npm - @voltagent/server-core - Versions diffs - 1.0.16 → 1.0.17 - Mend

@voltagent/server-core 1.0.16 → 1.0.17

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -1345,6 +1345,26 @@ interface AuthProvider<TRequest = any> {
      * These are added to the default public routes
      */
     publicRoutes?: string[];
+    /**
+     * When true, all routes require authentication by default (opt-out model)
+     * When false or undefined, only routes in PROTECTED_ROUTES require auth (opt-in model)
+     *
+     * Use this when you want to protect all routes by default and selectively
+     * make certain routes public using the publicRoutes property.
+     *
+     * @default false
+     * @example
+     * ```typescript
+     * // Protect all routes except those in publicRoutes
+     * const authProvider: AuthProvider = {
+     *   type: 'clerk',
+     *   defaultPrivate: true,
+     *   publicRoutes: ['GET /health', 'POST /webhooks'],
+     *   verifyToken: async (token) => { ... }
+     * }
+     * ```
+     */
+    defaultPrivate?: boolean;
 }
 /**
@@ -1372,63 +1392,10 @@ declare function pathMatches(path: string, pattern: string): boolean;
  * @param method The HTTP method
  * @param path The request path
  * @param publicRoutes Additional public routes from config
+ * @param defaultPrivate When true, routes require auth by default (opt-out model)
  * @returns True if the route requires authentication
  */
-declare function requiresAuth(method: string, path: string, publicRoutes?: string[]): boolean;
-/**
- * Framework-agnostic authentication middleware factory
- */
-/**
- * Framework adapter for authentication middleware
- * Each framework implements this interface to bridge framework-specific APIs
- */
-interface AuthFrameworkAdapter<TRequest, TResponse> {
-    /**
-     * Get the request path
-     */
-    getPath(req: TRequest): string;
-    /**
-     * Get the request method
-     */
-    getMethod(req: TRequest): string;
-    /**
-     * Get a request header
-     */
-    getHeader(req: TRequest, name: string): string | undefined;
-    /**
-     * Get the raw request object (for providers that need it)
-     */
-    getRawRequest(req: TRequest): Request;
-    /**
-     * Get the request body
-     */
-    getBody(req: TRequest): Promise<any>;
-    /**
-     * Set authenticated user in the context
-     */
-    setUser(context: any, user: any): void;
-    /**
-     * Modify request body to include user context
-     */
-    injectUserIntoBody(req: TRequest, user: any): void;
-    /**
-     * Send an error response
-     */
-    sendError(res: TResponse, message: string, status: number): any;
-    /**
-     * Send success to next middleware
-     */
-    next(): any;
-}
-/**
- * Create authentication middleware with framework adapter
- * @param authProvider The authentication provider
- * @param adapter Framework-specific adapter
- * @returns Middleware function for the framework
- */
-declare function createAuthMiddlewareFactory<TRequest, TResponse>(authProvider: AuthProvider<Request>, adapter: AuthFrameworkAdapter<TRequest, TResponse>): (req: TRequest, res: TResponse, next?: () => any) => Promise<any>;
+declare function requiresAuth(method: string, path: string, publicRoutes?: string[], defaultPrivate?: boolean): boolean;
 /**
  * JWT authentication options
@@ -1904,4 +1871,4 @@ declare abstract class BaseServerProvider implements IServerProvider {
     private collectFeatureEndpoints;
 }
