dn-react-router-toolkit 0.1.12 → 0.2.1

package/dist/{route/auth/callback/[provider]/route.mjs → auth/handlers/thirdparty_auth_callback.mjs}

@@ -1,4 +1,4 @@
-// src/http-kit/response.ts
+// src/http/response.ts
 var createJsonResponse = (status) => {
   return (data = {}, init) => {
     return Response.json(data, { status, ...init });
@@ -42,52 +42,61 @@ var INTERNAL_SERVER_ERROR = createException(
   "\uC608\uAE30\uCE58 \uBABB\uD55C \uC624\uB958\uAC00 \uBC1C\uC0DD\uD588\uC2B5\uB2C8\uB2E4."
 );
 
-// src/route/auth/callback/[provider]/route.tsx
-var thirdPartyAuthCallbackHandler = async (request, {
-  provider
-}, {
-  AUTH,
-  GOOGLE_AUTH,
-  APPLE_AUTH,
-  SITE_ORIGIN
+// src/auth/handlers/thirdparty_auth_callback.tsx
+var thirdpartyAuthCallbackHandler = async (request, {
+  provider,
+  authService,
+  getThirdPartyAuth
 }) => {
   const url = new URL(request.url);
   const code = url.searchParams.get("code");
   if (!code) {
     throw BAD_REQUEST("\uCF54\uB4DC\uAC00 \uC5C6\uC2B5\uB2C8\uB2E4.");
   }
-  const getThirdPartyAuth = (provider2) => {
-    switch (provider2) {
-      case "google":
-        return GOOGLE_AUTH;
-      case "apple":
-        return APPLE_AUTH;
-      default:
-        throw BAD_REQUEST("\uC9C0\uC6D0\uD558\uC9C0 \uC54A\uB294 \uC778\uC99D \uC81C\uACF5\uC790\uC785\uB2C8\uB2E4.");
+  try {
+    const { accessToken, refreshToken } = await getThirdPartyAuth(
+      provider
+    ).login(code);
+    const [accessTokenSetCookie, refreshTokenSetCookie] = await Promise.all([
+      authService.getAccessTokenSetCookie(accessToken),
+      authService.getRefreshTokenSetCookie(refreshToken)
+    ]);
+    const headers = new Headers();
+    headers.append("Set-Cookie", accessTokenSetCookie);
+    headers.append("Set-Cookie", refreshTokenSetCookie);
+    const redirectUrl = url.searchParams.get("state") || "/";
+    return new Response("Temporary Redirect", {
+      status: 307,
+      headers: {
+        ...headers,
+        Location: new URL(
+          `/r?redirectUrl=${encodeURIComponent(redirectUrl)}`,
+          request.url
+        ).toString()
+      }
+    });
+  } catch (error) {
+    if (error instanceof Response) {
+      if (error.status == 404) {
+        const body = await error.json();
+        const token = body.token;
+        return new Response(
+          "Temporary Redirect",
+          {
+            status: 307,
+            headers: {
+              Location: new URL(
+                `/signup?token=${token}`,
+                request.url
+              ).toString()
+            }
+          }
+        );
+      }
     }
-  };
-  const { accessToken, refreshToken } = await getThirdPartyAuth(
-    provider
-  ).signIn(code);
-  const [accessTokenSetCookie, refreshTokenSetCookie] = await Promise.all([
-    AUTH.getAccessTokenSetCookie(accessToken),
-    AUTH.getRefreshTokenSetCookie(refreshToken)
-  ]);
-  const headers = new Headers();
-  headers.append("Set-Cookie", accessTokenSetCookie);
-  headers.append("Set-Cookie", refreshTokenSetCookie);
-  const redirectUrl = url.searchParams.get("state") || SITE_ORIGIN;
-  return new Response("Temporary Redirect", {
-    status: 307,
-    headers: {
-      ...headers,
-      Location: new URL(
-        `/r?redirectUrl=${encodeURIComponent(redirectUrl)}`,
-        request.url
-      ).toString()
-    }
-  });
+    throw error;
+  }
 };
 export {
-  thirdPartyAuthCallbackHandler
+  thirdpartyAuthCallbackHandler
 };

package/dist/{auth-kit/jwt.d.mts → auth/jwt_manager.d.mts}

@@ -2,7 +2,17 @@ import { JWTPayload } from 'jose';
 
