@tyravel/auth 0.1.0

package/dist/session-store.js

@@ -0,0 +1,69 @@
+import { QueryBuilder } from '@tyravel/database';
+export class DatabaseSessionStore {
+    connection;
+    table;
+    constructor(connection, table = 'sessions') {
+        this.connection = connection;
+        this.table = table;
+    }
+    async read(id) {
+        const row = await new QueryBuilder(this.connection, this.table)
+            .where('id', id)
+            .first();
+        if (!row) {
+            return {};
+        }
+        try {
+            return JSON.parse(row.payload);
+        }
+        catch {
+            return {};
+        }
+    }
+    async write(id, data, lifetimeMinutes) {
+        const now = Math.floor(Date.now() / 1000);
+        const payload = JSON.stringify(data);
+        const existing = await new QueryBuilder(this.connection, this.table)
+            .where('id', id)
+            .first();
+        if (existing) {
+            await new QueryBuilder(this.connection, this.table)
+                .where('id', id)
+                .update({
+                payload,
+                last_activity: now,
+            });
+            return;
+        }
+        await new QueryBuilder(this.connection, this.table).insert({
+            id,
+            payload,
+            last_activity: now,
+            user_id: data['auth.user_id'] ?? null,
+            ip_address: null,
+            user_agent: null,
+        });
+    }
+    async destroy(id) {
+        await new QueryBuilder(this.connection, this.table).where('id', id).delete();
+    }
+    async pruneExpired(lifetimeMinutes) {
+        const cutoff = Math.floor(Date.now() / 1000) - lifetimeMinutes * 60;
+        await new QueryBuilder(this.connection, this.table)
+            .where('last_activity', '<', cutoff)
+            .delete();
+    }
+}
+export class MemorySessionStore {
+    sessions = new Map();
+    async read(id) {
+        return { ...(this.sessions.get(id) ?? {}) };
+    }
+    async write(id, data, _lifetimeMinutes) {
+        this.sessions.set(id, { ...data });
+    }
+    async destroy(id) {
+        this.sessions.delete(id);
+    }
+}
+//# sourceMappingURL=session-store.js.map

package/dist/session-store.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"session-store.js","sourceRoot":"","sources":["../src/session-store.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAUjD,MAAM,OAAO,oBAAoB;IAEZ;IACA;IAFnB,YACmB,UAA8B,EAC9B,QAAQ,UAAU;QADlB,eAAU,GAAV,UAAU,CAAoB;QAC9B,UAAK,GAAL,KAAK,CAAa;IAClC,CAAC;IAEJ,KAAK,CAAC,IAAI,CAAC,EAAU;QACnB,MAAM,GAAG,GAAG,MAAM,IAAI,YAAY,CAAmB,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC;aAC9E,KAAK,CAAC,IAAI,EAAE,EAAE,CAAC;aACf,KAAK,EAAE,CAAC;QAEX,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,IAAI,CAAC;YACH,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAA4B,CAAC;QAC5D,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAED,KAAK,CAAC,KAAK,CACT,EAAU,EACV,IAA6B,EAC7B,eAAuB;QAEvB,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QAC1C,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QACrC,MAAM,QAAQ,GAAG,MAAM,IAAI,YAAY,CAAmB,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC;aACnF,KAAK,CAAC,IAAI,EAAE,EAAE,CAAC;aACf,KAAK,EAAE,CAAC;QAEX,IAAI,QAAQ,EAAE,CAAC;YACb,MAAM,IAAI,YAAY,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC;iBAChD,KAAK,CAAC,IAAI,EAAE,EAAE,CAAC;iBACf,MAAM,CAAC;gBACN,OAAO;gBACP,aAAa,EAAE,GAAG;aACnB,CAAC,CAAC;YACL,OAAO;QACT,CAAC;QAED,MAAM,IAAI,YAAY,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC;YACzD,EAAE;YACF,OAAO;YACP,aAAa,EAAE,GAAG;YAClB,OAAO,EAAE,IAAI,CAAC,cAAc,CAAC,IAAI,IAAI;YACrC,UAAU,EAAE,IAAI;YAChB,UAAU,EAAE,IAAI;SACjB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,EAAU;QACtB,MAAM,IAAI,YAAY,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC;IAC/E,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,eAAuB;QACxC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,eAAe,GAAG,EAAE,CAAC;QACpE,MAAM,IAAI,YAAY,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC;aAChD,KAAK,CAAC,eAAe,EAAE,GAAG,EAAE,MAAM,CAAC;aACnC,MAAM,EAAE,CAAC;IACd,CAAC;CACF;AAED,MAAM,OAAO,kBAAkB;IACZ,QAAQ,GAAG,IAAI,GAAG,EAAmC,CAAC;IAEvE,KAAK,CAAC,IAAI,CAAC,EAAU;QACnB,OAAO,EAAE,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,EAAE,CAAC,EAAE,CAAC;IAC9C,CAAC;IAED,KAAK,CAAC,KAAK,CACT,EAAU,EACV,IAA6B,EAC7B,gBAAwB;QAExB,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,EAAE,EAAE,GAAG,IAAI,EAAE,CAAC,CAAC;IACrC,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,EAAU;QACtB,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IAC3B,CAAC;CACF"}

