@ackplus/nest-auth 1.1.0 → 1.1.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/package.json +2 -2
- package/src/{index.ts → index.d.ts} +2 -18
- package/src/index.d.ts.map +1 -0
- package/src/index.js +24 -0
- package/src/lib/admin-console/admin-console.module.d.ts +3 -0
- package/src/lib/admin-console/admin-console.module.d.ts.map +1 -0
- package/src/lib/admin-console/admin-console.module.js +69 -0
- package/src/lib/admin-console/controllers/admin-auth.controller.d.ts +134 -0
- package/src/lib/admin-console/controllers/admin-auth.controller.d.ts.map +1 -0
- package/src/lib/admin-console/controllers/admin-auth.controller.js +374 -0
- package/src/lib/admin-console/controllers/admin-console.controller.d.ts +14 -0
- package/src/lib/admin-console/controllers/admin-console.controller.d.ts.map +1 -0
- package/src/lib/admin-console/controllers/admin-console.controller.js +87 -0
- package/src/lib/admin-console/controllers/admin-permissions.controller.d.ts +86 -0
- package/src/lib/admin-console/controllers/admin-permissions.controller.d.ts.map +1 -0
- package/src/lib/admin-console/controllers/admin-permissions.controller.js +195 -0
- package/src/lib/admin-console/controllers/admin-roles.controller.d.ts +47 -0
- package/src/lib/admin-console/controllers/admin-roles.controller.d.ts.map +1 -0
- package/src/lib/admin-console/controllers/admin-roles.controller.js +95 -0
- package/src/lib/admin-console/controllers/admin-tenants.controller.d.ts +44 -0
- package/src/lib/admin-console/controllers/admin-tenants.controller.d.ts.map +1 -0
- package/src/lib/admin-console/controllers/admin-tenants.controller.js +86 -0
- package/src/lib/admin-console/controllers/admin-users.controller.d.ts +146 -0
- package/src/lib/admin-console/controllers/admin-users.controller.d.ts.map +1 -0
- package/src/lib/admin-console/controllers/admin-users.controller.js +400 -0
- package/src/lib/admin-console/decorators/current-admin.decorator.d.ts +2 -0
- package/src/lib/admin-console/decorators/current-admin.decorator.d.ts.map +1 -0
- package/src/lib/admin-console/decorators/current-admin.decorator.js +8 -0
- package/src/lib/admin-console/dto/admin-permission.dto.d.ts +16 -0
- package/src/lib/admin-console/dto/admin-permission.dto.d.ts.map +1 -0
- package/src/lib/admin-console/dto/admin-permission.dto.js +123 -0
- package/src/lib/admin-console/dto/admin-role.dto.d.ts +13 -0
- package/src/lib/admin-console/dto/admin-role.dto.d.ts.map +1 -0
- package/src/lib/admin-console/dto/admin-role.dto.js +53 -0
- package/src/lib/admin-console/dto/admin-tenant.dto.d.ts +13 -0
- package/src/lib/admin-console/dto/admin-tenant.dto.d.ts.map +1 -0
- package/src/lib/admin-console/dto/admin-tenant.dto.js +57 -0
- package/src/lib/admin-console/dto/admin-user.dto.d.ts +21 -0
- package/src/lib/admin-console/dto/admin-user.dto.d.ts.map +1 -0
- package/src/lib/admin-console/dto/admin-user.dto.js +94 -0
- package/src/lib/admin-console/dto/create-dashboard-admin.dto.d.ts +10 -0
- package/src/lib/admin-console/dto/create-dashboard-admin.dto.d.ts.map +1 -0
- package/src/lib/admin-console/dto/create-dashboard-admin.dto.js +39 -0
- package/src/lib/admin-console/dto/login.dto.d.ts +5 -0
- package/src/lib/admin-console/dto/login.dto.d.ts.map +1 -0
- package/src/lib/admin-console/dto/login.dto.js +17 -0
- package/src/lib/admin-console/dto/reset-password.dto.d.ts +6 -0
- package/src/lib/admin-console/dto/reset-password.dto.d.ts.map +1 -0
- package/src/lib/admin-console/dto/reset-password.dto.js +26 -0
- package/src/lib/admin-console/dto/setup-admin.dto.d.ts +7 -0
- package/src/lib/admin-console/dto/setup-admin.dto.d.ts.map +1 -0
