jcc-express-mvc 1.8.8 → 1.8.21

package/lib/Socialite/SocialiteProvider.js

@@ -0,0 +1,15 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SocialiteProvider = void 0;
+const ServiceProvider_1 = require("../Providers/ServiceProvider");
+const Socialite_1 = require("./Socialite");
+/**
+ * Optional registration — Socialite is primarily static (`Socialite.driver()`).
+ * Bind for container resolution if you prefer `app.make("Socialite")`.
+ */
+class SocialiteProvider extends ServiceProvider_1.ServiceProvider {
+    register() {
+        this.app.instance("Socialite", Socialite_1.Socialite);
+    }
+}
+exports.SocialiteProvider = SocialiteProvider;

package/lib/Socialite/config.d.ts

@@ -0,0 +1,7 @@
+import type { OAuthProviderConfig } from "./types";
+/**
+ * Laravel `config/services.php` shape expressed via env:
+ * `{DRIVER}_CLIENT_ID`, `{DRIVER}_CLIENT_SECRET`, optional `{DRIVER}_REDIRECT_URI`.
+ */
+export declare function resolveSocialiteConfig(driver: string): OAuthProviderConfig;
+//# sourceMappingURL=config.d.ts.map

package/lib/Socialite/config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../../../jcc-express-mvc/lib/Socialite/config.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAkBnD;;;GAGG;AACH,wBAAgB,sBAAsB,CAAC,MAAM,EAAE,MAAM,GAAG,mBAAmB,CAsB1E"}

package/lib/Socialite/config.js

@@ -0,0 +1,44 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.resolveSocialiteConfig = resolveSocialiteConfig;
+const Config_1 = require("../Config/Config");
+function normalizeAppUrl(url) {
+    let u = (url || "").trim().replace(/\/$/, "");
+    if (!u)
+        u = "http://localhost:5500";
+    if (!/^https?:\/\//i.test(u))
+        u = `http://${u}`;
+    return u;
+}
+const defaultCallbackPath = {
+    google: "/auth/google/callback",
+    github: "/auth/github/callback",
+    facebook: "/auth/facebook/callback",
+    gitlab: "/auth/gitlab/callback",
+    twitter: "/auth/twitter/callback",
+    slack: "/auth/slack/callback",
+};
+/**
+ * Laravel `config/services.php` shape expressed via env:
+ * `{DRIVER}_CLIENT_ID`, `{DRIVER}_CLIENT_SECRET`, optional `{DRIVER}_REDIRECT_URI`.
+ */
+function resolveSocialiteConfig(driver) {
+    const key = driver.toUpperCase();
+    const clientId = String(Config_1.config.get(`${key}_CLIENT_ID`, "") ?? "");
+    const clientSecret = String(Config_1.config.get(`${key}_CLIENT_SECRET`, "") ?? "");
+    let redirectUri = String(Config_1.config.get(`${key}_REDIRECT_URI`, "") ?? "");
+    if (!redirectUri) {
+        const base = normalizeAppUrl(String(Config_1.config.get("APP_URL", "") ?? ""));
+        const path = defaultCallbackPath[driver] ?? `/auth/${encodeURIComponent(driver)}/callback`;
+        redirectUri = `${base}${path.startsWith("/") ? path : `/${path}`}`;
+    }
+    const out = {
+        clientId,
+        clientSecret,
+        redirectUri,
+    };
+    if (driver === "gitlab") {
+        out.gitlabUrl = String(Config_1.config.get("GITLAB_URL", "https://gitlab.com") ?? "https://gitlab.com").replace(/\/$/, "");
+    }
+    return out;
+}

package/lib/Socialite/constant.d.ts

@@ -0,0 +1,18 @@
+export declare const GOOGLE_AUTH = "https://accounts.google.com/o/oauth2/v2/auth";
+export declare const GOOGLE_TOKEN = "https://oauth2.googleapis.com/token";
+export declare const GOOGLE_USERINFO = "https://openidconnect.googleapis.com/v1/userinfo";
+export declare const GITHUB_AUTHORIZE = "https://github.com/login/oauth/authorize";
+export declare const GITHUB_TOKEN = "https://github.com/login/oauth/access_token";
+export declare const GITHUB_USER = "https://api.github.com/user";
+export declare const GITHUB_EMAILS = "https://api.github.com/user/emails";
+export declare const FACEBOOK_GRAPH_VERSION = "v21.0";
+export declare const FACEBOOK_AUTHORIZE = "https://www.facebook.com/v21.0/dialog/oauth";
+export declare const FACEBOOK_TOKEN = "https://graph.facebook.com/v21.0/oauth/access_token";
+export declare const TWITTER_AUTHORIZE = "https://twitter.com/i/oauth2/authorize";
+export declare const TWITTER_TOKEN = "https://api.twitter.com/2/oauth2/token";
+export declare const TWITTER_USER_ME = "https://api.twitter.com/2/users/me";
+/** Slack Sign in with Slack — OpenID Connect */
+export declare const SLACK_OPENID_AUTHORIZE = "https://slack.com/openid/connect/authorize";
+export declare const SLACK_OPENID_TOKEN = "https://slack.com/api/openid.connect.token";
+export declare const SLACK_OPENID_USERINFO = "https://slack.com/api/openid.connect.userInfo";
+//# sourceMappingURL=constant.d.ts.map

package/lib/Socialite/constant.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constant.d.ts","sourceRoot":"","sources":["../../../jcc-express-mvc/lib/Socialite/constant.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,WAAW,iDAAiD,CAAC;AAC1E,eAAO,MAAM,YAAY,wCAAwC,CAAC;AAClE,eAAO,MAAM,eAAe,qDACwB,CAAC;AAErD,eAAO,MAAM,gBAAgB,6CAA6C,CAAC;AAC3E,eAAO,MAAM,YAAY,gDAAgD,CAAC;AAC1E,eAAO,MAAM,WAAW,gCAAgC,CAAC;AACzD,eAAO,MAAM,aAAa,uCAAuC,CAAC;AAElE,eAAO,MAAM,sBAAsB,UAAU,CAAC;AAC9C,eAAO,MAAM,kBAAkB,gDAAoE,CAAC;AACpG,eAAO,MAAM,cAAc,wDAA4E,CAAC;AAExG,eAAO,MAAM,iBAAiB,2CAA2C,CAAC;AAC1E,eAAO,MAAM,aAAa,2CAA2C,CAAC;AACtE,eAAO,MAAM,eAAe,uCAAuC,CAAC;AAEpE,gDAAgD;AAChD,eAAO,MAAM,sBAAsB,+CACW,CAAC;AAC/C,eAAO,MAAM,kBAAkB,+CAA+C,CAAC;AAC/E,eAAO,MAAM,qBAAqB,kDACe,CAAC"}

