npm - alepha - Versions diffs - 0.13.6 → 0.13.7 - Mend

alepha 0.13.6 → 0.13.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (134) hide show

package/dist/api-audits/index.browser.js +116 -0
package/dist/api-audits/index.browser.js.map +1 -0
package/dist/api-audits/index.d.ts +1194 -0
package/dist/api-audits/index.js +674 -0
package/dist/api-audits/index.js.map +1 -0
package/dist/api-notifications/index.d.ts +147 -147
package/dist/api-parameters/index.browser.js +36 -5
package/dist/api-parameters/index.browser.js.map +1 -1
package/dist/api-parameters/index.d.ts +711 -33
package/dist/api-parameters/index.js +831 -17
package/dist/api-parameters/index.js.map +1 -1
package/dist/api-users/index.d.ts +793 -780
package/dist/api-users/index.js +699 -19
package/dist/api-users/index.js.map +1 -1
package/dist/api-verifications/index.js +2 -1
package/dist/api-verifications/index.js.map +1 -1
package/dist/bin/index.js +1 -0
package/dist/bin/index.js.map +1 -1
package/dist/cli/index.d.ts +85 -31
package/dist/cli/index.js +205 -33
package/dist/cli/index.js.map +1 -1
package/dist/command/index.d.ts +67 -6
package/dist/command/index.js +30 -3
package/dist/command/index.js.map +1 -1
package/dist/core/index.browser.js +241 -61
package/dist/core/index.browser.js.map +1 -1
package/dist/core/index.d.ts +170 -90
package/dist/core/index.js +264 -67
package/dist/core/index.js.map +1 -1
package/dist/core/index.native.js +248 -65
package/dist/core/index.native.js.map +1 -1
package/dist/email/index.js +15 -10554
package/dist/email/index.js.map +1 -1
package/dist/logger/index.d.ts +4 -4
package/dist/logger/index.js +77 -72
package/dist/logger/index.js.map +1 -1
package/dist/orm/index.d.ts +5 -1
package/dist/orm/index.js +24 -7
package/dist/orm/index.js.map +1 -1
package/dist/queue/index.d.ts +4 -4
package/dist/scheduler/index.d.ts +6 -6
package/dist/server/index.d.ts +10 -1
package/dist/server/index.js +20 -6
package/dist/server/index.js.map +1 -1
package/dist/server-auth/index.d.ts +163 -152
package/dist/server-auth/index.js +40 -10
package/dist/server-auth/index.js.map +1 -1
package/dist/server-cookies/index.js +5 -1
package/dist/server-cookies/index.js.map +1 -1
package/dist/server-links/index.d.ts +33 -33
package/dist/server-security/index.d.ts +9 -9
package/dist/thread/index.js +2 -2
package/dist/thread/index.js.map +1 -1
package/dist/vite/index.d.ts +2 -2
package/dist/vite/index.js +102 -45
package/dist/vite/index.js.map +1 -1
package/dist/websocket/index.browser.js +3 -3
package/dist/websocket/index.browser.js.map +1 -1
package/dist/websocket/index.js +4 -4
package/dist/websocket/index.js.map +1 -1
package/package.json +14 -9
package/src/api-audits/controllers/AuditController.ts +186 -0
package/src/api-audits/entities/audits.ts +132 -0
package/src/api-audits/index.browser.ts +18 -0
package/src/api-audits/index.ts +58 -0
package/src/api-audits/primitives/$audit.ts +159 -0
package/src/api-audits/schemas/auditQuerySchema.ts +23 -0
package/src/api-audits/schemas/auditResourceSchema.ts +9 -0
package/src/api-audits/schemas/createAuditSchema.ts +27 -0
package/src/api-audits/services/AuditService.ts +412 -0
package/src/api-parameters/controllers/ConfigController.ts +324 -0
package/src/api-parameters/entities/parameters.ts +93 -10
package/src/api-parameters/index.ts +43 -4
package/src/api-parameters/primitives/$config.ts +291 -19
package/src/api-parameters/schedulers/ConfigActivationScheduler.ts +30 -0
package/src/api-parameters/services/ConfigStore.ts +491 -0
package/src/api-users/atoms/realmAuthSettingsAtom.ts +19 -0
package/src/api-users/controllers/UserRealmController.ts +0 -2
package/src/api-users/index.ts +2 -0
package/src/api-users/primitives/$userRealm.ts +18 -3
package/src/api-users/providers/UserRealmProvider.ts +6 -3
package/src/api-users/services/RegistrationService.ts +2 -1
package/src/api-users/services/SessionService.ts +4 -0
package/src/api-users/services/UserService.ts +3 -0
package/src/api-verifications/index.ts +7 -1
package/src/bin/index.ts +1 -0
