nextjs-hasura-auth 0.1.1 → 0.1.3

package/dist/lib/index.js

@@ -18,3 +18,8 @@ Object.defineProperty(exports, "__esModule", { value: true });
 __exportStar(require("./utils"), exports);
 __exportStar(require("./apollo"), exports);
 __exportStar(require("./generator"), exports);
+__exportStar(require("./hasura"), exports);
+__exportStar(require("./auth"), exports);
+__exportStar(require("./client"), exports);
+__exportStar(require("./jwt"), exports);
+__exportStar(require("./graphql-proxy"), exports);

package/dist/lib/test-utils.d.ts

@@ -0,0 +1,11 @@
+import { ReactElement } from 'react';
+import { screen } from '@testing-library/react';
+import { ApolloClient } from '@apollo/client';
+/**
+ * Custom renderer that wraps the component with necessary providers
+ */
+declare const customRender: (ui: ReactElement, { apolloClient, ...renderOptions }?: {
+    apolloClient?: ApolloClient<import("@apollo/client").NormalizedCacheObject> | undefined;
+}) => import("@testing-library/react").RenderResult<typeof import("@testing-library/dom/types/queries"), HTMLElement, HTMLElement>;
+export * from '@testing-library/react';
+export { customRender as render, screen };

package/dist/lib/test-utils.js

@@ -0,0 +1,59 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+var __rest = (this && this.__rest) || function (s, e) {
+    var t = {};
+    for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p) && e.indexOf(p) < 0)
+        t[p] = s[p];
+    if (s != null && typeof Object.getOwnPropertySymbols === "function")
+        for (var i = 0, p = Object.getOwnPropertySymbols(s); i < p.length; i++) {
+            if (e.indexOf(p[i]) < 0 && Object.prototype.propertyIsEnumerable.call(s, p[i]))
+                t[p[i]] = s[p[i]];
+        }
+    return t;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.screen = exports.render = void 0;
+const jsx_runtime_1 = require("react/jsx-runtime");
+const react_1 = require("@testing-library/react");
+Object.defineProperty(exports, "screen", { enumerable: true, get: function () { return react_1.screen; } });
+const client_1 = require("@apollo/client");
+// Create a mock Apollo client for testing
+const createMockClient = () => {
+    return new client_1.ApolloClient({
+        cache: new client_1.InMemoryCache(),
+        defaultOptions: {
+            watchQuery: {
+                fetchPolicy: 'no-cache',
+            },
+            query: {
+                fetchPolicy: 'no-cache',
+            },
+        },
+    });
+};
+/**
+ * Custom renderer that wraps the component with necessary providers
+ */
+const customRender = (ui, _a = {}) => {
+    var { apolloClient = createMockClient() } = _a, renderOptions = __rest(_a, ["apolloClient"]);
+    const AllTheProviders = ({ children }) => {
+        return ((0, jsx_runtime_1.jsx)(client_1.ApolloProvider, { client: apolloClient, children: children }));
+    };
+    return (0, react_1.render)(ui, Object.assign({ wrapper: AllTheProviders }, renderOptions));
+};
+exports.render = customRender;
+// re-export everything from testing-library
+__exportStar(require("@testing-library/react"), exports);

package/dist/lib/tokenUtils.d.ts

@@ -0,0 +1,14 @@
+/**
+ * Generates a short-lived JWT for email verification.
+ * @param userId - The ID of the user to verify.
+ * @returns Promise<string> - The generated verification token.
+ */
+export declare function generateVerificationToken(userId: string): Promise<string>;
+/**
+ * Verifies an email verification token.
+ * @param token - The token string to verify.
+ * @returns Promise<{ userId: string } | null> - The user ID if the token is valid and has the correct scope, otherwise null.
+ */
+export declare function verifyVerificationToken(token: string): Promise<{
+    userId: string;
+} | null>;

