npm - wcz-test - Versions diffs - 6.23.2 → 6.24.0 - Mend

wcz-test 6.23.2 → 6.24.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (300) hide show

package/dist/index.js CHANGED Viewed

@@ -1,7 +1,9 @@
 import { LayoutProvider, setSSRLanguage } from "./providers/LayoutProvider.js";
 import { rootRouteHead } from "./lib/utils.js";
+import { getSessionUser } from "./lib/auth/graph.js";
 export {
   LayoutProvider,
+  getSessionUser,
   rootRouteHead,
   setSSRLanguage
 };

package/dist/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;"}
1	+ {"version":3,"file":"index.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;"}

package/dist/lib/auth/api.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+export declare const login: (request: Request) => Promise<Response>;
+export declare const callback: (request: Request) => Promise<Response>;
+export declare const logout: (request: Request) => Promise<Response>;

package/dist/lib/auth/api.js ADDED Viewed

@@ -0,0 +1,97 @@
+import { setCookie, getCookie, deleteCookie } from "@tanstack/react-start/server";
+import "../../node_modules/arctic/dist/client.js";
+import "../../node_modules/@oslojs/jwt/node_modules/@oslojs/encoding/dist/base32.js";
+import "../../node_modules/@oslojs/jwt/node_modules/@oslojs/encoding/dist/base64.js";
+import "../../node_modules/@oslojs/encoding/dist/base32.js";
+import "../../node_modules/@oslojs/encoding/dist/base64.js";
+import { generateState, generateCodeVerifier } from "../../node_modules/arctic/dist/oauth2.js";
+import { decodeIdToken } from "../../node_modules/arctic/dist/oidc.js";
+import { serverEnv } from "../../env.js";
+import { entraId } from "./entra.js";
+import { setSessionCookie, setSessionAccessTokenCookie } from "./session.js";
+const login = async (request) => {
+  const url = new URL(request.url);
+  const redirectUri = url.searchParams.get("redirect_uri") || "/";
+  const state = generateState();
+  const codeVerifier = generateCodeVerifier();
+  const scopes = ["openid", "profile", "offline_access", "User.Read"];
+  const authorizationURL = entraId.createAuthorizationURL(state, codeVerifier, scopes);
+  setCookie("entra_oauth_state", state, {
+    secure: serverEnv.NODE_ENV === "production",
+    path: "/",
+    httpOnly: true,
+    sameSite: "lax",
+    maxAge: 60 * 10
+    // 10 minutes
+  });
+  setCookie("entra_code_verifier", codeVerifier, {
+    secure: serverEnv.NODE_ENV === "production",
+    path: "/",
+    httpOnly: true,
+    sameSite: "lax",
+    maxAge: 60 * 10
+    // 10 minutes,
+  });
+  setCookie("entra_redirect_uri", redirectUri, {
+    secure: serverEnv.NODE_ENV === "production",
+    path: "/",
+    httpOnly: true,
+    sameSite: "lax",
+    maxAge: 60 * 10
+    // 10 minutes,
+  });
+  return Response.redirect(authorizationURL.href);
+};
+const callback = async (request) => {
+  const url = new URL(request.url);
+  const code = url.searchParams.get("code");
+  if (!code) return new Response("Missing code", {
+    status: 400
+  });
+  const state = url.searchParams.get("state");
+  const storedState = getCookie("entra_oauth_state") ?? null;
+  const codeVerifier = getCookie("entra_code_verifier") ?? null;
+  const redirectUri = getCookie("entra_redirect_uri") ?? "/";
+  if (!state || !storedState || !codeVerifier || !redirectUri) throw new Response("Missing entra oauth data in cookies", {
+    status: 400
+  });
+  if (state !== storedState) return new Response("Invalid oauth state", {
+    status: 400
+  });
+  deleteCookie("entra_oauth_state");
+  deleteCookie("entra_code_verifier");
+  deleteCookie("entra_redirect_uri");
+  const tokens = await entraId.validateAuthorizationCode(code, codeVerifier);
+  const idToken = tokens.idToken();
+  const claims = decodeIdToken(idToken);
+  await setSessionCookie({
+    refreshToken: tokens.refreshToken(),
+    user: {
+      id: claims.oid,
+      name: claims.name.split("/")[0],
+      email: claims.preferred_username
+    }
+  });
+  await setSessionAccessTokenCookie(tokens.accessToken());
+  return new Response(null, {
+    status: 302,
+    headers: {
+      Location: redirectUri
+    }
+  });
+};
+const logout = async (request) => {
+  const url = new URL(request.url);
+  return new Response(null, {
+    status: 302,
+    headers: {
+      Location: url.href
+    }
+  });
+};
+export {
+  callback,
+  login,
+  logout
+};
+//# sourceMappingURL=api.js.map

