@aacigroup/aaci_shared 5.3.1 → 5.3.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. package/README.md +18 -3
  2. package/dist/index.d.ts +1 -1
  3. package/dist/index.d.ts.map +1 -1
  4. package/package.json +1 -1
package/README.md CHANGED
@@ -20,8 +20,9 @@ React Context-based tracking and magic-link library for frontend and backend pro
20
20
  ## Features
21
21
 
22
22
  ### 🔐 Magic Links & Authentication
23
- - **V2 Magic Links** with built-in 2FA support (light/strict modes)
23
+ - **V2 Magic Links** with built-in 2FA and PIN security support (basic/pin_light/pin_strict/2fa_light/2fa_strict modes)
24
24
  - **Email & SMS** 2FA delivery
25
+ - **PIN-based authentication** for enhanced security
25
26
  - **Token validation** with URL pattern matching
26
27
  - **Admin tokens** for privileged access
27
28
  - Full TypeScript support with comprehensive types
@@ -689,14 +690,16 @@ function MagicLinkExample() {
689
690
  token,
690
691
  current_url: currentUrl,
691
692
  mode: 'customer' // or 'admin' for admin access
693
+ // pin: '1234' // Include PIN if security_mode requires it
692
694
  });
693
695
 
694
696
  if (result.valid) {
695
697
  console.log('Valid! User ID:', result.person_profile_id);
696
698
  console.log('Link data:', result.data); // Data stored in magic link data
699
+ console.log('Security mode:', result.security_mode); // 'basic', 'pin_light', etc.
697
700
  // Render personalized content
698
701
  } else {
699
- console.log('Invalid:', result.reason); // 'expired', 'revoked', 'url_mismatch', 'not_found'
702
+ console.log('Invalid:', result.reason); // 'expired', 'revoked', 'url_mismatch', 'not_found', 'pin_required', 'pin_invalid'
700
703
  }
701
704
  };
702
705
 
@@ -724,6 +727,7 @@ interface CreateMagicLinkParams {
724
727
  expires_at?: string; // Optional ISO timestamp
725
728
  extra_data?: Record<string, any>; // Optional – stored in magic link data
726
729
  session_data?: SessionData; // Optional – auto-populated if not provided
730
+ temp_security_mode?: SecurityMode; // Optional – temporary override for security_mode
727
731
  }
728
732
  ```
729
733
 
@@ -742,6 +746,8 @@ interface CreateMagicLinkResponse {
742
746
  url?: string; // Resolved customer URL
743
747
  admin_url?: string; // Resolved admin URL (if admin_url_pattern provided)
744
748
  expires_at?: string; // Expiration timestamp (if set)
749
+ security_mode?: SecurityMode; // Security mode applied to this magic link
750
+ pin_code?: string; // PIN code (only returned if security_mode is pin_light or pin_strict)
745
751
  message?: string;
746
752
  errors?: Array<{ field: string; message: string }>;
747
753
  }
@@ -755,6 +761,7 @@ interface ValidateMagicLinkParams {
755
761
  token: string; // The token from URL
756
762
  current_url: string; // Full URL being accessed
757
763
  mode?: 'customer' | 'admin'; // Default: 'customer'
764
+ pin?: string; // PIN code (required if security_mode is pin_light or pin_strict)
