dn-react-router-toolkit 0.2.0 → 0.2.2

package/dist/auth/password_recovery.d.mts

@@ -0,0 +1,34 @@
+import { AuthRepository } from './auth_repository.mjs';
+import { JWTManager } from './jwt_manager.mjs';
+import 'jose';
+
+declare class PasswordRecoveryService {
+    siteOrigin: string;
+    siteName: string;
+    jwtManager: JWTManager;
+    authRepository: AuthRepository;
+    emailCredentials: {
+        service: string;
+        user: string;
+        pass: string;
+    };
+    resetPasswordTokenSecret: string;
+    resetPasswordTokenExpiresIn: string;
+    constructor({ siteOrigin, siteName, jwtManager, authRepository, emailCredentials, resetPasswordTokenSecret, resetPasswordTokenExpiresIn, }: {
+        siteOrigin: string;
+        siteName: string;
+        jwtManager: JWTManager;
+        authRepository: AuthRepository;
+        emailCredentials: {
+            service: string;
+            user: string;
+            pass: string;
+        };
+        resetPasswordTokenSecret: string;
+        resetPasswordTokenExpiresIn?: string;
+    });
+    requestPasswordReset(email: string): Promise<void>;
+    resetPassword(token: string, password: string, passwordConfirm: string): Promise<void>;
+}
+
+export { PasswordRecoveryService };

package/dist/auth/password_recovery.d.ts

@@ -0,0 +1,34 @@
+import { AuthRepository } from './auth_repository.js';
+import { JWTManager } from './jwt_manager.js';
+import 'jose';
+
+declare class PasswordRecoveryService {
+    siteOrigin: string;
+    siteName: string;
+    jwtManager: JWTManager;
+    authRepository: AuthRepository;
+    emailCredentials: {
+        service: string;
+        user: string;
+        pass: string;
+    };
+    resetPasswordTokenSecret: string;
+    resetPasswordTokenExpiresIn: string;
+    constructor({ siteOrigin, siteName, jwtManager, authRepository, emailCredentials, resetPasswordTokenSecret, resetPasswordTokenExpiresIn, }: {
+        siteOrigin: string;
+        siteName: string;
+        jwtManager: JWTManager;
+        authRepository: AuthRepository;
+        emailCredentials: {
+            service: string;
+            user: string;
+            pass: string;
+        };
+        resetPasswordTokenSecret: string;
+        resetPasswordTokenExpiresIn?: string;
+    });
+    requestPasswordReset(email: string): Promise<void>;
+    resetPassword(token: string, password: string, passwordConfirm: string): Promise<void>;
+}
+
+export { PasswordRecoveryService };

