npm - strapi-plugin-magic-sessionmanager - Versions diffs - 4.2.15 → 4.3.0 - Mend

strapi-plugin-magic-sessionmanager 4.2.15 → 4.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (21) hide show

package/dist/_chunks/{index-CUSrDKCG.mjs → index-Dpdcg2zl.mjs} RENAMED Viewed

@@ -1,9 +1,9 @@
-import { useEffect, useState } from "react";
+import { useRef, useEffect, useState } from "react";
+import { useFetchClient, useNotification } from "@strapi/strapi/admin";
 import { jsx, jsxs } from "react/jsx-runtime";
 import { useIntl } from "react-intl";
 import { Box, Typography, Flex, Badge, Divider, Button } from "@strapi/design-system";
 import { Server, Clock, Cross, Check, Phone, Monitor } from "@strapi/icons";
-import { useFetchClient, useNotification } from "@strapi/strapi/admin";
 const strapi = {
   name: "magic-sessionmanager",
   displayName: "Magic Sessionmanager"
@@ -13,10 +13,29 @@ const pluginPkg = {
 };
 const pluginId = "magic-sessionmanager";
 const PLUGIN_ID = pluginId;
-const Initializer = () => {
+const Initializer = ({ setPlugin }) => {
+  const ref = useRef(setPlugin);
+  const { get } = useFetchClient();
   useEffect(() => {
-    console.log("[magic-sessionmanager] Plugin initialized");
+    if (ref.current) {
+      ref.current(pluginId);
+    }
   }, []);
+  useEffect(() => {
+    const HEARTBEAT_INTERVAL = 4 * 60 * 1e3;
+    const heartbeat = async () => {
+      try {
+        await get(`/${pluginId}/license/status`);
+      } catch (error) {
+      }
+    };
+    const initialTimeout = setTimeout(heartbeat, 60 * 1e3);
+    const interval = setInterval(heartbeat, HEARTBEAT_INTERVAL);
+    return () => {
+      clearTimeout(initialTimeout);
+      clearInterval(interval);
+    };
+  }, [get]);
   return null;
 };
 const PluginIcon = () => /* @__PURE__ */ jsx("svg", { viewBox: "0 0 32 32", fill: "currentColor", width: "24", height: "24", children: /* @__PURE__ */ jsx("path", { d: "M26 5H6a3 3 0 0 0-3 3v14a3 3 0 0 0 3 3h20a3 3 0 0 0 3-3V8a3 3 0 0 0-3-3M20 27h-8a1 1 0 0 0 0 2h8a1 1 0 0 0 0-2" }) });
@@ -396,7 +415,7 @@ const index = {
         id: `${pluginId}.plugin.name`,
         defaultMessage: pluginPkg.strapi.displayName
       },
-      Component: () => import("./App-CahdcIEB.mjs")
+      Component: () => import("./App-Bgq2FgRY.mjs")
     });
     app.createSettingSection(
       {
@@ -412,7 +431,7 @@ const index = {
           },
           id: "upgrade",
           to: `${pluginId}/upgrade`,
-          Component: () => import("./UpgradePage-mqr6dLVY.mjs")
+          Component: () => import("./UpgradePage-B_2RowKN.mjs")
         },
         {
           intlLabel: {
@@ -421,7 +440,7 @@ const index = {
           },
           id: "general",
           to: `${pluginId}/general`,
-          Component: () => import("./Settings-DOUUwwxB.mjs")
+          Component: () => import("./Settings-B3FaQckW.mjs")
         },
         {
           intlLabel: {
@@ -430,7 +449,7 @@ const index = {
           },
           id: "analytics",
           to: `${pluginId}/analytics`,
-          Component: () => import("./Analytics-BC4jdzBT.mjs")
+          Component: () => import("./Analytics-CYYb-qXQ.mjs")
         },
         {
           intlLabel: {
@@ -439,7 +458,7 @@ const index = {
           },
           id: "license",
           to: `${pluginId}/license`,
-          Component: () => import("./License-BFx721o7.mjs")
+          Component: () => import("./License-CcD3WDcC.mjs")
         }
       ]
     );
@@ -457,7 +476,7 @@ const index = {
           defaultMessage: "Online Users"
         },
         component: async () => {
-          const component = await import("./OnlineUsersWidget-r2ZgSnok.mjs");
+          const component = await import("./OnlineUsersWidget-DHElrP3_.mjs");
           return component.default;
         },
         id: "online-users-widget",

package/dist/_chunks/{useLicense-xjKLHcVq.mjs → useLicense-CThICQyr.mjs} RENAMED Viewed