package/dist/lib/auth/api.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"api.js","sources":["../../../src/lib/auth/api.ts"],"sourcesContent":["import { deleteCookie, getCookie, setCookie } from \"@tanstack/react-start/server\";\r\nimport { decodeIdToken, generateCodeVerifier, generateState } from \"arctic\";\r\nimport type jwt from \"jsonwebtoken\";\r\nimport { serverEnv } from \"~/env\";\r\nimport { entraId } from \"~/lib/auth/entra\";\r\nimport { setSessionAccessTokenCookie, setSessionCookie } from \"~/lib/auth/session\";\r\n\r\nexport const login = async (request: Request): Promise<Response> => {\r\n const url = new URL(request.url);\r\n const redirectUri = url.searchParams.get(\"redirect_uri\") || \"/\";\r\n\r\n const state = generateState();\r\n const codeVerifier = generateCodeVerifier();\r\n const scopes = [\"openid\", \"profile\", \"offline_access\", \"User.Read\"];\r\n const authorizationURL = entraId.createAuthorizationURL(state, codeVerifier, scopes);\r\n\r\n setCookie(\"entra_oauth_state\", state, {\r\n secure: serverEnv.NODE_ENV === \"production\",\r\n path: \"/\",\r\n httpOnly: true,\r\n sameSite: \"lax\",\r\n maxAge: 60 * 10 // 10 minutes\r\n });\r\n\r\n setCookie(\"entra_code_verifier\", codeVerifier, {\r\n secure: serverEnv.NODE_ENV === \"production\",\r\n path: \"/\",\r\n httpOnly: true,\r\n sameSite: \"lax\",\r\n maxAge: 60 * 10 // 10 minutes,\r\n });\r\n\r\n setCookie(\"entra_redirect_uri\", redirectUri, {\r\n secure: serverEnv.NODE_ENV === \"production\",\r\n path: \"/\",\r\n httpOnly: true,\r\n sameSite: \"lax\",\r\n maxAge: 60 * 10 // 10 minutes,\r\n });\r\n\r\n return Response.redirect(authorizationURL.href);\r\n};\r\n\r\nexport const callback = async (request: Request): Promise<Response> => {\r\n const url = new URL(request.url);\r\n const code = url.searchParams.get(\"code\");\r\n if (!code) return new Response(\"Missing code\", { status: 400 });\r\n const state = url.searchParams.get(\"state\");\r\n const storedState = getCookie(\"entra_oauth_state\") ?? null;\r\n const codeVerifier = getCookie(\"entra_code_verifier\") ?? null;\r\n const redirectUri = getCookie(\"entra_redirect_uri\") ?? \"/\";\r\n\r\n if (!state || !storedState || !codeVerifier || !redirectUri) throw new Response(\"Missing entra oauth data in cookies\", { status: 400 });\r\n if (state !== storedState) return new Response(\"Invalid oauth state\", { status: 400 });\r\n\r\n deleteCookie(\"entra_oauth_state\");\r\n deleteCookie(\"entra_code_verifier\");\r\n deleteCookie(\"entra_redirect_uri\");\r\n\r\n const tokens = await entraId.validateAuthorizationCode(code, codeVerifier);\r\n\r\n const idToken = tokens.idToken();\r\n const claims = decodeIdToken(idToken) as jwt.JwtPayload;\r\n\r\n await setSessionCookie({\r\n refreshToken: tokens.refreshToken(),\r\n user: {\r\n id: claims.oid,\r\n name: claims.name.split(\"/\")[0],\r\n email: claims.preferred_username,\r\n }\r\n });\r\n\r\n await setSessionAccessTokenCookie(tokens.accessToken());\r\n\r\n return new Response(null, {\r\n status: 302,\r\n headers: { Location: redirectUri },\r\n });\r\n};\r\n\r\nexport const logout = async (request: Request): Promise<Response> => {\r\n const url = new URL(request.url);\r\n\r\n // const { session } = await validateRequest();\r\n // if (!session) {\r\n // return new Response(null, { status: 302, headers: { Location: \"/\" } });\r\n // }\r\n // setCookie(SESSION_COOKIE_NAME, \"\", {\r\n // httpOnly: true,\r\n // sameSite: \"lax\",\r\n // secure: serverEnv.NODE_ENV === \"production\",\r\n // maxAge: 0,\r\n // path: \"/\",\r\n // });\r\n\r\n return new Response(null, { status: 302, headers: { Location: url.href } });\r\n};\r\n"],"names":["login","request","url","URL","redirectUri","searchParams","get","state","generateState","codeVerifier","generateCodeVerifier","scopes","authorizationURL","entraId","createAuthorizationURL","setCookie","secure","serverEnv","NODE_ENV","path","httpOnly","sameSite","maxAge","Response","redirect","href","callback","code","status","storedState","getCookie","deleteCookie","tokens","validateAuthorizationCode","idToken","claims","decodeIdToken","setSessionCookie","refreshToken","user","id","oid","name","split","email","preferred_username","setSessionAccessTokenCookie","accessToken","headers","Location","logout"],"mappings":";;;;;;;;;;;AAOO,MAAMA,QAAQ,OAAOC,YAAwC;AAChE,QAAMC,MAAM,IAAIC,IAAIF,QAAQC,GAAG;AAC/B,QAAME,cAAcF,IAAIG,aAAaC,IAAI,cAAc,KAAK;AAE5D,QAAMC,QAAQC,cAAAA;AACd,QAAMC,eAAeC,qBAAAA;AACrB,QAAMC,SAAS,CAAC,UAAU,WAAW,kBAAkB,WAAW;AAClE,QAAMC,mBAAmBC,QAAQC,uBAAuBP,OAAOE,cAAcE,MAAM;AAEnFI,YAAU,qBAAqBR,OAAO;AAAA,IAClCS,QAAQC,UAAUC,aAAa;AAAA,IAC/BC,MAAM;AAAA,IACNC,UAAU;AAAA,IACVC,UAAU;AAAA,IACVC,QAAQ,KAAK;AAAA;AAAA,EAAA,CAChB;AAEDP,YAAU,uBAAuBN,cAAc;AAAA,IAC3CO,QAAQC,UAAUC,aAAa;AAAA,IAC/BC,MAAM;AAAA,IACNC,UAAU;AAAA,IACVC,UAAU;AAAA,IACVC,QAAQ,KAAK;AAAA;AAAA,EAAA,CAChB;AAEDP,YAAU,sBAAsBX,aAAa;AAAA,IACzCY,QAAQC,UAAUC,aAAa;AAAA,IAC/BC,MAAM;AAAA,IACNC,UAAU;AAAA,IACVC,UAAU;AAAA,IACVC,QAAQ,KAAK;AAAA;AAAA,EAAA,CAChB;AAED,SAAOC,SAASC,SAASZ,iBAAiBa,IAAI;AAClD;AAEO,MAAMC,WAAW,OAAOzB,YAAwC;AACnE,QAAMC,MAAM,IAAIC,IAAIF,QAAQC,GAAG;AAC/B,QAAMyB,OAAOzB,IAAIG,aAAaC,IAAI,MAAM;AACxC,MAAI,CAACqB,KAAM,QAAO,IAAIJ,SAAS,gBAAgB;AAAA,IAAEK,QAAQ;AAAA,EAAA,CAAK;AAC9D,QAAMrB,QAAQL,IAAIG,aAAaC,IAAI,OAAO;AAC1C,QAAMuB,cAAcC,UAAU,mBAAmB,KAAK;AACtD,QAAMrB,eAAeqB,UAAU,qBAAqB,KAAK;AACzD,QAAM1B,cAAc0B,UAAU,oBAAoB,KAAK;AAEvD,MAAI,CAACvB,SAAS,CAACsB,eAAe,CAACpB,gBAAgB,CAACL,YAAa,OAAM,IAAImB,SAAS,uCAAuC;AAAA,IAAEK,QAAQ;AAAA,EAAA,CAAK;AACtI,MAAIrB,UAAUsB,YAAa,QAAO,IAAIN,SAAS,uBAAuB;AAAA,IAAEK,QAAQ;AAAA,EAAA,CAAK;AAErFG,eAAa,mBAAmB;AAChCA,eAAa,qBAAqB;AAClCA,eAAa,oBAAoB;AAEjC,QAAMC,SAAS,MAAMnB,QAAQoB,0BAA0BN,MAAMlB,YAAY;AAEzE,QAAMyB,UAAUF,OAAOE,QAAAA;AACvB,QAAMC,SAASC,cAAcF,OAAO;AAEpC,QAAMG,iBAAiB;AAAA,IACnBC,cAAcN,OAAOM,aAAAA;AAAAA,IACrBC,MAAM;AAAA,MACFC,IAAIL,OAAOM;AAAAA,MACXC,MAAMP,OAAOO,KAAKC,MAAM,GAAG,EAAE,CAAC;AAAA,MAC9BC,OAAOT,OAAOU;AAAAA,IAAAA;AAAAA,EAClB,CACH;AAED,QAAMC,4BAA4Bd,OAAOe,aAAa;AAEtD,SAAO,IAAIxB,SAAS,MAAM;AAAA,IACtBK,QAAQ;AAAA,IACRoB,SAAS;AAAA,MAAEC,UAAU7C;AAAAA,IAAAA;AAAAA,EAAY,CACpC;AACL;AAEO,MAAM8C,SAAS,OAAOjD,YAAwC;AACjE,QAAMC,MAAM,IAAIC,IAAIF,QAAQC,GAAG;AAc/B,SAAO,IAAIqB,SAAS,MAAM;AAAA,IAAEK,QAAQ;AAAA,IAAKoB,SAAS;AAAA,MAAEC,UAAU/C,IAAIuB;AAAAA,IAAAA;AAAAA,EAAK,CAAG;AAC9E;"}

package/dist/lib/auth/entra.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import { MicrosoftEntraId } from 'arctic';
2	+ export declare const entraId: MicrosoftEntraId;

package/dist/lib/auth/entra.js ADDED Viewed

@@ -0,0 +1,13 @@
+import "../../node_modules/arctic/dist/client.js";
+import "../../node_modules/@oslojs/jwt/node_modules/@oslojs/encoding/dist/base32.js";
+import "../../node_modules/@oslojs/jwt/node_modules/@oslojs/encoding/dist/base64.js";
+import "../../node_modules/@oslojs/encoding/dist/base32.js";
+import "../../node_modules/@oslojs/encoding/dist/base64.js";
+import "../../node_modules/@oslojs/crypto/dist/sha2/sha512.js";
+import { MicrosoftEntraId } from "../../node_modules/arctic/dist/providers/microsoft-entra-id.js";
+import { serverEnv } from "../../env.js";
+const entraId = new MicrosoftEntraId(serverEnv.MICROSOFT_TENANT_ID, serverEnv.MICROSOFT_CLIENT_ID, serverEnv.MICROSOFT_CLIENT_SECRET, serverEnv.MICROSOFT_REDIRECT_URI);
+export {
+  entraId
+};
+//# sourceMappingURL=entra.js.map

package/dist/lib/auth/entra.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"entra.js","sources":["../../../src/lib/auth/entra.ts"],"sourcesContent":["import { MicrosoftEntraId } from \"arctic\";\r\nimport { serverEnv } from \"~/env\";\r\n\r\nexport const entraId = new MicrosoftEntraId(\r\n serverEnv.MICROSOFT_TENANT_ID,\r\n serverEnv.MICROSOFT_CLIENT_ID,\r\n serverEnv.MICROSOFT_CLIENT_SECRET,\r\n serverEnv.MICROSOFT_REDIRECT_URI,\r\n);\r\n"],"names":["entraId","MicrosoftEntraId","serverEnv","MICROSOFT_TENANT_ID","MICROSOFT_CLIENT_ID","MICROSOFT_CLIENT_SECRET","MICROSOFT_REDIRECT_URI"],"mappings":";;;;;;;;AAGO,MAAMA,UAAU,IAAIC,iBACvBC,UAAUC,qBACVD,UAAUE,qBACVF,UAAUG,yBACVH,UAAUI,sBACd;"}

package/dist/lib/auth/graph.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+import { default as z } from 'zod';
+export declare const getSessionUser: import('@tanstack/start-client-core').RequiredFetcher<undefined, z.ZodObject<{
+    redirectUri: z.ZodString;
+}, z.core.$strip>, Promise<{
+    groups: string[];
+    id: string;
+    name: string;
+    email: string;
+}>>;
+export declare const getSessionUserDetail: import('@tanstack/start-client-core').OptionalFetcher<undefined, undefined, Promise<{
+    id: string;
+    displayName: string;
+    jobTitle: string;
+    mail: string;
+    mobilePhone: string;
+}>>;
+export declare const getSessionUserPhoto: import('@tanstack/start-client-core').OptionalFetcher<undefined, undefined, Promise<string>>;

