@volontariapp/auth 1.0.0-next.20260403124714

package/dist/auth.module.d.ts

@@ -0,0 +1,6 @@
+import type { DynamicModule } from '@nestjs/common';
+import type { AuthConfig } from './interfaces/index.js';
+export declare class AuthModule {
+    static register(options: AuthConfig): DynamicModule;
+}
+//# sourceMappingURL=auth.module.d.ts.map

package/dist/auth.module.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.module.d.ts","sourceRoot":"","sources":["../src/auth.module.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAIpD,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAC;AAGxD,qBAEa,UAAU;IACrB,MAAM,CAAC,QAAQ,CAAC,OAAO,EAAE,UAAU,GAAG,aAAa;CAcpD"}

package/dist/auth.module.js

@@ -0,0 +1,33 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var AuthModule_1;
+import { Module, Global } from '@nestjs/common';
+import { JwtService } from './services/jwt.service.js';
+import { AUTH_OPTIONS } from './constants/index.js';
+import { GrpcMetadataHelper } from './services/grpc-metadata.helper.js';
+let AuthModule = AuthModule_1 = class AuthModule {
+    static register(options) {
+        return {
+            module: AuthModule_1,
+            providers: [
+                {
+                    provide: AUTH_OPTIONS,
+                    useValue: options,
+                },
+                JwtService,
+                GrpcMetadataHelper,
+            ],
+            exports: [JwtService, GrpcMetadataHelper],
+        };
+    }
+};
+AuthModule = AuthModule_1 = __decorate([
+    Global(),
+    Module({})
+], AuthModule);
+export { AuthModule };
+//# sourceMappingURL=auth.module.js.map

package/dist/auth.module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.module.js","sourceRoot":"","sources":["../src/auth.module.ts"],"names":[],"mappings":";;;;;;;AACA,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,gBAAgB,CAAC;AAChD,OAAO,EAAE,UAAU,EAAE,MAAM,2BAA2B,CAAC;AACvD,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AAEpD,OAAO,EAAE,kBAAkB,EAAE,MAAM,oCAAoC,CAAC;AAIjE,IAAM,UAAU,kBAAhB,MAAM,UAAU;IACrB,MAAM,CAAC,QAAQ,CAAC,OAAmB;QACjC,OAAO;YACL,MAAM,EAAE,YAAU;YAClB,SAAS,EAAE;gBACT;oBACE,OAAO,EAAE,YAAY;oBACrB,QAAQ,EAAE,OAAO;iBAClB;gBACD,UAAU;gBACV,kBAAkB;aACnB;YACD,OAAO,EAAE,CAAC,UAAU,EAAE,kBAAkB,CAAC;SAC1C,CAAC;IACJ,CAAC;CACF,CAAA;AAfY,UAAU;IAFtB,MAAM,EAAE;IACR,MAAM,CAAC,EAAE,CAAC;GACE,UAAU,CAetB"}

package/dist/constants/index.d.ts

@@ -0,0 +1,3 @@
+export declare const INTERNAL_TOKEN_METADATA_KEY = "x-internal-token";
+export declare const AUTH_OPTIONS = "AUTH_OPTIONS";
+//# sourceMappingURL=index.d.ts.map

package/dist/constants/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/constants/index.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,2BAA2B,qBAAqB,CAAC;AAC9D,eAAO,MAAM,YAAY,iBAAiB,CAAC"}

package/dist/constants/index.js

@@ -0,0 +1,3 @@
+export const INTERNAL_TOKEN_METADATA_KEY = 'x-internal-token';
+export const AUTH_OPTIONS = 'AUTH_OPTIONS';
+//# sourceMappingURL=index.js.map

package/dist/constants/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/constants/index.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,2BAA2B,GAAG,kBAAkB,CAAC;AAC9D,MAAM,CAAC,MAAM,YAAY,GAAG,cAAc,CAAC"}

package/dist/decorators/current-user.decorator.d.ts

@@ -0,0 +1,2 @@
+export declare const CurrentUser: (...dataOrPipes: unknown[]) => ParameterDecorator;
+//# sourceMappingURL=current-user.decorator.d.ts.map

