/api/auth/totp/recovery/verify/post.js +68 -0
  484. package/dist/routes/api/auth/totp/recovery/verify/post.js.map +1 -0
  485. package/dist/routes/api/auth/totp/verify/post.d.ts +29 -0
  486. package/dist/routes/api/auth/totp/verify/post.d.ts.map +1 -0
  487. package/dist/routes/api/auth/totp/verify/post.js +59 -0
  488. package/dist/routes/api/auth/totp/verify/post.js.map +1 -0
  489. package/dist/routes/api/config/get.d.ts +76 -0
  490. package/dist/routes/api/config/get.d.ts.map +1 -0
  491. package/dist/routes/api/config/get.js +70 -0
  492. package/dist/routes/api/config/get.js.map +1 -0
  493. package/dist/routes/api/config/index.d.ts +76 -0
  494. package/dist/routes/api/config/index.d.ts.map +1 -0
  495. package/dist/routes/api/config/index.js +4 -0
  496. package/dist/routes/api/config/index.js.map +1 -0
  497. package/dist/routes/api/consent/get.d.ts +37 -0
  498. package/dist/routes/api/consent/get.d.ts.map +1 -0
  499. package/dist/routes/api/consent/get.js +73 -0
  500. package/dist/routes/api/consent/get.js.map +1 -0
  501. package/dist/routes/api/consent/index.d.ts +54 -0
  502. package/dist/routes/api/consent/index.d.ts.map +1 -0
  503. package/dist/routes/api/consent/index.js +7 -0
  504. package/dist/routes/api/consent/index.js.map +1 -0
  505. package/dist/routes/api/consent/post.d.ts +33 -0
  506. package/dist/routes/api/consent/post.d.ts.map +1 -0
  507. package/dist/routes/api/consent/post.js +105 -0
  508. package/dist/routes/api/consent/post.js.map +1 -0
  509. package/dist/routes/api/docs/get.d.ts +17 -0
  510. package/dist/routes/api/docs/get.d.ts.map +1 -0
  511. package/dist/routes/api/docs/get.js +19 -0
  512. package/dist/routes/api/docs/get.js.map +1 -0
  513. package/dist/routes/api/docs/index.d.ts +12 -0
  514. package/dist/routes/api/docs/index.d.ts.map +1 -0
  515. package/dist/routes/api/docs/index.js +4 -0
  516. package/dist/routes/api/docs/index.js.map +1 -0
  517. package/dist/routes/api/health/get.d.ts +36 -0
  518. package/dist/routes/api/health/get.d.ts.map +1 -0
  519. package/dist/routes/api/health/get.js +64 -0
  520. package/dist/routes/api/health/get.js.map +1 -0
  521. package/dist/routes/api/health/index.d.ts +66 -0
  522. package/dist/routes/api/health/index.d.ts.map +1 -0
  523. package/dist/routes/api/health/index.js +9 -0
  524. package/dist/routes/api/health/index.js.map +1 -0
  525. package/dist/routes/api/health/live/get.d.ts +20 -0
  526. package/dist/routes/api/health/live/get.d.ts.map +1 -0
  527. package/dist/routes/api/health/live/get.js +28 -0
  528. package/dist/routes/api/health/live/get.js.map +1 -0
  529. package/dist/routes/api/health/ready/get.d.ts +35 -0
  530. package/dist/routes/api/health/ready/get.d.ts.map +1 -0
  531. package/dist/routes/api/health/ready/get.js +60 -0
  532. package/dist/routes/api/health/ready/get.js.map +1 -0
  533. package/dist/routes/api/index.d.ts +927 -0
  534. package/dist/routes/api/index.d.ts.map +1 -0
  535. package/dist/routes/api/index.js +19 -0
  536. package/dist/routes/api/index.js.map +1 -0
  537. package/dist/routes/api/oauth/_provider/authorize/get.d.ts +21 -0
  538. package/dist/routes/api/oauth/_provider/authorize/get.d.ts.map +1 -0
  539. package/dist/routes/api/oauth/_provider/authorize/get.js +60 -0
  540. package/dist/routes/api/oauth/_provider/authorize/get.js.map +1 -0
  541. package/dist/routes/api/oauth/_provider/callback/get.d.ts +23 -0
  542. package/dist/routes/api/oauth/_provider/callback/get.d.ts.map +1 -0
  543. package/dist/routes/api/oauth/_provider/callback/get.js +137 -0
  544. package/dist/routes/api/oauth/_provider/callback/get.js.map +1 -0
  545. package/dist/routes/api/oauth/_provider/callback/post.d.ts +23 -0
  546. package/dist/routes/api/oauth/_provider/callback/post.d.ts.map +1 -0
  547. package/dist/routes/api/oauth/_provider/callback/post.js +140 -0
  548. package/dist/routes/api/oauth/_provider/callback/post.js.map +1 -0
  549. package/dist/routes/api/oauth/_provider/delete.d.ts +18 -0
  550. package/dist/routes/api/oauth/_provider/delete.d.ts.map +1 -0
  551. package/dist/routes/api/oauth/_provider/delete.js +62 -0
  552. package/dist/routes/api/oauth/_provider/delete.js.map +1 -0
  553. package/dist/routes/api/oauth/index.d.ts +76 -0
  554. package/dist/routes/api/oauth/index.d.ts.map +1 -0
  555. package/dist/routes/api/oauth/index.js +11 -0
  556. package/dist/routes/api/oauth/index.js.map +1 -0
  557. package/dist/routes/api/terms/consent/post.d.ts +29 -0
  558. package/dist/routes/api/terms/consent/post.d.ts.map +1 -0
  559. package/dist/routes/api/terms/consent/post.js +111 -0
  560. package/dist/routes/api/terms/consent/post.js.map +1 -0
  561. package/dist/routes/api/terms/get.d.ts +40 -0
  562. package/dist/routes/api/terms/get.d.ts.map +1 -0
  563. package/dist/routes/api/terms/get.js +53 -0
  564. package/dist/routes/api/terms/get.js.map +1 -0
  565. package/dist/routes/api/terms/index.d.ts +55 -0
  566. package/dist/routes/api/terms/index.d.ts.map +1 -0
  567. package/dist/routes/api/terms/index.js +7 -0
  568. package/dist/routes/api/terms/index.js.map +1 -0
  569. package/dist/routes/api/user/delete.d.ts +21 -0
  570. package/dist/routes/api/user/delete.d.ts.map +1 -0
  571. package/dist/routes/api/user/delete.js +89 -0
  572. package/dist/routes/api/user/delete.js.map +1 -0
  573. package/dist/routes/api/user/index.d.ts +334 -0
  574. package/dist/routes/api/user/index.d.ts.map +1 -0
  575. package/dist/routes/api/user/index.js +35 -0
  576. package/dist/routes/api/user/index.js.map +1 -0
  577. package/dist/routes/api/user/oauth-accounts/get.d.ts +23 -0
  578. package/dist/routes/api/user/oauth-accounts/get.d.ts.map +1 -0
  579. package/dist/routes/api/user/oauth-accounts/get.js +58 -0