- package/src/lib/admin-console/dto/setup-admin.dto.js +29 -0
- package/src/lib/admin-console/dto/signup.dto.d.ts +8 -0
- package/src/lib/admin-console/dto/signup.dto.d.ts.map +1 -0
- package/src/lib/admin-console/dto/signup.dto.js +58 -0
- package/src/lib/admin-console/entities/admin-user.entity.d.ts +16 -0
- package/src/lib/admin-console/entities/admin-user.entity.d.ts.map +1 -0
- package/src/lib/admin-console/entities/admin-user.entity.js +86 -0
- package/src/lib/admin-console/guards/admin-session.guard.d.ts +17 -0
- package/src/lib/admin-console/guards/admin-session.guard.d.ts.map +1 -0
- package/src/lib/admin-console/guards/admin-session.guard.js +40 -0
- package/src/lib/admin-console/services/admin-auth.service.d.ts +22 -0
- package/src/lib/admin-console/services/admin-auth.service.d.ts.map +1 -0
- package/src/lib/admin-console/services/admin-auth.service.js +77 -0
- package/src/lib/admin-console/services/admin-console-config.service.d.ts +17 -0
- package/src/lib/admin-console/services/admin-console-config.service.d.ts.map +1 -0
- package/src/lib/admin-console/services/admin-console-config.service.js +58 -0
- package/src/lib/admin-console/services/admin-session.service.d.ts +27 -0
- package/src/lib/admin-console/services/admin-session.service.d.ts.map +1 -0
- package/src/lib/admin-console/services/admin-session.service.js +94 -0
- package/src/lib/admin-console/services/admin-user.service.d.ts +24 -0
- package/src/lib/admin-console/services/admin-user.service.d.ts.map +1 -0
- package/src/lib/admin-console/services/admin-user.service.js +87 -0
- package/src/lib/auth/auth.module.d.ts +3 -0
- package/src/lib/auth/auth.module.d.ts.map +1 -0
- package/src/lib/auth/auth.module.js +64 -0
- package/src/lib/auth/controllers/auth.controller.d.ts +67 -0
- package/src/lib/auth/controllers/auth.controller.d.ts.map +1 -0
- package/src/lib/auth/controllers/auth.controller.js +471 -0
- package/src/lib/auth/controllers/mfa.controller.d.ts +34 -0
- package/src/lib/auth/controllers/mfa.controller.d.ts.map +1 -0
- package/src/lib/auth/controllers/mfa.controller.js +230 -0
- package/src/lib/auth/dto/credentials/email-credentials.dto.d.ts +8 -0
- package/src/lib/auth/dto/credentials/email-credentials.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/credentials/email-credentials.dto.js +31 -0
- package/src/lib/auth/dto/credentials/phone-credentials.dto.d.ts +8 -0
- package/src/lib/auth/dto/credentials/phone-credentials.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/credentials/phone-credentials.dto.js +31 -0
- package/src/lib/auth/dto/credentials/social-credentials.dto.d.ts +7 -0
- package/src/lib/auth/dto/credentials/social-credentials.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/credentials/social-credentials.dto.js +21 -0
- package/src/lib/auth/dto/index.d.ts +1 -0
- package/src/lib/auth/dto/index.d.ts.map +1 -0
- package/src/lib/auth/dto/index.js +0 -0
- package/src/lib/auth/dto/requests/change-password.request.dto.d.ts +5 -0
- package/src/lib/auth/dto/requests/change-password.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/change-password.request.dto.js +42 -0
- package/src/lib/auth/dto/requests/forgot-password.request.dto.d.ts +6 -0
- package/src/lib/auth/dto/requests/forgot-password.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/forgot-password.request.dto.js +38 -0
- package/src/lib/auth/dto/requests/initialize-admin.request.dto.d.ts +8 -0
- package/src/lib/auth/dto/requests/initialize-admin.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/initialize-admin.request.dto.js +58 -0
- package/src/lib/auth/dto/requests/login.request.dto.d.ts +13 -0