package/dist/decorators/current-user.decorator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"current-user.decorator.d.ts","sourceRoot":"","sources":["../../src/decorators/current-user.decorator.ts"],"names":[],"mappings":"AAIA,eAAO,MAAM,WAAW,mDASvB,CAAC"}

package/dist/decorators/current-user.decorator.js

@@ -0,0 +1,10 @@
+import { createParamDecorator } from '@nestjs/common';
+export const CurrentUser = createParamDecorator((_data, ctx) => {
+    if (ctx.getType() === 'rpc') {
+        const rpcContext = ctx.switchToRpc().getContext();
+        return rpcContext.user;
+    }
+    const request = ctx.switchToHttp().getRequest();
+    return request.user;
+});
+//# sourceMappingURL=current-user.decorator.js.map

package/dist/decorators/current-user.decorator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"current-user.decorator.js","sourceRoot":"","sources":["../../src/decorators/current-user.decorator.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,oBAAoB,EAAE,MAAM,gBAAgB,CAAC;AAGtD,MAAM,CAAC,MAAM,WAAW,GAAG,oBAAoB,CAC7C,CAAC,KAAc,EAAE,GAAqB,EAAwB,EAAE;IAC9D,IAAI,GAAG,CAAC,OAAO,EAAE,KAAK,KAAK,EAAE,CAAC;QAC5B,MAAM,UAAU,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC,UAAU,EAA2B,CAAC;QAC3E,OAAO,UAAU,CAAC,IAA4B,CAAC;IACjD,CAAC;IACD,MAAM,OAAO,GAAG,GAAG,CAAC,YAAY,EAAE,CAAC,UAAU,EAAuB,CAAC;IACrE,OAAO,OAAO,CAAC,IAAI,CAAC;AACtB,CAAC,CACF,CAAC"}

package/dist/guards/grpc-internal.guard.d.ts

@@ -0,0 +1,9 @@
+import type { CanActivate, ExecutionContext } from '@nestjs/common';
+import type { JwtService } from '../services/jwt.service.js';
+export declare class GrpcInternalGuard implements CanActivate {
+    private readonly jwtService;
+    private readonly logger;
+    constructor(jwtService: JwtService);
+    canActivate(context: ExecutionContext): Promise<boolean>;
+}
+//# sourceMappingURL=grpc-internal.guard.d.ts.map

package/dist/guards/grpc-internal.guard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"grpc-internal.guard.d.ts","sourceRoot":"","sources":["../../src/guards/grpc-internal.guard.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AAIpE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AAG7D,qBACa,iBAAkB,YAAW,WAAW;IAGvC,OAAO,CAAC,QAAQ,CAAC,UAAU;IAFvC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAsC;gBAEhC,UAAU,EAAE,UAAU;IAE7C,WAAW,CAAC,OAAO,EAAE,gBAAgB,GAAG,OAAO,CAAC,OAAO,CAAC;CA6B/D"}

package/dist/guards/grpc-internal.guard.js

@@ -0,0 +1,50 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var GrpcInternalGuard_1;
+import { Injectable, Logger } from '@nestjs/common';
+import { UnauthorizedError } from '@volontariapp/errors';
+import { INTERNAL_TOKEN_METADATA_KEY } from '../constants/index.js';
+let GrpcInternalGuard = GrpcInternalGuard_1 = class GrpcInternalGuard {
+    jwtService;
+    logger = new Logger(GrpcInternalGuard_1.name);
+    constructor(jwtService) {
+        this.jwtService = jwtService;
+    }
+    async canActivate(context) {
+        if (context.getType() !== 'rpc') {
+            return true;
+        }
+        const rpcArgumentsHost = context.switchToRpc();
+        const metadata = rpcArgumentsHost.getContext();
+        const tokens = metadata.get(INTERNAL_TOKEN_METADATA_KEY);
+        if (tokens.length === 0) {
+            this.logger.warn(`Missing ${INTERNAL_TOKEN_METADATA_KEY} in metadata`);
+            throw new UnauthorizedError('Missing internal token');
+        }
+        const token = tokens[0];
+        try {
+            const user = await this.jwtService.verifyInternal(token);
+            const rpcContext = rpcArgumentsHost.getContext();
+            rpcContext.user = user;
+            return true;
+        }
+        catch (error) {
+            const message = error instanceof Error ? error.message : 'Unknown error';
+            this.logger.error(`Invalid internal token: ${message}`);
+            throw new UnauthorizedError('Invalid internal token');
+        }
+    }
+};
+GrpcInternalGuard = GrpcInternalGuard_1 = __decorate([
+    Injectable(),
+    __metadata("design:paramtypes", [Function])
+], GrpcInternalGuard);
+export { GrpcInternalGuard };
+//# sourceMappingURL=grpc-internal.guard.js.map