  580. package/dist/routes/api/user/oauth-accounts/get.js.map +1 -0
  581. package/dist/routes/api/user/passkeys/_id/delete.d.ts +18 -0
  582. package/dist/routes/api/user/passkeys/_id/delete.d.ts.map +1 -0
  583. package/dist/routes/api/user/passkeys/_id/delete.js +87 -0
  584. package/dist/routes/api/user/passkeys/_id/delete.js.map +1 -0
  585. package/dist/routes/api/user/passkeys/_id/patch.d.ts +22 -0
  586. package/dist/routes/api/user/passkeys/_id/patch.d.ts.map +1 -0
  587. package/dist/routes/api/user/passkeys/_id/patch.js +64 -0
  588. package/dist/routes/api/user/passkeys/_id/patch.js.map +1 -0
  589. package/dist/routes/api/user/passkeys/get.d.ts +21 -0
  590. package/dist/routes/api/user/passkeys/get.d.ts.map +1 -0
  591. package/dist/routes/api/user/passkeys/get.js +52 -0
  592. package/dist/routes/api/user/passkeys/get.js.map +1 -0
  593. package/dist/routes/api/user/passkeys/register/options/post.d.ts +55 -0
  594. package/dist/routes/api/user/passkeys/register/options/post.d.ts.map +1 -0
  595. package/dist/routes/api/user/passkeys/register/options/post.js +74 -0
  596. package/dist/routes/api/user/passkeys/register/options/post.js.map +1 -0
  597. package/dist/routes/api/user/passkeys/register/verify/post.d.ts +50 -0
  598. package/dist/routes/api/user/passkeys/register/verify/post.d.ts.map +1 -0
  599. package/dist/routes/api/user/passkeys/register/verify/post.js +95 -0
  600. package/dist/routes/api/user/passkeys/register/verify/post.js.map +1 -0
  601. package/dist/routes/api/user/password/delete.d.ts +23 -0
  602. package/dist/routes/api/user/password/delete.d.ts.map +1 -0
  603. package/dist/routes/api/user/password/delete.js +78 -0
  604. package/dist/routes/api/user/password/delete.js.map +1 -0
  605. package/dist/routes/api/user/password/post.d.ts +23 -0
  606. package/dist/routes/api/user/password/post.d.ts.map +1 -0
  607. package/dist/routes/api/user/password/post.js +81 -0
  608. package/dist/routes/api/user/password/post.js.map +1 -0
  609. package/dist/routes/api/user/password/put.d.ts +24 -0
  610. package/dist/routes/api/user/password/put.d.ts.map +1 -0
  611. package/dist/routes/api/user/password/put.js +74 -0
  612. package/dist/routes/api/user/password/put.js.map +1 -0
  613. package/dist/routes/api/user/session/get.d.ts +32 -0
  614. package/dist/routes/api/user/session/get.d.ts.map +1 -0
  615. package/dist/routes/api/user/session/get.js +36 -0
  616. package/dist/routes/api/user/session/get.js.map +1 -0
  617. package/dist/routes/api/user/totp/confirm/post.d.ts +32 -0
  618. package/dist/routes/api/user/totp/confirm/post.d.ts.map +1 -0
  619. package/dist/routes/api/user/totp/confirm/post.js +73 -0
  620. package/dist/routes/api/user/totp/confirm/post.js.map +1 -0
  621. package/dist/routes/api/user/totp/delete.d.ts +23 -0
  622. package/dist/routes/api/user/totp/delete.d.ts.map +1 -0
  623. package/dist/routes/api/user/totp/delete.js +74 -0
  624. package/dist/routes/api/user/totp/delete.js.map +1 -0
  625. package/dist/routes/api/user/totp/recovery/regenerate/post.d.ts +18 -0
  626. package/dist/routes/api/user/totp/recovery/regenerate/post.d.ts.map +1 -0
  627. package/dist/routes/api/user/totp/recovery/regenerate/post.js +54 -0
  628. package/dist/routes/api/user/totp/recovery/regenerate/post.js.map +1 -0
  629. package/dist/routes/api/user/totp/setup/post.d.ts +22 -0
  630. package/dist/routes/api/user/totp/setup/post.d.ts.map +1 -0
  631. package/dist/routes/api/user/totp/setup/post.js +82 -0
  632. package/dist/routes/api/user/totp/setup/post.js.map +1 -0
  633. package/dist/routes/api/user/totp/verify/post.d.ts +23 -0
  634. package/dist/routes/api/user/totp/verify/post.d.ts.map +1 -0
  635. package/dist/routes/api/user/totp/verify/post.js +71 -0
  636. package/dist/routes/api/user/totp/verify/post.js.map +1 -0
  637. package/dist/routes/index.d.ts +1115 -0
  638. package/dist/routes/index.d.ts.map +1 -0
  639. package/dist/routes/index.js +9 -0
  640. package/dist/routes/index.js.map +1 -0
  641. package/dist/routes/oauth/.well-known/jwks/get.d.ts +24 -0
  642. package/dist/routes/oauth/.well-known/jwks/get.d.ts.map +1 -0
  643. package/dist/routes/oauth/.well-known/jwks/get.js +41 -0
  644. package/dist/routes/oauth/.well-known/jwks/get.js.map +1 -0
  645. package/dist/routes/oauth/.well-known/openid-configuration/get.d.ts +29 -0
  646. package/dist/routes/oauth/.well-known/openid-configuration/get.d.ts.map +1 -0
  647. package/dist/routes/oauth/.well-known/openid-configuration/get.js +119 -0
  648. package/dist/routes/oauth/.well-known/openid-configuration/get.js.map +1 -0
  649. package/dist/routes/oauth/authorize/get.d.ts +48 -0
  650. package/dist/routes/oauth/authorize/get.d.ts.map +1 -0
  651. package/dist/routes/oauth/authorize/get.js +102 -0
  652. package/dist/routes/oauth/authorize/get.js.map +1 -0
  653. package/dist/routes/oauth/index.d.ts +182 -0
  654. package/dist/routes/oauth/index.d.ts.map +1 -0
  655. package/dist/routes/oauth/index.js +17 -0
  656. package/dist/routes/oauth/index.js.map +1 -0
  657. package/dist/routes/oauth/introspect/post.d.ts +28 -0
  658. package/dist/routes/oauth/introspect/post.d.ts.map +1 -0
  659. package/dist/routes/oauth/introspect/post.js +69 -0
  660. package/dist/routes/oauth/introspect/post.js.map +1 -0
  661. package/dist/routes/oauth/revoke/post.d.ts +22 -0
  662. package/dist/routes/oauth/revoke/post.d.ts.map +1 -0
  663. package/dist/routes/oauth/revoke/post.js +73 -0
  664. package/dist/routes/oauth/revoke/post.js.map +1 -0
  665. package/dist/routes/oauth/token/post.d.ts +29 -0
  666. package/dist/routes/oauth/token/post.d.ts.map +1 -0
  667. package/dist/routes/oauth/token/post.js +98 -0
