@ackplus/nest-auth 1.1.0 → 1.1.2

package/src/lib/auth/interceptors/{refresh-token.interceptor.ts → refresh-token.interceptor.js}

@@ -1,13 +1,13 @@
-import { Injectable, NestInterceptor, ExecutionContext, CallHandler } from '@nestjs/common';
-import { Observable, throwError } from 'rxjs';
-import { catchError } from 'rxjs/operators';
-import { Request, Response } from 'express';
-import { AuthService } from '../services/auth.service';
-import { CookieService } from '../services/cookie.service';
-import { JwtService } from '../../core/services/jwt.service';
-import { AuthConfigService } from '../../core/services/auth-config.service';
-import { REFRESH_TOKEN_COOKIE_NAME, UNAUTHORIZED_EXCEPTION_CODE } from '../../auth.constants';
-
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RefreshTokenInterceptor = void 0;
+const tslib_1 = require("tslib");
+const common_1 = require("@nestjs/common");
+const auth_service_1 = require("../services/auth.service");
+const cookie_service_1 = require("../services/cookie.service");
+const jwt_service_1 = require("../../core/services/jwt.service");
+const auth_config_service_1 = require("../../core/services/auth-config.service");
+const auth_constants_1 = require("../../auth.constants");
 /**
  * RefreshTokenInterceptor
  *
@@ -32,86 +32,84 @@ import { REFRESH_TOKEN_COOKIE_NAME, UNAUTHORIZED_EXCEPTION_CODE } from '../../au
  * ]
  * ```
  */
-@Injectable()
-export class RefreshTokenInterceptor implements NestInterceptor {
-    constructor(
-        private readonly authService: AuthService,
-        private readonly cookieService: CookieService,
-        private readonly jwtService: JwtService,
-        private readonly authConfig: AuthConfigService,
-    ) { }
-
-    async intercept(context: ExecutionContext, next: CallHandler): Promise<Observable<any>> {
-        const request = context.switchToHttp().getRequest<Request>();
-        const response = context.switchToHttp().getResponse<Response>();
-
+let RefreshTokenInterceptor = class RefreshTokenInterceptor {
+    constructor(authService, cookieService, jwtService, authConfig) {
+        this.authService = authService;
+        this.cookieService = cookieService;
+        this.jwtService = jwtService;
+        this.authConfig = authConfig;
+    }
+    async intercept(context, next) {
+        const request = context.switchToHttp().getRequest();
+        const response = context.switchToHttp().getResponse();
         // Extract access token from Authorization header
         const authHeader = request.headers.authorization;
         if (!authHeader || !authHeader.startsWith('Bearer ')) {
             // No bearer token, proceed normally
             return next.handle();
         }
-
         const accessToken = authHeader.split(' ')[1];
         if (!accessToken) {
             return next.handle();
         }
-
         // Try to verify the access token
         try {
             await this.jwtService.verifyToken(accessToken);
             // Token is valid, proceed normally
             return next.handle();
-        } catch (error) {
+        }
+        catch (error) {
             // Token is invalid or expired, try to refresh
             const refreshToken = this.extractRefreshToken(request);
-
             if (!refreshToken) {
                 // No refresh token available, let the guard handle it
                 return next.handle();
             }
-
             try {
                 // Attempt to refresh the token
                 const newSession = await this.authService.refreshToken(refreshToken);
-
                 // Get auth configuration
                 const config = this.authConfig.getConfig();
                 const useCookies = config.accessTokenType === 'cookie';
-
                 if (useCookies) {
                     // Cookie-based auth: Set tokens in cookies
                     this.cookieService.setTokens(response, newSession.accessToken, newSession.refreshToken);
-                } else {
+                }
+                else {
                     // Header-based auth (default): Update Authorization header only
                     request.headers.authorization = `Bearer ${newSession.accessToken}`;