 declare class JWTManager {
     siteOrigin?: string;
-    constructor(siteOrigin?: string);
+    accessTokenSecret: string;
+    accessTokenExpiresIn: string;
+    refreshTokenSecret: string;
+    refreshTokenExpiresIn: string;
+    constructor({ siteOrigin, accessTokenSecret, accessTokenExpiresIn, refreshTokenSecret, refreshTokenExpiresIn, }: {
+        siteOrigin?: string;
+        accessTokenSecret: string;
+        accessTokenExpiresIn?: string;
+        refreshTokenSecret: string;
+        refreshTokenExpiresIn?: string;
+    });
     verify(token: string, secret: string): Promise<JWTPayload | undefined>;
     verifyAccessToken(token: string): Promise<JWTPayload | undefined>;
     verifyRefreshToken(token: string): Promise<JWTPayload | undefined>;

package/dist/{auth-kit/jwt.d.ts → auth/jwt_manager.d.ts}

@@ -2,7 +2,17 @@ import { JWTPayload } from 'jose';
 
 declare class JWTManager {
     siteOrigin?: string;
-    constructor(siteOrigin?: string);
+    accessTokenSecret: string;
+    accessTokenExpiresIn: string;
+    refreshTokenSecret: string;
+    refreshTokenExpiresIn: string;
+    constructor({ siteOrigin, accessTokenSecret, accessTokenExpiresIn, refreshTokenSecret, refreshTokenExpiresIn, }: {
+        siteOrigin?: string;
+        accessTokenSecret: string;
+        accessTokenExpiresIn?: string;
+        refreshTokenSecret: string;
+        refreshTokenExpiresIn?: string;
+    });
     verify(token: string, secret: string): Promise<JWTPayload | undefined>;
     verifyAccessToken(token: string): Promise<JWTPayload | undefined>;
     verifyRefreshToken(token: string): Promise<JWTPayload | undefined>;

package/dist/{auth-kit/jwt.js → auth/jwt_manager.js}

@@ -17,17 +17,31 @@ var __copyProps = (to, from, except, desc) => {
 };
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 
-// src/auth-kit/jwt.ts
-var jwt_exports = {};
-__export(jwt_exports, {
+// src/auth/jwt_manager.ts
+var jwt_manager_exports = {};
+__export(jwt_manager_exports, {
   JWTManager: () => JWTManager
 });
-module.exports = __toCommonJS(jwt_exports);
+module.exports = __toCommonJS(jwt_manager_exports);
 var import_jose = require("jose");
 var JWTManager = class {
   siteOrigin;
-  constructor(siteOrigin) {
+  accessTokenSecret;
+  accessTokenExpiresIn;
+  refreshTokenSecret;
+  refreshTokenExpiresIn;
+  constructor({
+    siteOrigin,
+    accessTokenSecret,
+    accessTokenExpiresIn = "10s",
+    refreshTokenSecret,
+    refreshTokenExpiresIn = "1h"
+  }) {
     this.siteOrigin = siteOrigin;
+    this.accessTokenSecret = accessTokenSecret;
+    this.accessTokenExpiresIn = accessTokenExpiresIn;
+    this.refreshTokenSecret = refreshTokenSecret;
+    this.refreshTokenExpiresIn = refreshTokenExpiresIn;
   }
   async verify(token, secret) {
     try {
@@ -38,10 +52,10 @@ var JWTManager = class {
     }
   }
   async verifyAccessToken(token) {
-    return this.verify(token, process.env.ACCESS_TOKEN_SECRET);
+    return this.verify(token, this.accessTokenSecret);
   }
   async verifyRefreshToken(token) {
-    return this.verify(token, process.env.REFRESH_TOKEN_SECRET);
+    return this.verify(token, this.refreshTokenSecret);
   }
   async sign(payload, secret, { expiresIn } = {}) {
     let builder = new import_jose.SignJWT(payload).setProtectedHeader({ alg: "HS256", typ: "JWT" }).setIssuedAt();
@@ -54,13 +68,13 @@ var JWTManager = class {
     return builder.sign(new TextEncoder().encode(secret));
   }
   async signAccessToken(payload) {
-    return this.sign(payload, process.env.ACCESS_TOKEN_SECRET, {
-      expiresIn: process.env.ACCESS_TOKEN_EXPIRES_IN || "10s"
+    return this.sign(payload, this.accessTokenSecret, {
+      expiresIn: this.accessTokenExpiresIn
     });
   }
   async signRefreshToken(payload) {
-    return this.sign(payload, process.env.REFRESH_TOKEN_SECRET, {
-      expiresIn: process.env.REFRESH_TOKEN_EXPIRES_IN || "1d"
+    return this.sign(payload, this.refreshTokenSecret, {
+      expiresIn: this.refreshTokenExpiresIn
     });
   }
   decode(token) {