758
765
  session_data?: SessionData; // Optional – auto-populated if not provided
759
766
  }
760
767
  ```
@@ -774,11 +781,17 @@ interface ValidateMagicLinkResponse {
774
781
  magic_link_token_id?: string;
775
782
  person_profile_id?: string;
776
783
  data?: Record<string, any>; // Data stored in magic link data
784
+ security_mode?: SecurityMode; // Security mode of the magic link
777
785
  message?: string;
778
- reason?: 'expired' | 'revoked' | 'url_mismatch' | 'not_found'; // if invalid
786
+ reason?: 'expired' | 'revoked' | 'url_mismatch' | 'not_found' | 'pin_required' | 'pin_invalid'; // if invalid
779
787
  }
780
788
  ```
781
789
 
790
+ **SecurityMode Type:**
791
+ ```javascript
792
+ type SecurityMode = 'basic' | 'pin_light' | 'pin_strict' | '2fa_light' | '2fa_strict';
793
+ ```
794
+
782
795
  ### Full Page Access Example
783
796
 
784
797
  ```javascript
@@ -855,6 +868,8 @@ function ProtectedSessionPage() {
855
868
  - **Projects must NOT store tokens** - Only store `magic_link_token_id` in your database entities
856
869
  - **Tokens are URL-bound** - A token is only valid when accessed via its designated URL pattern
857
870
  - **Tokens are strong** - 32-64 character alphanumeric strings
871
+ - **PIN Security Modes** - When `security_mode` is `pin_light` or `pin_strict`, include the `pin` parameter in validation requests
872
+ - **2FA Security Modes** - When `security_mode` is `2fa_light` or `2fa_strict`, 2FA verification is required before access
858
873
  - Your backend should be the single source of truth for token storage and validation
859
874
 
860
875
  ## Non-React and Backend Usage
package/dist/index.d.ts CHANGED
@@ -8,7 +8,7 @@ export { Environment } from './Environment.js';
8
8
  export { getSessionData } from './sessionData.js';
9
9
  export { validateTrackLeadParams, validateAddress, validateTrackLeadAndAddress, safeValidateTrackLeadParams, safeValidateAddress, safeValidateTrackLeadAndAddress, validateCreateMagicLinkParams, validateValidateMagicLinkParams, safeValidateCreateMagicLinkParams, safeValidateValidateMagicLinkParams, validateCreateMagicLinkRequest, validateValidateMagicLinkRequest, safeValidateCreateMagicLinkRequest, safeValidateValidateMagicLinkRequest, validateCreateMagicLinkV2Request, safeValidateCreateMagicLinkV2Request, validateCreateMagicLink2FAV2Request, safeValidateCreateMagicLink2FAV2Request, validateValidateMagicLinkV2Request, safeValidateValidateMagicLinkV2Request, validateConfirmMagicLink2FARequest, safeValidateConfirmMagicLink2FARequest, validateSendExternalNotificationRequest, safeValidateSendExternalNotificationRequest, trackLeadParamsSchema, addressSchema, addressInputSchema, trackLeadAndAddressSchema, sessionDataSchema, createMagicLinkParamsSchema, validateMagicLinkParamsSchema, createMagicLinkRequestSchema, validateMagicLinkRequestSchema, createMagicLinkV2RequestSchema, createMagicLink2FAV2RequestSchema, validateMagicLinkV2RequestSchema, confirmMagicLink2FARequestSchema, twoFAModeSchema, twoFADeliveryMethodSchema, externalNotificationChannelSchema, sendExternalNotificationRequestSchema } from './validation.js';
