@warlock.js/auth 4.0.30 → 4.0.39

package/cjs/contracts/types.d.ts

@@ -1,134 +0,0 @@
-import { type Algorithm } from "fast-jwt";
-import type { Auth } from "../models/auth";
-import type { Duration, ExpiresIn } from "../utils/duration";
-/**
- * Symbol to indicate no expiration for tokens
- * Use this when you explicitly want tokens to never expire
- *
- * @example
- * ```typescript
- * // src/config/auth.ts
- * import { NO_EXPIRATION, type AuthConfigurations } from "@warlock.js/auth";
- *
- * const authConfigurations: AuthConfigurations = {
- *   jwt: {
- *     secret: env("JWT_SECRET"),
- *     expiresIn: NO_EXPIRATION,  // Token never expires
- *   },
- * };
- *
- * export default authConfigurations;
- * ```
- */
-export declare const NO_EXPIRATION: unique symbol;
-export type AuthConfigurations = {
-    /**
-     * Define all user types
-     * This is important to differentiate between user types when validating and generating tokens
-     */
-    userType: {
-        [userType: string]: typeof Auth;
-    };
-    /**
-     * JWT configurations
-     */
-    jwt: {
-        /**
-         * JWT secret key for signing access tokens
-         */
-        secret: string;
-        /**
-         * JWT algorithm
-         * @default "HS256"
-         */
-        algorithm?: Algorithm;
-        /**
-         * Access token expiration time
-         * Supports Duration object, string format, or NO_EXPIRATION
-         * @example { hours: 1 }, { days: 7, hours: 12 }, "1h", "1d 2h", NO_EXPIRATION
-         * @default { hours: 1 }
-         */
-        expiresIn?: ExpiresIn;
-        /**
-         * Refresh token configurations
-         */
-        refresh?: {
-            /**
-             * Separate secret for refresh tokens (recommended for security)
-             * If not provided, falls back to main JWT secret
-             */
-            secret?: string;
-            /**
-             * Refresh token expiration time
-             * Supports Duration object or string format
-             * @example { days: 7 }, { weeks: 1 }, "7d", "1w"
-             * @default { days: 7 }
-             */
-            expiresIn?: Duration | string | number;
-            /**
-             * Enable token rotation (issue new refresh token on each use)
-             * Old refresh token is invalidated after use
-             * @default true
-             */
-            rotation?: boolean;
-            /**
-             * Maximum number of active refresh tokens per user
-             * When exceeded, oldest tokens are revoked
-             * @default 5
-             */
-            maxPerUser?: number;
-        };
-    };
-    /**
-     * Password configurations
-     */
-    password?: {
-        /**
-         * Password salt
-         * The higher the salt, the more secure the password is
-         * But, it will take more time to generate the password
-         * @default 12
-         */
-        salt?: number;
-    };
-};
-/**
- * Token pair returned after login or token refresh
- */
-export type TokenPair = {
-    /**
-     * JWT access token (short-lived)
-     */
-    accessToken: string;
-    /**
-     * JWT refresh token (long-lived)
-     */
-    refreshToken: string;
-    /**
-     * Access token expiration time in seconds or time string
-     */
-    expiresIn: number | string;
-};
-/**
- * Device information for session tracking
- */
-export type DeviceInfo = {
-    /**
-     * User agent string from request
-     */
-    userAgent?: string;
-    /**
-     * Client IP address
-     */
-    ip?: string;
-    /**
-     * Optional device identifier
-     */
-    deviceId?: string;
-    /**
-     * Token family ID (for rotation tracking)
-     * @internal
-     */
-    familyId?: string;
-};
-//# sourceMappingURL=types.d.ts.map