  668. package/dist/routes/oauth/token/post.js.map +1 -0
  669. package/dist/routes/oauth/userinfo/get.d.ts +23 -0
  670. package/dist/routes/oauth/userinfo/get.d.ts.map +1 -0
  671. package/dist/routes/oauth/userinfo/get.js +65 -0
  672. package/dist/routes/oauth/userinfo/get.js.map +1 -0
  673. package/dist/schemas/error.d.ts +2104 -0
  674. package/dist/schemas/error.d.ts.map +1 -0
  675. package/dist/schemas/error.js +164 -0
  676. package/dist/schemas/error.js.map +1 -0
  677. package/dist/schemas/field.d.ts +97 -0
  678. package/dist/schemas/field.d.ts.map +1 -0
  679. package/dist/schemas/field.js +168 -0
  680. package/dist/schemas/field.js.map +1 -0
  681. package/dist/schemas/header.d.ts +7 -0
  682. package/dist/schemas/header.d.ts.map +1 -0
  683. package/dist/schemas/header.js +11 -0
  684. package/dist/schemas/header.js.map +1 -0
  685. package/dist/schemas/oauth.d.ts +26 -0
  686. package/dist/schemas/oauth.d.ts.map +1 -0
  687. package/dist/schemas/oauth.js +51 -0
  688. package/dist/schemas/oauth.js.map +1 -0
  689. package/dist/schemas/provider.d.ts +7 -0
  690. package/dist/schemas/provider.d.ts.map +1 -0
  691. package/dist/schemas/provider.js +31 -0
  692. package/dist/schemas/provider.js.map +1 -0
  693. package/dist/schemas/response.d.ts +645 -0
  694. package/dist/schemas/response.d.ts.map +1 -0
  695. package/dist/schemas/response.js +598 -0
  696. package/dist/schemas/response.js.map +1 -0
  697. package/dist/schemas/terms.d.ts +93 -0
  698. package/dist/schemas/terms.d.ts.map +1 -0
  699. package/dist/schemas/terms.js +109 -0
  700. package/dist/schemas/terms.js.map +1 -0
  701. package/dist/seeders/config.seeder.d.ts +21 -0
  702. package/dist/seeders/config.seeder.d.ts.map +1 -0
  703. package/dist/seeders/config.seeder.js +168 -0
  704. package/dist/seeders/config.seeder.js.map +1 -0
  705. package/dist/services/cleanup.service.d.ts +166 -0
  706. package/dist/services/cleanup.service.d.ts.map +1 -0
  707. package/dist/services/cleanup.service.js +605 -0
  708. package/dist/services/cleanup.service.js.map +1 -0
  709. package/dist/services/container.d.ts +201 -0
  710. package/dist/services/container.d.ts.map +1 -0
  711. package/dist/services/container.js +75 -0
  712. package/dist/services/container.js.map +1 -0
  713. package/dist/services/email.service.d.ts +69 -0
  714. package/dist/services/email.service.d.ts.map +1 -0
  715. package/dist/services/email.service.js +164 -0
  716. package/dist/services/email.service.js.map +1 -0
  717. package/dist/services/jwt.service.d.ts +321 -0
  718. package/dist/services/jwt.service.d.ts.map +1 -0
  719. package/dist/services/jwt.service.js +524 -0
  720. package/dist/services/jwt.service.js.map +1 -0
  721. package/dist/services/mikro.service.d.ts +43 -0
  722. package/dist/services/mikro.service.d.ts.map +1 -0
  723. package/dist/services/mikro.service.js +68 -0
  724. package/dist/services/mikro.service.js.map +1 -0
  725. package/dist/services/oauth-authorize.service.d.ts +91 -0
  726. package/dist/services/oauth-authorize.service.d.ts.map +1 -0
  727. package/dist/services/oauth-authorize.service.js +237 -0
  728. package/dist/services/oauth-authorize.service.js.map +1 -0
  729. package/dist/services/oauth-client.service.d.ts +38 -0
  730. package/dist/services/oauth-client.service.d.ts.map +1 -0
  731. package/dist/services/oauth-client.service.js +80 -0
  732. package/dist/services/oauth-client.service.js.map +1 -0
  733. package/dist/services/oauth-connect.service.d.ts +182 -0
  734. package/dist/services/oauth-connect.service.d.ts.map +1 -0
  735. package/dist/services/oauth-connect.service.js +592 -0
  736. package/dist/services/oauth-connect.service.js.map +1 -0
  737. package/dist/services/oauth-token.service.d.ts +162 -0
  738. package/dist/services/oauth-token.service.d.ts.map +1 -0
  739. package/dist/services/oauth-token.service.js +374 -0
  740. package/dist/services/oauth-token.service.js.map +1 -0
  741. package/dist/services/passkey.service.d.ts +73 -0
  742. package/dist/services/passkey.service.d.ts.map +1 -0
  743. package/dist/services/passkey.service.js +199 -0
  744. package/dist/services/passkey.service.js.map +1 -0
  745. package/dist/services/password-auth.service.d.ts +24 -0
  746. package/dist/services/password-auth.service.d.ts.map +1 -0
  747. package/dist/services/password-auth.service.js +87 -0
  748. package/dist/services/password-auth.service.js.map +1 -0
  749. package/dist/services/password-reset.service.d.ts +31 -0
  750. package/dist/services/password-reset.service.d.ts.map +1 -0
  751. package/dist/services/password-reset.service.js +54 -0
  752. package/dist/services/password-reset.service.js.map +1 -0
  753. package/dist/services/scheduler.service.d.ts +15 -0
  754. package/dist/services/scheduler.service.d.ts.map +1 -0
  755. package/dist/services/scheduler.service.js +52 -0
  756. package/dist/services/scheduler.service.js.map +1 -0
  757. package/dist/services/security.service.d.ts +17 -0
  758. package/dist/services/security.service.d.ts.map +1 -0
  759. package/dist/services/security.service.js +82 -0
  760. package/dist/services/security.service.js.map +1 -0
  761. package/dist/services/terms.service.d.ts +131 -0
  762. package/dist/services/terms.service.d.ts.map +1 -0
  763. package/dist/services/terms.service.js +210 -0
  764. package/dist/services/terms.service.js.map +1 -0
  765. package/dist/services/totp.service.d.ts +86 -0
  766. package/dist/services/totp.service.d.ts.map +1 -0
  767. package/dist/services/totp.service.js +244 -0
  768. package/dist/services/totp.service.js.map +1 -0
  769. package/dist/services/user-consent.service.d.ts +34 -0