@@ -1,6 +1,6 @@
 import { useState, useEffect } from "react";
 import { useFetchClient } from "@strapi/strapi/admin";
-import { a as pluginId } from "./index-CUSrDKCG.mjs";
+import { a as pluginId } from "./index-Dpdcg2zl.mjs";
 const useLicense = () => {
   const { get } = useFetchClient();
   const [isPremium, setIsPremium] = useState(false);

package/dist/_chunks/{useLicense-D7FSpX8c.js → useLicense-DOnfhNxz.js} RENAMED Viewed

@@ -1,7 +1,7 @@
 "use strict";
 const react = require("react");
 const admin = require("@strapi/strapi/admin");
-const index = require("./index-BuxWeACw.js");
+const index = require("./index-Cf1Wqdeg.js");
 const useLicense = () => {
   const { get } = admin.useFetchClient();
   const [isPremium, setIsPremium] = react.useState(false);

package/dist/admin/index.js CHANGED Viewed

@@ -1,3 +1,3 @@
 "use strict";
-const index = require("../_chunks/index-BuxWeACw.js");
+const index = require("../_chunks/index-Cf1Wqdeg.js");
 module.exports = index.index;

package/dist/admin/index.mjs CHANGED Viewed

@@ -1,4 +1,4 @@
-import { i } from "../_chunks/index-CUSrDKCG.mjs";
+import { i } from "../_chunks/index-Dpdcg2zl.mjs";
 export {
   i as default
 };

