naystack 1.5.25 → 1.5.26

package/dist/auth/email/index.cjs.js

@@ -36,6 +36,7 @@ __export(email_exports, {
   getEmailAuthRoutes: () => getEmailAuthRoutes
 });
 module.exports = __toCommonJS(email_exports);
+var import_server4 = require("next/server");
 
 // src/auth/email/token.ts
 var import_bcryptjs = require("bcryptjs");
@@ -366,12 +367,52 @@ function AuthFetch() {
 }
 
 // src/auth/email/index.ts
+function getCorsHeaders(origin, allowedOrigins) {
+  if (!origin || !allowedOrigins.includes(origin)) return null;
+  return {
+    "Access-Control-Allow-Origin": origin,
+    "Access-Control-Allow-Methods": "GET, POST, PUT, DELETE, OPTIONS",
+    "Access-Control-Allow-Headers": "Content-Type, Authorization",
+    "Access-Control-Allow-Credentials": "true"
+  };
+}
+function withCors(handler, allowedOrigins) {
+  if (!allowedOrigins?.length) return handler;
+  return ((req) => {
+    return handler(req).then((response) => {
+      if (!response) return response;
+      const corsHeaders = getCorsHeaders(
+        req.headers.get("origin"),
+        allowedOrigins
+      );
+      if (corsHeaders) {
+        Object.entries(corsHeaders).forEach(([key, value]) => {
+          response.headers.set(key, value);
+        });
+      }
+      return response;
+    });
+  });
+}
 function getEmailAuthRoutes(options) {
+  const { allowedOrigins } = options;
   return {
-    GET: getGetRoute(options),
-    POST: getPostRoute(options),
-    PUT: getPutRoute(options),
-    DELETE: getDeleteRoute(options)
+    GET: withCors(getGetRoute(options), allowedOrigins),
+    POST: withCors(getPostRoute(options), allowedOrigins),
+    PUT: withCors(getPutRoute(options), allowedOrigins),
+    DELETE: withCors(getDeleteRoute(options), allowedOrigins),
+    ...allowedOrigins?.length ? {
+      OPTIONS: (req) => {
+        const corsHeaders = getCorsHeaders(
+          req.headers.get("origin"),
+          allowedOrigins
+        );
+        return new import_server4.NextResponse(null, {
+          status: 204,
+          headers: corsHeaders ?? void 0
+        });
+      }
+    } : {}
   };
 }
 // Annotate the CommonJS export names for ESM import in node:

package/dist/auth/email/index.d.mts

@@ -1,4 +1,4 @@
-import * as next_server from 'next/server';
+import { NextRequest, NextResponse } from 'next/server';
 import { InitRoutesOptions } from './types.mjs';
 export { default as AuthFetch } from './server.mjs';
 export { checkAuthStatus } from './token.mjs';
@@ -48,13 +48,14 @@ import '../../graphql/types.mjs';
  * @category Auth
  */
 declare function getEmailAuthRoutes(options: InitRoutesOptions): {
-    GET: (req: next_server.NextRequest) => Promise<next_server.NextResponse<{
+    OPTIONS?: ((req: NextRequest) => NextResponse<unknown>) | undefined;
+    GET: (req: NextRequest) => Promise<NextResponse<{
         accessToken: string | undefined;
         refreshToken: string | undefined;
     }>>;
-    POST: (req: next_server.NextRequest) => Promise<next_server.NextResponse<unknown> | undefined>;
-    PUT: (req: next_server.NextRequest) => Promise<next_server.NextResponse<unknown> | undefined>;
-    DELETE: (req: next_server.NextRequest) => Promise<next_server.NextResponse<{
+    POST: (req: NextRequest) => Promise<NextResponse<unknown> | undefined>;
+    PUT: (req: NextRequest) => Promise<NextResponse<unknown> | undefined>;
+    DELETE: (req: NextRequest) => Promise<NextResponse<{
         accessToken: string | undefined;
         refreshToken: string | undefined;
     }>>;

