auth-verify 1.2.3 → 1.2.5

package/babel.config.js

@@ -0,0 +1,3 @@
+module.exports = {
+  presets: [['@babel/preset-env', { targets: { node: 'current' } }]],
+};

package/index.js

@@ -5,7 +5,7 @@ const OAuthManager = require("./src/oauth")
 
 class AuthVerify {
   constructor(options = {}) {
-    const {
+    let {
       jwtSecret,
       otpExpiry = 300,
       storeTokens = "none",
@@ -13,7 +13,8 @@ class AuthVerify {
       redisUrl,
     } = options;
 
-    if (!jwtSecret) throw new Error("jwtSecret is required in AuthVerify options");
+    // if (!jwtSecret) throw new Error("jwtSecret is required in AuthVerify options");
+    if (!jwtSecret) jwtSecret = 'JWT_AUTH_VERIFY_SECRET'
 
     this.senderName;
     this.jwt = new JWTManager(jwtSecret, { storeTokens });

package/package.json

@@ -1,22 +1,22 @@
 {
   "dependencies": {
+    "auth-verify": "^1.2.4",
     "axios": "^1.12.2",
     "crypto": "^1.0.1",
-    "express": "^5.1.0",
     "ioredis": "^5.8.1",
     "jsonwebtoken": "^9.0.2",
     "node-telegram-bot-api": "^0.66.0",
     "nodemailer": "^7.0.6",
     "redis": "^5.8.3",
     "twilio": "^5.10.3",
-    "uuid": "^13.0.0"
+    "uuid": "^9.0.1"
   },
   "name": "auth-verify",
-  "version": "1.2.3",
-  "description": "A simple Node.js library for sending and verifying OTP via email",
+  "version": "1.2.5",
+  "description": "A simple Node.js library for sending and verifying OTP via email, SMS and Telegram bot",
   "main": "index.js",
   "scripts": {
-    "test": "node test.js"
+    "test": "jest --runInBand"
   },
   "repository": {
     "type": "git",
@@ -47,5 +47,19 @@
   "bugs": {
     "url": "https://github.com/jahongir2007/auth-verify/issues"
   },
-  "homepage": "https://jahongir2007.github.io/auth-verify/"
+  "homepage": "https://jahongir2007.github.io/auth-verify/",
+  "devDependencies": {
+    "@babel/preset-env": "^7.28.5",
+    "babel-jest": "^30.2.0",
+    "jest": "^30.2.0",
+    "supertest": "^7.1.4"
+  },
+  "jest": {
+    "transformIgnorePatterns": [
+      "node_modules/(?!(jsonwebtoken|ioredis)/)"
+    ],
+    "transform": {
+      "^.+\\.jsx?$": "babel-jest"
+    }
+  }
 }

package/src/jwt/index.js

@@ -249,7 +249,7 @@ const CookieManager = require("./cookie");
 class JWTManager {
     constructor(secret, options = {}) {
         // if (!secret) throw new Error("JWT secret is required");
-        this.secret = secret || "JWT_AUTH_VERIFY_SECRET";
+        this.secret = secret || "jwt_token";
         this.storeType = options.storeTokens || "none";
 
         if (this.storeType === "memory") {
@@ -307,7 +307,7 @@ class JWTManager {
 
         // Auto cookie support
         if (options.res) {
-            CookieManager.setCookie(options.res, "jwt_token", token, {
+            CookieManager.setCookie(options.res, this.secret, token, {
                 httpOnly: true,
                 secure: options.secure ?? true,
                 sameSite: "Strict",
@@ -325,7 +325,7 @@ class JWTManager {
         // If request object provided
         if (typeof input === "object" && input.headers) {
             token =
-                CookieManager.getCookie(input, "jwt_token") ||
+                CookieManager.getCookie(input, this.secret) ||
                 (input.headers.authorization
                     ? input.headers.authorization.replace("Bearer ", "")
                     : null);