package/dist/server/index.js CHANGED Viewed

@@ -206,7 +206,7 @@ function generateSessionId$1(userId) {
   const userHash = crypto$1.createHash("sha256").update(userId.toString()).digest("hex").substring(0, 8);
   return `sess_${timestamp}_${userHash}_${randomBytes}`;
 }
-function hashToken$4(token) {
+function hashToken$3(token) {
   if (!token) return null;
   return crypto$1.createHash("sha256").update(token).digest("hex");
 }
@@ -214,113 +214,63 @@ var encryption = {
   encryptToken: encryptToken$2,
   decryptToken: decryptToken$3,
   generateSessionId: generateSessionId$1,
-  hashToken: hashToken$4
+  hashToken: hashToken$3
 };
 const SESSION_UID$3 = "plugin::magic-sessionmanager.session";
-const { hashToken: hashToken$3 } = encryption;
-const lastTouchCache = /* @__PURE__ */ new Map();
-const CACHE_MAX_SIZE = 1e4;
-const CACHE_CLEANUP_AGE = 60 * 60 * 1e3;
-function cleanupOldCacheEntries() {
-  if (lastTouchCache.size < CACHE_MAX_SIZE) return;
-  const now = Date.now();
-  const cutoff = now - CACHE_CLEANUP_AGE;
-  for (const [key, timestamp] of lastTouchCache.entries()) {
-    if (timestamp < cutoff) {
-      lastTouchCache.delete(key);
-    }
-  }
+const AUTH_PATTERNS = [
+  "/auth/",
+  // All /api/auth/* endpoints (login, logout, refresh, etc.)
+  "/magic-link/",
+  // All Magic-Link endpoints
+  "/passwordless/",
+  // Legacy passwordless endpoints
+  "/otp/",
+  // OTP endpoints (any plugin)
+  "/login",
+  // Any login endpoint
+  "/register",
+  // Any register endpoint
+  "/forgot-password",
+  // Password reset
+  "/reset-password"
+  // Password reset
+];
+function isAuthEndpoint(path) {
+  return AUTH_PATTERNS.some((pattern) => path.includes(pattern));
 }
-var lastSeen = ({ strapi: strapi2 }) => {
+var lastSeen = ({ strapi: strapi2, sessionService }) => {
   return async (ctx, next) => {
-    const currentToken = ctx.request.headers.authorization?.replace("Bearer ", "");
-    if (!currentToken) {
-      await next();
-      return;
-    }
-    const skipPaths = [
-      "/admin",
-      // Admin panel UI
-      "/content-manager",
-      // Content Manager
-      "/content-type-builder",
-      // Content-Type Builder
-      "/upload",
-      // Media Library
-      "/i18n",
-      // Internationalization
-      "/users-permissions",
-      // Users & Permissions settings
-      "/email",
-      // Email plugin
-      "/_health",
-      // Health check
-      "/favicon.ico",
-      // Static assets
-      "/api/auth/local",
-      // Login endpoint
-      "/api/auth/register",
-      // Registration endpoint
-      "/api/auth/forgot-password",
-      // Password reset
-      "/api/auth/reset-password",
-      // Password reset
-      "/api/auth/logout",
-      // Logout endpoint (handled separately)
-      "/api/auth/refresh",
-      // Refresh token (has own validation in bootstrap.js)
-      "/api/connect",
-      // OAuth providers
-      "/api/magic-link"
-      // Magic link auth (if using magic-link plugin)
-    ];
-    if (skipPaths.some((p) => ctx.path.startsWith(p))) {
-      await next();
-      return;
-    }
-    if (!ctx.path.startsWith("/api/")) {
+    if (isAuthEndpoint(ctx.path)) {
       await next();
       return;
     }
-    let matchingSession = null;
-    try {
-      const currentTokenHash = hashToken$3(currentToken);
-      matchingSession = await strapi2.documents(SESSION_UID$3).findFirst({
-        filters: {
-          tokenHash: currentTokenHash,
-          isActive: true
-        },
-        populate: { user: { fields: ["documentId"] } }
-      });
-      if (matchingSession) {
-        ctx.state.sessionId = matchingSession.documentId;
-        ctx.state.currentSession = matchingSession;
-        if (matchingSession.user?.documentId) {
-          ctx.state.sessionUserId = matchingSession.user.documentId;
+    if (ctx.state.user && ctx.state.user.documentId) {
+      try {
+        const userId = ctx.state.user.documentId;
+        const activeSessions = await strapi2.documents(SESSION_UID$3).findMany({
+          filters: {
+            user: { documentId: userId },
+            isActive: true
+          },
+          limit: 1
+        });
+        if (!activeSessions || activeSessions.length === 0) {
+          strapi2.log.info(`[magic-sessionmanager] [BLOCKED] Request blocked - session terminated or invalid (user: ${userId.substring(0, 8)}...)`);
+          return ctx.unauthorized("All sessions have been terminated. Please login again.");
         }
-      } else {
-        strapi2.log.info(`[magic-sessionmanager] [BLOCKED] Request blocked - session terminated or invalid (token hash: ${currentTokenHash.substring(0, 8)}...)`);
-        return ctx.unauthorized("This session has been terminated. Please login again.");
+      } catch (err) {
+        strapi2.log.debug("[magic-sessionmanager] Error checking active sessions:", err.message);
       }
-    } catch (err) {
-      strapi2.log.debug("[magic-sessionmanager] Error checking session:", err.message);
     }
     await next();
-    if (matchingSession) {
+    if (ctx.state.user && ctx.state.user.documentId) {
       try {
-        const config2 = strapi2.config.get("plugin::magic-sessionmanager") || {};
-        const rateLimit = config2.lastSeenRateLimit || 3e4;
-        const now = Date.now();
-        const lastTouch = lastTouchCache.get(matchingSession.documentId) || 0;
-        if (now - lastTouch > rateLimit) {
-          lastTouchCache.set(matchingSession.documentId, now);
-          cleanupOldCacheEntries();
-          await strapi2.documents(SESSION_UID$3).update({
-            documentId: matchingSession.documentId,
-            data: { lastActive: /* @__PURE__ */ new Date() }
-          });
-          strapi2.log.debug(`[magic-sessionmanager] [TOUCH] Session ${matchingSession.documentId} activity updated`);
-        }
+        const userId = ctx.state.user.documentId;
+        const sessionId = ctx.state.sessionId;
+        await sessionService.touch({
+          userId,
+          sessionId
+        });
       } catch (err) {
         strapi2.log.debug("[magic-sessionmanager] Error updating lastSeen:", err.message);
       }
@@ -2484,7 +2434,7 @@ var session$1 = ({ strapi: strapi2 }) => {
     }
   };
 };
-const version = "4.2.14";
+const version = "4.2.16";
 const require$$2 = {
   version
 };