- package/src/lib/auth/dto/requests/login.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/login.request.dto.js +75 -0
- package/src/lib/auth/dto/requests/refresh-token.request.dto.d.ts +4 -0
- package/src/lib/auth/dto/requests/refresh-token.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/refresh-token.request.dto.js +18 -0
- package/src/lib/auth/dto/requests/reset-password-with-token.request.dto.d.ts +5 -0
- package/src/lib/auth/dto/requests/reset-password-with-token.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/reset-password-with-token.request.dto.js +29 -0
- package/src/lib/auth/dto/requests/reset-password.request.dto.d.ts +8 -0
- package/src/lib/auth/dto/requests/reset-password.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/reset-password.request.dto.js +60 -0
- package/src/lib/auth/dto/requests/send-email-verification.request.dto.d.ts +4 -0
- package/src/lib/auth/dto/requests/send-email-verification.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/send-email-verification.request.dto.js +18 -0
- package/src/lib/auth/dto/requests/send-mfa-code.request.dto.d.ts +5 -0
- package/src/lib/auth/dto/requests/send-mfa-code.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/send-mfa-code.request.dto.js +25 -0
- package/src/lib/auth/dto/requests/signup.request.dto.d.ts +8 -0
- package/src/lib/auth/dto/requests/signup.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/signup.request.dto.js +49 -0
- package/src/lib/auth/dto/requests/toggle-mfa.request.dto.d.ts +4 -0
- package/src/lib/auth/dto/requests/toggle-mfa.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/toggle-mfa.request.dto.js +18 -0
- package/src/lib/auth/dto/requests/verify-2fa.request.dto.d.ts +6 -0
- package/src/lib/auth/dto/requests/verify-2fa.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/verify-2fa.request.dto.js +31 -0
- package/src/lib/auth/dto/requests/verify-email.request.dto.d.ts +5 -0
- package/src/lib/auth/dto/requests/verify-email.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/verify-email.request.dto.js +29 -0
- package/src/lib/auth/dto/requests/verify-forgot-password-otp-request-dto.d.ts +7 -0
- package/src/lib/auth/dto/requests/verify-forgot-password-otp-request-dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/verify-forgot-password-otp-request-dto.js +49 -0
- package/src/lib/auth/dto/requests/verify-totp-setup.request.dto.d.ts +5 -0
- package/src/lib/auth/dto/requests/verify-totp-setup.request.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/requests/verify-totp-setup.request.dto.js +29 -0
- package/src/lib/auth/dto/responses/auth-cookie.response.dto.d.ts +41 -0
- package/src/lib/auth/dto/responses/auth-cookie.response.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/responses/{auth-cookie.response.dto.ts → auth-cookie.response.dto.js} +18 -11
- package/src/lib/auth/dto/responses/auth-success.response.dto.d.ts +41 -0
- package/src/lib/auth/dto/responses/auth-success.response.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/responses/{auth-success.response.dto.ts → auth-success.response.dto.js} +18 -11
- package/src/lib/auth/dto/responses/auth.response.dto.d.ts +40 -0
- package/src/lib/auth/dto/responses/auth.response.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/responses/auth.response.dto.js +112 -0
- package/src/lib/auth/dto/responses/client-config.response.dto.d.ts +58 -0
- package/src/lib/auth/dto/responses/client-config.response.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/responses/client-config.response.dto.js +202 -0
- package/src/lib/auth/dto/responses/initialize-admin.response.dto.d.ts +7 -0