                 }
-
                 // Proceed with the new token
                 return next.handle();
-            } catch (refreshError) {
+            }
+            catch (refreshError) {
                 // Refresh failed, let the guard handle the authentication failure
                 return next.handle();
             }
         }
     }
-
     /**
      * Extract refresh token from cookies or headers
      */
-    private extractRefreshToken(request: Request): string | null {
+    extractRefreshToken(request) {
         // Try to get refresh token from cookies
-        const tokenFromCookie = request.cookies?.[REFRESH_TOKEN_COOKIE_NAME];
+        const tokenFromCookie = request.cookies?.[auth_constants_1.REFRESH_TOKEN_COOKIE_NAME];
         if (tokenFromCookie) {
             return tokenFromCookie;
         }
-
         // If not in cookies, try the custom header
         const authHeader = request.headers['x-refresh-token'];
         if (authHeader) {
-            return authHeader as string;
+            return authHeader;
         }
-
         return null;
     }
-}
+};
+exports.RefreshTokenInterceptor = RefreshTokenInterceptor;
+exports.RefreshTokenInterceptor = RefreshTokenInterceptor = tslib_1.__decorate([
+    (0, common_1.Injectable)(),
+    tslib_1.__metadata("design:paramtypes", [auth_service_1.AuthService,
+        cookie_service_1.CookieService,
+        jwt_service_1.JwtService,
+        auth_config_service_1.AuthConfigService])
+], RefreshTokenInterceptor);

package/src/lib/auth/services/auth.service.d.ts

@@ -0,0 +1,67 @@
+import { Repository } from 'typeorm';
+import { NestAuthUser } from '../../user/entities/user.entity';
+import { NestAuthOTP } from '../../auth/entities/otp.entity';
+import { MfaService } from './mfa.service';
+import { JwtService } from '../../core/services/jwt.service';
+import { EventEmitter2 } from '@nestjs/event-emitter';
+import { SessionManagerService } from '../../session/services/session-manager.service';
+import { SignupRequestDto } from '../dto/requests/signup.request.dto';
+import { AuthResponseDto } from '../dto/responses/auth.response.dto';
+import { LoginRequestDto } from '../dto/requests/login.request.dto';
+import { Verify2faRequestDto } from '../dto/requests/verify-2fa.request.dto';
+import { MFAMethodEnum } from '../../core/interfaces/mfa-options.interface';
+import { ForgotPasswordRequestDto } from '../dto/requests/forgot-password.request.dto';
+import { ResetPasswordRequestDto } from '../dto/requests/reset-password.request.dto';
+import { AuthProviderRegistryService } from '../../core/services/auth-provider-registry.service';
+import { TenantService } from '../../tenant/services/tenant.service';
+import { DebugLoggerService } from '../../core/services/debug-logger.service';
+import { VerifyForgotPasswordOtpRequestDto } from '../dto/requests/verify-forgot-password-otp-request-dto';
+import { ResetPasswordWithTokenRequestDto } from '../dto/requests/reset-password-with-token.request.dto';
+import { ChangePasswordRequestDto } from '../dto/requests/change-password.request.dto';
+import { VerifyOtpResponseDto } from '../dto/responses/verify-otp.response.dto';
+import { SendEmailVerificationRequestDto } from '../dto/requests/send-email-verification.request.dto';
+import { VerifyEmailRequestDto } from '../dto/requests/verify-email.request.dto';
+export declare class AuthService {
+    private readonly userRepository;
+    private otpRepository;
+    private readonly authProviderRegistry;
+    private readonly mfaService;
+    private readonly sessionManager;
+    private readonly jwtService;
+    private readonly eventEmitter;
+    private readonly tenantService;
+    private readonly debugLogger;
+    constructor(userRepository: Repository<NestAuthUser>, otpRepository: Repository<NestAuthOTP>, authProviderRegistry: AuthProviderRegistryService, mfaService: MfaService, sessionManager: SessionManagerService, jwtService: JwtService, eventEmitter: EventEmitter2, tenantService: TenantService, debugLogger: DebugLoggerService);
+    getUserWithRolesAndPermissions(userId: string, relations?: string[]): Promise<NestAuthUser>;