package/dist/server/index.mjs CHANGED Viewed

@@ -202,7 +202,7 @@ function generateSessionId$1(userId) {
   const userHash = crypto$1.createHash("sha256").update(userId.toString()).digest("hex").substring(0, 8);
   return `sess_${timestamp}_${userHash}_${randomBytes}`;
 }
-function hashToken$4(token) {
+function hashToken$3(token) {
   if (!token) return null;
   return crypto$1.createHash("sha256").update(token).digest("hex");
 }
@@ -210,113 +210,63 @@ var encryption = {
   encryptToken: encryptToken$2,
   decryptToken: decryptToken$3,
   generateSessionId: generateSessionId$1,
-  hashToken: hashToken$4
+  hashToken: hashToken$3
 };
 const SESSION_UID$3 = "plugin::magic-sessionmanager.session";
-const { hashToken: hashToken$3 } = encryption;
-const lastTouchCache = /* @__PURE__ */ new Map();
-const CACHE_MAX_SIZE = 1e4;
-const CACHE_CLEANUP_AGE = 60 * 60 * 1e3;
-function cleanupOldCacheEntries() {
-  if (lastTouchCache.size < CACHE_MAX_SIZE) return;
-  const now = Date.now();
-  const cutoff = now - CACHE_CLEANUP_AGE;
-  for (const [key, timestamp] of lastTouchCache.entries()) {
-    if (timestamp < cutoff) {
-      lastTouchCache.delete(key);
-    }
-  }
+const AUTH_PATTERNS = [
+  "/auth/",
+  // All /api/auth/* endpoints (login, logout, refresh, etc.)
+  "/magic-link/",
+  // All Magic-Link endpoints
+  "/passwordless/",
+  // Legacy passwordless endpoints
+  "/otp/",
+  // OTP endpoints (any plugin)
+  "/login",
+  // Any login endpoint
+  "/register",
+  // Any register endpoint
+  "/forgot-password",
+  // Password reset
+  "/reset-password"
+  // Password reset
+];
+function isAuthEndpoint(path) {
+  return AUTH_PATTERNS.some((pattern) => path.includes(pattern));
 }
-var lastSeen = ({ strapi: strapi2 }) => {
+var lastSeen = ({ strapi: strapi2, sessionService }) => {
   return async (ctx, next) => {
-    const currentToken = ctx.request.headers.authorization?.replace("Bearer ", "");
-    if (!currentToken) {
-      await next();
-      return;
-    }
-    const skipPaths = [
-      "/admin",
-      // Admin panel UI
-      "/content-manager",
-      // Content Manager
-      "/content-type-builder",
-      // Content-Type Builder
-      "/upload",
-      // Media Library
-      "/i18n",
-      // Internationalization
-      "/users-permissions",
-      // Users & Permissions settings
-      "/email",
-      // Email plugin
-      "/_health",
-      // Health check
-      "/favicon.ico",
-      // Static assets
-      "/api/auth/local",
-      // Login endpoint
-      "/api/auth/register",
-      // Registration endpoint
-      "/api/auth/forgot-password",
-      // Password reset
-      "/api/auth/reset-password",
-      // Password reset
-      "/api/auth/logout",
-      // Logout endpoint (handled separately)
-      "/api/auth/refresh",
-      // Refresh token (has own validation in bootstrap.js)
-      "/api/connect",
-      // OAuth providers
-      "/api/magic-link"
-      // Magic link auth (if using magic-link plugin)
-    ];
-    if (skipPaths.some((p) => ctx.path.startsWith(p))) {
-      await next();
-      return;
-    }
-    if (!ctx.path.startsWith("/api/")) {
+    if (isAuthEndpoint(ctx.path)) {
       await next();
       return;
     }
-    let matchingSession = null;
