npm - nova-auth - Versions diffs - 0.1.0 - Mend

nova-auth 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.d.mts ADDED Viewed

@@ -0,0 +1,45 @@
+import { ZodRawShape, ZodObject } from 'zod';
+import { Redis } from '@upstash/redis';
+type Cookies = {
+    set: (key: string, value: string, options: {
+        secure?: boolean;
+        httpOnly?: boolean;
+        sameSite?: "strict" | "lax";
+        expires?: number;
+    }) => void;
+    get: (key: string) => {
+        name: string;
+        value: string;
+    } | undefined;
+    delete: (key: string) => void;
+};
+type AuthInstance<T extends ZodRawShape = ZodRawShape> = {
+    _schema: ZodObject<T>;
+    _redis: Redis;
+    ttl: number;
+    getCurrentUser(cookies: Pick<Cookies, "get">): Promise<unknown | null>;
+    createUserSession(user: unknown, cookies: Pick<Cookies, "set">): Promise<void>;
+    updateUserSession(user: unknown, cookies: Pick<Cookies, "get">): Promise<void | null>;
+    removeUserFromSession(cookies: Pick<Cookies, "get" | "delete">): Promise<void | null>;
+    hashPassword(password: string, salt: string): Promise<string>;
+    generateSalt(): string;
+    comparePassword(params: {
+        password: string;
+        salt: string;
+        hashedPassword: string;
+    }): Promise<boolean>;
+};
+type CreateAuthOptions<T extends ZodRawShape> = {
+    sessionSchema: ZodObject<T>;
+    ttl: number;
+    redis: {
+        url: string;
+        token: string;
+    };
+};
+declare function createAuth<T extends ZodRawShape>(options: CreateAuthOptions<T>): AuthInstance<T>;
+export { createAuth };

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,45 @@
+import { ZodRawShape, ZodObject } from 'zod';
+import { Redis } from '@upstash/redis';
+type Cookies = {
+    set: (key: string, value: string, options: {
+        secure?: boolean;
+        httpOnly?: boolean;
+        sameSite?: "strict" | "lax";
+        expires?: number;
+    }) => void;
+    get: (key: string) => {
+        name: string;
+        value: string;
+    } | undefined;
+    delete: (key: string) => void;
+};
+type AuthInstance<T extends ZodRawShape = ZodRawShape> = {
+    _schema: ZodObject<T>;
+    _redis: Redis;
+    ttl: number;
+    getCurrentUser(cookies: Pick<Cookies, "get">): Promise<unknown | null>;
+    createUserSession(user: unknown, cookies: Pick<Cookies, "set">): Promise<void>;
+    updateUserSession(user: unknown, cookies: Pick<Cookies, "get">): Promise<void | null>;
+    removeUserFromSession(cookies: Pick<Cookies, "get" | "delete">): Promise<void | null>;
+    hashPassword(password: string, salt: string): Promise<string>;
+    generateSalt(): string;
+    comparePassword(params: {
+        password: string;
+        salt: string;
+        hashedPassword: string;
+    }): Promise<boolean>;
+};
+type CreateAuthOptions<T extends ZodRawShape> = {
+    sessionSchema: ZodObject<T>;
+    ttl: number;
+    redis: {
+        url: string;
+        token: string;
+    };
+};
+declare function createAuth<T extends ZodRawShape>(options: CreateAuthOptions<T>): AuthInstance<T>;
+export { createAuth };

package/dist/index.js ADDED Viewed

@@ -0,0 +1,174 @@
+"use strict";
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  createAuth: () => createAuth
+});
+module.exports = __toCommonJS(index_exports);
+// src/create-auth.ts
+var import_crypto = __toESM(require("crypto"));
+// src/internal/redis-client.ts
+var import_redis = require("@upstash/redis");
+var createRedisClient = ({ url, token }) => {
+  if (!url || !token) {
+    throw new Error("Both REDIS URL and TOKEN are required to create Redis client");
+  }
+  const redisClient = new import_redis.Redis({
+    url,
+    token
+  });