package/lib/Socialite/constant.js

@@ -0,0 +1,20 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SLACK_OPENID_USERINFO = exports.SLACK_OPENID_TOKEN = exports.SLACK_OPENID_AUTHORIZE = exports.TWITTER_USER_ME = exports.TWITTER_TOKEN = exports.TWITTER_AUTHORIZE = exports.FACEBOOK_TOKEN = exports.FACEBOOK_AUTHORIZE = exports.FACEBOOK_GRAPH_VERSION = exports.GITHUB_EMAILS = exports.GITHUB_USER = exports.GITHUB_TOKEN = exports.GITHUB_AUTHORIZE = exports.GOOGLE_USERINFO = exports.GOOGLE_TOKEN = exports.GOOGLE_AUTH = void 0;
+exports.GOOGLE_AUTH = "https://accounts.google.com/o/oauth2/v2/auth";
+exports.GOOGLE_TOKEN = "https://oauth2.googleapis.com/token";
+exports.GOOGLE_USERINFO = "https://openidconnect.googleapis.com/v1/userinfo";
+exports.GITHUB_AUTHORIZE = "https://github.com/login/oauth/authorize";
+exports.GITHUB_TOKEN = "https://github.com/login/oauth/access_token";
+exports.GITHUB_USER = "https://api.github.com/user";
+exports.GITHUB_EMAILS = "https://api.github.com/user/emails";
+exports.FACEBOOK_GRAPH_VERSION = "v21.0";
+exports.FACEBOOK_AUTHORIZE = `https://www.facebook.com/${exports.FACEBOOK_GRAPH_VERSION}/dialog/oauth`;
+exports.FACEBOOK_TOKEN = `https://graph.facebook.com/${exports.FACEBOOK_GRAPH_VERSION}/oauth/access_token`;
+exports.TWITTER_AUTHORIZE = "https://twitter.com/i/oauth2/authorize";
+exports.TWITTER_TOKEN = "https://api.twitter.com/2/oauth2/token";
+exports.TWITTER_USER_ME = "https://api.twitter.com/2/users/me";
+/** Slack Sign in with Slack — OpenID Connect */
+exports.SLACK_OPENID_AUTHORIZE = "https://slack.com/openid/connect/authorize";
+exports.SLACK_OPENID_TOKEN = "https://slack.com/api/openid.connect.token";
+exports.SLACK_OPENID_USERINFO = "https://slack.com/api/openid.connect.userInfo";

package/lib/Socialite/index.d.ts

@@ -0,0 +1,13 @@
+export { Socialite } from "./Socialite";
+export { AbstractProvider } from "./AbstractProvider";
+export type { OAuthAuthorizeContext, OAuthProviderConfig } from "./types";
+export { resolveSocialiteConfig } from "./config";
+export { SocialUser } from "./SocialUser";
+export { SocialiteProvider } from "./SocialiteProvider";
+export { GoogleProvider } from "./Drivers/google/GoogleProvider";
+export { GitHubProvider } from "./Drivers/github/GitHubProvider";
+export { FacebookProvider } from "./Drivers/facebook/FacebookProvider";
+export { GitLabProvider } from "./Drivers/gitlab/GitLabProvider";
+export { TwitterProvider } from "./Drivers/twitter/TwitterProvider";
+export { SlackProvider } from "./Drivers/slack/SlackProvider";
+//# sourceMappingURL=index.d.ts.map

package/lib/Socialite/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../jcc-express-mvc/lib/Socialite/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AACxC,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,YAAY,EAAE,qBAAqB,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAC1E,OAAO,EAAE,sBAAsB,EAAE,MAAM,UAAU,CAAC;AAClD,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAC1C,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AACxD,OAAO,EAAE,cAAc,EAAE,MAAM,iCAAiC,CAAC;AACjE,OAAO,EAAE,cAAc,EAAE,MAAM,iCAAiC,CAAC;AACjE,OAAO,EAAE,gBAAgB,EAAE,MAAM,qCAAqC,CAAC;AACvE,OAAO,EAAE,cAAc,EAAE,MAAM,iCAAiC,CAAC;AACjE,OAAO,EAAE,eAAe,EAAE,MAAM,mCAAmC,CAAC;AACpE,OAAO,EAAE,aAAa,EAAE,MAAM,+BAA+B,CAAC"}

package/lib/Socialite/index.js

@@ -0,0 +1,25 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SlackProvider = exports.TwitterProvider = exports.GitLabProvider = exports.FacebookProvider = exports.GitHubProvider = exports.GoogleProvider = exports.SocialiteProvider = exports.SocialUser = exports.resolveSocialiteConfig = exports.AbstractProvider = exports.Socialite = void 0;
+var Socialite_1 = require("./Socialite");
+Object.defineProperty(exports, "Socialite", { enumerable: true, get: function () { return Socialite_1.Socialite; } });
+var AbstractProvider_1 = require("./AbstractProvider");
+Object.defineProperty(exports, "AbstractProvider", { enumerable: true, get: function () { return AbstractProvider_1.AbstractProvider; } });
+var config_1 = require("./config");
+Object.defineProperty(exports, "resolveSocialiteConfig", { enumerable: true, get: function () { return config_1.resolveSocialiteConfig; } });
+var SocialUser_1 = require("./SocialUser");
+Object.defineProperty(exports, "SocialUser", { enumerable: true, get: function () { return SocialUser_1.SocialUser; } });
+var SocialiteProvider_1 = require("./SocialiteProvider");
+Object.defineProperty(exports, "SocialiteProvider", { enumerable: true, get: function () { return SocialiteProvider_1.SocialiteProvider; } });
+var GoogleProvider_1 = require("./Drivers/google/GoogleProvider");
+Object.defineProperty(exports, "GoogleProvider", { enumerable: true, get: function () { return GoogleProvider_1.GoogleProvider; } });
+var GitHubProvider_1 = require("./Drivers/github/GitHubProvider");
+Object.defineProperty(exports, "GitHubProvider", { enumerable: true, get: function () { return GitHubProvider_1.GitHubProvider; } });
+var FacebookProvider_1 = require("./Drivers/facebook/FacebookProvider");
+Object.defineProperty(exports, "FacebookProvider", { enumerable: true, get: function () { return FacebookProvider_1.FacebookProvider; } });
+var GitLabProvider_1 = require("./Drivers/gitlab/GitLabProvider");
+Object.defineProperty(exports, "GitLabProvider", { enumerable: true, get: function () { return GitLabProvider_1.GitLabProvider; } });
+var TwitterProvider_1 = require("./Drivers/twitter/TwitterProvider");
+Object.defineProperty(exports, "TwitterProvider", { enumerable: true, get: function () { return TwitterProvider_1.TwitterProvider; } });
+var SlackProvider_1 = require("./Drivers/slack/SlackProvider");
+Object.defineProperty(exports, "SlackProvider", { enumerable: true, get: function () { return SlackProvider_1.SlackProvider; } });