  770. package/dist/services/user-consent.service.d.ts.map +1 -0
  771. package/dist/services/user-consent.service.js +42 -0
  772. package/dist/services/user-consent.service.js.map +1 -0
  773. package/dist/services/user.service.d.ts +60 -0
  774. package/dist/services/user.service.d.ts.map +1 -0
  775. package/dist/services/user.service.js +176 -0
  776. package/dist/services/user.service.js.map +1 -0
  777. package/package.json +155 -0
  778. package/public/assets/index-CrY7bb7j.css +2 -0
  779. package/public/assets/index-jYk5DHP_.js +75 -0
  780. package/public/assets/index-jYk5DHP_.js.map +1 -0
  781. package/public/index.html +27 -0
  782. package/public/vite.svg +1 -0
package/dist/lib/config/server.d.ts ADDED
@@ -0,0 +1,13 @@
1
+ import z from 'zod';
2
+ export declare const SERVER_CONFIG_DEFAULT: {
3
+ readonly public_origin: "http://localhost:8080";
4
+ readonly listen_port: 8080;
5
+ readonly trust_proxy: false;
6
+ };
7
+ export declare const ServerConfigSchema: z.ZodDefault<z.ZodObject<{
8
+ public_origin: z.ZodDefault<z.ZodURL>;
9
+ listen_port: z.ZodDefault<z.ZodPipe<z.ZodUnion<[z.ZodString, z.ZodNumber]>, z.ZodTransform<number, string | number>>>;
10
+ trust_proxy: z.ZodPipe<z.ZodDefault<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString, z.ZodArray<z.ZodString>, z.ZodNumber]>>, z.ZodTransform<string | number | boolean | string[], string | number | boolean | string[]>>;
11
+ }, z.z.core.$strict>>;
12
+ export type ServerConfig = z.infer<typeof ServerConfigSchema>;
13
+ //# sourceMappingURL=server.d.ts.map
package/dist/lib/config/server.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../../src/lib/config/server.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAGpB,eAAO,MAAM,qBAAqB;;;;CAIxB,CAAC;AA+BX,eAAO,MAAM,kBAAkB;;;;qBAcE,CAAC;AAElC,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC"}
package/dist/lib/config/server.js ADDED
@@ -0,0 +1,45 @@
1
+ import z from 'zod';
2
+ import { zz } from "../../schemas/provider.js";
3
+ export const SERVER_CONFIG_DEFAULT = {
4
+ public_origin: 'http://localhost:8080',
5
+ listen_port: 8080,
6
+ trust_proxy: false,
7
+ };
8
+ const TrustProxySchema = z
9
+ .union([
10
+ z.boolean(),
11
+ z.string(),
12
+ z.array(z.string()),
13
+ z.number().int().min(0),
14
+ ])
15
+ .default(SERVER_CONFIG_DEFAULT.trust_proxy)
16
+ .transform((value) => {
17
+ if (typeof value === 'string') {
18
+ if (value === 'true') {
19
+ return true;
20
+ }
21
+ if (value === 'false') {
22
+ return false;
23
+ }
24
+ const num = Number(value);
25
+ if (!Number.isNaN(num) && String(num) === value) {
26
+ return num;
27
+ }
28
+ }
29
+ return value;
30
+ })
31
+ .describe('Trust proxy configuration for X-Forwarded-* headers. ' +
32
+ 'Can be true (trust all), false (trust none), ' +
33
+ 'IP/CIDR string, array of IPs, or number (nth hop)');
34
+ export const ServerConfigSchema = z
35
+ .object({
36
+ public_origin: z
37
+ .url()
38
+ .default(SERVER_CONFIG_DEFAULT.public_origin)
39
+ .describe('Public origin for the auth service, used for redirects, emails, and CORS.'),
40
+ listen_port: zz.PORT.default(SERVER_CONFIG_DEFAULT.listen_port).describe('TCP port to listen on.'),
41
+ trust_proxy: TrustProxySchema,
42
+ })
43
+ .strict()
44
+ .default(SERVER_CONFIG_DEFAULT);
45
+ //# sourceMappingURL=server.js.map
package/dist/lib/config/server.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"server.js","sourceRoot":"","sources":["../../../src/lib/config/server.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;AAE/C,MAAM,CAAC,MAAM,qBAAqB,GAAG;IACnC,aAAa,EAAE,uBAAuB;IACtC,WAAW,EAAE,IAAI;IACjB,WAAW,EAAE,KAAK;CACV,CAAC;AAEX,MAAM,gBAAgB,GAAG,CAAC;KACvB,KAAK,CAAC;IACL,CAAC,CAAC,OAAO,EAAE;IACX,CAAC,CAAC,MAAM,EAAE;IACV,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC;IACnB,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CACxB,CAAC;KACD,OAAO,CAAC,qBAAqB,CAAC,WAAW,CAAC;KAC1C,SAAS,CAAC,CAAC,KAAK,EAAE,EAAE;IACnB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,IAAI,KAAK,KAAK,MAAM,EAAE,CAAC;YACrB,OAAO,IAAI,CAAC;QACd,CAAC;QACD,IAAI,KAAK,KAAK,OAAO,EAAE,CAAC;YACtB,OAAO,KAAK,CAAC;QACf,CAAC;QACD,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;QAC1B,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,GAAG,CAAC,KAAK,KAAK,EAAE,CAAC;YAChD,OAAO,GAAG,CAAC;QACb,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC,CAAC;KACD,QAAQ,CACP,uDAAuD;IACrD,+CAA+C;IAC/C,mDAAmD,CACtD,CAAC;AAEJ,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC;KAChC,MAAM,CAAC;IACN,aAAa,EAAE,CAAC;SACb,GAAG,EAAE;SACL,OAAO,CAAC,qBAAqB,CAAC,aAAa,CAAC;SAC5C,QAAQ,CACP,2EAA2E,CAC5E;IACH,WAAW,EAAE,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,qBAAqB,CAAC,WAAW,CAAC,CAAC,QAAQ,CACtE,wBAAwB,CACzB;IACD,WAAW,EAAE,gBAAgB;CAC9B,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,qBAAqB,CAAC,CAAC"}
package/dist/lib/config/terms.d.ts ADDED
@@ -0,0 +1,47 @@
1
+ import z from 'zod';
2
+ /**
3
+ * Individual term item configuration.
4
+ */
5
+ export declare const TermsItemSchema: z.ZodObject<{
6
+ id: z.ZodString;
7
+ required: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>>;
8
+ consent_mode: z.ZodDefault<z.ZodEnum<{
9
+ explicit: "explicit";
10
+ implicit: "implicit";
11
+ }>>;
12
+ version: z.ZodString;
13
+ content: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodUnion<readonly [z.ZodObject<{
14
+ title: z.ZodString;
15
+ type: z.ZodLiteral<"link">;
16
+ content: z.ZodURL;
17
+ }, z.z.core.$strict>, z.ZodObject<{
18
+ title: z.ZodString;
19
+ type: z.ZodLiteral<"text">;
20
+ content: z.ZodString;
21
+ }, z.z.core.$strict>]>>>;
22
+ }, z.z.core.$strict>;
23
+ export type TermsItem = z.infer<typeof TermsItemSchema>;
24
+ export declare const TERMS_CONFIG_DEFAULT: TermsItem[];
25
+ /**
26
+ * Terms configuration schema.