package/dist/{auth-kit/jwt.mjs → auth/jwt_manager.mjs}

@@ -1,9 +1,23 @@
-// src/auth-kit/jwt.ts
+// src/auth/jwt_manager.ts
 import { SignJWT, decodeJwt, jwtVerify } from "jose";
 var JWTManager = class {
   siteOrigin;
-  constructor(siteOrigin) {
+  accessTokenSecret;
+  accessTokenExpiresIn;
+  refreshTokenSecret;
+  refreshTokenExpiresIn;
+  constructor({
+    siteOrigin,
+    accessTokenSecret,
+    accessTokenExpiresIn = "10s",
+    refreshTokenSecret,
+    refreshTokenExpiresIn = "1h"
+  }) {
     this.siteOrigin = siteOrigin;
+    this.accessTokenSecret = accessTokenSecret;
+    this.accessTokenExpiresIn = accessTokenExpiresIn;
+    this.refreshTokenSecret = refreshTokenSecret;
+    this.refreshTokenExpiresIn = refreshTokenExpiresIn;
   }
   async verify(token, secret) {
     try {
@@ -14,10 +28,10 @@ var JWTManager = class {
     }
   }
   async verifyAccessToken(token) {
-    return this.verify(token, process.env.ACCESS_TOKEN_SECRET);
+    return this.verify(token, this.accessTokenSecret);
   }
   async verifyRefreshToken(token) {
-    return this.verify(token, process.env.REFRESH_TOKEN_SECRET);
+    return this.verify(token, this.refreshTokenSecret);
   }
   async sign(payload, secret, { expiresIn } = {}) {
     let builder = new SignJWT(payload).setProtectedHeader({ alg: "HS256", typ: "JWT" }).setIssuedAt();
@@ -30,13 +44,13 @@ var JWTManager = class {
     return builder.sign(new TextEncoder().encode(secret));
   }
   async signAccessToken(payload) {
-    return this.sign(payload, process.env.ACCESS_TOKEN_SECRET, {
-      expiresIn: process.env.ACCESS_TOKEN_EXPIRES_IN || "10s"
+    return this.sign(payload, this.accessTokenSecret, {
+      expiresIn: this.accessTokenExpiresIn
     });
   }
   async signRefreshToken(payload) {
-    return this.sign(payload, process.env.REFRESH_TOKEN_SECRET, {
-      expiresIn: process.env.REFRESH_TOKEN_EXPIRES_IN || "1d"
+    return this.sign(payload, this.refreshTokenSecret, {
+      expiresIn: this.refreshTokenExpiresIn
     });
   }
   decode(token) {

package/dist/auth/kakao_auth.d.mts

@@ -0,0 +1,27 @@
+import { ThirdpartyAuth, ThirdpartyAuthService } from './thirdparty_auth.mjs';
+import './auth_service.mjs';
+import 'jose';
+import 'react-router';
+import './jwt_manager.mjs';
+import '../file/object_storage.mjs';
+import '@aws-sdk/client-s3';
+import './auth_repository.mjs';
+
+declare class KakaoAuth implements ThirdpartyAuth {
+    thirdpartyAuth: ThirdpartyAuthService;
+    constructor({ thirdpartyAuth, }: {
+        thirdpartyAuth: ThirdpartyAuthService;
+    });
+    login(kakaoAccessToken: string): Promise<{
+        user: {
+            id: string;
+            role: string;
+            name: string;
+            refreshToken: string | null;
+        };
+        accessToken: string;
+        refreshToken: string;
+    }>;
+}
+
+export { KakaoAuth };

package/dist/auth/kakao_auth.d.ts

@@ -0,0 +1,27 @@
+import { ThirdpartyAuth, ThirdpartyAuthService } from './thirdparty_auth.js';
+import './auth_service.js';
+import 'jose';
+import 'react-router';
+import './jwt_manager.js';
+import '../file/object_storage.js';
+import '@aws-sdk/client-s3';
+import './auth_repository.js';
+
+declare class KakaoAuth implements ThirdpartyAuth {
+    thirdpartyAuth: ThirdpartyAuthService;
+    constructor({ thirdpartyAuth, }: {
+        thirdpartyAuth: ThirdpartyAuthService;
+    });
+    login(kakaoAccessToken: string): Promise<{
+        user: {
+            id: string;
+            role: string;
+            name: string;
+            refreshToken: string | null;
+        };
+        accessToken: string;
+        refreshToken: string;
+    }>;
+}
+
+export { KakaoAuth };