package/dist/auth/password_recovery.js

@@ -0,0 +1,169 @@
+"use strict";
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/auth/password_recovery.ts
+var password_recovery_exports = {};
+__export(password_recovery_exports, {
+  PasswordRecoveryService: () => PasswordRecoveryService
+});
+module.exports = __toCommonJS(password_recovery_exports);
+var import_nodemailer = __toESM(require("nodemailer"));
+
+// src/http/response.ts
+var createJsonResponse = (status) => {
+  return (data = {}, init) => {
+    return Response.json(data, { status, ...init });
+  };
+};
+var OK = createJsonResponse(200);
+var CREATED = createJsonResponse(201);
+var ACCEPTED = createJsonResponse(202);
+var createException = (status, defaultMessage = "\uC624\uB958\uAC00 \uBC1C\uC0DD\uD588\uC2B5\uB2C8\uB2E4.") => {
+  return (message = defaultMessage, init) => {
+    return createJsonResponse(status)({ message }, init);
+  };
+};
+var BAD_REQUEST = createException(400, "\uC694\uCCAD\uC774 \uC62C\uBC14\uB974\uC9C0 \uC54A\uC2B5\uB2C8\uB2E4.");
+var UNAUTHORIZED = createException(401, "\uC778\uC99D\uC774 \uD544\uC694\uD569\uB2C8\uB2E4.");
+var FORBIDDEN = createException(403, "\uAD8C\uD55C\uC774 \uC5C6\uC2B5\uB2C8\uB2E4.");
+var NOT_FOUND = createException(
+  404,
+  "\uC694\uCCAD\uD55C \uB9AC\uC18C\uC2A4\uB97C \uCC3E\uC744 \uC218 \uC5C6\uC2B5\uB2C8\uB2E4."
+);
+var METHOD_NOT_ALLOWED = createException(
+  405,
+  "\uBA54\uC11C\uB4DC\uB97C \uC0AC\uC6A9\uD560 \uC218 \uC5C6\uC2B5\uB2C8\uB2E4."
+);
+var NOT_ACCEPTABLE = createException(
+  406,
+  "\uC694\uCCAD\uD55C \uD615\uC2DD\uC744 \uC0AC\uC6A9\uD560 \uC218 \uC5C6\uC2B5\uB2C8\uB2E4."
+);
+var REQUEST_TIMEOUT = createException(
+  408,
+  "\uC694\uCCAD \uC2DC\uAC04\uC774 \uCD08\uACFC\uB418\uC5C8\uC2B5\uB2C8\uB2E4."
+);
+var CONFLICT = createException(409, "\uC694\uCCAD\uC774 \uCDA9\uB3CC\uD588\uC2B5\uB2C8\uB2E4.");
+var UNPROCESSABLE_ENTITY = createException(
+  422,
+  "\uCC98\uB9AC\uD560 \uC218 \uC5C6\uB294 \uC5D4\uD2F0\uD2F0\uC785\uB2C8\uB2E4."
+);
+var TOO_MANY_REQUESTS = createException(429, "\uC694\uCCAD\uC774 \uB108\uBB34 \uB9CE\uC2B5\uB2C8\uB2E4.");
+var INTERNAL_SERVER_ERROR = createException(
+  500,
+  "\uC608\uAE30\uCE58 \uBABB\uD55C \uC624\uB958\uAC00 \uBC1C\uC0DD\uD588\uC2B5\uB2C8\uB2E4."
+);
+
+// src/auth/password_recovery.ts
+var import_bcryptjs = __toESM(require("bcryptjs"));
+var PasswordRecoveryService = class {
+  siteOrigin;
+  siteName;
+  jwtManager;
+  authRepository;
+  emailCredentials;
+  resetPasswordTokenSecret;
+  resetPasswordTokenExpiresIn;
+  constructor({
+    siteOrigin,
+    siteName,
+    jwtManager,
+    authRepository,
+    emailCredentials,
+    resetPasswordTokenSecret,
+    resetPasswordTokenExpiresIn = "1h"
+  }) {
+    this.siteOrigin = siteOrigin;
+    this.siteName = siteName;
+    this.jwtManager = jwtManager;