package/dist/guards/grpc-internal.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"grpc-internal.guard.js","sourceRoot":"","sources":["../../src/guards/grpc-internal.guard.ts"],"names":[],"mappings":";;;;;;;;;;AACA,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,MAAM,gBAAgB,CAAC;AACpD,OAAO,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAGzD,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AAG7D,IAAM,iBAAiB,yBAAvB,MAAM,iBAAiB;IAGC;IAFZ,MAAM,GAAG,IAAI,MAAM,CAAC,mBAAiB,CAAC,IAAI,CAAC,CAAC;IAE7D,YAA6B,UAAsB;QAAtB,eAAU,GAAV,UAAU,CAAY;IAAG,CAAC;IAEvD,KAAK,CAAC,WAAW,CAAC,OAAyB;QACzC,IAAI,OAAO,CAAC,OAAO,EAAE,KAAK,KAAK,EAAE,CAAC;YAChC,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,gBAAgB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;QAC/C,MAAM,QAAQ,GAAG,gBAAgB,CAAC,UAAU,EAAY,CAAC;QACzD,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,2BAA2B,CAAC,CAAC;QAEzD,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxB,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,2BAA2B,cAAc,CAAC,CAAC;YACvE,MAAM,IAAI,iBAAiB,CAAC,wBAAwB,CAAC,CAAC;QACxD,CAAC;QAED,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,CAAW,CAAC;QAElC,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;YAEzD,MAAM,UAAU,GAAG,gBAAgB,CAAC,UAAU,EAA2B,CAAC;YAC1E,UAAU,CAAC,IAAI,GAAG,IAAI,CAAC;YAEvB,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAc,EAAE,CAAC;YACxB,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YACzE,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,2BAA2B,OAAO,EAAE,CAAC,CAAC;YACxD,MAAM,IAAI,iBAAiB,CAAC,wBAAwB,CAAC,CAAC;QACxD,CAAC;IACH,CAAC;CACF,CAAA;AAlCY,iBAAiB;IAD7B,UAAU,EAAE;;GACA,iBAAiB,CAkC7B"}

package/dist/index.d.ts

@@ -0,0 +1,10 @@
+import 'reflect-metadata';
+export * from './constants/index.js';
+export * from './interfaces/index.js';
+export * from './services/jwt.service.js';
+export * from './services/grpc-metadata.helper.js';
+export * from './auth.module.js';
+export * from './guards/grpc-internal.guard.js';
+export * from './decorators/current-user.decorator.js';
+export * from './interceptors/grpc-internal.interceptor.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,kBAAkB,CAAC;AAE1B,cAAc,sBAAsB,CAAC;AACrC,cAAc,uBAAuB,CAAC;AACtC,cAAc,2BAA2B,CAAC;AAC1C,cAAc,oCAAoC,CAAC;AACnD,cAAc,kBAAkB,CAAC;AACjC,cAAc,iCAAiC,CAAC;AAChD,cAAc,wCAAwC,CAAC;AACvD,cAAc,6CAA6C,CAAC"}

package/dist/index.js

@@ -0,0 +1,10 @@
+import 'reflect-metadata';
+export * from './constants/index.js';
+export * from './interfaces/index.js';
+export * from './services/jwt.service.js';
+export * from './services/grpc-metadata.helper.js';
+export * from './auth.module.js';
+export * from './guards/grpc-internal.guard.js';
+export * from './decorators/current-user.decorator.js';
+export * from './interceptors/grpc-internal.interceptor.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,kBAAkB,CAAC;AAE1B,cAAc,sBAAsB,CAAC;AACrC,cAAc,uBAAuB,CAAC;AACtC,cAAc,2BAA2B,CAAC;AAC1C,cAAc,oCAAoC,CAAC;AACnD,cAAc,kBAAkB,CAAC;AACjC,cAAc,iCAAiC,CAAC;AAChD,cAAc,wCAAwC,CAAC;AACvD,cAAc,6CAA6C,CAAC"}