package/dist/auth/kakao_auth.js

@@ -0,0 +1,56 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/auth/kakao_auth.ts
+var kakao_auth_exports = {};
+__export(kakao_auth_exports, {
+  KakaoAuth: () => KakaoAuth
+});
+module.exports = __toCommonJS(kakao_auth_exports);
+var KakaoAuth = class {
+  thirdpartyAuth;
+  constructor({
+    thirdpartyAuth
+  }) {
+    this.thirdpartyAuth = thirdpartyAuth;
+  }
+  async login(kakaoAccessToken) {
+    const userRes = await fetch("https://kapi.kakao.com/v2/user/me", {
+      headers: {
+        Authorization: `Bearer ${kakaoAccessToken}`
+      }
+    });
+    if (!userRes.ok) {
+      throw new Error("\uC720\uC800 \uC815\uBCF4\uB97C \uAC00\uC838\uC624\uB294\uB370 \uC2E4\uD328\uD588\uC2B5\uB2C8\uB2E4.");
+    }
+    const { id, kakao_account } = await userRes.json();
+    const { email, profile } = kakao_account;
+    const payload = {
+      id,
+      email,
+      name: profile.nickname,
+      picture: profile.thumbnail_image_url
+    };
+    return this.thirdpartyAuth.issueTokensIfUserFound("kakao", payload);
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  KakaoAuth
+});

package/dist/auth/kakao_auth.mjs

@@ -0,0 +1,31 @@
+// src/auth/kakao_auth.ts
+var KakaoAuth = class {
+  thirdpartyAuth;
+  constructor({
+    thirdpartyAuth
+  }) {
+    this.thirdpartyAuth = thirdpartyAuth;
+  }
+  async login(kakaoAccessToken) {
+    const userRes = await fetch("https://kapi.kakao.com/v2/user/me", {
+      headers: {
+        Authorization: `Bearer ${kakaoAccessToken}`
+      }
+    });
+    if (!userRes.ok) {
+      throw new Error("\uC720\uC800 \uC815\uBCF4\uB97C \uAC00\uC838\uC624\uB294\uB370 \uC2E4\uD328\uD588\uC2B5\uB2C8\uB2E4.");
+    }
+    const { id, kakao_account } = await userRes.json();
+    const { email, profile } = kakao_account;
+    const payload = {
+      id,
+      email,
+      name: profile.nickname,
+      picture: profile.thumbnail_image_url
+    };
+    return this.thirdpartyAuth.issueTokensIfUserFound("kakao", payload);
+  }
+};
+export {
+  KakaoAuth
+};

package/dist/auth/password_recovery.d.mts

@@ -0,0 +1,34 @@
+import { AuthRepository } from './auth_repository.mjs';
+import { JWTManager } from './jwt_manager.mjs';
+import 'jose';
+
+declare class PasswordRecoveryService {
+    siteOrigin: string;
+    siteName: string;
+    jwtManager: JWTManager;
+    authRepository: AuthRepository;
+    emailCredentials: {
+        service: string;
+        user: string;
+        pass: string;
+    };
+    resetPasswordTokenSecret: string;
+    resetPasswordTokenExpiresIn: string;
+    constructor({ siteOrigin, siteName, jwtManager, authRepository, emailCredentials, resetPasswordTokenSecret, resetPasswordTokenExpiresIn, }: {
+        siteOrigin: string;
+        siteName: string;
+        jwtManager: JWTManager;
+        authRepository: AuthRepository;
+        emailCredentials: {
+            service: string;
+            user: string;
+            pass: string;
+        };
+        resetPasswordTokenSecret: string;
+        resetPasswordTokenExpiresIn?: string;
+    });
+    requestPasswordReset(email: string): Promise<void>;
+    resetPassword(token: string, password: string, passwordConfirm: string): Promise<void>;
+}
+
+export { PasswordRecoveryService };