- package/src/lib/auth/dto/responses/initialize-admin.response.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/responses/initialize-admin.response.dto.js +30 -0
- package/src/lib/auth/dto/responses/mfa-code-response.dto.d.ts +7 -0
- package/src/lib/auth/dto/responses/mfa-code-response.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/responses/mfa-code-response.dto.js +36 -0
- package/src/lib/auth/dto/responses/mfa-status.response.dto.d.ts +19 -0
- package/src/lib/auth/dto/responses/mfa-status.response.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/responses/mfa-status.response.dto.js +108 -0
- package/src/lib/auth/dto/responses/verify-otp.response.dto.d.ts +5 -0
- package/src/lib/auth/dto/responses/verify-otp.response.dto.d.ts.map +1 -0
- package/src/lib/auth/dto/responses/verify-otp.response.dto.js +16 -0
- package/src/lib/auth/entities/mfa-secret.entity.d.ts +13 -0
- package/src/lib/auth/entities/mfa-secret.entity.d.ts.map +1 -0
- package/src/lib/auth/entities/mfa-secret.entity.js +49 -0
- package/src/lib/auth/entities/otp.entity.d.ts +14 -0
- package/src/lib/auth/entities/otp.entity.d.ts.map +1 -0
- package/src/lib/auth/entities/otp.entity.js +49 -0
- package/src/lib/auth/events/{logged-out-all.event.ts → logged-out-all.event.d.ts} +4 -6
- package/src/lib/auth/events/logged-out-all.event.d.ts.map +1 -0
- package/src/lib/auth/events/logged-out-all.event.js +9 -0
- package/src/lib/auth/events/{logged-out.event.ts → logged-out.event.d.ts} +4 -5
- package/src/lib/auth/events/logged-out.event.d.ts.map +1 -0
- package/src/lib/auth/events/logged-out.event.js +9 -0
- package/src/lib/auth/events/{password-reset-requested.event.ts → password-reset-requested.event.d.ts} +4 -6
- package/src/lib/auth/events/password-reset-requested.event.d.ts.map +1 -0
- package/src/lib/auth/events/password-reset-requested.event.js +9 -0
- package/src/lib/auth/events/{password-reset.event.ts → password-reset.event.d.ts} +4 -6
- package/src/lib/auth/events/password-reset.event.d.ts.map +1 -0
- package/src/lib/auth/events/password-reset.event.js +9 -0
- package/src/lib/auth/events/{user-2fa-verified.event.ts → user-2fa-verified.event.d.ts} +4 -6
- package/src/lib/auth/events/user-2fa-verified.event.d.ts.map +1 -0
- package/src/lib/auth/events/user-2fa-verified.event.js +9 -0
- package/src/lib/auth/events/{user-logged-in.event.ts → user-logged-in.event.d.ts} +4 -7
- package/src/lib/auth/events/user-logged-in.event.d.ts.map +1 -0
- package/src/lib/auth/events/user-logged-in.event.js +10 -0
- package/src/lib/auth/events/{user-refresh-token.event.ts → user-refresh-token.event.d.ts} +4 -6
- package/src/lib/auth/events/user-refresh-token.event.d.ts.map +1 -0
- package/src/lib/auth/events/user-refresh-token.event.js +9 -0
- package/src/lib/auth/events/{user-registered.event.ts → user-registered.event.d.ts} +4 -7
- package/src/lib/auth/events/user-registered.event.d.ts.map +1 -0
- package/src/lib/auth/events/user-registered.event.js +10 -0
- package/src/lib/auth/guards/auth.guard.d.ts +56 -0
- package/src/lib/auth/guards/auth.guard.d.ts.map +1 -0
- package/src/lib/auth/guards/{auth.guard.ts → auth.guard.js} +92 -135
- package/src/lib/auth/{index.ts → index.d.ts} +1 -13
- package/src/lib/auth/index.d.ts.map +1 -0
- package/src/lib/auth/index.js +51 -0
- package/src/lib/auth/interceptors/refresh-token.interceptor.d.ts +43 -0
- package/src/lib/auth/interceptors/refresh-token.interceptor.d.ts.map +1 -0
- package/src/lib/auth/interceptors/{refresh-token.interceptor.ts → refresh-token.interceptor.js} +38 -40
- package/src/lib/auth/services/auth.service.d.ts +67 -0