+  return redisClient;
+};
+// src/internal/utils.ts
+function stringifyBigInt(obj) {
+  return JSON.stringify(
+    obj,
+    (_, value) => typeof value === "bigint" ? value.toString() : value
+  );
+}
+function generateSessionId() {
+  const array = new Uint8Array(512);
+  crypto.getRandomValues(array);
+  return Array.from(array).map((b) => b.toString(16).padStart(2, "0")).join("");
+}
+// src/internal/keys.ts
+var COOKIE_SESSION_KEY = "session-id";
+// src/internal/cookie.ts
+function getSessionId(cookies) {
+  return cookies.get(COOKIE_SESSION_KEY)?.value ?? null;
+}
+function deleteSessionCookie(cookies) {
+  cookies.delete(COOKIE_SESSION_KEY);
+}
+// src/internal/session.ts
+async function getUserFromSession(auth, cookies) {
+  const sessionId = cookies.get(COOKIE_SESSION_KEY)?.value;
+  if (!sessionId) return null;
+  const data = await auth._redis.get(`session:${sessionId}`);
+  if (!data) return null;
+  return auth._schema.parse(JSON.parse(data));
+}
+async function createUserSession(auth, user, cookies) {
+  const sessionId = generateSessionId();
+  const data = auth._schema.parse(user);
+  await auth._redis.set(
+    `session:${sessionId}`,
+    stringifyBigInt(data),
+    { ex: auth.ttl }
+  );
+  cookies.set(COOKIE_SESSION_KEY, sessionId, {
+    httpOnly: true,
+    secure: true,
+    sameSite: "lax",
+    expires: Math.floor(Date.now() / 1e3) + auth.ttl
+  });
+}
+async function updateUserSession(auth, user, cookies) {
+  const sessionId = getSessionId(cookies);
+  if (!sessionId) return null;
+  const data = auth._schema.parse(user);
+  await auth._redis.set(
+    `session:${sessionId}`,
+    stringifyBigInt(data),
+    { ex: auth.ttl }
+  );
+}
+async function removeUserFromSession(auth, cookies) {
+  const sessionId = getSessionId(cookies);
+  if (!sessionId) return null;
+  await auth._redis.del(`session:${sessionId}`);
+  deleteSessionCookie(cookies);
+}
+// src/create-auth.ts
+function createAuth(options) {
+  if (!("id" in options.sessionSchema.shape)) {
+    throw new Error("sessionSchema must include an `id` field");
+  }
+  const redis = createRedisClient(options.redis);
+  const auth = {
+    _schema: options.sessionSchema,
+    _redis: redis,
+    ttl: options.ttl,
+    getCurrentUser(cookies) {
+      return getUserFromSession(auth, cookies);
+    },
+    createUserSession(user, cookies) {
+      return createUserSession(auth, user, cookies);
+    },
+    updateUserSession(user, cookies) {
+      return updateUserSession(auth, user, cookies);
+    },
+    removeUserFromSession(cookies) {
+      return removeUserFromSession(auth, cookies);
+    },
+    // 🔒 Add password helpers
+    hashPassword(password, salt) {
+      return new Promise((resolve, reject) => {
+        import_crypto.default.scrypt(
+          password.normalize(),
+          salt,
+          64,
+          (err, derivedKey) => {
+            if (err) return reject(err);
+            resolve(derivedKey.toString("hex").normalize());
+          }
+        );
+      });
+    },
+    generateSalt() {
+      return import_crypto.default.randomBytes(16).toString("hex").normalize();
+    },
+    async comparePassword({
+      password,
+      salt,
+      hashedPassword
+    }) {
+      const inputHashed = await auth.hashPassword(password, salt);
+      return import_crypto.default.timingSafeEqual(
+        Buffer.from(inputHashed, "hex"),
+        Buffer.from(hashedPassword, "hex")
+      );
+    }
+  };
+  return auth;
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  createAuth