package/lib/Socialite/types.d.ts

@@ -0,0 +1,13 @@
+export interface OAuthProviderConfig {
+    clientId: string;
+    clientSecret: string;
+    redirectUri: string;
+    /** Self-hosted GitLab base URL (no trailing slash). Default https://gitlab.com */
+    gitlabUrl?: string;
+}
+/** Optional PKCE context passed to {@link AbstractProvider.buildAuthorizeUrl} (Twitter). */
+export type OAuthAuthorizeContext = {
+    codeChallenge: string;
+    codeChallengeMethod: string;
+};
+//# sourceMappingURL=types.d.ts.map

package/lib/Socialite/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../jcc-express-mvc/lib/Socialite/types.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,mBAAmB;IAClC,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,kFAAkF;IAClF,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,4FAA4F;AAC5F,MAAM,MAAM,qBAAqB,GAAG;IAClC,aAAa,EAAE,MAAM,CAAC;IACtB,mBAAmB,EAAE,MAAM,CAAC;CAC7B,CAAC"}

package/lib/Socialite/types.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/lib/Type/index.d.ts

@@ -25,6 +25,7 @@ export type ValidationObject = {
 export type HttpMethodType = "get" | "post" | "patch" | "put" | "delete";
 export type RouteHandler = ExpressCallback | [BaseController, string] | string;
 export type Middleware = ExpressCallback[] | ExpressCallback;
+export type MiddlewareInput = Middleware | string | Array<Middleware | string>;
 export type HttpRoutes = Array<{
     url: string;
     method: HttpMethodType;

package/lib/Type/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../jcc-express-mvc/lib/Type/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AACzC,OAAO,EACL,cAAc,EACd,eAAe,EACf,iBAAiB,EAClB,MAAM,cAAc,CAAC;AACtB,OAAO,EAAE,gBAAgB,EAAE,MAAM,EAAU,MAAM,WAAW,CAAC;AAI7D,MAAM,MAAM,SAAS,GAAG;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAIF,MAAM,MAAM,UAAU,GAAG;IAAE,IAAI,EAAE,MAAM,CAAA;CAAE,CAAC;AAE1C,MAAM,MAAM,gBAAgB,GAAG;IAC7B,GAAG,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC;IAChB,GAAG,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC;CACjB,CAAC;AAEF,MAAM,MAAM,WAAW,GAAG;IACxB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG;IACvB,CAAC,GAAG,EAAE,MAAM,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC;CAC3B,CAAC;AAEF,MAAM,MAAM,gBAAgB,GAAG;IAC7B,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;CACpB,CAAC;AAEF,MAAM,MAAM,cAAc,GAAG,KAAK,GAAG,MAAM,GAAG,OAAO,GAAG,KAAK,GAAG,QAAQ,CAAC;AAEzE,MAAM,MAAM,YAAY,GAAG,eAAe,GAAG,CAAC,cAAc,EAAE,MAAM,CAAC,GAAG,MAAM,CAAC;AAE/E,MAAM,MAAM,UAAU,GAAG,eAAe,EAAE,GAAG,eAAe,CAAC;AAE7D,MAAM,MAAM,UAAU,GAAG,KAAK,CAAC;IAC7B,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,cAAc,CAAC;IACvB,OAAO,EAAE,YAAY,CAAC;IACtB,WAAW,EAAE,cAAc,GAAG,cAAc,EAAE,CAAC;IAC/C,UAAU,CAAC,EAAE,cAAc,CAAC;CAC7B,CAAC,CAAC;AAEH,MAAM,MAAM,SAAS,GAAG,KAAK,CAAC;IAC5B,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,cAAc,CAAC;IACvB,QAAQ,EAAE,cAAc,CAAC;IACzB,UAAU,EAAE,UAAU,CAAC;IACvB,UAAU,CAAC,EAAE,cAAc,CAAC;CAC7B,CAAC,CAAC;AAEH,MAAM,MAAM,UAAU,GAAG,MAAM,CAC7B,gBAAgB,EAChB,gBAAgB,EAChB,gBAAgB,EAChB,GAAG,CACJ,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG;IACzB,MAAM,EAAE;QACN,aAAa,EAAE,MAAM,CAAC;QACtB,aAAa,EAAE,MAAM,CAAC;KACvB,CAAC;CACH,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;CACf,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG;IACvB,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;IACzC,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;CACzC,CAAC;AAEF,MAAM,MAAM,SAAS,GAAG;IACtB,IAAI,EAAE,UAAU,CAAC;CAClB,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG;IACzB,cAAc,EAAE,MAAM,CAAC;IACvB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,GAAG,CAAC;IACtB,mBAAmB,EAAE,MAAM,CAAC;CAC7B,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,GAAG,IAAI,CAAC;AAEnE,MAAM,MAAM,WAAW,CAAC,CAAC,GAAG,GAAG,IAAI,KAAK,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;AAC7D,MAAM,MAAM,OAAO,CAAC,CAAC,GAAG,GAAG,IAAI,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;AACrD,MAAM,MAAM,YAAY,CAAC,CAAC,GAAG,GAAG,IAAI,WAAW,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;AAEhE,MAAM,MAAM,eAAe,CAAC,CAAC,GAAG,GAAG,IAC/B,CAAC,KAAK,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC,GAC3B,CAAC,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC;AAE5B,MAAM,MAAM,UAAU,CAAC,CAAC,IAAI,KAAK,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;AAEtD,MAAM,MAAM,mBAAmB,GAAG,UAAU,iBAAiB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../jcc-express-mvc/lib/Type/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AACzC,OAAO,EACL,cAAc,EACd,eAAe,EACf,iBAAiB,EAClB,MAAM,cAAc,CAAC;AACtB,OAAO,EAAE,gBAAgB,EAAE,MAAM,EAAU,MAAM,WAAW,CAAC;AAI7D,MAAM,MAAM,SAAS,GAAG;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAIF,MAAM,MAAM,UAAU,GAAG;IAAE,IAAI,EAAE,MAAM,CAAA;CAAE,CAAC;AAE1C,MAAM,MAAM,gBAAgB,GAAG;IAC7B,GAAG,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC;IAChB,GAAG,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC;CACjB,CAAC;AAEF,MAAM,MAAM,WAAW,GAAG;IACxB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG;IACvB,CAAC,GAAG,EAAE,MAAM,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC;CAC3B,CAAC;AAEF,MAAM,MAAM,gBAAgB,GAAG;IAC7B,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;CACpB,CAAC;AAEF,MAAM,MAAM,cAAc,GAAG,KAAK,GAAG,MAAM,GAAG,OAAO,GAAG,KAAK,GAAG,QAAQ,CAAC;AAEzE,MAAM,MAAM,YAAY,GAAG,eAAe,GAAG,CAAC,cAAc,EAAE,MAAM,CAAC,GAAG,MAAM,CAAC;AAE/E,MAAM,MAAM,UAAU,GAAG,eAAe,EAAE,GAAG,eAAe,CAAC;AAE7D,MAAM,MAAM,eAAe,GAAG,UAAU,GAAG,MAAM,GAAG,KAAK,CAAC,UAAU,GAAG,MAAM,CAAC,CAAC;AAE/E,MAAM,MAAM,UAAU,GAAG,KAAK,CAAC;IAC7B,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,cAAc,CAAC;IACvB,OAAO,EAAE,YAAY,CAAC;IACtB,WAAW,EAAE,cAAc,GAAG,cAAc,EAAE,CAAC;IAC/C,UAAU,CAAC,EAAE,cAAc,CAAC;CAC7B,CAAC,CAAC;AAEH,MAAM,MAAM,SAAS,GAAG,KAAK,CAAC;IAC5B,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,cAAc,CAAC;IACvB,QAAQ,EAAE,cAAc,CAAC;IACzB,UAAU,EAAE,UAAU,CAAC;IACvB,UAAU,CAAC,EAAE,cAAc,CAAC;CAC7B,CAAC,CAAC;AAEH,MAAM,MAAM,UAAU,GAAG,MAAM,CAC7B,gBAAgB,EAChB,gBAAgB,EAChB,gBAAgB,EAChB,GAAG,CACJ,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG;IACzB,MAAM,EAAE;QACN,aAAa,EAAE,MAAM,CAAC;QACtB,aAAa,EAAE,MAAM,CAAC;KACvB,CAAC;CACH,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;CACf,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG;IACvB,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;IACzC,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;CACzC,CAAC;AAEF,MAAM,MAAM,SAAS,GAAG;IACtB,IAAI,EAAE,UAAU,CAAC;CAClB,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG;IACzB,cAAc,EAAE,MAAM,CAAC;IACvB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,GAAG,CAAC;IACtB,mBAAmB,EAAE,MAAM,CAAC;CAC7B,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,GAAG,IAAI,CAAC;AAEnE,MAAM,MAAM,WAAW,CAAC,CAAC,GAAG,GAAG,IAAI,KAAK,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;AAC7D,MAAM,MAAM,OAAO,CAAC,CAAC,GAAG,GAAG,IAAI,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;AACrD,MAAM,MAAM,YAAY,CAAC,CAAC,GAAG,GAAG,IAAI,WAAW,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;AAEhE,MAAM,MAAM,eAAe,CAAC,CAAC,GAAG,GAAG,IAC/B,CAAC,KAAK,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC,GAC3B,CAAC,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC;AAE5B,MAAM,MAAM,UAAU,CAAC,CAAC,IAAI,KAAK,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;AAEtD,MAAM,MAAM,mBAAmB,GAAG,UAAU,iBAAiB,CAAC"}