package/src/cli/assets/biomeJson.ts +1 -1
package/src/cli/assets/dummySpecTs.ts +7 -0
package/src/cli/assets/editorconfig.ts +13 -0
package/src/cli/assets/mainTs.ts +14 -0
package/src/cli/commands/BiomeCommands.ts +2 -0
package/src/cli/commands/CoreCommands.ts +28 -9
package/src/cli/commands/VerifyCommands.ts +2 -1
package/src/cli/commands/ViteCommands.ts +8 -9
package/src/cli/services/AlephaCliUtils.ts +214 -23
package/src/command/helpers/Asker.ts +0 -1
package/src/command/primitives/$command.ts +67 -0
package/src/command/providers/CliProvider.ts +39 -8
package/src/core/Alepha.ts +40 -30
package/src/core/helpers/jsonSchemaToTypeBox.ts +307 -0
package/src/core/index.shared.ts +1 -0
package/src/core/index.ts +30 -3
package/src/core/providers/EventManager.ts +1 -1
package/src/core/providers/StateManager.ts +23 -12
package/src/core/providers/TypeProvider.ts +26 -34
package/src/logger/index.ts +8 -6
package/src/logger/primitives/$logger.ts +1 -1
package/src/logger/providers/{SimpleFormatterProvider.ts → PrettyFormatterProvider.ts} +10 -1
package/src/orm/index.ts +6 -0
package/src/orm/services/PgRelationManager.ts +2 -2
package/src/orm/services/PostgresModelBuilder.ts +11 -7
package/src/orm/services/Repository.ts +16 -7
package/src/orm/services/SqliteModelBuilder.ts +10 -0
package/src/server/index.ts +6 -0
package/src/server/primitives/$action.ts +10 -1
package/src/server/providers/ServerBodyParserProvider.ts +11 -5
package/src/server/providers/ServerRouterProvider.ts +13 -7
package/src/server-auth/primitives/$auth.ts +7 -0
package/src/server-auth/providers/ServerAuthProvider.ts +51 -8
package/src/server-cookies/index.ts +2 -1
package/src/thread/primitives/$thread.ts +2 -2
package/src/vite/index.ts +0 -2
package/src/vite/tasks/buildServer.ts +3 -4
package/src/vite/tasks/generateCloudflare.ts +35 -19
package/src/vite/tasks/generateDocker.ts +18 -4
package/src/vite/tasks/generateSitemap.ts +5 -7
package/src/vite/tasks/generateVercel.ts +76 -41
package/src/vite/tasks/runAlepha.ts +16 -1
package/src/websocket/providers/NodeWebSocketServerProvider.ts +3 -11
package/src/websocket/services/WebSocketClient.ts +3 -3
package/dist/cli/dist-BlfFtOk2.js +0 -2770
package/dist/cli/dist-BlfFtOk2.js.map +0 -1
package/src/api-parameters/controllers/ParameterController.ts +0 -45
package/src/api-parameters/services/ParameterStore.ts +0 -23

package/dist/server-auth/index.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import * as alepha163 from "alepha";
+import * as alepha188 from "alepha";
 import { Alepha, Async, KIND, Primitive, Static } from "alepha";
 import * as alepha_server_cookies0 from "alepha/server/cookies";
 import { Cookies, ServerCookiesProvider } from "alepha/server/cookies";
@@ -20,82 +20,82 @@ declare const alephaServerAuthRoutes: {
 };
 //#endregion
 //#region ../../src/server-auth/schemas/authenticationProviderSchema.d.ts
-declare const authenticationProviderSchema: alepha163.TObject<{
-  name: alepha163.TString;
-  type: alepha163.TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
+declare const authenticationProviderSchema: alepha188.TObject<{
+  name: alepha188.TString;
+  type: alepha188.TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
 }>;
 type AuthenticationProvider = Static<typeof authenticationProviderSchema>;
 //#endregion
 //#region ../../src/server-auth/schemas/tokenResponseSchema.d.ts
-declare const tokenResponseSchema: alepha163.TObject<{
-  provider: alepha163.TString;
-  access_token: alepha163.TString;
-  issued_at: alepha163.TNumber;
-  expires_in: alepha163.TOptional<alepha163.TNumber>;
-  refresh_token: alepha163.TOptional<alepha163.TString>;
-  refresh_token_expires_in: alepha163.TOptional<alepha163.TNumber>;
-  refresh_expires_in: alepha163.TOptional<alepha163.TNumber>;
-  id_token: alepha163.TOptional<alepha163.TString>;
-  scope: alepha163.TOptional<alepha163.TString>;
-  user: alepha163.TObject<{
-    id: alepha163.TString;
-    name: alepha163.TOptional<alepha163.TString>;
-    email: alepha163.TOptional<alepha163.TString>;