27
+ */
28
+ export declare const TermsConfigSchema: z.ZodDefault<z.ZodArray<z.ZodObject<{
29
+ id: z.ZodString;
30
+ required: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>>;
31
+ consent_mode: z.ZodDefault<z.ZodEnum<{
32
+ explicit: "explicit";
33
+ implicit: "implicit";
34
+ }>>;
35
+ version: z.ZodString;
36
+ content: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodUnion<readonly [z.ZodObject<{
37
+ title: z.ZodString;
38
+ type: z.ZodLiteral<"link">;
39
+ content: z.ZodURL;
40
+ }, z.z.core.$strict>, z.ZodObject<{
41
+ title: z.ZodString;
42
+ type: z.ZodLiteral<"text">;
43
+ content: z.ZodString;
44
+ }, z.z.core.$strict>]>>>;
45
+ }, z.z.core.$strict>>>;
46
+ export type TermsConfig = z.infer<typeof TermsConfigSchema>;
47
+ //# sourceMappingURL=terms.d.ts.map
package/dist/lib/config/terms.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"terms.d.ts","sourceRoot":"","sources":["../../../src/lib/config/terms.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAsCpB;;GAEG;AACH,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;;;oBAiCgB,CAAC;AAE7C,MAAM,MAAM,SAAS,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAExD,eAAO,MAAM,oBAAoB,EAAE,SAAS,EAAO,CAAC;AAEpD;;GAEG;AACH,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;sBAGe,CAAC;AAE9C,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC"}
package/dist/lib/config/terms.js ADDED
@@ -0,0 +1,71 @@
1
+ import z from 'zod';
2
+ import { zz } from "../../schemas/provider.js";
3
+ /**
4
+ * Localized content for a term item.
5
+ * Each language code maps to a title, type, and content.
6
+ * Type determines how the content should be interpreted.
7
+ */
8
+ const TermsLocalizedContentLinkSchema = z
9
+ .object({
10
+ title: z.string().min(1).describe('Display title for the term'),
11
+ type: z.literal('link').describe('Content type: link to external document'),
12
+ content: z.url().describe('URL to the full terms document'),
13
+ })
14
+ .strict();
15
+ const TermsLocalizedContentTextSchema = z
16
+ .object({
17
+ title: z.string().min(1).describe('Display title for the term'),
18
+ type: z.literal('text').describe('Content type: inline text'),
19
+ content: z.string().min(1).describe('Inline text content'),
20
+ })
21
+ .strict();
22
+ const TermsLocalizedContentSchema = z
23
+ .union([TermsLocalizedContentLinkSchema, TermsLocalizedContentTextSchema])
24
+ .describe('Localized content for a term');
25
+ const TERMS_ITEM_CONFIG_DEFAULT = {
26
+ required: true,
27
+ consent_mode: 'explicit',
28
+ content: {},
29
+ };
30
+ /**
31
+ * Individual term item configuration.
32
+ */
33
+ export const TermsItemSchema = z
34
+ .object({
35
+ id: z
36
+ .string()
37
+ .min(1)
38
+ .regex(/^[a-z0-9-_]+$/, 'ID must be lowercase alphanumeric with - or _')
39
+ .describe('Unique identifier for the term'),
40
+ required: z
41
+ .union([z.boolean(), z.string()])
42
+ .pipe(zz.COERCE_BOOLEAN)
43
+ .default(TERMS_ITEM_CONFIG_DEFAULT.required)
44
+ .describe('Whether agreement to this term is mandatory'),
45
+ consent_mode: z
46
+ .enum(['explicit', 'implicit'])
47
+ .default(TERMS_ITEM_CONFIG_DEFAULT.consent_mode)
48
+ .describe('Consent mode for this term: ' +
49
+ '"explicit" shows checkbox requiring user action, ' +
50
+ '"implicit" means signup implies agreement'),
51
+ version: z
52
+ .string()
53
+ .min(1)
54
+ .describe('Version string for tracking changes (e.g., "1.0.0")'),
55
+ content: z
56
+ .record(z.string(), TermsLocalizedContentSchema)
57
+ .default(TERMS_ITEM_CONFIG_DEFAULT.content)
58
+ .describe('Localized content keyed by language code (e.g., "en", "ko"). ' +
59
+ 'Can be omitted for implicit consent terms where content is not displayed.'),
60
+ })
61
+ .strict()
62
+ .describe('Individual term configuration');
63
+ export const TERMS_CONFIG_DEFAULT = [];
64
+ /**
65
+ * Terms configuration schema.
66
+ */
67
+ export const TermsConfigSchema = z
68
+ .array(TermsItemSchema)
69
+ .default(TERMS_CONFIG_DEFAULT)
70
+ .describe('Terms of service configuration');
71
+ //# sourceMappingURL=terms.js.map
package/dist/lib/config/terms.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"terms.js","sourceRoot":"","sources":["../../../src/lib/config/terms.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;AAE/C;;;;GAIG;AACH,MAAM,+BAA+B,GAAG,CAAC;KACtC,MAAM,CAAC;IACN,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IAC/D,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,yCAAyC,CAAC;IAC3E,OAAO,EAAE,CAAC,CAAC,GAAG,EAAE,CAAC,QAAQ,CAAC,gCAAgC,CAAC;CAC5D,CAAC;KACD,MAAM,EAAE,CAAC;AAEZ,MAAM,+BAA+B,GAAG,CAAC;KACtC,MAAM,CAAC;IACN,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IAC/D,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,2BAA2B,CAAC;IAC7D,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,qBAAqB,CAAC;CAC3D,CAAC;KACD,MAAM,EAAE,CAAC;AAEZ,MAAM,2BAA2B,GAAG,CAAC;KAClC,KAAK,CAAC,CAAC,+BAA+B,EAAE,+BAA+B,CAAC,CAAC;KACzE,QAAQ,CAAC,8BAA8B,CAAC,CAAC;AAE5C,MAAM,yBAAyB,GAI3B;IACF,QAAQ,EAAE,IAAI;IACd,YAAY,EAAE,UAAU;IACxB,OAAO,EAAE,EAAE;CACZ,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC;KAC7B,MAAM,CAAC;IACN,EAAE,EAAE,CAAC;SACF,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,KAAK,CAAC,eAAe,EAAE,+CAA+C,CAAC;SACvE,QAAQ,CAAC,gCAAgC,CAAC;IAC7C,QAAQ,EAAE,CAAC;SACR,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC;SAChC,IAAI,CAAC,EAAE,CAAC,cAAc,CAAC;SACvB,OAAO,CAAC,yBAAyB,CAAC,QAAQ,CAAC;SAC3C,QAAQ,CAAC,6CAA6C,CAAC;IAC1D,YAAY,EAAE,CAAC;SACZ,IAAI,CAAC,CAAC,UAAU,EAAE,UAAU,CAAC,CAAC;SAC9B,OAAO,CAAC,yBAAyB,CAAC,YAAY,CAAC;SAC/C,QAAQ,CACP,8BAA8B;QAC5B,mDAAmD;QACnD,2CAA2C,CAC9C;IACH,OAAO,EAAE,CAAC;SACP,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,QAAQ,CAAC,qDAAqD,CAAC;IAClE,OAAO,EAAE,CAAC;SACP,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,2BAA2B,CAAC;SAC/C,OAAO,CAAC,yBAAyB,CAAC,OAAO,CAAC;SAC1C,QAAQ,CACP,+DAA+D;QAC7D,2EAA2E,CAC9E;CACJ,CAAC;KACD,MAAM,EAAE;KACR,QAAQ,CAAC,+BAA+B,CAAC,CAAC;AAI7C,MAAM,CAAC,MAAM,oBAAoB,GAAgB,EAAE,CAAC;AAEpD;;GAEG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC;KAC/B,KAAK,CAAC,eAAe,CAAC;KACtB,OAAO,CAAC,oBAAoB,CAAC;KAC7B,QAAQ,CAAC,gCAAgC,CAAC,CAAC"}