package/tests/jwtmanager.test.js

@@ -0,0 +1,39 @@
+// tests/jwtManager.test.js
+const AuthVerify = require('../index');
+const express = require('express');
+const request = require('supertest'); // for API tests
+
+describe('JWTManager', () => {
+  let auth;
+
+  beforeAll(() => {
+    auth = new AuthVerify({jwtSecret: 'test_secret', storeTokens: 'memory'});
+  });
+
+  test('should sign and verify a JWT', async () => {
+    const payload = { userId: 1 };
+    const token = await auth.jwt.sign(payload, '5s');
+    expect(typeof token).toBe('string');
+
+    const verified = await auth.jwt.verify(token);
+    expect(verified.userId).toBe(1);
+  });
+
+  test('should fail after expiration', async () => {
+    const token = await auth.jwt.sign({ name: 'Jahongir' }, '1s');
+    await new Promise(r => setTimeout(r, 2000)); // wait 2s
+    await expect(auth.jwt.verify(token)).rejects.toThrow(/expired/i);
+  });
+
+  test('should set cookie automatically if res is provided', async () => {
+    const app = express();
+
+    app.get('/login', async (req, res) => {
+      const token = await auth.jwt.sign({ userId: 123 }, '5s', { res });
+      res.json({ token });
+    });
+
+    const res = await request(app).get('/login');
+    expect(res.headers['set-cookie']).toBeDefined();
+  });
+});