package/dist/interceptors/grpc-internal.interceptor.d.ts

@@ -0,0 +1,9 @@
+import type { CallHandler, ExecutionContext, NestInterceptor } from '@nestjs/common';
+import type { Observable } from 'rxjs';
+import type { JwtService } from '../services/jwt.service.js';
+export declare class GrpcInternalInterceptor implements NestInterceptor {
+    private readonly jwtService;
+    constructor(jwtService: JwtService);
+    intercept(context: ExecutionContext, next: CallHandler): Observable<unknown>;
+}
+//# sourceMappingURL=grpc-internal.interceptor.d.ts.map

package/dist/interceptors/grpc-internal.interceptor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"grpc-internal.interceptor.d.ts","sourceRoot":"","sources":["../../src/interceptors/grpc-internal.interceptor.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAErF,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,MAAM,CAAC;AAGvC,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AAG7D,qBACa,uBAAwB,YAAW,eAAe;IACjD,OAAO,CAAC,QAAQ,CAAC,UAAU;gBAAV,UAAU,EAAE,UAAU;IAEnD,SAAS,CAAC,OAAO,EAAE,gBAAgB,EAAE,IAAI,EAAE,WAAW,GAAG,UAAU,CAAC,OAAO,CAAC;CAc7E"}

package/dist/interceptors/grpc-internal.interceptor.js

@@ -0,0 +1,34 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+import { Injectable } from '@nestjs/common';
+import { from } from 'rxjs';
+import { switchMap } from 'rxjs/operators';
+let GrpcInternalInterceptor = class GrpcInternalInterceptor {
+    jwtService;
+    constructor(jwtService) {
+        this.jwtService = jwtService;
+    }
+    intercept(context, next) {
+        const httpRequest = context.switchToHttp().getRequest();
+        const user = httpRequest.user;
+        if (!user) {
+            return next.handle();
+        }
+        return from(this.jwtService.signInternal(user)).pipe(switchMap((_token) => {
+            return next.handle();
+        }));
+    }
+};
+GrpcInternalInterceptor = __decorate([
+    Injectable(),
+    __metadata("design:paramtypes", [Function])
+], GrpcInternalInterceptor);
+export { GrpcInternalInterceptor };
+//# sourceMappingURL=grpc-internal.interceptor.js.map

package/dist/interceptors/grpc-internal.interceptor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"grpc-internal.interceptor.js","sourceRoot":"","sources":["../../src/interceptors/grpc-internal.interceptor.ts"],"names":[],"mappings":";;;;;;;;;AACA,OAAO,EAAE,UAAU,EAAE,MAAM,gBAAgB,CAAC;AAE5C,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAKpC,IAAM,uBAAuB,GAA7B,MAAM,uBAAuB;IACL;IAA7B,YAA6B,UAAsB;QAAtB,eAAU,GAAV,UAAU,CAAY;IAAG,CAAC;IAEvD,SAAS,CAAC,OAAyB,EAAE,IAAiB;QACpD,MAAM,WAAW,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAuB,CAAC;QAC7E,MAAM,IAAI,GAAG,WAAW,CAAC,IAAI,CAAC;QAE9B,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,IAAI,CAAC,MAAM,EAAE,CAAC;QACvB,CAAC;QAED,OAAO,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAClD,SAAS,CAAC,CAAC,MAAM,EAAE,EAAE;YACnB,OAAO,IAAI,CAAC,MAAM,EAAE,CAAC;QACvB,CAAC,CAAC,CACH,CAAC;IACJ,CAAC;CACF,CAAA;AAjBY,uBAAuB;IADnC,UAAU,EAAE;;GACA,uBAAuB,CAiBnC"}

package/dist/interfaces/auth-config.interface.d.ts

@@ -0,0 +1,7 @@
+export interface AuthConfig {
+    internalSecret: string;
+    gatewaySecret: string;
+    internalExpiresIn: number;
+    gatewayExpiresIn: number;
+}
+//# sourceMappingURL=auth-config.interface.d.ts.map

