From 7e4d0020c8639f70ec9d2f5b78d673cffa52cb80 Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 11:37:45 -0400
Subject: [PATCH 01/12] feat: catch JWK multiple public key match

---
 src/index.ts | 26 ++++++++++++++++++++++++--
 1 file changed, 24 insertions(+), 2 deletions(-)

diff --git a/src/index.ts b/src/index.ts
index 0e70509..136f30a 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -5,7 +5,8 @@ import {
     jwtVerify,
     type JWTPayload,
     type JWSHeaderParameters,
-    type KeyLike
+    type KeyLike,
+    errors,
 } from 'jose'
 
 import { Type as t } from '@sinclair/typebox'
@@ -158,7 +159,28 @@ JWTOption<Name, Schema>) => {
             if (!jwt) return false
 
             try {
-                const data: any = (await jwtVerify(jwt, key)).payload
+                const data: any = (await jwtVerify(jwt, key)
+                    .catch(async (error) => {
+                        if (error?.code === 'ERR_JWKS_MULTIPLE_MATCHING_KEYS') {
+                            for await (const publicKey of error) {
+                                try {
+                                    return await jwtVerify(jwt, publicKey)
+                                }
+                                catch (innerError) {
+                                    if (innerError?.code === 'ERR_JWS_SIGNATURE_VERIFICATION_FAILED') {
+                                        continue;
+                                    }
+
+                                    throw innerError
+                                }
+                            }
+
+                            throw new errors.JWSSignatureVerificationFailed()
+                        }
+
+                        throw error
+                    })
+                ).payload
 
                 if (validator && !validator!.Check(data))
                     throw new ValidationError('JWT', validator, data)

From 849d23477edbc9afeab1e7cd9b2168df501e457e Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 11:39:43 -0400
Subject: [PATCH 02/12] feat: expose JWTVerifyGetKey type for secret parameter

---
 src/index.ts | 41 +++++++++++++++++++++--------------------
 1 file changed, 21 insertions(+), 20 deletions(-)

diff --git a/src/index.ts b/src/index.ts
index 136f30a..7944232 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -7,6 +7,7 @@ import {
     type JWSHeaderParameters,
     type KeyLike,
     errors,
+    type JWTVerifyGetKey,
 } from 'jose'
 
 import { Type as t } from '@sinclair/typebox'
@@ -31,7 +32,7 @@ export interface JWTOption<
     Name extends string | undefined = 'jwt',
     Schema extends TSchema | undefined = undefined
 > extends JWSHeaderParameters,
-        Omit<JWTPayload, 'nbf' | 'exp'> {
+    Omit<JWTPayload, 'nbf' | 'exp'> {
     /**
      * Name to decorate method as
      *
@@ -54,7 +55,7 @@ export interface JWTOption<
     /**
      * JWT Secret
      */
-    secret: string | Uint8Array | KeyLike
+    secret: string | Uint8Array | KeyLike | JWTVerifyGetKey
     /**
      * Type strict validation for JWT payload
      */
@@ -91,7 +92,7 @@ export const jwt = <
     exp,
     ...payload
 }: // End JWT Payload
-JWTOption<Name, Schema>) => {
+    JWTOption<Name, Schema>) => {
     if (!secret) throw new Error("Secret can't be empty")
 
     const key =
@@ -99,22 +100,22 @@ JWTOption<Name, Schema>) => {
 
     const validator = schema
         ? getSchemaValidator(
-              t.Intersect([
-                  schema,
-                  t.Object({
-                      iss: t.Optional(t.String()),
-                      sub: t.Optional(t.String()),
-                      aud: t.Optional(
-                          t.Union([t.String(), t.Array(t.String())])
-                      ),
-                      jti: t.Optional(t.String()),
-                      nbf: t.Optional(t.Union([t.String(), t.Number()])),
-                      exp: t.Optional(t.Union([t.String(), t.Number()])),
-                      iat: t.Optional(t.String())
-                  })
-              ]),
-              {}
-          )
+            t.Intersect([
+                schema,
+                t.Object({
+                    iss: t.Optional(t.String()),
+                    sub: t.Optional(t.String()),
+                    aud: t.Optional(
+                        t.Union([t.String(), t.Array(t.String())])
+                    ),
+                    jti: t.Optional(t.String()),
+                    nbf: t.Optional(t.Union([t.String(), t.Number()])),
+                    exp: t.Optional(t.Union([t.String(), t.Number()])),
+                    iat: t.Optional(t.String())
+                })
+            ]),
+            {}
+        )
         : undefined
 
     return new Elysia({
@@ -153,7 +154,7 @@ JWTOption<Name, Schema>) => {
             jwt?: string
         ): Promise<
             | (UnwrapSchema<Schema, Record<string, string | number>> &
-                  JWTPayloadSpec)
+                JWTPayloadSpec)
             | false
         > => {
             if (!jwt) return false

From 6d24d0cec0d9ed8822b8dba72961a61a8e74a93f Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 13:01:55 -0400
Subject: [PATCH 03/12] fix: jwk types correction

---
 src/index.ts | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

diff --git a/src/index.ts b/src/index.ts
index 7944232..ff1c063 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -148,6 +148,10 @@ export const jwt = <
             if (nbf) jwt = jwt.setNotBefore(nbf)
             if (exp) jwt = jwt.setExpirationTime(exp)
 
