sentri 1.0.4 → 1.0.6

package/templates/prisma/adapter.ts

@@ -0,0 +1,122 @@
+// sentri — Prisma adapter template
+// Generated by: npx sentri generate prisma
+//
+// Adjust the Prisma model/field names below if your schema differs from the
+// template produced by `npx sentri init`.
+
+import type { PrismaClient } from '@prisma/client';
+import { AuthError, type AuthAdapter } from 'sentri';
+
+export function createAdapter(prisma: PrismaClient): AuthAdapter {
+  if (!prisma) {
+    throw new AuthError(
+      'CONFIGURATION_ERROR',
+      'createAdapter requires a PrismaClient instance. Did you forget to pass it?\n' +
+      'Example: createAdapter(prisma)',
+    );
+  }
+  return {
+    user: {
+      async findByIdentifier(identifier) {
+        const user = await prisma.user.findUnique({
+          where: { identifier },
+          include: { userRoles: { include: { role: true } } },
+        });
+        if (!user) return null;
+        return {
+          id: user.id,
+          identifier: user.identifier,
+          passwordHash: user.passwordHash,
+          roles: user.userRoles.map((userRole) => userRole.role.name),
+        };
+      },
+
+      async findById(id) {
+        const user = await prisma.user.findUnique({
+          where: { id },
+          include: { userRoles: { include: { role: true } } },
+        });
+        if (!user) return null;
+        return {
+          id: user.id,
+          identifier: user.identifier,
+          passwordHash: user.passwordHash,
+          roles: user.userRoles.map((userRole) => userRole.role.name),
+        };
+      },
+
+      async create({ identifier, passwordHash, roles }) {
+        const user = await prisma.user.create({
+          data: {
+            identifier,
+            passwordHash,
+            userRoles: {
+              create: await Promise.all(
+                roles.map(async (name) => {
+                  const role = await prisma.role.upsert({
+                    where: { name },
+                    update: {},
+                    create: { name },
+                  });
+                  return { roleId: role.id };
+                }),
+              ),
+            },
+          },
+        });
+        return { id: user.id };
+      },
+
+      async updateRoles(userId, roles) {
+        await prisma.userRole.deleteMany({ where: { userId } });
+        await Promise.all(
+          roles.map(async (name) => {
+            const role = await prisma.role.upsert({
+              where: { name },
+              update: {},
+              create: { name },
+            });
+            await prisma.userRole.create({ data: { userId, roleId: role.id } });
+          }),
+        );
+      },
+    },
+
+    session: {
+      async create({ userId, expiresAt }) {
+        const session = await prisma.session.create({ data: { userId, expiresAt } });
+        return { id: session.id };
+      },
+
+      async findById(sessionId) {
+        const session = await prisma.session.findUnique({
+          where: { id: sessionId },
+          include: {
+            user: { include: { userRoles: { include: { role: true } } } },
+          },
+        });
+        if (!session) return null;
+        return {
+          id: session.id,
+          userId: session.userId,
+          expiresAt: session.expiresAt,
+          createdAt: session.createdAt,
+          user: {
+            id: session.user.id,
+            identifier: session.user.identifier,
+            passwordHash: session.user.passwordHash,
+            roles: session.user.userRoles.map((userRole) => userRole.role.name),
+          },
+        };
+      },
+
+      async delete(sessionId) {
+        await prisma.session.delete({ where: { id: sessionId } }).catch(() => {});
+      },
+
+      async deleteAllForUser(userId) {
+        await prisma.session.deleteMany({ where: { userId } });
+      },
+    },
+  };
+}

package/templates/prisma/auth.ts

@@ -0,0 +1,50 @@
+// sentri — auth config template (Prisma)
+// Generated by: npx sentri generate prisma
+//
+// Update validRoles to match the roles your application uses.
+// Add JWT_SECRET to your .env file.
+// If you already have a PrismaClient instance elsewhere, import it instead of
+// creating a new one here.
+
+import { PrismaClient } from '@prisma/client';
+import { createAuth } from 'sentri';
+import { createAdapter } from './adapter.js';
+
+const prisma = new PrismaClient();
+
+export const auth = createAuth({
+  secret: process.env.JWT_SECRET!,
+  validRoles: ['user', 'admin'] as const,
+  adapter: createAdapter(prisma),
+  // accessExpiresIn: '15m',
+  // refreshExpiresIn: '7d',
+  // algorithm: 'HS256',
+  // saltRounds: 12,
+  cookie: {
+    secure: process.env.NODE_ENV === 'production',
+    // name: 'refresh_token',
+    // httpOnly: true,
+    // sameSite: 'strict',
+    // path: '/',
+  },
+  // router: {
+  //   signup: async (input) => {
+  //     // custom signup logic — must return SignupResult
+  //   },
+  //   login: async (input) => {
+  //     // custom login logic — must return AuthResult
+  //   },
+  //   refresh: async (refreshToken) => {
+  //     // custom refresh logic — must return RefreshResult
+  //   },
+  //   logout: async (refreshToken) => {
+  //     // custom logout logic
+  //   },
+  //   logoutAll: async (userId) => {
+  //     // custom logout-all logic
+  //   },
+  //   assignRoles: async (userId, roles) => {
+  //     // custom assignRoles logic — must return AssignRolesResult
+  //   },
+  // },
+});