package/test.js

@@ -1,205 +0,0 @@
-// const AuthVerify = require('./index'); // your library entry
-// const auth = new AuthVerify({ jwtSecret: 's', storeTokens: 'memory', otpExpiry: 300 });
-// const TelegramBot = require("node-telegram-bot-api");
-
-// auth.otp.setSender({
-//   via: 'telegram'
-// });
-
-// // callback flow (nested, but correct)
-// // auth.otp.generate(6, (err, code) => {
-// //   if (err) return console.error('generate err', err);
-
-// //   auth.otp.set('jahongir.sobirov.2007@mail.ru', (err) => {
-// //     if (err) return console.error('set err', err);
-// //     console.log('OTP stored in memory:', auth.otp.otpCode);
-
-// //     auth.otp.message({
-// //       to: 'jahongir.sobirov.2007@mail.ru',
-// //       subject: 'Your OTP',
-// //       text: `Your OTP is ${auth.otp.otpCode}`
-// //     }, (err, info) => {
-// //       if (err) return console.error('message err', err);
-// //       console.log('message sent ok', info && info.messageId);
-
-// //       // now verify
-// //       auth.otp.verify({ check: 'jahongir.sobirov.2007@mail.ru', code: "auth.otp.otpCode" }, (err, ok) => {
-// //         if (err){
-// //           // Resend OTP
-// //           auth.otp.resend("jahongir.sobirov.2007@mail.ru", (err, info) => {
-// //             if(err) return console.log("Resend failed:", err);
-// //             console.log("New OTP sent!");
-// //           });
-// //         };
-
-// //         console.log('Verified:', ok);
-// //       });
-// //     });
-// //   });
-// // });
-
-// // (async () => {
-// //   // try {
-// //     // 1️⃣ Generate OTP
-// //     auth.otp.generate(5).set('+998934313977'); // or auth.otp.code
-// //   //   // 2️⃣ Store OTP
-// //   //   await auth.otp.set('jahongir.sobirov.2007@mail.ru');
-// //   //   console.log('OTP stored in memory:', auth.otp.code);
-
-// //   //   // 3️⃣ Send OTP via email
-// //   //   const info = await auth.otp.message({
-// //   //     to: 'jahongir.sobirov.2007@mail.ru',
-// //   //     subject: 'Your OTP',
-// //   //     html: `Your OTP is ${auth.otp.code}`,
-// //   //   });
-// //   //   console.log('Message sent OK:', info && info.messageId);
-
-// //   //   // 4️⃣ Verify OTP
-// //   //   try {
-// //   //     const verified = await auth.otp.verify({
-// //   //       check: 'jahongir.sobirov.2007@mail.ru',
-// //   //       code: '123456', // user's input
-// //   //     });
-// //   //     console.log('Verified:', verified);
-// //   //   } catch (verifyErr) {
-// //   //     console.log('Verification failed:', verifyErr.message);
-
-// //   //     // 5️⃣ Resend OTP if verification fails
-// //   //     try {
-// //   //       const newCode = await auth.otp.resend('jahongir.sobirov.2007@mail.ru');
-// //   //       console.log('New OTP sent:', newCode);
-// //   //     } catch (resendErr) {
-// //   //       console.log('Resend failed:', resendErr.message);
-// //   //     }
-// //   //   }
-// //   // } catch (err) {
-// //   //   console.error('Error:', err);
-// //   // }
-// //   await auth.otp.message({
-// //     to: '+998934313977',
-// //   });
-// //   console.log(`OTP was sent`);
-// // })();
-
-// // Set custom logger
-// auth.setLogger(console);
-
-// // Access developer tools
-// auth.dev.sender(async ({to, code})=>{
-//   const token = '6657700716:AAGW3s5Yxk5SrRH7yRqrgG-kVrG9a6PXBxk';
-//   const bot = new TelegramBot(token, {polling: false});
-//   bot.onText(/\/start/, async (msg)=>{
-//     const chatId = msg.chat.id;
-//     await bot.sendMessage(chatId, `🔐 Your verification code is: <b>${code}</b>`, {parse_mode: "HTML"})
-//     console.log(`✅ OTP ${code} sent to Telegram chat ${chatId}`);
-//   });
-// });
-
-// (async ()=>{
-//   try{
-
-//   }catch(err){}
-// })();
-
-// const TelegramBot = require("node-telegram-bot-api");
-const express = require('express');
-const AuthVerify = require("./index"); // your library
-const app = express();
-app.use(express.json());
-// // Your bot token from BotFather
-// const BOT_TOKEN = "6657700716:AAGW3s5Yxk5SrRH7yRqrgG-kVrG9a6PXBxk";
-
-// // Step 1: Create a Telegram bot with polling enabled (to listen to /start)
-// const bot = new TelegramBot(BOT_TOKEN, { polling: true });
-
-// // Step 2: Create AuthVerify instance
-// const auth = new AuthVerify({ jwtSecret: "super_secret_key" , storeTokens: 'memory'});
-
-// // Step 3: Setup dev sender (so OTP messages are sent through Telegram)
-// auth.dev.sender({
-//   send: async ({ to, code }) => {
-//     await bot.sendMessage(to, `🔑 Your OTP code is: ${code}`);
-//   },
-// });
-
-// // Step 4: When user sends /start, bot saves their chatId and sends an OTP
-// bot.onText(/\/start/, async (msg) => {
-//   const chatId = msg.chat.id;
-//   const username = msg.from.username || msg.from.first_name;
-
-//   await bot.sendMessage(chatId, `👋 Hello ${username}! We'll send you an OTP now.`);
-
-//   // Generate and send OTP using auth.otp
-//   const otpCode = await auth.otp.generate(chatId); // you can customize
-//   await auth.otp.send(chatId); // uses our custom sender!
-// });
-
-// // Step 5: Listen for OTP input
-// bot.on("message", async (msg) => {
-//   const chatId = msg.chat.id;
-//   const text = msg.text;
-
-//   // Ignore /start
-//   if (text.startsWith("/")) return;
-
-//   // Check if entered OTP is valid
-//   const isValid = await auth.otp.verify(chatId, text);
-//   if (isValid) {
-//     bot.sendMessage(chatId, "✅ OTP verified successfully!");
-//   } else {
-//     bot.sendMessage(chatId, "❌ Invalid or expired OTP. Try again!");
-//   }
-// });
-
-const auth = new AuthVerify({ jwtSecret: 's', storeTokens: 'memory'});
-
-const google = auth.oauth.google({clientId: '145870939941-qgeskqo8qlaqqm1osed6f5r8bhl866qk.apps.googleusercontent.com', clientSecret: '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', redirectUri: 'http://localhost:3000/auth/google/callback'});
-app.get('/', async (req, res) => {
-      res.send(`
-    <h1>Login with Google</h1>
-    <a href="/auth/google">Login</a>
-  `);
-});
-
-
-app.get('/auth/google', (req, res) => google.redirect(res));
-
-app.get('/auth/google/callback', async (req, res)=>{
-    const code = req.query.code;
-    try {
-        const user = await google.callback(code);
-        res.send(`
-            <h2>Welcome, ${user.name}!</h2>
-            <img src="${user.picture}" width="100" style="border-radius:50%">
-            <p>Email: ${user.email}</p>
-            <p>Access Token: ${user.access_token.slice(0, 20)}...</p>
-        `);
-    } catch(err){
-        res.status(500).send("Error: " + err.message);
-    }
-});
-
-app.listen(3000, ()=>{
-    console.log('Server is running...');
-});
-// app.get('/verify', async (req, res) => {
-//     try {
-//         const data = await auth.jwt.verify({ headers: req.headers });
-//         res.json({ valid: true, data });
-//     } catch (err) {
-//         res.status(401).json({ valid: false, error: err.message });
-//     }
-// });
-
-// app.listen(3000, ()=>{
-//     console.log('App is running')
-// });
-
-// auth.register.sender("consoleOtp", async ({ to, code }) => {
-//     console.log(`🔑 Sending OTP ${code} to ${to}`);
-//     return true;
-// });
-
-// (async () => {
-//     await auth.use("consoleOtp").send({ to: "+998901234567", code: "654321" });
-// })();