@wnodex/session 0.2.1

package/.turbo/turbo-build.log

@@ -0,0 +1,7 @@
+
+> @wnodex/session@0.2.1 build /home/runner/work/wnodex/wnodex/packages/session
+> rolldown -c && tsc
+
+[log] <DIR>/index.js  chunk │ size: 1.95 kB
+[log]
+[success] rolldown v1.0.0-rc.1 Finished in 25.93 ms

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Davide Di Criscito
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,19 @@
+# @wnodex/session
+
+wnodex session middleware
+
+---
+
+## Table of Content
+
+- [License](#license)
+
+---
+
+## License
+
+This project is licensed under the MIT License.
+
+**Copyright (c) 2026 Davide Di Criscito**
+
+For the full details, see the [LICENSE](LICENSE) file.

package/dist/configure.d.ts

@@ -0,0 +1,4 @@
+import type { Application } from 'express';
+import { SessionOptionsInput } from './schema.js';
+export declare const configureSession: (app: Application, config: SessionOptionsInput) => Application | undefined;
+//# sourceMappingURL=configure.d.ts.map

package/dist/configure.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"configure.d.ts","sourceRoot":"","sources":["../src/configure.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAK3C,OAAO,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAElD,eAAO,MAAM,gBAAgB,GAC3B,KAAK,WAAW,EAChB,QAAQ,mBAAmB,4BAa5B,CAAC"}

package/dist/configure.js

@@ -0,0 +1,12 @@
+import session from 'express-session';
+import { parseSessionOptions } from './parse-options.js';
+export const configureSession = (app, config) => {
+    const logger = app.get('logger') ?? console;
+    const options = parseSessionOptions(config);
+    if (typeof options === 'boolean') {
+        logger.info('Session disabled');
+        return;
+    }
+    logger.info('Session enabled');
+    return app.use(session({ ...options }));
+};

package/dist/defaults.d.ts

@@ -0,0 +1,6 @@
+export declare const DEFAULT_SESSION_COOKIE_MAX_AGE: number;
+export declare const DEFAULT_SESSION_COOKIE_SECURE: boolean;
+export declare const DEFAULT_SESSION_COOKIE_HTTP_ONLY = true;
+export declare const DEFAULT_SESSION_RESAVE = false;
+export declare const DEFAULT_SESSION_SAVE_UNINITIALIZED = false;
+//# sourceMappingURL=defaults.d.ts.map

package/dist/defaults.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"defaults.d.ts","sourceRoot":"","sources":["../src/defaults.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,8BAA8B,QAAsB,CAAC;AAClE,eAAO,MAAM,6BAA6B,SACH,CAAC;AACxC,eAAO,MAAM,gCAAgC,OAAO,CAAC;AACrD,eAAO,MAAM,sBAAsB,QAAQ,CAAC;AAC5C,eAAO,MAAM,kCAAkC,QAAQ,CAAC"}

package/dist/defaults.js

@@ -0,0 +1,5 @@
+export const DEFAULT_SESSION_COOKIE_MAX_AGE = 1000 * 60 * 60 * 24; // 1 day
+export const DEFAULT_SESSION_COOKIE_SECURE = process.env.NODE_ENV === 'production';
+export const DEFAULT_SESSION_COOKIE_HTTP_ONLY = true;
+export const DEFAULT_SESSION_RESAVE = false;
+export const DEFAULT_SESSION_SAVE_UNINITIALIZED = false;

package/dist/index.d.ts

@@ -0,0 +1,5 @@
+export * from './configure.js';
+export * from './defaults.js';
+export * from './parse-options.js';
+export * from './schema.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,gBAAgB,CAAC;AAC/B,cAAc,eAAe,CAAC;AAC9B,cAAc,oBAAoB,CAAC;AACnC,cAAc,aAAa,CAAC"}

package/dist/index.js

@@ -0,0 +1,4 @@
+export * from './configure.js';
+export * from './defaults.js';
+export * from './parse-options.js';
+export * from './schema.js';

package/dist/parse-options.d.ts

@@ -0,0 +1,3 @@
+import { type SessionOptionsInput, type SessionOptionsOutput } from './schema.js';
+export declare const parseSessionOptions: (options?: SessionOptionsInput) => SessionOptionsOutput;
+//# sourceMappingURL=parse-options.d.ts.map

package/dist/parse-options.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"parse-options.d.ts","sourceRoot":"","sources":["../src/parse-options.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,mBAAmB,EACxB,KAAK,oBAAoB,EAE1B,MAAM,aAAa,CAAC;AAErB,eAAO,MAAM,mBAAmB,GAC9B,UAAU,mBAAmB,KAC5B,oBAQF,CAAC"}

package/dist/parse-options.js

@@ -0,0 +1,8 @@
+import { SessionOptionsSchema, } from './schema.js';
+export const parseSessionOptions = (options) => {
+    const result = SessionOptionsSchema.safeParse(options);
+    if (!result.success) {
+        throw new Error('Invalid session options');
+    }
+    return result.data;
+};