package/dist/auth/email/index.d.ts

@@ -1,4 +1,4 @@
-import * as next_server from 'next/server';
+import { NextRequest, NextResponse } from 'next/server';
 import { InitRoutesOptions } from './types.js';
 export { default as AuthFetch } from './server.js';
 export { checkAuthStatus } from './token.js';
@@ -48,13 +48,14 @@ import '../../graphql/types.js';
  * @category Auth
  */
 declare function getEmailAuthRoutes(options: InitRoutesOptions): {
-    GET: (req: next_server.NextRequest) => Promise<next_server.NextResponse<{
+    OPTIONS?: ((req: NextRequest) => NextResponse<unknown>) | undefined;
+    GET: (req: NextRequest) => Promise<NextResponse<{
         accessToken: string | undefined;
         refreshToken: string | undefined;
     }>>;
-    POST: (req: next_server.NextRequest) => Promise<next_server.NextResponse<unknown> | undefined>;
-    PUT: (req: next_server.NextRequest) => Promise<next_server.NextResponse<unknown> | undefined>;
-    DELETE: (req: next_server.NextRequest) => Promise<next_server.NextResponse<{
+    POST: (req: NextRequest) => Promise<NextResponse<unknown> | undefined>;
+    PUT: (req: NextRequest) => Promise<NextResponse<unknown> | undefined>;
+    DELETE: (req: NextRequest) => Promise<NextResponse<{
         accessToken: string | undefined;
         refreshToken: string | undefined;
     }>>;

package/dist/auth/email/index.esm.js

@@ -1,3 +1,6 @@
+// src/auth/email/index.ts
+import { NextResponse as NextResponse3 } from "next/server";
+
 // src/auth/email/token.ts
 import { compare } from "bcryptjs";
 import { JsonWebTokenError, sign, verify } from "jsonwebtoken";
@@ -331,12 +334,52 @@ function AuthFetch() {
 }
 
 // src/auth/email/index.ts
+function getCorsHeaders(origin, allowedOrigins) {
+  if (!origin || !allowedOrigins.includes(origin)) return null;
+  return {
+    "Access-Control-Allow-Origin": origin,
+    "Access-Control-Allow-Methods": "GET, POST, PUT, DELETE, OPTIONS",
+    "Access-Control-Allow-Headers": "Content-Type, Authorization",
+    "Access-Control-Allow-Credentials": "true"
+  };
+}
+function withCors(handler, allowedOrigins) {
+  if (!allowedOrigins?.length) return handler;
+  return ((req) => {
+    return handler(req).then((response) => {
+      if (!response) return response;
+      const corsHeaders = getCorsHeaders(
+        req.headers.get("origin"),
+        allowedOrigins
+      );
+      if (corsHeaders) {
+        Object.entries(corsHeaders).forEach(([key, value]) => {
+          response.headers.set(key, value);
+        });
+      }
+      return response;
+    });
+  });
+}
 function getEmailAuthRoutes(options) {
+  const { allowedOrigins } = options;
   return {
-    GET: getGetRoute(options),
-    POST: getPostRoute(options),
-    PUT: getPutRoute(options),
-    DELETE: getDeleteRoute(options)
+    GET: withCors(getGetRoute(options), allowedOrigins),
+    POST: withCors(getPostRoute(options), allowedOrigins),
+    PUT: withCors(getPutRoute(options), allowedOrigins),
+    DELETE: withCors(getDeleteRoute(options), allowedOrigins),
+    ...allowedOrigins?.length ? {
+      OPTIONS: (req) => {
+        const corsHeaders = getCorsHeaders(
+          req.headers.get("origin"),
+          allowedOrigins
+        );
+        return new NextResponse3(null, {
+          status: 204,
+          headers: corsHeaders ?? void 0
+        });
+      }
+    } : {}
   };
 }
 export {

package/dist/auth/email/types.d.mts

@@ -31,6 +31,7 @@ type InitRoutesOptions = {
     onLogin?: (userId: number | null, body: any) => Promise<void>;
     onRefresh?: (userId: number | null, body: any) => Promise<void>;
     onLogout?: (userId: number | null, body: any) => Promise<void>;
+    allowedOrigins?: string[];
 };
 
 export type { InitRoutesOptions };

package/dist/auth/email/types.d.ts

@@ -31,6 +31,7 @@ type InitRoutesOptions = {
     onLogin?: (userId: number | null, body: any) => Promise<void>;
     onRefresh?: (userId: number | null, body: any) => Promise<void>;
     onLogout?: (userId: number | null, body: any) => Promise<void>;
+    allowedOrigins?: string[];
 };
 
 export type { InitRoutesOptions };

package/dist/auth/index.cjs.js

@@ -41,6 +41,9 @@ __export(auth_exports, {
 });
 module.exports = __toCommonJS(auth_exports);
 