-    username: alepha163.TOptional<alepha163.TString>;
-    picture: alepha163.TOptional<alepha163.TString>;
-    sessionId: alepha163.TOptional<alepha163.TString>;
-    organizations: alepha163.TOptional<alepha163.TArray<alepha163.TString>>;
-    roles: alepha163.TOptional<alepha163.TArray<alepha163.TString>>;
+declare const tokenResponseSchema: alepha188.TObject<{
+  provider: alepha188.TString;
+  access_token: alepha188.TString;
+  issued_at: alepha188.TNumber;
+  expires_in: alepha188.TOptional<alepha188.TNumber>;
+  refresh_token: alepha188.TOptional<alepha188.TString>;
+  refresh_token_expires_in: alepha188.TOptional<alepha188.TNumber>;
+  refresh_expires_in: alepha188.TOptional<alepha188.TNumber>;
+  id_token: alepha188.TOptional<alepha188.TString>;
+  scope: alepha188.TOptional<alepha188.TString>;
+  user: alepha188.TObject<{
+    id: alepha188.TString;
+    name: alepha188.TOptional<alepha188.TString>;
+    email: alepha188.TOptional<alepha188.TString>;
+    username: alepha188.TOptional<alepha188.TString>;
+    picture: alepha188.TOptional<alepha188.TString>;
+    sessionId: alepha188.TOptional<alepha188.TString>;
+    organizations: alepha188.TOptional<alepha188.TArray<alepha188.TString>>;
+    roles: alepha188.TOptional<alepha188.TArray<alepha188.TString>>;
   }>;
-  api: alepha163.TObject<{
-    prefix: alepha163.TOptional<alepha163.TString>;
-    links: alepha163.TArray<alepha163.TObject<{
-      name: alepha163.TString;
-      group: alepha163.TOptional<alepha163.TString>;
-      path: alepha163.TString;
-      method: alepha163.TOptional<alepha163.TString>;
-      requestBodyType: alepha163.TOptional<alepha163.TString>;
-      service: alepha163.TOptional<alepha163.TString>;
+  api: alepha188.TObject<{
+    prefix: alepha188.TOptional<alepha188.TString>;
+    links: alepha188.TArray<alepha188.TObject<{
+      name: alepha188.TString;
+      group: alepha188.TOptional<alepha188.TString>;
+      path: alepha188.TString;
+      method: alepha188.TOptional<alepha188.TString>;
+      requestBodyType: alepha188.TOptional<alepha188.TString>;
+      service: alepha188.TOptional<alepha188.TString>;
     }>>;
   }>;
 }>;
 type TokenResponse = Static<typeof tokenResponseSchema>;
 //#endregion
 //#region ../../src/server-auth/schemas/tokensSchema.d.ts
-declare const tokensSchema: alepha163.TObject<{
-  provider: alepha163.TString;
-  access_token: alepha163.TString;
-  issued_at: alepha163.TNumber;
-  expires_in: alepha163.TOptional<alepha163.TNumber>;
-  refresh_token: alepha163.TOptional<alepha163.TString>;
-  refresh_token_expires_in: alepha163.TOptional<alepha163.TNumber>;
-  refresh_expires_in: alepha163.TOptional<alepha163.TNumber>;
-  id_token: alepha163.TOptional<alepha163.TString>;
-  scope: alepha163.TOptional<alepha163.TString>;
+declare const tokensSchema: alepha188.TObject<{
+  provider: alepha188.TString;
+  access_token: alepha188.TString;
+  issued_at: alepha188.TNumber;
+  expires_in: alepha188.TOptional<alepha188.TNumber>;
+  refresh_token: alepha188.TOptional<alepha188.TString>;
+  refresh_token_expires_in: alepha188.TOptional<alepha188.TNumber>;
+  refresh_expires_in: alepha188.TOptional<alepha188.TNumber>;
+  id_token: alepha188.TOptional<alepha188.TString>;
+  scope: alepha188.TOptional<alepha188.TString>;
 }>;
 type Tokens = Static<typeof tokensSchema>;
 //#endregion
 //#region ../../src/server-auth/schemas/userinfoResponseSchema.d.ts
-declare const userinfoResponseSchema: alepha163.TObject<{
-  user: alepha163.TOptional<alepha163.TObject<{
-    id: alepha163.TString;
-    name: alepha163.TOptional<alepha163.TString>;
-    email: alepha163.TOptional<alepha163.TString>;
-    username: alepha163.TOptional<alepha163.TString>;
-    picture: alepha163.TOptional<alepha163.TString>;
-    sessionId: alepha163.TOptional<alepha163.TString>;
-    organizations: alepha163.TOptional<alepha163.TArray<alepha163.TString>>;
-    roles: alepha163.TOptional<alepha163.TArray<alepha163.TString>>;