+    this.authRepository = authRepository;
+    this.emailCredentials = emailCredentials;
+    this.resetPasswordTokenSecret = resetPasswordTokenSecret;
+    this.resetPasswordTokenExpiresIn = resetPasswordTokenExpiresIn;
+  }
+  async requestPasswordReset(email) {
+    const credential = await this.authRepository.findCredentialById(email);
+    if (!credential) {
+      throw NOT_FOUND("\uAC00\uC785\uB418\uC9C0 \uC54A\uC740 \uC774\uBA54\uC77C\uC785\uB2C8\uB2E4.");
+    }
+    const transporter = import_nodemailer.default.createTransport({
+      service: this.emailCredentials.service,
+      auth: {
+        user: this.emailCredentials.user,
+        pass: this.emailCredentials.pass
+      }
+    });
+    const token = await this.jwtManager.sign(
+      {
+        id: credential.id
+      },
+      this.resetPasswordTokenSecret,
+      {
+        expiresIn: this.resetPasswordTokenExpiresIn
+      }
+    );
+    const link = `${this.siteOrigin}/reset-password?token=${token}`;
+    const mailOptions = {
+      from: process.env.EMAIL_USER,
+      to: email,
+      subject: `${this.siteName} \uBE44\uBC00\uBC88\uD638 \uC7AC\uC124\uC815`,
+      html: `<main>
+        <p>\uBE44\uBC00\uBC88\uD638 \uC7AC\uC124\uC815\uC744 \uC704\uD574 \uC544\uB798 \uB9C1\uD06C\uB97C \uD074\uB9AD\uD574 \uC8FC\uC138\uC694. \uB9C1\uD06C\uB294 \uD55C \uC2DC\uAC04 \uB3D9\uC548 \uC720\uD6A8\uD569\uB2C8\uB2E4. \uB2E4\uB978 \uC0AC\uB78C\uC5D0\uAC8C \uACF5\uC720\uD558\uC9C0 \uB9C8\uC138\uC694.</p>
+        <a href="${link}" target="_blank">${link}</a>
+    </main>`
+    };
+    await transporter.sendMail(mailOptions);
+  }
+  async resetPassword(token, password, passwordConfirm) {
+    const payload = await this.jwtManager.verify(
+      token,
+      this.resetPasswordTokenSecret
+    );
+    if (!payload) {
+      throw UNAUTHORIZED("\uC720\uD6A8\uD558\uC9C0 \uC54A\uC740 \uD1A0\uD070\uC785\uB2C8\uB2E4.");
+    }
+    if (typeof payload.id !== "string") {
+      throw UNAUTHORIZED("\uD1A0\uD070\uC774 \uC704\uC870\uB418\uC5C8\uC2B5\uB2C8\uB2E4.");
+    }
+    const credential = await this.authRepository.findCredentialById(payload.id);
+    if (!credential) {
+      throw NOT_FOUND("\uC874\uC7AC\uD558\uC9C0 \uC54A\uB294 \uACC4\uC815\uC785\uB2C8\uB2E4.");
+    }
+    if (typeof password !== "string" || !password.trim()) {
+      throw BAD_REQUEST("\uC720\uD6A8\uD558\uC9C0 \uC54A\uC740 \uBE44\uBC00\uBC88\uD638\uC785\uB2C8\uB2E4.");
+    }
+    if (password !== passwordConfirm) {
+      throw BAD_REQUEST("\uBE44\uBC00\uBC88\uD638\uAC00 \uC77C\uCE58\uD558\uC9C0 \uC54A\uC2B5\uB2C8\uB2E4.");
+    }
+    await this.authRepository.updatePassword(credential.id, import_bcryptjs.default.hashSync(password, 10));
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  PasswordRecoveryService
+});