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts","../src/create-auth.ts","../src/internal/redis-client.ts","../src/internal/utils.ts","../src/internal/keys.ts","../src/internal/cookie.ts","../src/internal/session.ts"],"sourcesContent":["export { createAuth } from \"./create-auth\";","import crypto from \"crypto\";\r\nimport { ZodObject, ZodRawShape } from \"zod\";\r\nimport { createRedisClient } from \"./internal/redis-client\";\r\nimport {\r\n getUserFromSession,\r\n createUserSession,\r\n updateUserSession,\r\n removeUserFromSession,\r\n} from \"./internal/session\";\r\nimport { AuthInstance } from \"./internal/types\";\r\n\r\ntype CreateAuthOptions<T extends ZodRawShape> = {\r\n sessionSchema: ZodObject<T>;\r\n ttl: number;\r\n redis: {\r\n url: string;\r\n token: string;\r\n };\r\n};\r\n\r\nexport function createAuth<T extends ZodRawShape>(\r\n options: CreateAuthOptions<T>\r\n): AuthInstance<T> {\r\n if (!(\"id\" in options.sessionSchema.shape)) {\r\n throw new Error(\"sessionSchema must include an `id` field\");\r\n }\r\n\r\n const redis = createRedisClient(options.redis);\r\n\r\n const auth: AuthInstance<T> = {\r\n _schema: options.sessionSchema,\r\n _redis: redis,\r\n ttl: options.ttl,\r\n\r\n getCurrentUser(cookies) {\r\n return getUserFromSession(auth, cookies);\r\n },\r\n\r\n createUserSession(user, cookies) {\r\n return createUserSession(auth, user, cookies);\r\n },\r\n\r\n updateUserSession(user, cookies) {\r\n return updateUserSession(auth, user, cookies);\r\n },\r\n\r\n removeUserFromSession(cookies) {\r\n return removeUserFromSession(auth, cookies);\r\n },\r\n\r\n // 🔒 Add password helpers\r\n hashPassword(password: string, salt: string): Promise<string> {\r\n return new Promise((resolve, reject) => {\r\n crypto.scrypt(\r\n password.normalize(),\r\n salt,\r\n 64,\r\n (err: Error | null, derivedKey: Buffer) => {\r\n if (err) return reject(err);\r\n resolve(derivedKey.toString(\"hex\").normalize());\r\n }\r\n );\r\n });\r\n },\r\n\r\n generateSalt(): string {\r\n return crypto.randomBytes(16).toString(\"hex\").normalize();\r\n },\r\n\r\n async comparePassword({\r\n password,\r\n salt,\r\n hashedPassword,\r\n }: {\r\n password: string;\r\n salt: string;\r\n hashedPassword: string;\r\n }): Promise<boolean> {\r\n const inputHashed = await auth.hashPassword(password, salt);\r\n return crypto.timingSafeEqual(\r\n Buffer.from(inputHashed, \"hex\"),\r\n Buffer.from(hashedPassword, \"hex\")\r\n );\r\n },\r\n };\r\n\r\n return auth;\r\n}\r\n","import { Redis } from \"@upstash/redis\";\r\n\r\nexport type CreateRedisClientOptions = {\r\n url: string;\r\n token: string;\r\n};\r\n\r\nexport const createRedisClient = ({ url, token }: CreateRedisClientOptions) => {\r\n if (!url || !token) {\r\n throw new Error(\"Both REDIS URL and TOKEN are required to create Redis client\");\r\n }\r\n\r\n const redisClient = new Redis({\r\n url,\r\n token,\r\n });\r\n\r\n return redisClient;\r\n};\r\n","export function stringifyBigInt<T>(obj: T): string {\r\n return JSON.stringify(obj, (_, value) =>\r\n typeof value === \"bigint\" ? value.toString() : value\r\n );\r\n}\r\n\r\nexport function generateSessionId(): string {\r\n const array = new Uint8Array(512);\r\n crypto.getRandomValues(array);\r\n\r\n return Array.from(array)\r\n .map((b) => b.toString(16).padStart(2, \"0\"))\r\n .join(\"\");\r\n}","export const COOKIE_SESSION_KEY = \"session-id\"","import { COOKIE_SESSION_KEY } from \"./keys\";\r\nimport { AuthInstance } from \"./types\";\r\n\r\nexport type Cookies = {\r\n set: (\r\n key: string,\r\n value: string,\r\n options: {\r\n secure?: boolean;\r\n httpOnly?: boolean;\r\n sameSite?: \"strict\" | \"lax\";\r\n expires?: number;\r\n }\r\n ) => void;\r\n get: (key: string) => { name: string; value: string } | undefined;\r\n delete: (key: string) => void;\r\n};\r\n\r\nexport function setSessionCookie(\r\n auth: AuthInstance,\r\n