+declare const userinfoResponseSchema: alepha188.TObject<{
+  user: alepha188.TOptional<alepha188.TObject<{
+    id: alepha188.TString;
+    name: alepha188.TOptional<alepha188.TString>;
+    email: alepha188.TOptional<alepha188.TString>;
+    username: alepha188.TOptional<alepha188.TString>;
+    picture: alepha188.TOptional<alepha188.TString>;
+    sessionId: alepha188.TOptional<alepha188.TString>;
+    organizations: alepha188.TOptional<alepha188.TArray<alepha188.TString>>;
+    roles: alepha188.TOptional<alepha188.TArray<alepha188.TString>>;
   }>>;
-  api: alepha163.TObject<{
-    prefix: alepha163.TOptional<alepha163.TString>;
-    links: alepha163.TArray<alepha163.TObject<{
-      name: alepha163.TString;
-      group: alepha163.TOptional<alepha163.TString>;
-      path: alepha163.TString;
-      method: alepha163.TOptional<alepha163.TString>;
-      requestBodyType: alepha163.TOptional<alepha163.TString>;
-      service: alepha163.TOptional<alepha163.TString>;
+  api: alepha188.TObject<{
+    prefix: alepha188.TOptional<alepha188.TString>;
+    links: alepha188.TArray<alepha188.TObject<{
+      name: alepha188.TString;
+      group: alepha188.TOptional<alepha188.TString>;
+      path: alepha188.TString;
+      method: alepha188.TOptional<alepha188.TString>;
+      requestBodyType: alepha188.TOptional<alepha188.TString>;
+      service: alepha188.TOptional<alepha188.TString>;
     }>>;
   }>;
 }>;
@@ -108,34 +108,35 @@ declare class ServerAuthProvider {
   protected readonly serverCookiesProvider: ServerCookiesProvider;
   protected readonly dateTimeProvider: DateTimeProvider;
   protected readonly serverLinksProvider: ServerLinksProvider;
-  protected readonly authorizationCode: alepha_server_cookies0.AbstractCookiePrimitive<alepha163.TObject<{
-    provider: alepha163.TString;
-    codeVerifier: alepha163.TOptional<alepha163.TString>;
-    redirectUri: alepha163.TOptional<alepha163.TString>;
-    state: alepha163.TOptional<alepha163.TString>;
-    nonce: alepha163.TOptional<alepha163.TString>;
+  protected readonly authorizationCode: alepha_server_cookies0.AbstractCookiePrimitive<alepha188.TObject<{
+    provider: alepha188.TString;
+    realm: alepha188.TOptional<alepha188.TString>;
+    codeVerifier: alepha188.TOptional<alepha188.TString>;
+    redirectUri: alepha188.TOptional<alepha188.TString>;
+    state: alepha188.TOptional<alepha188.TString>;
+    nonce: alepha188.TOptional<alepha188.TString>;
   }>>;
-  readonly tokens: alepha_server_cookies0.AbstractCookiePrimitive<alepha163.TObject<{
-    provider: alepha163.TString;
-    access_token: alepha163.TString;
-    issued_at: alepha163.TNumber;
-    expires_in: alepha163.TOptional<alepha163.TNumber>;
-    refresh_token: alepha163.TOptional<alepha163.TString>;
-    refresh_token_expires_in: alepha163.TOptional<alepha163.TNumber>;
-    refresh_expires_in: alepha163.TOptional<alepha163.TNumber>;
-    id_token: alepha163.TOptional<alepha163.TString>;
-    scope: alepha163.TOptional<alepha163.TString>;
+  readonly tokens: alepha_server_cookies0.AbstractCookiePrimitive<alepha188.TObject<{
+    provider: alepha188.TString;
+    access_token: alepha188.TString;
+    issued_at: alepha188.TNumber;
+    expires_in: alepha188.TOptional<alepha188.TNumber>;
+    refresh_token: alepha188.TOptional<alepha188.TString>;
+    refresh_token_expires_in: alepha188.TOptional<alepha188.TNumber>;
+    refresh_expires_in: alepha188.TOptional<alepha188.TNumber>;
+    id_token: alepha188.TOptional<alepha188.TString>;
+    scope: alepha188.TOptional<alepha188.TString>;
   }>>;
   get identities(): Array<AuthPrimitive>;
   getAuthenticationProviders(filters?: {
     realmName?: string;
   }): AuthenticationProvider[];
-  protected readonly configure: alepha163.HookPrimitive<"configure">;
+  protected readonly configure: alepha188.HookPrimitive<"configure">;
   protected getAccessTokens(tokens: Tokens): string | undefined;
   /**
    * Fill request headers with access token from cookies or fallback to provider's fallback function.