package/cjs/contracts/types.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/contracts/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,SAAS,EAAE,MAAM,UAAU,CAAC;AAC1C,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AAC3C,OAAO,KAAK,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAE7D;;;;;;;;;;;;;;;;;;GAkBG;AACH,eAAO,MAAM,aAAa,eAA0B,CAAC;AAErD,MAAM,MAAM,kBAAkB,GAAG;IAC/B;;;OAGG;IACH,QAAQ,EAAE;QACR,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,IAAI,CAAC;KACjC,CAAC;IACF;;OAEG;IACH,GAAG,EAAE;QACH;;WAEG;QACH,MAAM,EAAE,MAAM,CAAC;QACf;;;WAGG;QACH,SAAS,CAAC,EAAE,SAAS,CAAC;QACtB;;;;;WAKG;QACH,SAAS,CAAC,EAAE,SAAS,CAAC;QACtB;;WAEG;QACH,OAAO,CAAC,EAAE;YACR;;;eAGG;YACH,MAAM,CAAC,EAAE,MAAM,CAAC;YAChB;;;;;eAKG;YACH,SAAS,CAAC,EAAE,QAAQ,GAAG,MAAM,GAAG,MAAM,CAAC;YACvC;;;;eAIG;YACH,QAAQ,CAAC,EAAE,OAAO,CAAC;YACnB;;;;eAIG;YACH,UAAU,CAAC,EAAE,MAAM,CAAC;SACrB,CAAC;KACH,CAAC;IACF;;OAEG;IACH,QAAQ,CAAC,EAAE;QACT;;;;;WAKG;QACH,IAAI,CAAC,EAAE,MAAM,CAAC;KACf,CAAC;CACH,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,SAAS,GAAG;IACtB;;OAEG;IACH,WAAW,EAAE,MAAM,CAAC;IACpB;;OAEG;IACH,YAAY,EAAE,MAAM,CAAC;IACrB;;OAEG;IACH,SAAS,EAAE,MAAM,GAAG,MAAM,CAAC;CAC5B,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,UAAU,GAAG;IACvB;;OAEG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB;;OAEG;IACH,EAAE,CAAC,EAAE,MAAM,CAAC;IACZ;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB;;;OAGG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB,CAAC"}

package/cjs/contracts/types.js

@@ -1,20 +0,0 @@
-'use strict';/**
- * Symbol to indicate no expiration for tokens
- * Use this when you explicitly want tokens to never expire
- *
- * @example
- * ```typescript
- * // src/config/auth.ts
- * import { NO_EXPIRATION, type AuthConfigurations } from "@warlock.js/auth";
- *
- * const authConfigurations: AuthConfigurations = {
- *   jwt: {
- *     secret: env("JWT_SECRET"),
- *     expiresIn: NO_EXPIRATION,  // Token never expires
- *   },
- * };
- *
- * export default authConfigurations;
- * ```
- */
-const NO_EXPIRATION = Symbol("NO_EXPIRATION");exports.NO_EXPIRATION=NO_EXPIRATION;//# sourceMappingURL=types.js.map

package/cjs/contracts/types.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"types.js","sources":["../../src/contracts/types.ts"],"sourcesContent":[null],"names":[],"mappings":"aAIA;;;;;;;;;;;;;;;;;;AAkBG;MACU,aAAa,GAAG,MAAM,CAAC,eAAe"}

package/cjs/index.d.ts

@@ -1,8 +0,0 @@
-export * from "./commands/auth-cleanup-command";
-export * from "./commands/jwt-secret-generator-command";
-export * from "./contracts";
-export * from "./middleware";
-export * from "./models";
-export * from "./services";
-export * from "./utils";
-//# sourceMappingURL=index.d.ts.map

package/cjs/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,iCAAiC,CAAC;AAChD,cAAc,yCAAyC,CAAC;AACxD,cAAc,aAAa,CAAC;AAC5B,cAAc,cAAc,CAAC;AAC7B,cAAc,UAAU,CAAC;AACzB,cAAc,YAAY,CAAC;AAC3B,cAAc,SAAS,CAAC"}

package/cjs/middleware/auth.middleware.d.ts

@@ -1,2 +0,0 @@
-export declare function authMiddleware(allowedUserType?: string | string[]): Middleware;
-//# sourceMappingURL=auth.middleware.d.ts.map

package/cjs/middleware/auth.middleware.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth.middleware.d.ts","sourceRoot":"","sources":["../../src/middleware/auth.middleware.ts"],"names":[],"mappings":"AAMA,wBAAgB,cAAc,CAAC,eAAe,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,cAuFjE"}