package/dist/schema.d.ts

@@ -0,0 +1,23 @@
+import { z } from 'zod';
+export declare const SessionCookieSchema: z.ZodDefault<z.ZodOptional<z.ZodObject<{
+    secure: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
+    maxAge: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
+    httpOnly: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
+}, z.core.$strip>>>;
+export declare const SessionOptionsSchema: z.ZodDefault<z.ZodOptional<z.ZodUnion<readonly [z.ZodLiteral<false>, z.ZodObject<{
+    secret: z.ZodString;
+    resave: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
+    saveUninitialized: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
+    cookie: z.ZodDefault<z.ZodOptional<z.ZodObject<{
+        secure: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
+        maxAge: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
+        httpOnly: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
+    }, z.core.$strip>>>;
+}, z.core.$strip>]>>>;
+export type SessionOptions = z.infer<typeof SessionOptionsSchema>;
+export type SessionOptionsInput = z.input<typeof SessionOptionsSchema>;
+export type SessionOptionsOutput = z.output<typeof SessionOptionsSchema>;
+export type SessionCookie = z.infer<typeof SessionCookieSchema>;
+export type SessionCookieInput = z.input<typeof SessionCookieSchema>;
+export type SessionCookieOutput = z.output<typeof SessionCookieSchema>;
+//# sourceMappingURL=schema.d.ts.map

package/dist/schema.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"schema.d.ts","sourceRoot":"","sources":["../src/schema.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAUxB,eAAO,MAAM,mBAAmB;;;;mBAW5B,CAAC;AAEL,eAAO,MAAM,oBAAoB;;;;;;;;;qBAchB,CAAC;AAElB,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAClE,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AACvE,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAEzE,MAAM,MAAM,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAChE,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AACrE,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,mBAAmB,CAAC,CAAC"}

package/dist/schema.js

@@ -0,0 +1,29 @@
+import { z } from 'zod';
+import { DEFAULT_SESSION_COOKIE_HTTP_ONLY, DEFAULT_SESSION_COOKIE_MAX_AGE, DEFAULT_SESSION_COOKIE_SECURE, DEFAULT_SESSION_RESAVE, DEFAULT_SESSION_SAVE_UNINITIALIZED, } from './defaults.js';
+export const SessionCookieSchema = z
+    .object({
+    secure: z.boolean().optional().default(DEFAULT_SESSION_COOKIE_SECURE),
+    maxAge: z.number().optional().default(DEFAULT_SESSION_COOKIE_MAX_AGE),
+    httpOnly: z.boolean().optional().default(DEFAULT_SESSION_COOKIE_HTTP_ONLY),
+})
+    .optional()
+    .default({
+    secure: DEFAULT_SESSION_COOKIE_SECURE,
+    maxAge: DEFAULT_SESSION_COOKIE_MAX_AGE,
+    httpOnly: DEFAULT_SESSION_COOKIE_HTTP_ONLY,
+});
+export const SessionOptionsSchema = z
+    .union([
+    z.literal(false),
+    z.object({
+        secret: z.string(),
+        resave: z.boolean().optional().default(DEFAULT_SESSION_RESAVE),
+        saveUninitialized: z
+            .boolean()
+            .optional()
+            .default(DEFAULT_SESSION_SAVE_UNINITIALIZED),
+        cookie: SessionCookieSchema,
+    }),
+])
+    .optional()
+    .default(false);

package/package.json

@@ -0,0 +1,50 @@
+{
+  "name": "@wnodex/session",
+  "version": "0.2.1",
+  "private": false,
+  "description": "wnodex session middleware",
+  "keywords": [
+    "wnodex"
+  ],
+  "homepage": "https://github.com/wnodex/wnodex#readme",
+  "bugs": {
+    "url": "https://github.com/wnodex/wnodex/issues"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/wnodex/wnodex.git",
+    "directory": "packages/session"
+  },
+  "license": "MIT",
+  "type": "module",
+  "exports": {
+    "./package.json": "./package.json",
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "default": "./dist/index.js"
+    }
+  },
+  "main": "./dist/index.js",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "dependencies": {
+    "express": "^5.2.1",
+    "express-session": "^1.19.0",
+    "zod": "^4.3.6"
+  },
+  "devDependencies": {
+    "@types/express": "^5.0.6",
+    "@types/express-session": "^1.18.2",
+    "@types/node": "^25.0.10",
+    "rolldown": "1.0.0-rc.1",
+    "typescript": "5.9.2",
+    "@wnodex/typescript-config": "0.2.1"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "scripts": {
+    "build": "rolldown -c && tsc"
+  }
+}

