// npm package
@beproduct/nestjs-auth
NestJS authentication module for BeProduct IDS (OpenID Connect)
versions
2
maintainers
1
license
MIT
first publish
2025-11-17
publisher
danielpak
tarball
134,513 B
AUTO-PUBLISHED·1 version indexed·latest published 2025-11-17
// offending code· @0.1.1· no static-pattern hits
llm: benign · 0.85→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
- @0.1.1··AUTO-PUBLISHED·publisher: danielpakheuristic 75/100static flags 0llm benign (0.85) via ollamahas-source-repoosv-flagged:MAL-2026-3433
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
// offending code· no static-pattern hits
--- install scripts --- ### prepublishOnly npm run build --- package.json (entry) --- { "name": "@beproduct/nestjs-auth", "version": "0.1.1", "description": "NestJS authentication module for BeProduct IDS (OpenID Connect)", "main": "dist/index.js", "types": "dist/index.d.ts", "files": [ "dist", "README.md", "LICENSE" ], "scripts": { "build": "tsc", "prepublishOnly": "npm run build" }, "keywords": [ "nestjs", "beproduct", "oidc", "openid-connect", "authentication", "oauth2", "jwt", "passport" ], "author": "BeProduct", "license": "MIT", "repository": { "type": "git", "url": "https://github.com/BeProduct/beproduct-org-nestjs-auth" }, "bugs": { "url": "https://github.com/BeProduct/beproduct-org-nestjs-auth/issues" }, "homepage": "https://github.com/BeProduct/beproduct-org-nestjs-auth#readme", "peerDependencies": { "@nestjs/common": "^10.0.0 || ^11.0.0", "@nestjs/config": "^3.0.0 || ^4.0.0", "@nestjs/jwt": "^10.0.0 || ^11.0.0", "@nestjs/passport": "^10.0.0 || ^11.0.0", "passport": "^0.7.0", "passport-jwt": "^4.0.0", "passport-openidconnect": "^0.1.1" }, "devDependencies": { "@nestjs/common": "^11.0.0", "@nestjs/config": "^4.0.0", --- index.js (entry) --- "use strict"; var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) { if (k2 === undefined) k2 = k; var desc = Object.getOwnPropertyDescriptor(m, k); if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) { desc = { enumerable: true, get: function() { return m[k]; } }; } Object.defineProperty(o, k2, desc); }) : (function(o, m, k, k2) { if (k2 === undefined) k2 = k; o[k2] = m[k]; })); var __exportStar = (this && this.__exportStar) || function(m, exports) { for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p); }; Object.defineProperty(exports, "__esModule", { value: true }); __exportStar(require("./module/beproduct-auth.module"), exports); __exportStar(require("./strategies/beproduct-oidc.strategy"), exports); __exportStar(require("./strategies/jwt.strategy"), exports); __exportStar(require("./decorators/current-user.decorator"), exports); __exportStar(require("./interfaces/beproduct-auth-options.interface"), exports); __exportStar(require("./interfaces/beproduct-user.interface"), exports); __exportStar(requir --- bundled output (OSV-MAL flagged — LLM scope expansion) --- --- dist/constants.d.ts (bundled) --- export declare const BEPRODUCT_AUTH_OPTIONS = "BEPRODUCT_AUTH_OPTIONS"; --- dist/constants.js (bundled) --- "use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.BEPRODUCT_AUTH_OPTIONS = void 0; exports.BEPRODUCT_AUTH_OPTIONS = 'BEPRODUCT_AUTH_OPTIONS'; //# sourceMappingURL=constants.js.map --- dist/index.d.ts (bundled) --- export * from './module/beproduct-auth.module'; export * from './strategies/beproduct-oidc.strategy'; export * from './strategies/jwt.strategy'; export * from './decorators/current-user.decorator'; export * from './interfaces/beproduct-auth-options.interface'; export * from './interfaces/beproduct-user.interface'; export * from './constants'; --- dist/index.js (bundled) --- "use strict"; var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) { if (k2 === undefined) k2 = k; var desc = Object.getOwnPropertyDescriptor(m, k); if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) { desc = { enumerable: true, get: function() { return m[k]; } }; } Object.defineProperty(o, k2, desc); }) : (function(o, m, k, k2) { if (k2 === undefined) k2 = k; o[k2] = m[k]; })); var __exportStar = (this && this.