package/dist/lib/auth/graph.js ADDED Viewed

@@ -0,0 +1,72 @@
+import { createServerFn } from "@tanstack/react-start";
+import axios from "axios";
+import z__default from "zod";
+import { queryClient } from "../queryClient.js";
+import { requireSession, getAccessToken } from "./session.js";
+const getSessionUser = createServerFn().inputValidator(z__default.object({
+  redirectUri: z__default.string()
+})).handler(async ({
+  data
+}) => {
+  const session = await requireSession(data.redirectUri);
+  const groups = await queryClient.fetchQuery({
+    queryKey: ["graph", "me", "memberOf"],
+    queryFn: async () => axios.request({
+      method: "GET",
+      url: "https://graph.microsoft.com/v1.0/me/memberOf?$select=displayName",
+      headers: {
+        Authorization: `Bearer ${await getAccessToken()}`
+      }
+    }).then((response) => response.data.value.map((group) => group.displayName)),
+    staleTime: Infinity,
+    gcTime: Infinity
+  });
+  return {
+    ...session.user,
+    groups
+  };
+});
+const getSessionUserDetail = createServerFn({
+  method: "GET"
+}).handler(async () => {
+  return await queryClient.fetchQuery({
+    queryKey: ["graph", "me"],
+    queryFn: async () => await axios.request({
+      method: "GET",
+      url: "https://graph.microsoft.com/v1.0/me?$select=id,displayName,jobTitle,mail,mobilePhone",
+      headers: {
+        Authorization: `Bearer ${await getAccessToken()}`
+      }
+    }).then((response) => response.data),
+    staleTime: Infinity,
+    gcTime: Infinity
+  });
+});
+const getSessionUserPhoto = createServerFn({
+  method: "GET"
+}).handler(async () => {
+  return await queryClient.fetchQuery({
+    queryKey: ["graph", "me", "photo"],
+    queryFn: async () => {
+      const response = await axios.request({
+        method: "GET",
+        url: "https://graph.microsoft.com/v1.0/me/photo/$value",
+        headers: {
+          Authorization: `Bearer ${await getAccessToken()}`
+        },
+        responseType: "arraybuffer"
+      });
+      const contentType = response.headers["content-type"] ?? "image/jpeg";
+      const base64 = Buffer.from(response.data).toString("base64");
+      return `data:${contentType};base64,${base64}`;
+    },
+    staleTime: Infinity,
+    gcTime: Infinity
+  });
+});
+export {
+  getSessionUser,
+  getSessionUserDetail,
+  getSessionUserPhoto
+};
+//# sourceMappingURL=graph.js.map

package/dist/lib/auth/graph.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"graph.js","sources":["../../../src/lib/auth/graph.ts"],"sourcesContent":["import { createServerFn } from \"@tanstack/react-start\";\r\nimport axios from \"axios\";\r\nimport z from \"zod\";\r\nimport { queryClient } from \"../queryClient\";\r\nimport { getAccessToken, requireSession } from \"./session\";\r\nimport type { GraphUser, User } from \"~/models/User\";\r\n\r\nexport const getSessionUser = createServerFn()\r\n .inputValidator(z.object({ redirectUri: z.string() }))\r\n .handler(async ({ data }) => {\r\n const session = await requireSession(data.redirectUri);\r\n\r\n const groups = await queryClient.fetchQuery({\r\n queryKey: [\"graph\", \"me\", \"memberOf\"],\r\n queryFn: async () => axios.request<{ value: Array<{ displayName: string }> }>({\r\n method: \"GET\",\r\n url: \"https://graph.microsoft.com/v1.0/me/memberOf?$select=displayName\",\r\n headers: { Authorization: `Bearer ${await getAccessToken()}` },\r\n }).then(response => response.data.value.map((group) => group.displayName)),\r\n staleTime: Infinity,\r\n gcTime: Infinity,\r\n });\r\n\r\n return { ...session.user, groups } satisfies User;\r\n });\r\n\r\nexport const getSessionUserDetail = createServerFn({ method: \"GET\" })\r\n .handler(async () => {\r\n return await queryClient.fetchQuery({\r\n queryKey: [\"graph\", \"me\"],\r\n queryFn: async () => await axios.request<GraphUser>({\r\n method: \"GET\",\r\n url: \"https://graph.microsoft.com/v1.0/me?$select=id,displayName,jobTitle,mail,mobilePhone\",\r\n headers: { Authorization: `Bearer ${await getAccessToken()}` },\r\n }).then(response => response.data),\r\n staleTime: Infinity,\r\n gcTime: Infinity,\r\n });\r\n });\r\n\r\n\r\nexport const getSessionUserPhoto = createServerFn({ method: \"GET\" })\r\n .handler(async () => {\r\n return await queryClient.fetchQuery({\r\n queryKey: [\"graph\", \"me\", \"photo\"],\r\n queryFn: async () => {\r\n const response = await axios.request<ArrayBuffer>({\r\n method: \"GET\",\r\n url: \"https://graph.microsoft.com/v1.0/me/photo/$value\",\r\n headers: { Authorization: `Bearer ${await getAccessToken()}` },\r\n responseType: \"arraybuffer\",\r\n });\r\n const contentType = (response.headers[\"content-type\"] as string | undefined) ?? \"image/jpeg\";\r\n const base64 = Buffer.from(response.data).toString(\"base64\");\r\n return `data:${contentType};base64,${base64}`;\r\n },\r\n staleTime: Infinity,\r\n gcTime: Infinity,\r\n });\r\n });\r\n"],"names":["getSessionUser","createServerFn","inputValidator","z","object","redirectUri","string","handler","data","session","requireSession","groups","queryClient","fetchQuery","queryKey","queryFn","axios","request","method","url","headers","Authorization","getAccessToken","then","response","value","map","group","displayName","staleTime","Infinity","gcTime","user","getSessionUserDetail","getSessionUserPhoto","responseType","contentType","base64","Buffer","from","toString"],"mappings":";;;;;AAOO,MAAMA,iBAAiBC,eAAAA,EACzBC,eAAeC,WAAEC,OAAO;AAAA,EAAEC,aAAaF,WAAEG,OAAAA;AAAS,CAAC,CAAC,EACpDC,QAAQ,OAAO;AAAA,EAAEC;AAAK,MAAM;AACzB,QAAMC,UAAU,MAAMC,eAAeF,KAAKH,WAAW;AAErD,QAAMM,SAAS,MAAMC,YAAYC,WAAW;AAAA,IACxCC,UAAU,CAAC,SAAS,MAAM,UAAU;AAAA,IACpCC,SAAS,YAAYC,MAAMC,QAAmD;AAAA,MAC1EC,QAAQ;AAAA,MACRC,KAAK;AAAA,MACLC,SAAS;AAAA,QAAEC,eAAe,UAAU,MAAMC,gBAAgB;AAAA,MAAA;AAAA,IAAG,CAChE,EAAEC,KAAKC,CAAAA,aAAYA,SAAShB,KAAKiB,MAAMC,IAAKC,CAAAA,UAAUA,MAAMC,WAAW,CAAC;AAAA,IACzEC,WAAWC;AAAAA,IACXC,QAAQD;AAAAA,EAAAA,CACX;AAED,SAAO;AAAA,IAAE,GAAGrB,QAAQuB;AAAAA,IAAMrB;AAAAA,EAAAA;AAC9B,CAAC;AAEE,MAAMsB,uBAAuBhC,eAAe;AAAA,EAAEiB,QAAQ;AAAM,CAAC,EAC/DX,QAAQ,YAAY;AACjB,SAAO,MAAMK,YAAYC,WAAW;AAAA,IAChCC,UAAU,CAAC,SAAS,IAAI;AAAA,IACxBC,SAAS,YAAY,MAAMC,MAAMC,QAAmB;AAAA,MAChDC,QAAQ;AAAA,MACRC,KAAK;AAAA,MACLC,SAAS;AAAA,QAAEC,eAAe,UAAU,MAAMC,gBAAgB;AAAA,MAAA;AAAA,IAAG,CAChE,EAAEC,KAAKC,CAAAA,aAAYA,SAAShB,IAAI;AAAA,IACjCqB,WAAWC;AAAAA,IACXC,QAAQD;AAAAA,EAAAA,CACX;AACL,CAAC;AAGE,MAAMI,sBAAsBjC,eAAe;AAAA,EAAEiB,QAAQ;AAAM,CAAC,EAC9DX,QAAQ,YAAY;AACjB,SAAO,MAAMK,YAAYC,WAAW;AAAA,IAChCC,UAAU,CAAC,SAAS,MAAM,OAAO;AAAA,IACjCC,SAAS,YAAY;AACjB,YAAMS,WAAW,MAAMR,MAAMC,QAAqB;AAAA,QAC9CC,QAAQ;AAAA,QACRC,KAAK;AAAA,QACLC,SAAS;AAAA,UAAEC,eAAe,UAAU,MAAMC,gBAAgB;AAAA,QAAA;AAAA,QAC1Da,cAAc;AAAA,MAAA,CACjB;AACD,YAAMC,cAAeZ,SAASJ,QAAQ,cAAc,KAA4B;AAChF,YAAMiB,SAASC,OAAOC,KAAKf,SAAShB,IAAI,EAAEgC,SAAS,QAAQ;AAC3D,aAAO,QAAQJ,WAAW,WAAWC,MAAM;AAAA,IAC/C;AAAA,IACAR,WAAWC;AAAAA,IACXC,QAAQD;AAAAA,EAAAA,CACX;AACL,CAAC;"}

