@next-nest-auth/nestauth/src/nestauth.service.ts

NestAuth is an authentication solution for NestJS applications, designed to handle user login, session management, and token-based authentication (JWT). It integrates seamlessly with Next.js and other frontends to provide a unified authentication system,

import { Inject, Injectable, UnauthorizedException } from "@nestjs/common";
import {
    FacebookProfileType,
    GoogleProfileType,
    JwtPayloadType,
    NestAuthInterface,
} from "./nestauth.interface";
import { JwtService } from "@nestjs/jwt";
import { StringValue } from "ms";

@Injectable()
export class NestAuthService {
    constructor(
        private jwtService: JwtService,
        readonly userService: NestAuthInterface,
        @Inject("JWT_EXPIRES_IN")
        private readonly jwtExpiresIn: StringValue | number = "15m",
        @Inject("JWT_REFRESH_TOKEN_EXPIRES_IN")
        private readonly jwtRefreshTokenExpiresIn: StringValue | number = "7d",
    ) {}

    async login(user: any): Promise<any> {
        return {
            accessToken: this.jwtService.sign(user, {
                expiresIn: this.jwtExpiresIn || "15m",
            }),
            refreshToken: this.jwtService.sign(user, {
                expiresIn: this.jwtRefreshTokenExpiresIn || "7d",
            }),
            accessTokenExpiresIn: this.jwtExpiresIn || "15m",
            refreshTokenExpiresIn: this.jwtRefreshTokenExpiresIn || "7d",
        };
    }

    async google(user: GoogleProfileType): Promise<any> {
        const payload: JwtPayloadType = await this.userService.google(user);

        if (!payload) {
            throw new UnauthorizedException("Invalid credentials");
        }

        return this.login(payload);
    }

    async facebook(user: FacebookProfileType): Promise<any> {
        const payload: JwtPayloadType = await this.userService.facebook(user);

        if (!payload) {
            throw new UnauthorizedException("Invalid credentials");
        }

        return this.login(payload);
    }

    async refreshToken(refreshToken: string) {
        try {
            const payload = this.jwtService.verify(refreshToken);
            const user = await this.userService.getUserById(payload.sub);
            if (!user) {
                throw new UnauthorizedException(
                    "Invalid or expired refresh token",
                );
            }
            return this.login(user);
        } catch (err) {
            throw new UnauthorizedException("Invalid or expired refresh token");
        }
    }
}