package/rolldown.config.ts

@@ -0,0 +1,20 @@
+import { defineConfig } from 'rolldown';
+
+export default defineConfig([
+  {
+    input: ['src/index.ts'],
+    output: {
+      format: 'esm',
+      dir: 'dist',
+      entryFileNames: '[name].js',
+      chunkFileNames: '[name]-[hash].js',
+      assetFileNames: '[name]-[hash][extname]',
+    },
+    platform: 'node',
+    external: (id) => {
+      if (id.startsWith('node:')) return true;
+      if (id.startsWith('.') || id.startsWith('/')) return false;
+      return true;
+    },
+  },
+]);

package/src/configure.ts

@@ -0,0 +1,23 @@
+import type { Application } from 'express';
+
+import session from 'express-session';
+
+import { parseSessionOptions } from './parse-options.js';
+import { SessionOptionsInput } from './schema.js';
+
+export const configureSession = (
+  app: Application,
+  config: SessionOptionsInput
+) => {
+  const logger = app.get('logger') ?? console;
+  const options = parseSessionOptions(config);
+
+  if (typeof options === 'boolean') {
+    logger.info('Session disabled');
+
+    return;
+  }
+
+  logger.info('Session enabled');
+  return app.use(session({ ...options }));
+};

package/src/defaults.ts

@@ -0,0 +1,6 @@
+export const DEFAULT_SESSION_COOKIE_MAX_AGE = 1000 * 60 * 60 * 24; // 1 day
+export const DEFAULT_SESSION_COOKIE_SECURE =
+  process.env.NODE_ENV === 'production';
+export const DEFAULT_SESSION_COOKIE_HTTP_ONLY = true;
+export const DEFAULT_SESSION_RESAVE = false;
+export const DEFAULT_SESSION_SAVE_UNINITIALIZED = false;

package/src/index.ts

@@ -0,0 +1,4 @@
+export * from './configure.js';
+export * from './defaults.js';
+export * from './parse-options.js';
+export * from './schema.js';

package/src/parse-options.ts

@@ -0,0 +1,17 @@
+import {
+  type SessionOptionsInput,
+  type SessionOptionsOutput,
+  SessionOptionsSchema,
+} from './schema.js';
+
+export const parseSessionOptions = (
+  options?: SessionOptionsInput
+): SessionOptionsOutput => {
+  const result = SessionOptionsSchema.safeParse(options);
+
+  if (!result.success) {
+    throw new Error('Invalid session options');
+  }
+
+  return result.data;
+};

package/src/schema.ts

@@ -0,0 +1,46 @@
+import { z } from 'zod';
+
+import {
+  DEFAULT_SESSION_COOKIE_HTTP_ONLY,
+  DEFAULT_SESSION_COOKIE_MAX_AGE,
+  DEFAULT_SESSION_COOKIE_SECURE,
+  DEFAULT_SESSION_RESAVE,
+  DEFAULT_SESSION_SAVE_UNINITIALIZED,
+} from './defaults.js';
+
+export const SessionCookieSchema = z
+  .object({
+    secure: z.boolean().optional().default(DEFAULT_SESSION_COOKIE_SECURE),
+    maxAge: z.number().optional().default(DEFAULT_SESSION_COOKIE_MAX_AGE),
+    httpOnly: z.boolean().optional().default(DEFAULT_SESSION_COOKIE_HTTP_ONLY),
+  })
+  .optional()
+  .default({
+    secure: DEFAULT_SESSION_COOKIE_SECURE,
+    maxAge: DEFAULT_SESSION_COOKIE_MAX_AGE,
+    httpOnly: DEFAULT_SESSION_COOKIE_HTTP_ONLY,
+  });
+
+export const SessionOptionsSchema = z
+  .union([
+    z.literal(false),
+    z.object({
+      secret: z.string(),
+      resave: z.boolean().optional().default(DEFAULT_SESSION_RESAVE),
+      saveUninitialized: z
+        .boolean()
+        .optional()
+        .default(DEFAULT_SESSION_SAVE_UNINITIALIZED),
+      cookie: SessionCookieSchema,
+    }),
+  ])
+  .optional()
+  .default(false);
+
+export type SessionOptions = z.infer<typeof SessionOptionsSchema>;
+export type SessionOptionsInput = z.input<typeof SessionOptionsSchema>;
+export type SessionOptionsOutput = z.output<typeof SessionOptionsSchema>;
+
+export type SessionCookie = z.infer<typeof SessionCookieSchema>;
+export type SessionCookieInput = z.input<typeof SessionCookieSchema>;
+export type SessionCookieOutput = z.output<typeof SessionCookieSchema>;

package/tsconfig.json

@@ -0,0 +1,10 @@
+{
+  "extends": "@wnodex/typescript-config/base.json",
+  "compilerOptions": {
+    "outDir": "./dist",
+    "rootDir": "./src",
+    "tsBuildInfoFile": "./dist/.tsbuildinfo"
+  },
+  "include": ["src/**/*"],
+  "exclude": ["node_modules", "**/*.test.ts"]
+}