- package/src/lib/auth/services/auth.service.d.ts.map +1 -0
- package/src/lib/auth/services/{auth.service.ts → auth.service.js} +262 -475
- package/src/lib/auth/services/client-config.service.d.ts +12 -0
- package/src/lib/auth/services/client-config.service.d.ts.map +1 -0
- package/src/lib/auth/services/{client-config.service.ts → client-config.service.js} +28 -33
- package/src/lib/auth/services/cookie.service.d.ts +10 -0
- package/src/lib/auth/services/cookie.service.d.ts.map +1 -0
- package/src/lib/auth/services/cookie.service.js +42 -0
- package/src/lib/auth/services/mfa.service.d.ts +45 -0
- package/src/lib/auth/services/mfa.service.d.ts.map +1 -0
- package/src/lib/auth/services/{mfa.service.ts → mfa.service.js} +105 -184
- package/src/lib/auth.constants.d.ts +43 -0
- package/src/lib/auth.constants.d.ts.map +1 -0
- package/src/lib/auth.constants.js +54 -0
- package/src/lib/core/core.module.d.ts +7 -0
- package/src/lib/core/core.module.d.ts.map +1 -0
- package/src/lib/core/core.module.js +57 -0
- package/src/lib/core/decorators/{auth.decorator.ts → auth.decorator.d.ts} +2 -7
- package/src/lib/core/decorators/auth.decorator.d.ts.map +1 -0
- package/src/lib/core/decorators/auth.decorator.js +38 -0
- package/src/lib/core/decorators/permissions.decorator.d.ts +8 -0
- package/src/lib/core/decorators/permissions.decorator.d.ts.map +1 -0
- package/src/lib/core/decorators/permissions.decorator.js +18 -0
- package/src/lib/core/decorators/{public.decorator.ts → public.decorator.d.ts} +3 -5
- package/src/lib/core/decorators/public.decorator.d.ts.map +1 -0
- package/src/lib/core/decorators/public.decorator.js +35 -0
- package/src/lib/core/decorators/role.decorator.d.ts +4 -0
- package/src/lib/core/decorators/role.decorator.d.ts.map +1 -0
- package/src/lib/core/decorators/role.decorator.js +13 -0
- package/src/lib/core/decorators/skip-mfa.decorator.d.ts +3 -0
- package/src/lib/core/decorators/skip-mfa.decorator.d.ts.map +1 -0
- package/src/lib/core/decorators/skip-mfa.decorator.js +7 -0
- package/src/lib/core/dto/message.response.dto.d.ts +4 -0
- package/src/lib/core/dto/message.response.dto.d.ts.map +1 -0
- package/src/lib/core/dto/message.response.dto.js +12 -0
- package/src/lib/core/{entities.ts → entities.d.ts} +2 -14
- package/src/lib/core/entities.d.ts.map +1 -0
- package/src/lib/core/entities.js +37 -0
- package/src/lib/core/{index.ts → index.d.ts} +1 -15
- package/src/lib/core/index.d.ts.map +1 -0
- package/src/lib/core/index.js +35 -0
- package/src/lib/core/interfaces/{auth-module-options.interface.ts → auth-module-options.interface.d.ts} +13 -16
- package/src/lib/core/interfaces/auth-module-options.interface.d.ts.map +1 -0
- package/src/lib/core/interfaces/auth-module-options.interface.js +2 -0
- package/src/lib/core/interfaces/mfa-options.interface.d.ts +26 -0
- package/src/lib/core/interfaces/mfa-options.interface.d.ts.map +1 -0
- package/src/lib/core/interfaces/mfa-options.interface.js +9 -0
- package/src/lib/core/interfaces/otp.interface.d.ts +6 -0
- package/src/lib/core/interfaces/otp.interface.d.ts.map +1 -0
- package/src/lib/core/interfaces/otp.interface.js +9 -0
- package/src/lib/core/interfaces/session-options.interface.d.ts +16 -0
- package/src/lib/core/interfaces/session-options.interface.d.ts.map +1 -0
- package/src/lib/core/interfaces/session-options.interface.js +9 -0
- package/src/lib/core/interfaces/{token-payload.interface.ts → token-payload.interface.d.ts} +2 -4
- package/src/lib/core/interfaces/token-payload.interface.d.ts.map +1 -0
- package/src/lib/core/interfaces/token-payload.interface.js +2 -0