package/dist/session.d.ts

@@ -0,0 +1,18 @@
+export interface SessionStore {
+    read(id: string): Promise<Record<string, unknown>>;
+    write(id: string, data: Record<string, unknown>, lifetimeMinutes: number): Promise<void>;
+    destroy(id: string): Promise<void>;
+}
+export declare class Session {
+    readonly id: string;
+    private data;
+    private dirty;
+    constructor(id: string, data: Record<string, unknown>);
+    get<T = unknown>(key: string, fallback?: T): T | undefined;
+    put(key: string, value: unknown): this;
+    forget(key: string): this;
+    all(): Record<string, unknown>;
+    isDirty(): boolean;
+    markClean(): void;
+}
+//# sourceMappingURL=session.d.ts.map

package/dist/session.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"session.d.ts","sourceRoot":"","sources":["../src/session.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,YAAY;IAC3B,IAAI,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IACnD,KAAK,CAAC,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,eAAe,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACzF,OAAO,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CACpC;AAED,qBAAa,OAAO;aAIA,EAAE,EAAE,MAAM;IAC1B,OAAO,CAAC,IAAI;IAJd,OAAO,CAAC,KAAK,CAAS;gBAGJ,EAAE,EAAE,MAAM,EAClB,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAGvC,GAAG,CAAC,CAAC,GAAG,OAAO,EAAE,GAAG,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,SAAS;IAK1D,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,IAAI;IAMtC,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;IAMzB,GAAG,IAAI,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAI9B,OAAO,IAAI,OAAO;IAIlB,SAAS,IAAI,IAAI;CAGlB"}

package/dist/session.js

@@ -0,0 +1,33 @@
+export class Session {
+    id;
+    data;
+    dirty = false;
+    constructor(id, data) {
+        this.id = id;
+        this.data = data;
+    }
+    get(key, fallback) {
+        const value = this.data[key];
+        return (value === undefined ? fallback : value);
+    }
+    put(key, value) {
+        this.data[key] = value;
+        this.dirty = true;
+        return this;
+    }
+    forget(key) {
+        delete this.data[key];
+        this.dirty = true;
+        return this;
+    }
+    all() {
+        return { ...this.data };
+    }
+    isDirty() {
+        return this.dirty;
+    }
+    markClean() {
+        this.dirty = false;
+    }
+}
+//# sourceMappingURL=session.js.map

package/dist/session.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"session.js","sourceRoot":"","sources":["../src/session.ts"],"names":[],"mappings":"AAMA,MAAM,OAAO,OAAO;IAIA;IACR;IAJF,KAAK,GAAG,KAAK,CAAC;IAEtB,YACkB,EAAU,EAClB,IAA6B;QADrB,OAAE,GAAF,EAAE,CAAQ;QAClB,SAAI,GAAJ,IAAI,CAAyB;IACpC,CAAC;IAEJ,GAAG,CAAc,GAAW,EAAE,QAAY;QACxC,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC7B,OAAO,CAAC,KAAK,KAAK,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAkB,CAAC;IACnE,CAAC;IAED,GAAG,CAAC,GAAW,EAAE,KAAc;QAC7B,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACvB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QAClB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,CAAC,GAAW;QAChB,OAAO,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACtB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QAClB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,GAAG;QACD,OAAO,EAAE,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;IAC1B,CAAC;IAED,OAAO;QACL,OAAO,IAAI,CAAC,KAAK,CAAC;IACpB,CAAC;IAED,SAAS;QACP,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;IACrB,CAAC;CACF"}