+    getUser(): Promise<NestAuthUser>;
+    signup(input: SignupRequestDto): Promise<AuthResponseDto>;
+    login(input: LoginRequestDto): Promise<AuthResponseDto>;
+    verify2fa(input: Verify2faRequestDto): Promise<{
+        accessToken: string;
+        refreshToken: string;
+    }>;
+    send2faCode(userId: string, method: MFAMethodEnum): Promise<boolean>;
+    private handleSocialLogin;
+    refreshToken(refreshToken: string): Promise<{
+        accessToken: string;
+        refreshToken: string;
+    }>;
+    changePassword(input: ChangePasswordRequestDto): Promise<AuthResponseDto>;
+    forgotPassword(input: ForgotPasswordRequestDto): Promise<true | {
+        message: string;
+    }>;
+    verifyForgotPasswordOtp(input: VerifyForgotPasswordOtpRequestDto): Promise<VerifyOtpResponseDto>;
+    resetPassword(input: ResetPasswordRequestDto): Promise<boolean>;
+    resetPasswordWithToken(input: ResetPasswordWithTokenRequestDto): Promise<boolean>;
+    logout(logoutType?: 'user' | 'admin' | 'system', reason?: string): Promise<boolean>;
+    logoutAll(userId: string, logoutType?: 'user' | 'admin' | 'system', reason?: string): Promise<boolean>;
+    sendEmailVerification(input: SendEmailVerificationRequestDto): Promise<{
+        message: string;
+    }>;
+    verifyEmail(input: VerifyEmailRequestDto): Promise<{
+        message: string;
+    }>;
+    private generateTokensPayload;
+    private generateTokensFromSession;
+}
+//# sourceMappingURL=auth.service.d.ts.map

package/src/lib/auth/services/auth.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.service.d.ts","sourceRoot":"","sources":["../../../../../../../packages/nest-auth/src/lib/auth/services/auth.service.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAC/D,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAa7D,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAC3C,OAAO,EAAE,UAAU,EAAE,MAAM,iCAAiC,CAAC;AAC7D,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AACtD,OAAO,EAAE,qBAAqB,EAAE,MAAM,gDAAgD,CAAC;AAEvF,OAAO,EAAE,gBAAgB,EAAE,MAAM,oCAAoC,CAAC;AACtE,OAAO,EAAE,eAAe,EAAE,MAAM,oCAAoC,CAAC;AACrE,OAAO,EAAE,eAAe,EAAE,MAAM,mCAAmC,CAAC;AACpE,OAAO,EAAE,mBAAmB,EAAE,MAAM,wCAAwC,CAAC;AAC7E,OAAO,EAAE,aAAa,EAAE,MAAM,6CAA6C,CAAC;AAE5E,OAAO,EAAE,wBAAwB,EAAE,MAAM,6CAA6C,CAAC;AAEvF,OAAO,EAAE,uBAAuB,EAAE,MAAM,4CAA4C,CAAC;AAUrF,OAAO,EAAE,2BAA2B,EAAE,MAAM,oDAAoD,CAAC;AACjG,OAAO,EAAE,aAAa,EAAE,MAAM,sCAAsC,CAAC;AACrE,OAAO,EAAE,kBAAkB,EAAE,MAAM,0CAA0C,CAAC;AAE9E,OAAO,EAAE,iCAAiC,EAAE,MAAM,wDAAwD,CAAC;AAC3G,OAAO,EAAE,gCAAgC,EAAE,MAAM,uDAAuD,CAAC;AACzG,OAAO,EAAE,wBAAwB,EAAE,MAAM,6CAA6C,CAAC;AACvF,OAAO,EAAE,oBAAoB,EAAE,MAAM,0CAA0C,CAAC;AAChF,OAAO,EAAE,+BAA+B,EAAE,MAAM,qDAAqD,CAAC;AACtG,OAAO,EAAE,qBAAqB,EAAE,MAAM,0CAA0C,CAAC;AAEjF,qBACa,WAAW;IAIhB,OAAO,CAAC,QAAQ,CAAC,cAAc;IAG/B,OAAO,CAAC,aAAa;IAErB,OAAO,CAAC,QAAQ,CAAC,oBAAoB;IAErC,OAAO,CAAC,QAAQ,CAAC,UAAU;IAE3B,OAAO,CAAC,QAAQ,CAAC,cAAc;IAE/B,OAAO,CAAC,QAAQ,CAAC,UAAU;IAE3B,OAAO,CAAC,QAAQ,CAAC,YAAY;IAE7B,OAAO,CAAC,QAAQ,CAAC,aAAa;IAE9B,OAAO,CAAC,QAAQ,CAAC,WAAW;gBAjBX,cAAc,EAAE,UAAU,CAAC,YAAY,CAAC,EAGjD,aAAa,EAAE,UAAU,CAAC,WAAW,CAAC,EAE7B,oBAAoB,EAAE,2BAA2B,EAEjD,UAAU,EAAE,UAAU,EAEtB,cAAc,EAAE,qBAAqB,EAErC,UAAU,EAAE,UAAU,EAEtB,YAAY,EAAE,aAAa,EAE3B,aAAa,EAAE,aAAa,EAE5B,WAAW,EAAE,kBAAkB;IAKpD,8BAA8B,CAAC,MAAM,EAAE,MAAM,EAAE,SAAS,GAAE,MAAM,EAAO,GAAG,OAAO,CAAC,YAAY,CAAC;IAUzF,OAAO;IAQP,MAAM,CAAC,KAAK,EAAE,gBAAgB,GAAG,OAAO,CAAC,eAAe,CAAC;IAiGzD,KAAK,CAAC,KAAK,EAAE,eAAe,GAAG,OAAO,CAAC,eAAe,CAAC;IAsEvD,SAAS,CAAC,KAAK,EAAE,mBAAmB;;;;IA4DpC,WAAW,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,aAAa;YAYzC,iBAAiB;IAiCzB,YAAY,CAAC,YAAY,EAAE,MAAM;qBA6jBkD,MAAM;sBAAgB,MAAM;;IA7f/G,cAAc,CAAC,KAAK,EAAE,wBAAwB,GAAG,OAAO,CAAC,eAAe,CAAC;IAiDzE,cAAc,CAAC,KAAK,EAAE,wBAAwB;;;IAyE9C,uBAAuB,CAAC,KAAK,EAAE,iCAAiC,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAyEhG,aAAa,CAAC,KAAK,EAAE,uBAAuB;IAqE5C,sBAAsB,CAAC,KAAK,EAAE,gCAAgC;IAyD9D,MAAM,CAAC,UAAU,GAAE,MAAM,GAAG,OAAO,GAAG,QAAiB,EAAE,MAAM,CAAC,EAAE,MAAM;IAwBxE,SAAS,CAAC,MAAM,EAAE,MAAM,EAAE,UAAU,GAAE,MAAM,GAAG,OAAO,GAAG,QAAiB,EAAE,MAAM,CAAC,EAAE,MAAM;IA4B3F,qBAAqB,CAAC,KAAK,EAAE,+BAA+B;;;IAmD5D,WAAW,CAAC,KAAK,EAAE,qBAAqB;;;IAkE9C,OAAO,CAAC,qBAAqB;YAmBf,yBAAyB;CAK1C"}