-export { A2AServerLikeWithHandlers, type A2AServerLookupResult, AgentListSchema, AgentParamsSchema, AgentResponseSchema, ApiResponse, type AuthFrameworkAdapter, type AuthProvider, type BaseCustomEndpointDefinition, type BaseServerConfig, BaseServerProvider, BasicJsonSchema, type CapabilityRecord, CustomEndpointError, type CustomEndpointHandler, DEFAULT_A2A_ROUTE_PREFIX, DEFAULT_A2A_WELL_KNOWN_PREFIX, DEFAULT_MCP_HTTP_SEGMENT, DEFAULT_MCP_MESSAGES_SEGMENT, DEFAULT_MCP_ROUTE_PREFIX, DEFAULT_MCP_SSE_SEGMENT, DEFAULT_PUBLIC_ROUTES, ErrorSchema, type FilterContext, GenerateOptionsSchema, HttpMethod, type IWebSocket, type JWTAuthOptions, type LogStreamClient, LogStreamManager, type MCPAgentMetadata, type MCPListedTool, type MCPServerCapabilitiesConfig, type MCPServerLike, type MCPServerMetadata, type MCPServerPackageInfo, type MCPServerRemoteInfo, type MCPToolMetadata, type MCPToolOrigin, type MCPWorkflowSummary, MCP_SESSION_QUERY_PARAM, type McpInvokeToolRequest, type McpInvokeToolResponse, type McpPromptDetailResponse, type McpPromptListResponse, type McpResourceDetailResponse, type McpResourceListResponse, type McpResourceTemplateListResponse, type McpRouteOptions, type McpRoutePaths, type McpServerDetailResponse, type McpServerListResponse, type McpServerLookupResult, McpSessionStore, type McpSetLogLevelRequest, type McpSetLogLevelResponse, type McpToolListResponse, ObjectRequestSchema, ObjectResponseSchema, PROTECTED_ROUTES, ParamsSchema, type PortConfig, type ProcessedAgentOptions, type ProtocolConfig, type ProtocolRecord, type ServerEndpointSummary, type ServerProviderConfig, type ServerStartupOptions, StreamObjectEventSchema, StreamTextEventSchema, SubAgentResponseSchema, TextRequestSchema, TextResponseSchema, type WebSocketAdapter, type WebSocketConnectionHandler, type WebSocketConnectionInfo, type WebSocketEventHandlers, type WebSocketMessage, WebSocketRouter, WorkflowCancelRequestSchema, WorkflowCancelResponseSchema, WorkflowExecutionParamsSchema, WorkflowExecutionRequestSchema, WorkflowExecutionResponseSchema, WorkflowListSchema, WorkflowParamsSchema, WorkflowResponseSchema, WorkflowResumeRequestSchema, WorkflowResumeResponseSchema, WorkflowStreamEventSchema, WorkflowSuspendRequestSchema, WorkflowSuspendResponseSchema, buildA2AEndpointPath, buildAgentCardPath, buildMcpRoutePaths, cleanupWebSockets, closeAllObservabilityConnections, colors, createAuthErrorResponse, createAuthMiddlewareFactory, createJWT, createSSEHeaders, createSSEResponse, createSSEStream, createUserContext, createWebSocketRouter, createWebSocketServer, extractBearerToken, extractToken, formatSSE, getLandingPageHTML, getLogsBySpanIdHandler, getLogsByTraceIdHandler, getObservabilityStatusHandler, getPortsToTry, getSpanByIdHandler, getTraceByIdHandler, getTracesHandler, handleCheckUpdates, handleGetMcpPrompt, handleGetMcpResource, handleGetMcpServer, handleInstallUpdates, handleInvokeMcpServerTool, handleListMcpPrompts, handleListMcpResourceTemplates, handleListMcpResources, handleListMcpServerTools, handleListMcpServers, handleObservabilityConnection, handleSetMcpLogLevel, handleWebSocketConnection, injectUserIntoBody, jwtAuth, listA2AServers, listMcpServers, lookupA2AServer, lookupMcpServer, pathMatches, portManager, preferredPorts, printServerStartup, processAgentOptions, processWorkflowOptions, queryLogsHandler, requiresAuth, setupObservabilityHandler, setupObservabilityListeners, setupWebSocketUpgrade, transformToSSE, validateBaseCustomEndpoint, validateEndpointMethod, validateEndpointPath };