sessionId: string,\r\n cookies: Pick<Cookies, \"set\">\r\n) {\r\n cookies.set(COOKIE_SESSION_KEY, sessionId, {\r\n secure: true,\r\n httpOnly: true,\r\n sameSite: \"lax\",\r\n expires: Date.now() + Number(auth.ttl) * 1000,\r\n });\r\n}\r\n\r\nexport function getSessionId(\r\n cookies: Pick<Cookies, \"get\">\r\n): string | null {\r\n return cookies.get(COOKIE_SESSION_KEY)?.value ?? null;\r\n}\r\n\r\nexport function deleteSessionCookie(\r\n cookies: Pick<Cookies, \"delete\">\r\n) {\r\n cookies.delete(COOKIE_SESSION_KEY);\r\n}\r\n","import { stringifyBigInt, generateSessionId } from \"./utils\";\r\nimport {\r\n getSessionId,\r\n deleteSessionCookie,\r\n Cookies,\r\n} from \"./cookie\";\r\nimport { AuthInstance } from \"./types\";\r\nimport { COOKIE_SESSION_KEY } from \"./keys\";\r\n\r\nexport async function getUserFromSession(\r\n auth: AuthInstance,\r\n cookies: Pick<Cookies, \"get\">\r\n) {\r\n const sessionId = cookies.get(COOKIE_SESSION_KEY)?.value;\r\n if (!sessionId) return null;\r\n\r\n const data = await auth._redis.get<string>(`session:${sessionId}`)\r\n if (!data) return null;\r\n\r\n return auth._schema.parse(JSON.parse(data));\r\n}\r\n\r\nexport async function createUserSession<T>(\r\n auth: AuthInstance,\r\n user: T,\r\n cookies: Pick<Cookies, \"set\">\r\n) {\r\n const sessionId = generateSessionId();\r\n const data = auth._schema.parse(user);\r\n\r\n await auth._redis.set(\r\n `session:${sessionId}`,\r\n stringifyBigInt(data),\r\n { ex: auth.ttl }\r\n );\r\n\r\n cookies.set(COOKIE_SESSION_KEY, sessionId, {\r\n httpOnly: true,\r\n secure: true,\r\n sameSite: \"lax\",\r\n expires: Math.floor(Date.now() / 1000) + auth.ttl,\r\n });\r\n}\r\n\r\nexport async function updateUserSession<T>(\r\n auth: AuthInstance,\r\n user: T,\r\n cookies: Pick<Cookies, \"get\">\r\n) {\r\n const sessionId = getSessionId(cookies);\r\n if (!sessionId) return null;\r\n\r\n const data = auth._schema.parse(user);\r\n\r\n await auth._redis.set(\r\n `session:${sessionId}`,\r\n stringifyBigInt(data),\r\n { ex: auth.ttl }\r\n );\r\n}\r\n\r\nexport async function removeUserFromSession(\r\n auth: AuthInstance,\r\n cookies: Pick<Cookies, \"get\" | \"delete\">\r\n) {\r\n const sessionId = getSessionId(cookies);\r\n if (!sessionId) return null;\r\n\r\n await auth._redis.del(`session:${sessionId}`);\r\n deleteSessionCookie(cookies);\r\n}\r\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACAA,oBAAmB;;;ACAnB,mBAAsB;AAOf,IAAM,oBAAoB,CAAC,EAAE,KAAK,MAAM,MAAgC;AAC3E,MAAI,CAAC,OAAO,CAAC,OAAO;AAChB,UAAM,IAAI,MAAM,8DAA8D;AAAA,EAClF;AAEA,QAAM,cAAc,IAAI,mBAAM;AAAA,IAC1B;AAAA,IACA;AAAA,EACJ,CAAC;AAED,SAAO;AACX;;;AClBO,SAAS,gBAAmB,KAAgB;AAC/C,SAAO,KAAK;AAAA,IAAU;AAAA,IAAK,CAAC,GAAG,UAC3B,OAAO,UAAU,WAAW,MAAM,SAAS,IAAI;AAAA,EACnD;AACJ;AAEO,SAAS,oBAA4B;AACxC,QAAM,QAAQ,IAAI,WAAW,GAAG;AAChC,SAAO,gBAAgB,KAAK;AAE5B,SAAO,MAAM,KAAK,KAAK,EAClB,IAAI,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAC1C,KAAK,EAAE;AAChB;;;ACbO,IAAM,qBAAqB;;;AC+B3B,SAAS,aACZ,SACa;AACb,SAAO,QAAQ,IAAI,kBAAkB,GAAG,SAAS;AACrD;AAEO,SAAS,oBACZ,SACF;AACE,UAAQ,OAAO,kBAAkB;AACrC;;;AChCA,eAAsB,mBAClB,MACA,SACF;AACE,QAAM,YAAY,QAAQ,IAAI,kBAAkB,GAAG;AACnD,MAAI,CAAC,UAAW,QAAO;AAEvB,QAAM,OAAO,MAAM,KAAK,OAAO,IAAY,WAAW,SAAS,EAAE;AACjE,MAAI,CAAC,KAAM,QAAO;AAElB,SAAO,KAAK,QAAQ,MAAM,KAAK,MAAM,IAAI,CAAC;AAC9C;AAEA,eAAsB,kBAClB,MACA,MACA,SACF;AACE,QAAM,YAAY,kBAAkB;AACpC,QAAM,OAAO,KAAK,QAAQ,MAAM,IAAI;AAEpC,QAAM,KAAK,OAAO;AAAA,IACd,WAAW,SAAS;AAAA,IACpB,gBAAgB,IAAI;AAAA,IACpB,EAAE,IAAI,KAAK,IAAI;AAAA,EACnB;AAEA,UAAQ,IAAI,oBAAoB,WAAW;AAAA,IACvC,UAAU;AAAA,IACV,QAAQ;AAAA,IACR,UAAU;AAAA,IACV,SAAS,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI,IAAI,KAAK;AAAA,EAClD,CAAC;AACL;AAEA,eAAsB,kBAClB,MACA,MACA,SACF;AACE,QAAM,YAAY,aAAa,OAAO;AACtC,MAAI,CAAC,UAAW,QAAO;AAEvB,QAAM,OAAO,KAAK,QAAQ,MAAM,IAAI;AAEpC,QAAM,KAAK,OAAO;AAAA,IACd,WAAW,SAAS;AAAA,IACpB,gBAAgB,IAAI;AAAA,IACpB,EAAE,IAAI,KAAK,IAAI;AAAA,EACnB;AACJ;AAEA,eAAsB,sBAClB,MACA,SACF;AACE,QAAM,YAAY,aAAa,OAAO;AACtC,MAAI,CAAC,UAAW,QAAO;AAEvB,QAAM,KAAK,OAAO,IAAI,WAAW,SAAS,EAAE;AAC5C,sBAAoB,OAAO;AAC/B;;;ALlDO,SAAS,WACZ,SACe;AACf,MAAI,EAAE,QAAQ,QAAQ,cAAc,QAAQ;AACxC,UAAM,IAAI,MAAM,0CAA0C;AAAA,EAC9D;AAEA,QAAM,QAAQ,kBAAkB,QAAQ,KAAK;AAE7C,QAAM,OAAwB;AAAA,IAC1B,SAAS,QAAQ;AAAA,IACjB,QAAQ;AAAA,IACR,KAAK,QAAQ;AAAA,IAEb,eAAe,SAAS;AACpB,aAAO,mBAAmB,MAAM,OAAO;AAAA,IAC3C;AAAA,IAEA,kBAAkB,MAAM,SAAS;AAC7B,aAAO,kBAAkB,MAAM,MAAM,OAAO;AAAA,IAChD;AAAA,IAEA,kBAAkB,MAAM,SAAS;AAC7B,aAAO,kBAAkB,MAAM,MAAM,OAAO;AAAA,IAChD;AAAA,IAEA,sBAAsB,SAAS;AAC3B,aAAO,sBAAsB,MAAM,OAAO;AAAA,IAC9C;AAAA;AAAA,IAGA,aAAa,UAAkB,MAA+B;AAC1D,aAAO,IAAI,QAAQ,CAAC,SAAS,WAAW;AACpC,sBAAAA,QAAO;AAAA,UACH,SAAS,UAAU;AAAA,UACnB;AAAA,UACA;AAAA,UACA,CAAC,KAAmB,eAAuB;AACvC,gBAAI,IAAK,QAAO,OAAO,GAAG;AAC1B,oBAAQ,WAAW,SAAS,KAAK,EAAE,UAAU,CAAC;AAAA,UAClD;AAAA,QACJ;AAAA,MACJ,CAAC;AAAA,IACL;AAAA,IAEA,eAAuB;AACnB,aAAO,cAAAA,QAAO,YAAY,EAAE,EAAE,SAAS,KAAK,EAAE,UAAU;AAAA,IAC5D;AAAA,IAEA,MAAM,gBAAgB;AAAA,MAClB;AAAA,MACA;AAAA,MACA;AAAA,IACJ,GAIqB;AACjB,YAAM,cAAc,MAAM,KAAK,aAAa,UAAU,IAAI;AAC1D,aAAO,cAAAA,QAAO;AAAA,QACV,OAAO,KAAK,aAAa,KAAK;AAAA,QAC9B,OAAO,KAAK,gBAAgB,KAAK;AAAA,MACrC;AAAA,IACJ;AAAA,EACJ;AAEA,SAAO;AACX;","names":["crypto"]}

package/dist/index.mjs ADDED Viewed

@@ -0,0 +1,137 @@
+// src/create-auth.ts
+import crypto2 from "crypto";
+// src/internal/redis-client.ts
+import { Redis } from "@upstash/redis";
+var createRedisClient = ({ url, token }) => {
+  if (!url || !token) {
+    throw new Error("Both REDIS URL and TOKEN are required to create Redis client");
+  }
+  const redisClient = new Redis({
+    url,
+    token
+  });
+  return redisClient;
+};
+// src/internal/utils.ts
+function stringifyBigInt(obj) {
+  return JSON.stringify(
+    obj,
+    (_, value) => typeof value === "bigint" ? value.toString() : value
+  );
+}
+function generateSessionId() {
+  const array = new Uint8Array(512);
+  crypto.getRandomValues(array);
+  return Array.from(array).map((b) => b.toString(16).padStart(2, "0")).join("");
+}
+// src/internal/keys.ts
+var COOKIE_SESSION_KEY = "session-id";
+// src/internal/cookie.ts
+function getSessionId(cookies) {
+  return cookies.get(COOKIE_SESSION_KEY)?.value ?? null;
+}
+function deleteSessionCookie(cookies) {
+  cookies.delete(COOKIE_SESSION_KEY);
+}
+// src/internal/session.ts
+async function getUserFromSession(auth, cookies) {
+  const sessionId = cookies.get(COOKIE_SESSION_KEY)?.value;
+  if (!sessionId) return null;
+  const data = await auth._redis.get(`session:${sessionId}`);
+  if (!data) return null;
+  return auth._schema.parse(JSON.parse(data));
+}
+async function createUserSession(auth, user, cookies) {
+  const sessionId = generateSessionId();
+  const data = auth._schema.parse(user);
+  await auth._redis.set(
+    `session:${sessionId}`,
+    stringifyBigInt(data),
+    { ex: auth.ttl }
+  );
+  cookies.set(COOKIE_SESSION_KEY, sessionId, {
+    httpOnly: true,
+    secure: true,
+    sameSite: "lax",
+    expires: Math.floor(Date.now() / 1e3) + auth.ttl
+  });
+}
+async function updateUserSession(auth, user, cookies) {
+  const sessionId = getSessionId(cookies);
+  if (!sessionId) return null;
+  const data = auth._schema.parse(user);
+  await auth._redis.set(
+    `session:${sessionId}`,
+    stringifyBigInt(data),
+    { ex: auth.ttl }
+  );
+}
+async function removeUserFromSession(auth, cookies) {
+  const sessionId = getSessionId(cookies);
+  if (!sessionId) return null;
+  await auth._redis.del(`session:${sessionId}`);