+            if (!('type' in key) && !(key instanceof Uint8Array)) {
+                throw new TypeError('Cannot use that secret to sign, likely only verify.');
+            }
+
             return jwt.sign(key)
         },
         verify: async (
@@ -160,15 +164,17 @@ export const jwt = <
             if (!jwt) return false
 
             try {
-                const data: any = (await jwtVerify(jwt, key)
+                // note: this is to satisfy typescript.
+                const verification = typeof key === 'function' ? jwtVerify(jwt, key) : jwtVerify(jwt, key);
+                const data: any = (await verification
                     .catch(async (error) => {
                         if (error?.code === 'ERR_JWKS_MULTIPLE_MATCHING_KEYS') {
                             for await (const publicKey of error) {
                                 try {
                                     return await jwtVerify(jwt, publicKey)
                                 }
-                                catch (innerError) {
-                                    if (innerError?.code === 'ERR_JWS_SIGNATURE_VERIFICATION_FAILED') {
+                                catch (innerError: any) {
+                                    if ('code' in innerError && innerError?.code === 'ERR_JWS_SIGNATURE_VERIFICATION_FAILED') {
                                         continue;
                                     }
 

From 5c46859b3fcf28cd3984918c0e8b499ec75f18f3 Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 13:02:29 -0400
Subject: [PATCH 04/12] feat: build on install if no dist is found (e.g.
 building from source)

---
 package.json | 1 +
 1 file changed, 1 insertion(+)

diff --git a/package.json b/package.json
index d4e53f1..e7d0acc 100644
--- a/package.json
+++ b/package.json
@@ -32,6 +32,7 @@
   "scripts": {
     "dev": "bun run --hot example/index.ts",
     "test": "bun test && npm run test:node",
+    "install": "[ -d dist ] || npm run build",
     "test:node": "npm install --prefix ./test/node/cjs/ && npm install --prefix ./test/node/esm/ && node ./test/node/cjs/index.js && node ./test/node/esm/index.js",
     "build": "rimraf dist && tsc --project tsconfig.esm.json && tsc --project tsconfig.cjs.json",
     "release": "npm run build && npm run test && npm publish --access public"

From c0fec89459d70debae09f8cedd60dd7d792632cb Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 13:12:29 -0400
Subject: [PATCH 05/12] fix: update postinstall script

---
 package.json | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/package.json b/package.json
index e7d0acc..a07bc09 100644
--- a/package.json
+++ b/package.json
@@ -28,11 +28,12 @@
     "auth",
     "authentication"
   ],
+  "packageManager": "pnpm@8.6.0",
   "license": "MIT",
   "scripts": {
     "dev": "bun run --hot example/index.ts",
     "test": "bun test && npm run test:node",
-    "install": "[ -d dist ] || npm run build",
+    "postinstall": "if [ ! -d dist ] ; then npm install --dev --ignore-scripts && npm run build; fi;",
     "test:node": "npm install --prefix ./test/node/cjs/ && npm install --prefix ./test/node/esm/ && node ./test/node/cjs/index.js && node ./test/node/esm/index.js",
     "build": "rimraf dist && tsc --project tsconfig.esm.json && tsc --project tsconfig.cjs.json",
     "release": "npm run build && npm run test && npm publish --access public"

From 80cf0efc29e4e1523d66d269e13d89155be34e98 Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 13:33:25 -0400
Subject: [PATCH 06/12] fix: general type export(?)

---
 src/index.ts | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/src/index.ts b/src/index.ts
index ff1c063..48474f1 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -97,7 +97,8 @@ export const jwt = <
 
     const key =
         typeof secret === 'string' ? new TextEncoder().encode(secret) : secret
-
+    // note: this is to satisfy typescript.
+    const verifier = typeof key === 'function' ? (jwt: string) => jwtVerify(jwt, key) : (jwt: string) => jwtVerify(jwt, key);
     const validator = schema
         ? getSchemaValidator(
             t.Intersect([
@@ -164,9 +165,7 @@ export const jwt = <
             if (!jwt) return false
 
             try {
-                // note: this is to satisfy typescript.
-                const verification = typeof key === 'function' ? jwtVerify(jwt, key) : jwtVerify(jwt, key);
-                const data: any = (await verification
+                const data: any = (await verifier(jwt)
                     .catch(async (error) => {
                         if (error?.code === 'ERR_JWKS_MULTIPLE_MATCHING_KEYS') {
                             for await (const publicKey of error) {

From 8cf23cc5135ab7cbf87210428ccf28c9723691da Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 13:46:26 -0400
Subject: [PATCH 07/12] docs: update comment location

---
 src/index.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/index.ts b/src/index.ts
index 48474f1..79d0e2f 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -97,7 +97,6 @@ export const jwt = <
 
     const key =
         typeof secret === 'string' ? new TextEncoder().encode(secret) : secret
-    // note: this is to satisfy typescript.
     const verifier = typeof key === 'function' ? (jwt: string) => jwtVerify(jwt, key) : (jwt: string) => jwtVerify(jwt, key);
     const validator = schema
         ? getSchemaValidator(
@@ -165,6 +164,7 @@ export const jwt = <
             if (!jwt) return false
 
             try {
+                // note: this is to satisfy typescript.
                 const data: any = (await verifier(jwt)
                     .catch(async (error) => {
                         if (error?.code === 'ERR_JWKS_MULTIPLE_MATCHING_KEYS') {

From e84f943da8fda72992a892f77a25fbca2e01f41c Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 14:19:29 -0400
Subject: [PATCH 08/12] feat: pass through options on verify call, refactor
 types