package/dist/interfaces/auth-config.interface.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-config.interface.d.ts","sourceRoot":"","sources":["../../src/interfaces/auth-config.interface.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,UAAU;IACzB,cAAc,EAAE,MAAM,CAAC;IACvB,aAAa,EAAE,MAAM,CAAC;IACtB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,gBAAgB,EAAE,MAAM,CAAC;CAC1B"}

package/dist/interfaces/auth-config.interface.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=auth-config.interface.js.map

package/dist/interfaces/auth-config.interface.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-config.interface.js","sourceRoot":"","sources":["../../src/interfaces/auth-config.interface.ts"],"names":[],"mappings":""}

package/dist/interfaces/auth-user.interface.d.ts

@@ -0,0 +1,5 @@
+export interface AuthUser {
+    id: string;
+    role: string;
+}
+//# sourceMappingURL=auth-user.interface.d.ts.map

package/dist/interfaces/auth-user.interface.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-user.interface.d.ts","sourceRoot":"","sources":["../../src/interfaces/auth-user.interface.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;CACd"}

package/dist/interfaces/auth-user.interface.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=auth-user.interface.js.map

package/dist/interfaces/auth-user.interface.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-user.interface.js","sourceRoot":"","sources":["../../src/interfaces/auth-user.interface.ts"],"names":[],"mappings":""}

package/dist/interfaces/index.d.ts

@@ -0,0 +1,3 @@
+export * from './auth-user.interface.js';
+export * from './auth-config.interface.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/interfaces/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/interfaces/index.ts"],"names":[],"mappings":"AAAA,cAAc,0BAA0B,CAAC;AACzC,cAAc,4BAA4B,CAAC"}

package/dist/interfaces/index.js

@@ -0,0 +1,3 @@
+export * from './auth-user.interface.js';
+export * from './auth-config.interface.js';
+//# sourceMappingURL=index.js.map

package/dist/interfaces/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/interfaces/index.ts"],"names":[],"mappings":"AAAA,cAAc,0BAA0B,CAAC;AACzC,cAAc,4BAA4B,CAAC"}

package/dist/services/grpc-metadata.helper.d.ts

@@ -0,0 +1,9 @@
+import { Metadata } from '@grpc/grpc-js';
+import type { JwtService } from './jwt.service.js';
+import type { AuthUser } from '../interfaces/index.js';
+export declare class GrpcMetadataHelper {
+    private readonly jwtService;
+    constructor(jwtService: JwtService);
+    createInternalMetadata(user: AuthUser): Promise<Metadata>;
+}
+//# sourceMappingURL=grpc-metadata.helper.d.ts.map

package/dist/services/grpc-metadata.helper.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"grpc-metadata.helper.d.ts","sourceRoot":"","sources":["../../src/services/grpc-metadata.helper.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AACzC,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAEnD,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,wBAAwB,CAAC;AAEvD,qBACa,kBAAkB;IACjB,OAAO,CAAC,QAAQ,CAAC,UAAU;gBAAV,UAAU,EAAE,UAAU;IAE7C,sBAAsB,CAAC,IAAI,EAAE,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;CAMhE"}

package/dist/services/grpc-metadata.helper.js

@@ -0,0 +1,30 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+import { Injectable } from '@nestjs/common';
+import { Metadata } from '@grpc/grpc-js';
+import { INTERNAL_TOKEN_METADATA_KEY } from '../constants/index.js';
+let GrpcMetadataHelper = class GrpcMetadataHelper {
+    jwtService;
+    constructor(jwtService) {
+        this.jwtService = jwtService;
+    }
+    async createInternalMetadata(user) {
+        const metadata = new Metadata();
+        const token = await this.jwtService.signInternal(user);
+        metadata.add(INTERNAL_TOKEN_METADATA_KEY, token);
+        return metadata;
+    }
+};
+GrpcMetadataHelper = __decorate([
+    Injectable(),
+    __metadata("design:paramtypes", [Function])
+], GrpcMetadataHelper);
+export { GrpcMetadataHelper };
+//# sourceMappingURL=grpc-metadata.helper.js.map