+  deleteSessionCookie(cookies);
+}
+// src/create-auth.ts
+function createAuth(options) {
+  if (!("id" in options.sessionSchema.shape)) {
+    throw new Error("sessionSchema must include an `id` field");
+  }
+  const redis = createRedisClient(options.redis);
+  const auth = {
+    _schema: options.sessionSchema,
+    _redis: redis,
+    ttl: options.ttl,
+    getCurrentUser(cookies) {
+      return getUserFromSession(auth, cookies);
+    },
+    createUserSession(user, cookies) {
+      return createUserSession(auth, user, cookies);
+    },
+    updateUserSession(user, cookies) {
+      return updateUserSession(auth, user, cookies);
+    },
+    removeUserFromSession(cookies) {
+      return removeUserFromSession(auth, cookies);
+    },
+    // 🔒 Add password helpers
+    hashPassword(password, salt) {
+      return new Promise((resolve, reject) => {
+        crypto2.scrypt(
+          password.normalize(),
+          salt,
+          64,
+          (err, derivedKey) => {
+            if (err) return reject(err);
+            resolve(derivedKey.toString("hex").normalize());
+          }
+        );
+      });
+    },
+    generateSalt() {
+      return crypto2.randomBytes(16).toString("hex").normalize();
+    },
+    async comparePassword({
+      password,
+      salt,
+      hashedPassword
+    }) {
+      const inputHashed = await auth.hashPassword(password, salt);
+      return crypto2.timingSafeEqual(
+        Buffer.from(inputHashed, "hex"),
+        Buffer.from(hashedPassword, "hex")
+      );
+    }
+  };
+  return auth;
+}
+export {
+  createAuth
+};
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/create-auth.ts","../src/internal/redis-client.ts","../src/internal/utils.ts","../src/internal/keys.ts","../src/internal/cookie.ts","../src/internal/session.ts"],"sourcesContent":["import crypto from \"crypto\";\r\nimport { ZodObject, ZodRawShape } from \"zod\";\r\nimport { createRedisClient } from \"./internal/redis-client\";\r\nimport {\r\n getUserFromSession,\r\n createUserSession,\r\n updateUserSession,\r\n removeUserFromSession,\r\n} from \"./internal/session\";\r\nimport { AuthInstance } from \"./internal/types\";\r\n\r\ntype CreateAuthOptions<T extends ZodRawShape> = {\r\n sessionSchema: ZodObject<T>;\r\n ttl: number;\r\n redis: {\r\n url: string;\r\n token: string;\r\n };\r\n};\r\n\r\nexport function createAuth<T extends ZodRawShape>(\r\n options: CreateAuthOptions<T>\r\n): AuthInstance<T> {\r\n if (!(\"id\" in options.sessionSchema.shape)) {\r\n throw new Error(\"sessionSchema must include an `id` field\");\r\n }\r\n\r\n const redis = createRedisClient(options.redis);\r\n\r\n const auth: AuthInstance<T> = {\r\n _schema: options.sessionSchema,\r\n _redis: redis,\r\n ttl: options.ttl,\r\n\r\n getCurrentUser(cookies) {\r\n return getUserFromSession(auth, cookies);\r\n },\r\n\r\n createUserSession(user, cookies) {\r\n return createUserSession(auth, user, cookies);\r\n },\r\n\r\n updateUserSession(user, cookies) {\r\n return updateUserSession(auth, user, cookies);\r\n },\r\n\r\n removeUserFromSession(cookies) {\r\n return removeUserFromSession(auth, cookies);\r\n },\r\n\r\n // 🔒 Add password helpers\r\n hashPassword(password: string, salt: string): Promise<string> {\r\n return new Promise((resolve, reject) => {\r\n crypto.scrypt(\r\n password.normalize(),\r\n salt,\r\n 64,\r\n (err: Error | null, derivedKey: Buffer) => {\r\n if (err) return reject(err);\r\n resolve(derivedKey.toString(\"hex\").normalize());\r\n }\r\n );\r\n });\r\n },\r\n\r\n generateSalt(): string {\r\n return crypto.randomBytes(16).toString(\"hex\").normalize();\r\n },\r\n\r\n async comparePassword({\r\n password,\r\n salt,\r\n hashedPassword,\r\n }: {\r\n