-    try {
-      const currentTokenHash = hashToken$3(currentToken);
-      matchingSession = await strapi2.documents(SESSION_UID$3).findFirst({
-        filters: {
-          tokenHash: currentTokenHash,
-          isActive: true
-        },
-        populate: { user: { fields: ["documentId"] } }
-      });
-      if (matchingSession) {
-        ctx.state.sessionId = matchingSession.documentId;
-        ctx.state.currentSession = matchingSession;
-        if (matchingSession.user?.documentId) {
-          ctx.state.sessionUserId = matchingSession.user.documentId;
+    if (ctx.state.user && ctx.state.user.documentId) {
+      try {
+        const userId = ctx.state.user.documentId;
+        const activeSessions = await strapi2.documents(SESSION_UID$3).findMany({
+          filters: {
+            user: { documentId: userId },
+            isActive: true
+          },
+          limit: 1
+        });
+        if (!activeSessions || activeSessions.length === 0) {
+          strapi2.log.info(`[magic-sessionmanager] [BLOCKED] Request blocked - session terminated or invalid (user: ${userId.substring(0, 8)}...)`);
+          return ctx.unauthorized("All sessions have been terminated. Please login again.");
         }
-      } else {
-        strapi2.log.info(`[magic-sessionmanager] [BLOCKED] Request blocked - session terminated or invalid (token hash: ${currentTokenHash.substring(0, 8)}...)`);
-        return ctx.unauthorized("This session has been terminated. Please login again.");
+      } catch (err) {
+        strapi2.log.debug("[magic-sessionmanager] Error checking active sessions:", err.message);
       }
-    } catch (err) {
-      strapi2.log.debug("[magic-sessionmanager] Error checking session:", err.message);
     }
     await next();
-    if (matchingSession) {
+    if (ctx.state.user && ctx.state.user.documentId) {
       try {
-        const config2 = strapi2.config.get("plugin::magic-sessionmanager") || {};
-        const rateLimit = config2.lastSeenRateLimit || 3e4;
-        const now = Date.now();
-        const lastTouch = lastTouchCache.get(matchingSession.documentId) || 0;
-        if (now - lastTouch > rateLimit) {
-          lastTouchCache.set(matchingSession.documentId, now);
-          cleanupOldCacheEntries();
-          await strapi2.documents(SESSION_UID$3).update({
-            documentId: matchingSession.documentId,
-            data: { lastActive: /* @__PURE__ */ new Date() }
-          });
-          strapi2.log.debug(`[magic-sessionmanager] [TOUCH] Session ${matchingSession.documentId} activity updated`);
-        }
+        const userId = ctx.state.user.documentId;
+        const sessionId = ctx.state.sessionId;
+        await sessionService.touch({
+          userId,
+          sessionId
+        });
       } catch (err) {
         strapi2.log.debug("[magic-sessionmanager] Error updating lastSeen:", err.message);
       }
@@ -2480,7 +2430,7 @@ var session$1 = ({ strapi: strapi2 }) => {
     }
   };
 };
-const version = "4.2.14";
+const version = "4.2.16";
 const require$$2 = {
   version
 };

package/package.json CHANGED Viewed

@@ -1,5 +1,5 @@
 {
-  "version": "4.2.15",
+  "version": "4.3.0",
   "keywords": [
     "strapi",
     "strapi-plugin",