+export { A2AServerLikeWithHandlers, type A2AServerLookupResult, AgentListSchema, AgentParamsSchema, AgentResponseSchema, ApiResponse, type AuthProvider, type BaseCustomEndpointDefinition, type BaseServerConfig, BaseServerProvider, BasicJsonSchema, type CapabilityRecord, CustomEndpointError, type CustomEndpointHandler, DEFAULT_A2A_ROUTE_PREFIX, DEFAULT_A2A_WELL_KNOWN_PREFIX, DEFAULT_MCP_HTTP_SEGMENT, DEFAULT_MCP_MESSAGES_SEGMENT, DEFAULT_MCP_ROUTE_PREFIX, DEFAULT_MCP_SSE_SEGMENT, DEFAULT_PUBLIC_ROUTES, ErrorSchema, type FilterContext, GenerateOptionsSchema, HttpMethod, type IWebSocket, type JWTAuthOptions, type LogStreamClient, LogStreamManager, type MCPAgentMetadata, type MCPListedTool, type MCPServerCapabilitiesConfig, type MCPServerLike, type MCPServerMetadata, type MCPServerPackageInfo, type MCPServerRemoteInfo, type MCPToolMetadata, type MCPToolOrigin, type MCPWorkflowSummary, MCP_SESSION_QUERY_PARAM, type McpInvokeToolRequest, type McpInvokeToolResponse, type McpPromptDetailResponse, type McpPromptListResponse, type McpResourceDetailResponse, type McpResourceListResponse, type McpResourceTemplateListResponse, type McpRouteOptions, type McpRoutePaths, type McpServerDetailResponse, type McpServerListResponse, type McpServerLookupResult, McpSessionStore, type McpSetLogLevelRequest, type McpSetLogLevelResponse, type McpToolListResponse, ObjectRequestSchema, ObjectResponseSchema, PROTECTED_ROUTES, ParamsSchema, type PortConfig, type ProcessedAgentOptions, type ProtocolConfig, type ProtocolRecord, type ServerEndpointSummary, type ServerProviderConfig, type ServerStartupOptions, StreamObjectEventSchema, StreamTextEventSchema, SubAgentResponseSchema, TextRequestSchema, TextResponseSchema, type WebSocketAdapter, type WebSocketConnectionHandler, type WebSocketConnectionInfo, type WebSocketEventHandlers, type WebSocketMessage, WebSocketRouter, WorkflowCancelRequestSchema, WorkflowCancelResponseSchema, WorkflowExecutionParamsSchema, WorkflowExecutionRequestSchema, WorkflowExecutionResponseSchema, WorkflowListSchema, WorkflowParamsSchema, WorkflowResponseSchema, WorkflowResumeRequestSchema, WorkflowResumeResponseSchema, WorkflowStreamEventSchema, WorkflowSuspendRequestSchema, WorkflowSuspendResponseSchema, buildA2AEndpointPath, buildAgentCardPath, buildMcpRoutePaths, cleanupWebSockets, closeAllObservabilityConnections, colors, createAuthErrorResponse, createJWT, createSSEHeaders, createSSEResponse, createSSEStream, createUserContext, createWebSocketRouter, createWebSocketServer, extractBearerToken, extractToken, formatSSE, getLandingPageHTML, getLogsBySpanIdHandler, getLogsByTraceIdHandler, getObservabilityStatusHandler, getPortsToTry, getSpanByIdHandler, getTraceByIdHandler, getTracesHandler, handleCheckUpdates, handleGetMcpPrompt, handleGetMcpResource, handleGetMcpServer, handleInstallUpdates, handleInvokeMcpServerTool, handleListMcpPrompts, handleListMcpResourceTemplates, handleListMcpResources, handleListMcpServerTools, handleListMcpServers, handleObservabilityConnection, handleSetMcpLogLevel, handleWebSocketConnection, injectUserIntoBody, jwtAuth, listA2AServers, listMcpServers, lookupA2AServer, lookupMcpServer, pathMatches, portManager, preferredPorts, printServerStartup, processAgentOptions, processWorkflowOptions, queryLogsHandler, requiresAuth, setupObservabilityHandler, setupObservabilityListeners, setupWebSocketUpgrade, transformToSSE, validateBaseCustomEndpoint, validateEndpointMethod, validateEndpointPath };

package/dist/index.d.ts CHANGED Viewed

@@ -1345,6 +1345,26 @@ interface AuthProvider<TRequest = any> {
      * These are added to the default public routes
      */
     publicRoutes?: string[];
+    /**
+     * When true, all routes require authentication by default (opt-out model)
+     * When false or undefined, only routes in PROTECTED_ROUTES require auth (opt-in model)
+     *
+     * Use this when you want to protect all routes by default and selectively
+     * make certain routes public using the publicRoutes property.
