UNPKG

authenzify

Version:

server to manage authentication authorization of users and more

github.com/haim-rubin/authenzify

haim-rubin/authenzify

79 lines (71 loc) 3.48 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
/** * @typedef {Object} JwtOptions * @property {string} issuer - JWT issuer (e.g. company name) * @property {string} subject - JWT subject (e.g. user email) * @property {string} audience - JWT audience (e.g. service URL) * @property {string|number} expiresIn - Token expiration time (e.g. '12h') * @property {string} algorithm - JWT algorithm, e.g. 'ES256' */ /** * @typedef {Object} StorageOptions * @property {string} dbName - Name of the MongoDB database * @property {Object.<string, any>} [otherOptions] - Additional options */ /** * @typedef {Object} StorageConfig * @property {'mongodb'} type - Type of storage (currently only MongoDB supported) * @property {string} uri - MongoDB connection URI * @property {StorageOptions} options - Additional storage options */ /** * @typedef {Object} EmailTemplatePaths * @property {string} from - Path to the "from" template * @property {string} html - Path to the HTML body template * @property {string} subject - Path to the subject template */ /** * @typedef {Object} EmailTemplates * @property {EmailTemplatePaths} activation * @property {EmailTemplatePaths} forgotPassword * @property {EmailTemplatePaths} onVerification * @property {EmailTemplatePaths} permissionsRequest * @property {EmailTemplatePaths} permissionsApprovedToUser */ /** * @typedef {Object} EmailProviderSettings * @property {string} from - Default sender email * @property {string} host - SMTP host (e.g. 'gmail') * @property {number} port - SMTP port * @property {boolean} secure - Whether to use TLS * @property {{ user: string, pass: string }} auth - Authentication details */ /** * @typedef {Object} EmailProvider * @property {string} provider - Email provider name (e.g. 'nodemailer') * @property {EmailProviderSettings} settings * @property {EmailTemplates} emailTemplates */ /** * @typedef {Object} UsersManagementServerConfig * @property {string[]} onSignUpFirstBasePermissions - Default permissions assigned at sign-up * @property {string} clientDomain - Public domain for client * @property {string} applicationName - Application name * @property {string} activationVerificationRoute - URL route for activation link * @property {string} domain - API or frontend domain * @property {string} activateUserBy - Mode of user activation (from ACTIVATE_USER_BY) * @property {string} passwordPolicy - Regex pattern for valid passwords * @property {string} usernamePolicy - Optional username policy (empty if not enforced) * @property {StorageConfig} storage - Storage configuration (e.g. MongoDB) * @property {number} saltLength - Salt length for password hashing * @property {string} passwordPrivateKey - Key used in password encryption * @property {string} privateKey - JWT signing private key * @property {string} publicKey - JWT verification public key * @property {JwtOptions} jwtOptions - JWT-related settings * @property {string} authorizationCookieKey - Cookie key for storing JWT * @property {boolean} setCookieOnSignIn - Whether to set cookie after sign-in * @property {EmailProvider} emailProvider - Email provider settings and templates * @property {boolean|Object} logger - Logging config or false if disabled * @property {string} resetPasswordRoute - Reset password verification URL * @property {string} didNotAskedToResetPasswordRoute - Alternate route if user didn’t request reset * @property {Object.<string, any>} [customOverrides] - Additional config overrides */