@wooksjs/event-wf 0.7.13 → 0.7.15

package/dist/index.cjs

@@ -2,7 +2,7 @@ Object.defineProperty(exports, Symbol.toStringTag, { value: 'Module' });
 let _wooksjs_event_core = require("@wooksjs/event-core");
 let _wooksjs_event_http = require("@wooksjs/event-http");
 let _wooksjs_http_body = require("@wooksjs/http-body");
-let node_crypto = require("node:crypto");
+let _prostojs_wf_outlets = require("@prostojs/wf/outlets");
 let _prostojs_wf = require("@prostojs/wf");
 let wooks = require("wooks");
 
@@ -146,6 +146,7 @@ async function handleWfOutletRequest(config, deps) {
 	const input = body?.input;
 	const resolveStrategy = (id) => typeof config.state === "function" ? config.state(id) : config.state;
 	let output;
+	let strategyReResolved = false;
 	if (token) {
 		const strategy = resolveStrategy(wfid ?? "");
 		ctx.set(stateStrategyKey, strategy);
@@ -156,7 +157,10 @@ async function handleWfOutletRequest(config, deps) {
 		}
 		if (state.schemaId !== (wfid ?? "")) {
 			const realStrategy = resolveStrategy(state.schemaId);
-			ctx.set(stateStrategyKey, realStrategy);
+			if (realStrategy !== strategy) {
+				ctx.set(stateStrategyKey, realStrategy);
+				strategyReResolved = true;
+			}
 		}
 		output = await deps.resume(state, {
 			input,
@@ -212,7 +216,8 @@ async function handleWfOutletRequest(config, deps) {
 			...output.state,
 			meta: { outlet: outletReq.outlet }
 		};
-		const newToken = await strategy.persist(stateWithMeta, output.expires ? { ttl: output.expires - Date.now() } : void 0);
+		const reuseHandle = token && !strategyReResolved ? { handle: token } : void 0;
+		const newToken = await strategy.persist(stateWithMeta, output.expires ? { ttl: output.expires - Date.now() } : void 0, reuseHandle);
 		const outOfBand = outletHandler.tokenDelivery === "out-of-band";
 		if (tokenWrite === "cookie" && !outOfBand) response.setCookie(tokenName, newToken, {
 			httpOnly: true,
@@ -315,213 +320,6 @@ function createOutletHandler(wfApp) {
 	});
 }
 
-//#endregion
-//#region node_modules/.pnpm/@prostojs+wf@0.2.0/node_modules/@prostojs/wf/dist/outlets/index.mjs
-/**
-* Generic outlet request. Use for custom outlets.
-*
-* @example
-* return outlet('pending-task', {
-*   payload: ApprovalForm,
-*   target: managerId,
-*   context: { orderId, amount },
-* })
-*/
-function outlet(name, data) {
-	return { inputRequired: {
-		outlet: name,
-		...data
-	} };
-}
-/**
-* Pause for HTTP form input. The outlet returns the payload (form definition)
-* and state token in the HTTP response.
-*
-* @example
-* return outletHttp(LoginForm)
-* return outletHttp(LoginForm, { error: 'Invalid credentials' })
-*/
-function outletHttp(payload, context) {
-	return outlet("http", {
-		payload,
-		context
-	});
-}
-/**
-* Pause and send email with a magic link containing the state token.
-*
-* @example
-* return outletEmail('user@test.com', 'invite', { name: 'Alice' })
-*/
-function outletEmail(target, template, context) {
-	return outlet("email", {
-		target,
-		template,
-		context
-	});
-}
-/**
-* Self-contained AES-256-GCM encrypted state strategy.
-*
-* Workflow state is encrypted into a base64url token that travels with the
-* transport (cookie, URL param, hidden field). No server-side storage needed.