package/dist/auth/password_recovery.mjs

@@ -0,0 +1,134 @@
+// src/auth/password_recovery.ts
+import nodemailer from "nodemailer";
+
+// src/http/response.ts
+var createJsonResponse = (status) => {
+  return (data = {}, init) => {
+    return Response.json(data, { status, ...init });
+  };
+};
+var OK = createJsonResponse(200);
+var CREATED = createJsonResponse(201);
+var ACCEPTED = createJsonResponse(202);
+var createException = (status, defaultMessage = "\uC624\uB958\uAC00 \uBC1C\uC0DD\uD588\uC2B5\uB2C8\uB2E4.") => {
+  return (message = defaultMessage, init) => {
+    return createJsonResponse(status)({ message }, init);
+  };
+};
+var BAD_REQUEST = createException(400, "\uC694\uCCAD\uC774 \uC62C\uBC14\uB974\uC9C0 \uC54A\uC2B5\uB2C8\uB2E4.");
+var UNAUTHORIZED = createException(401, "\uC778\uC99D\uC774 \uD544\uC694\uD569\uB2C8\uB2E4.");
+var FORBIDDEN = createException(403, "\uAD8C\uD55C\uC774 \uC5C6\uC2B5\uB2C8\uB2E4.");
+var NOT_FOUND = createException(
+  404,
+  "\uC694\uCCAD\uD55C \uB9AC\uC18C\uC2A4\uB97C \uCC3E\uC744 \uC218 \uC5C6\uC2B5\uB2C8\uB2E4."
+);
+var METHOD_NOT_ALLOWED = createException(
+  405,
+  "\uBA54\uC11C\uB4DC\uB97C \uC0AC\uC6A9\uD560 \uC218 \uC5C6\uC2B5\uB2C8\uB2E4."
+);
+var NOT_ACCEPTABLE = createException(
+  406,
+  "\uC694\uCCAD\uD55C \uD615\uC2DD\uC744 \uC0AC\uC6A9\uD560 \uC218 \uC5C6\uC2B5\uB2C8\uB2E4."
+);
+var REQUEST_TIMEOUT = createException(
+  408,
+  "\uC694\uCCAD \uC2DC\uAC04\uC774 \uCD08\uACFC\uB418\uC5C8\uC2B5\uB2C8\uB2E4."
+);
+var CONFLICT = createException(409, "\uC694\uCCAD\uC774 \uCDA9\uB3CC\uD588\uC2B5\uB2C8\uB2E4.");
+var UNPROCESSABLE_ENTITY = createException(
+  422,
+  "\uCC98\uB9AC\uD560 \uC218 \uC5C6\uB294 \uC5D4\uD2F0\uD2F0\uC785\uB2C8\uB2E4."
+);
+var TOO_MANY_REQUESTS = createException(429, "\uC694\uCCAD\uC774 \uB108\uBB34 \uB9CE\uC2B5\uB2C8\uB2E4.");
+var INTERNAL_SERVER_ERROR = createException(
+  500,
+  "\uC608\uAE30\uCE58 \uBABB\uD55C \uC624\uB958\uAC00 \uBC1C\uC0DD\uD588\uC2B5\uB2C8\uB2E4."
+);
+
+// src/auth/password_recovery.ts
+import bcrypt from "bcryptjs";
+var PasswordRecoveryService = class {
+  siteOrigin;
+  siteName;
+  jwtManager;
+  authRepository;
+  emailCredentials;
+  resetPasswordTokenSecret;
+  resetPasswordTokenExpiresIn;
+  constructor({
+    siteOrigin,
+    siteName,
+    jwtManager,
+    authRepository,
+    emailCredentials,
+    resetPasswordTokenSecret,
+    resetPasswordTokenExpiresIn = "1h"
+  }) {
+    this.siteOrigin = siteOrigin;
+    this.siteName = siteName;
+    this.jwtManager = jwtManager;
+    this.authRepository = authRepository;
+    this.emailCredentials = emailCredentials;
+    this.resetPasswordTokenSecret = resetPasswordTokenSecret;
+    this.resetPasswordTokenExpiresIn = resetPasswordTokenExpiresIn;
+  }
+  async requestPasswordReset(email) {
+    const credential = await this.authRepository.findCredentialById(email);
+    if (!credential) {
+      throw NOT_FOUND("\uAC00\uC785\uB418\uC9C0 \uC54A\uC740 \uC774\uBA54\uC77C\uC785\uB2C8\uB2E4.");
+    }
+    const transporter = nodemailer.createTransport({
+      service: this.emailCredentials.service,
+      auth: {
+        user: this.emailCredentials.user,
+        pass: this.emailCredentials.pass
+      }
+    });
+    const token = await this.jwtManager.sign(
+      {
+        id: credential.id
+      },
+      this.resetPasswordTokenSecret,
+      {
+        expiresIn: this.resetPasswordTokenExpiresIn
+      }
+    );
+    const link = `${this.siteOrigin}/reset-password?token=${token}`;
+    const mailOptions = {
+      from: process.env.EMAIL_USER,
+      to: email,
+      subject: `${this.siteName} \uBE44\uBC00\uBC88\uD638 \uC7AC\uC124\uC815`,
+      html: `<main>
+        <p>\uBE44\uBC00\uBC88\uD638 \uC7AC\uC124\uC815\uC744 \uC704\uD574 \uC544\uB798 \uB9C1\uD06C\uB97C \uD074\uB9AD\uD574 \uC8FC\uC138\uC694. \uB9C1\uD06C\uB294 \uD55C \uC2DC\uAC04 \uB3D9\uC548 \uC720\uD6A8\uD569\uB2C8\uB2E4. \uB2E4\uB978 \uC0AC\uB78C\uC5D0\uAC8C \uACF5\uC720\uD558\uC9C0 \uB9C8\uC138\uC694.</p>
+        <a href="${link}" target="_blank">${link}</a>
+    </main>`
+    };
+    await transporter.sendMail(mailOptions);
+  }
+  async resetPassword(token, password, passwordConfirm) {
+    const payload = await this.jwtManager.verify(
+      token,
+      this.resetPasswordTokenSecret
+    );
+    if (!payload) {
+      throw UNAUTHORIZED("\uC720\uD6A8\uD558\uC9C0 \uC54A\uC740 \uD1A0\uD070\uC785\uB2C8\uB2E4.");
+    }
+    if (typeof payload.id !== "string") {
+      throw UNAUTHORIZED("\uD1A0\uD070\uC774 \uC704\uC870\uB418\uC5C8\uC2B5\uB2C8\uB2E4.");
+    }
+    const credential = await this.authRepository.findCredentialById(payload.id);
+    if (!credential) {
+      throw NOT_FOUND("\uC874\uC7AC\uD558\uC9C0 \uC54A\uB294 \uACC4\uC815\uC785\uB2C8\uB2E4.");
+    }
+    if (typeof password !== "string" || !password.trim()) {
+      throw BAD_REQUEST("\uC720\uD6A8\uD558\uC9C0 \uC54A\uC740 \uBE44\uBC00\uBC88\uD638\uC785\uB2C8\uB2E4.");
+    }
+    if (password !== passwordConfirm) {
+      throw BAD_REQUEST("\uBE44\uBC00\uBC88\uD638\uAC00 \uC77C\uCE58\uD558\uC9C0 \uC54A\uC2B5\uB2C8\uB2E4.");
+    }
+    await this.authRepository.updatePassword(credential.id, bcrypt.hashSync(password, 10));
+  }
+};
+export {
+  PasswordRecoveryService
+};