package/dist/token-guard.d.ts

@@ -0,0 +1,20 @@
+import type { TyravelRequest } from '@tyravel/http';
+import type { Authenticatable, Guard } from './types.js';
+import type { UserProvider } from './user-provider.js';
+import { PersonalAccessTokenRepository } from './personal-access-token-repository.js';
+export declare class TokenGuard implements Guard {
+    private readonly provider;
+    private readonly tokens;
+    readonly name: string;
+    private request?;
+    private currentUser;
+    private resolved;
+    constructor(name: string, provider: UserProvider, tokens: PersonalAccessTokenRepository);
+    setRequest(request: TyravelRequest): void;
+    user(): Authenticatable | null;
+    id(): string | number | null;
+    check(): Promise<boolean>;
+    authenticate(): Promise<Authenticatable | null>;
+    private resolve;
+}
+//# sourceMappingURL=token-guard.d.ts.map

package/dist/token-guard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-guard.d.ts","sourceRoot":"","sources":["../src/token-guard.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,KAAK,EAAE,eAAe,EAAE,KAAK,EAAE,MAAM,YAAY,CAAC;AACzD,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AACvD,OAAO,EAAE,6BAA6B,EAAE,MAAM,uCAAuC,CAAC;AAEtF,qBAAa,UAAW,YAAW,KAAK;IAQpC,OAAO,CAAC,QAAQ,CAAC,QAAQ;IACzB,OAAO,CAAC,QAAQ,CAAC,MAAM;IARzB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,OAAO,CAAC,OAAO,CAAC,CAAiB;IACjC,OAAO,CAAC,WAAW,CAAgC;IACnD,OAAO,CAAC,QAAQ,CAAS;gBAGvB,IAAI,EAAE,MAAM,EACK,QAAQ,EAAE,YAAY,EACtB,MAAM,EAAE,6BAA6B;IAKxD,UAAU,CAAC,OAAO,EAAE,cAAc,GAAG,IAAI;IAMzC,IAAI,IAAI,eAAe,GAAG,IAAI;IAI9B,EAAE,IAAI,MAAM,GAAG,MAAM,GAAG,IAAI;IAItB,KAAK,IAAI,OAAO,CAAC,OAAO,CAAC;IAKzB,YAAY,IAAI,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC;YAKvC,OAAO;CAwBtB"}

package/dist/token-guard.js

@@ -0,0 +1,51 @@
+export class TokenGuard {
+    provider;
+    tokens;
+    name;
+    request;
+    currentUser = null;
+    resolved = false;
+    constructor(name, provider, tokens) {
+        this.provider = provider;
+        this.tokens = tokens;
+        this.name = name;
+    }
+    setRequest(request) {
+        this.request = request;
+        this.currentUser = null;
+        this.resolved = false;
+    }
+    user() {
+        return this.currentUser;
+    }
+    id() {
+        return this.currentUser?.getAuthIdentifier() ?? null;
+    }
+    async check() {
+        await this.resolve();
+        return this.currentUser !== null;
+    }
+    async authenticate() {
+        await this.resolve();
+        return this.currentUser;
+    }
+    async resolve() {
+        if (this.resolved || !this.request) {
+            return;
+        }
+        this.resolved = true;
+        const header = this.request.header('authorization');
+        if (!header?.toLowerCase().startsWith('bearer ')) {
+            return;
+        }
+        const bearer = header.slice(7).trim();
+        if (!bearer) {
+            return;
+        }
+        this.currentUser = await this.tokens.findUserIdByBearerToken(bearer, (id) => this.provider.retrieveById(id));
+        if (this.currentUser) {
+            this.request.user = this.currentUser;
+        }
+    }
+}
+//# sourceMappingURL=token-guard.js.map