package/dist/lib/auth/session.d.ts ADDED Viewed

@@ -0,0 +1,24 @@
+import { default as jwt } from 'jsonwebtoken';
+import { default as z } from 'zod';
+declare const SessionSchema: z.ZodObject<{
+    refreshToken: z.ZodString;
+    user: z.ZodObject<{
+        id: z.ZodString;
+        name: z.ZodString;
+        email: z.ZodEmail;
+    }, z.core.$strip>;
+}, z.core.$strip>;
+type Session = z.infer<typeof SessionSchema>;
+export declare const requireSession: (redirectUri?: string) => Promise<{
+    refreshToken: string;
+    user: {
+        id: string;
+        name: string;
+        email: string;
+    };
+}>;
+export declare const getAccessToken: () => Promise<string>;
+export declare const validateAccessToken: (token: string) => Promise<jwt.JwtPayload>;
+export declare const setSessionCookie: (session: Session) => Promise<void>;
+export declare const setSessionAccessTokenCookie: (accessToken: string) => Promise<void>;
+export {};

package/dist/lib/auth/session.js ADDED Viewed

@@ -0,0 +1,76 @@
+import { redirect } from "@tanstack/react-router";
+import { getCookie, deleteCookie, setCookie } from "@tanstack/react-start/server";
+import jwt from "../../_virtual/index.js";
+import z__default from "zod";
+import "jwks-rsa";
+import { entraId } from "./entra.js";
+import { serverEnv } from "../../env.js";
+import { UserSchema } from "../../models/User.js";
+const SESSION_COOKIE_NAME = "session";
+const ACCESS_TOKEN_COOKIE_NAME = "access_token";
+const AFTER_LOGIN_URL = "/";
+const SessionSchema = z__default.object({
+  refreshToken: z__default.string(),
+  user: UserSchema.omit({
+    groups: true
+  })
+});
+const requireSession = async (redirectUri) => {
+  const sessionCookie = getCookie(SESSION_COOKIE_NAME);
+  if (!sessionCookie) {
+    throw redirect({
+      href: `/api/auth/login?redirect_uri=${encodeURIComponent(redirectUri ?? AFTER_LOGIN_URL)}`
+    });
+  }
+  const payloadRaw = jwt.verify(sessionCookie, serverEnv.SESSION_SECRET);
+  const sessionResult = SessionSchema.safeParse(payloadRaw);
+  if (!sessionResult.success) {
+    deleteCookie(SESSION_COOKIE_NAME);
+    throw redirect({
+      href: `/api/auth/login?redirect_uri=${encodeURIComponent(redirectUri ?? AFTER_LOGIN_URL)}`
+    });
+  }
+  return sessionResult.data;
+};
+const getAccessToken = async () => {
+  const accessTokenCookie = getCookie(ACCESS_TOKEN_COOKIE_NAME);
+  if (accessTokenCookie) return accessTokenCookie;
+  const session = await requireSession();
+  const tokens = await entraId.refreshAccessToken(session.refreshToken, []);
+  await setSessionCookie({
+    ...session,
+    refreshToken: tokens.refreshToken()
+  });
+  await setSessionAccessTokenCookie(tokens.accessToken());
+  return tokens.accessToken();
+};
+const setSessionCookie = async (session) => {
+  const sessionJwt = jwt.sign(session, serverEnv.SESSION_SECRET, {
+    expiresIn: "7d"
+  });
+  setCookie(SESSION_COOKIE_NAME, sessionJwt, {
+    secure: serverEnv.NODE_ENV === "production",
+    path: "/",
+    httpOnly: true,
+    sameSite: "lax",
+    maxAge: 7 * 24 * 60 * 60
+    // 7 days
+  });
+};
+const setSessionAccessTokenCookie = async (accessToken) => {
+  setCookie(ACCESS_TOKEN_COOKIE_NAME, accessToken, {
+    secure: serverEnv.NODE_ENV === "production",
+    path: "/",
+    httpOnly: true,
+    sameSite: "lax",
+    maxAge: 5 * 60
+    // 5 minutes
+  });
+};
+export {
+  getAccessToken,
+  requireSession,
+  setSessionAccessTokenCookie,
+  setSessionCookie
+};
+//# sourceMappingURL=session.js.map

package/dist/lib/auth/session.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"session.js","sources":["../../../src/lib/auth/session.ts"],"sourcesContent":["import { redirect } from \"@tanstack/react-router\";\r\nimport { deleteCookie, getCookie, setCookie } from \"@tanstack/react-start/server\";\r\nimport jwt from \"jsonwebtoken\";\r\nimport z from \"zod\";\r\nimport jwksRsa from \"jwks-rsa\";\r\nimport { entraId } from \"./entra\";\r\nimport { serverEnv } from \"~/env\";\r\nimport { UserSchema } from \"~/models/User\";\r\n\r\nconst SESSION_COOKIE_NAME = \"session\";\r\nconst ACCESS_TOKEN_COOKIE_NAME = \"access_token\";\r\nconst AFTER_LOGIN_URL = \"/\";\r\n\r\nconst SessionSchema = z.object({\r\n refreshToken: z.string(),\r\n user: UserSchema.omit({ groups: true }),\r\n});\r\n\r\ntype Session = z.infer<typeof SessionSchema>;\r\n\r\nexport const requireSession = async (redirectUri?: string) => {\r\n const sessionCookie = getCookie(SESSION_COOKIE_NAME);\r\n if (!sessionCookie) {\r\n throw redirect({ href: `/api/auth/login?redirect_uri=${encodeURIComponent(redirectUri ?? AFTER_LOGIN_URL)}` });\r\n }\r\n\r\n const payloadRaw = jwt.verify(sessionCookie, serverEnv.SESSION_SECRET);\r\n const sessionResult = SessionSchema.safeParse(payloadRaw);\r\n if (!sessionResult.success) {\r\n deleteCookie(SESSION_COOKIE_NAME);\r\n throw redirect({ href: `/api/auth/login?redirect_uri=${encodeURIComponent(redirectUri ?? AFTER_LOGIN_URL)}` });\r\n }\r\n\r\n return sessionResult.data;\r\n};\r\n\r\nexport const getAccessToken = async () => {\r\n const accessTokenCookie = getCookie(ACCESS_TOKEN_COOKIE_NAME);\r\n if (accessTokenCookie) return accessTokenCookie;\r\n\r\n const session = await requireSession();\r\n\r\n const tokens = await entraId.refreshAccessToken(session.refreshToken, []);\r\n\r\n await setSessionCookie({\r\n ...session,\r\n refreshToken: tokens.refreshToken()\r\n });\r\n\r\n await setSessionAccessTokenCookie(tokens.accessToken());\r\n\r\n return tokens.accessToken();\r\n};\r\n\r\nexport const validateAccessToken = async (token: string): Promise<jwt.JwtPayload> => {\r\n const client = jwksRsa({\r\n cache: true,\r\n rateLimit: true,\r\n jwksRequestsPerMinute: 5,\r\n jwksUri: \"https://login.microsoftonline.com/common/discovery/v2.0/keys\",\r\n });\r\n\r\n const decodedHeader = jwt.decode(token, { complete: true });\r\n if (!decodedHeader?.header.kid) throw new Error(\"Invalid token: Missing kid\");\r\n\r\n const key = await client.getSigningKey(decodedHeader.header.kid);\r\n const signingKey = key.getPublicKey();\r\n\r\n const payload = jwt.verify(token, signingKey) as jwt.JwtPayload;\r\n\r\n if (typeof payload.iss !== \"string\" || !payload.iss.startsWith(\"https://login.microsoftonline.com/\"))\r\n throw new Error(\"Invalid issuer\");\r\n\r\n return payload;\r\n};\r\n\r\nexport const setSessionCookie = async (session: Session) => {\r\n const sessionJwt = jwt.sign(session, serverEnv.SESSION_SECRET, { expiresIn: \"7d\" });\r\n\r\n setCookie(SESSION_COOKIE_NAME, sessionJwt, {\r\n secure: serverEnv.NODE_ENV === \"production\",\r\n path: \"/\",\r\n httpOnly: true,\r\n sameSite: \"lax\",\r\n maxAge: 7 * 24 * 60 * 60, // 7 days\r\n });\r\n};\r\n\r\nexport const setSessionAccessTokenCookie = async (accessToken: string) => {\r\n setCookie(ACCESS_TOKEN_COOKIE_NAME, accessToken, {\r\n secure: serverEnv.NODE_ENV === \"production\",\r\n path: \"/\",\r\n httpOnly: true,\r\n sameSite: \"lax\",\r\n maxAge: 5 * 60, // 5 minutes\r\n });\r\n};\r\n"],"names":["SESSION_COOKIE_NAME","ACCESS_TOKEN_COOKIE_NAME","AFTER_LOGIN_URL","SessionSchema","z","object","refreshToken","string","user","UserSchema","omit","groups","requireSession","redirectUri","sessionCookie","getCookie","redirect","href","encodeURIComponent","payloadRaw","jwt","verify","serverEnv","SESSION_SECRET","sessionResult","safeParse","success","deleteCookie","data","getAccessToken","accessTokenCookie","session","tokens","entraId","refreshAccessToken","setSessionCookie","setSessionAccessTokenCookie","accessToken","sessionJwt","sign","expiresIn","setCookie","secure","NODE_ENV","path","httpOnly","sameSite","maxAge"],"mappings":";;;;;;;;AASA,MAAMA,sBAAsB;AAC5B,MAAMC,2BAA2B;AACjC,MAAMC,kBAAkB;AAExB,MAAMC,gBAAgBC,WAAEC,OAAO;AAAA,EAC3BC,cAAcF,WAAEG,OAAAA;AAAAA,EAChBC,MAAMC,WAAWC,KAAK;AAAA,IAAEC,QAAQ;AAAA,EAAA,CAAM;AAC1C,CAAC;AAIM,MAAMC,iBAAiB,OAAOC,gBAAyB;AAC1D,QAAMC,gBAAgBC,UAAUf,mBAAmB;AACnD,MAAI,CAACc,eAAe;AAChB,UAAME,SAAS;AAAA,MAAEC,MAAM,gCAAgCC,mBAAmBL,eAAeX,eAAe,CAAC;AAAA,IAAA,CAAI;AAAA,EACjH;AAEA,QAAMiB,aAAaC,IAAIC,OAAOP,eAAeQ,UAAUC,cAAc;AACrE,QAAMC,gBAAgBrB,cAAcsB,UAAUN,UAAU;AACxD,MAAI,CAACK,cAAcE,SAAS;AACxBC,iBAAa3B,mBAAmB;AAChC,UAAMgB,SAAS;AAAA,MAAEC,MAAM,gCAAgCC,mBAAmBL,eAAeX,eAAe,CAAC;AAAA,IAAA,CAAI;AAAA,EACjH;AAEA,SAAOsB,cAAcI;AACzB;AAEO,MAAMC,iBAAiB,YAAY;AACtC,QAAMC,oBAAoBf,UAAUd,wBAAwB;AAC5D,MAAI6B,kBAAmB,QAAOA;AAE9B,QAAMC,UAAU,MAAMnB,eAAAA;AAEtB,QAAMoB,SAAS,MAAMC,QAAQC,mBAAmBH,QAAQzB,cAAc,EAAE;AAExE,QAAM6B,iBAAiB;AAAA,IACnB,GAAGJ;AAAAA,IACHzB,cAAc0B,OAAO1B,aAAAA;AAAAA,EAAa,CACrC;AAED,QAAM8B,4BAA4BJ,OAAOK,aAAa;AAEtD,SAAOL,OAAOK,YAAAA;AAClB;AAwBO,MAAMF,mBAAmB,OAAOJ,YAAqB;AACxD,QAAMO,aAAalB,IAAImB,KAAKR,SAAST,UAAUC,gBAAgB;AAAA,IAAEiB,WAAW;AAAA,EAAA,CAAM;AAElFC,YAAUzC,qBAAqBsC,YAAY;AAAA,IACvCI,QAAQpB,UAAUqB,aAAa;AAAA,IAC/BC,MAAM;AAAA,IACNC,UAAU;AAAA,IACVC,UAAU;AAAA,IACVC,QAAQ,IAAI,KAAK,KAAK;AAAA;AAAA,EAAA,CACzB;AACL;AAEO,MAAMX,8BAA8B,OAAOC,gBAAwB;AACtEI,YAAUxC,0BAA0BoC,aAAa;AAAA,IAC7CK,QAAQpB,UAAUqB,aAAa;AAAA,IAC/BC,MAAM;AAAA,IACNC,UAAU;AAAA,IACVC,UAAU;AAAA,IACVC,QAAQ,IAAI;AAAA;AAAA,EAAA,CACf;AACL;"}