package/dist/lib/config/tokens.d.ts ADDED
@@ -0,0 +1,32 @@
1
+ import z from 'zod';
2
+ export declare const TOKEN_ROTATION_CONFIG_DEFAULT: {
3
+ readonly enabled: true;
4
+ readonly interval_days: 30;
5
+ readonly overlap_days: 7;
6
+ };
7
+ export declare const TOKENS_CONFIG_DEFAULT: {
8
+ readonly access_token_ttl: 3600;
9
+ readonly refresh_token_ttl: 2592000;
10
+ readonly key_rotation: {
11
+ readonly enabled: true;
12
+ readonly interval_days: 30;
13
+ readonly overlap_days: 7;
14
+ };
15
+ };
16
+ export declare const TokenKeyRotationConfigSchema: z.ZodDefault<z.ZodObject<{
17
+ enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
18
+ interval_days: z.ZodDefault<z.ZodPipe<z.ZodPipe<z.ZodUnion<readonly [z.ZodString, z.ZodNumber]>, z.ZodTransform<number, string | number>>, z.ZodNumber>>;
19
+ overlap_days: z.ZodDefault<z.ZodPipe<z.ZodPipe<z.ZodUnion<readonly [z.ZodString, z.ZodNumber]>, z.ZodTransform<number, string | number>>, z.ZodNumber>>;
20
+ }, z.z.core.$strict>>;
21
+ export type TokenKeyRotationConfig = z.infer<typeof TokenKeyRotationConfigSchema>;
22
+ export declare const TokensConfigSchema: z.ZodDefault<z.ZodObject<{
23
+ access_token_ttl: z.ZodDefault<z.ZodPipe<z.ZodPipe<z.ZodUnion<readonly [z.ZodString, z.ZodNumber]>, z.ZodTransform<number, string | number>>, z.ZodNumber>>;
24
+ refresh_token_ttl: z.ZodDefault<z.ZodPipe<z.ZodPipe<z.ZodUnion<readonly [z.ZodString, z.ZodNumber]>, z.ZodTransform<number, string | number>>, z.ZodNumber>>;
25
+ key_rotation: z.ZodDefault<z.ZodObject<{
26
+ enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
27
+ interval_days: z.ZodDefault<z.ZodPipe<z.ZodPipe<z.ZodUnion<readonly [z.ZodString, z.ZodNumber]>, z.ZodTransform<number, string | number>>, z.ZodNumber>>;
28
+ overlap_days: z.ZodDefault<z.ZodPipe<z.ZodPipe<z.ZodUnion<readonly [z.ZodString, z.ZodNumber]>, z.ZodTransform<number, string | number>>, z.ZodNumber>>;
29
+ }, z.z.core.$strict>>;
30
+ }, z.z.core.$strict>>;
31
+ export type TokensConfig = z.infer<typeof TokensConfigSchema>;
32
+ //# sourceMappingURL=tokens.d.ts.map
package/dist/lib/config/tokens.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"tokens.d.ts","sourceRoot":"","sources":["../../../src/lib/config/tokens.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAGpB,eAAO,MAAM,6BAA6B;;;;CAIhC,CAAC;AAEX,eAAO,MAAM,qBAAqB;;;;;;;;CAIxB,CAAC;AAEX,eAAO,MAAM,4BAA4B;;;;qBAoBS,CAAC;AAEnD,MAAM,MAAM,sBAAsB,GAAG,CAAC,CAAC,KAAK,CAC1C,OAAO,4BAA4B,CACpC,CAAC;AAEF,eAAO,MAAM,kBAAkB;;;;;;;;qBAgB6B,CAAC;AAE7D,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC"}
package/dist/lib/config/tokens.js ADDED
@@ -0,0 +1,47 @@
1
+ import z from 'zod';
2
+ import { zz } from "../../schemas/provider.js";
3
+ export const TOKEN_ROTATION_CONFIG_DEFAULT = {
4
+ enabled: true,
5
+ interval_days: 30,
6
+ overlap_days: 7,
7
+ };
8
+ export const TOKENS_CONFIG_DEFAULT = {
9
+ access_token_ttl: 3600,
10
+ refresh_token_ttl: 2592000,
11
+ key_rotation: TOKEN_ROTATION_CONFIG_DEFAULT,
12
+ };
13
+ export const TokenKeyRotationConfigSchema = z
14
+ .object({
15
+ enabled: zz.COERCE_BOOLEAN.default(TOKEN_ROTATION_CONFIG_DEFAULT.enabled).describe('Whether automatic signing key rotation is enabled.'),
16
+ interval_days: zz
17
+ .coerceInt()
18
+ .pipe(z.number().int().min(1))
19
+ .default(TOKEN_ROTATION_CONFIG_DEFAULT.interval_days)
20
+ .describe('Number of days between signing key rotations.'),
21
+ overlap_days: zz
22
+ .coerceInt()
23
+ .pipe(z.number().int().min(1))
24
+ .default(TOKEN_ROTATION_CONFIG_DEFAULT.overlap_days)
25
+ .describe('Number of days the old key remains valid after rotation for graceful transition.'),
26
+ })
27
+ .strict()
28
+ .default(TOKEN_ROTATION_CONFIG_DEFAULT)
29
+ .describe('Signing key rotation configuration.');
30
+ export const TokensConfigSchema = z
31
+ .object({
32
+ access_token_ttl: zz
33
+ .coerceInt()
34
+ .pipe(z.number().int().min(60))
35
+ .default(TOKENS_CONFIG_DEFAULT.access_token_ttl)
36
+ .describe('Access token time-to-live in seconds.'),
37
+ refresh_token_ttl: zz
38
+ .coerceInt()
39
+ .pipe(z.number().int().min(3600))
40
+ .default(TOKENS_CONFIG_DEFAULT.refresh_token_ttl)
41
+ .describe('Refresh token time-to-live in seconds.'),
42
+ key_rotation: TokenKeyRotationConfigSchema,
43
+ })
44
+ .strict()
45
+ .default(TOKENS_CONFIG_DEFAULT)
46
+ .describe('Token issuance and signing key configuration.');
47
+ //# sourceMappingURL=tokens.js.map