package/cjs/middleware/auth.middleware.js

@@ -1,73 +0,0 @@
-'use strict';var core=require('@warlock.js/core'),logger=require('@warlock.js/logger'),accessToken=require('../models/access-token/access-token.js');require('../models/access-token/migration.js');var jwt=require('../services/jwt.js'),authErrorCodes=require('../utils/auth-error-codes.js');function authMiddleware(allowedUserType) {
-    const allowedTypes = !allowedUserType
-        ? []
-        : Array.isArray(allowedUserType)
-            ? allowedUserType
-            : [allowedUserType];
-    const auth = async (request, response) => {
-        try {
-            const authorizationValue = request.authorizationValue;
-            if (!allowedTypes.length && !authorizationValue)
-                return;
-            if (!authorizationValue) {
-                return response.unauthorized({
-                    error: core.t("auth.errors.missingAccessToken"),
-                    errorCode: authErrorCodes.AuthErrorCodes.MissingAccessToken,
-                });
-            }
-            // get current user jwt
-            const user = await jwt.jwt.verify(authorizationValue);
-            // store decoded access token object in request object
-            request.decodedAccessToken = user;
-            // use our own jwt verify to verify the token
-            const accessToken$1 = await accessToken.AccessToken.first({
-                token: authorizationValue,
-            });
-            if (!accessToken$1) {
-                return response.unauthorized({
-                    error: core.t("auth.errors.invalidAccessToken"),
-                    errorCode: authErrorCodes.AuthErrorCodes.InvalidAccessToken,
-                });
-            }
-            // now, we need to get an instance of user using its corresponding model
-            const userType = user.userType || accessToken$1.get("userType");
-            // check if the user type is allowed
-            if (allowedTypes.length && !allowedTypes.includes(userType)) {
-                return response.unauthorized({
-                    error: core.t("auth.errors.unauthorized"),
-                    errorCode: authErrorCodes.AuthErrorCodes.Unauthorized,
-                });
-            }
-            // get user model class
-            const UserModel = core.config.key(`auth.userType.${userType}`);
-            if (!UserModel) {
-                throw new Error(`User type ${userType} is unknown type.`);
-            }
-            // get user model instance
-            const currentUser = await UserModel.find(user.id);
-            if (!currentUser) {
-                accessToken$1.destroy();
-                return response.unauthorized({
-                    error: core.t("auth.errors.invalidAccessToken"),
-                    errorCode: authErrorCodes.AuthErrorCodes.InvalidAccessToken,
-                });
-            }
-            // update last access
-            accessToken$1.silentSaving({
-                lastAccess: new Date(),
-            });
-            // set current user
-            request.user = currentUser;
-        }
-        catch (err) {
-            logger.log.error("http", "auth", err);
-            // unset current user
-            request.clearCurrentUser();
-            return response.unauthorized({
-                error: core.t("auth.errors.invalidAccessToken"),
-                errorCode: authErrorCodes.AuthErrorCodes.InvalidAccessToken,
-            });
-        }
-    };
-    return auth;
-}exports.authMiddleware=authMiddleware;//# sourceMappingURL=auth.middleware.js.map

package/cjs/middleware/auth.middleware.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth.middleware.js","sources":["../../src/middleware/auth.middleware.ts"],"sourcesContent":[null],"names":["t","AuthErrorCodes","jwt","accessToken","AccessToken","config","log"],"mappings":"iSAMM,SAAU,cAAc,CAAC,eAAmC,EAAA;IAChE,MAAM,YAAY,GAAG,CAAC,eAAe;AACnC,UAAE,EAAE;AACJ,UAAE,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC;AAC9B,cAAE,eAAe;AACjB,cAAE,CAAC,eAAe,CAAC,CAAC;IAExB,MAAM,IAAI,GAAe,OAAO,OAAgB,EAAE,QAAkB,KAAI;QACtE,IAAI;AACF,YAAA,MAAM,kBAAkB,GAAG,OAAO,CAAC,kBAAkB,CAAC;AAEtD,YAAA,IAAI,CAAC,YAAY,CAAC,MAAM,IAAI,CAAC,kBAAkB;gBAAE,OAAO;YAExD,IAAI,CAAC,kBAAkB,EAAE;gBACvB,OAAO,QAAQ,CAAC,YAAY,CAAC;AAC3B,oBAAA,KAAK,EAAEA,MAAC,CAAC,gCAAgC,CAAC;oBAC1C,SAAS,EAAEC,6BAAc,CAAC,kBAAkB;AAC7C,iBAAA,CAAC,CAAC;AACJ,aAAA;;YAGD,MAAM,IAAI,GAAG,MAAMC,OAAG,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAC;;AAGlD,YAAA,OAAO,CAAC,kBAAkB,GAAG,IAAI,CAAC;;AAElC,YAAA,MAAMC,aAAW,GAAG,MAAMC,uBAAW,CAAC,KAAK,CAAC;AAC1C,gBAAA,KAAK,EAAE,kBAAkB;AAC1B,aAAA,CAAC,CAAC;YAEH,IAAI,CAACD,aAAW,EAAE;gBAChB,OAAO,QAAQ,CAAC,YAAY,CAAC;AAC3B,oBAAA,KAAK,EAAEH,MAAC,CAAC,gCAAgC,CAAC;oBAC1C,SAAS,EAAEC,6BAAc,CAAC,kBAAkB;AAC7C,iBAAA,CAAC,CAAC;AACJ,aAAA;;AAGD,YAAA,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,IAAIE,aAAW,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;;YAG9D,IAAI,YAAY,CAAC,MAAM,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE;gBAC3D,OAAO,QAAQ,CAAC,YAAY,CAAC;AAC3B,oBAAA,KAAK,EAAEH,MAAC,CAAC,0BAA0B,CAAC;oBACpC,SAAS,EAAEC,6BAAc,CAAC,YAAY;AACvC,iBAAA,CAAC,CAAC;AACJ,aAAA;;YAGD,MAAM,SAAS,GAAGI,WAAM,CAAC,GAAG,CAAC,CAAiB,cAAA,EAAA,QAAQ,CAAE,CAAA,CAAC,CAAC;YAE1D,IAAI,CAAC,SAAS,EAAE;AACd,gBAAA,MAAM,IAAI,KAAK,CAAC,aAAa,QAAQ,CAAA,iBAAA,CAAmB,CAAC,CAAC;AAC3D,aAAA;;YAGD,MAAM,WAAW,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YAElD,IAAI,CAAC,WAAW,EAAE;gBAChBF,aAAW,CAAC,OAAO,EAAE,CAAC;gBACtB,OAAO,QAAQ,CAAC,YAAY,CAAC;AAC3B,oBAAA,KAAK,EAAEH,MAAC,CAAC,gCAAgC,CAAC;oBAC1C,SAAS,EAAEC,6BAAc,CAAC,kBAAkB;AAC7C,iBAAA,CAAC,CAAC;AACJ,aAAA;;YAGDE,aAAW,CAAC,YAAY,CAAC;gBACvB,UAAU,EAAE,IAAI,IAAI,EAAE;AACvB,aAAA,CAAC,CAAC;;AAGH,YAAA,OAAO,CAAC,IAAI,GAAG,WAAW,CAAC;AAC5B,SAAA;AAAC,QAAA,OAAO,GAAQ,EAAE;YACjBG,UAAG,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,EAAE,GAAG,CAAC,CAAC;;YAG/B,OAAO,CAAC,gBAAgB,EAAE,CAAC;YAE3B,OAAO,QAAQ,CAAC,YAAY,CAAC;AAC3B,gBAAA,KAAK,EAAEN,MAAC,CAAC,gCAAgC,CAAC;gBAC1C,SAAS,EAAEC,6BAAc,CAAC,kBAAkB;AAC7C,aAAA,CAAC,CAAC;AACJ,SAAA;AACH,KAAC,CAAC;AAEF,IAAA,OAAO,IAAI,CAAC;AACd"}

