Releases: fells-code/seamless-auth-server
@seamless-auth/express v0.0.2
Full Changelog: core-v0.1.0...express-v0.0.2
@seamless-auth/core v0.1.1
Full Changelog: core-v0.1.0...core-v0.1.1
@seamless-auth/core v0.1.0
This is the first public release of @seamless-auth/core, the framework-agnostic authentication engine that powers the Seamless Auth ecosystem.
What is this release?
@seamless-auth/core provides the security-critical authentication logic used by Seamless Auth adapters (Express today, more frameworks coming). It is designed to be:
- Framework-agnostic
- Explicit and auditable
- Stateless and cookie-first
- Safe by default
This package intentionally contains no HTTP framework code, no environment variable access, and no implicit side effects. All trust boundaries and inputs are explicit.
Key Capabilities
- Cookie validation and rotation
- Pre-auth → authenticated state transitions
- Refresh-token–based session recovery
- Short-lived service token generation (API ↔ Auth Server)
- Deterministic results for adapter consumption
All functions return descriptive results instead of mutating requests or responses.
Who should use this?
- Adapter authors (Express, Fastify, Next.js, etc.)
- Teams building custom runtimes
- Security reviewers auditing authentication behavior
- Anyone who wants transparent, self-hostable auth primitives
If you are using Express, you likely want the adapter instead: @seamless-auth/express
Stability & Compatibility
- Node.js ≥ 18
- Native ESM
- Fully tested against compiled output
- No runtime dependencies on web frameworks
License
This package is released under AGPL-3.0-only to ensure transparency of security-critical logic while supporting a sustainable managed service.
This release establishes the foundation for all Seamless Auth adapters and future features.