---
 src/index.ts | 23 +++++++++++++++--------
 1 file changed, 15 insertions(+), 8 deletions(-)

diff --git a/src/index.ts b/src/index.ts
index 79d0e2f..4e6bbea 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -8,6 +8,8 @@ import {
     type KeyLike,
     errors,
     type JWTVerifyGetKey,
+    type JWTVerifyOptions,
+    type JWTVerifyResult,
 } from 'jose'
 
 import { Type as t } from '@sinclair/typebox'
@@ -97,7 +99,11 @@ export const jwt = <
 
     const key =
         typeof secret === 'string' ? new TextEncoder().encode(secret) : secret
-    const verifier = typeof key === 'function' ? (jwt: string) => jwtVerify(jwt, key) : (jwt: string) => jwtVerify(jwt, key);
+    const verifier: {
+        (jwt: string, options?: JWTVerifyOptions): Promise<JWTVerifyResult>
+    } = typeof key === 'function'
+        ? (jwt, options) => jwtVerify(jwt, key, options)
+        : (jwt, options) => jwtVerify(jwt, key, options);
     const validator = schema
         ? getSchemaValidator(
             t.Intersect([
@@ -135,6 +141,10 @@ export const jwt = <
             morePayload: UnwrapSchema<Schema, Record<string, string | number>> &
                 JWTPayloadSpec
         ) => {
+            if (typeof key === 'function') {
+                throw new TypeError('Cannot use that secret to sign, likely only verify.');
+            }
+
             let jwt = new SignJWT({
                 ...payload,
                 ...morePayload,
@@ -148,14 +158,11 @@ export const jwt = <
             if (nbf) jwt = jwt.setNotBefore(nbf)
             if (exp) jwt = jwt.setExpirationTime(exp)
 
-            if (!('type' in key) && !(key instanceof Uint8Array)) {
-                throw new TypeError('Cannot use that secret to sign, likely only verify.');
-            }
-
             return jwt.sign(key)
         },
         verify: async (
-            jwt?: string
+            jwt?: string,
+            options?: JWTVerifyOptions,
         ): Promise<
             | (UnwrapSchema<Schema, Record<string, string | number>> &
                 JWTPayloadSpec)
@@ -165,12 +172,12 @@ export const jwt = <
 
             try {
                 // note: this is to satisfy typescript.
-                const data: any = (await verifier(jwt)
+                const data: any = (await verifier(jwt, options)
                     .catch(async (error) => {
                         if (error?.code === 'ERR_JWKS_MULTIPLE_MATCHING_KEYS') {
                             for await (const publicKey of error) {
                                 try {
-                                    return await jwtVerify(jwt, publicKey)
+                                    return await jwtVerify(jwt, publicKey, options)
                                 }
                                 catch (innerError: any) {
                                     if ('code' in innerError && innerError?.code === 'ERR_JWS_SIGNATURE_VERIFICATION_FAILED') {

From 0f1465922b71f22614fba8698a2e390cba627f12 Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 14:27:58 -0400
Subject: [PATCH 09/12] fix: move things around to try and satisfy typiness

---
 src/index.ts | 17 +++++++++++------
 1 file changed, 11 insertions(+), 6 deletions(-)

diff --git a/src/index.ts b/src/index.ts
index 4e6bbea..773c46b 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -78,6 +78,15 @@ export interface JWTOption<
     exp?: string | number
 }
 
+const verifier = (key: Uint8Array | KeyLike | JWTVerifyGetKey): {
+    (jwt: string, options?: JWTVerifyOptions): Promise<JWTVerifyResult>
+} => {
+    return typeof key === 'function'
+        ? (jwt, options) => jwtVerify<any>(jwt, key, options)
+        : (jwt, options) => jwtVerify(jwt, key, options)
+    ;
+}
+
 export const jwt = <
     const Name extends string = 'jwt',
     const Schema extends TSchema | undefined = undefined
@@ -99,11 +108,7 @@ export const jwt = <
 
     const key =
         typeof secret === 'string' ? new TextEncoder().encode(secret) : secret
-    const verifier: {
-        (jwt: string, options?: JWTVerifyOptions): Promise<JWTVerifyResult>
-    } = typeof key === 'function'
-        ? (jwt, options) => jwtVerify(jwt, key, options)
-        : (jwt, options) => jwtVerify(jwt, key, options);
+    const verifyKey = verifier(key);
     const validator = schema
         ? getSchemaValidator(
             t.Intersect([
@@ -172,7 +177,7 @@ export const jwt = <
 
             try {
                 // note: this is to satisfy typescript.
-                const data: any = (await verifier(jwt, options)
+                const data: any = (await verifyKey(jwt, options)
                     .catch(async (error) => {
                         if (error?.code === 'ERR_JWKS_MULTIPLE_MATCHING_KEYS') {
                             for await (const publicKey of error) {

From 63c37e1185538ede920765e91b74882db6fa24dd Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 14:53:37 -0400
Subject: [PATCH 10/12] feat: distilled