package/cjs/middleware/index.d.ts

@@ -1,2 +0,0 @@
-export * from "./auth.middleware";
-//# sourceMappingURL=index.d.ts.map

package/cjs/middleware/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/middleware/index.ts"],"names":[],"mappings":"AAAA,cAAc,mBAAmB,CAAC"}

package/cjs/models/access-token/access-token.d.ts

@@ -1,12 +0,0 @@
-import { Model, type Casts } from "@warlock.js/cascade";
-export declare class AccessToken extends Model {
-    /**
-     * {@inheritDoc}
-     */
-    static collection: string;
-    /**
-     * {@inheritDoc}
-     */
-    protected casts: Casts;
-}
-//# sourceMappingURL=access-token.d.ts.map

package/cjs/models/access-token/access-token.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"access-token.d.ts","sourceRoot":"","sources":["../../../src/models/access-token/access-token.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,KAAK,KAAK,EAAE,MAAM,qBAAqB,CAAC;AAExD,qBAAa,WAAY,SAAQ,KAAK;IACpC;;OAEG;IACH,OAAc,UAAU,SAAkB;IAE1C;;OAEG;IACH,SAAS,CAAC,KAAK,EAAE,KAAK,CAMpB;CACH"}

package/cjs/models/access-token/access-token.js

@@ -1,16 +0,0 @@
-'use strict';var cascade=require('@warlock.js/cascade');class AccessToken extends cascade.Model {
-    /**
-     * {@inheritDoc}
-     */
-    static collection = "accessTokens";
-    /**
-     * {@inheritDoc}
-     */
-    casts = {
-        lastAccess: "date",
-        token: "string",
-        "user.id": "int",
-        "user._id": "string",
-        "user.userType": "string",
-    };
-}exports.AccessToken=AccessToken;//# sourceMappingURL=access-token.js.map

package/cjs/models/access-token/access-token.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"access-token.js","sources":["../../../src/models/access-token/access-token.ts"],"sourcesContent":[null],"names":["Model"],"mappings":"wDAEM,MAAO,WAAY,SAAQA,aAAK,CAAA;AACpC;;AAEG;AACI,IAAA,OAAO,UAAU,GAAG,cAAc,CAAC;AAE1C;;AAEG;AACO,IAAA,KAAK,GAAU;AACvB,QAAA,UAAU,EAAE,MAAM;AAClB,QAAA,KAAK,EAAE,QAAQ;AACf,QAAA,SAAS,EAAE,KAAK;AAChB,QAAA,UAAU,EAAE,QAAQ;AACpB,QAAA,eAAe,EAAE,QAAQ;KAC1B,CAAC;"}