package/dist/token-guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-guard.js","sourceRoot":"","sources":["../src/token-guard.ts"],"names":[],"mappings":"AAKA,MAAM,OAAO,UAAU;IAQF;IACA;IARV,IAAI,CAAS;IACd,OAAO,CAAkB;IACzB,WAAW,GAA2B,IAAI,CAAC;IAC3C,QAAQ,GAAG,KAAK,CAAC;IAEzB,YACE,IAAY,EACK,QAAsB,EACtB,MAAqC;QADrC,aAAQ,GAAR,QAAQ,CAAc;QACtB,WAAM,GAAN,MAAM,CAA+B;QAEtD,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACnB,CAAC;IAED,UAAU,CAAC,OAAuB;QAChC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QACvB,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;QACxB,IAAI,CAAC,QAAQ,GAAG,KAAK,CAAC;IACxB,CAAC;IAED,IAAI;QACF,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED,EAAE;QACA,OAAO,IAAI,CAAC,WAAW,EAAE,iBAAiB,EAAE,IAAI,IAAI,CAAC;IACvD,CAAC;IAED,KAAK,CAAC,KAAK;QACT,MAAM,IAAI,CAAC,OAAO,EAAE,CAAC;QACrB,OAAO,IAAI,CAAC,WAAW,KAAK,IAAI,CAAC;IACnC,CAAC;IAED,KAAK,CAAC,YAAY;QAChB,MAAM,IAAI,CAAC,OAAO,EAAE,CAAC;QACrB,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAEO,KAAK,CAAC,OAAO;QACnB,IAAI,IAAI,CAAC,QAAQ,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YACnC,OAAO;QACT,CAAC;QAED,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;QACrB,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;QACpD,IAAI,CAAC,MAAM,EAAE,WAAW,EAAE,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YACjD,OAAO;QACT,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QACtC,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO;QACT,CAAC;QAED,IAAI,CAAC,WAAW,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,uBAAuB,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,EAAE,CAC1E,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC,CAC/B,CAAC;QAEF,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACrB,IAAI,CAAC,OAAO,CAAC,IAAI,GAAG,IAAI,CAAC,WAAW,CAAC;QACvC,CAAC;IACH,CAAC;CACF"}

package/dist/token.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=token.test.d.ts.map

package/dist/token.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token.test.d.ts","sourceRoot":"","sources":["../src/token.test.ts"],"names":[],"mappings":""}

package/dist/token.test.js

@@ -0,0 +1,11 @@
+import { describe, expect, it } from 'vitest';
+import { createHash } from 'node:crypto';
+function hashToken(token) {
+    return createHash('sha256').update(token).digest('hex');
+}
+describe('API token hashing', () => {
+    it('uses sha256 for storage', () => {
+        expect(hashToken('plain-token')).toBe(createHash('sha256').update('plain-token').digest('hex'));
+    });
+});
+//# sourceMappingURL=token.test.js.map

