import { Env, JWTPayload, User } from '../types'; import { verifyJWT, createJWT, createRefreshToken } from '../utils/jwt'; import { StorageService } from './storage'; // Server-side iterations for second-layer hashing. // The client already does heavy PBKDF2 (600k iterations). // This second layer only needs to be non-trivial, not expensive. const SERVER_HASH_ITERATIONS = 100_000; const SERVER_HASH_PREFIX = '$s$'; const AUTH_CONTEXT_CACHE_TTL_MS = 15 * 1000; interface CachedUserEntry { user: User | null; expiresAt: number; } interface CachedDeviceEntry { device: Awaited>; expiresAt: number; } export interface VerifiedAccessContext { payload: JWTPayload; user: User; } export type RefreshAccessTokenFailureReason = | 'token_not_found_or_expired' | 'user_missing' | 'user_inactive' | 'device_missing' | 'device_session_mismatch'; export type RefreshAccessTokenResult = | { ok: true; accessToken: string; user: User; device: { identifier: string; sessionStamp: string } | null } | { ok: false; reason: RefreshAccessTokenFailureReason; userId?: string | null; deviceIdentifier?: string | null; }; export class AuthService { private storage: StorageService; private static userCache = new Map(); private static deviceCache = new Map(); constructor(private env: Env) { this.storage = new StorageService(env.DB); } static invalidateUserCache(userId: string): void { const normalizedUserId = String(userId || '').trim(); if (!normalizedUserId) return; AuthService.userCache.delete(normalizedUserId); const prefix = `${normalizedUserId}:`; for (const key of AuthService.deviceCache.keys()) { if (key.startsWith(prefix)) { AuthService.deviceCache.delete(key); } } } static invalidateDeviceCache(userId: string, deviceId: string): void { const normalizedUserId = String(userId || '').trim(); const normalizedDeviceId = String(deviceId || '').trim(); if (!normalizedUserId || !normalizedDeviceId) return; AuthService.deviceCache.delete(`${normalizedUserId}:${normalizedDeviceId}`); } private readCachedUser(userId: string): User | null | undefined { const cached = AuthService.userCache.get(userId); if (!cached) return undefined; if (cached.expiresAt <= Date.now()) { AuthService.userCache.delete(userId); return undefined; } return cached.user; } private writeCachedUser(userId: string, user: User | null): void { AuthService.userCache.set(userId, { user, expiresAt: Date.now() + AUTH_CONTEXT_CACHE_TTL_MS, }); } private async getCachedUser(userId: string): Promise { const cached = this.readCachedUser(userId); if (cached !== undefined) return cached; const user = await this.storage.getUserById(userId); this.writeCachedUser(userId, user); return user; } private async getFreshUser(userId: string): Promise { const user = await this.storage.getUserById(userId); this.writeCachedUser(userId, user); return user; } private readCachedDevice(userId: string, deviceId: string) { const cacheKey = `${userId}:${deviceId}`; const cached = AuthService.deviceCache.get(cacheKey); if (!cached) return undefined; if (cached.expiresAt <= Date.now()) { AuthService.deviceCache.delete(cacheKey); return undefined; } return cached.device; } private writeCachedDevice(userId: string, deviceId: string, device: Awaited>): void { const cacheKey = `${userId}:${deviceId}`; AuthService.deviceCache.set(cacheKey, { device, expiresAt: Date.now() + AUTH_CONTEXT_CACHE_TTL_MS, }); } private async getCachedDevice(userId: string, deviceId: string) { const cached = this.readCachedDevice(userId, deviceId); if (cached !== undefined) return cached; const device = await this.storage.getDevice(userId, deviceId); this.writeCachedDevice(userId, deviceId, device); return device; } private async getFreshDevice(userId: string, deviceId: string) { const device = await this.storage.getDevice(userId, deviceId); this.writeCachedDevice(userId, deviceId, device); return device; } // Second-layer hash: PBKDF2-SHA256(clientHash, email-salt, iterations). // Ensures database contents alone cannot be used to authenticate (pass-the-hash defense). // Result is prefixed to distinguish server-hashed credentials from invalid legacy rows. async hashPasswordServer(clientHash: string, email: string): Promise { const keyMaterial = await crypto.subtle.importKey( 'raw', new TextEncoder().encode(clientHash), 'PBKDF2', false, ['deriveBits'] ); const salt = new TextEncoder().encode(email.toLowerCase().trim()); const bits = await crypto.subtle.deriveBits( { name: 'PBKDF2', hash: 'SHA-256', salt, iterations: SERVER_HASH_ITERATIONS }, keyMaterial, 256 ); const bytes = new Uint8Array(bits); let binary = ''; for (const b of bytes) binary += String.fromCharCode(b); return SERVER_HASH_PREFIX + btoa(binary); } // Verify password: new rows use server-side hashing; legacy rows store the raw client hash. async verifyPassword(inputHash: string, storedHash: string, email: string): Promise { if (!storedHash.startsWith(SERVER_HASH_PREFIX)) { return this.constantTimeEquals(inputHash, storedHash); } const serverHash = await this.hashPasswordServer(inputHash, email); return this.constantTimeEquals(serverHash, storedHash); } private constantTimeEquals(a: string, b: string): boolean { const encA = new TextEncoder().encode(a); const encB = new TextEncoder().encode(b); if (encA.length !