+     *
+     * @default false
+     * @example
+     * ```typescript
+     * // Protect all routes except those in publicRoutes
+     * const authProvider: AuthProvider = {
+     *   type: 'clerk',
+     *   defaultPrivate: true,
+     *   publicRoutes: ['GET /health', 'POST /webhooks'],
+     *   verifyToken: async (token) => { ... }
+     * }
+     * ```
+     */
+    defaultPrivate?: boolean;
 }
 /**
@@ -1372,63 +1392,10 @@ declare function pathMatches(path: string, pattern: string): boolean;
  * @param method The HTTP method
  * @param path The request path
  * @param publicRoutes Additional public routes from config
+ * @param defaultPrivate When true, routes require auth by default (opt-out model)
  * @returns True if the route requires authentication
  */
-declare function requiresAuth(method: string, path: string, publicRoutes?: string[]): boolean;
-/**
- * Framework-agnostic authentication middleware factory
- */
-/**
- * Framework adapter for authentication middleware
- * Each framework implements this interface to bridge framework-specific APIs
- */
-interface AuthFrameworkAdapter<TRequest, TResponse> {
-    /**
-     * Get the request path
-     */
-    getPath(req: TRequest): string;
-    /**
-     * Get the request method
-     */
-    getMethod(req: TRequest): string;
-    /**
-     * Get a request header
-     */
-    getHeader(req: TRequest, name: string): string | undefined;
-    /**
-     * Get the raw request object (for providers that need it)
-     */
-    getRawRequest(req: TRequest): Request;
-    /**
-     * Get the request body
-     */
-    getBody(req: TRequest): Promise<any>;
-    /**
-     * Set authenticated user in the context
-     */
-    setUser(context: any, user: any): void;
-    /**
-     * Modify request body to include user context
-     */
-    injectUserIntoBody(req: TRequest, user: any): void;
-    /**
-     * Send an error response
-     */
-    sendError(res: TResponse, message: string, status: number): any;
-    /**
-     * Send success to next middleware
-     */
-    next(): any;
-}
-/**
- * Create authentication middleware with framework adapter
- * @param authProvider The authentication provider
- * @param adapter Framework-specific adapter
- * @returns Middleware function for the framework
- */
-declare function createAuthMiddlewareFactory<TRequest, TResponse>(authProvider: AuthProvider<Request>, adapter: AuthFrameworkAdapter<TRequest, TResponse>): (req: TRequest, res: TResponse, next?: () => any) => Promise<any>;
+declare function requiresAuth(method: string, path: string, publicRoutes?: string[], defaultPrivate?: boolean): boolean;
 /**
  * JWT authentication options
@@ -1904,4 +1871,4 @@ declare abstract class BaseServerProvider implements IServerProvider {
     private collectFeatureEndpoints;
 }
-export { A2AServerLikeWithHandlers, type A2AServerLookupResult, AgentListSchema, AgentParamsSchema, AgentResponseSchema, ApiResponse, type AuthFrameworkAdapter, type AuthProvider, type BaseCustomEndpointDefinition, type BaseServerConfig, BaseServerProvider, BasicJsonSchema, type CapabilityRecord, CustomEndpointError, type CustomEndpointHandler, DEFAULT_A2A_ROUTE_PREFIX, DEFAULT_A2A_WELL_KNOWN_PREFIX, DEFAULT_MCP_HTTP_SEGMENT, DEFAULT_MCP_MESSAGES_SEGMENT, DEFAULT_MCP_ROUTE_PREFIX, DEFAULT_MCP_SSE_SEGMENT, DEFAULT_PUBLIC_ROUTES, ErrorSchema, type FilterContext, GenerateOptionsSchema, HttpMethod, type IWebSocket, type JWTAuthOptions, type LogStreamClient, LogStreamManager, type MCPAgentMetadata, type MCPListedTool, type MCPServerCapabilitiesConfig, type MCPServerLike, type MCPServerMetadata, type MCPServerPackageInfo, type MCPServerRemoteInfo, type MCPToolMetadata, type MCPToolOrigin, type MCPWorkflowSummary, MCP_SESSION_QUERY_PARAM, type McpInvokeToolRequest, type McpInvokeToolResponse, type McpPromptDetailResponse, type McpPromptListResponse, type McpResourceDetailResponse, type McpResourceListResponse, type McpResourceTemplateListResponse, type McpRouteOptions, type McpRoutePaths, type McpServerDetailResponse, type McpServerListResponse, type McpServerLookupResult, McpSessionStore, type McpSetLogLevelRequest, type McpSetLogLevelResponse, type