+// src/auth/email/index.ts
+var import_server4 = require("next/server");
+
 // src/auth/email/token.ts
 var import_bcryptjs = require("bcryptjs");
 var import_jsonwebtoken = require("jsonwebtoken");
@@ -382,18 +385,58 @@ function AuthFetch() {
 }
 
 // src/auth/email/index.ts
+function getCorsHeaders(origin, allowedOrigins) {
+  if (!origin || !allowedOrigins.includes(origin)) return null;
+  return {
+    "Access-Control-Allow-Origin": origin,
+    "Access-Control-Allow-Methods": "GET, POST, PUT, DELETE, OPTIONS",
+    "Access-Control-Allow-Headers": "Content-Type, Authorization",
+    "Access-Control-Allow-Credentials": "true"
+  };
+}
+function withCors(handler, allowedOrigins) {
+  if (!allowedOrigins?.length) return handler;
+  return ((req) => {
+    return handler(req).then((response) => {
+      if (!response) return response;
+      const corsHeaders = getCorsHeaders(
+        req.headers.get("origin"),
+        allowedOrigins
+      );
+      if (corsHeaders) {
+        Object.entries(corsHeaders).forEach(([key, value]) => {
+          response.headers.set(key, value);
+        });
+      }
+      return response;
+    });
+  });
+}
 function getEmailAuthRoutes(options) {
+  const { allowedOrigins } = options;
   return {
-    GET: getGetRoute(options),
-    POST: getPostRoute(options),
-    PUT: getPutRoute(options),
-    DELETE: getDeleteRoute(options)
+    GET: withCors(getGetRoute(options), allowedOrigins),
+    POST: withCors(getPostRoute(options), allowedOrigins),
+    PUT: withCors(getPutRoute(options), allowedOrigins),
+    DELETE: withCors(getDeleteRoute(options), allowedOrigins),
+    ...allowedOrigins?.length ? {
+      OPTIONS: (req) => {
+        const corsHeaders = getCorsHeaders(
+          req.headers.get("origin"),
+          allowedOrigins
+        );
+        return new import_server4.NextResponse(null, {
+          status: 204,
+          headers: corsHeaders ?? void 0
+        });
+      }
+    } : {}
   };
 }
 
 // src/auth/google/get.ts
 var import_googleapis = require("googleapis");
-var import_server5 = require("next/server");
+var import_server6 = require("next/server");
 var import_uuid = require("uuid");
 var getGoogleGetRoute = ({
   getUserIdFromEmail,
@@ -423,7 +466,7 @@ var getGoogleGetRoute = ({
         prompt: "consent",
         redirect_uri: url
       });
-      const res = import_server5.NextResponse.redirect(authorizationUrl);
+      const res = import_server6.NextResponse.redirect(authorizationUrl);
       res.cookies.set("state", state2, {
         httpOnly: true,
         secure: true
@@ -432,12 +475,12 @@ var getGoogleGetRoute = ({
     }
     const errorURL = errorRedirectURL || redirectURL;
     if (error) {
-      return import_server5.NextResponse.redirect(errorURL);
+      return import_server6.NextResponse.redirect(errorURL);
     }
     const state = req.nextUrl.searchParams.get("state") || void 0;
     if (code && state) {
       const localState = req.cookies.get("state")?.value;
-      if (localState !== state) return import_server5.NextResponse.redirect(errorURL);
+      if (localState !== state) return import_server6.NextResponse.redirect(errorURL);
       const { tokens } = await oauth2Client.getToken(code);
       oauth2Client.setCredentials(tokens);
       const userInfoRequest = await import_googleapis.google.oauth2({
@@ -449,7 +492,7 @@ var getGoogleGetRoute = ({
         const { data } = JSON.parse(localState);
         const id = await getUserIdFromEmail(user, data);
         if (id) {
-          const res = import_server5.NextResponse.redirect(redirectURL);
+          const res = import_server6.NextResponse.redirect(redirectURL);
           res.cookies.set(
             REFRESH_COOKIE_NAME,
             generateRefreshToken(id, getEnv("REFRESH_KEY" /* REFRESH_KEY */)),
@@ -467,7 +510,7 @@ var getGoogleGetRoute = ({
         }
       }
     }
-    return import_server5.NextResponse.redirect(errorURL);
+    return import_server6.NextResponse.redirect(errorURL);
   };
 };
 