package/dist/lib/tokenUtils.js

@@ -0,0 +1,94 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.generateVerificationToken = generateVerificationToken;
+exports.verifyVerificationToken = verifyVerificationToken;
+const jose_1 = require("jose");
+const debug_1 = __importDefault(require("@/lib/debug"));
+const jwt_1 = require("./jwt"); // Reuse the hashed NEXTAUTH_SECRET for simplicity
+const debug = (0, debug_1.default)('tokenUtils');
+// Use the same secret as NextAuth JWE for simplicity, but hashed.
+// Alternatively, generate a separate secret for verification tokens.
+let verificationSecretPromise = null;
+const getVerificationSecret = () => {
+    if (!verificationSecretPromise) {
+        verificationSecretPromise = (0, jwt_1.getNextAuthSecret)();
+    }
+    return verificationSecretPromise;
+};
+const VERIFICATION_TOKEN_EXPIRY = '1h'; // Verification token valid for 1 hour
+const JWT_ALGORITHM = 'HS256'; // Algorithm for signing
+/**
+ * Generates a short-lived JWT for email verification.
+ * @param userId - The ID of the user to verify.
+ * @returns Promise<string> - The generated verification token.
+ */
+function generateVerificationToken(userId) {
+    return __awaiter(this, void 0, void 0, function* () {
+        debug('Generating verification token for user: %s', userId);
+        try {
+            const secret = yield getVerificationSecret();
+            const token = yield new jose_1.SignJWT({ scope: 'verify_email' }) // Add scope for clarity
+                .setProtectedHeader({ alg: JWT_ALGORITHM })
+                .setSubject(userId) // Embed userId in 'sub' claim
+                .setIssuedAt()
+                .setExpirationTime(VERIFICATION_TOKEN_EXPIRY)
+                .sign(secret);
+            debug('Verification token generated successfully.');
+            return token;
+        }
+        catch (error) {
+            debug('Error generating verification token:', error);
+            console.error('Failed to generate verification token:', error);
+            throw new Error('Could not generate verification token.');
+        }
+    });
+}
+/**
+ * Verifies an email verification token.
+ * @param token - The token string to verify.
+ * @returns Promise<{ userId: string } | null> - The user ID if the token is valid and has the correct scope, otherwise null.
+ */
+function verifyVerificationToken(token) {
+    return __awaiter(this, void 0, void 0, function* () {
+        debug('Verifying verification token...');
+        if (!token) {
+            debug('Verification token is missing.');
+            return null;
+        }
+        try {
+            const secret = yield getVerificationSecret();
+            const { payload } = yield (0, jose_1.jwtVerify)(token, secret, {
+                algorithms: [JWT_ALGORITHM],
+            });
+            // Check for specific scope if needed (good practice)
+            if (payload.scope !== 'verify_email') {
+                debug('Verification token has invalid scope: %s', payload.scope);
+                return null;
+            }
+            const userId = payload.sub;
+            if (!userId) {
+                debug('Verification token is missing user ID (sub claim).');
+                return null;
+            }
+            debug('Verification token verified successfully for user: %s', userId);
+            return { userId };
+        }
+        catch (error) {
+            // Errors like expired token, invalid signature, etc.
+            debug('Error verifying verification token:', error.code || error.message);
+            return null; // Return null for any verification error
+        }
+    });
+}

package/dist/package.json

@@ -1,7 +1,7 @@
 {
     "name": "nextjs-hasura-auth",
     "shortName": "nha",
-    "version": "0.1.0",
+    "version": "0.1.3",
     "engines": {
         "node": "22.14"
     },
@@ -11,15 +11,20 @@
     },
     "scripts": {
         "dev": "next dev --turbopack",
-        "build": "next build && npm run build:lib",
-        "build:lib": "tsc -p tsconfig.lib.json",
+        "build": "npm run build:lib && next build",
+        "build:lib": "rm -rf dist && tsc -p tsconfig.lib.json",
         "build:next": "next build --turbopack",
         "start": "next start --turbopack",
         "lint": "next lint --turbopack",
         "test": "jest",
         "test:build": "jest build.test.ts",
         "postinstall": "npm run ws -- -y",
-        "ws": "npx --yes next-ws-cli@latest patch"
+        "ws": "npx --yes next-ws-cli@latest patch",
+        "nha:migrate": "tsx ./migrations/nha/up.ts; npm run hasura:schema; npm run hasura:types",
+        "nha:unmigrate": "tsx ./migrations/nha/down.ts",
+        "hasura:schema": "tsx ./lib/hasura-schema.ts",
+        "hasura:types": "graphql-codegen --config codegen.ts",
+        "publish": "npm run hasura:schema; npm run hasura:types; npm run build; npm publish"
     },
     "main": "dist/lib/index.js",
     "types": "dist/lib/index.d.ts",
@@ -60,7 +65,9 @@
         "@radix-ui/react-toggle": "^1.1.3",
         "@radix-ui/react-toggle-group": "^1.1.3",
         "@radix-ui/react-tooltip": "^1.2.0",
+        "@types/bcrypt": "^5.0.2",
         "@types/debug": "^4.1.12",
+        "bcrypt": "^5.1.1",
         "class-variance-authority": "^0.7.1",
         "clsx": "^2.1.1",
         "cmdk": "^1.1.1",
@@ -85,9 +92,12 @@
         "react-hook-form": "^7.55.0",
         "react-resizable-panels": "^2.1.7",
         "recharts": "^2.15.3",
+        "resend": "^4.3.0",
         "sonner": "^2.0.3",
         "tailwind-merge": "^3.2.0",
+        "ts-essentials": "^10.0.4",
         "tw-animate-css": "^1.2.5",
+        "uuid": "^11.1.0",
         "vaul": "^1.1.2",
         "zod": "^3.24.3"
     },
@@ -96,7 +106,12 @@
         "@babel/preset-env": "^7.26.9",
         "@babel/preset-react": "^7.26.3",
         "@babel/preset-typescript": "^7.27.0",
+        "@deep-foundation/hasura": "^0.0.68",
+        "@graphql-codegen/cli": "^5.0.5",
+        "@graphql-codegen/typescript": "^4.1.6",
         "@jest/globals": "^29.7.0",
+        "@swc/core": "^1.11.21",
+        "@swc/jest": "^0.2.37",
         "@tailwindcss/postcss": "^4",
         "@testing-library/jest-dom": "^6.4.0",
         "@testing-library/react": "^15.0.0",
@@ -109,8 +124,11 @@
         "babel-jest": "^29.7.0",
         "jest": "^29.7.0",
         "jest-environment-jsdom": "^29.7.0",
+        "prettier": "^3.5.3",
         "tailwindcss": "^4",
         "ts-jest": "^29.1.2",
+        "ts-node": "^10.9.2",
+        "tsx": "^4.19.3",
         "typescript": "^5"
     }
 }