    */
-  protected readonly onRequest: alepha163.HookPrimitive<"server:onRequest">;
+  protected readonly onRequest: alepha188.HookPrimitive<"server:onRequest">;
   /**
    * Convert cookies to tokens.
    * If the tokens are expired, try to refresh them using the refresh token.
@@ -146,26 +147,26 @@ declare class ServerAuthProvider {
    * Get user information.
    */
   readonly userinfo: alepha_server0.RoutePrimitive<{
-    response: alepha163.TObject<{
-      user: alepha163.TOptional<alepha163.TObject<{
-        id: alepha163.TString;
-        name: alepha163.TOptional<alepha163.TString>;
-        email: alepha163.TOptional<alepha163.TString>;
-        username: alepha163.TOptional<alepha163.TString>;
-        picture: alepha163.TOptional<alepha163.TString>;
-        sessionId: alepha163.TOptional<alepha163.TString>;
-        organizations: alepha163.TOptional<alepha163.TArray<alepha163.TString>>;
-        roles: alepha163.TOptional<alepha163.TArray<alepha163.TString>>;
+    response: alepha188.TObject<{
+      user: alepha188.TOptional<alepha188.TObject<{
+        id: alepha188.TString;
+        name: alepha188.TOptional<alepha188.TString>;
+        email: alepha188.TOptional<alepha188.TString>;
+        username: alepha188.TOptional<alepha188.TString>;
+        picture: alepha188.TOptional<alepha188.TString>;
+        sessionId: alepha188.TOptional<alepha188.TString>;
+        organizations: alepha188.TOptional<alepha188.TArray<alepha188.TString>>;
+        roles: alepha188.TOptional<alepha188.TArray<alepha188.TString>>;
       }>>;
-      api: alepha163.TObject<{
-        prefix: alepha163.TOptional<alepha163.TString>;
-        links: alepha163.TArray<alepha163.TObject<{
-          name: alepha163.TString;
-          group: alepha163.TOptional<alepha163.TString>;
-          path: alepha163.TString;
-          method: alepha163.TOptional<alepha163.TString>;
-          requestBodyType: alepha163.TOptional<alepha163.TString>;
-          service: alepha163.TOptional<alepha163.TString>;
+      api: alepha188.TObject<{
+        prefix: alepha188.TOptional<alepha188.TString>;
+        links: alepha188.TArray<alepha188.TObject<{
+          name: alepha188.TString;
+          group: alepha188.TOptional<alepha188.TString>;
+          path: alepha188.TString;
+          method: alepha188.TOptional<alepha188.TString>;
+          requestBodyType: alepha188.TOptional<alepha188.TString>;
+          service: alepha188.TOptional<alepha188.TString>;
         }>>;
       }>;
     }>;
@@ -174,65 +175,66 @@ declare class ServerAuthProvider {
    * Refresh a token for internal providers.
    */
   readonly refresh: alepha_server0.RoutePrimitive<{
-    query: alepha163.TObject<{
-      provider: alepha163.TString;
+    query: alepha188.TObject<{
+      provider: alepha188.TString;
     }>;
-    body: alepha163.TObject<{
-      refresh_token: alepha163.TString;
-      access_token: alepha163.TOptional<alepha163.TString>;
+    body: alepha188.TObject<{
+      refresh_token: alepha188.TString;
+      access_token: alepha188.TOptional<alepha188.TString>;
     }>;
-    response: alepha163.TObject<{
-      provider: alepha163.TString;
-      access_token: alepha163.TString;
-      issued_at: alepha163.TNumber;
-      expires_in: alepha163.TOptional<alepha163.TNumber>;
-      refresh_token: alepha163.TOptional<alepha163.TString>;
-      refresh_token_expires_in: alepha163.TOptional<alepha163.TNumber>;
-      refresh_expires_in: alepha163.TOptional<alepha163.TNumber>;
-      id_token: alepha163.TOptional<alepha163.TString>;
-      scope: alepha163.TOptional<alepha163.TString>;
+    response: alepha188.TObject<{
+      provider: alepha188.TString;
+      access_token: alepha188.TString;
+      issued_at: alepha188.TNumber;
+      expires_in: alepha188.TOptional<alepha188.TNumber>;
+      refresh_token: alepha188.TOptional<alepha188.TString>;
+      refresh_token_expires_in: alepha188.TOptional<alepha188.TNumber>;
+      refresh_expires_in: alepha188.TOptional<alepha188.TNumber>;
+      id_token: alepha188.TOptional<alepha188.TString>;
+      scope: alepha188.TOptional<alepha188.TString>;
     }>;
   }>;
   /**
    * Login for local password-based authentication.