-*
-* Token format: `base64url(iv[12] + authTag[16] + ciphertext)`
-*
-* ## Security warning — replay
-*
-* This strategy is STATELESS. It cannot enforce single-use semantics:
-* `consume()` is a no-op alias for `retrieve()` because there is no
-* server-side record to delete. Anyone who obtains a copy of the token
-* (browser history, server logs, shoulder-surfing, intermediate proxy,
-* shared device) can replay it until the TTL expires.
-*
-* Use `EncapsulatedStateStrategy` ONLY when BOTH of the following hold:
-*
-* 1. Every workflow step is idempotent — re-executing a step with the same
-*    input produces no harmful side effects (pure data collection,
-*    validation-only steps).
-* 2. The flow is not security-sensitive — no credential changes, financial
-*    operations, account provisioning, permission grants, or any other
-*    privileged action.
-*
-* For auth flows (login, password reset, invite accept), financial
-* operations, or anything with meaningful side effects, use
-* `HandleStateStrategy` with a durable `WfStateStore`. `HandleStateStrategy`
-* supports true single-use tokens via atomic `getAndDelete` at the store
-* layer.
-*
-* @example
-* const strategy = new EncapsulatedStateStrategy({
-*     secret: crypto.randomBytes(32),
-*     defaultTtl: 3600_000, // 1 hour
-* });
-* const token = await strategy.persist(state);
-* const recovered = await strategy.retrieve(token);
-*/
-var EncapsulatedStateStrategy = class {
-	/** @throws if secret is not exactly 32 bytes */
-	constructor(config) {
-		this.config = config;
-		this.key = typeof config.secret === "string" ? Buffer.from(config.secret, "hex") : config.secret;
-		if (this.key.length !== 32) throw new Error("EncapsulatedStateStrategy: secret must be exactly 32 bytes");
-	}
-	/**
-	* Encrypt workflow state into a self-contained token.
-	* @param state — workflow state to persist
-	* @param options.ttl — time-to-live in ms (overrides defaultTtl)
-	* @returns base64url-encoded encrypted token
-	*/
-	async persist(state, options) {
-		const ttl = options?.ttl ?? this.config.defaultTtl ?? 0;
-		const exp = ttl > 0 ? Date.now() + ttl : 0;
-		const payload = JSON.stringify({
-			s: state,
-			e: exp
-		});
-		const iv = (0, node_crypto.randomBytes)(12);
-		const cipher = (0, node_crypto.createCipheriv)("aes-256-gcm", this.key, iv);
-		const encrypted = Buffer.concat([cipher.update(payload, "utf8"), cipher.final()]);
-		const tag = cipher.getAuthTag();
-		return Buffer.concat([
-			iv,
-			tag,
-			encrypted
-		]).toString("base64url");
-	}
-	/** Decrypt and return workflow state. Returns null if token is invalid, expired, or tampered. */
-	async retrieve(token) {
-		return this.decrypt(token);
-	}
-	/**
-	* Stateless — CANNOT invalidate the token. Returns identical result to
-	* `retrieve()`. See the class-level security warning.
-	*
-	* This method exists only to satisfy the `WfStateStrategy` contract.
-	* Callers that need true single-use semantics must use
-	* `HandleStateStrategy`.