McpToolListResponse, ObjectRequestSchema, ObjectResponseSchema, PROTECTED_ROUTES, ParamsSchema, type PortConfig, type ProcessedAgentOptions, type ProtocolConfig, type ProtocolRecord, type ServerEndpointSummary, type ServerProviderConfig, type ServerStartupOptions, StreamObjectEventSchema, StreamTextEventSchema, SubAgentResponseSchema, TextRequestSchema, TextResponseSchema, type WebSocketAdapter, type WebSocketConnectionHandler, type WebSocketConnectionInfo, type WebSocketEventHandlers, type WebSocketMessage, WebSocketRouter, WorkflowCancelRequestSchema, WorkflowCancelResponseSchema, WorkflowExecutionParamsSchema, WorkflowExecutionRequestSchema, WorkflowExecutionResponseSchema, WorkflowListSchema, WorkflowParamsSchema, WorkflowResponseSchema, WorkflowResumeRequestSchema, WorkflowResumeResponseSchema, WorkflowStreamEventSchema, WorkflowSuspendRequestSchema, WorkflowSuspendResponseSchema, buildA2AEndpointPath, buildAgentCardPath, buildMcpRoutePaths, cleanupWebSockets, closeAllObservabilityConnections, colors, createAuthErrorResponse, createAuthMiddlewareFactory, createJWT, createSSEHeaders, createSSEResponse, createSSEStream, createUserContext, createWebSocketRouter, createWebSocketServer, extractBearerToken, extractToken, formatSSE, getLandingPageHTML, getLogsBySpanIdHandler, getLogsByTraceIdHandler, getObservabilityStatusHandler, getPortsToTry, getSpanByIdHandler, getTraceByIdHandler, getTracesHandler, handleCheckUpdates, handleGetMcpPrompt, handleGetMcpResource, handleGetMcpServer, handleInstallUpdates, handleInvokeMcpServerTool, handleListMcpPrompts, handleListMcpResourceTemplates, handleListMcpResources, handleListMcpServerTools, handleListMcpServers, handleObservabilityConnection, handleSetMcpLogLevel, handleWebSocketConnection, injectUserIntoBody, jwtAuth, listA2AServers, listMcpServers, lookupA2AServer, lookupMcpServer, pathMatches, portManager, preferredPorts, printServerStartup, processAgentOptions, processWorkflowOptions, queryLogsHandler, requiresAuth, setupObservabilityHandler, setupObservabilityListeners, setupWebSocketUpgrade, transformToSSE, validateBaseCustomEndpoint, validateEndpointMethod, validateEndpointPath };
+export { A2AServerLikeWithHandlers, type A2AServerLookupResult, AgentListSchema, AgentParamsSchema, AgentResponseSchema, ApiResponse, type AuthProvider, type BaseCustomEndpointDefinition, type BaseServerConfig, BaseServerProvider, BasicJsonSchema, type CapabilityRecord, CustomEndpointError, type CustomEndpointHandler, DEFAULT_A2A_ROUTE_PREFIX, DEFAULT_A2A_WELL_KNOWN_PREFIX, DEFAULT_MCP_HTTP_SEGMENT, DEFAULT_MCP_MESSAGES_SEGMENT, DEFAULT_MCP_ROUTE_PREFIX, DEFAULT_MCP_SSE_SEGMENT, DEFAULT_PUBLIC_ROUTES, ErrorSchema, type FilterContext, GenerateOptionsSchema, HttpMethod, type IWebSocket, type JWTAuthOptions, type LogStreamClient, LogStreamManager, type MCPAgentMetadata, type MCPListedTool, type MCPServerCapabilitiesConfig, type MCPServerLike, type MCPServerMetadata, type MCPServerPackageInfo, type MCPServerRemoteInfo, type MCPToolMetadata, type MCPToolOrigin, type MCPWorkflowSummary, MCP_SESSION_QUERY_PARAM, type McpInvokeToolRequest, type McpInvokeToolResponse, type McpPromptDetailResponse, type McpPromptListResponse, type McpResourceDetailResponse, type McpResourceListResponse, type McpResourceTemplateListResponse, type McpRouteOptions, type McpRoutePaths, type McpServerDetailResponse, type McpServerListResponse, type McpServerLookupResult, McpSessionStore, type McpSetLogLevelRequest, type McpSetLogLevelResponse, type McpToolListResponse, ObjectRequestSchema, ObjectResponseSchema, PROTECTED_ROUTES, ParamsSchema, type PortConfig, type ProcessedAgentOptions, type ProtocolConfig, type ProtocolRecord, type ServerEndpointSummary, type ServerProviderConfig, type ServerStartupOptions, StreamObjectEventSchema, StreamTextEventSchema, SubAgentResponseSchema, TextRequestSchema, TextResponseSchema, type WebSocketAdapter, type WebSocketConnectionHandler, type WebSocketConnectionInfo, type WebSocketEventHandlers, type