package/dist/auth/with_auth.js

@@ -30,10 +30,17 @@ function createWithAuthHandler({ authService }) {
         const res = await fn(auth)(arg);
         if (typeof res === "object" && res !== null && !Array.isArray(res)) {
           if (res instanceof Response) {
-            if (res.status < 300 && res.body) {
-              console.log(res.body);
-              return res;
+            if (res.status < 300 && res.headers.get("Content-Type")?.includes("application/json")) {
+              const data = await res.json();
+              return new Response(JSON.stringify({
+                AUTH: auth,
+                ...data
+              }), {
+                status: res.status,
+                headers: res.headers
+              });
             }
+            return res;
           }
           return {
             AUTH: auth,

package/dist/auth/with_auth.mjs

@@ -6,10 +6,17 @@ function createWithAuthHandler({ authService }) {
         const res = await fn(auth)(arg);
         if (typeof res === "object" && res !== null && !Array.isArray(res)) {
           if (res instanceof Response) {
-            if (res.status < 300 && res.body) {
-              console.log(res.body);
-              return res;
+            if (res.status < 300 && res.headers.get("Content-Type")?.includes("application/json")) {
+              const data = await res.json();
+              return new Response(JSON.stringify({
+                AUTH: auth,
+                ...data
+              }), {
+                status: res.status,
+                headers: res.headers
+              });
             }
+            return res;
           }
           return {
             AUTH: auth,

package/dist/route/api.d.mts

@@ -2,6 +2,7 @@ import { AuthService } from '../auth/auth_service.mjs';
 import { FileService } from '../file/file_service.mjs';
 import { ThirdpartyAuth } from '../auth/thirdparty_auth.mjs';
 import { LoaderFunctionArgs, ActionFunctionArgs } from 'react-router';
+import { PasswordRecoveryService } from '../auth/password_recovery.mjs';
 import 'jose';
 import '../auth/jwt_manager.mjs';
 import '../file/object_storage.mjs';
@@ -9,9 +10,10 @@ import '@aws-sdk/client-s3';
 import '../auth/auth_repository.mjs';
 import '../file/file_repository.mjs';
 