package/cjs/models/access-token/index.d.ts

@@ -1,3 +0,0 @@
-export * from "./access-token";
-export * from "./migration";
-//# sourceMappingURL=index.d.ts.map

package/cjs/models/access-token/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/models/access-token/index.ts"],"names":[],"mappings":"AAAA,cAAc,gBAAgB,CAAC;AAC/B,cAAc,aAAa,CAAC"}

package/cjs/models/access-token/migration.d.ts

@@ -1,3 +0,0 @@
-declare const _default: any;
-export default _default;
-//# sourceMappingURL=migration.d.ts.map

package/cjs/models/access-token/migration.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"migration.d.ts","sourceRoot":"","sources":["../../../src/models/access-token/migration.ts"],"names":[],"mappings":";AAGA,wBASG"}

package/cjs/models/access-token/migration.js

@@ -1,10 +0,0 @@
-'use strict';var cascade=require('@warlock.js/cascade'),accessToken=require('./access-token.js');cascade.migrationOffice.register({
-    name: "accessToken",
-    blueprint: accessToken.AccessToken.blueprint(),
-    up: blueprint => {
-        blueprint.index("token");
-    },
-    down: blueprint => {
-        blueprint.dropUniqueIndex("token");
-    },
-});//# sourceMappingURL=migration.js.map

package/cjs/models/access-token/migration.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"migration.js","sources":["../../../src/models/access-token/migration.ts"],"sourcesContent":[null],"names":["migrationOffice","AccessToken"],"mappings":"iGAGeA,uBAAe,CAAC,QAAQ,CAAC;AACtC,IAAA,IAAI,EAAE,aAAa;AACnB,IAAA,SAAS,EAAEC,uBAAW,CAAC,SAAS,EAAE;IAClC,EAAE,EAAE,SAAS,IAAG;AACd,QAAA,SAAS,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;KAC1B;IACD,IAAI,EAAE,SAAS,IAAG;AAChB,QAAA,SAAS,CAAC,eAAe,CAAC,OAAO,CAAC,CAAC;KACpC;AACF,CAAA,CAAC"}

package/cjs/models/auth.d.ts

@@ -1,47 +0,0 @@
-import type { ChildModel } from "@warlock.js/cascade";
-import { Model } from "@warlock.js/cascade";
-import type { DeviceInfo, TokenPair } from "../contracts/types";
-import type { RefreshToken } from "./refresh-token/refresh-token";
-export declare abstract class Auth extends Model {
-    /**
-     * Get user type
-     */
-    abstract get userType(): string;
-    /**
-     * Get access token payload
-     */
-    accessTokenPayload(): any;
-    /**
-     * Create both access and refresh tokens
-     */
-    createTokenPair(deviceInfo?: DeviceInfo): Promise<TokenPair>;
-    /**
-     * Generate access token
-     */
-    generateAccessToken(data?: any): Promise<string>;
-    /**
-     * Generate refresh token
-     */
-    generateRefreshToken(deviceInfo?: DeviceInfo): Promise<RefreshToken>;
-    /**
-     * Remove current access token
-     */
-    removeAccessToken(token: string): Promise<void>;
-    /**
-     * Revoke all tokens (logout from all devices)
-     */
-    revokeAllTokens(): Promise<void>;
-    /**
-     * Get active sessions
-     */
-    activeSessions(): Promise<RefreshToken[]>;
-    /**
-     * Attempt to login the user
-     */
-    static attempt<T>(this: ChildModel<T>, data: any): Promise<T | null>;
-    /**
-     * Confirm password
-     */
-    confirmPassword(password: string): boolean;
-}
-//# sourceMappingURL=auth.d.ts.map