package/dist/lib/queryClient.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import { QueryClient } from '@tanstack/react-query';
2	+ export declare const queryClient: QueryClient;

package/dist/lib/queryClient.js ADDED Viewed

@@ -0,0 +1,6 @@
+import { QueryClient } from "@tanstack/react-query";
+const queryClient = new QueryClient();
+export {
+  queryClient
+};
+//# sourceMappingURL=queryClient.js.map

package/dist/lib/queryClient.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"queryClient.js","sources":["../../src/lib/queryClient.ts"],"sourcesContent":["import { QueryClient } from \"@tanstack/react-query\";\r\n\r\nexport const queryClient = new QueryClient();\r\n"],"names":["queryClient","QueryClient"],"mappings":";AAEO,MAAMA,cAAc,IAAIC,YAAAA;"}

package/dist/lib/utils.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"utils.js","sources":["../../src/lib/utils.ts"],"sourcesContent":["import axios from \"axios\";\nimport type { AnyFieldApi } from \"@tanstack/react-form\";\nimport { clientEnv } from \"~/env\";\n\nexport const WISTRON_PRIMARY_COLOR = \"#00506E\";\nexport const WISTRON_SECONDARY_COLOR = \"#64DC00\";\n\nexport class Platform {\n static get isAndroid() { return /android/i.test(this.userAgent); }\n static get isIOS() { return /iPad\|iPhone\|iPod/.test(this.userAgent); }\n static get isWindows() { return /windows/i.test(this.userAgent); }\n static get isMacOS() { return /Macintosh\|MacIntel\|MacPPC\|Mac68K/.test(this.userAgent); }\n\n private static get userAgent() { return typeof navigator === \"undefined\" ? \"\" : navigator.userAgent; }\n}\n\nexport const rootRouteHead = () => ({\n meta: [\n { charSet: \"utf-8\" },\n { name: \"viewport\", content: \"width=device-width, initial-scale=1\" },\n { title: clientEnv.VITE_APP_TITLE },\n { name: \"og:type\", content: \"website\" },\n { name: \"og:title\", content: clientEnv.VITE_APP_TITLE },\n { name: \"og:image\", content: \"/favicon-32x32.png\" }\n ],\n links: [\n { rel: \"apple-touch-icon\", sizes: \"180x180\", href: \"/apple-touch-icon.png\", },\n { rel: \"icon\", type: \"image/png\", sizes: \"32x32\", href: \"/favicon-32x32.png\", },\n { rel: \"icon\", type: \"image/png\", sizes: \"16x16\", href: \"/favicon-16x16.png\", },\n { rel: \"manifest\", href: \"/manifest.webmanifest\" },\n { rel: \"icon\", href: \"/favicon.ico\" },\n ],\n});\n\nexport const httpClient = axios.create({\n baseURL: clientEnv.VITE_API_URL // TODO: Not working in children projects\n});\n\n/* Internal Utils */\nexport type FormOmittedProps =\n \"name\" \|\n \"value\" \|\n \"onChange\" \|\n \"onBlur\" \|\n \"error\" \|\n \"helperText\" \|\n \"renderInput\" \|\n \"type\" \|\n \"aria-label\";\n\nexport const getFieldStatus = (field: AnyFieldApi) => {\n const { meta } = field.state;\n\n const isTouched = meta.isTouched;\n const hasError = !!meta.errors.length;\n const helperText = meta.errors[0]?.message;\n\n return { isTouched, hasError, helperText };\n};\n\nexport const toKebabCase = (str: string): string => {\n return str\n .replaceAll(/([a-z])([A-Z])/g, \"$1-$2\")\n .replaceAll(/[\\s_]+/g, \"-\")\n .replaceAll(/[^a-zA-Z0-9-]/g, \"\")\n .toLowerCase()\n .replaceAll(/-+/g, \"-\")\n .replaceAll(/(^-\|-$)/g, \"\");\n};\n"],"names":["WISTRON_PRIMARY_COLOR","WISTRON_SECONDARY_COLOR","Platform","isAndroid","test","userAgent","isIOS","isWindows","isMacOS","navigator","rootRouteHead","meta","charSet","name","content","title","clientEnv","VITE_APP_TITLE","links","rel","sizes","href","type","httpClient","axios","create","baseURL","VITE_API_URL","getFieldStatus","field","state","isTouched","hasError","errors","length","helperText","message","toKebabCase","str","replaceAll","toLowerCase"],"mappings":";;AAIO,MAAMA,wBAAwB;AAC9B,MAAMC,0BAA0B;AAEhC,MAAMC,SAAS;AAAA,EAClB,WAAWC,YAAY;AAAE,WAAO,WAAWC,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EACjE,WAAWC,QAAQ;AAAE,WAAO,mBAAmBF,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EACrE,WAAWE,YAAY;AAAE,WAAO,WAAWH,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EACjE,WAAWG,UAAU;AAAE,WAAO,mCAAmCJ,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EAEvF,WAAmBA,YAAY;AAAE,WAAO,OAAOI,cAAc,cAAc,KAAKA,UAAUJ;AAAAA,EAAW;AACzG;AAEO,MAAMK,gBAAgBA,OAAO;AAAA,EAChCC,MAAM,CACF;AAAA,IAAEC,SAAS;AAAA,EAAA,GACX;AAAA,IAAEC,MAAM;AAAA,IAAYC,SAAS;AAAA,EAAA,GAC7B;AAAA,IAAEC,OAAOC,UAAUC;AAAAA,EAAAA,GACnB;AAAA,IAAEJ,MAAM;AAAA,IAAWC,SAAS;AAAA,EAAA,GAC5B;AAAA,IAAED,MAAM;AAAA,IAAYC,SAASE,UAAUC;AAAAA,EAAAA,GACvC;AAAA,IAAEJ,MAAM;AAAA,IAAYC,SAAS;AAAA,EAAA,CAAsB;AAAA,EAEvDI,OAAO,CACH;AAAA,IAAEC,KAAK;AAAA,IAAoBC,OAAO;AAAA,IAAWC,MAAM;AAAA,EAAA,GACnD;AAAA,IAAEF,KAAK;AAAA,IAAQG,MAAM;AAAA,IAAaF,OAAO;AAAA,IAASC,MAAM;AAAA,EAAA,GACxD;AAAA,IAAEF,KAAK;AAAA,IAAQG,MAAM;AAAA,IAAaF,OAAO;AAAA,IAASC,MAAM;AAAA,EAAA,GACxD;AAAA,IAAEF,KAAK;AAAA,IAAYE,MAAM;AAAA,EAAA,GACzB;AAAA,IAAEF,KAAK;AAAA,IAAQE,MAAM;AAAA,EAAA,CAAgB;AAE7C;AAEO,MAAME,aAAaC,MAAMC,OAAO;AAAA,EACnCC,SAASV,UAAUW;AAAAA;AACvB,CAAC;AAcM,MAAMC,iBAAiBA,CAACC,UAAuB;AAClD,QAAM;AAAA,IAAElB;AAAAA,EAAAA,IAASkB,MAAMC;AAEvB,QAAMC,YAAYpB,KAAKoB;AACvB,QAAMC,WAAW,CAAC,CAACrB,KAAKsB,OAAOC;AAC/B,QAAMC,aAAaxB,KAAKsB,OAAO,CAAC,GAAGG;AAEnC,SAAO;AAAA,IAAEL;AAAAA,IAAWC;AAAAA,IAAUG;AAAAA,EAAAA;AAClC;AAEO,MAAME,cAAcA,CAACC,QAAwB;AAChD,SAAOA,IACFC,WAAW,mBAAmB,OAAO,EACrCA,WAAW,WAAW,GAAG,EACzBA,WAAW,kBAAkB,EAAE,EAC/BC,cACAD,WAAW,OAAO,GAAG,EACrBA,WAAW,YAAY,EAAE;AAClC;"}