-	*/
-	async consume(token) {
-		return this.decrypt(token);
-	}
-	decrypt(token) {
-		try {
-			const buf = Buffer.from(token, "base64url");
-			if (buf.length < 28) return null;
-			const iv = buf.subarray(0, 12);
-			const tag = buf.subarray(12, 28);
-			const ciphertext = buf.subarray(28);
-			const decipher = (0, node_crypto.createDecipheriv)("aes-256-gcm", this.key, iv);
-			decipher.setAuthTag(tag);
-			const decrypted = Buffer.concat([decipher.update(ciphertext), decipher.final()]);
-			const { s: state, e: exp } = JSON.parse(decrypted.toString("utf8"));
-			if (exp > 0 && Date.now() > exp) return null;
-			return state;
-		} catch {
-			return null;
-		}
-	}
-};
-var HandleStateStrategy = class {
-	constructor(config) {
-		this.config = config;
-	}
-	async persist(state, options) {
-		const handle = (this.config.generateHandle ?? node_crypto.randomUUID)();
-		const ttl = options?.ttl ?? this.config.defaultTtl ?? 0;
-		const expiresAt = ttl > 0 ? Date.now() + ttl : void 0;
-		await this.config.store.set(handle, state, expiresAt);
-		return handle;
-	}
-	async retrieve(token) {
-		return (await this.config.store.get(token))?.state ?? null;
-	}
-	async consume(token) {
-		return (await this.config.store.getAndDelete(token))?.state ?? null;
-	}
-};
-/**
-* In-memory state store for development and testing.
-* State is lost on process restart.
-*/
-var WfStateStoreMemory = class {
-	constructor() {
-		this.store = /* @__PURE__ */ new Map();
-	}
-	async set(handle, state, expiresAt) {
-		this.store.set(handle, {
-			state,
-			expiresAt
-		});
-	}
-	async get(handle) {
-		const entry = this.store.get(handle);
-		if (!entry) return null;
-		if (entry.expiresAt && Date.now() > entry.expiresAt) {
-			this.store.delete(handle);
-			return null;
-		}
-		return entry;
-	}
-	async delete(handle) {
-		this.store.delete(handle);
-	}
-	async getAndDelete(handle) {
-		const entry = await this.get(handle);
-		if (entry) this.store.delete(handle);
-		return entry;
-	}
-	async cleanup() {
-		const now = Date.now();
-		let count = 0;
-		for (const [handle, entry] of this.store) if (entry.expiresAt && now > entry.expiresAt) {
-			this.store.delete(handle);
-			count++;
-		}
-		return count;
-	}
-};
-
 //#endregion
 //#region packages/event-wf/src/workflow.ts
 /** Workflow engine that resolves steps via Wooks router lookup. */
@@ -706,15 +504,30 @@ function createWfApp(opts, wooks$2) {
 }
 
 //#endregion
-exports.EncapsulatedStateStrategy = EncapsulatedStateStrategy;
-exports.HandleStateStrategy = HandleStateStrategy;
+Object.defineProperty(exports, 'EncapsulatedStateStrategy', {
+  enumerable: true,
+  get: function () {
+    return _prostojs_wf_outlets.EncapsulatedStateStrategy;
+  }
+});
+Object.defineProperty(exports, 'HandleStateStrategy', {
+  enumerable: true,
+  get: function () {
+    return _prostojs_wf_outlets.HandleStateStrategy;
+  }
+});
 Object.defineProperty(exports, 'StepRetriableError', {
   enumerable: true,
   get: function () {
     return _prostojs_wf.StepRetriableError;
   }
 });
-exports.WfStateStoreMemory = WfStateStoreMemory;
+Object.defineProperty(exports, 'WfStateStoreMemory', {
+  enumerable: true,
+  get: function () {
+    return _prostojs_wf_outlets.WfStateStoreMemory;
+  }
+});
 exports.WooksWf = WooksWf;
 exports.createEmailOutlet = createEmailOutlet;
 exports.createHttpOutlet = createHttpOutlet;
@@ -722,9 +535,24 @@ exports.createOutletHandler = createOutletHandler;
 exports.createWfApp = createWfApp;
 exports.createWfContext = createWfContext;
 exports.handleWfOutletRequest = handleWfOutletRequest;
-exports.outlet = outlet;