@@ -479,7 +522,7 @@ function initGoogleAuth(props) {
 }
 
 // src/auth/instagram/route.ts
-var import_server7 = require("next/server");
+var import_server8 = require("next/server");
 
 // src/auth/instagram/utils.ts
 async function getRefreshedInstagramAccessToken(token) {
@@ -541,7 +584,7 @@ var getInstagramUser = (token, id, fields) => {
 };
 
 // src/socials/meta-webhook.ts
-var import_server6 = require("next/server");
+var import_server7 = require("next/server");
 
 // src/auth/instagram/route.ts
 var getInstagramRoute = ({
@@ -549,7 +592,7 @@ var getInstagramRoute = ({
   errorRedirectURL,
   onUser
 }) => {
-  const handleError2 = (message) => import_server7.NextResponse.redirect(`${errorRedirectURL}?error=${message}`);
+  const handleError2 = (message) => import_server8.NextResponse.redirect(`${errorRedirectURL}?error=${message}`);
   return async (req) => {
     const accessCode = req.nextUrl.searchParams.get("code");
     const error = req.nextUrl.searchParams.get("error");
@@ -573,7 +616,7 @@ var getInstagramRoute = ({
       instagramData.accessToken
     );
     if (errorMessage) return handleError2(errorMessage);
-    return import_server7.NextResponse.redirect(redirectURL);
+    return import_server8.NextResponse.redirect(redirectURL);
   };
 };
 

package/dist/auth/index.esm.js

@@ -1,3 +1,6 @@
+// src/auth/email/index.ts
+import { NextResponse as NextResponse3 } from "next/server";
+
 // src/auth/email/token.ts
 import { compare } from "bcryptjs";
 import { JsonWebTokenError, sign, verify } from "jsonwebtoken";
@@ -343,18 +346,58 @@ function AuthFetch() {
 }
 
 // src/auth/email/index.ts
+function getCorsHeaders(origin, allowedOrigins) {
+  if (!origin || !allowedOrigins.includes(origin)) return null;
+  return {
+    "Access-Control-Allow-Origin": origin,
+    "Access-Control-Allow-Methods": "GET, POST, PUT, DELETE, OPTIONS",
+    "Access-Control-Allow-Headers": "Content-Type, Authorization",
+    "Access-Control-Allow-Credentials": "true"
+  };
+}
+function withCors(handler, allowedOrigins) {
+  if (!allowedOrigins?.length) return handler;
+  return ((req) => {
+    return handler(req).then((response) => {
+      if (!response) return response;
+      const corsHeaders = getCorsHeaders(
+        req.headers.get("origin"),
+        allowedOrigins
+      );
+      if (corsHeaders) {
+        Object.entries(corsHeaders).forEach(([key, value]) => {
+          response.headers.set(key, value);
+        });
+      }
+      return response;
+    });
+  });
+}
 function getEmailAuthRoutes(options) {
+  const { allowedOrigins } = options;
   return {
-    GET: getGetRoute(options),
-    POST: getPostRoute(options),
-    PUT: getPutRoute(options),
-    DELETE: getDeleteRoute(options)
+    GET: withCors(getGetRoute(options), allowedOrigins),
+    POST: withCors(getPostRoute(options), allowedOrigins),
+    PUT: withCors(getPutRoute(options), allowedOrigins),
+    DELETE: withCors(getDeleteRoute(options), allowedOrigins),
+    ...allowedOrigins?.length ? {
+      OPTIONS: (req) => {
+        const corsHeaders = getCorsHeaders(
+          req.headers.get("origin"),
+          allowedOrigins
+        );
+        return new NextResponse3(null, {
+          status: 204,
+          headers: corsHeaders ?? void 0
+        });
+      }
+    } : {}
   };
 }
 