package/lib/Validation/Validator/CustomValidation.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"CustomValidation.d.ts","sourceRoot":"","sources":["../../../../jcc-express-mvc/lib/Validation/Validator/CustomValidation.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAE/C,qBAAa,gBAAgB;IAI3B,MAAM,CAAC,QAAQ,CACb,IAAI,EAAE,GAAG,EACT,KAAK,EAAE,SAAS,EAChB,SAAS,EAAE,MAAM,EACjB,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,UAAU;WASP,MAAM,CACjB,IAAI,EAAE,GAAG,EACT,KAAK,EAAE,SAAS,EAChB,SAAS,EAAE,MAAM,EACjB,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,UAAU;IAapB,MAAM,CAAC,IAAI,CACT,IAAI,EAAE,GAAG,EACT,KAAK,EAAE,SAAS,EAChB,SAAS,EAAE,MAAM,EACjB,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,UAAU;IAQpB,MAAM,CAAC,KAAK,CACV,IAAI,EAAE,GAAG,EACT,KAAK,EAAE,SAAS,EAChB,SAAS,EAAE,MAAM,EACjB,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,UAAU;WAQP,MAAM,CACjB,IAAI,EAAE,GAAG,EACT,KAAK,EAAE,SAAS,EAChB,SAAS,EAAE,MAAM,EACjB,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,UAAU;CAWrB;AAED,eAAO,MAAM,gBAAgB;;;;;;CAM5B,CAAC"}
+{"version":3,"file":"CustomValidation.d.ts","sourceRoot":"","sources":["../../../../jcc-express-mvc/lib/Validation/Validator/CustomValidation.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAE/C,qBAAa,gBAAgB;IAI3B,MAAM,CAAC,QAAQ,CACb,IAAI,EAAE,GAAG,EACT,KAAK,EAAE,SAAS,EAChB,SAAS,EAAE,MAAM,EACjB,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,UAAU;WASP,MAAM,CACjB,IAAI,EAAE,GAAG,EACT,KAAK,EAAE,SAAS,EAChB,SAAS,EAAE,MAAM,EACjB,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,UAAU;IAkBpB,MAAM,CAAC,IAAI,CACT,IAAI,EAAE,GAAG,EACT,KAAK,EAAE,SAAS,EAChB,SAAS,EAAE,MAAM,EACjB,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,UAAU;IAQpB,MAAM,CAAC,KAAK,CACV,IAAI,EAAE,GAAG,EACT,KAAK,EAAE,SAAS,EAChB,SAAS,EAAE,MAAM,EACjB,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,UAAU;WAQP,MAAM,CACjB,IAAI,EAAE,GAAG,EACT,KAAK,EAAE,SAAS,EAChB,SAAS,EAAE,MAAM,EACjB,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,UAAU;CAerB;AAED,eAAO,MAAM,gBAAgB;;;;;;CAM5B,CAAC"}

package/lib/Validation/Validator/CustomValidation.js

@@ -16,7 +16,7 @@ class CustomValidation {
         if (!this.ruleValue || !attribute) {
             return passes(false, "Invalid unique rule definition.");
         }
-        const result = await (0, helper_1.existsHelper)(attribute, value, this.ruleValue);
+        const result = await (0, helper_1.existsHelper)(this.attribute || attribute, value, this.ruleValue);
         if (result) {
             return passes(false, `This ${this.attribute} has already been taken`);
         }
@@ -38,7 +38,7 @@ class CustomValidation {
         if (!value) {
             return passes(false, "The field is required.");
         }
-        const result = await (0, helper_1.existsHelper)(attribute, value, this.ruleValue);
+        const result = await (0, helper_1.existsHelper)(this.attribute || attribute, value, this.ruleValue);
         if (!result) {
             return passes(false, `The ${this.attribute} does not exist`);
         }