-exports.outletEmail = outletEmail;
-exports.outletHttp = outletHttp;
+Object.defineProperty(exports, 'outlet', {
+  enumerable: true,
+  get: function () {
+    return _prostojs_wf_outlets.outlet;
+  }
+});
+Object.defineProperty(exports, 'outletEmail', {
+  enumerable: true,
+  get: function () {
+    return _prostojs_wf_outlets.outletEmail;
+  }
+});
+Object.defineProperty(exports, 'outletHttp', {
+  enumerable: true,
+  get: function () {
+    return _prostojs_wf_outlets.outletHttp;
+  }
+});
 exports.resumeKey = resumeKey;
 exports.resumeWfContext = resumeWfContext;
 Object.defineProperty(exports, 'useLogger', {

package/dist/index.mjs

@@ -1,7 +1,7 @@
 import { createEventContext, current, defineEventKind, defineWook, key, slot, useLogger, useRouteParams } from "@wooksjs/event-core";
 import { useCookies, useResponse, useUrlParams } from "@wooksjs/event-http";
 import { useBody } from "@wooksjs/http-body";
-import { createCipheriv, createDecipheriv, randomBytes, randomUUID } from "node:crypto";
+import { EncapsulatedStateStrategy, HandleStateStrategy, WfStateStoreMemory, outlet, outletEmail, outletHttp } from "@prostojs/wf/outlets";
 import { StepRetriableError, Workflow, createStep } from "@prostojs/wf";
 import { WooksAdapterBase } from "wooks";
 
@@ -145,6 +145,7 @@ async function handleWfOutletRequest(config, deps) {
 	const input = body?.input;
 	const resolveStrategy = (id) => typeof config.state === "function" ? config.state(id) : config.state;
 	let output;
+	let strategyReResolved = false;
 	if (token) {
 		const strategy = resolveStrategy(wfid ?? "");
 		ctx.set(stateStrategyKey, strategy);
@@ -155,7 +156,10 @@ async function handleWfOutletRequest(config, deps) {
 		}
 		if (state.schemaId !== (wfid ?? "")) {
 			const realStrategy = resolveStrategy(state.schemaId);
-			ctx.set(stateStrategyKey, realStrategy);
+			if (realStrategy !== strategy) {
+				ctx.set(stateStrategyKey, realStrategy);
+				strategyReResolved = true;
+			}
 		}
 		output = await deps.resume(state, {
 			input,
@@ -211,7 +215,8 @@ async function handleWfOutletRequest(config, deps) {
 			...output.state,
 			meta: { outlet: outletReq.outlet }
 		};
-		const newToken = await strategy.persist(stateWithMeta, output.expires ? { ttl: output.expires - Date.now() } : void 0);
+		const reuseHandle = token && !strategyReResolved ? { handle: token } : void 0;
+		const newToken = await strategy.persist(stateWithMeta, output.expires ? { ttl: output.expires - Date.now() } : void 0, reuseHandle);
 		const outOfBand = outletHandler.tokenDelivery === "out-of-band";
 		if (tokenWrite === "cookie" && !outOfBand) response.setCookie(tokenName, newToken, {
 			httpOnly: true,
@@ -314,213 +319,6 @@ function createOutletHandler(wfApp) {
 	});
 }
 
-//#endregion
-//#region node_modules/.pnpm/@prostojs+wf@0.2.0/node_modules/@prostojs/wf/dist/outlets/index.mjs
-/**
-* Generic outlet request. Use for custom outlets.
-*
-* @example
-* return outlet('pending-task', {
-*   payload: ApprovalForm,
-*   target: managerId,
-*   context: { orderId, amount },
-* })
-*/
-function outlet(name, data) {
-	return { inputRequired: {
-		outlet: name,
-		...data
-	} };
-}
-/**
-* Pause for HTTP form input. The outlet returns the payload (form definition)
-* and state token in the HTTP response.
-*
-* @example
-* return outletHttp(LoginForm)
-* return outletHttp(LoginForm, { error: 'Invalid credentials' })
-*/
-function outletHttp(payload, context) {
-	return outlet("http", {
-		payload,
-		context
-	});
-}
-/**
-* Pause and send email with a magic link containing the state token.
