Michael Wolf
c246e0384f
Implements full auth flows with opaque tokens (not JWT) for easy revocation: - Login/logout with cookie or bearer token support - Registration with email verification - Password reset with one-time tokens - scrypt password hashing (no external deps) New files in express/auth/: - token.ts: 256-bit token generation, SHA-256 hashing - password.ts: scrypt hashing with timing-safe verification - types.ts: Session schemas, token types, input validation - store.ts: AuthStore interface + InMemoryAuthStore - service.ts: AuthService with all auth operations - routes.ts: 6 auth endpoints Modified: - types.ts: Added user field to Call, requireAuth/requirePermission helpers - app.ts: JSON body parsing, populates call.user, handles auth errors - services.ts: Added services.auth - routes.ts: Includes auth routes 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
43 lines
685 B
TypeScript
43 lines
685 B
TypeScript
// services.ts
|
|
|
|
import { AuthService, InMemoryAuthStore } from "./auth";
|
|
import { config } from "./config";
|
|
import { getLogs, log } from "./logging";
|
|
|
|
//const database = Client({
|
|
|
|
//})
|
|
|
|
const database = {};
|
|
|
|
const logging = {
|
|
log,
|
|
getLogs,
|
|
};
|
|
|
|
const random = {
|
|
randomNumber: () => {
|
|
return Math.random();
|
|
},
|
|
};
|
|
|
|
const misc = {
|
|
sleep: (ms: number) => {
|
|
return new Promise((resolve) => setTimeout(resolve, ms));
|
|
},
|
|
};
|
|
|
|
// Initialize auth with in-memory store
|
|
const authStore = new InMemoryAuthStore();
|
|
const auth = new AuthService(authStore);
|
|
|
|
const services = {
|
|
database,
|
|
logging,
|
|
misc,
|
|
random,
|
|
auth,
|
|
};
|
|
|
|
export { services };
|