== encB.length) return false; let diff = 0; for (let i = 0; i < encA.length; i++) { diff |= encA[i] ^ encB[i]; } return diff === 0; } // Generate access token async generateAccessToken(user: User, device?: { identifier: string; sessionStamp: string } | null): Promise { return createJWT( { sub: user.id, email: user.email, name: user.name, sstamp: user.securityStamp, ...(device?.identifier ? { did: device.identifier, dstamp: device.sessionStamp } : {}), }, this.env.JWT_SECRET ); } // Generate refresh token async generateRefreshToken(userId: string, device?: { identifier: string; sessionStamp: string } | null): Promise { const token = createRefreshToken(); await this.storage.saveRefreshToken(token, userId, undefined, device?.identifier ?? null, device?.sessionStamp ?? null); return token; } async verifyAccessTokenWithUser(authHeader: string | null): Promise { if (!authHeader) return null; const parts = authHeader.split(' '); if (parts.length !== 2 || parts[0].toLowerCase() !== 'bearer') { return null; } const payload = await verifyJWT(parts[1], this.env.JWT_SECRET); if (!payload) return null; let user = await this.getCachedUser(payload.sub); if (!user || user.status !== 'active' || payload.sstamp !== user.securityStamp) { user = await this.getFreshUser(payload.sub); } if (!user) return null; if (user.status !== 'active') return null; if (payload.sstamp !== user.securityStamp) { return null; } if (payload.did) { let device = await this.getCachedDevice(user.id, payload.did); if (!device || !payload.dstamp || payload.dstamp !== device.sessionStamp) { device = await this.getFreshDevice(user.id, payload.did); } if (!device) return null; if (!payload.dstamp || payload.dstamp !== device.sessionStamp) return null; } return { payload, user }; } // Verify access token from Authorization header async verifyAccessToken(authHeader: string | null): Promise { const verified = await this.verifyAccessTokenWithUser(authHeader); return verified?.payload ?? null; } // Refresh access token async refreshAccessTokenDetailed(refreshToken: string): Promise { const record = await this.storage.getRefreshTokenRecord(refreshToken); if (!record?.userId) return { ok: false, reason: 'token_not_found_or_expired' }; const user = await this.storage.getUserById(record.userId); if (!user) { await this.storage.deleteRefreshToken(refreshToken); return { ok: false, reason: 'user_missing', userId: record.userId, deviceIdentifier: record.deviceIdentifier }; } if (user.status !== 'active') { await this.storage.deleteRefreshToken(refreshToken); return { ok: false, reason: 'user_inactive', userId: user.id, deviceIdentifier: record.deviceIdentifier }; } let device: { identifier: string; sessionStamp: string } | null = null; if (!record.deviceIdentifier || !record.deviceSessionStamp) { await this.storage.deleteRefreshToken(refreshToken); return { ok: false, reason: 'device_missing', userId: user.id, deviceIdentifier: record.deviceIdentifier }; } const boundDevice = await this.storage.getDevice(user.id, record.deviceIdentifier); if (!boundDevice) { await this.storage.deleteRefreshToken(refreshToken); return { ok: false, reason: 'device_missing', userId: user.id, deviceIdentifier: record.deviceIdentifier }; } if (boundDevice.sessionStamp !== record.deviceSessionStamp) { await this.storage.deleteRefreshToken(refreshToken); return { ok: false, reason: 'device_session_mismatch', userId: user.id, deviceIdentifier: record.deviceIdentifier }; } device = { identifier: boundDevice.deviceIdentifier, sessionStamp: boundDevice.sessionStamp }; const accessToken = await this.generateAccessToken(user, device); return { ok: true, accessToken, user, device }; } async refreshAccessToken( refreshToken: string ): Promise<{ accessToken: string; user: User; device: { identifier: string; sessionStamp: string } | null } | null> { const result = await this.refreshAccessTokenDetailed(refreshToken); return result.ok ? result : null; } }