1	+ {"version":3,"file":"utils.js","sources":["../../src/lib/utils.ts"],"sourcesContent":["import axios from \"axios\";\r\nimport type { AnyFieldApi } from \"@tanstack/react-form\";\r\nimport { clientEnv } from \"~/env\";\r\n\r\nexport const WISTRON_PRIMARY_COLOR = \"#00506E\";\r\nexport const WISTRON_SECONDARY_COLOR = \"#64DC00\";\r\n\r\nexport class Platform {\r\n static get isAndroid() { return /android/i.test(this.userAgent); }\r\n static get isIOS() { return /iPad\|iPhone\|iPod/.test(this.userAgent); }\r\n static get isWindows() { return /windows/i.test(this.userAgent); }\r\n static get isMacOS() { return /Macintosh\|MacIntel\|MacPPC\|Mac68K/.test(this.userAgent); }\r\n\r\n private static get userAgent() { return typeof navigator === \"undefined\" ? \"\" : navigator.userAgent; }\r\n}\r\n\r\nexport const rootRouteHead = () => ({\r\n meta: [\r\n { charSet: \"utf-8\" },\r\n { name: \"viewport\", content: \"width=device-width, initial-scale=1\" },\r\n { title: clientEnv.VITE_APP_TITLE },\r\n { name: \"og:type\", content: \"website\" },\r\n { name: \"og:title\", content: clientEnv.VITE_APP_TITLE },\r\n { name: \"og:image\", content: \"/favicon-32x32.png\" }\r\n ],\r\n links: [\r\n { rel: \"apple-touch-icon\", sizes: \"180x180\", href: \"/apple-touch-icon.png\", },\r\n { rel: \"icon\", type: \"image/png\", sizes: \"32x32\", href: \"/favicon-32x32.png\", },\r\n { rel: \"icon\", type: \"image/png\", sizes: \"16x16\", href: \"/favicon-16x16.png\", },\r\n { rel: \"manifest\", href: \"/manifest.webmanifest\" },\r\n { rel: \"icon\", href: \"/favicon.ico\" },\r\n ],\r\n});\r\n\r\nexport const httpClient = axios.create({\r\n baseURL: clientEnv.VITE_API_URL // TODO: Not working in children projects\r\n});\r\n\r\n/* Internal Utils */\r\nexport type FormOmittedProps =\r\n \"name\" \|\r\n \"value\" \|\r\n \"onChange\" \|\r\n \"onBlur\" \|\r\n \"error\" \|\r\n \"helperText\" \|\r\n \"renderInput\" \|\r\n \"type\" \|\r\n \"aria-label\";\r\n\r\nexport const getFieldStatus = (field: AnyFieldApi) => {\r\n const { meta } = field.state;\r\n\r\n const isTouched = meta.isTouched;\r\n const hasError = !!meta.errors.length;\r\n const helperText = meta.errors[0]?.message;\r\n\r\n return { isTouched, hasError, helperText };\r\n};\r\n\r\nexport const toKebabCase = (str: string): string => {\r\n return str\r\n .replaceAll(/([a-z])([A-Z])/g, \"$1-$2\")\r\n .replaceAll(/[\\s_]+/g, \"-\")\r\n .replaceAll(/[^a-zA-Z0-9-]/g, \"\")\r\n .toLowerCase()\r\n .replaceAll(/-+/g, \"-\")\r\n .replaceAll(/(^-\|-$)/g, \"\");\r\n};\r\n"],"names":["WISTRON_PRIMARY_COLOR","WISTRON_SECONDARY_COLOR","Platform","isAndroid","test","userAgent","isIOS","isWindows","isMacOS","navigator","rootRouteHead","meta","charSet","name","content","title","clientEnv","VITE_APP_TITLE","links","rel","sizes","href","type","httpClient","axios","create","baseURL","VITE_API_URL","getFieldStatus","field","state","isTouched","hasError","errors","length","helperText","message","toKebabCase","str","replaceAll","toLowerCase"],"mappings":";;AAIO,MAAMA,wBAAwB;AAC9B,MAAMC,0BAA0B;AAEhC,MAAMC,SAAS;AAAA,EAClB,WAAWC,YAAY;AAAE,WAAO,WAAWC,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EACjE,WAAWC,QAAQ;AAAE,WAAO,mBAAmBF,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EACrE,WAAWE,YAAY;AAAE,WAAO,WAAWH,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EACjE,WAAWG,UAAU;AAAE,WAAO,mCAAmCJ,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EAEvF,WAAmBA,YAAY;AAAE,WAAO,OAAOI,cAAc,cAAc,KAAKA,UAAUJ;AAAAA,EAAW;AACzG;AAEO,MAAMK,gBAAgBA,OAAO;AAAA,EAChCC,MAAM,CACF;AAAA,IAAEC,SAAS;AAAA,EAAA,GACX;AAAA,IAAEC,MAAM;AAAA,IAAYC,SAAS;AAAA,EAAA,GAC7B;AAAA,IAAEC,OAAOC,UAAUC;AAAAA,EAAAA,GACnB;AAAA,IAAEJ,MAAM;AAAA,IAAWC,SAAS;AAAA,EAAA,GAC5B;AAAA,IAAED,MAAM;AAAA,IAAYC,SAASE,UAAUC;AAAAA,EAAAA,GACvC;AAAA,IAAEJ,MAAM;AAAA,IAAYC,SAAS;AAAA,EAAA,CAAsB;AAAA,EAEvDI,OAAO,CACH;AAAA,IAAEC,KAAK;AAAA,IAAoBC,OAAO;AAAA,IAAWC,MAAM;AAAA,EAAA,GACnD;AAAA,IAAEF,KAAK;AAAA,IAAQG,MAAM;AAAA,IAAaF,OAAO;AAAA,IAASC,MAAM;AAAA,EAAA,GACxD;AAAA,IAAEF,KAAK;AAAA,IAAQG,MAAM;AAAA,IAAaF,OAAO;AAAA,IAASC,MAAM;AAAA,EAAA,GACxD;AAAA,IAAEF,KAAK;AAAA,IAAYE,MAAM;AAAA,EAAA,GACzB;AAAA,IAAEF,KAAK;AAAA,IAAQE,MAAM;AAAA,EAAA,CAAgB;AAE7C;AAEO,MAAME,aAAaC,MAAMC,OAAO;AAAA,EACnCC,SAASV,UAAUW;AAAAA;AACvB,CAAC;AAcM,MAAMC,iBAAiBA,CAACC,UAAuB;AAClD,QAAM;AAAA,IAAElB;AAAAA,EAAAA,IAASkB,MAAMC;AAEvB,QAAMC,YAAYpB,KAAKoB;AACvB,QAAMC,WAAW,CAAC,CAACrB,KAAKsB,OAAOC;AAC/B,QAAMC,aAAaxB,KAAKsB,OAAO,CAAC,GAAGG;AAEnC,SAAO;AAAA,IAAEL;AAAAA,IAAWC;AAAAA,IAAUG;AAAAA,EAAAA;AAClC;AAEO,MAAME,cAAcA,CAACC,QAAwB;AAChD,SAAOA,IACFC,WAAW,mBAAmB,OAAO,EACrCA,WAAW,WAAW,GAAG,EACzBA,WAAW,kBAAkB,EAAE,EAC/BC,cACAD,WAAW,OAAO,GAAG,EACrBA,WAAW,YAAY,EAAE;AAClC;"}