package/lib/Validation/Validator/helper.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"helper.d.ts","sourceRoot":"","sources":["../../../../jcc-express-mvc/lib/Validation/Validator/helper.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAGnC;;;;;;GAMG;AACH,eAAO,MAAM,YAAY,GACvB,WAAW,MAAM,EACjB,OAAO,SAAS,EAChB,WAAW,MAAM,iBAkBlB,CAAC"}
+{"version":3,"file":"helper.d.ts","sourceRoot":"","sources":["../../../../jcc-express-mvc/lib/Validation/Validator/helper.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAQnC;;;;;;GAMG;AACH,eAAO,MAAM,YAAY,GACvB,WAAW,MAAM,EACjB,OAAO,SAAS,EAChB,WAAW,MAAM,iBAwBlB,CAAC"}

package/lib/Validation/Validator/helper.js

@@ -14,11 +14,18 @@ const existsHelper = async (attribute, value, ruleValue) => {
     const Model = (0, index_1.getModelFile)(model);
     const modelInstance = (0, index_1.getModel)(Model);
     let result;
-    if (process.env.DB_CONNECTION === "mongodb") {
+    if ((0, index_1.isMongooseModel)()) {
         result = await modelInstance[Model].findOne({
             [column || attribute]: value,
         });
     }
+    else if ((0, index_1.isSequelizeModel)()) {
+        result = await modelInstance[Model].findOne({
+            where: {
+                [column || attribute]: value,
+            },
+        });
+    }
     else {
         result = await modelInstance[Model].where(column || attribute, value).exists();
     }

package/lib/util/index.d.ts

@@ -75,6 +75,9 @@ export declare const verifyHash: (password: string, hashPassword: string) => Pro
  * @param {object} data - The data to be encoded in the token.
  * @returns {string} - Signed JWT token.
  */
+export type JwtTokenKind = "access" | "refresh" | "legacy";
+/** `typ` claim: access for API/session, refresh for refresh flow only. */
+export declare const jwtTokenType: (payload: unknown) => JwtTokenKind;
 export declare const jwtSign: (data: string | Record<string, any>, options?: Record<string, any>) => string | any;
 /**
  * Function to verify a JWT token.
@@ -82,6 +85,32 @@ export declare const jwtSign: (data: string | Record<string, any>, options?: Rec
  * @returns {object} - Decoded JWT payload.
  */
 export declare const jwtVerify: (token: string) => string | any;
+/** User id from JWT payload (jwt.sign stores subject as `{ id }` from jwtSign string helper). */
+export declare const jwtSubjectId: (payload: unknown) => string | number;
+/** Shared options for `auth_token` / `refresh_token` cookies (set and clear). */
+export declare function authSessionCookieOptions(): {
+    path: "/";
+    httpOnly: true;
+    secure: boolean;
+    sameSite: "lax";
+};
+/** When `JWT_REQUIRE_TYPED_TOKENS=true`, legacy access tokens (no `typ`) are rejected. */
+export declare function jwtLegacyAccessTokenRejected(payload: unknown): boolean;
+export type JwtAccessTokenPayloadResult = {
+    ok: true;
+} | {
+    ok: false;
+    reason: "refresh" | "legacy";
+};
+/**
+ * After `jwtVerify`, ensures the payload is a session/API access token, not refresh
+ * and not a disallowed legacy token when strict mode is on.
+ */
+export declare function checkJwtAccessTokenPayload(payload: unknown): JwtAccessTokenPayloadResult;
+/**
+ * In production, refuse weak or missing JWT_SECRET (call once at bootstrap).
+ */
+export declare function assertProductionJwtSecret(): void;
 /**
  * Function to save an image file.
  * @param {object} req - The request object containing the file.
@@ -114,7 +143,9 @@ export declare const getJobClass: (jobName: string) => any;
 export declare const pluralizeStr: (str: string) => string;
 /** Universal user finder that supports MongoDB, Sequelize, and JCC ORM */
 export declare const findUserById: (User: any, userId: string | number) => Promise<any>;
-export declare const resolveModelBinding: (req: AppRequest, ModelClass: typeof Model, resolved: any) => Promise<any>;
+export declare const isMongooseModel: () => boolean;
+export declare const isSequelizeModel: () => boolean;
+export declare const resolveModelBinding: (req: AppRequest, ModelClass: typeof Model | any, resolved: any) => Promise<any>;
 /**
  * Passes the value to a callback and returns the value.
  *
@@ -130,4 +161,8 @@ export declare const tap: <T>(data: T, callback?: (data: T) => any) => Promise<T
  * @returns {boolean} - True if the model is an instance of a model, false otherwise.
  */
 export declare const isModelInstance: (model: any) => boolean;
+export declare const extractQuery: (url: string) => {
+    [k: string]: string;
+};
+export declare const JSInBuilTClass: (className: string) => boolean;
 //# sourceMappingURL=index.d.ts.map