    */
   readonly token: alepha_server0.RoutePrimitive<{
-    query: alepha163.TObject<{
-      provider: alepha163.TString;
+    query: alepha188.TObject<{
+      provider: alepha188.TString;
+      realm: alepha188.TOptional<alepha188.TString>;
     }>;
-    body: alepha163.TObject<{
-      username: alepha163.TString;
-      password: alepha163.TString;
+    body: alepha188.TObject<{
+      username: alepha188.TString;
+      password: alepha188.TString;
     }>;
-    response: alepha163.TObject<{
-      provider: alepha163.TString;
-      access_token: alepha163.TString;
-      issued_at: alepha163.TNumber;
-      expires_in: alepha163.TOptional<alepha163.TNumber>;
-      refresh_token: alepha163.TOptional<alepha163.TString>;
-      refresh_token_expires_in: alepha163.TOptional<alepha163.TNumber>;
-      refresh_expires_in: alepha163.TOptional<alepha163.TNumber>;
-      id_token: alepha163.TOptional<alepha163.TString>;
-      scope: alepha163.TOptional<alepha163.TString>;
-      user: alepha163.TObject<{
-        id: alepha163.TString;
-        name: alepha163.TOptional<alepha163.TString>;
-        email: alepha163.TOptional<alepha163.TString>;
-        username: alepha163.TOptional<alepha163.TString>;
-        picture: alepha163.TOptional<alepha163.TString>;
-        sessionId: alepha163.TOptional<alepha163.TString>;
-        organizations: alepha163.TOptional<alepha163.TArray<alepha163.TString>>;
-        roles: alepha163.TOptional<alepha163.TArray<alepha163.TString>>;
+    response: alepha188.TObject<{
+      provider: alepha188.TString;
+      access_token: alepha188.TString;
+      issued_at: alepha188.TNumber;
+      expires_in: alepha188.TOptional<alepha188.TNumber>;
+      refresh_token: alepha188.TOptional<alepha188.TString>;
+      refresh_token_expires_in: alepha188.TOptional<alepha188.TNumber>;
+      refresh_expires_in: alepha188.TOptional<alepha188.TNumber>;
+      id_token: alepha188.TOptional<alepha188.TString>;
+      scope: alepha188.TOptional<alepha188.TString>;
+      user: alepha188.TObject<{
+        id: alepha188.TString;
+        name: alepha188.TOptional<alepha188.TString>;
+        email: alepha188.TOptional<alepha188.TString>;
+        username: alepha188.TOptional<alepha188.TString>;
+        picture: alepha188.TOptional<alepha188.TString>;
+        sessionId: alepha188.TOptional<alepha188.TString>;
+        organizations: alepha188.TOptional<alepha188.TArray<alepha188.TString>>;
+        roles: alepha188.TOptional<alepha188.TArray<alepha188.TString>>;
       }>;
-      api: alepha163.TObject<{
-        prefix: alepha163.TOptional<alepha163.TString>;
-        links: alepha163.TArray<alepha163.TObject<{
-          name: alepha163.TString;
-          group: alepha163.TOptional<alepha163.TString>;
-          path: alepha163.TString;
-          method: alepha163.TOptional<alepha163.TString>;
-          requestBodyType: alepha163.TOptional<alepha163.TString>;
-          service: alepha163.TOptional<alepha163.TString>;
+      api: alepha188.TObject<{
+        prefix: alepha188.TOptional<alepha188.TString>;
+        links: alepha188.TArray<alepha188.TObject<{
+          name: alepha188.TString;
+          group: alepha188.TOptional<alepha188.TString>;
+          path: alepha188.TString;
+          method: alepha188.TOptional<alepha188.TString>;
+          requestBodyType: alepha188.TOptional<alepha188.TString>;
+          service: alepha188.TOptional<alepha188.TString>;
         }>>;
       }>;
     }>;
@@ -241,9 +243,10 @@ declare class ServerAuthProvider {
    * Oauth2/OIDC login route.