__exportStar) || function(m, exports) { for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p); }; Object.defineProperty(exports, "__esModule", { value: true }); __exportStar(require("./module/beproduct-auth.module"), exports); __exportStar(require("./strategies/beproduct-oidc.strategy"), exports); __exportStar(require("./strategies/jwt.strategy"), exports); __exportStar(require("./decorators/current-user.decorator"), exports); __exportStar(require("./interfaces/beproduct-auth-options.interface"), exports); __exportStar(require("./interfaces/beproduct-user.interface"), exports); __exportStar(require("./constants"), exports); //# sourceMappingURL=index.js.map --- dist/strategies/beproduct-oidc.strategy.d.ts (bundled) --- import { BeProductAuthOptions } from '../interfaces/beproduct-auth-options.interface'; declare const BeProductOidcStrategy_base: new (...args: any) => any; export declare class BeProductOidcStrategy extends BeProductOidcStrategy_base { private options; constructor(options: BeProductAuthOptions); validate(profile: any): Promise<any>; } export {}; --- dist/strategies/beproduct-oidc.strategy.js (bundled) --- "use strict"; var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) { var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d; if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc); else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r; return c > 3 && r && Object.defineProperty(target, key, r), r; }; var __metadata = (this && this.__metadata) || function (k, v) { if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v); }; var __param = (this && this.__param) || function (paramIndex, decorator) { return function (target, key) { decorator(target, key, paramIndex); } }; Object.defineProperty(exports, "__esModule", { value: true }); exports.BeProductOidcStrategy = void 0; const common_1 = require("@nestjs/common"); const passport_1 = require("@nestjs/passport"); const passport_openidconnect_1 = require("passport-openidconnect"); const constants_1 = require("../constants"); let BeProductOidcStrategy = class BeProductOidcStrategy extends (0, passport_1.PassportStrategy)(passport_openidconnect_1.Strategy, 'beproduct-oidc') { constructor(options) { super({ issuer: options.issuer, authorizationURL: options.authorizationURL, tokenURL: options.tokenURL, userInfoURL: options.userInfoURL, clientID: options.clientID, clientSecret: options.clientSecret, callbackURL: options.callbackURL, scope: options.scope || ['openid', 'profile', 'email'], skipUserProfile: false, passReqToCallback: false, }); this.options = options; this._verify = async (issuer, profile, context, idToken, accessToken, refres --- dist/strategies/jwt.strategy.d.ts (bundled) --- import { Strategy } from 'passport-jwt'; import { BeProductAuthOptions } from '../interfaces/beproduct-auth-options.interface'; declare const BeProductJwtStrategy_base: new (...args: [opt: import("passport-jwt").StrategyOptionsWithRequest] | [opt: import("passport-jwt").StrategyOptionsWithoutRequest]) => Strategy & { validate(...args: any[]): unknown; }; export declare class BeProductJwtStrategy extends BeProductJwtStrategy_base { private options; constructor(options: BeProductAuthOptions); validate(payload: any): Promise<any>; } export {}; --- dist/strategies/jwt.strategy.js (bundled) --- "use strict"; var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) { var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d; if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc); else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r; return c > 3 && r && Object.defineProperty(target, key, r), r; }; var __metadata = (this && this.__metadata) || function (k, v) { if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v); }; var __param = (this && this.__param) || function (paramIndex, decorator) { return function (target, key) { decorator(target, key, paramIndex); } }; Object.defineProperty(exports, "__esModule", { value: true }); exports.BeProductJwtStrategy = void 0; const common_1 = require("@nestjs/common"); const passport_1 = require("@nestjs/passport"); const passport_jwt_1 = require("passport-jwt"); const constants_1 = require("../constants"); let BeProductJwtStrategy = class BeProductJwtStrategy extends (0, passport_1.PassportStrategy)(passport_jwt_1.Strategy, 'beproduct-jwt') { constructor(options) { super({ jwtFromRequest: passport_jwt_1.ExtractJwt.fromExtractors([ (request) => { const token = request?.cookies?.['authToken']; if (!token) return null; return token; }, passport_jwt_1.ExtractJwt.fromAuthHeaderAsBearerToken(), ]), ignoreExpiration: false, secretOrKey: options.jwtSecret, }); this.options = options; } async validate(payload) { if (!payload.sub || !payload.email) { throw new common_ --- dist/module/beproduct-auth.module.d.ts (bundled) --- import { DynamicModule } from '@nestjs/common'; import { BeProductAuthOptions, BeProductAuthAsyncOptions } from '../interfaces/beproduct-auth-options.interface'; export declare class BeProductAuthModule { static forRoot(options: BeProductAuthOptions): DynamicModule; static forRootAsync(options: BeProductAuthAsyncOptions): DynamicModule; private static createAsyncProviders; } --- dist/module/beproduct-auth.module.js (bundled) --- "use strict"; var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) { var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d; if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = R