---
 src/index.ts | 35 ++++++++++++++++++-----------------
 1 file changed, 18 insertions(+), 17 deletions(-)

diff --git a/src/index.ts b/src/index.ts
index 773c46b..8bbc719 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -84,7 +84,7 @@ const verifier = (key: Uint8Array | KeyLike | JWTVerifyGetKey): {
     return typeof key === 'function'
         ? (jwt, options) => jwtVerify<any>(jwt, key, options)
         : (jwt, options) => jwtVerify(jwt, key, options)
-    ;
+        ;
 }
 
 export const jwt = <
@@ -177,27 +177,28 @@ export const jwt = <
 
             try {
                 // note: this is to satisfy typescript.
-                const data: any = (await verifyKey(jwt, options)
-                    .catch(async (error) => {
-                        if (error?.code === 'ERR_JWKS_MULTIPLE_MATCHING_KEYS') {
-                            for await (const publicKey of error) {
-                                try {
-                                    return await jwtVerify(jwt, publicKey, options)
-                                }
-                                catch (innerError: any) {
-                                    if ('code' in innerError && innerError?.code === 'ERR_JWS_SIGNATURE_VERIFICATION_FAILED') {
-                                        continue;
+                const data: any = (
+                    await (verifyKey(jwt, options)
+                        .catch(async (error) => {
+                            if (error?.code === 'ERR_JWKS_MULTIPLE_MATCHING_KEYS') {
+                                for await (const publicKey of error) {
+                                    try {
+                                        return await jwtVerify(jwt, publicKey, options)
                                     }
+                                    catch (innerError: any) {
+                                        if ('code' in innerError && innerError?.code === 'ERR_JWS_SIGNATURE_VERIFICATION_FAILED') {
+                                            continue;
+                                        }
 
-                                    throw innerError
+                                        throw innerError
+                                    }
                                 }
-                            }
 
-                            throw new errors.JWSSignatureVerificationFailed()
-                        }
+                                throw new errors.JWSSignatureVerificationFailed()
+                            }
 
-                        throw error
-                    })
+                            throw error
+                        }))
                 ).payload
 
                 if (validator && !validator!.Check(data))

From bf9bad8667caa5daf25b3bd613b3d66f5a54363c Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 15:01:01 -0400
Subject: [PATCH 11/12] refactor: modify inline app

---
 bun.lockb    | Bin 60265 -> 59847 bytes
 package.json |   4 ++--
 src/index.ts |  30 ++++++++++++++++--------------
 3 files changed, 18 insertions(+), 16 deletions(-)