-declare const createAPIHandler: <TFile>({ authService, fileService, getThirdPartyAuth, signupTokenSecret, }: {
+declare const createAPIHandler: <TFile>({ authService, fileService, passwordRecoveryService, getThirdPartyAuth, signupTokenSecret, }: {
     authService: AuthService<TFile>;
     fileService: FileService<TFile>;
+    passwordRecoveryService: PasswordRecoveryService;
     getThirdPartyAuth: (provider: string) => ThirdpartyAuth;
     signupTokenSecret: string;
 }) => ({ request, params }: LoaderFunctionArgs | ActionFunctionArgs) => Promise<Response>;

package/dist/route/api.d.ts

@@ -2,6 +2,7 @@ import { AuthService } from '../auth/auth_service.js';
 import { FileService } from '../file/file_service.js';
 import { ThirdpartyAuth } from '../auth/thirdparty_auth.js';
 import { LoaderFunctionArgs, ActionFunctionArgs } from 'react-router';
+import { PasswordRecoveryService } from '../auth/password_recovery.js';
 import 'jose';
 import '../auth/jwt_manager.js';
 import '../file/object_storage.js';
@@ -9,9 +10,10 @@ import '@aws-sdk/client-s3';
 import '../auth/auth_repository.js';
 import '../file/file_repository.js';
 
-declare const createAPIHandler: <TFile>({ authService, fileService, getThirdPartyAuth, signupTokenSecret, }: {
+declare const createAPIHandler: <TFile>({ authService, fileService, passwordRecoveryService, getThirdPartyAuth, signupTokenSecret, }: {
     authService: AuthService<TFile>;
     fileService: FileService<TFile>;
+    passwordRecoveryService: PasswordRecoveryService;
     getThirdPartyAuth: (provider: string) => ThirdpartyAuth;
     signupTokenSecret: string;
 }) => ({ request, params }: LoaderFunctionArgs | ActionFunctionArgs) => Promise<Response>;

package/dist/route/api.js

@@ -233,7 +233,7 @@ var loginHandler = async (request, {
 }) => {
   const { id, password } = await request.json();
   try {
-    const { accessToken, refreshToken } = await authService.signIn({
+    const { accessToken, refreshToken } = await authService.login({
       id,
       password
     });
@@ -327,12 +327,9 @@ var signupHandler = async (request, {
   if (!passwordConfirm) {
     return BAD_REQUEST("\uBE44\uBC00\uBC88\uD638 \uD655\uC778\uC744 \uC785\uB825\uD574\uC8FC\uC138\uC694.");
   }
-  if (!name) {
-    return BAD_REQUEST("\uC774\uB984\uC744 \uC785\uB825\uD574\uC8FC\uC138\uC694.");
-  }
   const existing = await authService.authRepository.findCredentialById(email);
   if (existing) {
-    return CONFLICT("\uC774\uBA54\uC77C\uC774 \uC774\uBBF8 \uC874\uC7AC\uD569\uB2C8\uB2E4.");
+    return CONFLICT("\uC774\uBBF8 \uAC00\uC785\uD55C \uC774\uBA54\uC77C\uC785\uB2C8\uB2E4.");
   }
   if (password !== passwordConfirm) {
     return BAD_REQUEST("\uBE44\uBC00\uBC88\uD638\uAC00 \uC77C\uCE58\uD558\uC9C0 \uC54A\uC2B5\uB2C8\uB2E4.");
@@ -352,7 +349,22 @@ var signupHandler = async (request, {
     password: bcrypt.hashSync(password, 10)
   });
   const { accessToken, refreshToken } = await authService.issueTokenPair(user);
-  return CREATED({ accessToken, refreshToken });
+  const searchParams = new URL(request.url).searchParams;
+  const type = searchParams.get("type");
+  if (type === "json") {
+    return CREATED({ accessToken, refreshToken });
+  }
+  const [accessTokenSetCookie, refreshTokenSetCookie] = await Promise.all([
+    authService.getAccessTokenSetCookie(accessToken),
+    authService.getRefreshTokenSetCookie(refreshToken)
+  ]);
+  const payload = authService.jwtManager.decode(accessToken);
+  const headers = new Headers();
+  headers.append("Set-Cookie", accessTokenSetCookie);
+  headers.append("Set-Cookie", refreshTokenSetCookie);
+  return CREATED(payload, {
+    headers
+  });
 };
 