package/lib/util/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../jcc-express-mvc/lib/util/index.ts"],"names":[],"mappings":"AAQA,OAAO,EAAW,UAAU,EAAe,MAAM,cAAc,CAAC;AAIhE,OAAO,EAAE,KAAK,EAAE,MAAM,iBAAiB,CAAC;AAKxC;;;;GAIG;AACH,eAAO,MAAM,QAAQ,GAAI,MAAM,MAAM,KAAG,GAC0B,CAAC;AAEnE;;GAEG;AACH,eAAO,MAAM,UAAU,QAAO,IAG7B,CAAC;AAEF,eAAO,MAAM,SAAS,GAAI,OAAO,MAAM,SAMtC,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,aAAa,GAAI,MAAM,MAAM,KAAG,GACW,CAAC;AAEzD;;;;GAIG;AACH,eAAO,MAAM,gBAAgB,GAAI,MAAM,MAAM,KAAG,GACY,CAAC;AAE7D;;;;GAIG;AACH,eAAO,MAAM,QAAQ,GAAI,MAAM,MAAM,KAAG,GACM,CAAC;AAE/C;;;;GAIG;AACH,eAAO,MAAM,aAAa,GAAI,MAAM,MAAM,KAAG,GACW,CAAC;AAEzD;;;;GAIG;AACH,eAAO,MAAM,UAAU,GAAI,MAAM,MAAM,KAAG,GACW,CAAC;AAEtD;;;;GAIG;AACH,eAAO,MAAM,QAAQ,GAAI,MAAM,MAAM,KAAG,GAEvC,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,YAAY,QAAO,KAAK,CAAC,GAAG,CAGxC,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,WAAW,GAAI,MAAM,MAAM,KAAG,GAM1C,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,MAAM,GAAU,KAAK,MAAM,KAAG,OAAO,CAAC,MAAM,CAGxD,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,UAAU,GACrB,UAAU,MAAM,EAChB,cAAc,MAAM,KACnB,OAAO,CAAC,OAAO,CAEjB,CAAC;AAEF;;;;GAIG;AAEH,eAAO,MAAM,OAAO,GAClB,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAClC,UAAU,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,KAC5B,MAAM,GAAG,GAWX,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,SAAS,GAAI,OAAO,MAAM,KAAG,MAAM,GAAG,GAMlD,CAAC;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,SAAS,GACpB,KAAK,GAAG,EACR,WAAW,MAAM,EACjB,SAAQ,MAAgB,KACvB,MAgBF,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,UAAU,GAAI,KAAK,MAAM,KAAG,MAExC,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,YAAY,GACtB,MAAM,GAAG,KAAG,GAEsC,CAAC;AAEtD,eAAO,MAAM,YAAY,GAAI,WAAW,MAAM,KAAG,MAEhD,CAAC;AAEF,eAAO,MAAM,gBAAgB,GAAI,MAAM,GAAG,KAAG,GAezC,CAAC;AAEL,eAAO,MAAM,WAAW,GAAI,SAAS,MAAM,KAAG,GAQ7C,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,YAAY,GAAI,KAAK,MAAM,KAAG,MAG1C,CAAC;AAOF,0EAA0E;AAC1E,eAAO,MAAM,YAAY,GAAU,MAAM,GAAG,EAAE,QAAQ,MAAM,GAAG,MAAM,iBAkBpE,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAC9B,KAAK,UAAU,EACf,YAAY,OAAO,KAAK,EACxB,UAAU,GAAG,iBAoDd,CAAC;AAEF;;;;;;;GAOG;AACH,eAAO,MAAM,GAAG,GAAU,CAAC,EACzB,MAAM,CAAC,EACP,WAAW,CAAC,IAAI,EAAE,CAAC,KAAK,GAAG,KAC1B,OAAO,CAAC,CAAC,CASX,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,eAAe,GAAI,OAAO,GAAG,KAAG,OAc5C,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../jcc-express-mvc/lib/util/index.ts"],"names":[],"mappings":"AAQA,OAAO,EAAW,UAAU,EAAe,MAAM,cAAc,CAAC;AAIhE,OAAO,EAAE,KAAK,EAAE,MAAM,iBAAiB,CAAC;AAKxC;;;;GAIG;AACH,eAAO,MAAM,QAAQ,GAAI,MAAM,MAAM,KAAG,GACc,CAAC;AAEvD;;GAEG;AACH,eAAO,MAAM,UAAU,QAAO,IAG7B,CAAC;AAEF,eAAO,MAAM,SAAS,GAAI,OAAO,MAAM,SAMtC,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,aAAa,GAAI,MAAM,MAAM,KAAG,GACW,CAAC;AAEzD;;;;GAIG;AACH,eAAO,MAAM,gBAAgB,GAAI,MAAM,MAAM,KAAG,GACY,CAAC;AAE7D;;;;GAIG;AACH,eAAO,MAAM,QAAQ,GAAI,MAAM,MAAM,KAAG,GACM,CAAC;AAE/C;;;;GAIG;AACH,eAAO,MAAM,aAAa,GAAI,MAAM,MAAM,KAAG,GACW,CAAC;AAEzD;;;;GAIG;AACH,eAAO,MAAM,UAAU,GAAI,MAAM,MAAM,KAAG,GACW,CAAC;AAEtD;;;;GAIG;AACH,eAAO,MAAM,QAAQ,GAAI,MAAM,MAAM,KAAG,GAEvC,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,YAAY,QAAO,KAAK,CAAC,GAAG,CAGxC,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,WAAW,GAAI,MAAM,MAAM,KAAG,GAM1C,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,MAAM,GAAU,KAAK,MAAM,KAAG,OAAO,CAAC,MAAM,CAGxD,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,UAAU,GACrB,UAAU,MAAM,EAChB,cAAc,MAAM,KACnB,OAAO,CAAC,OAAO,CAEjB,CAAC;AAEF;;;;GAIG;AAEH,MAAM,MAAM,YAAY,GAAG,QAAQ,GAAG,SAAS,GAAG,QAAQ,CAAC;AAE3D,0EAA0E;AAC1E,eAAO,MAAM,YAAY,GAAI,SAAS,OAAO,KAAG,YAM/C,CAAC;AAEF,eAAO,MAAM,OAAO,GAClB,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAClC,UAAU,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,KAC5B,MAAM,GAAG,GAgBX,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,SAAS,GAAI,OAAO,MAAM,KAAG,MAAM,GAAG,GAalD,CAAC;AAEF,iGAAiG;AACjG,eAAO,MAAM,YAAY,GAAI,SAAS,OAAO,KAAG,MAAM,GAAG,MAQxD,CAAC;AAEF,iFAAiF;AACjF,wBAAgB,wBAAwB,IAAI;IAC1C,IAAI,EAAE,GAAG,CAAC;IACV,QAAQ,EAAE,IAAI,CAAC;IACf,MAAM,EAAE,OAAO,CAAC;IAChB,QAAQ,EAAE,KAAK,CAAC;CACjB,CAOA;AAED,0FAA0F;AAC1F,wBAAgB,4BAA4B,CAAC,OAAO,EAAE,OAAO,GAAG,OAAO,CAKtE;AAED,MAAM,MAAM,2BAA2B,GACnC;IAAE,EAAE,EAAE,IAAI,CAAA;CAAE,GACZ;IAAE,EAAE,EAAE,KAAK,CAAC;IAAC,MAAM,EAAE,SAAS,GAAG,QAAQ,CAAA;CAAE,CAAC;AAEhD;;;GAGG;AACH,wBAAgB,0BAA0B,CACxC,OAAO,EAAE,OAAO,GACf,2BAA2B,CAQ7B;AAED;;GAEG;AACH,wBAAgB,yBAAyB,IAAI,IAAI,CAkBhD;AAED;;;;;;GAMG;AACH,eAAO,MAAM,SAAS,GACpB,KAAK,GAAG,EACR,WAAW,MAAM,EACjB,SAAQ,MAAgB,KACvB,MAgBF,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,UAAU,GAAI,KAAK,MAAM,KAAG,MAExC,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,YAAY,GACtB,MAAM,GAAG,KAAG,GAEsC,CAAC;AAEtD,eAAO,MAAM,YAAY,GAAI,WAAW,MAAM,KAAG,MAEhD,CAAC;AAEF,eAAO,MAAM,gBAAgB,GAAI,MAAM,GAAG,KAAG,GAezC,CAAC;AAEL,eAAO,MAAM,WAAW,GAAI,SAAS,MAAM,KAAG,GAQ7C,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,YAAY,GAAI,KAAK,MAAM,KAAG,MAG1C,CAAC;AAOF,0EAA0E;AAC1E,eAAO,MAAM,YAAY,GAAU,MAAM,GAAG,EAAE,QAAQ,MAAM,GAAG,MAAM,iBAoBpE,CAAC;AAEF,eAAO,MAAM,eAAe,eAQ3B,CAAC;AAEF,eAAO,MAAM,gBAAgB,eAI5B,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAC9B,KAAK,UAAU,EACf,YAAY,OAAO,KAAK,GAAG,GAAG,EAC9B,UAAU,GAAG,iBA8Cd,CAAC;AAEF;;;;;;;GAOG;AACH,eAAO,MAAM,GAAG,GAAU,CAAC,EACzB,MAAM,CAAC,EACP,WAAW,CAAC,IAAI,EAAE,CAAC,KAAK,GAAG,KAC1B,OAAO,CAAC,CAAC,CASX,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,eAAe,GAAI,OAAO,GAAG,KAAG,OAc5C,CAAC;AAEF,eAAO,MAAM,YAAY,GAAI,KAAK,MAAM;;CAGvC,CAAC;AAEF,eAAO,MAAM,cAAc,GAAI,WAAW,MAAM,KAAG,OAIlD,CAAC"}

