@ackplus/nest-auth 0.1.51 → 1.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +6 -513
- package/eslint.config.mjs +59 -0
- package/jest.config.ts +10 -0
- package/package.json +14 -44
- package/project.json +86 -0
- package/src/index.ts +30 -0
- package/src/lib/admin-console/admin-console.module.ts +62 -0
- package/src/lib/admin-console/controllers/admin-auth.controller.ts +339 -0
- package/src/lib/admin-console/controllers/admin-console.controller.ts +82 -0
- package/src/lib/admin-console/controllers/admin-permissions.controller.ts +180 -0
- package/src/lib/admin-console/controllers/admin-roles.controller.ts +89 -0
- package/src/lib/admin-console/controllers/admin-tenants.controller.ts +68 -0
- package/src/lib/admin-console/controllers/admin-users.controller.ts +379 -0
- package/src/lib/admin-console/decorators/current-admin.decorator.ts +9 -0
- package/src/lib/admin-console/dto/admin-permission.dto.ts +106 -0
- package/src/lib/admin-console/dto/admin-role.dto.ts +45 -0
- package/src/lib/admin-console/dto/admin-tenant.dto.ts +43 -0
- package/src/lib/admin-console/dto/admin-user.dto.ts +87 -0
- package/src/lib/admin-console/dto/create-dashboard-admin.dto.ts +34 -0
- package/src/lib/admin-console/dto/login.dto.ts +10 -0
- package/src/lib/admin-console/dto/reset-password.dto.ts +21 -0
- package/src/lib/admin-console/dto/setup-admin.dto.ts +23 -0
- package/src/lib/admin-console/dto/signup.dto.ts +51 -0
- package/src/lib/admin-console/entities/admin-user.entity.ts +74 -0
- package/src/lib/admin-console/guards/admin-session.guard.ts +47 -0
- package/src/lib/admin-console/services/admin-auth.service.ts +82 -0
- package/src/lib/admin-console/services/admin-console-config.service.ts +62 -0
- package/src/lib/admin-console/services/admin-session.service.ts +106 -0
- package/src/lib/admin-console/services/admin-user.service.ts +96 -0
- package/src/lib/admin-console/static/index.html +771 -0
- package/src/lib/auth/auth.module.ts +58 -0
- package/src/lib/auth/controllers/auth.controller.ts +393 -0
- package/src/lib/auth/controllers/mfa.controller.ts +200 -0
- package/src/lib/auth/dto/credentials/email-credentials.dto.ts +24 -0
- package/src/lib/auth/dto/credentials/phone-credentials.dto.ts +24 -0
- package/src/lib/auth/dto/credentials/social-credentials.dto.ts +15 -0
- package/src/lib/auth/dto/index.ts +1 -0
- package/src/lib/auth/dto/requests/change-password.request.dto.ts +34 -0
- package/src/lib/auth/dto/requests/forgot-password.request.dto.ts +30 -0
- package/src/lib/auth/dto/requests/initialize-admin.request.dto.ts +51 -0
- package/src/lib/auth/dto/requests/login.request.dto.ts +65 -0
- package/src/lib/auth/dto/requests/refresh-token.request.dto.ts +12 -0
- package/src/lib/auth/dto/requests/reset-password-with-token.request.dto.ts +22 -0
- package/src/lib/auth/dto/requests/reset-password.request.dto.ts +50 -0
- package/src/lib/auth/dto/requests/send-email-verification.request.dto.ts +12 -0
- package/src/lib/auth/dto/requests/send-mfa-code.request.dto.ts +19 -0
- package/src/lib/auth/dto/requests/signup.request.dto.ts +42 -0
- package/src/lib/auth/dto/requests/toggle-mfa.request.dto.ts +12 -0
- package/src/lib/auth/dto/requests/verify-2fa.request.dto.ts +24 -0
- package/src/lib/auth/dto/requests/verify-email.request.dto.ts +22 -0
- package/src/lib/auth/dto/requests/verify-forgot-password-otp-request-dto.ts +41 -0
- package/src/lib/auth/dto/requests/verify-totp-setup.request.dto.ts +22 -0
- package/src/lib/auth/dto/responses/auth-cookie.response.dto.ts +58 -0
- package/src/lib/auth/dto/responses/auth-success.response.dto.ts +58 -0
- package/src/lib/auth/dto/responses/auth.response.dto.ts +99 -0
- package/src/lib/auth/dto/responses/client-config.response.dto.ts +153 -0
- package/src/lib/auth/dto/responses/initialize-admin.response.dto.ts +22 -0
- package/src/lib/auth/dto/responses/mfa-code-response.dto.ts +27 -0
- package/src/lib/auth/dto/responses/mfa-status.response.dto.ts +89 -0
- package/src/lib/auth/dto/responses/verify-otp.response.dto.ts +9 -0
- package/src/lib/auth/entities/mfa-secret.entity.ts +33 -0
- package/src/lib/auth/entities/otp.entity.ts +33 -0
- package/src/lib/auth/events/{logged-out-all.event.d.ts → logged-out-all.event.ts} +6 -3
- package/src/lib/auth/events/{logged-out.event.d.ts → logged-out.event.ts} +5 -3
- package/src/lib/auth/events/{password-reset-requested.event.d.ts → password-reset-requested.event.ts} +6 -3
- package/src/lib/auth/events/{password-reset.event.d.ts → password-reset.event.ts} +6 -3
- package/src/lib/auth/events/{user-2fa-verified.event.d.ts → user-2fa-verified.event.ts} +6 -3
- package/src/lib/auth/events/{user-logged-in.event.d.ts → user-logged-in.event.ts} +7 -3
- package/src/lib/auth/events/{user-refresh-token.event.d.ts → user-refresh-token.event.ts} +6 -3
- package/src/lib/auth/events/{user-registered.event.d.ts → user-registered.event.ts} +7 -3
- package/src/lib/auth/guards/auth.guard.ts +386 -0
- package/src/lib/auth/{index.d.ts → index.ts} +28 -1
- package/src/lib/auth/interceptors/refresh-token.interceptor.ts +117 -0
- package/src/lib/auth/services/auth.service.ts +947 -0
- package/src/lib/auth/services/client-config.service.ts +157 -0
- package/src/lib/auth/services/cookie.service.ts +43 -0
- package/src/lib/auth/services/mfa.service.ts +391 -0
- package/src/lib/auth.constants.ts +63 -0
- package/src/lib/core/core.module.ts +50 -0
- package/src/lib/core/decorators/auth.decorator.ts +38 -0
- package/src/lib/core/decorators/permissions.decorator.ts +17 -0
- package/src/lib/core/decorators/public.decorator.ts +33 -0
- package/src/lib/core/decorators/role.decorator.ts +12 -0
- package/src/lib/core/decorators/skip-mfa.decorator.ts +4 -0
- package/src/lib/core/dto/message.response.dto.ts +6 -0
- package/src/lib/core/{entities.d.ts → entities.ts} +18 -1
- package/src/lib/core/{index.d.ts → index.ts} +17 -0
- package/src/lib/core/interfaces/auth-module-options.interface.ts +211 -0
- package/src/lib/core/interfaces/mfa-options.interface.ts +46 -0
- package/src/lib/core/interfaces/otp.interface.ts +6 -0
- package/src/lib/core/interfaces/session-options.interface.ts +19 -0
- package/src/lib/core/interfaces/{token-payload.interface.d.ts → token-payload.interface.ts} +4 -1
- package/src/lib/core/providers/apple-auth.provider.ts +61 -0
- package/src/lib/core/providers/base-auth.provider.ts +74 -0
- package/src/lib/core/providers/email-auth.provider.ts +71 -0
- package/src/lib/core/providers/facebook-auth.provider.ts +55 -0
- package/src/lib/core/providers/github-auth.provider.ts +79 -0