-*
-* @example
-* return outletEmail('user@test.com', 'invite', { name: 'Alice' })
-*/
-function outletEmail(target, template, context) {
-	return outlet("email", {
-		target,
-		template,
-		context
-	});
-}
-/**
-* Self-contained AES-256-GCM encrypted state strategy.
-*
-* Workflow state is encrypted into a base64url token that travels with the
-* transport (cookie, URL param, hidden field). No server-side storage needed.
-*
-* Token format: `base64url(iv[12] + authTag[16] + ciphertext)`
-*
-* ## Security warning — replay
-*
-* This strategy is STATELESS. It cannot enforce single-use semantics:
-* `consume()` is a no-op alias for `retrieve()` because there is no
-* server-side record to delete. Anyone who obtains a copy of the token
-* (browser history, server logs, shoulder-surfing, intermediate proxy,
-* shared device) can replay it until the TTL expires.
-*
-* Use `EncapsulatedStateStrategy` ONLY when BOTH of the following hold:
-*
-* 1. Every workflow step is idempotent — re-executing a step with the same
-*    input produces no harmful side effects (pure data collection,
-*    validation-only steps).
-* 2. The flow is not security-sensitive — no credential changes, financial
-*    operations, account provisioning, permission grants, or any other
-*    privileged action.
-*
-* For auth flows (login, password reset, invite accept), financial
-* operations, or anything with meaningful side effects, use
-* `HandleStateStrategy` with a durable `WfStateStore`. `HandleStateStrategy`
-* supports true single-use tokens via atomic `getAndDelete` at the store
-* layer.
-*
-* @example
-* const strategy = new EncapsulatedStateStrategy({
-*     secret: crypto.randomBytes(32),
-*     defaultTtl: 3600_000, // 1 hour
-* });
-* const token = await strategy.persist(state);
-* const recovered = await strategy.retrieve(token);
-*/
-var EncapsulatedStateStrategy = class {
-	/** @throws if secret is not exactly 32 bytes */
-	constructor(config) {
-		this.config = config;
-		this.key = typeof config.secret === "string" ? Buffer.from(config.secret, "hex") : config.secret;
-		if (this.key.length !== 32) throw new Error("EncapsulatedStateStrategy: secret must be exactly 32 bytes");
-	}
-	/**
-	* Encrypt workflow state into a self-contained token.
-	* @param state — workflow state to persist
-	* @param options.ttl — time-to-live in ms (overrides defaultTtl)
-	* @returns base64url-encoded encrypted token
-	*/
-	async persist(state, options) {
-		const ttl = options?.ttl ?? this.config.defaultTtl ?? 0;
-		const exp = ttl > 0 ? Date.now() + ttl : 0;
-		const payload = JSON.stringify({
-			s: state,
-			e: exp
-		});
-		const iv = randomBytes(12);
-		const cipher = createCipheriv("aes-256-gcm", this.key, iv);
-		const encrypted = Buffer.concat([cipher.update(payload, "utf8"), cipher.final()]);
-		const tag = cipher.getAuthTag();
-		return Buffer.concat([
-			iv,
-			tag,
-			encrypted
-		]).toString("base64url");
-	}
-	/** Decrypt and return workflow state. Returns null if token is invalid, expired, or tampered. */
-	async retrieve(token) {
-		return this.decrypt(token);
-	}
-	/**
-	* Stateless — CANNOT invalidate the token. Returns identical result to
-	* `retrieve()`. See the class-level security warning.
-	*
-	* This method exists only to satisfy the `WfStateStrategy` contract.
-	* Callers that need true single-use semantics must use
-	* `HandleStateStrategy`.