    */
   readonly login: alepha_server0.RoutePrimitive<{
-    query: alepha163.TObject<{
-      provider: alepha163.TString;
-      redirect_uri: alepha163.TOptional<alepha163.TString>;
+    query: alepha188.TObject<{
+      provider: alepha188.TString;
+      realm: alepha188.TOptional<alepha188.TString>;
+      redirect_uri: alepha188.TOptional<alepha188.TString>;
     }>;
   }>;
   /**
@@ -255,13 +258,20 @@ declare class ServerAuthProvider {
    * Logout route for OAuth2/OIDC providers.
    */
   readonly logout: alepha_server0.RoutePrimitive<{
-    query: alepha163.TObject<{
-      post_logout_redirect_uri: alepha163.TOptional<alepha163.TString>;
+    query: alepha188.TObject<{
+      post_logout_redirect_uri: alepha188.TOptional<alepha188.TString>;
     }>;
   }>;
+  /**
+   * Find an auth provider by name and optionally by realm.
+   * When realm is specified, it filters providers by both name and realm.
+   * This enables multi-realm setups where multiple providers share the same name (e.g., "credentials").
+   */
   protected provider(opts: string | {
     provider: string;
+    realm?: string;
   }): AuthPrimitive;
+  protected getTokens(cookies?: Cookies): Tokens | undefined;
   protected setTokens(tokens: Tokens, cookies?: Cookies): void;
 }
 interface OAuth2Profile {
@@ -493,6 +503,7 @@ declare class AuthPrimitive extends Primitive<AuthPrimitiveOptions> {
   protected readonly dateTimeProvider: DateTimeProvider;
   oauth?: Configuration;
   get name(): string;
+  get realm(): RealmPrimitive | undefined;
   get jwks_uri(): string;
   get scope(): string | undefined;
   get redirect_uri(): string | undefined;
@@ -577,7 +588,7 @@ declare module "alepha" {
  * @see {@link ServerAuthProvider}
  * @module alepha.server.auth
  */
-declare const AlephaServerAuth: alepha163.Service<alepha163.Module>;
+declare const AlephaServerAuth: alepha188.Service<alepha188.Module>;
 //#endregion
 export { $auth, $authCredentials, $authGithub, $authGoogle, AccessToken, AlephaServerAuth, AuthExternal, AuthInternal, AuthPrimitive, AuthPrimitiveOptions, AuthenticationProvider, Credentials, CredentialsFn, CredentialsOptions, LinkAccountFn, LinkAccountOptions, OAuth2Options, OAuth2Profile, OidcOptions, ServerAuthProvider, TokenResponse, Tokens, UserinfoResponse, WithLinkFn, WithLoginFn, alephaServerAuthRoutes, authenticationProviderSchema, tokenResponseSchema, tokensSchema, userinfoResponseSchema };
 //# sourceMappingURL=index.d.ts.map

package/dist/server-auth/index.js CHANGED Viewed

@@ -1283,6 +1283,9 @@ var AuthPrimitive = class extends Primitive {
 	get name() {
 		return this.options.name ?? this.config.propertyKey;
 	}
+	get realm() {
+		if ("realm" in this.options) return this.options.realm;
+	}
 	get jwks_uri() {
 		const jwks = this.oauth?.serverMetadata().jwks_uri;
 		if (!jwks) throw new AlephaError("No JWKS URI available for the auth provider");
@@ -1424,6 +1427,7 @@ var ServerAuthProvider = class {
 		httpOnly: true,
 		schema: t.object({
 			provider: t.text(),
+			realm: t.optional(t.text()),
 			codeVerifier: t.optional(t.text({ size: "long" })),
 			redirectUri: t.optional(t.text({ size: "long" })),
 			state: t.optional(t.text()),
@@ -1499,7 +1503,7 @@ var ServerAuthProvider = class {
 	* If the tokens are expired, try to refresh them using the refresh token.
