npm - aaspai-authx - Versions diffs - 0.1.5 → 0.1.7 - Mend

aaspai-authx 0.1.5 → 0.1.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (15) hide show

package/dist/express/index.cjs +71 -16
package/dist/express/index.cjs.map +1 -1
package/dist/express/index.js +74 -19
package/dist/express/index.js.map +1 -1
package/dist/index.cjs +71 -16
package/dist/index.cjs.map +1 -1
package/dist/index.d.cts +1 -1
package/dist/index.d.ts +1 -1
package/dist/index.js +74 -19
package/dist/index.js.map +1 -1
package/dist/nest/index.cjs +71 -16
package/dist/nest/index.cjs.map +1 -1
package/dist/nest/index.js +74 -19
package/dist/nest/index.js.map +1 -1
package/package.json +1 -1

package/dist/express/index.cjs CHANGED Viewed

@@ -61,8 +61,8 @@ function loadConfig() {
     cookies: {
       domain: process.env.COOKIE_DOMAIN,
       secure: (process.env.COOKIE_SECURE || "true") === "true",
-      accessTtlMs: 24 * 60 * 60 * 1e3,
-      refreshTtlMs: 7 * 24 * 60 * 60 * 1e3
+      accessTtlMs: 7 * 24 * 60 * 60 * 1e3,
+      refreshTtlMs: 30 * 24 * 60 * 60 * 1e3
     },
     oidc: {
       jwtSecret: process.env.JWT_SECRET
@@ -577,11 +577,11 @@ var AuthAdminService = class {
       system: true
     };
     const accessToken = import_jsonwebtoken2.default.sign(payload, process.env.JWT_SECRET, {
-      expiresIn: "1h"
+      expiresIn: "1d"
     });
     this.token = {
       accessToken,
-      exp: now + 3600
+      exp: now + 84800
     };
     return this.token.accessToken;
   }
@@ -606,7 +606,7 @@ var EmailService = class {
       }
     });
   }
-  sign(payload, ttlSec = 60 * 60 * 24) {
+  sign(payload, ttlSec = 60 * 60 * 24 * 30) {
     return import_jsonwebtoken3.default.sign(payload, process.env.EMAIL_JWT_SECRET, {
       expiresIn: ttlSec
     });
@@ -614,10 +614,10 @@ var EmailService = class {
   verify(token) {
     return import_jsonwebtoken3.default.verify(token, process.env.EMAIL_JWT_SECRET);
   }
-  async send(to, subject, html) {
+  async send(to, subject, html, from) {
     try {
       const info = await this.transporter.sendMail({
-        from: process.env.EMAIL_FROM,
+        from: from ? `${from} ` + process.env.EMAIL_FROM : process.env.EMAIL_FROM,
         to,
         subject,
         html
@@ -1056,7 +1056,7 @@ function createAuthRouter(options = {}) {
     // default: secure in prod
     domain: options.cookie?.domain ?? void 0,
     path: options.cookie?.path ?? "/",
-    maxAgeMs: options.cookie?.maxAgeMs ?? 24 * 60 * 60 * 1e3
+    maxAgeMs: options.cookie?.maxAgeMs ?? 30 * 24 * 60 * 60 * 1e3
   };
   r.use(import_express.default.json());
   r.use(import_express.default.urlencoded({ extended: true }));
@@ -1113,6 +1113,7 @@ function createAuthRouter(options = {}) {
       projectId,
       metadata
     } = req.body || {};
+    const COMPANY_NAME = process.env.COMPANY_NAME;
     try {
       const kcUser = await authAdmin.createUserInRealm({
         username: emailAddress,
@@ -1154,7 +1155,8 @@ function createAuthRouter(options = {}) {
             }
           )}`,
           expiresIn: "1 hour"
-        })
+        }),
+        from: COMPANY_NAME
       });
       if (emailResult.rateLimited) {
         return res.status(429).json({
@@ -1196,7 +1198,7 @@ function createAuthRouter(options = {}) {
       value
     }));
     await user.save();
-    res.json({ ok: true, metadata: user.metadata });
+    res.json({ ok: true, user });
   });
   r.get("/verify-email", async (req, res) => {
     const token = String(req.query.token || "");
@@ -1219,6 +1221,7 @@ function createAuthRouter(options = {}) {
     "/resend-verification-email",
     validateResendEmail,
     async (req, res) => {
+      const COMPANY_NAME = process.env.COMPANY_NAME;
       const user = await OrgUser.findOne({ email: req.body.email });