package/dist/services/grpc-metadata.helper.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"grpc-metadata.helper.js","sourceRoot":"","sources":["../../src/services/grpc-metadata.helper.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,gBAAgB,CAAC;AAC5C,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AAEzC,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AAI7D,IAAM,kBAAkB,GAAxB,MAAM,kBAAkB;IACA;IAA7B,YAA6B,UAAsB;QAAtB,eAAU,GAAV,UAAU,CAAY;IAAG,CAAC;IAEvD,KAAK,CAAC,sBAAsB,CAAC,IAAc;QACzC,MAAM,QAAQ,GAAG,IAAI,QAAQ,EAAE,CAAC;QAChC,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;QACvD,QAAQ,CAAC,GAAG,CAAC,2BAA2B,EAAE,KAAK,CAAC,CAAC;QACjD,OAAO,QAAQ,CAAC;IAClB,CAAC;CACF,CAAA;AATY,kBAAkB;IAD9B,UAAU,EAAE;;GACA,kBAAkB,CAS9B"}

package/dist/services/jwt.service.d.ts

@@ -0,0 +1,11 @@
+import type { AuthConfig, AuthUser } from '../interfaces/index.js';
+export declare class JwtService {
+    private readonly options;
+    private readonly internalSecret;
+    private readonly gatewaySecret?;
+    constructor(options: AuthConfig);
+    signInternal(user: AuthUser): Promise<string>;
+    verifyInternal(token: string): Promise<AuthUser>;
+    verifyExternal(token: string): Promise<AuthUser>;
+}
+//# sourceMappingURL=jwt.service.d.ts.map

package/dist/services/jwt.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt.service.d.ts","sourceRoot":"","sources":["../../src/services/jwt.service.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,wBAAwB,CAAC;AAEnE,qBACa,UAAU;IAIa,OAAO,CAAC,QAAQ,CAAC,OAAO;IAH1D,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAa;IAC5C,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAa;gBAEO,OAAO,EAAE,UAAU;IAkBhE,YAAY,CAAC,IAAI,EAAE,QAAQ,GAAG,OAAO,CAAC,MAAM,CAAC;IAY7C,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC;IAKhD,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC;CAQvD"}

package/dist/services/jwt.service.js

@@ -0,0 +1,66 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+import { Inject, Injectable } from '@nestjs/common';
+import * as jose from 'jose';
+import { InternalServerError } from '@volontariapp/errors';
+import { AUTH_OPTIONS } from '../constants/index.js';
+let JwtService = class JwtService {
+    options;
+    internalSecret;
+    gatewaySecret;
+    constructor(options) {
+        this.options = options;
+        if (!options.internalSecret) {
+            throw new InternalServerError('Internal secret not configured', 'AUTH_CONFIG_ERROR');
+        }
+        if (!options.internalExpiresIn) {
+            throw new InternalServerError('Internal expiration time not configured', 'AUTH_CONFIG_ERROR');
+        }
+        if (!options.gatewaySecret) {
+            throw new InternalServerError('Gateway secret not configured', 'AUTH_CONFIG_ERROR');
+        }
+        if (!options.gatewayExpiresIn) {
+            throw new InternalServerError('Gateway expiration time not configured', 'AUTH_CONFIG_ERROR');
+        }
+        this.internalSecret = new TextEncoder().encode(options.internalSecret);
+        this.gatewaySecret = new TextEncoder().encode(options.gatewaySecret);
+    }
+    async signInternal(user) {
+        const sessionPayload = { ...user };
+        const token = await new jose.SignJWT(sessionPayload)
+            .setProtectedHeader({ alg: 'HS256' })
+            .setIssuedAt()
+            .setExpirationTime(this.options.internalExpiresIn.toString())
+            .sign(this.internalSecret);
+        return token;
+    }
+    async verifyInternal(token) {
+        const { payload } = await jose.jwtVerify(token, this.internalSecret);
+        return payload;
+    }
+    async verifyExternal(token) {
+        const secret = this.gatewaySecret;
+        if (!secret) {
+            throw new InternalServerError('Gateway secret not configured', 'AUTH_CONFIG_ERROR');
+        }
+        const { payload } = await jose.jwtVerify(token, secret);
+        return payload;
+    }
+};
+JwtService = __decorate([
+    Injectable(),
+    __param(0, Inject(AUTH_OPTIONS)),
+    __metadata("design:paramtypes", [Object])
+], JwtService);
+export { JwtService };
+//# sourceMappingURL=jwt.service.js.map