diff --git a/bun.lockb b/bun.lockb
index c875dfc2a831efbd53d55fcd64601a9666128483..08be1dcb6b4f9828e5f6f3e0d423ebb9dda72922 100755
GIT binary patch
delta 5151
zcmai23v?7!n!Z&@lde3-g8*IWgmeNVc1U;Vbdrunx+1bVj)<Tz!_%Ek(jkSNXLrEJ
z8k)1XgSd_|zq>LJ1c#TM5Hx9&M*x`-1%z2gR8SOojUE$0U`N<-IE?$<sxH>EXXk7m
zQvdz_|G)qJUv+O?22aKv{xI$Zr~SILr*z|UH?|ZXZrQb}xHnLoS+)2Nr;mSfeeTac
z`TC!~dCN1%wBP#GKhL#B*6BchrZ5&>)ExA4bZGVJ(aTN<j3t5Ds5YrBzF^QHGA8{9
zABCLb@;Js)L05qe2R#s*=MM(drVwM_m>5e0|9p%#4%6|e7|u>$EDiF2e{mCEJOdc|
z%feS;ir<6EP^k0!TO4YT9l=Dt;Qw}@7T)lM_CcNu`V#1P&_zK<hp#cfd~FL`d~HGh
zGvISa)u3Zxpt*+4K$Lu5C-^*IbzxI;n|~f-?O^Z-xt1>wWJ_U{<3%yWdbO#}(cZ$m
z$Q_^Pj?orJpt;r;g0}&+Q4KLSR^#%yn8zbMM1nY4Xd+oGsd*0!E~^jtLLq-0dk{K2
zIDfD`q+(5fu(jRa*1>M3>rVQEEp2{3W0lYw0loGN-6vmda~n@zG59?AE(p1=787-g
zW9FoQ&6ioypw>1(O%3{=fE5-uQeW;QDDQw4U#P+HxWA*e!54TO^0lM%Ts8QD4!F4R
zd0=j*X0)!~M|p9%%c?DmWrAA(ngx0zo-rtdzXIg}*ZYE@R#<EEw+Gew4)#}+lRJM5
z%G}w}R^5vMV6J}z^TvSof<hFYk<A$Xg*O57N>R+NlB3yK7ItI64PB1WbD%t&rLe-Y
z@FXVi7Mc&r4f_KfLDk3D)m&Zg94KG-FeumC8{^kDH$Sc-PZ3}gAl!o>xZIo17+7Hu
z)WRmPa25vR!0?aN9SQmy7yH{7GhUhwUm&0cL+mK2@wv-BhbnjL>G66z$3Qu*Y4g?k
zgN#is(D^Gtd8eKR<#MC(>eM!^b*WJ2e*k;DDi`t?vw=PfH#t3X2X~K!YwdcNGeFTV
zzVJZ^kfLxHihSbIBHiu9z&ydXfcb*=OwegP_&h&G-p+x~v5}vnz`Wr5KzZJyEvB#I
z1%Z}_6xx^~Q6y0jlLQ({^a^vyo}>uBA{Eaw6iHIV=^_m!d4-i^PgaDtNljLyo7ija
zf*mtmOY(?Q;%F$@E36@ViXwfEZN>|cK-V%oVqrXWr+B67CdTdtlaVXgBe{m@Xc%1s
zS`tGhj)W*hhAU!m0u2rK3L&zmD#B(`@jOS7R7K1-(@?5cs3&`xB6XP=yH8uHHPs_r
zphy}NBpOQdN{z^lz92UmAvIl*2Ejwgxo6<1G?=cKHXxgobUC?7I7MoPB3Y9dtAI{C
zwPtvPc{G@zm|g<UOOCWE>0^w_AT^OI$s<YVXr2Utu)KJ0G7XLJ3M<H-sYq`@#FH?L
zTqz#u77#az2$7NpQfMgCEBz96&{e>c-T|sKRHR!#d_o*uOZP}#v>4Z98u}-op8)B}
z`wt)<XPlPUMC?r5KcEzk=uM@eQC_JNOg=#iTY490qK4qK=?0%bj+82?2<^fh5P3zV
zni#^I;T~x%5TApjxGK#6+#C3Y;*G#tr+bQwh!3Pwk?fV8k1<6piSJNERzy<<4ar{d
zo(w9=@(P`#W+}pPiexFGeFP1GHJ|KOMcRUGhvzh&uE`$LS)l23IkQSC!S==7!>XAc
zVIkSG73nwN6@w>IUm7w9#QjR(i%P}VFH1EUFTi8B5zqAtK)h`bD$qrs$v~QAY5b_$
z>%htaAZ{gITj5opDL@H4*QQHcQ}b;c-YmYd?sGHHWZqHI07kqv0=d#W!hcaDSCMAo
zb>|g|Cs(RRS_z~l9oaJ-1e#8c)G8?rd)Rzv!9&zP0Q9hK2N@p#QZ&?>>=9G4Xi=V5
zs>a4#p)pZCVKEKnDbgwMs&7v#z&@?NE7wMOgaAeI6{!cjS^6xPV%bzQ7H>{AV>7@M
zwH`W<t-Zg029w(Y6RCa#ThlZkqzp;g2*hPTDB1TMX=%B0jGkD%?^Xcu!a^(EBOD-g
zydouFi+%(=^i`@SJp@z^Bw#P&zZ8_GkZeh2=@umSLXu1_*&|ikjDF^2UkNmq&(hlQ
z0uV2zwwH+G@~EiLE6&cNMTK5rEkz0yQ)513GpV<*%Je&o?$bsII20b!My(iCQ!h$z
z03%)~6uZzP{U;Fj9xq*{$5cEH+16sL!HDxEt?9aecmzq*H?q<Uz<WpUtI;??xH<Gf