10
10
  export type { Lead, AddressCapture, SessionData, TrackLeadParams, Address, AddressInput, LeadTrackerConfig, TrackingConfig, LeadTrackingResponse } from './types.js';
11
- export type { MagicLinkConfig, CreateMagicLinkParams, ValidateMagicLinkParams, CreateMagicLinkRequest, ValidateMagicLinkRequest, CreateMagicLinkResponse, ValidateMagicLinkResponse, TwoFAMode, TwoFADeliveryMethod, CreateMagicLinkV2Request, CreateMagicLinkV2Response, CreateMagicLink2FAV2Request, CreateMagicLink2FAV2Response, ValidateMagicLinkV2Mode, ValidateMagicLinkV2ErrorReason, ValidateMagicLinkV2TwoFAInput, ValidateMagicLinkV2Request, ValidateMagicLinkV2Response, ConfirmMagicLink2FARequest, ConfirmMagicLink2FAResponse, Create2FAParams, Create2FAResponse, Confirm2FAParams, Confirm2FAResponse } from './types/magicLink.js';
11
+ export type { MagicLinkConfig, CreateMagicLinkParams, ValidateMagicLinkParams, CreateMagicLinkRequest, ValidateMagicLinkRequest, CreateMagicLinkResponse, ValidateMagicLinkResponse, TwoFAMode, TwoFADeliveryMethod, SecurityMode, CreateMagicLinkV2Request, CreateMagicLinkV2Response, CreateMagicLink2FAV2Request, CreateMagicLink2FAV2Response, ValidateMagicLinkV2Mode, ValidateMagicLinkV2ErrorReason, ValidateMagicLinkV2TwoFAInput, ValidateMagicLinkV2Request, ValidateMagicLinkV2Response, ConfirmMagicLink2FARequest, ConfirmMagicLink2FAResponse, Create2FAParams, Create2FAResponse, Confirm2FAParams, Confirm2FAResponse } from './types/magicLink.js';
12
12
  export type { ExternalNotificationChannel, ExternalNotificationStatus, SendExternalNotificationRequest, SendExternalNotificationResponse } from './types/externalNotification.js';
13
13
  export type { PostHogConfig } from './PostHog.js';
14
14
  export type { GTMConfig } from './GTM.js';
package/dist/index.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,eAAO,MAAM,KAAK,YAAmD,CAAC;AAGtE,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAC/C,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAC3C,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AACjE,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AACvC,OAAO,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AAC/B,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAG/C,OAAO,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAGlD,OAAO,EACL,uBAAuB,EACvB,eAAe,EACf,2BAA2B,EAC3B,2BAA2B,EAC3B,mBAAmB,EACnB,+BAA+B,EAE/B,6BAA6B,EAC7B,+BAA+B,EAC/B,iCAAiC,EACjC,mCAAmC,EAEnC,8BAA8B,EAC9B,gCAAgC,EAChC,kCAAkC,EAClC,oCAAoC,EAEpC,gCAAgC,EAChC,oCAAoC,EACpC,mCAAmC,EACnC,uCAAuC,EACvC,kCAAkC,EAClC,sCAAsC,EACtC,kCAAkC,EAClC,sCAAsC,EAEtC,uCAAuC,EACvC,2CAA2C,EAE3C,qBAAqB,EACrB,aAAa,EACb,kBAAkB,EAClB,yBAAyB,EACzB,iBAAiB,EACjB,2BAA2B,EAC3B,6BAA6B,EAC7B,4BAA4B,EAC5B,8BAA8B,EAE9B,8BAA8B,EAC9B,iCAAiC,EACjC,