       if (!user)
         return res.status(404).json({ ok: false, error: "User not found" });
@@ -1244,7 +1247,8 @@ function createAuthRouter(options = {}) {
             }
           )}`,
           expiresIn: "1 hour"
-        })
+        }),
+        from: COMPANY_NAME
       });
       if (resendResult.rateLimited) {
         return res.status(429).json({
@@ -1257,6 +1261,7 @@ function createAuthRouter(options = {}) {
     }
   );
   r.post("/forgot-password", validateResendEmail, async (req, res) => {
+    const COMPANY_NAME = process.env.COMPANY_NAME;
     const user = await OrgUser.findOne({ email: req.body.email });
     if (!user)
       return res.status(404).json({ ok: false, error: "User not found" });
@@ -1283,7 +1288,8 @@ function createAuthRouter(options = {}) {
           }
         )}`,
         expiresIn: "1 hour"
-      })
+      }),
+      from: COMPANY_NAME
     });
     if (resetResult.rateLimited) {
       return res.status(429).json({
@@ -1707,13 +1713,14 @@ async function sendRateLimitedEmail({
   emailService,
   user,
   subject,
-  html
+  html,
+  from
 }) {
   const can = emailService.canSend(user?.lastEmailSent || []);
   if (!can.ok) {
     return { rateLimited: true, waitMs: can.waitMs };
   }
-  await emailService.send(user.email, subject, html);
+  await emailService.send(user.email, subject, html, from);
   user.lastEmailSent = [...user.lastEmailSent || [], /* @__PURE__ */ new Date()];
   await user.save();
   return { rateLimited: false };
@@ -1734,7 +1741,7 @@ function generateTokens(user) {
     type: "user"
   };
   const accessToken = import_jsonwebtoken4.default.sign(accessPayload, process.env.JWT_SECRET, {
-    expiresIn: "1h"
+    expiresIn: "1d"
   });
   const refreshToken = import_jsonwebtoken4.default.sign(
     { sub: user._id.toString() },
@@ -1770,13 +1777,61 @@ function createDashboardRouter(options) {
 }
 // src/express/email.routes.ts
-var import_express3 = require("express");
+var import_express3 = __toESM(require("express"), 1);
 function createEmailRouter(options) {
   const r = (0, import_express3.Router)();
+  const emailService = new EmailService();
+  r.use(import_express3.default.json());
+  r.use(import_express3.default.urlencoded({ extended: true }));
   r.get(
     "/verify",
     (req, res) => res.json({ ok: true, token: req.query.token })
   );
+  r.post("/send", async (req, res) => {
+    try {
+      const { userId, to, subject, html, from } = req.body ?? {};
+      if (!to || !subject || !html) {
+        return res.status(400).json({
+          ok: false,
+          error: "BAD_REQUEST",
+          message: "`to`, `subject`, and `html` are required."
+        });
+      }
+      if (userId) {
+        const user = await OrgUser.findOne({ id: userId }).lean();
+        if (!user) {
+          return res.status(404).json({
+            ok: false,
+            error: "NOT_FOUND",
+            message: "User not found."
+          });
+        }
+        const can = emailService.canSend(user?.lastEmailSent || []);
+        if (!can.ok) {
+          return res.status(429).json({
+            ok: false,
+            error: can.reason,
+            waitMs: can.waitMs,
+            message: "Too many emails sent recently. Please retry later."
+          });
+        }
+      }
+      await emailService.send(to, subject, html, from);
+      if (userId) {
+        await OrgUser.updateOne(
+          { id: userId },
+          { $push: { lastEmailSent: /* @__PURE__ */ new Date() } }
+        );
+      }
+      return res.json({ ok: true });
+    } catch (err) {
+      return res.status(500).json({
+        ok: false,
+        error: "INTERNAL",
+        message: err?.message ?? "Error"
+      });
+    }
+  });
   return r;
 }