UNPKG

nuxt-supabase-team-auth

Version:

Drop-in Nuxt 3 module for team-based authentication with Supabase

github.com/pengelbrecht/nuxt-supabase-team-auth

pengelbrecht/nuxt-supabase-team-auth

137 lines (114 loc) 4.78 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
import type { PasswordPolicy, PasswordValidationResult } from '../types/password-policy' import { DEFAULT_PASSWORD_POLICY } from '../types/password-policy' /** * Validates a password against the provided policy */ export function validatePassword(password: string, policy: PasswordPolicy = {}): PasswordValidationResult { const errors: string[] = [] const mergedPolicy = { ...DEFAULT_PASSWORD_POLICY, ...policy } // Check minimum length if (password.length < mergedPolicy.minLength) { errors.push(`Password must be at least ${mergedPolicy.minLength} characters`) } // Check uppercase requirement if (mergedPolicy.requireUppercase && !/[A-Z]/.test(password)) { errors.push('Password must contain at least one uppercase letter') } // Check lowercase requirement if (mergedPolicy.requireLowercase && !/[a-z]/.test(password)) { errors.push('Password must contain at least one lowercase letter') } // Check number requirement if (mergedPolicy.requireNumbers && !/\d/.test(password)) { errors.push('Password must contain at least one number') } // Check special character requirement if (mergedPolicy.requireSpecialChars) { // Escape special regex characters within a character class // We need to escape: \ ] ^ - const escapedChars = mergedPolicy.specialChars .replace(/\\/g, '\\\\') // Escape backslash first .replace(/\]/g, '\\]') // Escape closing bracket .replace(/\^/g, '\\^') // Escape caret .replace(/-/g, '\\-') // Escape hyphen const specialCharsRegex = new RegExp(`[${escapedChars}]`) if (!specialCharsRegex.test(password)) { errors.push('Password must contain at least one special character') } } // Run custom validator if provided if (policy.customValidator) { const customResult = policy.customValidator(password) if (customResult !== true) { errors.push(typeof customResult === 'string' ? customResult : 'Password does not meet custom requirements') } } return { isValid: errors.length === 0, errors, } } /** * Generates help text based on the password policy */ export function generatePasswordHelpText(policy: PasswordPolicy = {}): string { // If custom help text is provided, use it if (policy.helpText) { return policy.helpText } const mergedPolicy = { ...DEFAULT_PASSWORD_POLICY, ...policy } const requirements: string[] = [] // Add length requirement requirements.push(`at least ${mergedPolicy.minLength} characters`) // Build character requirements const charRequirements: string[] = [] if (mergedPolicy.requireUppercase) charRequirements.push('uppercase') if (mergedPolicy.requireLowercase) charRequirements.push('lowercase') if (mergedPolicy.requireNumbers) charRequirements.push('numbers') if (mergedPolicy.requireSpecialChars) charRequirements.push('special characters') if (charRequirements.length > 0) { requirements.push(charRequirements.join(', ')) } return `Must be ${requirements.join(' with ')}` } /** * Creates a Valibot schema for password validation based on the policy */ export async function createPasswordSchema(policy: PasswordPolicy = {}) { // Import valibot dynamically to avoid issues if not installed const v = await import('valibot') const mergedPolicy = { ...DEFAULT_PASSWORD_POLICY, ...policy } const pipes: any[] = [ v.string(), v.minLength(mergedPolicy.minLength, `Password must be at least ${mergedPolicy.minLength} characters`), ] if (mergedPolicy.requireUppercase) { pipes.push(v.regex(/[A-Z]/, 'Password must contain at least one uppercase letter')) } if (mergedPolicy.requireLowercase) { pipes.push(v.regex(/[a-z]/, 'Password must contain at least one lowercase letter')) } if (mergedPolicy.requireNumbers) { pipes.push(v.regex(/\d/, 'Password must contain at least one number')) } if (mergedPolicy.requireSpecialChars) { // Escape special regex characters within a character class const escapedChars = mergedPolicy.specialChars .replace(/\\/g, '\\\\') // Escape backslash first .replace(/\]/g, '\\]') // Escape closing bracket .replace(/\^/g, '\\^') // Escape caret .replace(/-/g, '\\-') // Escape hyphen const specialCharsRegex = new RegExp(`[${escapedChars}]`) pipes.push(v.regex(specialCharsRegex, 'Password must contain at least one special character')) } if (policy.customValidator) { pipes.push(v.custom((value: string) => { const result = policy.customValidator!(value) return result === true }, (value: string) => { const result = policy.customValidator!(value) return typeof result === 'string' ? result : 'Password does not meet custom requirements' })) } return v.pipe(...pipes) }