openmonetis/lib/auth/api-token.ts at 2532f2d6ada82f54341932b63d0c20a90ddb352e

Files

Felipe Coutinho 2532f2d6ad feat(auth): add API token authentication for OpenSheets Companion

- Implement JWT-based authentication system for device access
  - Access tokens (7 day expiry) and refresh tokens (90 day expiry)
  - HMAC-SHA256 signing with timing-safe comparison
  - Token hashing with SHA-256 for secure storage

- Add device authentication endpoints:
  - POST /api/auth/device/token - Login with email/password, get tokens
  - POST /api/auth/device/refresh - Refresh access token
  - POST /api/auth/device/verify - Verify token validity
  - GET /api/auth/device/tokens - List user's API tokens
  - DELETE /api/auth/device/tokens/[id] - Revoke specific token

- Track token usage (last used timestamp and IP)

2026-01-23 12:11:19 +00:00

5.8 KiB

Raw Blame History

View Raw

5.8 KiB Raw Blame History

5.8 KiB

Raw Blame History