package/dist/auth/password_recovery.d.ts

@@ -0,0 +1,34 @@
+import { AuthRepository } from './auth_repository.js';
+import { JWTManager } from './jwt_manager.js';
+import 'jose';
+
+declare class PasswordRecoveryService {
+    siteOrigin: string;
+    siteName: string;
+    jwtManager: JWTManager;
+    authRepository: AuthRepository;
+    emailCredentials: {
+        service: string;
+        user: string;
+        pass: string;
+    };
+    resetPasswordTokenSecret: string;
+    resetPasswordTokenExpiresIn: string;
+    constructor({ siteOrigin, siteName, jwtManager, authRepository, emailCredentials, resetPasswordTokenSecret, resetPasswordTokenExpiresIn, }: {
+        siteOrigin: string;
+        siteName: string;
+        jwtManager: JWTManager;
+        authRepository: AuthRepository;
+        emailCredentials: {
+            service: string;
+            user: string;
+            pass: string;
+        };
+        resetPasswordTokenSecret: string;
+        resetPasswordTokenExpiresIn?: string;
+    });
+    requestPasswordReset(email: string): Promise<void>;
+    resetPassword(token: string, password: string, passwordConfirm: string): Promise<void>;
+}
+
+export { PasswordRecoveryService };

package/dist/auth/password_recovery.js

@@ -0,0 +1,169 @@
+"use strict";
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/auth/password_recovery.ts
+var password_recovery_exports = {};
+__export(password_recovery_exports, {
+  PasswordRecoveryService: () => PasswordRecoveryService
+});
+module.exports = __toCommonJS(password_recovery_exports);
+var import_nodemailer = __toESM(require("nodemailer"));
+
+// src/http/response.ts
+var createJsonResponse = (status) => {
+  return (data = {}, init) => {
+    return Response.json(data, { status, ...init });
+  };
+};
+var OK = createJsonResponse(200);
+var CREATED = createJsonResponse(201);
+var ACCEPTED = createJsonResponse(202);
+var createException = (status, defaultMessage = "\uC624\uB958\uAC00 \uBC1C\uC0DD\uD588\uC2B5\uB2C8\uB2E4.") => {
+  return (message = defaultMessage, init) => {
+    return createJsonResponse(status)({ message }, init);
+  };
+};
+var BAD_REQUEST = createException(400, "\uC694\uCCAD\uC774 \uC62C\uBC14\uB974\uC9C0 \uC54A\uC2B5\uB2C8\uB2E4.");
+var UNAUTHORIZED = createException(401, "\uC778\uC99D\uC774 \uD544\uC694\uD569\uB2C8\uB2E4.");
+var FORBIDDEN = createException(403, "\uAD8C\uD55C\uC774 \uC5C6\uC2B5\uB2C8\uB2E4.");
+var NOT_FOUND = createException(
+  404,
+  "\uC694\uCCAD\uD55C \uB9AC\uC18C\uC2A4\uB97C \uCC3E\uC744 \uC218 \uC5C6\uC2B5\uB2C8\uB2E4."
+);
+var METHOD_NOT_ALLOWED = createException(
+  405,
+  "\uBA54\uC11C\uB4DC\uB97C \uC0AC\uC6A9\uD560 \uC218 \uC5C6\uC2B5\uB2C8\uB2E4."
+);
+var NOT_ACCEPTABLE = createException(
+  406,
+  "\uC694\uCCAD\uD55C \uD615\uC2DD\uC744 \uC0AC\uC6A9\uD560 \uC218 \uC5C6\uC2B5\uB2C8\uB2E4."
+);
+var REQUEST_TIMEOUT = createException(
+  408,
+  "\uC694\uCCAD \uC2DC\uAC04\uC774 \uCD08\uACFC\uB418\uC5C8\uC2B5\uB2C8\uB2E4."
+);
+var CONFLICT = createException(409, "\uC694\uCCAD\uC774 \uCDA9\uB3CC\uD588\uC2B5\uB2C8\uB2E4.");
+var UNPROCESSABLE_ENTITY = createException(
+  422,
+  "\uCC98\uB9AC\uD560 \uC218 \uC5C6\uB294 \uC5D4\uD2F0\uD2F0\uC785\uB2C8\uB2E4."
+);
+var TOO_MANY_REQUESTS = createException(429, "\uC694\uCCAD\uC774 \uB108\uBB34 \uB9CE\uC2B5\uB2C8\uB2E4.");
+var INTERNAL_SERVER_ERROR = createException(
+  500,