package/cjs/models/auth.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/models/auth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAC;AACtD,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAC;AAC5C,OAAO,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAEhE,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,+BAA+B,CAAC;AAElE,8BAAsB,IAAK,SAAQ,KAAK;IACtC;;OAEG;IACH,aAAoB,QAAQ,IAAI,MAAM,CAAC;IAEvC;;OAEG;IACI,kBAAkB;IAMzB;;OAEG;IACU,eAAe,CAAC,UAAU,CAAC,EAAE,UAAU,GAAG,OAAO,CAAC,SAAS,CAAC;IAIzE;;OAEG;IACU,mBAAmB,CAAC,IAAI,CAAC,EAAE,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC;IAI7D;;OAEG;IACU,oBAAoB,CAAC,UAAU,CAAC,EAAE,UAAU,GAAG,OAAO,CAAC,YAAY,CAAC;IAIjF;;OAEG;IACU,iBAAiB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAI5D;;OAEG;IACU,eAAe,IAAI,OAAO,CAAC,IAAI,CAAC;IAI7C;;OAEG;IACU,cAAc,IAAI,OAAO,CAAC,YAAY,EAAE,CAAC;IAItD;;OAEG;WACiB,OAAO,CAAC,CAAC,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,GAAG,GAAG,OAAO,CAAC,CAAC,GAAG,IAAI,CAAC;IAIjF;;OAEG;IACI,eAAe,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO;CAGlD"}

package/cjs/models/auth.js

@@ -1,58 +0,0 @@
-'use strict';var cascade=require('@warlock.js/cascade');require('@mongez/events');var auth_service=require('../services/auth.service.js');require('@mongez/fs'),require('@mongez/reinforcements'),require('@warlock.js/core'),require('@warlock.js/logger'),require('fast-jwt');class Auth extends cascade.Model {
-    /**
-     * Get access token payload
-     */
-    accessTokenPayload() {
-        // Dynamically import to avoid circular dependency
-        const { authService } = require("../services/auth.service");
-        return authService.buildAccessTokenPayload(this);
-    }
-    /**
-     * Create both access and refresh tokens
-     */
-    async createTokenPair(deviceInfo) {
-        return auth_service.authService.createTokenPair(this, deviceInfo);
-    }
-    /**
-     * Generate access token
-     */
-    async generateAccessToken(data) {
-        return auth_service.authService.generateAccessToken(this, data);
-    }
-    /**
-     * Generate refresh token
-     */
-    async generateRefreshToken(deviceInfo) {
-        return auth_service.authService.createRefreshToken(this, deviceInfo);
-    }
-    /**
-     * Remove current access token
-     */
-    async removeAccessToken(token) {
-        return auth_service.authService.removeAccessToken(this, token);
-    }
-    /**
-     * Revoke all tokens (logout from all devices)
-     */
-    async revokeAllTokens() {
-        return auth_service.authService.revokeAllTokens(this);
-    }
-    /**
-     * Get active sessions
-     */
-    async activeSessions() {
-        return auth_service.authService.getActiveSessions(this);
-    }
-    /**
-     * Attempt to login the user
-     */
-    static async attempt(data) {
-        return auth_service.authService.attemptLogin(this, data);
-    }
-    /**
-     * Confirm password
-     */
-    confirmPassword(password) {
-        return auth_service.authService.verifyPassword(this.get("password"), password);
-    }
-}exports.Auth=Auth;//# sourceMappingURL=auth.js.map

package/cjs/models/auth.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth.js","sources":["../../src/models/auth.ts"],"sourcesContent":[null],"names":["Model","authService"],"mappings":"gRAMM,MAAgB,IAAK,SAAQA,aAAK,CAAA;AAMtC;;AAEG;IACI,kBAAkB,GAAA;;QAEvB,MAAM,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC,0BAA0B,CAAC,CAAC;AAC5D,QAAA,OAAO,WAAW,CAAC,uBAAuB,CAAC,IAAI,CAAC,CAAC;KAClD;AAED;;AAEG;IACI,MAAM,eAAe,CAAC,UAAuB,EAAA;QAClD,OAAOC,wBAAW,CAAC,eAAe,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;KACtD;AAED;;AAEG;IACI,MAAM,mBAAmB,CAAC,IAAU,EAAA;QACzC,OAAOA,wBAAW,CAAC,mBAAmB,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;KACpD;AAED;;AAEG;IACI,MAAM,oBAAoB,CAAC,UAAuB,EAAA;QACvD,OAAOA,wBAAW,CAAC,kBAAkB,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;KACzD;AAED;;AAEG;IACI,MAAM,iBAAiB,CAAC,KAAa,EAAA;QAC1C,OAAOA,wBAAW,CAAC,iBAAiB,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;KACnD;AAED;;AAEG;AACI,IAAA,MAAM,eAAe,GAAA;AAC1B,QAAA,OAAOA,wBAAW,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;KAC1C;AAED;;AAEG;AACI,IAAA,MAAM,cAAc,GAAA;AACzB,QAAA,OAAOA,wBAAW,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC;KAC5C;AAED;;AAEG;AACI,IAAA,aAAa,OAAO,CAAyB,IAAS,EAAA;QAC3D,OAAOA,wBAAW,CAAC,YAAY,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;KAC7C;AAED;;AAEG;AACI,IAAA,eAAe,CAAC,QAAgB,EAAA;AACrC,QAAA,OAAOA,wBAAW,CAAC,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,QAAQ,CAAC,CAAC;KACnE;AACF"}