package/dist/lib/config/tokens.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"tokens.js","sourceRoot":"","sources":["../../../src/lib/config/tokens.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;AAE/C,MAAM,CAAC,MAAM,6BAA6B,GAAG;IAC3C,OAAO,EAAE,IAAI;IACb,aAAa,EAAE,EAAE;IACjB,YAAY,EAAE,CAAC;CACP,CAAC;AAEX,MAAM,CAAC,MAAM,qBAAqB,GAAG;IACnC,gBAAgB,EAAE,IAAI;IACtB,iBAAiB,EAAE,OAAO;IAC1B,YAAY,EAAE,6BAA6B;CACnC,CAAC;AAEX,MAAM,CAAC,MAAM,4BAA4B,GAAG,CAAC;KAC1C,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,6BAA6B,CAAC,OAAO,CACtC,CAAC,QAAQ,CAAC,oDAAoD,CAAC;IAChE,aAAa,EAAE,EAAE;SACd,SAAS,EAAE;SACX,IAAI,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;SAC7B,OAAO,CAAC,6BAA6B,CAAC,aAAa,CAAC;SACpD,QAAQ,CAAC,+CAA+C,CAAC;IAC5D,YAAY,EAAE,EAAE;SACb,SAAS,EAAE;SACX,IAAI,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;SAC7B,OAAO,CAAC,6BAA6B,CAAC,YAAY,CAAC;SACnD,QAAQ,CACP,kFAAkF,CACnF;CACJ,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,6BAA6B,CAAC;KACtC,QAAQ,CAAC,qCAAqC,CAAC,CAAC;AAMnD,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC;KAChC,MAAM,CAAC;IACN,gBAAgB,EAAE,EAAE;SACjB,SAAS,EAAE;SACX,IAAI,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;SAC9B,OAAO,CAAC,qBAAqB,CAAC,gBAAgB,CAAC;SAC/C,QAAQ,CAAC,uCAAuC,CAAC;IACpD,iBAAiB,EAAE,EAAE;SAClB,SAAS,EAAE;SACX,IAAI,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;SAChC,OAAO,CAAC,qBAAqB,CAAC,iBAAiB,CAAC;SAChD,QAAQ,CAAC,wCAAwC,CAAC;IACrD,YAAY,EAAE,4BAA4B;CAC3C,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,qBAAqB,CAAC;KAC9B,QAAQ,CAAC,+CAA+C,CAAC,CAAC"}
package/dist/lib/config/user.d.ts ADDED
@@ -0,0 +1,22 @@
1
+ import z from 'zod';
2
+ export declare const UserConfigSchema: z.ZodObject<{
3
+ sub: z.ZodString;
4
+ email: z.ZodString;
5
+ password: z.ZodString;
6
+ role: z.ZodEnum<{
7
+ user: "user";
8
+ admin: "admin";
9
+ }>;
10
+ }, z.z.core.$strict>;
11
+ export type UserConfig = z.infer<typeof UserConfigSchema>;
12
+ export declare const USER_CONFIGS_DEFAULT: UserConfig[];
13
+ export declare const UserConfigsSchema: z.ZodDefault<z.ZodArray<z.ZodObject<{
14
+ sub: z.ZodString;
15
+ email: z.ZodString;
16
+ password: z.ZodString;
17
+ role: z.ZodEnum<{
18
+ user: "user";
19
+ admin: "admin";
20
+ }>;
21
+ }, z.z.core.$strict>>>;
22
+ //# sourceMappingURL=user.d.ts.map
package/dist/lib/config/user.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"user.d.ts","sourceRoot":"","sources":["../../../src/lib/config/user.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAEpB,eAAO,MAAM,gBAAgB;;;;;;;;oBAU6B,CAAC;AAE3D,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAE1D,eAAO,MAAM,oBAAoB,EAAE,UAAU,EAAO,CAAC;AAErD,eAAO,MAAM,iBAAiB;;;;;;;;sBAGuB,CAAC"}
package/dist/lib/config/user.js ADDED
@@ -0,0 +1,18 @@
1
+ import z from 'zod';
2
+ export const UserConfigSchema = z
3
+ .object({
4
+ sub: z.string().describe('Unique subject identifier for the user.'),
5
+ email: z.string().describe('Email address for the user account.'),
6
+ password: z.string().describe('Plain-text password (hashed at startup).'),
7
+ role: z
8
+ .enum(['user', 'admin'])
9
+ .describe('User role. "admin" grants access to the admin panel.'),
10
+ })
11
+ .strict()
12
+ .describe('Pre-provisioned user account configuration.');
13
+ export const USER_CONFIGS_DEFAULT = [];
14
+ export const UserConfigsSchema = z
15
+ .array(UserConfigSchema)
16
+ .default(USER_CONFIGS_DEFAULT)
17
+ .describe('List of pre-provisioned user accounts.');
18
+ //# sourceMappingURL=user.js.map
package/dist/lib/config/user.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"user.js","sourceRoot":"","sources":["../../../src/lib/config/user.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAEpB,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC;KAC9B,MAAM,CAAC;IACN,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,yCAAyC,CAAC;IACnE,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,qCAAqC,CAAC;IACjE,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,0CAA0C,CAAC;IACzE,IAAI,EAAE,CAAC;SACJ,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;SACvB,QAAQ,CAAC,sDAAsD,CAAC;CACpE,CAAC;KACD,MAAM,EAAE;KACR,QAAQ,CAAC,6CAA6C,CAAC,CAAC;AAI3D,MAAM,CAAC,MAAM,oBAAoB,GAAiB,EAAE,CAAC;AAErD,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC;KAC/B,KAAK,CAAC,gBAAgB,CAAC;KACvB,OAAO,CAAC,oBAAoB,CAAC;KAC7B,QAAQ,CAAC,wCAAwC,CAAC,CAAC"}
package/dist/lib/crypto.d.ts ADDED
@@ -0,0 +1,106 @@
1
+ export { getRandomBytes } from './base64url.ts';
2
+ export declare function encrypt(data: string, keyHex: string): Promise<string>;
3
+ export declare function decrypt(encoded: string, keyHex: string): Promise<string | null>;
4
+ /**
5
+ * Compares two byte arrays in constant time to prevent timing side-channel attacks.
6
+ *
7
+ * Returns `false` immediately if the arrays differ in length, but the byte-level
8
+ * comparison always processes every element to avoid leaking positional information.
9
+ *
10
+ * @param left - The first byte array.
11
+ * @param right - The second byte array.
12
+ * @returns `true` if both arrays contain identical bytes, `false` otherwise.
13
+ */
14
+ export declare function timingSafeEqualBytes(left: Uint8Array, right: Uint8Array): boolean;
15
+ /**
16
+ * Parses a persisted PBKDF2 hash string into its constituent parameters.
17
+ *
18
+ * The expected format is: `<algorithm>$v=<version>$i=<iterations>$s=<salt>$h=<digest>`
19
+ * where salt and digest are base64url-encoded.
20
+ *
21
+ * @param hash - The stored hash string to parse.
22
+ * @param expectedAlgorithm - The algorithm identifier to match (e.g. `'pbkdf2-sha256'`).
23
+ * @returns The parsed components, or `undefined` if the string is malformed.