-	*/
-	async consume(token) {
-		return this.decrypt(token);
-	}
-	decrypt(token) {
-		try {
-			const buf = Buffer.from(token, "base64url");
-			if (buf.length < 28) return null;
-			const iv = buf.subarray(0, 12);
-			const tag = buf.subarray(12, 28);
-			const ciphertext = buf.subarray(28);
-			const decipher = createDecipheriv("aes-256-gcm", this.key, iv);
-			decipher.setAuthTag(tag);
-			const decrypted = Buffer.concat([decipher.update(ciphertext), decipher.final()]);
-			const { s: state, e: exp } = JSON.parse(decrypted.toString("utf8"));
-			if (exp > 0 && Date.now() > exp) return null;
-			return state;
-		} catch {
-			return null;
-		}
-	}
-};
-var HandleStateStrategy = class {
-	constructor(config) {
-		this.config = config;
-	}
-	async persist(state, options) {
-		const handle = (this.config.generateHandle ?? randomUUID)();
-		const ttl = options?.ttl ?? this.config.defaultTtl ?? 0;
-		const expiresAt = ttl > 0 ? Date.now() + ttl : void 0;
-		await this.config.store.set(handle, state, expiresAt);
-		return handle;
-	}
-	async retrieve(token) {
-		return (await this.config.store.get(token))?.state ?? null;
-	}
-	async consume(token) {
-		return (await this.config.store.getAndDelete(token))?.state ?? null;
-	}
-};
-/**
-* In-memory state store for development and testing.
-* State is lost on process restart.
-*/
-var WfStateStoreMemory = class {
-	constructor() {
-		this.store = /* @__PURE__ */ new Map();
-	}
-	async set(handle, state, expiresAt) {
-		this.store.set(handle, {
-			state,
-			expiresAt
-		});
-	}
-	async get(handle) {
-		const entry = this.store.get(handle);
-		if (!entry) return null;
-		if (entry.expiresAt && Date.now() > entry.expiresAt) {
-			this.store.delete(handle);
-			return null;
-		}
-		return entry;
-	}
-	async delete(handle) {
-		this.store.delete(handle);
-	}
-	async getAndDelete(handle) {
-		const entry = await this.get(handle);
-		if (entry) this.store.delete(handle);
-		return entry;
-	}
-	async cleanup() {
-		const now = Date.now();
-		let count = 0;
-		for (const [handle, entry] of this.store) if (entry.expiresAt && now > entry.expiresAt) {
-			this.store.delete(handle);
-			count++;
-		}
-		return count;
-	}
-};
-
 //#endregion
 //#region packages/event-wf/src/workflow.ts
 /** Workflow engine that resolves steps via Wooks router lookup. */

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wooksjs/event-wf",
-  "version": "0.7.13",
+  "version": "0.7.15",
   "description": "@wooksjs/event-wf",
   "keywords": [
     "app",
@@ -37,22 +37,22 @@
     }
   },
   "dependencies": {
-    "@prostojs/wf": "^0.2.0"
+    "@prostojs/wf": "^0.2.1"
   },
   "devDependencies": {
     "typescript": "^5.9.3",
     "vitest": "^3.2.4",
-    "@wooksjs/event-core": "^0.7.13",
-    "@wooksjs/event-http": "^0.7.13",
-    "@wooksjs/http-body": "^0.7.13",
-    "wooks": "^0.7.13"
+    "@wooksjs/event-core": "^0.7.15",
+    "@wooksjs/event-http": "^0.7.15",
+    "wooks": "^0.7.15",
+    "@wooksjs/http-body": "^0.7.15"
   },
   "peerDependencies": {
     "@prostojs/logger": "^0.4.3",
-    "@wooksjs/event-core": "^0.7.13",
-    "@wooksjs/http-body": "^0.7.13",
-    "@wooksjs/event-http": "^0.7.13",
-    "wooks": "^0.7.13"
+    "@wooksjs/event-core": "^0.7.15",
+    "wooks": "^0.7.15",
+    "@wooksjs/event-http": "^0.7.15",
+    "@wooksjs/http-body": "^0.7.15"
   },
   "peerDependenciesMeta": {
     "@wooksjs/event-http": {