package/lib/util/index.js

@@ -3,7 +3,11 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.isModelInstance = exports.tap = exports.resolveModelBinding = exports.findUserById = exports.pluralizeStr = exports.getJobClass = exports.cloudinaryUpload = exports.getModelFile = exports.asyncHandler = exports.capitalize = exports.saveImage = exports.jwtVerify = exports.jwtSign = exports.verifyHash = exports.bcrypt = exports.getProvider = exports.getProviders = exports.getRoute = exports.getRequest = exports.getMiddleware = exports.getModel = exports.getApiController = exports.getController = exports.loadRoute = exports.loadRoutes = exports.rootPath = void 0;
+exports.JSInBuilTClass = exports.extractQuery = exports.isModelInstance = exports.tap = exports.resolveModelBinding = exports.isSequelizeModel = exports.isMongooseModel = exports.findUserById = exports.pluralizeStr = exports.getJobClass = exports.cloudinaryUpload = exports.getModelFile = exports.asyncHandler = exports.capitalize = exports.saveImage = exports.jwtSubjectId = exports.jwtVerify = exports.jwtSign = exports.jwtTokenType = exports.verifyHash = exports.bcrypt = exports.getProvider = exports.getProviders = exports.getRoute = exports.getRequest = exports.getMiddleware = exports.getModel = exports.getApiController = exports.getController = exports.loadRoute = exports.loadRoutes = exports.rootPath = void 0;
+exports.authSessionCookieOptions = authSessionCookieOptions;
+exports.jwtLegacyAccessTokenRejected = jwtLegacyAccessTokenRejected;
+exports.checkJwtAccessTokenPayload = checkJwtAccessTokenPayload;
+exports.assertProductionJwtSecret = assertProductionJwtSecret;
 const bcryptjs_1 = __importDefault(require("bcryptjs"));
 const app_root_path_1 = __importDefault(require("app-root-path"));
 const jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
@@ -23,7 +27,7 @@ const getRootPath = app_root_path_1.default.path;
  * @param {string} file - The file path relative to the project root.
  * @returns {string} - Absolute path of the specified file.
  */
-const rootPath = (file) => require(`${path_1.default.resolve(`${getRootPath}/${(0, exports.capitalize)(file)}`)}`);
+const rootPath = (file) => require(`${path_1.default.resolve(`${getRootPath}/${file}`)}`);
 exports.rootPath = rootPath;
 /**
  * Function load all route files
@@ -103,8 +107,8 @@ const getProvider = (name) => {
     try {
         return require(`${getRootPath}/app/Providers/${name}`);
     }
-    catch {
-        console.log("Cannot find module");
+    catch (error) {
+        console.error("Cannot find module", error.message);
     }
 };
 exports.getProvider = getProvider;
@@ -128,17 +132,28 @@ const verifyHash = async (password, hashPassword) => {
     return bcryptjs_1.default.compare(`${password || ""}`, hashPassword);
 };
 exports.verifyHash = verifyHash;
-/**
- * Function to sign a JWT token.
- * @param {object} data - The data to be encoded in the token.
- * @returns {string} - Signed JWT token.
- */
+/** `typ` claim: access for API/session, refresh for refresh flow only. */
+const jwtTokenType = (payload) => {
+    if (payload == null || typeof payload !== "object")
+        return "legacy";
+    const typ = payload.typ;
+    if (typ === "refresh")
+        return "refresh";
+    if (typ === "access")
+        return "access";
+    return "legacy";
+};
+exports.jwtTokenType = jwtTokenType;
 const jwtSign = (data, options) => {
     try {
         const secret = Config_1.config.get("JWT_SECRET") || "app-generated-key";
-        // Wrap string payload in an object
-        const payload = typeof data === "string" ? { id: data } : data;
-        return jsonwebtoken_1.default.sign(payload, secret, options);
+        const payload = typeof data === "string"
+            ? { id: data, typ: "access" }
+            : { typ: "access", ...data };
+        return jsonwebtoken_1.default.sign(payload, secret, {
+            algorithm: "HS256",
+            ...options,
+        });
     }
     catch (error) {
         throw new AppError_1.AppError(error?.message, error_1.JWT_SIGN_ERROR);
@@ -152,13 +167,72 @@ exports.jwtSign = jwtSign;
  */
 const jwtVerify = (token) => {
     try {
-        return jsonwebtoken_1.default.verify(token, Config_1.config.get(Constants_1.JWT_SECRET, "app-generated-key") || "");
+        return jsonwebtoken_1.default.verify(token, Config_1.config.get(Constants_1.JWT_SECRET, "app-generated-key") || "", {
+            algorithms: ["HS256"],
+            clockTolerance: 30,
+        });
     }
     catch (error) {
         throw new AppError_1.AppError(error?.message, error_1.JWT_VERIFY_ERROR);
     }
 };
 exports.jwtVerify = jwtVerify;
+/** User id from JWT payload (jwt.sign stores subject as `{ id }` from jwtSign string helper). */
+const jwtSubjectId = (payload) => {
+    if (payload != null && typeof payload === "object" && "id" in payload) {
+        return payload.id;
+    }
+    if (typeof payload === "string" || typeof payload === "number") {
+        return payload;
+    }
+    throw new AppError_1.AppError("Invalid token payload", error_1.JWT_VERIFY_ERROR);
+};
+exports.jwtSubjectId = jwtSubjectId;
+/** Shared options for `auth_token` / `refresh_token` cookies (set and clear). */
+function authSessionCookieOptions() {
+    return {
+        path: "/",
+        httpOnly: true,
+        secure: Config_1.config.get("APP_ENV") === "production",
+        sameSite: "lax",
+    };
+}
+/** When `JWT_REQUIRE_TYPED_TOKENS=true`, legacy access tokens (no `typ`) are rejected. */
+function jwtLegacyAccessTokenRejected(payload) {
+    if (Config_1.config.get("JWT_REQUIRE_TYPED_TOKENS", "").toLowerCase() !== "true") {