gCAAgC,EAChC,gCAAgC,EAChC,eAAe,EACf,yBAAyB,EAEzB,iCAAiC,EACjC,qCAAqC,EACtC,MAAM,iBAAiB,CAAC;AAGzB,YAAY,EAEV,IAAI,EACJ,cAAc,EACd,WAAW,EAGX,eAAe,EACf,OAAO,EACP,YAAY,EAGZ,iBAAiB,EACjB,cAAc,EAGd,oBAAoB,EACrB,MAAM,YAAY,CAAC;AAGpB,YAAY,EACV,eAAe,EACf,qBAAqB,EACrB,uBAAuB,EACvB,sBAAsB,EACtB,wBAAwB,EACxB,uBAAuB,EACvB,yBAAyB,EAEzB,SAAS,EACT,mBAAmB,EACnB,wBAAwB,EACxB,yBAAyB,EACzB,2BAA2B,EAC3B,4BAA4B,EAC5B,uBAAuB,EACvB,8BAA8B,EAC9B,6BAA6B,EAC7B,0BAA0B,EAC1B,2BAA2B,EAC3B,0BAA0B,EAC1B,2BAA2B,EAE3B,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EAChB,kBAAkB,EACnB,MAAM,sBAAsB,CAAC;AAG9B,YAAY,EACV,2BAA2B,EAC3B,0BAA0B,EAC1B,+BAA+B,EAC/B,gCAAgC,EACjC,MAAM,iCAAiC,CAAC;AAEzC,YAAY,EACV,aAAa,EACd,MAAM,cAAc,CAAC;AAEtB,YAAY,EACV,SAAS,EACV,MAAM,UAAU,CAAC;AAElB,YAAY,EACV,iBAAiB,EAClB,MAAM,kBAAkB,CAAC;AAE1B,YAAY,EACV,0BAA0B,EAC3B,MAAM,2BAA2B,CAAC"}
1
+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,eAAO,MAAM,KAAK,YAAmD,CAAC;AAGtE,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAC/C,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAC3C,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AACjE,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AACvC,OAAO,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AAC/B,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAG/C,OAAO,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAGlD,OAAO,EACL,uBAAuB,EACvB,eAAe,EACf,2BAA2B,EAC3B,2BAA2B,EAC3B,mBAAmB,EACnB,+BAA+B,EAE/B,6BAA6B,EAC7B,+BAA+B,EAC/B,iCAAiC,EACjC,mCAAmC,EAEnC,8BAA8B,EAC9B,gCAAgC,EAChC,kCAAkC,EAClC,oCAAoC,EAEpC,gCAAgC,EAChC,oCAAoC,EACpC,mCAAmC,EACnC,uCAAuC,EACvC,kCAAkC,EAClC,sCAAsC,EACtC,kCAAkC,EAClC,sCAAsC,EAEtC,uCAAuC,EACvC,2CAA2C,EAE3C,qBAAqB,EACrB,aAAa,EACb,kBAAkB,EAClB,yBAAyB,EACzB,iBAAiB,EACjB,2BAA2B,EAC3B,6BAA6B,EAC7B,4BAA4B,EAC5B,8BAA8B,EAE9B,8BAA8B,EAC9B,iCAAiC,EACjC,gCAAgC,EAChC,gCAAgC,EAChC,eAAe,EACf,yBAAyB,EAEzB,iCAAiC,EACjC,qCAAqC,EACtC,MAAM,iBAAiB,CAAC;AAGzB,YAAY,EAEV,IAAI,EACJ,cAAc,EACd,WAAW,EAGX,eAAe,EACf,OAAO,EACP,YAAY,EAGZ,iBAAiB,EACjB,cAAc,EAGd,oBAAoB,EACrB,MAAM,YAAY,CAAC;AAGpB,YAAY,EACV,eAAe,EACf,qBAAqB,EACrB,uBAAuB,EACvB,sBAAsB,EACtB,wBAAwB,EACxB,uBAAuB,EACvB,yBAAyB,EAEzB,SAAS,EACT,mBAAmB,EACnB,YAAY,EACZ,wBAAwB,EACxB,yBAAyB,EACzB,2BAA2B,EAC3B,4BAA4B,EAC5B,uBAAuB,EACvB,8BAA8B,EAC9B,6BAA6B,EAC7B,0BAA0B,EAC1B,2BAA2B,EAC3B,0BAA0B,EAC1B,2BAA2B,EAE3B,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EAChB,kBAAkB,EACnB,MAAM,sBAAsB,CAAC;AAG9B,YAAY,EACV,2BAA2B,EAC3B,0BAA0B,EAC1B,+BAA+B,EAC/B,gCAAgC,EACjC,MAAM,iCAAiC,CAAC;AAEzC,YAAY,EACV,aAAa,EACd,MAAM,cAAc,CAAC;AAEtB,YAAY,EACV,SAAS,EACV,MAAM,UAAU,CAAC;AAElB,YAAY,EACV,iBAAiB,EAClB,MAAM,kBAAkB,CAAC;AAE1B,YAAY,EACV,0BAA0B,EAC3B,MAAM,2BAA2B,CAAC"}
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@aacigroup/aaci_shared",
3
- "version": "5.3.1",
3
+ "version": "5.3.3",
4
4
  "description": "Shared tracking utilities for AACI Group projects with React Context support",
5
5
  "main": "dist/index.js",
6
6
  "types": "dist/index.d.ts",