package/dist/token.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token.test.js","sourceRoot":"","sources":["../src/token.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAEzC,SAAS,SAAS,CAAC,KAAa;IAC9B,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AAC1D,CAAC;AAED,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;IACjC,EAAE,CAAC,yBAAyB,EAAE,GAAG,EAAE;QACjC,MAAM,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC,IAAI,CACnC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CACzD,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,73 @@
+import type { Model } from '@tyravel/database';
+import type { TyravelRequest } from '@tyravel/http';
+import type { Constructor } from '@tyravel/container';
+import type { Policy } from './policy.js';
+export interface Authenticatable {
+    getAuthIdentifier(): string | number;
+    getAuthPassword(): string;
+}
+export type UserModelConstructor = new (attributes?: Record<string, unknown>) => Model & Authenticatable;
+export interface SessionGuardConfig {
+    driver: 'session';
+    provider: string;
+}
+export interface TokenGuardConfig {
+    driver: 'token';
+    provider: string;
+    hashKey?: string;
+}
+export type GuardConfig = SessionGuardConfig | TokenGuardConfig;
+export interface EloquentUserProviderConfig {
+    driver: 'eloquent';
+    model: UserModelConstructor;
+}
+export interface PasswordBrokerConfig {
+    provider: string;
+    table: string;
+    expireMinutes: number;
+    connection?: string;
+}
+export interface OAuthProviderConfig {
+    clientId: string;
+    clientSecret: string;
+    redirectUri: string;
+    scopes?: string[];
+}
+export interface AuthConfig {
+    defaults: {
+        guard: string;
+    };
+    guards: Record<string, GuardConfig>;
+    providers: Record<string, EloquentUserProviderConfig>;
+    session: {
+        cookie: string;
+        lifetimeMinutes: number;
+        table: string;
+        connection?: string;
+    };
+    passwords?: Record<string, PasswordBrokerConfig>;
+    oauth?: {
+        providers: Record<string, OAuthProviderConfig>;
+        accountsTable?: string;
+        connection?: string;
+    };
+    policies?: Record<string, PolicyConstructor>;
+    tokens?: {
+        table: string;
+        connection?: string;
+    };
+}
+export interface Guard {
+    readonly name: string;
+    setRequest(request: TyravelRequest): void;
+    user(): Authenticatable | null;
+    id(): string | number | null;
+    check(): boolean | Promise<boolean>;
+}
+export type PolicyConstructor = Constructor<Policy>;
+export interface NewAccessToken {
+    plainTextToken: string;
+    name: string;
+    abilities: string[];
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,KAAK,EAAE,MAAM,mBAAmB,CAAC;AAC/C,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAE1C,MAAM,WAAW,eAAe;IAC9B,iBAAiB,IAAI,MAAM,GAAG,MAAM,CAAC;IACrC,eAAe,IAAI,MAAM,CAAC;CAC3B;AAED,MAAM,MAAM,oBAAoB,GAAG,KACjC,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KACjC,KAAK,GAAG,eAAe,CAAC;AAE7B,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,SAAS,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,gBAAgB;IAC/B,MAAM,EAAE,OAAO,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,MAAM,WAAW,GAAG,kBAAkB,GAAG,gBAAgB,CAAC;AAEhE,MAAM,WAAW,0BAA0B;IACzC,MAAM,EAAE,UAAU,CAAC;IACnB,KAAK,EAAE,oBAAoB,CAAC;CAC7B;AAED,MAAM,WAAW,oBAAoB;IACnC,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,mBAAmB;IAClC,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE;QACR,KAAK,EAAE,MAAM,CAAC;KACf,CAAC;IACF,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;IACpC,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,0BAA0B,CAAC,CAAC;IACtD,OAAO,EAAE;QACP,MAAM,EAAE,MAAM,CAAC;QACf,eAAe,EAAE,MAAM,CAAC;QACxB,KAAK,EAAE,MAAM,CAAC;QACd,UAAU,CAAC,EAAE,MAAM,CAAC;KACrB,CAAC;IACF,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,oBAAoB,CAAC,CAAC;IACjD,KAAK,CAAC,EAAE;QACN,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAC;QAC/C,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,UAAU,CAAC,EAAE,MAAM,CAAC;KACrB,CAAC;IACF,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,iBAAiB,CAAC,CAAC;IAC7C,MAAM,CAAC,EAAE;QACP,KAAK,EAAE,MAAM,CAAC;QACd,UAAU,CAAC,EAAE,MAAM,CAAC;KACrB,CAAC;CACH;AAED,MAAM,WAAW,KAAK;IACpB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,OAAO,EAAE,cAAc,GAAG,IAAI,CAAC;IAC1C,IAAI,IAAI,eAAe,GAAG,IAAI,CAAC;IAC/B,EAAE,IAAI,MAAM,GAAG,MAAM,GAAG,IAAI,CAAC;IAC7B,KAAK,IAAI,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;CACrC;AAED,MAAM,MAAM,iBAAiB,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC;AAEpD,MAAM,WAAW,cAAc;IAC7B,cAAc,EAAE,MAAM,CAAC;IACvB,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,MAAM,EAAE,CAAC;CACrB"}

package/dist/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":""}

package/dist/user-provider.d.ts

@@ -0,0 +1,15 @@
+import type { Authenticatable, UserModelConstructor } from './types.js';
+export interface UserProvider {
+    retrieveById(id: string | number): Promise<Authenticatable | null>;
+    retrieveByCredentials(credentials: Record<string, string>): Promise<Authenticatable | null>;
+    validateCredentials(user: Authenticatable, credentials: Record<string, string>): Promise<boolean>;
+}
+export declare class EloquentUserProvider implements UserProvider {
+    private readonly model;
+    private readonly hasher;
+    constructor(model: UserModelConstructor);
+    retrieveById(id: string | number): Promise<Authenticatable | null>;
+    retrieveByCredentials(credentials: Record<string, string>): Promise<Authenticatable | null>;
+    validateCredentials(user: Authenticatable, credentials: Record<string, string>): Promise<boolean>;
+}
+//# sourceMappingURL=user-provider.d.ts.map