- package/src/lib/core/providers/google-auth.provider.ts +61 -0
- package/src/lib/core/providers/jwt-auth.provider.ts +50 -0
- package/src/lib/core/providers/phone-auth.provider.ts +45 -0
- package/src/lib/core/services/auth-config.service.ts +184 -0
- package/src/lib/core/services/auth-provider-registry.service.ts +93 -0
- package/src/lib/core/services/{debug-logger.service.js → debug-logger.service.ts} +92 -59
- package/src/lib/core/services/initialization.service.ts +29 -0
- package/src/lib/core/services/jwt.service.ts +137 -0
- package/src/lib/nest-auth.module.ts +152 -0
- package/src/lib/permission/entities/permission.entity.ts +56 -0
- package/src/lib/permission/index.ts +4 -0
- package/src/lib/permission/permission.module.ts +14 -0
- package/src/lib/permission/services/permission.service.ts +233 -0
- package/src/lib/request-context/index.ts +2 -0
- package/src/lib/request-context/request-context.middleware.ts +13 -0
- package/src/lib/request-context/{request-context.js → request-context.ts} +51 -27
- package/src/lib/role/entities/role.entity.ts +103 -0
- package/src/lib/role/{index.d.ts → index.ts} +2 -0
- package/src/lib/role/role.module.ts +15 -0
- package/src/lib/role/services/{role.service.js → role.service.ts} +117 -52
- package/src/lib/session/entities/session.entity.ts +54 -0
- package/src/lib/session/index.ts +20 -0
- package/src/lib/session/interfaces/session-repository.interface.ts +58 -0
- package/src/lib/session/repositories/base-session.repository.ts +74 -0
- package/src/lib/session/repositories/memory-session.repository.ts +153 -0
- package/src/lib/session/repositories/redis-session.repository.ts +171 -0
- package/src/lib/session/repositories/typeorm-session.repository.ts +86 -0
- package/src/lib/session/services/session-manager.service.ts +261 -0
- package/src/lib/session/session.module.ts +102 -0
- package/src/lib/session/utils/session.util.ts +166 -0
- package/src/lib/tenant/entities/tenant.entity.ts +40 -0
- package/src/lib/tenant/events/tenant-created.event.ts +9 -0
- package/src/lib/tenant/events/tenant-deleted.event.ts +11 -0
- package/src/lib/tenant/events/{tenant-updated.event.d.ts → tenant-updated.event.ts} +6 -3
- package/src/lib/tenant/index.ts +9 -0
- package/src/lib/tenant/services/tenant.service.ts +336 -0
- package/src/lib/tenant/tenant.module.ts +19 -0
- package/src/lib/types/express.d.ts +14 -0
- package/src/lib/user/dto/requests/update-user.dto.ts +15 -0
- package/src/lib/user/entities/access-key.entity.ts +53 -0
- package/src/lib/user/entities/identity.entity.ts +31 -0
- package/src/lib/user/entities/user.entity.ts +212 -0
- package/src/lib/user/events/{user-created.event.d.ts → user-created.event.ts} +4 -3
- package/src/lib/user/events/{user-deleted.event.d.ts → user-deleted.event.ts} +6 -3
- package/src/lib/user/events/{user-updated.event.d.ts → user-updated.event.ts} +6 -3
- package/src/lib/user/index.ts +11 -0
- package/src/lib/user/services/access-key.service.ts +145 -0
- package/src/lib/user/services/{user.service.js → user.service.ts} +199 -95
- package/src/lib/user/user.module.ts +26 -0
- package/src/lib/utils/database.utils.ts +6 -0
- package/src/lib/utils/date.util.ts +106 -0
- package/src/lib/utils/device.util.ts +111 -0
- package/src/lib/utils/index.ts +6 -0
- package/src/lib/utils/otp.ts +3 -0
- package/src/lib/utils/security.util.ts +27 -0
- package/src/lib/utils/slug.util.ts +58 -0
- package/src/types/ms.d.ts +1 -0
- package/test/access-key.service.spec.ts +204 -0
- package/test/auth.service.spec.ts +541 -0
- package/test/mfa.service.spec.ts +359 -0
- package/test/role.service.spec.ts +418 -0
- package/test/tenant.service.spec.ts +218 -0
- package/test/test.setup.ts +66 -0
- package/test/user.service.spec.ts +374 -0
- package/tsconfig.json +17 -0
- package/tsconfig.lib.json +15 -0
- package/tsconfig.spec.json +15 -0
- package/tsconfig.tsbuildinfo +1 -1
- package/ui/.env +1 -0
- package/ui/.env.example +1 -0
- package/ui/.eslintignore +7 -0
- package/ui/README.md +288 -0
- package/ui/index.html +17 -0
- package/ui/package.json +34 -0
- package/ui/postcss.config.js +6 -0
- package/ui/src/App.tsx +245 -0
- package/ui/src/components/AuthGuard.tsx +59 -0
- package/ui/src/components/AuthProvider.tsx +76 -0
- package/ui/src/components/Button.tsx +37 -0
- package/ui/src/components/Card.tsx +37 -0
- package/ui/src/components/ErrorMessage.tsx +15 -0
- package/ui/src/components/FormDialog.tsx +61 -0
- package/ui/src/components/FormFooter.tsx +37 -0
- package/ui/src/components/Layout.tsx +112 -0
- package/ui/src/components/LoadingMessage.tsx +11 -0
- package/ui/src/components/Modal.tsx +97 -0
- package/ui/src/components/MultiSelect.tsx +145 -0
- package/ui/src/components/PageHeader.tsx +42 -0
- package/ui/src/components/PanelHeader.tsx +28 -0
- package/ui/src/components/PermissionInput.tsx +473 -0
- package/ui/src/components/SearchInput.tsx +69 -0
- package/ui/src/components/Select.tsx +51 -0
- package/ui/src/components/SwaggerUIWrapper.tsx +316 -0
- package/ui/src/components/Table.tsx +207 -0
- package/ui/src/components/Tag.tsx +9 -0
- package/ui/src/components/TagsInput.tsx +96 -0
- package/ui/src/components/admin/AdminForm.tsx +170 -0
- package/ui/src/components/admin/CreateAdminDialog.tsx +38 -0
- package/ui/src/components/auth/LoginFooter.tsx +17 -0
- package/ui/src/components/auth/LoginHeader.tsx +14 -0
- package/ui/src/components/auth/components/CodeBlock.tsx +43 -0
- package/ui/src/components/auth/components/CreateAccountCodeExamples.tsx +60 -0
- package/ui/src/components/auth/components/PasswordRequirements.tsx +16 -0
- package/ui/src/components/auth/components/PasswordStrengthIndicator.tsx +48 -0
- package/ui/src/components/auth/components/ResetPasswordCodeExamples.tsx +76 -0
- package/ui/src/components/auth/components/Tabs.tsx +32 -0
- package/ui/src/components/auth/dialogs/CreateAccountDialog.tsx +79 -0
- package/ui/src/components/auth/dialogs/ForgotPasswordDialog.tsx +79 -0
- package/ui/src/components/auth/forms/CreateAccountForm.tsx +226 -0
- package/ui/src/components/auth/forms/LoginForm.tsx +149 -0
- package/ui/src/components/auth/forms/ResetPasswordForm.tsx +202 -0
- package/ui/src/components/auth/types.ts +17 -0
- package/ui/src/components/auth/utils/security.ts +82 -0
- package/ui/src/components/auth/utils/utils.ts +25 -0
- package/ui/src/components/form/EmailField.tsx +25 -0
- package/ui/src/components/form/FormField.tsx +102 -0
- package/ui/src/components/form/FormMultiSelect.tsx +46 -0
- package/ui/src/components/form/FormSelect.tsx +60 -0
- package/ui/src/components/form/FormTagsInput.tsx +42 -0
