npm - @valentine-efagene/qshelter-common - Versions diffs - 2.0.131 → 2.0.133 - Mend

@valentine-efagene/qshelter-common 2.0.131 → 2.0.133

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/src/middleware/auth-context.d.ts +3 -2
package/dist/src/middleware/auth-context.js +14 -3
package/dist/src/middleware/tenant.d.ts +13 -1
package/dist/src/middleware/tenant.js +4 -1
package/package.json +1 -1

package/dist/src/middleware/auth-context.d.ts CHANGED Viewed

@@ -23,8 +23,9 @@ export interface AuthContext {
  * Extracts auth context from API Gateway authorizer or JWT token.
  *
  * Priority:
- * 1. Production: requestContext.authorizer (set by API Gateway Lambda Authorizer)
- * 2. Fallback: Decode JWT from Authorization header (LocalStack/dev/tests)
+ * 1. HTTP API v2 simple response: requestContext.authorizer.lambda (enableSimpleResponses=true)
+ * 2. REST API / HTTP API: requestContext.authorizer (enableSimpleResponses=false)
+ * 3. Fallback: Decode JWT from Authorization header (LocalStack/dev/tests)
  *
  * In production, the Lambda Authorizer validates the JWT and injects context.
  * In LocalStack (no authorizer), we decode the JWT directly since it contains

package/dist/src/middleware/auth-context.js CHANGED Viewed

@@ -19,8 +19,9 @@ function decodeJwtPayload(token) {
  * Extracts auth context from API Gateway authorizer or JWT token.
  *
  * Priority:
- * 1. Production: requestContext.authorizer (set by API Gateway Lambda Authorizer)
- * 2. Fallback: Decode JWT from Authorization header (LocalStack/dev/tests)
+ * 1. HTTP API v2 simple response: requestContext.authorizer.lambda (enableSimpleResponses=true)
+ * 2. REST API / HTTP API: requestContext.authorizer (enableSimpleResponses=false)
+ * 3. Fallback: Decode JWT from Authorization header (LocalStack/dev/tests)
  *
  * In production, the Lambda Authorizer validates the JWT and injects context.
  * In LocalStack (no authorizer), we decode the JWT directly since it contains
@@ -31,8 +32,18 @@ function decodeJwtPayload(token) {
  */
 export function extractAuthContext(req) {
     const lambdaReq = req;
-    // Production: API Gateway Lambda integration populates requestContext
     const authorizer = lambdaReq.requestContext?.authorizer;
+    // HTTP API v2 with enableSimpleResponses=true: context is under authorizer.lambda
+    const lambdaContext = authorizer?.lambda;
+    if (lambdaContext?.userId && lambdaContext?.tenantId) {
+        return {
+            userId: lambdaContext.userId,
+            tenantId: lambdaContext.tenantId,
+            email: lambdaContext.email,
+            roles: lambdaContext.roles ? JSON.parse(lambdaContext.roles) : [],
+        };
+    }
+    // REST API / HTTP API with enableSimpleResponses=false: context is directly on authorizer
     if (authorizer?.userId && authorizer?.tenantId) {
         return {
             userId: authorizer.userId,

package/dist/src/middleware/tenant.d.ts CHANGED Viewed

@@ -10,7 +10,13 @@ declare global {
             tenantContext?: TenantContext;
             tenantPrisma?: TenantPrismaClient | PrismaClient;
             /**
-             * API Gateway context added by serverless-express
+             * API Gateway context added by serverless-express.
+             *
+             * With HTTP API v2 and enableSimpleResponses=true, context is under:
+             *   authorizer.lambda.{field}
+             *
+             * With REST API or enableSimpleResponses=false, context is under:
+             *   authorizer.{field}
              */
             apiGateway?: {
                 event: {
@@ -20,6 +26,12 @@ declare global {
                             email?: string;
                             roles?: string;
                             tenantId?: string;
+                            lambda?: {
+                                userId?: string;
+                                email?: string;
+                                roles?: string;
+                                tenantId?: string;
+                            };
                         };
                     };
                 };

package/dist/src/middleware/tenant.js CHANGED Viewed

@@ -21,7 +21,10 @@ export function createTenantMiddleware(options) {
     return function tenantMiddleware(req, res, next) {
         try {
             // 1. Try Lambda authorizer context first (production)
-            const authorizerContext = req.apiGateway?.event?.requestContext?.authorizer;
+            // HTTP API v2 with enableSimpleResponses=true nests context under authorizer.lambda
+            const authorizer = req.apiGateway?.event?.requestContext?.authorizer;
+            const lambdaContext = authorizer?.lambda;
+            const authorizerContext = lambdaContext || authorizer;
             // 2. Fall back to x-authorizer-* headers (test/development)
             const headers = req.headers;
             const tenantId = authorizerContext?.tenantId || headers['x-authorizer-tenant-id'];

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@valentine-efagene/qshelter-common",
-  "version": "2.0.131",
+  "version": "2.0.133",
   "description": "Shared database schemas and utilities for QShelter services",
   "main": "dist/src/index.js",
   "types": "dist/src/index.d.ts",