 // src/auth/google/get.ts
 import { google } from "googleapis";
-import { NextResponse as NextResponse3 } from "next/server";
+import { NextResponse as NextResponse4 } from "next/server";
 import { v4 } from "uuid";
 var getGoogleGetRoute = ({
   getUserIdFromEmail,
@@ -384,7 +427,7 @@ var getGoogleGetRoute = ({
         prompt: "consent",
         redirect_uri: url
       });
-      const res = NextResponse3.redirect(authorizationUrl);
+      const res = NextResponse4.redirect(authorizationUrl);
       res.cookies.set("state", state2, {
         httpOnly: true,
         secure: true
@@ -393,12 +436,12 @@ var getGoogleGetRoute = ({
     }
     const errorURL = errorRedirectURL || redirectURL;
     if (error) {
-      return NextResponse3.redirect(errorURL);
+      return NextResponse4.redirect(errorURL);
     }
     const state = req.nextUrl.searchParams.get("state") || void 0;
     if (code && state) {
       const localState = req.cookies.get("state")?.value;
-      if (localState !== state) return NextResponse3.redirect(errorURL);
+      if (localState !== state) return NextResponse4.redirect(errorURL);
       const { tokens } = await oauth2Client.getToken(code);
       oauth2Client.setCredentials(tokens);
       const userInfoRequest = await google.oauth2({
@@ -410,7 +453,7 @@ var getGoogleGetRoute = ({
         const { data } = JSON.parse(localState);
         const id = await getUserIdFromEmail(user, data);
         if (id) {
-          const res = NextResponse3.redirect(redirectURL);
+          const res = NextResponse4.redirect(redirectURL);
           res.cookies.set(
             REFRESH_COOKIE_NAME,
             generateRefreshToken(id, getEnv("REFRESH_KEY" /* REFRESH_KEY */)),
@@ -428,7 +471,7 @@ var getGoogleGetRoute = ({
         }
       }
     }
-    return NextResponse3.redirect(errorURL);
+    return NextResponse4.redirect(errorURL);
   };
 };
 
@@ -440,7 +483,7 @@ function initGoogleAuth(props) {
 }
 
 // src/auth/instagram/route.ts
-import { NextResponse as NextResponse5 } from "next/server";
+import { NextResponse as NextResponse6 } from "next/server";
 
 // src/auth/instagram/utils.ts
 async function getRefreshedInstagramAccessToken(token) {
@@ -502,7 +545,7 @@ var getInstagramUser = (token, id, fields) => {
 };
 
 // src/socials/meta-webhook.ts
-import { NextResponse as NextResponse4 } from "next/server";
+import { NextResponse as NextResponse5 } from "next/server";
 
 // src/auth/instagram/route.ts
 var getInstagramRoute = ({
@@ -510,7 +553,7 @@ var getInstagramRoute = ({
   errorRedirectURL,
   onUser
 }) => {
-  const handleError2 = (message) => NextResponse5.redirect(`${errorRedirectURL}?error=${message}`);
+  const handleError2 = (message) => NextResponse6.redirect(`${errorRedirectURL}?error=${message}`);
   return async (req) => {
     const accessCode = req.nextUrl.searchParams.get("code");
     const error = req.nextUrl.searchParams.get("error");
@@ -534,7 +577,7 @@ var getInstagramRoute = ({
       instagramData.accessToken
     );
     if (errorMessage) return handleError2(errorMessage);
-    return NextResponse5.redirect(redirectURL);
+    return NextResponse6.redirect(redirectURL);
   };
 };
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "naystack",
-  "version": "1.5.25",
+  "version": "1.5.26",
   "description": "A stack built with Next + GraphQL + S3 + Auth",
   "main": "dist/index.cjs.js",
   "module": "dist/index.esm.js",