- package/ui/src/components/form/FormTextarea.tsx +42 -0
- package/ui/src/components/form/PasswordField.tsx +93 -0
- package/ui/src/components/form/SecretKeyField.tsx +49 -0
- package/ui/src/components/permission/CreatePermissionDialog.tsx +44 -0
- package/ui/src/components/permission/EditPermissionDialog.tsx +55 -0
- package/ui/src/components/permission/PermissionForm.tsx +251 -0
- package/ui/src/components/role/CreateRoleDialog.tsx +45 -0
- package/ui/src/components/role/EditRoleDialog.tsx +55 -0
- package/ui/src/components/role/RoleDialog.tsx +252 -0
- package/ui/src/components/role/RoleForm.tsx +246 -0
- package/ui/src/components/tenant/CreateTenantDialog.tsx +41 -0
- package/ui/src/components/tenant/EditTenantDialog.tsx +52 -0
- package/ui/src/components/tenant/TenantForm.tsx +160 -0
- package/ui/src/components/user/CreateUserDialog.tsx +45 -0
- package/ui/src/components/user/UserDetailModal.tsx +815 -0
- package/ui/src/components/user/UserForm.tsx +191 -0
- package/ui/src/data/nest-auth.json +1687 -0
- package/ui/src/hooks/useApi.ts +69 -0
- package/ui/src/hooks/useAuth.ts +100 -0
- package/ui/src/hooks/useConfirm.tsx +105 -0
- package/ui/src/hooks/useFormFooter.tsx +42 -0
- package/ui/src/hooks/usePagination.ts +69 -0
- package/ui/src/index.css +59 -0
- package/ui/src/main.tsx +13 -0
- package/ui/src/pages/AdminsPage.tsx +178 -0
- package/ui/src/pages/ApiPage.tsx +89 -0
- package/ui/src/pages/DashboardPage.tsx +281 -0
- package/ui/src/pages/LoginPage.tsx +39 -0
- package/ui/src/pages/PermissionsPage.tsx +376 -0
- package/ui/src/pages/RolesPage.tsx +274 -0
- package/ui/src/pages/TenantsPage.tsx +221 -0
- package/ui/src/pages/UsersPage.tsx +387 -0
- package/ui/src/services/api.ts +115 -0
- package/ui/src/types/index.ts +136 -0
- package/ui/src/vite-env.d.ts +9 -0
- package/ui/tailwind.config.js +45 -0
- package/ui/tsconfig.json +24 -0
- package/ui/tsconfig.node.json +10 -0
- package/ui/vite.config.ts +37 -0
- package/ui/yarn.lock +3137 -0
- package/src/index.d.ts +0 -11
- package/src/index.js +0 -18
- package/src/index.js.map +0 -1
- package/src/lib/auth/auth.module.d.ts +0 -2
- package/src/lib/auth/auth.module.js +0 -54
- package/src/lib/auth/auth.module.js.map +0 -1
- package/src/lib/auth/controllers/auth.controller.d.ts +0 -29
- package/src/lib/auth/controllers/auth.controller.js +0 -206
- package/src/lib/auth/controllers/auth.controller.js.map +0 -1
- package/src/lib/auth/controllers/mfa.controller.d.ts +0 -23
- package/src/lib/auth/controllers/mfa.controller.js +0 -131
- package/src/lib/auth/controllers/mfa.controller.js.map +0 -1
- package/src/lib/auth/dto/index.d.ts +0 -0
- package/src/lib/auth/dto/index.js +0 -1
- package/src/lib/auth/dto/index.js.map +0 -1
- package/src/lib/auth/dto/requests/forgot-password.request.dto.d.ts +0 -5
- package/src/lib/auth/dto/requests/forgot-password.request.dto.js +0 -30
- package/src/lib/auth/dto/requests/forgot-password.request.dto.js.map +0 -1
- package/src/lib/auth/dto/requests/login.request.dto.d.ts +0 -6
- package/src/lib/auth/dto/requests/login.request.dto.js +0 -38
- package/src/lib/auth/dto/requests/login.request.dto.js.map +0 -1
- package/src/lib/auth/dto/requests/refresh-token.request.dto.d.ts +0 -3
- package/src/lib/auth/dto/requests/refresh-token.request.dto.js +0 -15
- package/src/lib/auth/dto/requests/refresh-token.request.dto.js.map +0 -1
- package/src/lib/auth/dto/requests/reset-password.request.dto.d.ts +0 -7
- package/src/lib/auth/dto/requests/reset-password.request.dto.js +0 -42
- package/src/lib/auth/dto/requests/reset-password.request.dto.js.map +0 -1
- package/src/lib/auth/dto/requests/send-mfa-code.request.dto.d.ts +0 -4
- package/src/lib/auth/dto/requests/send-mfa-code.request.dto.js +0 -16
- package/src/lib/auth/dto/requests/send-mfa-code.request.dto.js.map +0 -1
- package/src/lib/auth/dto/requests/signup.request.dto.d.ts +0 -7
- package/src/lib/auth/dto/requests/signup.request.dto.js +0 -37
- package/src/lib/auth/dto/requests/signup.request.dto.js.map +0 -1
- package/src/lib/auth/dto/requests/social-login.request.dto.d.ts +0 -3
- package/src/lib/auth/dto/requests/social-login.request.dto.js +0 -16
- package/src/lib/auth/dto/requests/social-login.request.dto.js.map +0 -1
- package/src/lib/auth/dto/requests/verify-2fa.request.dto.d.ts +0 -5
- package/src/lib/auth/dto/requests/verify-2fa.request.dto.js +0 -21
- package/src/lib/auth/dto/requests/verify-2fa.request.dto.js.map +0 -1
- package/src/lib/auth/dto/requests/verify-forgot-password-otp-request-dto.d.ts +0 -6
- package/src/lib/auth/dto/requests/verify-forgot-password-otp-request-dto.js +0 -35
- package/src/lib/auth/dto/requests/verify-forgot-password-otp-request-dto.js.map +0 -1
- package/src/lib/auth/dto/requests/verify-totp-setup.request.dto.d.ts +0 -4
- package/src/lib/auth/dto/requests/verify-totp-setup.request.dto.js +0 -20
- package/src/lib/auth/dto/requests/verify-totp-setup.request.dto.js.map +0 -1
- package/src/lib/auth/dto/responses/auth.response.dto.d.ts +0 -16
- package/src/lib/auth/dto/responses/auth.response.dto.js +0 -50
- package/src/lib/auth/dto/responses/auth.response.dto.js.map +0 -1
- package/src/lib/auth/entities/mfa-secret.entity.d.ts +0 -12
- package/src/lib/auth/entities/mfa-secret.entity.js +0 -50
- package/src/lib/auth/entities/mfa-secret.entity.js.map +0 -1
- package/src/lib/auth/entities/otp.entity.d.ts +0 -13
- package/src/lib/auth/entities/otp.entity.js +0 -50
- package/src/lib/auth/entities/otp.entity.js.map +0 -1
- package/src/lib/auth/events/logged-out-all.event.js +0 -10
- package/src/lib/auth/events/logged-out-all.event.js.map +0 -1
- package/src/lib/auth/events/logged-out.event.js +0 -10
- package/src/lib/auth/events/logged-out.event.js.map +0 -1
- package/src/lib/auth/events/password-reset-requested.event.js +0 -10
- package/src/lib/auth/events/password-reset-requested.event.js.map +0 -1
- package/src/lib/auth/events/password-reset.event.js +0 -10
- package/src/lib/auth/events/password-reset.event.js.map +0 -1
- package/src/lib/auth/events/user-2fa-verified.event.js +0 -10
- package/src/lib/auth/events/user-2fa-verified.event.js.map +0 -1
- package/src/lib/auth/events/user-logged-in.event.js +0 -10
- package/src/lib/auth/events/user-logged-in.event.js.map +0 -1
- package/src/lib/auth/events/user-refresh-token.event.js +0 -10
- package/src/lib/auth/events/user-refresh-token.event.js.map +0 -1
- package/src/lib/auth/events/user-registered.event.js +0 -10
- package/src/lib/auth/events/user-registered.event.js.map +0 -1
- package/src/lib/auth/guards/auth.guard.d.ts +0 -28