password: string;\r\n salt: string;\r\n hashedPassword: string;\r\n }): Promise<boolean> {\r\n const inputHashed = await auth.hashPassword(password, salt);\r\n return crypto.timingSafeEqual(\r\n Buffer.from(inputHashed, \"hex\"),\r\n Buffer.from(hashedPassword, \"hex\")\r\n );\r\n },\r\n };\r\n\r\n return auth;\r\n}\r\n","import { Redis } from \"@upstash/redis\";\r\n\r\nexport type CreateRedisClientOptions = {\r\n url: string;\r\n token: string;\r\n};\r\n\r\nexport const createRedisClient = ({ url, token }: CreateRedisClientOptions) => {\r\n if (!url || !token) {\r\n throw new Error(\"Both REDIS URL and TOKEN are required to create Redis client\");\r\n }\r\n\r\n const redisClient = new Redis({\r\n url,\r\n token,\r\n });\r\n\r\n return redisClient;\r\n};\r\n","export function stringifyBigInt<T>(obj: T): string {\r\n return JSON.stringify(obj, (_, value) =>\r\n typeof value === \"bigint\" ? value.toString() : value\r\n );\r\n}\r\n\r\nexport function generateSessionId(): string {\r\n const array = new Uint8Array(512);\r\n crypto.getRandomValues(array);\r\n\r\n return Array.from(array)\r\n .map((b) => b.toString(16).padStart(2, \"0\"))\r\n .join(\"\");\r\n}","export const COOKIE_SESSION_KEY = \"session-id\"","import { COOKIE_SESSION_KEY } from \"./keys\";\r\nimport { AuthInstance } from \"./types\";\r\n\r\nexport type Cookies = {\r\n set: (\r\n key: string,\r\n value: string,\r\n options: {\r\n secure?: boolean;\r\n httpOnly?: boolean;\r\n sameSite?: \"strict\" | \"lax\";\r\n expires?: number;\r\n }\r\n ) => void;\r\n get: (key: string) => { name: string; value: string } | undefined;\r\n delete: (key: string) => void;\r\n};\r\n\r\nexport function setSessionCookie(\r\n auth: AuthInstance,\r\n sessionId: string,\r\n cookies: Pick<Cookies, \"set\">\r\n) {\r\n cookies.set(COOKIE_SESSION_KEY, sessionId, {\r\n secure: true,\r\n httpOnly: true,\r\n sameSite: \"lax\",\r\n expires: Date.now() + Number(auth.ttl) * 1000,\r\n });\r\n}\r\n\r\nexport function getSessionId(\r\n cookies: Pick<Cookies, \"get\">\r\n): string | null {\r\n return cookies.get(COOKIE_SESSION_KEY)?.value ?? null;\r\n}\r\n\r\nexport function deleteSessionCookie(\r\n cookies: Pick<Cookies, \"delete\">\r\n) {\r\n cookies.delete(COOKIE_SESSION_KEY);\r\n}\r\n","import { stringifyBigInt, generateSessionId } from \"./utils\";\r\nimport {\r\n getSessionId,\r\n deleteSessionCookie,\r\n Cookies,\r\n} from \"./cookie\";\r\nimport { AuthInstance } from \"./types\";\r\nimport { COOKIE_SESSION_KEY } from \"./keys\";\r\n\r\nexport async function getUserFromSession(\r\n auth: AuthInstance,\r\n cookies: Pick<Cookies, \"get\">\r\n) {\r\n const sessionId = cookies.get(COOKIE_SESSION_KEY)?.value;\r\n if (!sessionId) return null;\r\n\r\n const data = await auth._redis.get<string>(`session:${sessionId}`)\r\n if (!data) return null;\r\n\r\n return auth._schema.parse(JSON.parse(data));\r\n}\r\n\r\nexport async function createUserSession<T>(\r\n auth: AuthInstance,\r\n user: T,\r\n cookies: Pick<Cookies, \"set\">\r\n) {\r\n const sessionId = generateSessionId();\r\n const data = auth._schema.parse(user);\r\n\r\n await auth._redis.set(\r\n `session:${sessionId}`,\r\n stringifyBigInt(data),\r\n { ex: auth.ttl }\r\n );\r\n\r\n cookies.set(COOKIE_SESSION_KEY, sessionId, {\r\n httpOnly: true,\r\n secure: true,\r\n sameSite: \"lax\",\r\n expires: Math.floor(Date.now() / 1000) + auth.ttl,\r\n });\r\n}\r\n\r\nexport async function updateUserSession<T>(\r\n auth: AuthInstance,\r\n user: T,\r\n cookies: Pick<Cookies, \"get\">\r\n) {\r\n const sessionId = getSessionId(cookies);\r\n if (!sessionId) return null;\r\n\r\n const data = auth._schema.parse(user);\r\n\r\n await auth._redis.set(\r\n `session:${sessionId}`,\r\n