package/cjs/models/casts/cast-password.d.ts

@@ -1,7 +0,0 @@
-import type { Model } from "@warlock.js/cascade";
-/**
- * Cast password on model save
- * If the password is not changed, keep it as is
- */
-export declare function castPassword(value: any, column: string, model: Model): any;
-//# sourceMappingURL=cast-password.d.ts.map

package/cjs/models/casts/cast-password.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"cast-password.d.ts","sourceRoot":"","sources":["../../../src/models/casts/cast-password.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAC;AAGjD;;;GAGG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,KAAK,OAIpE"}

package/cjs/models/casts/cast-password.js

@@ -1,9 +0,0 @@
-'use strict';var password=require('@mongez/password'),core=require('@warlock.js/core');/**
- * Cast password on model save
- * If the password is not changed, keep it as is
- */
-function castPassword(value, column, model) {
-    return value
-        ? password.hash(String(value), core.config.key("auth.password.salt", 12))
-        : model.getInitial(column);
-}exports.castPassword=castPassword;//# sourceMappingURL=cast-password.js.map

package/cjs/models/casts/cast-password.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"cast-password.js","sources":["../../../src/models/casts/cast-password.ts"],"sourcesContent":[null],"names":["hash","config"],"mappings":"uFAIA;;;AAGG;SACa,YAAY,CAAC,KAAU,EAAE,MAAc,EAAE,KAAY,EAAA;AACnE,IAAA,OAAO,KAAK;AACV,UAAEA,aAAI,CAAC,MAAM,CAAC,KAAK,CAAC,EAAEC,WAAM,CAAC,GAAG,CAAC,oBAAoB,EAAE,EAAE,CAAC,CAAC;AAC3D,UAAE,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;AAC/B"}

package/cjs/models/casts/index.d.ts

@@ -1,2 +0,0 @@
-export * from "./cast-password";
-//# sourceMappingURL=index.d.ts.map

package/cjs/models/casts/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/models/casts/index.ts"],"names":[],"mappings":"AAAA,cAAc,iBAAiB,CAAC"}

package/cjs/models/index.d.ts

@@ -1,5 +0,0 @@
-export * from "./access-token";
-export * from "./auth";
-export * from "./casts";
-export * from "./refresh-token";
-//# sourceMappingURL=index.d.ts.map

package/cjs/models/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/models/index.ts"],"names":[],"mappings":"AAAA,cAAc,gBAAgB,CAAC;AAC/B,cAAc,QAAQ,CAAC;AACvB,cAAc,SAAS,CAAC;AACxB,cAAc,iBAAiB,CAAC"}

package/cjs/models/refresh-token/index.d.ts

@@ -1,2 +0,0 @@
-export * from "./refresh-token";
-//# sourceMappingURL=index.d.ts.map

package/cjs/models/refresh-token/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/models/refresh-token/index.ts"],"names":[],"mappings":"AAAA,cAAc,iBAAiB,CAAC"}

package/cjs/models/refresh-token/migration.d.ts

@@ -1,3 +0,0 @@
-declare const _default: any;
-export default _default;
-//# sourceMappingURL=migration.d.ts.map

package/cjs/models/refresh-token/migration.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"migration.d.ts","sourceRoot":"","sources":["../../../src/models/refresh-token/migration.ts"],"names":[],"mappings":";AAGA,wBAeG"}

package/cjs/models/refresh-token/refresh-token.d.ts

@@ -1,32 +0,0 @@
-import { Model, type Casts } from "@warlock.js/cascade";
-export declare class RefreshToken extends Model {
-    /**
-     * {@inheritDoc}
-     */
-    static collection: string;
-    /**
-     * {@inheritDoc}
-     */
-    protected casts: Casts;
-    /**
-     * Check if token is expired
-     */
-    get isExpired(): boolean;
-    /**
-     * Check if token is revoked
-     */
-    get isRevoked(): boolean;
-    /**
-     * Check if token is valid (not expired and not revoked)
-     */
-    get isValid(): boolean;
-    /**
-     * Revoke this token
-     */
-    revoke(): Promise<this>;
-    /**
-     * Mark token as used (update lastUsedAt)
-     */
-    markAsUsed(): Promise<void>;
-}
-//# sourceMappingURL=refresh-token.d.ts.map