- package/src/lib/auth/guards/auth.guard.js +0 -304
- package/src/lib/auth/guards/auth.guard.js.map +0 -1
- package/src/lib/auth/index.js +0 -31
- package/src/lib/auth/index.js.map +0 -1
- package/src/lib/auth/services/auth.service.d.ts +0 -53
- package/src/lib/auth/services/auth.service.js +0 -522
- package/src/lib/auth/services/auth.service.js.map +0 -1
- package/src/lib/auth/services/cookie.service.d.ts +0 -9
- package/src/lib/auth/services/cookie.service.js +0 -43
- package/src/lib/auth/services/cookie.service.js.map +0 -1
- package/src/lib/auth/services/mfa.service.d.ts +0 -38
- package/src/lib/auth/services/mfa.service.js +0 -254
- package/src/lib/auth/services/mfa.service.js.map +0 -1
- package/src/lib/auth.constants.d.ts +0 -39
- package/src/lib/auth.constants.js +0 -43
- package/src/lib/auth.constants.js.map +0 -1
- package/src/lib/core/core.module.d.ts +0 -2
- package/src/lib/core/core.module.js +0 -53
- package/src/lib/core/core.module.js.map +0 -1
- package/src/lib/core/decorators/auth.decorator.d.ts +0 -1
- package/src/lib/core/decorators/auth.decorator.js +0 -8
- package/src/lib/core/decorators/auth.decorator.js.map +0 -1
- package/src/lib/core/decorators/permissions.decorator.d.ts +0 -2
- package/src/lib/core/decorators/permissions.decorator.js +0 -14
- package/src/lib/core/decorators/permissions.decorator.js.map +0 -1
- package/src/lib/core/decorators/role.decorator.d.ts +0 -3
- package/src/lib/core/decorators/role.decorator.js +0 -14
- package/src/lib/core/decorators/role.decorator.js.map +0 -1
- package/src/lib/core/decorators/skip-mfa.decorator.d.ts +0 -2
- package/src/lib/core/decorators/skip-mfa.decorator.js +0 -8
- package/src/lib/core/decorators/skip-mfa.decorator.js.map +0 -1
- package/src/lib/core/dto/message.response.dto.d.ts +0 -3
- package/src/lib/core/dto/message.response.dto.js +0 -13
- package/src/lib/core/dto/message.response.dto.js.map +0 -1
- package/src/lib/core/entities.js +0 -31
- package/src/lib/core/entities.js.map +0 -1
- package/src/lib/core/index.js +0 -27
- package/src/lib/core/index.js.map +0 -1
- package/src/lib/core/interfaces/auth-module-options.interface.d.ts +0 -62
- package/src/lib/core/interfaces/auth-module-options.interface.js +0 -3
- package/src/lib/core/interfaces/auth-module-options.interface.js.map +0 -1
- package/src/lib/core/interfaces/mfa-options.interface.d.ts +0 -25
- package/src/lib/core/interfaces/mfa-options.interface.js +0 -10
- package/src/lib/core/interfaces/mfa-options.interface.js.map +0 -1
- package/src/lib/core/interfaces/otp.interface.d.ts +0 -5
- package/src/lib/core/interfaces/otp.interface.js +0 -10
- package/src/lib/core/interfaces/otp.interface.js.map +0 -1
- package/src/lib/core/interfaces/session-options.interface.d.ts +0 -12
- package/src/lib/core/interfaces/session-options.interface.js +0 -9
- package/src/lib/core/interfaces/session-options.interface.js.map +0 -1
- package/src/lib/core/interfaces/token-payload.interface.js +0 -3
- package/src/lib/core/interfaces/token-payload.interface.js.map +0 -1
- package/src/lib/core/providers/apple-auth.provider.d.ts +0 -18
- package/src/lib/core/providers/apple-auth.provider.js +0 -57
- package/src/lib/core/providers/apple-auth.provider.js.map +0 -1
- package/src/lib/core/providers/base-auth.provider.d.ts +0 -26
- package/src/lib/core/providers/base-auth.provider.js +0 -43
- package/src/lib/core/providers/base-auth.provider.js.map +0 -1
- package/src/lib/core/providers/email-auth.provider.d.ts +0 -17
- package/src/lib/core/providers/email-auth.provider.js +0 -40
- package/src/lib/core/providers/email-auth.provider.js.map +0 -1
- package/src/lib/core/providers/facebook-auth.provider.d.ts +0 -18
- package/src/lib/core/providers/facebook-auth.provider.js +0 -56
- package/src/lib/core/providers/facebook-auth.provider.js.map +0 -1
- package/src/lib/core/providers/google-auth.provider.d.ts +0 -21
- package/src/lib/core/providers/google-auth.provider.js +0 -58
- package/src/lib/core/providers/google-auth.provider.js.map +0 -1
- package/src/lib/core/providers/jwt-auth.provider.d.ts +0 -33
- package/src/lib/core/providers/jwt-auth.provider.js +0 -50
- package/src/lib/core/providers/jwt-auth.provider.js.map +0 -1
- package/src/lib/core/providers/phone-auth.provider.d.ts +0 -18
- package/src/lib/core/providers/phone-auth.provider.js +0 -43
- package/src/lib/core/providers/phone-auth.provider.js.map +0 -1
- package/src/lib/core/services/auth-config.service.d.ts +0 -12
- package/src/lib/core/services/auth-config.service.js +0 -79
- package/src/lib/core/services/auth-config.service.js.map +0 -1
- package/src/lib/core/services/auth-provider-registry.service.d.ts +0 -24
- package/src/lib/core/services/auth-provider-registry.service.js +0 -71
- package/src/lib/core/services/auth-provider-registry.service.js.map +0 -1
- package/src/lib/core/services/debug-logger.service.d.ts +0 -38
- package/src/lib/core/services/debug-logger.service.js.map +0 -1
- package/src/lib/core/services/initialization.service.d.ts +0 -10
- package/src/lib/core/services/initialization.service.js +0 -34
- package/src/lib/core/services/initialization.service.js.map +0 -1
- package/src/lib/core/services/jwt.service.d.ts +0 -14
- package/src/lib/core/services/jwt.service.js +0 -92
- package/src/lib/core/services/jwt.service.js.map +0 -1
- package/src/lib/nest-auth.module.d.ts +0 -11
- package/src/lib/nest-auth.module.js +0 -177
- package/src/lib/nest-auth.module.js.map +0 -1
- package/src/lib/request-context/request-context.d.ts +0 -22
- package/src/lib/request-context/request-context.js.map +0 -1
- package/src/lib/request-context/request-context.middleware.d.ts +0 -4
- package/src/lib/request-context/request-context.middleware.js +0 -16
- package/src/lib/request-context/request-context.middleware.js.map +0 -1
- package/src/lib/role/entities/role.entity.d.ts +0 -20
- package/src/lib/role/entities/role.entity.js +0 -110
- package/src/lib/role/entities/role.entity.js.map +0 -1
- package/src/lib/role/index.js +0 -5
- package/src/lib/role/index.js.map +0 -1
- package/src/lib/role/role.module.d.ts +0 -2
- package/src/lib/role/role.module.js +0 -23
- package/src/lib/role/role.module.js.map +0 -1
- package/src/lib/role/services/role.service.d.ts +0 -20
- package/src/lib/role/services/role.service.js.map +0 -1
- package/src/lib/session/entities/session.entity.d.ts +0 -16
- package/src/lib/session/entities/session.entity.js +0 -63
- package/src/lib/session/entities/session.entity.js.map +0 -1
- package/src/lib/session/index.d.ts +0 -3
- package/src/lib/session/index.js +0 -7
