UNPKG

@dax-crafta/auth

Version:

A powerful, flexible, and secure authentication plugin for the Crafta framework. Supports JWT, social login, 2FA, RBAC, audit logging, and enterprise-grade security features.

github.com/daxp472/crafta

daxp472/crafta

144 lines (123 loc) 4 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
// packages/auth/src/utils/email.js const nodemailer = require('nodemailer'); const fs = require('fs'); const path = require('path'); class EmailService { constructor(config) { this.config = config; this.smtpEnabled = !!( config.smtp && config.smtp.host && config.smtp.port && config.smtp.auth && config.smtp.auth.user && config.smtp.auth.pass && config.smtp.from ); this.transporter = this.smtpEnabled ? nodemailer.createTransport(config.smtp) : null; this.from = this.smtpEnabled ? config.smtp.from : 'noreply@localhost'; this.templateDir = config.emailTemplateDir || path.join(process.cwd(), "templates/email"); } // Reusable sender async send({ to, subject, html, text }) { if (!this.smtpEnabled) { return { sent: false, reason: 'smtp_disabled' }; } try { await this.transporter.sendMail({ from: this.from, to, subject, html, text: text || html.replace(/<[^>]+>/g, '') }); return { sent: true }; } catch (err) { console.error("Email send error:", err); return { sent: false, reason: err.message }; } } // Load an HTML template safely loadTemplate(name, variables = {}) { const filePath = path.join(this.templateDir, `${name}.html`); if (!fs.existsSync(filePath)) return null; let content = fs.readFileSync(filePath, "utf8"); // Replace {{variable}} for (const key of Object.keys(variables)) { content = content.replace(new RegExp(`{{${key}}}`, "g"), variables[key]); } return content; } async sendVerificationEmail(user, token) { const verifyPath = this.config.routes?.verify || '/verify'; const url = `${this.config.baseUrl}${verifyPath}?token=${token}`; const html = this.loadTemplate("email-verification", { name: user.name || user.email, url }) || `Click to verify your email: <a href="${url}">${url}</a>`; return this.send({ to: user.email, subject: "Verify Your Email", html, text: `Verify your email: ${url}` }); } async sendPasswordResetEmail(user, token) { const resetPath = this.config.routes?.resetPassword || '/reset-password'; const url = `${this.config.baseUrl}${resetPath}?token=${token}`; const html = this.loadTemplate("password-reset", { name: user.name || user.email, url }) || `Reset password: <a href="${url}">${url}</a>`; return this.send({ to: user.email, subject: "Reset Your Password", html, text: `Reset your password: ${url}` }); } async sendLoginAlert(user, info) { const html = this.loadTemplate("login-alert", { name: user.name || user.email, ip: info.ip, agent: info.userAgent }) || ` New login detected.<br> IP: ${info.ip}<br> User Agent: ${info.userAgent} `; return this.send({ to: user.email, subject: "New Login Detected", html, text: `New login from IP ${info.ip}` }); } async send2FACode(user, code) { const html = this.loadTemplate("twofa-code", { name: user.name || user.email, code }) || `Your 2FA code: <b>${code}</b>`; return this.send({ to: user.email, subject: "Your 2FA Code", html, text: `Your 2FA code is: ${code}` }); } async sendAccountLockEmail(user) { const html = this.loadTemplate("account-locked", { name: user.name || user.email }) || ` Your account has been locked due to too many failed login attempts.<br> Try again after 1 hour. `; return this.send({ to: user.email, subject: "Your Account Has Been Locked", html, text: "Your account is locked for 1 hour due to failed login attempts." }); } } module.exports = EmailService;