package/dist/middleware/auth.d.ts CHANGED Viewed

@@ -1,13 +1,22 @@
 export declare const authenticationMiddleware: import('@tanstack/start-client-core').RequestMiddlewareAfterServer<{}, undefined, {
-    user: import('../lib/auth/server').AuthenticatedUser;
+    user: {
+        id: any;
+        name: any;
+        email: any;
+    };
 }>;
 export declare const authorizationMiddleware: (allowedGroups: Array<string>) => import('@tanstack/start-client-core').RequestMiddlewareAfterServer<{}, readonly [import('@tanstack/start-client-core').RequestMiddlewareAfterServer<{}, undefined, {
-    user: import('../lib/auth/server').AuthenticatedUser;
+    user: {
+        id: any;
+        name: any;
+        email: any;
+    };
 }>], {
     user: {
         groups: string[];
-        name: string;
-        email: string;
+        id: any;
+        name: any;
+        email: any;
     };
 }>;
 export declare const serverFnAccessTokenMiddleware: import('@tanstack/start-client-core').FunctionMiddlewareAfterClient<{}, unknown, undefined, undefined, undefined>;

package/dist/models/User.d.ts CHANGED Viewed

@@ -2,10 +2,15 @@ import * as z from "zod";
 export declare const UserSchema: z.ZodObject<{
     id: z.ZodString;
     name: z.ZodString;
-    jobTitle: z.ZodString;
     email: z.ZodEmail;
-    mobilePhone: z.ZodString;
-    photo: z.ZodNullable<z.ZodString>;
     groups: z.ZodArray<z.ZodString>;
 }, z.core.$strip>;
 export type User = z.infer<typeof UserSchema>;
+export declare const GraphUserSchema: z.ZodObject<{
+    id: z.ZodString;
+    displayName: z.ZodString;
+    jobTitle: z.ZodString;
+    mail: z.ZodEmail;
+    mobilePhone: z.ZodString;
+}, z.core.$strip>;
+export type GraphUser = z.infer<typeof GraphUserSchema>;

package/dist/models/User.js ADDED Viewed

@@ -0,0 +1,18 @@
+import * as z from "zod";
+const UserSchema = z.object({
+  id: z.string(),
+  name: z.string(),
+  email: z.email(),
+  groups: z.array(z.string())
+});
+z.object({
+  id: z.string(),
+  displayName: z.string(),
+  jobTitle: z.string(),
+  mail: z.email(),
+  mobilePhone: z.string()
+});
+export {
+  UserSchema
+};
+//# sourceMappingURL=User.js.map

package/dist/models/User.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"User.js","sources":["../../src/models/User.ts"],"sourcesContent":["import * as z from \"zod\";\r\n\r\nexport const UserSchema = z.object({\r\n id: z.string(),\r\n name: z.string(),\r\n email: z.email(),\r\n groups: z.array(z.string()),\r\n});\r\n\r\nexport type User = z.infer<typeof UserSchema>;\r\n\r\nexport const GraphUserSchema = z.object({\r\n id: z.string(),\r\n displayName: z.string(),\r\n jobTitle: z.string(),\r\n mail: z.email(),\r\n mobilePhone: z.string(),\r\n});\r\n\r\nexport type GraphUser = z.infer<typeof GraphUserSchema>;\r\n"],"names":["UserSchema","z","object","id","string","name","email","groups","array","displayName","jobTitle","mail","mobilePhone"],"mappings":";AAEO,MAAMA,aAAaC,EAAEC,OAAO;AAAA,EAC/BC,IAAIF,EAAEG,OAAAA;AAAAA,EACNC,MAAMJ,EAAEG,OAAAA;AAAAA,EACRE,OAAOL,EAAEK,MAAAA;AAAAA,EACTC,QAAQN,EAAEO,MAAMP,EAAEG,QAAQ;AAC9B,CAAC;AAI8BH,EAAEC,OAAO;AAAA,EACpCC,IAAIF,EAAEG,OAAAA;AAAAA,EACNK,aAAaR,EAAEG,OAAAA;AAAAA,EACfM,UAAUT,EAAEG,OAAAA;AAAAA,EACZO,MAAMV,EAAEK,MAAAA;AAAAA,EACRM,aAAaX,EAAEG,OAAAA;AACnB,CAAC;"}

package/dist/node_modules/@oslojs/binary/dist/bits.js ADDED Viewed

@@ -0,0 +1,7 @@
+function rotr32(x, n) {
+  return (x << 32 - n | x >>> n) >>> 0;
+}
+export {
+  rotr32
+};
+//# sourceMappingURL=bits.js.map

package/dist/node_modules/@oslojs/binary/dist/bits.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"bits.js","sources":["../../../../../node_modules/@oslojs/binary/dist/bits.js"],"sourcesContent":["export function rotl32(x, n) {\n return ((x << n) | (x >>> (32 - n))) >>> 0;\n}\nexport function rotr32(x, n) {\n return ((x << (32 - n)) | (x >>> n)) >>> 0;\n}\nexport function rotr64(x, n) {\n return ((x << BigInt(64 - n)) | (x >> BigInt(n))) & 0xffffffffffffffffn;\n}\nexport function rotl64(x, n) {\n return ((x << BigInt(n)) | (x >> BigInt(64 - n))) & 0xffffffffffffffffn;\n}\n"],"names":[],"mappings":"AAGO,SAAS,OAAO,GAAG,GAAG;AACzB,UAAS,KAAM,KAAK,IAAO,MAAM,OAAQ;AAC7C;","x_google_ignoreList":[0]}

package/dist/node_modules/@oslojs/binary/dist/uint.js ADDED Viewed

@@ -0,0 +1,80 @@
+class BigEndian {
+  uint8(data, offset) {
+    if (data.byteLength < offset + 1) {
+      throw new TypeError("Insufficient bytes");
+    }
+    return data[offset];
+  }
+  uint16(data, offset) {
+    if (data.byteLength < offset + 2) {
+      throw new TypeError("Insufficient bytes");
+    }
+    return data[offset] << 8 | data[offset + 1];
+  }
+  uint32(data, offset) {
+    if (data.byteLength < offset + 4) {
+      throw new TypeError("Insufficient bytes");
+    }
+    let result = 0;
+    for (let i = 0; i < 4; i++) {
+      result |= data[offset + i] << 24 - i * 8;
+    }
+    return result;
+  }
+  uint64(data, offset) {
+    if (data.byteLength < offset + 8) {
+      throw new TypeError("Insufficient bytes");
+    }
+    let result = 0n;
+    for (let i = 0; i < 8; i++) {
+      result |= BigInt(data[offset + i]) << BigInt(56 - i * 8);
+    }
+    return result;
+  }
+  putUint8(target, value, offset) {
+    if (target.length < offset + 1) {
+      throw new TypeError("Not enough space");
+    }
+    if (value < 0 || value > 255) {
+      throw new TypeError("Invalid uint8 value");
+    }
+    target[offset] = value;
+  }
+  putUint16(target, value, offset) {
+    if (target.length < offset + 2) {
+      throw new TypeError("Not enough space");
+    }
+    if (value < 0 || value > 65535) {
+      throw new TypeError("Invalid uint16 value");
+    }
+    target[offset] = value >> 8;
+    target[offset + 1] = value & 255;
+  }
+  putUint32(target, value, offset) {
+    if (target.length < offset + 4) {
+      throw new TypeError("Not enough space");
+    }
+    if (value < 0 || value > 4294967295) {
+      throw new TypeError("Invalid uint32 value");
+    }
+    for (let i = 0; i < 4; i++) {
+      target[offset + i] = value >> (3 - i) * 8 & 255;
+    }
+  }
+  putUint64(target, value, offset) {
+    if (target.length < offset + 8) {
+      throw new TypeError("Not enough space");
+    }
+    if (value < 0 || value > 18446744073709551615n) {
+      throw new TypeError("Invalid uint64 value");
+    }
+    for (let i = 0; i < 8; i++) {
+      target[offset + i] = Number(value >> BigInt((7 - i) * 8) & 0xffn);
+    }
+  }
+}
+const bigEndian = new BigEndian();
+export {
+  bigEndian
+};
+//# sourceMappingURL=uint.js.map