- package/src/lib/session/index.js.map +0 -1
- package/src/lib/session/services/base-session.service.d.ts +0 -23
- package/src/lib/session/services/base-session.service.js +0 -64
- package/src/lib/session/services/base-session.service.js.map +0 -1
- package/src/lib/session/services/database-session.service.d.ts +0 -17
- package/src/lib/session/services/database-session.service.js +0 -51
- package/src/lib/session/services/database-session.service.js.map +0 -1
- package/src/lib/session/services/redis-session.service.d.ts +0 -20
- package/src/lib/session/services/redis-session.service.js +0 -117
- package/src/lib/session/services/redis-session.service.js.map +0 -1
- package/src/lib/session/session.module.d.ts +0 -2
- package/src/lib/session/session.module.js +0 -33
- package/src/lib/session/session.module.js.map +0 -1
- package/src/lib/tenant/entities/tenant.entity.d.ts +0 -10
- package/src/lib/tenant/entities/tenant.entity.js +0 -44
- package/src/lib/tenant/entities/tenant.entity.js.map +0 -1
- package/src/lib/tenant/events/tenant-created.event.d.ts +0 -8
- package/src/lib/tenant/events/tenant-created.event.js +0 -10
- package/src/lib/tenant/events/tenant-created.event.js.map +0 -1
- package/src/lib/tenant/events/tenant-deleted.event.d.ts +0 -8
- package/src/lib/tenant/events/tenant-deleted.event.js +0 -10
- package/src/lib/tenant/events/tenant-deleted.event.js.map +0 -1
- package/src/lib/tenant/events/tenant-updated.event.js +0 -10
- package/src/lib/tenant/events/tenant-updated.event.js.map +0 -1
- package/src/lib/tenant/index.d.ts +0 -1
- package/src/lib/tenant/index.js +0 -5
- package/src/lib/tenant/index.js.map +0 -1
- package/src/lib/tenant/services/tenant.service.d.ts +0 -26
- package/src/lib/tenant/services/tenant.service.js +0 -200
- package/src/lib/tenant/services/tenant.service.js.map +0 -1
- package/src/lib/tenant/tenant.module.d.ts +0 -2
- package/src/lib/tenant/tenant.module.js +0 -27
- package/src/lib/tenant/tenant.module.js.map +0 -1
- package/src/lib/user/dto/requests/update-user.dto.d.ts +0 -5
- package/src/lib/user/dto/requests/update-user.dto.js +0 -24
- package/src/lib/user/dto/requests/update-user.dto.js.map +0 -1
- package/src/lib/user/entities/access-key.entity.d.ts +0 -16
- package/src/lib/user/entities/access-key.entity.js +0 -63
- package/src/lib/user/entities/access-key.entity.js.map +0 -1
- package/src/lib/user/entities/identity.entity.d.ts +0 -12
- package/src/lib/user/entities/identity.entity.js +0 -47
- package/src/lib/user/entities/identity.entity.js.map +0 -1
- package/src/lib/user/entities/user.entity.d.ts +0 -39
- package/src/lib/user/entities/user.entity.js +0 -201
- package/src/lib/user/entities/user.entity.js.map +0 -1
- package/src/lib/user/events/user-created.event.js +0 -10
- package/src/lib/user/events/user-created.event.js.map +0 -1
- package/src/lib/user/events/user-deleted.event.js +0 -10
- package/src/lib/user/events/user-deleted.event.js.map +0 -1
- package/src/lib/user/events/user-updated.event.js +0 -10
- package/src/lib/user/events/user-updated.event.js.map +0 -1
- package/src/lib/user/index.d.ts +0 -3
- package/src/lib/user/index.js +0 -7
- package/src/lib/user/index.js.map +0 -1
- package/src/lib/user/services/access-key.service.d.ts +0 -19
- package/src/lib/user/services/access-key.service.js +0 -119
- package/src/lib/user/services/access-key.service.js.map +0 -1
- package/src/lib/user/services/user.service.d.ts +0 -24
- package/src/lib/user/services/user.service.js.map +0 -1
- package/src/lib/user/user.module.d.ts +0 -2
- package/src/lib/user/user.module.js +0 -34
- package/src/lib/user/user.module.js.map +0 -1
- package/src/lib/utils/database.utils.d.ts +0 -2
- package/src/lib/utils/database.utils.js +0 -8
- package/src/lib/utils/database.utils.js.map +0 -1
- package/src/lib/utils/otp.d.ts +0 -1
- package/src/lib/utils/otp.js +0 -7
- package/src/lib/utils/otp.js.map +0 -1
|
@@ -0,0 +1,24 @@
|
|
|
1
|
+
import { ApiProperty } from '@nestjs/swagger';
|
|
2
|
+
import { IsString, IsNotEmpty, IsPhoneNumber } from 'class-validator';
|
|
3
|
+
|
|
4
|
+
/**
|
|
5
|
+
* Phone-based login credentials
|
|
6
|
+
*/
|
|
7
|
+
export class PhoneCredentialsDto {
|
|
8
|
+
@ApiProperty({
|
|
9
|
+
description: 'User phone number',
|
|
10
|
+
example: '+1234567890',
|
|
11
|
+
})
|
|
12
|
+
@IsPhoneNumber()
|
|
13
|
+
@IsNotEmpty()
|
|
14
|
+
phone: string;
|
|
15
|
+
|
|
16
|
+
@ApiProperty({
|
|
17
|
+
description: 'User password',
|
|
18
|
+
example: 'SecurePass123!',
|
|
19
|
+
minLength: 8,
|
|
20
|
+
})
|
|
21
|
+
@IsString()
|
|
22
|
+
@IsNotEmpty()
|
|
23
|
+
password: string;
|
|
24
|
+
}
|
|
@@ -0,0 +1,15 @@
|
|
|
1
|
+
import { ApiProperty } from '@nestjs/swagger';
|
|
2
|
+
import { IsString, IsNotEmpty } from 'class-validator';
|
|
3
|
+
|
|
4
|
+
/**
|
|
5
|
+
* Social login credentials (Google, Facebook, Apple, GitHub)
|
|
6
|
+
*/
|
|
7
|
+
export class SocialCredentialsDto {
|
|
8
|
+
@ApiProperty({
|
|
9
|
+
description: 'OAuth token or ID token from social provider',
|
|
10
|
+
example: 'ya29.a0AfH6SMBx1234567890abcdefghijklmnop',
|
|
11
|
+
})
|
|
12
|
+
@IsString()
|
|
13
|
+
@IsNotEmpty()
|
|
14
|
+
accessToken: string;
|
|
15
|
+
}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
|
|
@@ -0,0 +1,34 @@
|
|
|
1
|
+
import { ApiProperty } from '@nestjs/swagger';
|
|
2
|
+
import { IsString, MinLength, Validate, ValidatorConstraint, ValidatorConstraintInterface, ValidationArguments } from 'class-validator';
|
|
3
|
+
|
|
4
|
+
@ValidatorConstraint({ name: 'passwordNotSameAsCurrent', async: false })
|
|
5
|
+
class PasswordNotSameAsCurrent implements ValidatorConstraintInterface {
|
|
6
|
+
validate(newPassword: string, args: ValidationArguments) {
|
|
7
|
+
const obj = args.object as any;
|
|
8
|
+
return typeof newPassword === 'string' && newPassword !== obj.currentPassword;
|
|
9
|
+
}
|
|
10
|
+
defaultMessage(_args: ValidationArguments) {
|
|
11
|
+
return 'New password must be different from the current password';
|
|
12
|
+
}
|
|
13
|
+
}
|
|
14
|
+
|
|
15
|
+
export class ChangePasswordRequestDto {
|
|
16
|
+
@ApiProperty({
|
|
17
|
+
description: 'Current password',
|
|
18
|
+
example: 'DemoOwner1!',
|
|
19
|
+
minLength: 8,
|
|
20
|
+
})
|
|
21
|
+
@IsString()
|
|
22
|
+
@MinLength(8)
|
|
23
|
+
currentPassword: string;
|
|
24
|
+
|
|
25
|
+
@ApiProperty({
|
|
26
|
+
description: 'New password',
|
|
27
|
+
example: 'DemoOwner1!New',
|
|
28
|
+
minLength: 8,
|
|
29
|
+
})
|
|
30
|
+
@IsString()
|
|
31
|
+
@MinLength(8)
|
|
32
|
+
@Validate(PasswordNotSameAsCurrent)