WebSocketMessage, WebSocketRouter, WorkflowCancelRequestSchema, WorkflowCancelResponseSchema, WorkflowExecutionParamsSchema, WorkflowExecutionRequestSchema, WorkflowExecutionResponseSchema, WorkflowListSchema, WorkflowParamsSchema, WorkflowResponseSchema, WorkflowResumeRequestSchema, WorkflowResumeResponseSchema, WorkflowStreamEventSchema, WorkflowSuspendRequestSchema, WorkflowSuspendResponseSchema, buildA2AEndpointPath, buildAgentCardPath, buildMcpRoutePaths, cleanupWebSockets, closeAllObservabilityConnections, colors, createAuthErrorResponse, createJWT, createSSEHeaders, createSSEResponse, createSSEStream, createUserContext, createWebSocketRouter, createWebSocketServer, extractBearerToken, extractToken, formatSSE, getLandingPageHTML, getLogsBySpanIdHandler, getLogsByTraceIdHandler, getObservabilityStatusHandler, getPortsToTry, getSpanByIdHandler, getTraceByIdHandler, getTracesHandler, handleCheckUpdates, handleGetMcpPrompt, handleGetMcpResource, handleGetMcpServer, handleInstallUpdates, handleInvokeMcpServerTool, handleListMcpPrompts, handleListMcpResourceTemplates, handleListMcpResources, handleListMcpServerTools, handleListMcpServers, handleObservabilityConnection, handleSetMcpLogLevel, handleWebSocketConnection, injectUserIntoBody, jwtAuth, listA2AServers, listMcpServers, lookupA2AServer, lookupMcpServer, pathMatches, portManager, preferredPorts, printServerStartup, processAgentOptions, processWorkflowOptions, queryLogsHandler, requiresAuth, setupObservabilityHandler, setupObservabilityListeners, setupWebSocketUpgrade, transformToSSE, validateBaseCustomEndpoint, validateEndpointMethod, validateEndpointPath };

package/dist/index.js CHANGED Viewed

@@ -91,7 +91,6 @@ __export(index_exports, {
   closeAllObservabilityConnections: () => closeAllObservabilityConnections,
   colors: () => colors,
   createAuthErrorResponse: () => createAuthErrorResponse,
-  createAuthMiddlewareFactory: () => createAuthMiddlewareFactory,
   createJWT: () => createJWT,
   createSSEHeaders: () => createSSEHeaders,
   createSSEResponse: () => createSSEResponse,
@@ -3471,7 +3470,7 @@ function pathMatches(path2, pattern) {
   return true;
 }
 __name(pathMatches, "pathMatches");
-function requiresAuth(method, path2, publicRoutes) {
+function requiresAuth(method, path2, publicRoutes, defaultPrivate) {
   const fullRoute = `${method.toUpperCase()} ${path2}`;
   for (const publicRoute of DEFAULT_PUBLIC_ROUTES) {
     if (publicRoute.includes(" ")) {
@@ -3509,46 +3508,10 @@ function requiresAuth(method, path2, publicRoutes) {
       }
     }
   }
-  return false;
+  return defaultPrivate ?? false;
 }
 __name(requiresAuth, "requiresAuth");
-// src/auth/middleware-factory.ts
-function createAuthMiddlewareFactory(authProvider, adapter) {
-  return async (req, res, next) => {
-    const path2 = adapter.getPath(req);
-    const method = adapter.getMethod(req);
-    if (!requiresAuth(method, path2, authProvider.publicRoutes)) {
-      return next ? next() : adapter.next();
-    }
-    try {
-      let token;
-      if (authProvider.extractToken) {
-        token = authProvider.extractToken(adapter.getRawRequest(req));
-      } else {
-        const authHeader = adapter.getHeader(req, "Authorization");
-        if (authHeader?.startsWith("Bearer ")) {
-          token = authHeader.substring(7);
-        }
-      }
-      if (!token) {
-        return adapter.sendError(res, "Authentication required", 401);
-      }
-      const user = await authProvider.verifyToken(token, adapter.getRawRequest(req));
-      if (!user) {
-        return adapter.sendError(res, "Invalid authentication", 401);
-      }
-      adapter.setUser(req, user);
-      adapter.injectUserIntoBody(req, user);
-      return next ? next() : adapter.next();
-    } catch (error) {
-      const message = error instanceof Error ? error.message : "Authentication failed";
-      return adapter.sendError(res, message, 401);
-    }
-  };
-}
-__name(createAuthMiddlewareFactory, "createAuthMiddlewareFactory");
 // src/auth/providers/jwt.ts
 var import_jsonwebtoken = __toESM(require("jsonwebtoken"));
 function jwtAuth(options) {
@@ -4730,7 +4693,6 @@ var DEFAULT_CORS_OPTIONS = {
   closeAllObservabilityConnections,
   colors,
   createAuthErrorResponse,
-  createAuthMiddlewareFactory,
   createJWT,
   createSSEHeaders,
   createSSEResponse,