package/dist/user-provider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-provider.d.ts","sourceRoot":"","sources":["../src/user-provider.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,eAAe,EAAE,oBAAoB,EAAE,MAAM,YAAY,CAAC;AAExE,MAAM,WAAW,YAAY;IAC3B,YAAY,CAAC,EAAE,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC,CAAC;IACnE,qBAAqB,CAAC,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC,CAAC;IAC5F,mBAAmB,CAAC,IAAI,EAAE,eAAe,EAAE,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;CACnG;AAED,qBAAa,oBAAqB,YAAW,YAAY;IAG3C,OAAO,CAAC,QAAQ,CAAC,KAAK;IAFlC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAgB;gBAEV,KAAK,EAAE,oBAAoB;IAElD,YAAY,CAAC,EAAE,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC;IAMlE,qBAAqB,CACzB,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAClC,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC;IAW5B,mBAAmB,CACvB,IAAI,EAAE,eAAe,EACrB,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAClC,OAAO,CAAC,OAAO,CAAC;CAQpB"}

package/dist/user-provider.js

@@ -0,0 +1,30 @@
+import { Hasher } from './hasher.js';
+export class EloquentUserProvider {
+    model;
+    hasher = new Hasher();
+    constructor(model) {
+        this.model = model;
+    }
+    async retrieveById(id) {
+        const ModelClass = this.model;
+        const user = await ModelClass.find(id);
+        return user;
+    }
+    async retrieveByCredentials(credentials) {
+        const email = credentials.email;
+        if (!email) {
+            return null;
+        }
+        const ModelClass = this.model;
+        const user = await ModelClass.query().where('email', email).firstModel();
+        return user;
+    }
+    async validateCredentials(user, credentials) {
+        const password = credentials.password;
+        if (!password) {
+            return false;
+        }
+        return this.hasher.check(password, user.getAuthPassword());
+    }
+}
+//# sourceMappingURL=user-provider.js.map

package/dist/user-provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-provider.js","sourceRoot":"","sources":["../src/user-provider.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAUrC,MAAM,OAAO,oBAAoB;IAGF;IAFZ,MAAM,GAAG,IAAI,MAAM,EAAE,CAAC;IAEvC,YAA6B,KAA2B;QAA3B,UAAK,GAAL,KAAK,CAAsB;IAAG,CAAC;IAE5D,KAAK,CAAC,YAAY,CAAC,EAAmB;QACpC,MAAM,UAAU,GAAG,IAAI,CAAC,KAAgC,CAAC;QACzD,MAAM,IAAI,GAAG,MAAM,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACvC,OAAO,IAA8B,CAAC;IACxC,CAAC;IAED,KAAK,CAAC,qBAAqB,CACzB,WAAmC;QAEnC,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC;QAChC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,UAAU,GAAG,IAAI,CAAC,KAAgC,CAAC;QACzD,MAAM,IAAI,GAAG,MAAM,UAAU,CAAC,KAAK,EAAE,CAAC,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC,UAAU,EAAE,CAAC;QACzE,OAAO,IAA8B,CAAC;IACxC,CAAC;IAED,KAAK,CAAC,mBAAmB,CACvB,IAAqB,EACrB,WAAmC;QAEnC,MAAM,QAAQ,GAAG,WAAW,CAAC,QAAQ,CAAC;QACtC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,EAAE,IAAI,CAAC,eAAe,EAAE,CAAC,CAAC;IAC7D,CAAC;CACF"}

package/package.json

@@ -0,0 +1,41 @@
+{
+  "name": "@tyravel/auth",
+  "version": "0.1.0",
+  "type": "module",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js"
+    }
+  },
+  "scripts": {
+    "build": "tsc -p tsconfig.json",
+    "typecheck": "tsc -p tsconfig.json --noEmit"
+  },
+  "dependencies": {
+    "@tyravel/container": "0.1.0",
+    "@tyravel/database": "0.1.0",
+    "@tyravel/http": "0.1.0"
+  },
+  "files": [
+    "dist"
+  ],
+  "engines": {
+    "node": ">=22"
+  },
+  "devDependencies": {
+    "@types/node": "^22.15.30"
+  },
+  "description": "Authentication and authorization for Tyravel",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/thesimonharms/tyravel.git",
+    "directory": "packages/auth"
+  },
+  "publishConfig": {
+    "access": "public"
+  }
+}