|
|
33
|
+
newPassword: string;
|
|
34
|
+
}
|
|
@@ -0,0 +1,30 @@
|
|
|
1
|
+
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
|
|
2
|
+
import { IsEmail, IsNotEmpty, IsPhoneNumber, ValidateIf, IsUUID, IsOptional } from 'class-validator';
|
|
3
|
+
|
|
4
|
+
export class ForgotPasswordRequestDto {
|
|
5
|
+
@ApiPropertyOptional({
|
|
6
|
+
description: 'User email address (required if phone not provided)',
|
|
7
|
+
example: 'user@example.com',
|
|
8
|
+
})
|
|
9
|
+
@ValidateIf(o => !o.phone)
|
|
10
|
+
@IsEmail()
|
|
11
|
+
@IsNotEmpty()
|
|
12
|
+
email?: string;
|
|
13
|
+
|
|
14
|
+
@ApiPropertyOptional({
|
|
15
|
+
description: 'User phone number (required if email not provided)',
|
|
16
|
+
example: '+1234567890',
|
|
17
|
+
})
|
|
18
|
+
@ValidateIf(o => !o.email)
|
|
19
|
+
@IsPhoneNumber()
|
|
20
|
+
@IsNotEmpty()
|
|
21
|
+
phone?: string;
|
|
22
|
+
|
|
23
|
+
@ApiPropertyOptional({
|
|
24
|
+
description: 'Tenant ID for multi-tenant applications',
|
|
25
|
+
example: '123e4567-e89b-12d3-a456-426614174000',
|
|
26
|
+
})
|
|
27
|
+
@IsUUID()
|
|
28
|
+
@IsOptional()
|
|
29
|
+
tenantId?: string;
|
|
30
|
+
}
|
|
@@ -0,0 +1,51 @@
|
|
|
1
|
+
import { IsEmail, IsNotEmpty, IsOptional, IsString, MinLength, Matches, IsObject } from 'class-validator';
|
|
2
|
+
import { ApiProperty } from '@nestjs/swagger';
|
|
3
|
+
|
|
4
|
+
export class InitializeAdminRequestDto {
|
|
5
|
+
@ApiProperty({
|
|
6
|
+
description: 'Super admin email address',
|
|
7
|
+
example: 'admin@example.com'
|
|
8
|
+
})
|
|
9
|
+
@IsEmail()
|
|
10
|
+
@IsNotEmpty()
|
|
11
|
+
email: string;
|
|
12
|
+
|
|
13
|
+
@ApiProperty({
|
|
14
|
+
description: 'Super admin password (minimum 8 characters, must contain uppercase, lowercase, number, and special character)',
|
|
15
|
+
example: 'SecurePassword123!',
|
|
16
|
+
minLength: 8
|
|
17
|
+
})
|
|
18
|
+
@IsString()
|
|
19
|
+
@IsNotEmpty()
|
|
20
|
+
@MinLength(8)
|
|
21
|
+
@Matches(
|
|
22
|
+
/^(?=.*[a-z])(?=.*[A-Z])(?=.*\d)(?=.*[@$!%*?&])[A-Za-z\d@$!%*?&]+$/,
|
|
23
|
+
{ message: 'Password must contain uppercase, lowercase, number, and special character' }
|
|
24
|
+
)
|
|
25
|
+
password: string;
|
|
26
|
+
|
|
27
|
+
@ApiProperty({
|
|
28
|
+
description: 'Secret key for authorization (provided in module configuration)',
|
|
29
|
+
example: 'your-secret-key'
|
|
30
|
+
})
|
|
31
|
+
@IsString()
|
|
32
|
+
@IsNotEmpty()
|
|
33
|
+
secretKey: string;
|
|
34
|
+
|
|
35
|
+
@ApiProperty({
|
|
36
|
+
description: 'Tenant ID (optional, uses default tenant if not provided)',
|
|
37
|
+
required: false
|
|
38
|
+
})
|
|
39
|
+
@IsOptional()
|
|
40
|
+
@IsString()
|
|
41
|
+
tenantId?: string;
|
|
42
|
+
|
|
43
|
+
@ApiProperty({
|
|
44
|
+
description: 'Additional metadata for the admin user (free-form object for storing firstName, lastName, department, etc.)',
|
|
45
|
+
required: false,
|
|
46
|
+
example: { firstName: 'Admin', lastName: 'User', department: 'IT' }
|
|
47
|
+
})
|
|
48
|
+
@IsOptional()
|
|
49
|
+
@IsObject()
|
|
50
|
+
metadata?: Record<string, any>;
|
|
51
|
+
}
|
|
@@ -0,0 +1,65 @@
|
|
|
1
|
+
import { IsString, IsUUID, IsOptional, IsObject, IsBoolean } from 'class-validator';
|
|
2
|
+
import { ApiProperty, ApiPropertyOptional, ApiExtraModels, getSchemaPath } from '@nestjs/swagger';
|
|
3
|
+
import { EmailCredentialsDto } from '../credentials/email-credentials.dto';
|
|
4
|
+
import { PhoneCredentialsDto } from '../credentials/phone-credentials.dto';
|
|
5
|
+
import { SocialCredentialsDto } from '../credentials/social-credentials.dto';
|
|
6
|
+
|
|
7
|
+
/**
|
|
8
|
+
* Login request DTO supporting multiple authentication providers
|
|
9
|
+
*/
|
|
10
|
+
@ApiExtraModels(EmailCredentialsDto, PhoneCredentialsDto, SocialCredentialsDto)
|
|
11
|
+
export class LoginRequestDto {
|
|
12
|
+
|
|
13
|
+
@ApiPropertyOptional({
|
|
14
|
+
description: 'Authentication provider name',
|
|
15
|
+
example: 'email',
|
|
16
|
+
enum: ['email', 'phone', 'google', 'facebook', 'apple', 'github'],
|
|
17
|
+
default: 'email',
|
|
18
|
+
})
|
|
19
|
+
@IsString()
|
|
20
|
+
@IsOptional()
|
|
21
|
+
providerName?: string;
|
|
22
|
+
|
|
23
|
+
@ApiProperty({
|
|
24
|
+
description: 'Login credentials - type varies by provider',
|
|
25
|
+
required: false,
|
|
26
|
+
examples: {
|
|
27
|
+
emailLogin: {
|
|
28
|
+
summary: 'Email Login',
|
|
29
|
+
value: { email: 'user@example.com', password: 'SecurePass123!' },
|
|
30
|
+
},
|
|
31
|
+
phoneLogin: {
|
|
32
|
+
summary: 'Phone Login',
|
|
33
|
+
value: { phone: '+1234567890', password: 'SecurePass123!' },
|
|
34
|
+
},
|
|
35
|
+
socialLogin: {
|
|
36
|
+
summary: 'Social Login (Google/Facebook/etc)',
|
|
37
|
+
value: { token: 'ya29.a0AfH6SMBx...' },
|
|
38
|
+
},
|
|
39
|
+
},
|
|
40
|
+
oneOf: [
|
|
41
|
+
{ $ref: getSchemaPath(EmailCredentialsDto) },
|
|
42
|
+
{ $ref: getSchemaPath(PhoneCredentialsDto) },
|
|
43
|
+
{ $ref: getSchemaPath(SocialCredentialsDto) },
|
|
44
|
+
],
|
|
45
|
+
})
|
|
46
|
+
@IsObject()
|
|
47
|
+
@IsOptional()
|
|
48
|
+
credentials?: EmailCredentialsDto | PhoneCredentialsDto | SocialCredentialsDto | Record<string, any>;
|
|
49
|
+
|
|
50
|
+
@ApiPropertyOptional({
|
|
51
|
+
description: 'Tenant ID for multi-tenant applications',
|
|
52
|
+
example: '123e4567-e89b-12d3-a456-426614174000',
|
|
53
|
+
})
|
|
54
|
+
@IsUUID()
|
|
55
|
+
@IsOptional()
|
|
56
|
+
tenantId?: string;
|
|
57
|
+
|
|
58
|
+
@ApiPropertyOptional({
|
|
59
|
+
description: 'Auto-create user if not exists (for social auth)',
|
|
60
|
+
default: false,
|
|
61
|
+
})
|
|
62
|
+
@IsBoolean()
|
|
63
|
+
@IsOptional()
|
|
64
|
+
createUserIfNotExists?: boolean;
|
|
65
|
+
}
|
|
@@ -0,0 +1,12 @@
|
|
|
1
|
+
import { ApiProperty } from '@nestjs/swagger';
|
|
2
|
+
import { IsString, IsNotEmpty } from 'class-validator';
|
|
3
|
+
|
|
4
|
+
export class RefreshTokenRequestDto {
|
|
5
|
+
@ApiProperty({
|
|
6
|
+
description: 'Refresh token to obtain new access token',
|
|
7
|
+
example: 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VySWQiOiIxMjMiLCJ0eXBlIjoicmVmcmVzaCJ9.abc123',
|
|
8
|
+
})
|
|
9
|
+
@IsString()
|
|
10
|
+
@IsNotEmpty()
|
|
11
|
+
refreshToken: string;
|
|
12
|
+
}
|
|
@@ -0,0 +1,22 @@
|
|
|
1
|
+
import { ApiProperty } from '@nestjs/swagger';
|
|
2
|
+
import { IsNotEmpty, IsString, MinLength } from 'class-validator';
|
|
3
|
+
|
|
4
|
+
export class ResetPasswordWithTokenRequestDto {
|
|
5
|
+
@ApiProperty({
|
|
6
|
+
description: 'Password reset token (JWT) received after OTP verification',
|
|
7
|
+