package/cjs/models/refresh-token/refresh-token.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"refresh-token.d.ts","sourceRoot":"","sources":["../../../src/models/refresh-token/refresh-token.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,KAAK,KAAK,EAAE,MAAM,qBAAqB,CAAC;AAExD,qBAAa,YAAa,SAAQ,KAAK;IACrC;;OAEG;IACH,OAAc,UAAU,SAAmB;IAE3C;;OAEG;IACH,SAAS,CAAC,KAAK,EAAE,KAAK,CASpB;IAEF;;OAEG;IACH,IAAW,SAAS,IAAI,OAAO,CAI9B;IAED;;OAEG;IACH,IAAW,SAAS,IAAI,OAAO,CAE9B;IAED;;OAEG;IACH,IAAW,OAAO,IAAI,OAAO,CAE5B;IAED;;OAEG;IACU,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC;IAIpC;;OAEG;IACU,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;CAGzC"}

package/cjs/models/refresh-token/refresh-token.js

@@ -1,52 +0,0 @@
-'use strict';var cascade=require('@warlock.js/cascade');class RefreshToken extends cascade.Model {
-    /**
-     * {@inheritDoc}
-     */
-    static collection = "refreshTokens";
-    /**
-     * {@inheritDoc}
-     */
-    casts = {
-        token: "string",
-        userId: "int",
-        userType: "string",
-        familyId: "string",
-        expiresAt: "date",
-        lastUsedAt: "date",
-        revokedAt: "date",
-        deviceInfo: "object",
-    };
-    /**
-     * Check if token is expired
-     */
-    get isExpired() {
-        const expiresAt = this.get("expiresAt");
-        if (!expiresAt)
-            return false;
-        return new Date() > new Date(expiresAt);
-    }
-    /**
-     * Check if token is revoked
-     */
-    get isRevoked() {
-        return !!this.get("revokedAt");
-    }
-    /**
-     * Check if token is valid (not expired and not revoked)
-     */
-    get isValid() {
-        return !this.isExpired && !this.isRevoked;
-    }
-    /**
-     * Revoke this token
-     */
-    async revoke() {
-        return this.save({ revokedAt: new Date() });
-    }
-    /**
-     * Mark token as used (update lastUsedAt)
-     */
-    async markAsUsed() {
-        this.silentSaving({ lastUsedAt: new Date() });
-    }
-}exports.RefreshToken=RefreshToken;//# sourceMappingURL=refresh-token.js.map

package/cjs/models/refresh-token/refresh-token.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"refresh-token.js","sources":["../../../src/models/refresh-token/refresh-token.ts"],"sourcesContent":[null],"names":["Model"],"mappings":"wDAEM,MAAO,YAAa,SAAQA,aAAK,CAAA;AACrC;;AAEG;AACI,IAAA,OAAO,UAAU,GAAG,eAAe,CAAC;AAE3C;;AAEG;AACO,IAAA,KAAK,GAAU;AACvB,QAAA,KAAK,EAAE,QAAQ;AACf,QAAA,MAAM,EAAE,KAAK;AACb,QAAA,QAAQ,EAAE,QAAQ;AAClB,QAAA,QAAQ,EAAE,QAAQ;AAClB,QAAA,SAAS,EAAE,MAAM;AACjB,QAAA,UAAU,EAAE,MAAM;AAClB,QAAA,SAAS,EAAE,MAAM;AACjB,QAAA,UAAU,EAAE,QAAQ;KACrB,CAAC;AAEF;;AAEG;AACH,IAAA,IAAW,SAAS,GAAA;QAClB,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;AACxC,QAAA,IAAI,CAAC,SAAS;AAAE,YAAA,OAAO,KAAK,CAAC;QAC7B,OAAO,IAAI,IAAI,EAAE,GAAG,IAAI,IAAI,CAAC,SAAS,CAAC,CAAC;KACzC;AAED;;AAEG;AACH,IAAA,IAAW,SAAS,GAAA;QAClB,OAAO,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;KAChC;AAED;;AAEG;AACH,IAAA,IAAW,OAAO,GAAA;QAChB,OAAO,CAAC,IAAI,CAAC,SAAS,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC;KAC3C;AAED;;AAEG;AACI,IAAA,MAAM,MAAM,GAAA;AACjB,QAAA,OAAO,IAAI,CAAC,IAAI,CAAC,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,EAAE,CAAC,CAAC;KAC7C;AAED;;AAEG;AACI,IAAA,MAAM,UAAU,GAAA;QACrB,IAAI,CAAC,YAAY,CAAC,EAAE,UAAU,EAAE,IAAI,IAAI,EAAE,EAAE,CAAC,CAAC;KAC/C;"}