 // src/auth/handlers/signup_with_thirdparty.ts
@@ -405,10 +417,34 @@ var signUpWithThirdpartyHandler = async (request, {
   return CREATED({ accessToken, refreshToken });
 };
 
+// src/auth/handlers/request_password_reset.ts
+var requestPasswordResetHandler = async (request, {
+  passwordRecoveryService
+}) => {
+  const { email } = await request.json();
+  try {
+    await passwordRecoveryService.requestPasswordReset(email);
+    return CREATED({ message: "\uBE44\uBC00\uBC88\uD638 \uC7AC\uC124\uC815 \uC774\uBA54\uC77C\uC744 \uC804\uC1A1\uD588\uC2B5\uB2C8\uB2E4." });
+  } catch (error) {
+    console.error(error);
+    return INTERNAL_SERVER_ERROR("\uC774\uBA54\uC77C \uC804\uC1A1\uC5D0 \uC2E4\uD328\uD588\uC2B5\uB2C8\uB2E4.");
+  }
+};
+
+// src/auth/handlers/reset_password.ts
+var resetPasswordHandler = async (request, {
+  passwordRecoveryService
+}) => {
+  const { token, password, passwordConfirm } = await request.json();
+  await passwordRecoveryService.resetPassword(token, password, passwordConfirm);
+  return NO_CONTENT();
+};
+
 // src/route/api.ts
 var createAPIHandler = ({
   authService,
   fileService,
+  passwordRecoveryService,
   getThirdPartyAuth,
   signupTokenSecret
 }) => {
@@ -504,6 +540,12 @@ var createAPIHandler = ({
               }
             }
           }
+          case "request-password-reset": {
+            return requestPasswordResetHandler(request, { passwordRecoveryService });
+          }
+          case "reset-password": {
+            return resetPasswordHandler(request, { passwordRecoveryService });
+          }
         }
       }
       case "files": {