+  "\uC608\uAE30\uCE58 \uBABB\uD55C \uC624\uB958\uAC00 \uBC1C\uC0DD\uD588\uC2B5\uB2C8\uB2E4."
+);
+
+// src/auth/password_recovery.ts
+var import_bcryptjs = __toESM(require("bcryptjs"));
+var PasswordRecoveryService = class {
+  siteOrigin;
+  siteName;
+  jwtManager;
+  authRepository;
+  emailCredentials;
+  resetPasswordTokenSecret;
+  resetPasswordTokenExpiresIn;
+  constructor({
+    siteOrigin,
+    siteName,
+    jwtManager,
+    authRepository,
+    emailCredentials,
+    resetPasswordTokenSecret,
+    resetPasswordTokenExpiresIn = "1h"
+  }) {
+    this.siteOrigin = siteOrigin;
+    this.siteName = siteName;
+    this.jwtManager = jwtManager;
+    this.authRepository = authRepository;
+    this.emailCredentials = emailCredentials;
+    this.resetPasswordTokenSecret = resetPasswordTokenSecret;
+    this.resetPasswordTokenExpiresIn = resetPasswordTokenExpiresIn;
+  }
+  async requestPasswordReset(email) {
+    const credential = await this.authRepository.findCredentialById(email);
+    if (!credential) {
+      throw NOT_FOUND("\uAC00\uC785\uB418\uC9C0 \uC54A\uC740 \uC774\uBA54\uC77C\uC785\uB2C8\uB2E4.");
+    }
+    const transporter = import_nodemailer.default.createTransport({
+      service: this.emailCredentials.service,
+      auth: {
+        user: this.emailCredentials.user,
+        pass: this.emailCredentials.pass
+      }
+    });
+    const token = await this.jwtManager.sign(
+      {
+        id: credential.id
+      },
+      this.resetPasswordTokenSecret,
+      {
+        expiresIn: this.resetPasswordTokenExpiresIn
+      }
+    );
+    const link = `${this.siteOrigin}/reset-password?token=${token}`;
+    const mailOptions = {
+      from: process.env.EMAIL_USER,
+      to: email,
+      subject: `${this.siteName} \uBE44\uBC00\uBC88\uD638 \uC7AC\uC124\uC815`,
+      html: `<main>
+        <p>\uBE44\uBC00\uBC88\uD638 \uC7AC\uC124\uC815\uC744 \uC704\uD574 \uC544\uB798 \uB9C1\uD06C\uB97C \uD074\uB9AD\uD574 \uC8FC\uC138\uC694. \uB9C1\uD06C\uB294 \uD55C \uC2DC\uAC04 \uB3D9\uC548 \uC720\uD6A8\uD569\uB2C8\uB2E4. \uB2E4\uB978 \uC0AC\uB78C\uC5D0\uAC8C \uACF5\uC720\uD558\uC9C0 \uB9C8\uC138\uC694.</p>
+        <a href="${link}" target="_blank">${link}</a>
+    </main>`
+    };
+    await transporter.sendMail(mailOptions);
+  }
+  async resetPassword(token, password, passwordConfirm) {
+    const payload = await this.jwtManager.verify(
+      token,
+      this.resetPasswordTokenSecret
+    );
+    if (!payload) {
+      throw UNAUTHORIZED("\uC720\uD6A8\uD558\uC9C0 \uC54A\uC740 \uD1A0\uD070\uC785\uB2C8\uB2E4.");
+    }
+    if (typeof payload.id !== "string") {
+      throw UNAUTHORIZED("\uD1A0\uD070\uC774 \uC704\uC870\uB418\uC5C8\uC2B5\uB2C8\uB2E4.");
+    }
+    const credential = await this.authRepository.findCredentialById(payload.id);
+    if (!credential) {
+      throw NOT_FOUND("\uC874\uC7AC\uD558\uC9C0 \uC54A\uB294 \uACC4\uC815\uC785\uB2C8\uB2E4.");
+    }
+    if (typeof password !== "string" || !password.trim()) {
+      throw BAD_REQUEST("\uC720\uD6A8\uD558\uC9C0 \uC54A\uC740 \uBE44\uBC00\uBC88\uD638\uC785\uB2C8\uB2E4.");
+    }
+    if (password !== passwordConfirm) {
+      throw BAD_REQUEST("\uBE44\uBC00\uBC88\uD638\uAC00 \uC77C\uCE58\uD558\uC9C0 \uC54A\uC2B5\uB2C8\uB2E4.");
+    }
+    await this.authRepository.updatePassword(credential.id, import_bcryptjs.default.hashSync(password, 10));
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  PasswordRecoveryService
+});