example: 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0eXBlIjoicGFzc3dvcmQtcmVzZXQifQ.xyz',
|
|
8
|
+
})
|
|
9
|
+
@IsString()
|
|
10
|
+
@IsNotEmpty()
|
|
11
|
+
token: string;
|
|
12
|
+
|
|
13
|
+
@ApiProperty({
|
|
14
|
+
description: 'New password',
|
|
15
|
+
example: 'NewSecurePass123!',
|
|
16
|
+
minLength: 8,
|
|
17
|
+
})
|
|
18
|
+
@IsString()
|
|
19
|
+
@IsNotEmpty()
|
|
20
|
+
@MinLength(8)
|
|
21
|
+
newPassword: string;
|
|
22
|
+
}
|
|
@@ -0,0 +1,50 @@
|
|
|
1
|
+
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
|
|
2
|
+
import { IsEmail, IsNotEmpty, IsPhoneNumber, IsString, ValidateIf, IsUUID, IsOptional, MinLength } from 'class-validator';
|
|
3
|
+
|
|
4
|
+
export class ResetPasswordRequestDto {
|
|
5
|
+
@ApiPropertyOptional({
|
|
6
|
+
description: 'User email address (required if phone not provided)',
|
|
7
|
+
example: 'user@example.com',
|
|
8
|
+
})
|
|
9
|
+
@ValidateIf(o => !o.phone)
|
|
10
|
+
@IsEmail()
|
|
11
|
+
@IsNotEmpty()
|
|
12
|
+
email?: string;
|
|
13
|
+
|
|
14
|
+
@ApiPropertyOptional({
|
|
15
|
+
description: 'User phone number (required if email not provided)',
|
|
16
|
+
example: '+1234567890',
|
|
17
|
+
})
|
|
18
|
+
@ValidateIf(o => !o.email)
|
|
19
|
+
@IsPhoneNumber()
|
|
20
|
+
@IsNotEmpty()
|
|
21
|
+
phone?: string;
|
|
22
|
+
|
|
23
|
+
@ApiProperty({
|
|
24
|
+
description: 'One-time password (OTP) received via email or SMS',
|
|
25
|
+
example: '123456',
|
|
26
|
+
minLength: 6,
|
|
27
|
+
maxLength: 8,
|
|
28
|
+
})
|
|
29
|
+
@IsString()
|
|
30
|
+
@IsNotEmpty()
|
|
31
|
+
otp: string;
|
|
32
|
+
|
|
33
|
+
@ApiProperty({
|
|
34
|
+
description: 'New password',
|
|
35
|
+
example: 'NewSecurePass123!',
|
|
36
|
+
minLength: 8,
|
|
37
|
+
})
|
|
38
|
+
@IsString()
|
|
39
|
+
@IsNotEmpty()
|
|
40
|
+
@MinLength(8)
|
|
41
|
+
newPassword: string;
|
|
42
|
+
|
|
43
|
+
@ApiPropertyOptional({
|
|
44
|
+
description: 'Tenant ID for multi-tenant applications',
|
|
45
|
+
example: '123e4567-e89b-12d3-a456-426614174000',
|
|
46
|
+
})
|
|
47
|
+
@IsUUID()
|
|
48
|
+
@IsOptional()
|
|
49
|
+
tenantId?: string;
|
|
50
|
+
}
|
|
@@ -0,0 +1,12 @@
|
|
|
1
|
+
import { ApiPropertyOptional } from '@nestjs/swagger';
|
|
2
|
+
import { IsUUID, IsOptional } from 'class-validator';
|
|
3
|
+
|
|
4
|
+
export class SendEmailVerificationRequestDto {
|
|
5
|
+
@ApiPropertyOptional({
|
|
6
|
+
description: 'Tenant ID for multi-tenant applications',
|
|
7
|
+
example: '123e4567-e89b-12d3-a456-426614174000',
|
|
8
|
+
})
|
|
9
|
+
@IsUUID()
|
|
10
|
+
@IsOptional()
|
|
11
|
+
tenantId?: string;
|
|
12
|
+
}
|
|
@@ -0,0 +1,19 @@
|
|
|
1
|
+
import { IsEnum } from "class-validator";
|
|
2
|
+
import { MFAMethodEnum } from "../../../core";
|
|
3
|
+
import { ApiProperty } from "@nestjs/swagger";
|
|
4
|
+
|
|
5
|
+
export class SendMfaCodeRequestDto {
|
|
6
|
+
@ApiProperty({
|
|
7
|
+
description: 'MFA delivery method',
|
|
8
|
+
enum: MFAMethodEnum,
|
|
9
|
+
example: MFAMethodEnum.EMAIL,
|
|
10
|
+
enumName: 'MFAMethodEnum',
|
|
11
|
+
examples: {
|
|
12
|
+
email: { value: MFAMethodEnum.EMAIL, description: 'Send OTP via email' },
|
|
13
|
+
sms: { value: MFAMethodEnum.SMS, description: 'Send OTP via SMS' },
|
|
14
|
+
totp: { value: MFAMethodEnum.TOTP, description: 'Use authenticator app (TOTP)' },
|
|
15
|
+
},
|
|
16
|
+
})
|
|
17
|
+
@IsEnum(MFAMethodEnum)
|
|
18
|
+
method: MFAMethodEnum;
|
|
19
|
+
}
|
|
@@ -0,0 +1,42 @@
|
|
|
1
|
+
import { IsEmail, IsString, IsOptional, IsNotEmpty, MinLength, ValidateIf } from 'class-validator';
|
|
2
|
+
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
|
|
3
|
+
|
|
4
|
+
export class SignupRequestDto {
|
|
5
|
+
[x: string]: any;
|
|
6
|
+
|
|
7
|
+
@ApiPropertyOptional({
|
|
8
|
+
description: 'User email address (required if phone not provided)',
|
|
9
|
+
example: 'user@example.com',
|
|
10
|
+
})
|
|
11
|
+
@ValidateIf(o => !o.phone)
|
|
12
|
+
@IsEmail()
|
|
13
|
+
@IsNotEmpty()
|
|
14
|
+
email?: string;
|
|
15
|
+
|
|
16
|
+
@ApiPropertyOptional({
|
|
17
|
+
description: 'User phone number (required if email not provided)',
|
|
18
|
+
example: '+1234567890',
|
|
19
|
+
})
|
|
20
|
+
@ValidateIf(o => !o.email)
|
|
21
|
+
@IsString()
|
|
22
|
+
@IsNotEmpty()
|
|
23
|
+
phone?: string;
|
|
24
|
+
|
|
25
|
+
@ApiProperty({
|
|
26
|
+
description: 'User password',
|
|
27
|
+
example: 'SecurePass123!',
|
|
28
|
+
minLength: 8,
|
|
29
|
+
})
|
|
30
|
+
@IsString()
|
|
31
|
+
@IsNotEmpty()
|
|
32
|
+
@MinLength(8)
|
|
33
|
+
password: string;
|
|
34
|
+
|
|
35
|
+
@ApiPropertyOptional({
|
|
36
|
+
description: 'Tenant ID for multi-tenant applications',
|
|
37
|
+
example: '123e4567-e89b-12d3-a456-426614174000',
|
|
38
|
+
})
|
|
39
|
+
@IsString()
|
|
40
|
+
@IsOptional()
|
|
41
|
+
tenantId?: string;
|
|
42
|
+
}
|
|
@@ -0,0 +1,12 @@
|
|
|
1
|
+
import { ApiProperty } from '@nestjs/swagger';
|
|
2
|
+
import { IsBoolean, IsDefined } from 'class-validator';
|
|
3
|
+
|
|
4
|
+
export class ToggleMfaRequestDto {
|
|
5
|
+
@ApiProperty({
|
|
6
|
+
description: 'Whether MFA should be enabled for the current user',
|
|
7
|
+
example: true,
|
|
8
|
+
})
|
|
9
|
+
@IsDefined()
|
|
10
|
+
@IsBoolean()
|
|
11
|
+
enabled: boolean;
|
|
12
|
+
}
|
|
@@ -0,0 +1,24 @@
|
|
|
1
|
+
import { IsEnum, IsString, IsNotEmpty } from "class-validator";
|
|
2
|
+
import { MFAMethodEnum } from "../../../core";
|
|
3
|
+
import { ApiProperty } from "@nestjs/swagger";
|
|
4
|
+
|
|
5
|
+
export class Verify2faRequestDto {
|
|
6
|
+
@ApiProperty({
|
|
7
|
+
description: 'MFA method used',
|
|
8
|
+
enum: MFAMethodEnum,
|
|
9
|
+
example: MFAMethodEnum.TOTP,
|
|
10
|
+
enumName: 'MFAMethodEnum',
|
|
11
|
+
})
|
|
12
|
+
@IsEnum(MFAMethodEnum)
|
|
13
|
+
method: MFAMethodEnum;
|
|
14
|
+
|
|
15
|
+
@ApiProperty({
|
|
16
|
+
description: 'One-time password code',
|
|
17
|
+
example: '123456',
|
|
18
|
+
minLength: 6,
|
|
19
|
+
maxLength: 8,
|
|
20
|
+
})
|
|
21
|
+
@IsString()
|
|
22
|
+
@IsNotEmpty()
|
|
23
|
+
otp: string;
|
|
24
|
+
}
|
|
@@ -0,0 +1,22 @@
|
|
|
1
|
+
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
|
|
2
|
+
import { IsString, IsNotEmpty, IsUUID, IsOptional } from 'class-validator';
|
|
3
|
+
|
|
4
|
+
export class VerifyEmailRequestDto {
|
|
5
|
+
@ApiProperty({
|
|
6
|
+
description: 'One-time password code received via email',
|
|
7
|
+
example: '123456',
|
|
8
|
+
minLength: 6,
|
|
9
|
+
maxLength: 8,
|
|
10
|
+
})
|
|
11
|
+
@IsString()
|
|
12
|
+
@IsNotEmpty()
|
|
13
|
+
otp: string;
|
|
14
|
+
|
|
15
|
+
@ApiPropertyOptional({
|
|
16
|
+