package/dist/services/jwt.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt.service.js","sourceRoot":"","sources":["../../src/services/jwt.service.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,gBAAgB,CAAC;AACpD,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,EAAE,mBAAmB,EAAE,MAAM,sBAAsB,CAAC;AAC3D,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AAI9C,IAAM,UAAU,GAAhB,MAAM,UAAU;IAI8B;IAHlC,cAAc,CAAa;IAC3B,aAAa,CAAc;IAE5C,YAAmD,OAAmB;QAAnB,YAAO,GAAP,OAAO,CAAY;QACpE,IAAI,CAAC,OAAO,CAAC,cAAc,EAAE,CAAC;YAC5B,MAAM,IAAI,mBAAmB,CAAC,gCAAgC,EAAE,mBAAmB,CAAC,CAAC;QACvF,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,iBAAiB,EAAE,CAAC;YAC/B,MAAM,IAAI,mBAAmB,CAAC,yCAAyC,EAAE,mBAAmB,CAAC,CAAC;QAChG,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,CAAC;YAC3B,MAAM,IAAI,mBAAmB,CAAC,+BAA+B,EAAE,mBAAmB,CAAC,CAAC;QACtF,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,gBAAgB,EAAE,CAAC;YAC9B,MAAM,IAAI,mBAAmB,CAAC,wCAAwC,EAAE,mBAAmB,CAAC,CAAC;QAC/F,CAAC;QAED,IAAI,CAAC,cAAc,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;QACvE,IAAI,CAAC,aAAa,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;IACvE,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,IAAc;QAC/B,MAAM,cAAc,GAAoB,EAAE,GAAG,IAAI,EAAE,CAAC;QAEpD,MAAM,KAAK,GAAG,MAAM,IAAI,IAAI,CAAC,OAAO,CAAC,cAAc,CAAC;aACjD,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC;aACpC,WAAW,EAAE;aACb,iBAAiB,CAAC,IAAI,CAAC,OAAO,CAAC,iBAAiB,CAAC,QAAQ,EAAE,CAAC;aAC5D,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAE7B,OAAO,KAAK,CAAC;IACf,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,KAAa;QAChC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC;QACrE,OAAO,OAA8B,CAAC;IACxC,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,KAAa;QAChC,MAAM,MAAM,GAAG,IAAI,CAAC,aAAa,CAAC;QAClC,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,IAAI,mBAAmB,CAAC,+BAA+B,EAAE,mBAAmB,CAAC,CAAC;QACtF,CAAC;QACD,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;QACxD,OAAO,OAA8B,CAAC;IACxC,CAAC;CACF,CAAA;AA/CY,UAAU;IADtB,UAAU,EAAE;IAKE,WAAA,MAAM,CAAC,YAAY,CAAC,CAAA;;GAJtB,UAAU,CA+CtB"}

package/package.json

@@ -0,0 +1,55 @@
+{
+  "name": "@volontariapp/auth",
+  "version": "1.0.0-next.20260403124714",
+  "publishConfig": {
+    "access": "public",
+    "provenance": true
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/Volontariapp/npm-packages.git"
+  },
+  "description": "",
+  "license": "UNLICENSED",
+  "type": "module",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "engines": {
+    "node": ">=24.14.0"
+  },
+  "scripts": {
+    "prepublishOnly": "yarn build",
+    "build": "tsc -p tsconfig.json",
+    "lint": "eslint src/",
+    "test": "echo \"No tests yet\""
+  },
+  "dependencies": {
+    "@volontariapp/errors": "0.2.0",
+    "jose": "^6.2.2",
+    "reflect-metadata": "^0.2.2",
+    "rxjs": "^7.8.1"
+  },
+  "peerDependencies": {
+    "@grpc/grpc-js": "^1.12.0",
+    "@nestjs/common": "^10.0.0 || ^11.0.0",
+    "@nestjs/core": "^10.0.0 || ^11.0.0",
+    "@nestjs/microservices": "^10.0.0 || ^11.0.0"
+  },
+  "devDependencies": {
+    "@grpc/grpc-js": "^1.12.0",
+    "@nestjs/common": "^11.0.0",
+    "@nestjs/core": "^11.0.0",
+    "@nestjs/microservices": "^11.0.0",
+    "@types/node": "^24.1.0",
+    "typescript": "5.7.3"
+  }
+}