24
+ */
25
+ export declare function parsePbkdf2Hash(hash: string, expectedAlgorithm: string): {
26
+ version: number;
27
+ iterations: number;
28
+ salt: Uint8Array;
29
+ digest: Uint8Array;
30
+ } | undefined;
31
+ /**
32
+ * Encodes PBKDF2 hash parameters into a self-describing string for storage.
33
+ *
34
+ * @param params - The PBKDF2 parameters to encode.
35
+ * @returns A string in the format `<algorithm>$v=<version>$i=<iterations>$s=<salt>$h=<digest>`.
36
+ */
37
+ export declare function formatPbkdf2Hash(params: {
38
+ algorithm: string;
39
+ version: number;
40
+ iterations: number;
41
+ salt: Uint8Array;
42
+ digest: Uint8Array;
43
+ }): string;
44
+ /**
45
+ * Encodes an HMAC digest into a self-describing string for opaque token storage.
46
+ *
47
+ * @param params - The HMAC digest to encode.
48
+ * @returns A string in the format `<algorithm>$v=<version>$h=<digest>`.
49
+ */
50
+ export declare function formatOpaqueHash(params: {
51
+ algorithm: string;
52
+ version: number;
53
+ digest: Uint8Array;
54
+ }): string;
55
+ /**
56
+ * Normalizes a secret string to Unicode NFC form and encodes it as UTF-8 bytes.
57
+ * This ensures visually equivalent strings (e.g. `café` vs `cafe\u0301`) produce
58
+ * identical byte sequences across all runtimes.
59
+ *
60
+ * @param secret - The raw secret string.
61
+ * @returns The NFC-normalized, UTF-8-encoded byte representation.
62
+ */
63
+ export declare function normalizeSecret(secret: string): Uint8Array;
64
+ /**
65
+ * Derives a purpose-specific subkey from a master secret using HKDF-SHA-256.
66
+ *
67
+ * Each purpose produces a cryptographically isolated key, so compromising
68
+ * one purpose key does not affect others.
69
+ *
70
+ * @param crypto - The Web Crypto API instance.
71
+ * @param masterSecret - The 32-byte master secret.
72
+ * @param hkdfSalt - The salt string for HKDF (e.g. application context identifier).
73
+ * @param hkdfInfo - The info string for HKDF (e.g. purpose label).
74
+ * @param derivedKeyBytes - The number of bytes to derive.
75
+ * @returns A derived purpose key of the specified length.
76
+ */
77
+ export declare function derivePurposeKeyBytes(crypto: Crypto, masterSecret: Uint8Array, hkdfSalt: string, hkdfInfo: string, derivedKeyBytes: number): Promise<Uint8Array>;
78
+ /**
79
+ * Derives a PBKDF2-SHA-256 digest from a low-entropy secret (e.g. a password).
80
+ *
81
+ * The secret is first NFC-normalized and concatenated with the purpose key before
82
+ * being fed into PBKDF2, binding the derivation to a specific purpose.
83
+ *
84
+ * @param crypto - The Web Crypto API instance.
85
+ * @param purposeKey - The pre-derived purpose-specific key from {@link derivePurposeKeyBytes}.
86
+ * @param secret - The raw secret string (password, client secret, etc.).
87
+ * @param salt - A random salt (typically 16 bytes).
88
+ * @param iterations - The PBKDF2 iteration count.
89
+ * @param derivedKeyBytes - The number of bytes to derive.
90
+ * @returns A derived key of the specified length.
91
+ */
92
+ export declare function derivePbkdf2Bytes(crypto: Crypto, purposeKey: Uint8Array, secret: string, salt: Uint8Array, iterations: number, derivedKeyBytes: number): Promise<Uint8Array>;
93
+ /**
94
+ * Computes an HMAC-SHA-256 signature over a high-entropy opaque value.
95
+ *
96
+ * Unlike PBKDF2, this is intended for values that are already cryptographically
97
+ * random (e.g. authorization codes, recovery tokens), where deterministic hashing
98
+ * enables efficient database lookups.
99
+ *
100
+ * @param crypto - The Web Crypto API instance.
101
+ * @param purposeKey - The pre-derived purpose-specific key from {@link derivePurposeKeyBytes}.
102
+ * @param value - The opaque value to sign.
103
+ * @returns A 32-byte HMAC signature.
104
+ */
105
+ export declare function signOpaqueValue(crypto: Crypto, purposeKey: Uint8Array, value: string): Promise<Uint8Array>;
106
+ //# sourceMappingURL=crypto.d.ts.map
package/dist/lib/crypto.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"crypto.d.ts","sourceRoot":"","sources":["../../src/lib/crypto.ts"],"names":[],"mappings":"AAWA,OAAO,EAAE,cAAc,EAAE,MAAM,gBAAgB,CAAC;AAuBhD,wBAAsB,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CA8B3E;AAED,wBAAsB,OAAO,CAC3B,OAAO,EAAE,MAAM,EACf,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CA6BxB;AAMD;;;;;;;;;GASG;AACH,wBAAgB,oBAAoB,CAClC,IAAI,EAAE,UAAU,EAChB,KAAK,EAAE,UAAU,GAChB,OAAO,CAkBT;AAqCD;;;;;;;;;GASG;AACH,wBAAgB,eAAe,CAC7B,IAAI,EAAE,MAAM,EACZ,iBAAiB,EAAE,MAAM,GAEvB;IACE,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,EAAE,UAAU,CAAC;IACjB,MAAM,EAAE,UAAU,CAAC;CACpB,GACD,SAAS,CAqCZ;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,EAAE;IACvC,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,EAAE,UAAU,CAAC;IACjB,MAAM,EAAE,UAAU,CAAC;CACpB,GAAG,MAAM,CAQT;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,EAAE;IACvC,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,UAAU,CAAC;CACpB,GAAG,MAAM,CAMT;AAED;;;;;;;GAOG;AACH,wBAAgB,eAAe,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,CAE1D;AAED;;;;;;;;;;;;GAYG;AACH,wBAAsB,qBAAqB,CACzC,MAAM,EAAE,MAAM,EACd,YAAY,EAAE,UAAU,EACxB,QAAQ,EAAE,MAAM,EAChB,QAAQ,EAAE,MAAM,EAChB,eAAe,EAAE,MAAM,GACtB,OAAO,CAAC,UAAU,CAAC,CAqBrB;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAsB,iBAAiB,CACrC,MAAM,EAAE,MAAM,EACd,UAAU,EAAE,UAAU,EACtB,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,UAAU,EAChB,UAAU,EAAE,MAAM,EAClB,eAAe,EAAE,MAAM,GACtB,OAAO,CAAC,UAAU,CAAC,CAqBrB;AAED;;;;;;;;;;;GAWG;AACH,wBAAsB,eAAe,CACnC,MAAM,EAAE,MAAM,EACd,UAAU,EAAE,UAAU,EACtB,KAAK,EAAE,MAAM,GACZ,OAAO,CAAC,UAAU,CAAC,CAmBrB"}