stringifyBigInt(data),\r\n { ex: auth.ttl }\r\n );\r\n}\r\n\r\nexport async function removeUserFromSession(\r\n auth: AuthInstance,\r\n cookies: Pick<Cookies, \"get\" | \"delete\">\r\n) {\r\n const sessionId = getSessionId(cookies);\r\n if (!sessionId) return null;\r\n\r\n await auth._redis.del(`session:${sessionId}`);\r\n deleteSessionCookie(cookies);\r\n}\r\n"],"mappings":";AAAA,OAAOA,aAAY;;;ACAnB,SAAS,aAAa;AAOf,IAAM,oBAAoB,CAAC,EAAE,KAAK,MAAM,MAAgC;AAC3E,MAAI,CAAC,OAAO,CAAC,OAAO;AAChB,UAAM,IAAI,MAAM,8DAA8D;AAAA,EAClF;AAEA,QAAM,cAAc,IAAI,MAAM;AAAA,IAC1B;AAAA,IACA;AAAA,EACJ,CAAC;AAED,SAAO;AACX;;;AClBO,SAAS,gBAAmB,KAAgB;AAC/C,SAAO,KAAK;AAAA,IAAU;AAAA,IAAK,CAAC,GAAG,UAC3B,OAAO,UAAU,WAAW,MAAM,SAAS,IAAI;AAAA,EACnD;AACJ;AAEO,SAAS,oBAA4B;AACxC,QAAM,QAAQ,IAAI,WAAW,GAAG;AAChC,SAAO,gBAAgB,KAAK;AAE5B,SAAO,MAAM,KAAK,KAAK,EAClB,IAAI,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAC1C,KAAK,EAAE;AAChB;;;ACbO,IAAM,qBAAqB;;;AC+B3B,SAAS,aACZ,SACa;AACb,SAAO,QAAQ,IAAI,kBAAkB,GAAG,SAAS;AACrD;AAEO,SAAS,oBACZ,SACF;AACE,UAAQ,OAAO,kBAAkB;AACrC;;;AChCA,eAAsB,mBAClB,MACA,SACF;AACE,QAAM,YAAY,QAAQ,IAAI,kBAAkB,GAAG;AACnD,MAAI,CAAC,UAAW,QAAO;AAEvB,QAAM,OAAO,MAAM,KAAK,OAAO,IAAY,WAAW,SAAS,EAAE;AACjE,MAAI,CAAC,KAAM,QAAO;AAElB,SAAO,KAAK,QAAQ,MAAM,KAAK,MAAM,IAAI,CAAC;AAC9C;AAEA,eAAsB,kBAClB,MACA,MACA,SACF;AACE,QAAM,YAAY,kBAAkB;AACpC,QAAM,OAAO,KAAK,QAAQ,MAAM,IAAI;AAEpC,QAAM,KAAK,OAAO;AAAA,IACd,WAAW,SAAS;AAAA,IACpB,gBAAgB,IAAI;AAAA,IACpB,EAAE,IAAI,KAAK,IAAI;AAAA,EACnB;AAEA,UAAQ,IAAI,oBAAoB,WAAW;AAAA,IACvC,UAAU;AAAA,IACV,QAAQ;AAAA,IACR,UAAU;AAAA,IACV,SAAS,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI,IAAI,KAAK;AAAA,EAClD,CAAC;AACL;AAEA,eAAsB,kBAClB,MACA,MACA,SACF;AACE,QAAM,YAAY,aAAa,OAAO;AACtC,MAAI,CAAC,UAAW,QAAO;AAEvB,QAAM,OAAO,KAAK,QAAQ,MAAM,IAAI;AAEpC,QAAM,KAAK,OAAO;AAAA,IACd,WAAW,SAAS;AAAA,IACpB,gBAAgB,IAAI;AAAA,IACpB,EAAE,IAAI,KAAK,IAAI;AAAA,EACnB;AACJ;AAEA,eAAsB,sBAClB,MACA,SACF;AACE,QAAM,YAAY,aAAa,OAAO;AACtC,MAAI,CAAC,UAAW,QAAO;AAEvB,QAAM,KAAK,OAAO,IAAI,WAAW,SAAS,EAAE;AAC5C,sBAAoB,OAAO;AAC/B;;;ALlDO,SAAS,WACZ,SACe;AACf,MAAI,EAAE,QAAQ,QAAQ,cAAc,QAAQ;AACxC,UAAM,IAAI,MAAM,0CAA0C;AAAA,EAC9D;AAEA,QAAM,QAAQ,kBAAkB,QAAQ,KAAK;AAE7C,QAAM,OAAwB;AAAA,IAC1B,SAAS,QAAQ;AAAA,IACjB,QAAQ;AAAA,IACR,KAAK,QAAQ;AAAA,IAEb,eAAe,SAAS;AACpB,aAAO,mBAAmB,MAAM,OAAO;AAAA,IAC3C;AAAA,IAEA,kBAAkB,MAAM,SAAS;AAC7B,aAAO,kBAAkB,MAAM,MAAM,OAAO;AAAA,IAChD;AAAA,IAEA,kBAAkB,MAAM,SAAS;AAC7B,aAAO,kBAAkB,MAAM,MAAM,OAAO;AAAA,IAChD;AAAA,IAEA,sBAAsB,SAAS;AAC3B,aAAO,sBAAsB,MAAM,OAAO;AAAA,IAC9C;AAAA;AAAA,IAGA,aAAa,UAAkB,MAA+B;AAC1D,aAAO,IAAI,QAAQ,CAAC,SAAS,WAAW;AACpC,QAAAC,QAAO;AAAA,UACH,SAAS,UAAU;AAAA,UACnB;AAAA,UACA;AAAA,UACA,CAAC,KAAmB,eAAuB;AACvC,gBAAI,IAAK,QAAO,OAAO,GAAG;AAC1B,oBAAQ,WAAW,SAAS,KAAK,EAAE,UAAU,CAAC;AAAA,UAClD;AAAA,QACJ;AAAA,MACJ,CAAC;AAAA,IACL;AAAA,IAEA,eAAuB;AACnB,aAAOA,QAAO,YAAY,EAAE,EAAE,SAAS,KAAK,EAAE,UAAU;AAAA,IAC5D;AAAA,IAEA,MAAM,gBAAgB;AAAA,MAClB;AAAA,MACA;AAAA,MACA;AAAA,IACJ,GAIqB;AACjB,YAAM,cAAc,MAAM,KAAK,aAAa,UAAU,IAAI;AAC1D,aAAOA,QAAO;AAAA,QACV,OAAO,KAAK,aAAa,KAAK;AAAA,QAC9B,OAAO,KAAK,gBAAgB,KAAK;AAAA,MACrC;AAAA,IACJ;AAAA,EACJ;AAEA,SAAO;AACX;","names":["crypto","crypto"]}

package/package.json ADDED Viewed

@@ -0,0 +1,31 @@
+{
+  "name": "nova-auth",
+  "version": "0.1.0",
+  "description": "Custom authentication system for apps",
+  "main": "dist/index.cjs.js",
+  "module": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "default": "./dist/index.js"
+    }
+  },
+  "author": "Taimoor Safdar",
+  "license": "MIT",
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsup"
+  },
+  "dependencies": {
+    "@upstash/redis": "^1.34.0",
+    "zod": "^3.23.0"
+  },
+  "devDependencies": {
+    "@types/node": "^20.0.0",
+    "tsup": "^8.5.1",
+    "typescript": "^5.4.0"
+  }
+}