package/dist/node_modules/@oslojs/binary/dist/uint.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"uint.js","sources":["../../../../../node_modules/@oslojs/binary/dist/uint.js"],"sourcesContent":["class BigEndian {\n uint8(data, offset) {\n if (data.byteLength < offset + 1) {\n throw new TypeError(\"Insufficient bytes\");\n }\n return data[offset];\n }\n uint16(data, offset) {\n if (data.byteLength < offset + 2) {\n throw new TypeError(\"Insufficient bytes\");\n }\n return (data[offset] << 8) | data[offset + 1];\n }\n uint32(data, offset) {\n if (data.byteLength < offset + 4) {\n throw new TypeError(\"Insufficient bytes\");\n }\n let result = 0;\n for (let i = 0; i < 4; i++) {\n result |= data[offset + i] << (24 - i * 8);\n }\n return result;\n }\n uint64(data, offset) {\n if (data.byteLength < offset + 8) {\n throw new TypeError(\"Insufficient bytes\");\n }\n let result = 0n;\n for (let i = 0; i < 8; i++) {\n result |= BigInt(data[offset + i]) << BigInt(56 - i * 8);\n }\n return result;\n }\n putUint8(target, value, offset) {\n if (target.length < offset + 1) {\n throw new TypeError(\"Not enough space\");\n }\n if (value < 0 || value > 255) {\n throw new TypeError(\"Invalid uint8 value\");\n }\n target[offset] = value;\n }\n putUint16(target, value, offset) {\n if (target.length < offset + 2) {\n throw new TypeError(\"Not enough space\");\n }\n if (value < 0 || value > 65535) {\n throw new TypeError(\"Invalid uint16 value\");\n }\n target[offset] = value >> 8;\n target[offset + 1] = value & 0xff;\n }\n putUint32(target, value, offset) {\n if (target.length < offset + 4) {\n throw new TypeError(\"Not enough space\");\n }\n if (value < 0 || value > 4294967295) {\n throw new TypeError(\"Invalid uint32 value\");\n }\n for (let i = 0; i < 4; i++) {\n target[offset + i] = (value >> ((3 - i) * 8)) & 0xff;\n }\n }\n putUint64(target, value, offset) {\n if (target.length < offset + 8) {\n throw new TypeError(\"Not enough space\");\n }\n if (value < 0 || value > 18446744073709551615n) {\n throw new TypeError(\"Invalid uint64 value\");\n }\n for (let i = 0; i < 8; i++) {\n target[offset + i] = Number((value >> BigInt((7 - i) * 8)) & 0xffn);\n }\n }\n}\nclass LittleEndian {\n uint8(data, offset) {\n if (data.byteLength < offset + 1) {\n throw new TypeError(\"Insufficient bytes\");\n }\n return data[offset];\n }\n uint16(data, offset) {\n if (data.byteLength < offset + 2) {\n throw new TypeError(\"Insufficient bytes\");\n }\n return data[offset] | (data[offset + 1] << 8);\n }\n uint32(data, offset) {\n if (data.byteLength < offset + 4) {\n throw new TypeError(\"Insufficient bytes\");\n }\n let result = 0;\n for (let i = 0; i < 4; i++) {\n result |= data[offset + i] << (i * 8);\n }\n return result;\n }\n uint64(data, offset) {\n if (data.byteLength < offset + 8) {\n throw new TypeError(\"Insufficient bytes\");\n }\n let result = 0n;\n for (let i = 0; i < 8; i++) {\n result |= BigInt(data[offset + i]) << BigInt(i * 8);\n }\n return result;\n }\n putUint8(target, value, offset) {\n if (target.length < 1 + offset) {\n throw new TypeError(\"Insufficient space\");\n }\n if (value < 0 || value > 255) {\n throw new TypeError(\"Invalid uint8 value\");\n }\n target[offset] = value;\n }\n putUint16(target, value, offset) {\n if (target.length < 2 + offset) {\n throw new TypeError(\"Insufficient space\");\n }\n if (value < 0 || value > 65535) {\n throw new TypeError(\"Invalid uint16 value\");\n }\n target[offset + 1] = value >> 8;\n target[offset] = value & 0xff;\n }\n putUint32(target, value, offset) {\n if (target.length < 4 + offset) {\n throw new TypeError(\"Insufficient space\");\n }\n if (value < 0 || value > 4294967295) {\n throw new TypeError(\"Invalid uint32 value\");\n }\n for (let i = 0; i < 4; i++) {\n target[offset + i] = (value >> (i * 8)) & 0xff;\n }\n }\n putUint64(target, value, offset) {\n if (target.length < 8 + offset) {\n throw new TypeError(\"Insufficient space\");\n }\n if (value < 0 || value > 18446744073709551615n) {\n throw new TypeError(\"Invalid uint64 value\");\n }\n for (let i = 0; i < 8; i++) {\n target[offset + i] = Number((value >> BigInt(i * 8)) & 0xffn);\n }\n }\n}\nexport const bigEndian = new BigEndian();\nexport const littleEndian = new LittleEndian();\n"],"names":[],"mappings":"AAAA,MAAM,UAAU;AAAA,EACZ,MAAM,MAAM,QAAQ;AAChB,QAAI,KAAK,aAAa,SAAS,GAAG;AAC9B,YAAM,IAAI,UAAU,oBAAoB;AAAA,IAC5C;AACA,WAAO,KAAK,MAAM;AAAA,EACtB;AAAA,EACA,OAAO,MAAM,QAAQ;AACjB,QAAI,KAAK,aAAa,SAAS,GAAG;AAC9B,YAAM,IAAI,UAAU,oBAAoB;AAAA,IAC5C;AACA,WAAQ,KAAK,MAAM,KAAK,IAAK,KAAK,SAAS,CAAC;AAAA,EAChD;AAAA,EACA,OAAO,MAAM,QAAQ;AACjB,QAAI,KAAK,aAAa,SAAS,GAAG;AAC9B,YAAM,IAAI,UAAU,oBAAoB;AAAA,IAC5C;AACA,QAAI,SAAS;AACb,aAAS,IAAI,GAAG,IAAI,GAAG,KAAK;AACxB,gBAAU,KAAK,SAAS,CAAC,KAAM,KAAK,IAAI;AAAA,IAC5C;AACA,WAAO;AAAA,EACX;AAAA,EACA,OAAO,MAAM,QAAQ;AACjB,QAAI,KAAK,aAAa,SAAS,GAAG;AAC9B,YAAM,IAAI,UAAU,oBAAoB;AAAA,IAC5C;AACA,QAAI,SAAS;AACb,aAAS,IAAI,GAAG,IAAI,GAAG,KAAK;AACxB,gBAAU,OAAO,KAAK,SAAS,CAAC,CAAC,KAAK,OAAO,KAAK,IAAI,CAAC;AAAA,IAC3D;AACA,WAAO;AAAA,EACX;AAAA,EACA,SAAS,QAAQ,OAAO,QAAQ;AAC5B,QAAI,OAAO,SAAS,SAAS,GAAG;AAC5B,YAAM,IAAI,UAAU,kBAAkB;AAAA,IAC1C;AACA,QAAI,QAAQ,KAAK,QAAQ,KAAK;AAC1B,YAAM,IAAI,UAAU,qBAAqB;AAAA,IAC7C;AACA,WAAO,MAAM,IAAI;AAAA,EACrB;AAAA,EACA,UAAU,QAAQ,OAAO,QAAQ;AAC7B,QAAI,OAAO,SAAS,SAAS,GAAG;AAC5B,YAAM,IAAI,UAAU,kBAAkB;AAAA,IAC1C;AACA,QAAI,QAAQ,KAAK,QAAQ,OAAO;AAC5B,YAAM,IAAI,UAAU,sBAAsB;AAAA,IAC9C;AACA,WAAO,MAAM,IAAI,SAAS;AAC1B,WAAO,SAAS,CAAC,IAAI,QAAQ;AAAA,EACjC;AAAA,EACA,UAAU,QAAQ,OAAO,QAAQ;AAC7B,QAAI,OAAO,SAAS,SAAS,GAAG;AAC5B,YAAM,IAAI,UAAU,kBAAkB;AAAA,IAC1C;AACA,QAAI,QAAQ,KAAK,QAAQ,YAAY;AACjC,YAAM,IAAI,UAAU,sBAAsB;AAAA,IAC9C;AACA,aAAS,IAAI,GAAG,IAAI,GAAG,KAAK;AACxB,aAAO,SAAS,CAAC,IAAK,UAAW,IAAI,KAAK,IAAM;AAAA,IACpD;AAAA,EACJ;AAAA,EACA,UAAU,QAAQ,OAAO,QAAQ;AAC7B,QAAI,OAAO,SAAS,SAAS,GAAG;AAC5B,YAAM,IAAI,UAAU,kBAAkB;AAAA,IAC1C;AACA,QAAI,QAAQ,KAAK,QAAQ,uBAAuB;AAC5C,YAAM,IAAI,UAAU,sBAAsB;AAAA,IAC9C;AACA,aAAS,IAAI,GAAG,IAAI,GAAG,KAAK;AACxB,aAAO,SAAS,CAAC,IAAI,OAAQ,SAAS,QAAQ,IAAI,KAAK,CAAC,IAAK,KAAK;AAAA,IACtE;AAAA,EACJ;AACJ;AA4EY,MAAC,YAAY,IAAI,UAAS;","x_google_ignoreList":[0]}