 	*/
 	async cookiesToTokens(cookies) {
-		const tokens = this.tokens.get({ cookies });
+		const tokens = this.getTokens(cookies);
 		if (!tokens) {
 			this.log.trace("No tokens found in cookies");
 			return;
@@ -1547,7 +1551,7 @@ var ServerAuthProvider = class {
 		path: alephaServerAuthRoutes.userinfo,
 		schema: { response: userinfoResponseSchema },
 		handler: async ({ user, headers: headers$1, cookies }) => {
-			const tokens = this.tokens.get({ cookies });
+			const tokens = this.getTokens(cookies);
 			if (tokens) {
 				const provider = this.provider(tokens);
 				if (!("realm" in provider.options)) {
@@ -1604,7 +1608,10 @@ var ServerAuthProvider = class {
 		path: alephaServerAuthRoutes.token,
 		method: "POST",
 		schema: {
-			query: t.object({ provider: t.text() }),
+			query: t.object({
+				provider: t.text(),
+				realm: t.optional(t.text({ description: "Realm name for multi-realm setups" }))
+			}),
 			body: t.object({
 				username: t.text(),
 				password: t.text()
@@ -1612,11 +1619,15 @@ var ServerAuthProvider = class {
 			response: tokenResponseSchema
 		},
 		handler: async ({ query, body, cookies }) => {
-			const provider = this.provider(query);
+			const provider = this.provider({
+				provider: query.provider,
+				realm: query.realm
+			});
 			const realm = "realm" in provider.options && provider.options.realm;
 			if (!realm) throw new SecurityError(`Auth provider '${query.provider}' does not support password grant`);
 			const credentials = "credentials" in provider.options && provider.options.credentials;
 			if (!credentials) throw new SecurityError(`Auth provider '${query.provider}' does not support password grant`);
+			console.log("->", body);
 			let user;
 			try {
 				user = await credentials.account(body);
@@ -1646,10 +1657,14 @@ var ServerAuthProvider = class {
 		path: alephaServerAuthRoutes.login,
 		schema: { query: t.object({
 			provider: t.text(),
+			realm: t.optional(t.text({ description: "Realm name for multi-realm setups" })),
 			redirect_uri: t.optional(t.text({ size: "rich" }))
 		}) },
 		handler: async ({ query, url, reply }) => {
-			const provider = this.provider(query);
+			const provider = this.provider({
+				provider: query.provider,
+				realm: query.realm
+			});
 			const oauth = provider.oauth;
 			if (!oauth) throw new SecurityError(`Auth provider '${query.provider}' does not support OAuth2`);
 			const scope = provider.scope;
@@ -1668,7 +1683,8 @@ var ServerAuthProvider = class {
 					state,
 					nonce: parameters$1.nonce,
 					redirectUri: query.redirect_uri ?? "/",
-					provider: query.provider
+					provider: query.provider,
+					realm: query.realm
 				});
 				reply.redirect(buildAuthorizationUrl(oauth, parameters$1).toString());
 				return;
@@ -1684,7 +1700,8 @@ var ServerAuthProvider = class {
 			this.authorizationCode.set({
 				codeVerifier,
 				redirectUri: query.redirect_uri ?? "/",
-				provider: query.provider
+				provider: query.provider,
+				realm: query.realm
 			});
 			reply.redirect(buildAuthorizationUrl(oauth, parameters).toString());
 		}
@@ -1740,7 +1757,7 @@ var ServerAuthProvider = class {
 		schema: { query: t.object({ post_logout_redirect_uri: t.optional(t.text()) }) },
 		handler: async ({ query, reply, cookies }) => {
 			const redirect = query.post_logout_redirect_uri ?? "/";
-			const tokens = this.tokens.get({ cookies });
+			const tokens = this.getTokens(cookies);
 			if (!tokens) {
 				reply.redirect(redirect);
 				return;
@@ -1776,12 +1793,25 @@ var ServerAuthProvider = class {
 			reply.redirect(buildEndSessionUrl(oauth, params).toString());
 		}
 	});
+	/**
+	* Find an auth provider by name and optionally by realm.
+	* When realm is specified, it filters providers by both name and realm.
+	* This enables multi-realm setups where multiple providers share the same name (e.g., "credentials").
+	*/
 	provider(opts) {
 		const name = typeof opts === "string" ? opts : opts.provider;
-		const identity = this.identities.find((identity$1) => identity$1.name === name);
-		if (!identity) throw new SecurityError(`Auth provider '${name}' not found`);
+		const realmName = typeof opts === "string" ? void 0 : opts.realm;
+		const identity = this.identities.find((identity$1) => {
+			if (identity$1.name !== name) return false;
+			if (realmName && identity$1.realm?.name !== realmName) return false;
+			return true;
+		});
+		if (!identity) throw new SecurityError(`Auth provider '${name}'${realmName ? ` for realm '${realmName}'` : ""} not found`);
 		return identity;
 	}
+	getTokens(cookies) {
+		return this.tokens.get({ cookies });
+	}
 	setTokens(tokens, cookies) {
 		const exp = tokens.refresh_token_expires_in || tokens.refresh_expires_in || tokens.expires_in;
 		const ttl = exp ? this.dateTimeProvider.duration(exp, "seconds") : void 0;