nostr-auth-middleware 0.3.5 → 0.3.6
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +35 -6
- package/README.md +7 -8
- package/dist/browser/nostr-auth-middleware.min.js +1 -1
- package/docs/api.md +101 -0
- package/docs/getting-started.md +72 -0
- package/docs/security.md +73 -0
- package/docs/typescript.md +79 -0
- package/examples/react-example/App.tsx +47 -0
- package/examples/react-example/NostrLogin.tsx +160 -0
- package/examples/react-example/README.md +152 -0
- package/package.json +26 -7
- package/COLAB-DOCS/DEVELOPMENT.md +0 -203
- package/COLAB-DOCS/SESSION-MANAGEMENT.md +0 -198
- package/COLAB-DOCS/WORKING-WITH-AI.md +0 -178
package/CHANGELOG.md
CHANGED
|
@@ -5,6 +5,13 @@ All notable changes to this project will be documented in this file.
|
|
|
5
5
|
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
|
|
6
6
|
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
|
|
7
7
|
|
|
8
|
+
## [Unreleased]
|
|
9
|
+
|
|
10
|
+
## [0.3.5] - 2025-02-19
|
|
11
|
+
|
|
12
|
+
### Changed
|
|
13
|
+
- Updated dependencies to latest within major versions
|
|
14
|
+
|
|
8
15
|
## [0.3.4] - 2025-02-09
|
|
9
16
|
|
|
10
17
|
### Added
|
|
@@ -16,22 +23,44 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
|
16
23
|
- Enhanced browser compatibility checks
|
|
17
24
|
- Better error messages for session-related operations
|
|
18
25
|
|
|
19
|
-
## [0.
|
|
26
|
+
## [0.3.3] - 2025-02-01
|
|
27
|
+
|
|
28
|
+
### Added
|
|
29
|
+
- JWT secret validation at startup
|
|
30
|
+
|
|
31
|
+
## [0.3.2] - 2025-01-25
|
|
32
|
+
|
|
33
|
+
### Added
|
|
34
|
+
- Comprehensive JWT configuration and browser compatibility documentation
|
|
35
|
+
|
|
36
|
+
## [0.3.1] - 2025-01-20
|
|
37
|
+
|
|
38
|
+
### Changed
|
|
39
|
+
- Included documentation in npm package
|
|
40
|
+
|
|
41
|
+
## [0.3.0] - 2025-01-15
|
|
42
|
+
|
|
43
|
+
### Changed
|
|
44
|
+
- Major codebase improvements and documentation updates
|
|
45
|
+
- Removed Node.js 16.x support, upgraded GitHub Actions to v4
|
|
46
|
+
- Prepared for npm publish
|
|
47
|
+
|
|
48
|
+
## [0.2.6] - 2024-01-09
|
|
20
49
|
|
|
21
50
|
### Added
|
|
22
51
|
- New TypeScript interfaces in `interfaces/nostr.interface.ts` for better type safety
|
|
23
52
|
- More comprehensive event validation with detailed error messages
|
|
24
53
|
|
|
25
|
-
###
|
|
54
|
+
### Changed
|
|
26
55
|
- Improved event validation with stricter type checking
|
|
27
56
|
- Better error handling and logging in event validator
|
|
28
57
|
- Updated to use latest crypto utilities
|
|
29
58
|
|
|
30
|
-
## [0.2.5] -
|
|
59
|
+
## [0.2.5] - 2023-12-08
|
|
31
60
|
|
|
32
61
|
### Changed
|
|
33
|
-
- Updated to use published versions of
|
|
34
|
-
- Updated key generation to use new generateKeyPairWithSeed function
|
|
62
|
+
- Updated to use published versions of nostr-crypto-utils and nostr-nsec-seedphrase
|
|
63
|
+
- Updated key generation to use new generateKeyPairWithSeed function
|
|
35
64
|
|
|
36
65
|
## [0.2.3] - 2023-12-06
|
|
37
66
|
|
|
@@ -48,7 +77,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
|
48
77
|
- Improved error handling in middleware
|
|
49
78
|
- Enhanced TypeScript type safety
|
|
50
79
|
|
|
51
|
-
## [0.2.2] -
|
|
80
|
+
## [0.2.2] - 2023-12-01
|
|
52
81
|
|
|
53
82
|
### Added
|
|
54
83
|
- Initial implementation of Nostr authentication middleware
|
package/README.md
CHANGED
|
@@ -197,17 +197,10 @@ Profile Cache Cleared: { pubkey }
|
|
|
197
197
|
|
|
198
198
|
## Documentation
|
|
199
199
|
|
|
200
|
-
- [Architecture Guide](docs/architecture-guide.md) - Understanding the service architecture
|
|
201
|
-
- [Key Management Guide](docs/key-management.md) - Comprehensive key management documentation
|
|
202
|
-
- [Deployment Guide](docs/deployment-guide.md) - Environment-specific deployment instructions
|
|
203
200
|
- [Getting Started](docs/getting-started.md) - Quick start guide
|
|
204
|
-
- [Authentication Flow](docs/authentication-flow.md) - Detailed authentication process
|
|
205
|
-
- [Troubleshooting Guide](docs/troubleshooting.md) - Common issues and solutions
|
|
206
201
|
- [API Documentation](docs/api.md) - API endpoints and usage
|
|
207
|
-
- [Security Guide](docs/security.md) - Security best practices and
|
|
208
|
-
- [Automated Tests](docs/automated-tests.md) - Comprehensive test suite documentation
|
|
202
|
+
- [Security Guide](docs/security.md) - Security best practices and key management
|
|
209
203
|
- [TypeScript Guide](docs/typescript.md) - TypeScript declaration patterns and best practices
|
|
210
|
-
- [Browser Authentication](docs/browser-authentication.md) - Browser-based authentication flow
|
|
211
204
|
|
|
212
205
|
### TypeScript Declaration Pattern
|
|
213
206
|
|
|
@@ -283,3 +276,9 @@ This project is licensed under the MIT License - see the [LICENSE](LICENSE) file
|
|
|
283
276
|
## Security
|
|
284
277
|
|
|
285
278
|
For security issues, please see our [Security Policy](SECURITY.md) and report any vulnerabilities responsibly.
|
|
279
|
+
|
|
280
|
+
### Dependency Vulnerability Status
|
|
281
|
+
|
|
282
|
+
We actively monitor and address security vulnerabilities in this codebase. **`npm audit --omit=dev` reports zero vulnerabilities** for this package — there are no known security issues in production dependencies.
|
|
283
|
+
|
|
284
|
+
Any remaining `npm audit` findings are in development-only tooling (eslint, typescript-eslint, vitest, etc.) and stem from transitive dependencies with no upstream fix available. These are devDependencies that are never included in the published package and pose no risk to consumers of this library. We monitor upstream fixes and update promptly when they become available.
|