Authentication + authorization for the Moost / atscript ecosystem.
@aooth/* is a TypeScript monorepo covering the full auth stack: user credentials, password + MFA, sessions and tokens, RBAC, DB-backed storage, and Moost framework integration.
| Package | Purpose |
|---|---|
@aooth/user |
User credential primitives — password hashing, MFA, lockout, policy engine |
@aooth/auth |
Session and token layer — JWT / encapsulated stores, refresh rotation, denylist |
@aooth/arbac-core |
Zero-dependency RBAC engine — role evaluation, scope merge |
@aooth/arbac |
Batteries-included RBAC — builder API, privilege factories, scope utilities |
@aooth/auth-moost |
Moost integration — AuthGuard, useAuth, REST endpoints, login/recovery/invite workflows |
@aooth/arbac-moost |
Moost RBAC integration — @ArbacResource, AsArbacDbController, atscript wiring |
- Documentation: https://aooth.moost.org
- Quick start: https://aooth.moost.org/guide/quick-start
- AI agent skill:
skills/aoothjs
MIT