+        return false;
+    }
+    return (0, exports.jwtTokenType)(payload) === "legacy";
+}
+/**
+ * After `jwtVerify`, ensures the payload is a session/API access token, not refresh
+ * and not a disallowed legacy token when strict mode is on.
+ */
+function checkJwtAccessTokenPayload(payload) {
+    if ((0, exports.jwtTokenType)(payload) === "refresh") {
+        return { ok: false, reason: "refresh" };
+    }
+    if (jwtLegacyAccessTokenRejected(payload)) {
+        return { ok: false, reason: "legacy" };
+    }
+    return { ok: true };
+}
+/**
+ * In production, refuse weak or missing JWT_SECRET (call once at bootstrap).
+ */
+function assertProductionJwtSecret() {
+    const secret = (Config_1.config.get(Constants_1.JWT_SECRET, "") || "").trim();
+    const appEnv = (Config_1.config.get("APP_ENV", "") || "").trim().toLowerCase();
+    const isProduction = process.env.NODE_ENV === "production" || appEnv === "production";
+    if (!isProduction)
+        return;
+    if (secret.length < 32) {
+        throw new Error("[security] JWT_SECRET must be at least 32 characters in production.");
+    }
+    if (secret === "app-generated-key") {
+        throw new Error("[security] JWT_SECRET must not use the default placeholder in production.");
+    }
+}
 /**
  * Function to save an image file.
  * @param {object} req - The request object containing the file.
@@ -246,7 +320,8 @@ exports.pluralizeStr = pluralizeStr;
 /** Universal user finder that supports MongoDB, Sequelize, and JCC ORM */
 const findUserById = async (User, userId) => {
     const orm = Config_1.config.get("DB_ORM");
-    if (orm === "mongodb" && typeof User.findById === "function") {
+    if (orm === "mongodb" ||
+        (orm === "mongoose" && typeof User.findById === "function")) {
         return await User.findById(userId);
     }
     if (orm === "sequelize" && typeof User.findByPk === "function") {
@@ -260,22 +335,35 @@ const findUserById = async (User, userId) => {
     throw new Error("User lookup method not found for current ORM.");
 };
 exports.findUserById = findUserById;
-const resolveModelBinding = async (req, ModelClass, resolved) => {
+const isMongooseModel = () => {
+    const dbConnection = Config_1.config.get("DB_CONNECTION").toLowerCase();
+    const dbOrm = Config_1.config.get("DB_ORM").toLowerCase();
+    return (dbConnection === "mongodb" ||
+        dbConnection === "mongoose" ||
+        dbOrm === "mongoose");
+};
+exports.isMongooseModel = isMongooseModel;
+const isSequelizeModel = () => {
     const dbConnection = Config_1.config.get("DB_CONNECTION").toLowerCase();
     const dbOrm = Config_1.config.get("DB_ORM").toLowerCase();
-    const modelParamName = Str_1.Str.camel(ModelClass.name);
+    return dbConnection === "sequelize" || dbOrm === "sequelize";
+};
+exports.isSequelizeModel = isSequelizeModel;
+const resolveModelBinding = async (req, ModelClass, resolved) => {
+    //
+    const modelParamName = (0, exports.isMongooseModel)()
+        ? Str_1.Str.camel(ModelClass.modelName)
+        : Str_1.Str.camel(ModelClass.name);
     const params = req.params;
     // ---------------------------------
     // 1. Standard binding: /users/:user
     // ---------------------------------
     if (params[modelParamName] !== undefined) {
         const id = params[modelParamName];
-        if (dbConnection === "mongodb" ||
-            dbConnection === "mongoose" ||
-            dbOrm === "mongoose") {
+        if ((0, exports.isMongooseModel)()) {
             return await ModelClass.findById(id);
         }
-        if (dbConnection === "sequelize") {
+        if ((0, exports.isSequelizeModel)()) {
             return await ModelClass.findByPk(id);
         }
         return await ModelClass.find(id);
@@ -288,12 +376,10 @@ const resolveModelBinding = async (req, ModelClass, resolved) => {
         if (key.endsWith(suffix)) {
             const column = key.replace(suffix, "");
             const value = params[key];
-            if (dbConnection === "mongodb" ||
-                dbConnection === "mongoose" ||
-                dbOrm === "mongoose") {
+            if ((0, exports.isMongooseModel)()) {
                 return await ModelClass.findOne({ [column]: value });
             }
-            if (dbConnection === "sequelize" || dbOrm === "sequelize") {
+            if ((0, exports.isSequelizeModel)()) {
                 return await ModelClass.findOne({
                     where: { [column]: value },
                 });
@@ -337,9 +423,20 @@ const isModelInstance = (model) => {
         return model instanceof mongoose.Model;
     }
     if (dbOrm === "sequelize" || dbConnection === "sequelize") {
-        const { sequelize } = require("sequelize");
-        return model instanceof sequelize.Model;
+        const { Model } = require("sequelize");
+        return model instanceof Model;
     }
     return model instanceof Jcc_eloquent_1.Model;
 };
 exports.isModelInstance = isModelInstance;
+const extractQuery = (url) => {
+    const parsed = new URL(url, process.env.APP_URL); // base required for relative URLs
+    return Object.fromEntries(parsed.searchParams.entries());
+};
+exports.extractQuery = extractQuery;
+const JSInBuilTClass = (className) => {
+    return Str_1.Str.lower(className) == "string" || "number" || "boolean" || "object"
+        ? true
+        : false;
+};
+exports.JSInBuilTClass = JSInBuilTClass;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "jcc-express-mvc",
-  "version": "1.8.8",
+  "version": "1.8.21",
   "description": "express mvc structure",
   "main": "index.js",
   "types": "index.d.ts",