package/dist/route/api.mjs

@@ -197,7 +197,7 @@ var loginHandler = async (request, {
 }) => {
   const { id, password } = await request.json();
   try {
-    const { accessToken, refreshToken } = await authService.signIn({
+    const { accessToken, refreshToken } = await authService.login({
       id,
       password
     });
@@ -291,12 +291,9 @@ var signupHandler = async (request, {
   if (!passwordConfirm) {
     return BAD_REQUEST("\uBE44\uBC00\uBC88\uD638 \uD655\uC778\uC744 \uC785\uB825\uD574\uC8FC\uC138\uC694.");
   }
-  if (!name) {
-    return BAD_REQUEST("\uC774\uB984\uC744 \uC785\uB825\uD574\uC8FC\uC138\uC694.");
-  }
   const existing = await authService.authRepository.findCredentialById(email);
   if (existing) {
-    return CONFLICT("\uC774\uBA54\uC77C\uC774 \uC774\uBBF8 \uC874\uC7AC\uD569\uB2C8\uB2E4.");
+    return CONFLICT("\uC774\uBBF8 \uAC00\uC785\uD55C \uC774\uBA54\uC77C\uC785\uB2C8\uB2E4.");
   }
   if (password !== passwordConfirm) {
     return BAD_REQUEST("\uBE44\uBC00\uBC88\uD638\uAC00 \uC77C\uCE58\uD558\uC9C0 \uC54A\uC2B5\uB2C8\uB2E4.");
@@ -316,7 +313,22 @@ var signupHandler = async (request, {
     password: bcrypt.hashSync(password, 10)
   });
   const { accessToken, refreshToken } = await authService.issueTokenPair(user);
-  return CREATED({ accessToken, refreshToken });
+  const searchParams = new URL(request.url).searchParams;
+  const type = searchParams.get("type");
+  if (type === "json") {
+    return CREATED({ accessToken, refreshToken });
+  }
+  const [accessTokenSetCookie, refreshTokenSetCookie] = await Promise.all([
+    authService.getAccessTokenSetCookie(accessToken),
+    authService.getRefreshTokenSetCookie(refreshToken)
+  ]);
+  const payload = authService.jwtManager.decode(accessToken);
+  const headers = new Headers();
+  headers.append("Set-Cookie", accessTokenSetCookie);
+  headers.append("Set-Cookie", refreshTokenSetCookie);
+  return CREATED(payload, {
+    headers
+  });
 };
 
 // src/auth/handlers/signup_with_thirdparty.ts
@@ -369,10 +381,34 @@ var signUpWithThirdpartyHandler = async (request, {
   return CREATED({ accessToken, refreshToken });
 };
 
+// src/auth/handlers/request_password_reset.ts
+var requestPasswordResetHandler = async (request, {
+  passwordRecoveryService
+}) => {
+  const { email } = await request.json();
+  try {
+    await passwordRecoveryService.requestPasswordReset(email);
+    return CREATED({ message: "\uBE44\uBC00\uBC88\uD638 \uC7AC\uC124\uC815 \uC774\uBA54\uC77C\uC744 \uC804\uC1A1\uD588\uC2B5\uB2C8\uB2E4." });
+  } catch (error) {
+    console.error(error);
+    return INTERNAL_SERVER_ERROR("\uC774\uBA54\uC77C \uC804\uC1A1\uC5D0 \uC2E4\uD328\uD588\uC2B5\uB2C8\uB2E4.");
+  }
+};
+
+// src/auth/handlers/reset_password.ts
+var resetPasswordHandler = async (request, {
+  passwordRecoveryService
+}) => {
+  const { token, password, passwordConfirm } = await request.json();
+  await passwordRecoveryService.resetPassword(token, password, passwordConfirm);
+  return NO_CONTENT();
+};
+
 // src/route/api.ts
 var createAPIHandler = ({
   authService,
   fileService,
+  passwordRecoveryService,
   getThirdPartyAuth,
   signupTokenSecret
 }) => {
@@ -468,6 +504,12 @@ var createAPIHandler = ({
               }
             }
           }
+          case "request-password-reset": {
+            return requestPasswordResetHandler(request, { passwordRecoveryService });
+          }
+          case "reset-password": {
+            return resetPasswordHandler(request, { passwordRecoveryService });
+          }
         }
       }
       case "files": {

package/package.json

@@ -1,6 +1,6 @@
 {
     "name": "dn-react-router-toolkit",
-    "version": "0.2.0",
+    "version": "0.2.2",
     "types": "./dist/index.d.ts",
     "main": "./dist/index.mjs",
     "module": "./dist/index.js",
@@ -58,6 +58,7 @@
     "description": "",
     "devDependencies": {
         "@types/node": "^24.10.1",
+        "@types/nodemailer": "^7.0.4",
         "@types/react": "^19",
         "@types/react-dom": "^19",
         "rimraf": "^6.0.1",
@@ -71,6 +72,7 @@
         "bcryptjs": "^3.0.3",
         "jose": "^6.1.2",
         "moment-timezone": "^0.6.0",
+        "nodemailer": "^7.0.11",
         "react-icons": "^5.5.0",
         "uuid": "^13.0.0"
     },