zYNZ)K&qZIBM|vKJw+Wgo-y?k#lOfZ14~G}%)3g^_nhL}<6SP?W9cT)W7OQj-h}(n=
zO`U^-hqt6jYutH2yv^VW8n+ARF3tOsF)gjlOqn=yex_w%(d|)^J(eS(h3rm6=pogq
zn6804ookBs6w#2=EBun|C5mu_)DlG;Hi5cJyy8zM&`=3B9~?N`5$s*EN4QGrM8#ys
zOZyWo$*maitT5_BVYdM3ea;K}9Z;1fYqgY6T2g%UPp&`3N6)#wj*lL!`f_~r<dQ41
z=ARgtUOrYG96#!Z?!;dlIM#QP`u8_pNzc35Qt{~NGq&w}E5F;fbp4Gn%bErnzi6NG
zeRTTY?pH_5JpXC@`skOw4^!#8%sZ&E&1SwIZO1=(a3t<T)5WJ5pT}A8u_JSNs9N9>
z3WUt&c{n$)^@gLbbT;VR>22od)%KZ!*#<K>X}G0-)huOThvA2IHYhevK4*KJW~pnb
z+1!WL(vIX;I(Lg^jM#KOSxB-(*L0rANxZraEc|wN(d%7z)7kYVy3}<j@#`*~J$nP~
zT|aH)^FS})Z#DjYjX%QQi_x5y-D2X(4H)BBwh5XALQ{14#-6yuhD|#6z5#k<bHSY)
z7#|P!ZoK%HFD8BZbegaLTpmh2DEGWz!)L#^FzwM#%)(<6oo?qu#uiiWX4x8s97kh#
zb;;c43f`D>C*-9Qoi1k?dzQ{`meDphH<ySmHx+NG5Dro8mWQwd^lg!aqjYSGTR1^K
zY>_jKPqC|qo@(hjb^Jq7$QG%1t0l2Q)W2HG<7nDei?E88_Q*IcmT#4XCu!YQ*=l@l
z`a1`gw9PrcO~mrr>TDCezf~?bK2s-6Yw5^&`uBH34)0t}SDEo4dzb6MnOV!vZimF>
zgp9GTC}*22+#t`khr|>U{mZtg*%p)j75%GM`e)sG>it<zE`u_%P;8=aw^_tW6PaJF
z7aufH%c~ZANImnaTUbQ<@ocAScy`kGh+BAu=HU4fJ%{H$`dx%);WIps&}+M8e1@cU
z%jL#hEGPf`*n?939xPR%`(@nLW_@~oLPqX`PinE0awi&TLANYip(WjJ;d|=omc@(&
zdbhi@!nnXavFEzSbk_qtn1TsToEOFoE_!s?uO~0uJ{}U66RG2uJaYC}%KyHCajTs3
z*0-jvFD~DqO?5dvjOq2MrGM*jTaBw*;`;NaS0r3?YfB^Xj4h>$J??DdM)tEA$ENwx
zb{>YD$BAgXDO9?Bs^}h0;q4am%x|_Y*L#M_ddrY8wbzXs+WOvwR^x`&XdhG4{bJ3-
zqJYliOR$@iyThGr+`!hnSbgZD-LoxNqa4kPy&3gt+EFA8!wZ{*?(L#icF4j_8Ze&p
z?T%?;+(`1iHdQ!D&%P#GjqBC4lHdPUe(&u}*eXM(!QZv?)@yF7aqX&U9XF{uDYa6I
zS97M1QeKz!))<)!=Zve^3gsi~Pycx2{+K2#Ra<EO>r;ilQsniAtj3M&*}50|_MJX@
zRup*YaLBM@l-?(cqpeijXAx&)(|vuVNJ~fGI?<g&qxv~OS6O3Mu<*mZA1t|iN-oDb
zZg>n2&e2o-vemeeUHVJSnSUH%F4H2?DzKFL`eokJ$NP(<IXHsxwGfWb5B+XoFAWUH
z!eM$SD&xES3dUDyImU-*9iBS>0=*xVMKPZ??zChZ*RM#<nIj+f|HBPYsBo5QdGqGe
zn4MD+7vL~XgMD3}uiCW35}Pe*I;C`JCog>78*af*5AWrxHNPQ?4v|*9Q7XnZhY#o!
z<eyX0n+yMs+-ZG}!hc22y(#0>-1eqhc$z-L^BAS>lFN;I-K0Ms?0YY*yaCDZ=)Gjz
z^x|ii&iuo$?sp(5*CnTE!7jHzw0f5jt?sV{o734{GOi`agVngut={$a+iJdR<^Lq$
z3^{hou@JR=Vq!dwM7|ls;vCU~YU86XT>q)kKg&`1WtwoEQuoM`k+b>a+9QiI>@;<c
z#cEt7UtYY=p`I|cX(7N>#(rE7F)N>T?wK;yF!A^6qq#>FJFQ6hgxmVYeN<|```w`#
zYX?N3v)ox)ferr_t=}t`hvD*%4+O~hf#7nwjT`HxV{1A#EIOe=Qt2#rx+dbxo3u~1
z8aLE$yazWFcJ8?Z|IzQfUyoAmfE(@hD4x6xN7Ks#+5b-~YBm#J7=SzY{c!+CXeJfy
zFQ(c1CuaQsRx<LsqO$zB@Wk-Hv3;5rD;cEU?sv~o>uvLFc{WF#tq%V)U|V3TvV|J_
zO}3_%Mw{9c4B>waYz{}Ae=(l=e@QulwQXukC}=Av(6rjxn`|}hYM`#lR<BlhC)u>K
X#U1^4|D;@;hS3pcR;A!8Va<O7#=BV1