description: 'Tenant ID for multi-tenant applications',
|
|
17
|
+
example: '123e4567-e89b-12d3-a456-426614174000',
|
|
18
|
+
})
|
|
19
|
+
@IsUUID()
|
|
20
|
+
@IsOptional()
|
|
21
|
+
tenantId?: string;
|
|
22
|
+
}
|
|
@@ -0,0 +1,41 @@
|
|
|
1
|
+
import { IsEmail, IsEnum, IsNotEmpty, IsOptional, IsPhoneNumber, IsString, IsUUID, ValidateIf } from "class-validator";
|
|
2
|
+
import { MFAMethodEnum } from "../../../core";
|
|
3
|
+
import { ApiProperty, ApiPropertyOptional } from "@nestjs/swagger";
|
|
4
|
+
|
|
5
|
+
export class VerifyForgotPasswordOtpRequestDto {
|
|
6
|
+
@ApiPropertyOptional({
|
|
7
|
+
description: 'User email address (required if phone not provided)',
|
|
8
|
+
example: 'user@example.com',
|
|
9
|
+
})
|
|
10
|
+
@ValidateIf(o => !o.phone)
|
|
11
|
+
@IsEmail()
|
|
12
|
+
@IsNotEmpty()
|
|
13
|
+
email?: string;
|
|
14
|
+
|
|
15
|
+
@ApiPropertyOptional({
|
|
16
|
+
description: 'User phone number (required if email not provided)',
|
|
17
|
+
example: '+1234567890',
|
|
18
|
+
})
|
|
19
|
+
@ValidateIf(o => !o.email)
|
|
20
|
+
@IsString()
|
|
21
|
+
@IsNotEmpty()
|
|
22
|
+
phone?: string;
|
|
23
|
+
|
|
24
|
+
@ApiProperty({
|
|
25
|
+
description: 'One-time password code received via email or SMS',
|
|
26
|
+
example: '123456',
|
|
27
|
+
minLength: 6,
|
|
28
|
+
maxLength: 8,
|
|
29
|
+
})
|
|
30
|
+
@IsString()
|
|
31
|
+
@IsNotEmpty()
|
|
32
|
+
otp: string;
|
|
33
|
+
|
|
34
|
+
@ApiPropertyOptional({
|
|
35
|
+
description: 'Tenant ID for multi-tenant applications',
|
|
36
|
+
example: '123e4567-e89b-12d3-a456-426614174000',
|
|
37
|
+
})
|
|
38
|
+
@IsUUID()
|
|
39
|
+
@IsOptional()
|
|
40
|
+
tenantId?: string;
|
|
41
|
+
}
|
|
@@ -0,0 +1,22 @@
|
|
|
1
|
+
import { ApiProperty } from "@nestjs/swagger";
|
|
2
|
+
import { IsString, IsNotEmpty } from "class-validator";
|
|
3
|
+
|
|
4
|
+
export class VerifyTotpSetupRequestDto {
|
|
5
|
+
@ApiProperty({
|
|
6
|
+
description: 'The TOTP code from authenticator app',
|
|
7
|
+
example: '123456',
|
|
8
|
+
minLength: 6,
|
|
9
|
+
maxLength: 6,
|
|
10
|
+
})
|
|
11
|
+
@IsString()
|
|
12
|
+
@IsNotEmpty()
|
|
13
|
+
otp: string;
|
|
14
|
+
|
|
15
|
+
@ApiProperty({
|
|
16
|
+
description: 'Secret key from TOTP setup',
|
|
17
|
+
example: 'JBSWY3DPEHPK3PXP',
|
|
18
|
+
})
|
|
19
|
+
@IsString()
|
|
20
|
+
@IsNotEmpty()
|
|
21
|
+
secret: string;
|
|
22
|
+
}
|
|
@@ -0,0 +1,58 @@
|
|
|
1
|
+
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
|
|
2
|
+
|
|
3
|
+
/**
|
|
4
|
+
* Auth Cookie Response DTO
|
|
5
|
+
*
|
|
6
|
+
* Used when `accessTokenType: 'cookie'` - tokens are set in HTTP-only cookies.
|
|
7
|
+
*
|
|
8
|
+
* Response Format:
|
|
9
|
+
* - Contains `message` and optionally `isRequiresMfa`
|
|
10
|
+
* - Does NOT contain `accessToken` or `refreshToken` (they're in cookies)
|
|
11
|
+
*
|
|
12
|
+
* Endpoints:
|
|
13
|
+
* - Login/Signup/Refresh: Returns `message` and `isRequiresMfa`
|
|
14
|
+
* - Verify 2FA: Returns only `message`
|
|
15
|
+
*
|
|
16
|
+
* Note: When using header mode (`accessTokenType: 'header'`),
|
|
17
|
+
* the response includes tokens AND message (see AuthWithTokensResponseDto).
|
|
18
|
+
*
|
|
19
|
+
* @example Cookie Mode - Login Response
|
|
20
|
+
* ```json
|
|
21
|
+
* {
|
|
22
|
+
* "message": "Login successful",
|
|
23
|
+
* "isRequiresMfa": false
|
|
24
|
+
* }
|
|
25
|
+
* ```
|
|
26
|
+
* Tokens are in Set-Cookie headers, not in response body.
|
|
27
|
+
*
|
|
28
|
+
* @example Header Mode - Login Response
|
|
29
|
+
* ```json
|
|
30
|
+
* {
|
|
31
|
+
* "message": "Login successful",
|
|
32
|
+
* "accessToken": "eyJhbGc...",
|
|
33
|
+
* "refreshToken": "eyJhbGc...",
|
|
34
|
+
* "isRequiresMfa": false
|
|
35
|
+
* }
|
|
36
|
+
* ```
|
|
37
|
+
* Tokens are in response body.
|
|
38
|
+
*/
|
|
39
|
+
export class AuthCookieResponseDto {
|
|
40
|
+
@ApiProperty({
|
|
41
|
+
description: 'Success message indicating the operation result',
|
|
42
|
+
example: 'Authentication successful',
|
|
43
|
+
examples: [
|
|
44
|
+
'Signup successful',
|
|
45
|
+
'Login successful',
|
|
46
|
+
'Token refreshed successfully',
|
|
47
|
+
'2FA verification successful'
|
|
48
|
+
]
|
|
49
|
+
})
|
|
50
|
+
message: string;
|
|
51
|
+
|
|
52
|
+
@ApiPropertyOptional({
|
|
53
|
+
description: 'Whether multi-factor authentication is required (only for login/signup/refresh)',
|
|
54
|
+
example: false,
|
|
55
|
+
required: false
|
|
56
|
+
})
|
|
57
|
+
isRequiresMfa?: boolean;
|
|
58
|
+
}
|
|
@@ -0,0 +1,58 @@
|
|
|
1
|
+
import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';
|
|
2
|
+
|
|
3
|
+
/**
|
|
4
|
+
* Auth Success Response DTO
|
|
5
|
+
*
|
|
6
|
+
* Used when `accessTokenType: 'cookie'` - tokens are set in HTTP-only cookies.
|
|
7
|
+
*
|
|
8
|
+
* Response Format:
|
|
9
|
+
* - Contains `message` and optionally `isRequiresMfa`
|
|
10
|
+
* - Does NOT contain `accessToken` or `refreshToken` (they're in cookies)
|
|
11
|
+
*
|
|
12
|
+
* Endpoints:
|
|
13
|
+
* - Login/Signup/Refresh: Returns `message` and `isRequiresMfa`
|
|
14
|
+
* - Verify 2FA: Returns only `message`
|
|
15
|
+
*
|
|
16
|
+
* Note: When using header mode (`accessTokenType: 'header'`),
|
|
17
|
+
* the response includes tokens AND message (see AuthResponseDto).
|
|
18
|
+
*
|
|
19
|
+
* @example Cookie Mode - Login Response
|
|
20
|
+
* ```json
|
|
21
|
+
* {
|
|
22
|
+
* "message": "Login successful",
|
|
23
|
+
* "isRequiresMfa": false
|
|
24
|
+
* }
|
|
25
|
+
* ```
|
|
26
|
+
* Tokens are in Set-Cookie headers, not in response body.
|
|
27
|
+
*
|
|
28
|
+
* @example Header Mode - Login Response
|
|
29
|
+
* ```json
|
|
30
|
+
* {
|
|
31
|
+
* "message": "Login successful",
|
|
32
|
+
* "accessToken": "eyJhbGc...",
|
|
33
|
+
* "refreshToken": "eyJhbGc...",
|
|
34
|
+
* "isRequiresMfa": false
|
|
35
|
+
* }
|
|
36
|
+
* ```
|
|
37
|
+
* Tokens are in response body.
|
|
38
|
+
*/
|
|
39
|
+
export class AuthSuccessResponseDto {
|
|
40
|
+
@ApiProperty({
|
|
41
|
+
description: 'Success message indicating the operation result',
|
|
42
|
+
example: 'Authentication successful',
|
|
43
|
+
examples: [
|
|
44
|
+
'Signup successful',
|
|
45
|
+
'Login successful',
|
|
46
|
+
'Token refreshed successfully',
|
|
47
|
+
'2FA verification successful'
|
|
48
|
+
]
|
|
49
|
+
})
|
|
50
|
+
message: string;
|
|
51
|
+
|
|
52
|
+
@ApiPropertyOptional({
|
|
53
|
+
description: 'Whether multi-factor authentication is required (only for login/signup/refresh)',
|
|
54
|
+
example: false,
|
|
55
|
+
required: false
|
|
56
|
+
})
|
|
57
|
+
isRequiresMfa?: boolean;
|
|
58
|
+
}
|