delta 5166
zcmai13v^V~x!(I^CgkLu5MWMbLYQC(kY@6jBohhDLE^Pkc`Jo*d%+1z!bn0M6To;S
z#3G1gVWB@42@oM9AS46{6L}*@ykdEX8m^X6q$ye`_@L?)?sZk~x6helySi>yXRSH^
z{{H>%{Xh5XY+u-)-Va;v7!|$m+jokZEnlejR!tt>n0WE}sdK-c_0FNs#)Nxg8;k$<
z@|9am`@OVbR;qRPHXZ2S7{;2OsP=mWTC`!qkQEJ_u_!RBe2aZG9>4!Gu>3c;CWJqd
z7>ffxH;l1ZP;Y3Q*I(&dT+i5V%#1~Xza~VJ!gbsj!o9%p=&$rHT`ZIz)%#a8Z3+qQ
z097Ec!0WBa^7&ac1`36LZ$Koh6N=`eKN{2xnhyGeKdZr0RmnVc6*ZnZzc&YbVW`ia
zRZ&@8#_nN|7?%#daM)L|xVp~!uZ-Ei5FQIDPo<xwVOD_?LW1SK#S5~Q)UZ#%7XyPK
zT9Z{-J>OFgYb$+KzIql!Y(+oEIN|9c;?fX4h!iQitQHK>S6=C<ulFusUzv30y#6Ki
zKIruNYnOQI8raSR-AJ#$rq1hS>>A_-Vw^2ex5+cVx=w_z4}9T#2|9(Xr%co#4K3{f
zTc}yK&^Lb}#C(45lbD5dB<bpw4`NJIK#iw<Vb&sV!~BJw%0=jZV6Yymg&uzvOspsb
z7W2qMbotq24@+Hf0|*l}T?9=AZGkp4o7RB}hs!<w`dZ9Z=Uw9Wl{c_fq*EAQ2Vr6C
zYoH>dWuQX78smn7J_c$9y@!tt^kHC;sWG8>{|F}LS<w_kLrk<WMW@e!3U|^li->|9
z14Idhfr^Q}l?{HMhp|nmy4-3|p|}cE$UPq7&#$gt<U^dM0wV!UGvI{i|HRH1SWSCC
zEi98Yokrt6FrtR*2Kc>IOTBfB8H=XDQ(5Wr*RvY(nNnB$5~9Ma%yiwKT2O(@>OAwk
ze#UNw_>K{J^qW9MzfpJ#e05ss-k+iKmtj7Ul{K(p7-$~M6m;cCVIHzIN_X=vFzRJR
zQ#l$4Q4_{%1MQ=Av%%8>+y*QZ-Uv~|Qj3ofx7C?CHsVtaED~M@D&lU)-JZAdgSW%K
z<-XoG$F@z~o3}l^=_i@10*&VPOc5nJuHXB3+?7={Epj4XLd}t?bdXUn(#<(3Q7SK>
zQhcAK<|tLV%PAP;=Gmk~tNaNnjaKEI*mlN1RRr}%xun|?1*6?uB_&3cS7Ik}ql;62
zl1q9!jJCwM<!xrh#)8Sn9_^BU7ee9G4>S}zjOa59#OF|RtSa?|Q!v&oTL&<fqYd+n
zE~3&nl|M(#ajMiifP!&u9z#mJDwjks_K>E~6X)X3Q*%57A}AQ|mXi=hU9FgU8kHuf
z@_O)48^S*D;^|6)YJLcHT|`%-i+LlJCaUro;6lil$dl;e5?x7D&2Hq_O)2rk^3!PL
zqt{IKD3^QyNQ8nD)JwObC^*o~Gf7EO<#MbF5sGlK$GGHnATcTYL}2bjQ!vRbJCHD4
z1WdUSsK^kJ+kwP@FzO#w6cG|+)Suvzhhqz!sLd=QxCBVJ8Ky<I8%UT36yuUUjiumV
zx15d@E(T~`%T+)kuA0r}7NC4ei7A%fMN8<HL|SDTi&7wriFNS@sMMm$PlG4yg-uX=
z3`n;Sk&y1hQ?lZg3$a!OQ__N0NzIBX?MtAb;+AeEP;#=Hr&DRN%Kg-wtV-`BQV^^#
zQmm>x3HynNrHT3#mw7eNG`gBpEWeMIumoC@Ts)Q(n<|gTp7#??O=~<N2PEtoAe72|
zKv;$_K?L56?Nvu2#x5XHF7OfPS3nbhw3+1#Kp{Pt#WYwSXCk3tD$s+P279#2OhBj@
z*mfQ*p;@<iFc#tjQAu(cS|TZ&?C~!C5;do)@^|2g)R@Q~=aRE6x;9uD<uX?QO{0{!
zV)-yyzkn1hM5+g3%bTjtgNT;_sT%S`yQCh4=Gfix4KNEeCep@J=!#vH8?l>@|8dww
zAbpMW4|ef^)SRZuGqA7E)JI{em#vgM94p4g*mN+p$VpzCwtBaKDdqwbf%qSwDL@Dr
zg7j1DTA~jKDcd2C7M9<mB?7A#T;@<cv5-n|aW9potMY#EW<UaqEY4-NVn^4Dunnye
z@T1ADxa2<q>4htj;26f(oF8Xh10-~4JBM^`7$s-8rSFH)oD4S~Pt6&sd0-l2k5NlT
zvAF`RhqP7~T64A55S$m|sRbclfR;$i0J3Me<jp{$46#2Yxy<hY6>2_3V5b*+Su3&$
zKm|ZiTAJ1Zi6YYr=_HVt56MTO{~Q_@My<&%xd7+OSoEQ+(p>UWKw?g<2;?3hF-}{%
z@>e0r0or04J3=o&&0G0-ATbVoDC1rrQG{l#R5?zTP#L3CCjgDn?0*_9A*B_T`54g8
zwK&9&G+NzgX;I>XNpYxrI+Z$9^NXWIX(Ec!jZqYIxOo;S*(zU5rP)~8qiIXFTe>rv
zg4u5QKAb^91-2>0#WzuDj%vOH-b5|TL$F|ldyHC<+DCx&$`+~J0#vN^c`QW(LV`G+
z@&iv7equ7;W{eF8tjoP^H2<ymX8QQXhD)ns{v-bM=C3cB)0(e;yQ^fL>AT^+72Tho
z7=1JS&DzSW3A?7##975F|Lkd)^@~Xz?&Z&IUzk~z-uZ{ohm@^r1FJlJaWgslKJI(Y
zSPOI*Khuk|zNtv9KDX`U+UmJiUmult>-{@xj(bWfddJ-TaHBJ#_L~=nExb^ke0{>#
zm*ySX(Yf@&yX=LFRc}u`v--%RpQKLzfu=`hQd8|P^B0(MAieHCOzR^}^mtu_`Smay
z)PdLiC7cfUqq!6~>AxgNXA|j#rJEv;Ch50;-lTwI*=u3uSt!4lK<=_HrND*dS5xS8
zZEobvZMvBUT4>twBs#lwBz?2>jmY1J9GJF)&TN}9NQCS&{6EKE81W_kcLM1xPARf!
z2io{eY=`6s-V%6zduJHE(Q1o)vR&_qK1uGj5e3Fw!niNQbN9GmxsDu19?m1}Rx)Dy
zhmZeZ%A>!F;B#{vP6v*a6l!Txtf(&ScC#US&bkq=j=LZIc{z?;M?TA=ciR*`gKoEF
zOL>fJ?S*_1J=#7Q`$B8G!fWVwyOTH2m+eZDaf7?_#`2nNA6)2@crPd0E=%N9q$?TK
z@{vUDT^628i#ik>BDK2|Zl|@o6svJd^)~)#SzT%W%M#RU+S$W&YL`-A+-}EBscA@A
zb!II3VO_2xH{ZDbj>&!GvE*m2?L&`nIG3??6ti35EtIi)veaXurMoBDPMP$}_Y18D
zXZ~gRrI`@UhcKehXQGdHTcm3yy0^Pr`U;tU*@DYe!^=*dKwbFSs2|^S8nnmBbLeOI
zx@kGS^Qn7}h{Ab%t7-dT1(%W^_9z9$6D}pKfB0!R?I=_g>UJ5AyqQ<}GZRxEc}nvo
zPZ*IzllLlEh826Ad<Sjat4K$~>CoQ1LgU@{<kA0jnaBLB6GJe-fm6hI_yvBu;x`j2
z_NAjI*MZQ9w;>JfuoV1b0pl@Rdg=@FwvRs_sSV9_xERy(6G^K&oL1w-7unJue0IQf
zr=}W#XDp5SI-EA+A@}p?=cjn$d(NU?_z7=5ji$8DNm4L|YC0{bnddv7(QAh8+n0}s
zmF{!mVYhByh1Gc2RgD^2*0Hf{s>D&5LIvANaa~TE@o?L`ar_&XkIc3}M*)f#8#wYc
zw`;WAm8jQO32o?7_)h9HzVva|6saSL9Q!Bn<@E3S6|3<oo05HIr*f`033KJ6(qQic
z^vZsx)p)Iy)!sL5d{kVK=C5YVZ2HT7MK6s(sW8rX!9A;9wm$sMTR#m+Vx}8IXwoZ_
zcq=u(GTCZ8)YdN8*nJ}S+iMaRsl!pk>WCjuq}P(kcEBRtvr^%KJcPw}V5=0gQFyli
zs48pd<<>N{>)mCaf1ngVj}sQdg6F8JTd^7sxzFyEU7a^DB46`J%Rm~nb}OQ$Pjru#
z#Uo5S5U0|Y-A?{EbskfA6^%Qn@YQq;?M+mR_99w~ug+gXrw%I89y_fMSZv0tZEwoe
zxBlzkzkDn4LPwq!w@>U88+b4>3<q^Q=GWzg*127l&}d1M$)k?~BJl}5P98<-QK4;K
zk0M>>^i)rt6xtk?(OLBWlD_My_<v%j)jblwj+VcwU}?VisuS1u^Z3@%53ec(#&dAo
z*QdMB#TP6@FkE^q84pC$?7YV=hIjlYdJ6QOCYpT6$?vCU4jJC+_FAwxT{@(2Ee=-W
z9k}6eZ?7*ccg<e|u#!>^D<K!PeImz%V^eGfAwLJsK(@tOxcrKGaAsD~r}2C%{cu>3
zjhNvAaYT{sj-;_iELP(M`qI)9S-$tob(#w>m9f7~h;-Uc?MEIQZcOoy^P`zZBLc}<
z&@+D=VLW8z>alO$n!e?@#2X77d4<^W+i2ZUrQq+61oVp|A=lwFp1N)4H#cm5;yoXF
ziW~)w+#HrcS;rNt@wC0|KD|Ao@#tsp02MDPwwmIOIZ<#W_=-XtLN6S%{gYzU=G3JB
zN!douK8ZNvxA`Ov+VK)&wElQb@@{aV5&UP13NG*`W50hZB=zns3LbX`%1?|-<#~Z!
aAO0$a?)F*f*B>UCa~$;*Pf>U6=KlkuhF!V<

diff --git a/package.json b/package.json
index a07bc09..c3b3b56 100644
--- a/package.json
+++ b/package.json
@@ -47,12 +47,12 @@
     "@types/node": "^20.1.4",
     "@typescript-eslint/eslint-plugin": "^6.6.0",
     "@typescript-eslint/parser": "^6.6.0",
-    "elysia": "1.0.2",
+    "elysia": "1.0.13",
     "eslint": "^8.40.0",
     "rimraf": "4.3",
     "typescript": "^5.1.6"
   },
   "peerDependencies": {
-    "elysia": ">= 1.0.2"
+    "elysia": ">= 1.0.13"
   }
 }
\ No newline at end of file
diff --git a/src/index.ts b/src/index.ts
index 8bbc719..768476e 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -103,7 +103,8 @@ export const jwt = <
     exp,
     ...payload
 }: // End JWT Payload
-    JWTOption<Name, Schema>) => {
+    JWTOption<Name, Schema>
+) => (app: Elysia) => {
     if (!secret) throw new Error("Secret can't be empty")
 
     const key =
@@ -129,19 +130,20 @@ export const jwt = <
         )
         : undefined
 
-    return new Elysia({
-        name: '@elysiajs/jwt',
-        seed: {
-            name,
-            secret,
-            alg,
-            crit,
-            schema,
-            nbf,
-            exp,
-            ...payload
-        }
-    }).decorate(name as Name extends string ? Name : 'jwt', {
+        // return new Elysia({
+        //     name: '@elysiajs/jwt',
+        //     seed: {
+        //         name,
+        //         secret,
+        //         alg,
+        //         crit,
+        //         schema,
+        //         nbf,
+        //         exp,
+        //         ...payload
+        //     }
+        // })
+    return app.decorate(name as Name extends string ? Name : 'jwt', {
         sign: (
             morePayload: UnwrapSchema<Schema, Record<string, string | number>> &
                 JWTPayloadSpec

From d3957f89e3df6eb4cf69d7a3f530bdcb70ff1dcc Mon Sep 17 00:00:00 2001
From: Aaron Croissette <aaron@kinetech.llc>
Date: Sat, 20 Apr 2024 15:21:54 -0400
Subject: [PATCH 12/12] fix: allow bun to install or npm

---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index c3b3b56..03cea79 100644
--- a/package.json
+++ b/package.json
@@ -33,7 +33,7 @@
   "scripts": {
     "dev": "bun run --hot example/index.ts",
     "test": "bun test && npm run test:node",
-    "postinstall": "if [ ! -d dist ] ; then npm install --dev --ignore-scripts && npm run build; fi;",
+    "postinstall": "if [ ! -d dist ] ; then bun install --dev --ignore-scripts || npm install --dev --ignore-scripts; npm run build; fi;",
     "test:node": "npm install --prefix ./test/node/cjs/ && npm install --prefix ./test/node/esm/ && node ./test/node/cjs/index.js && node ./test/node/esm/index.js",
     "build": "rimraf dist && tsc --project tsconfig.esm.json && tsc --project tsconfig.cjs.json",
     "release": "npm run build && npm run test && npm publish --access public"