- package/src/lib/core/providers/apple-auth.provider.d.ts +19 -0
- package/src/lib/core/providers/apple-auth.provider.d.ts.map +1 -0
- package/src/lib/core/providers/apple-auth.provider.js +56 -0
- package/src/lib/core/providers/base-auth.provider.d.ts +33 -0
- package/src/lib/core/providers/base-auth.provider.d.ts.map +1 -0
- package/src/lib/core/providers/base-auth.provider.js +48 -0
- package/src/lib/core/providers/email-auth.provider.d.ts +31 -0
- package/src/lib/core/providers/email-auth.provider.d.ts.map +1 -0
- package/src/lib/core/providers/email-auth.provider.js +66 -0
- package/src/lib/core/providers/facebook-auth.provider.d.ts +19 -0
- package/src/lib/core/providers/facebook-auth.provider.d.ts.map +1 -0
- package/src/lib/core/providers/facebook-auth.provider.js +55 -0
- package/src/lib/core/providers/github-auth.provider.d.ts +24 -0
- package/src/lib/core/providers/github-auth.provider.d.ts.map +1 -0
- package/src/lib/core/providers/{github-auth.provider.ts → github-auth.provider.js} +31 -36
- package/src/lib/core/providers/google-auth.provider.d.ts +22 -0
- package/src/lib/core/providers/google-auth.provider.d.ts.map +1 -0
- package/src/lib/core/providers/google-auth.provider.js +57 -0
- package/src/lib/core/providers/jwt-auth.provider.d.ts +34 -0
- package/src/lib/core/providers/jwt-auth.provider.d.ts.map +1 -0
- package/src/lib/core/providers/jwt-auth.provider.js +49 -0
- package/src/lib/core/providers/phone-auth.provider.d.ts +19 -0
- package/src/lib/core/providers/phone-auth.provider.d.ts.map +1 -0
- package/src/lib/core/providers/phone-auth.provider.js +42 -0
- package/src/lib/core/services/auth-config.service.d.ts +39 -0
- package/src/lib/core/services/auth-config.service.d.ts.map +1 -0
- package/src/lib/core/services/auth-config.service.js +167 -0
- package/src/lib/core/services/auth-provider-registry.service.d.ts +42 -0
- package/src/lib/core/services/auth-provider-registry.service.d.ts.map +1 -0
- package/src/lib/core/services/auth-provider-registry.service.js +91 -0
- package/src/lib/core/services/debug-logger.service.d.ts +39 -0
- package/src/lib/core/services/debug-logger.service.d.ts.map +1 -0
- package/src/lib/core/services/{debug-logger.service.ts → debug-logger.service.js} +57 -88
- package/src/lib/core/services/initialization.service.d.ts +11 -0
- package/src/lib/core/services/initialization.service.d.ts.map +1 -0
- package/src/lib/core/services/initialization.service.js +35 -0
- package/src/lib/core/services/jwt.service.d.ts +23 -0
- package/src/lib/core/services/jwt.service.d.ts.map +1 -0
- package/src/lib/core/services/jwt.service.js +119 -0
- package/src/lib/nest-auth.module.d.ts +11 -0
- package/src/lib/nest-auth.module.d.ts.map +1 -0
- package/src/lib/nest-auth.module.js +144 -0
- package/src/lib/permission/entities/permission.entity.d.ts +27 -0
- package/src/lib/permission/entities/permission.entity.d.ts.map +1 -0
- package/src/lib/permission/entities/permission.entity.js +62 -0
- package/src/lib/permission/{index.ts → index.d.ts} +1 -1
- package/src/lib/permission/index.d.ts.map +1 -0
- package/src/lib/permission/index.js +6 -0
- package/src/lib/permission/permission.module.d.ts +3 -0
- package/src/lib/permission/permission.module.d.ts.map +1 -0
- package/src/lib/permission/permission.module.js +20 -0
- package/src/lib/permission/services/permission.service.d.ts +44 -0
- package/src/lib/permission/services/permission.service.d.ts.map +1 -0
- package/src/lib/permission/services/{permission.service.ts → permission.service.js} +48 -108
- package/src/lib/request-context/{index.ts → index.d.ts} +1 -0
- package/src/lib/request-context/index.d.ts.map +1 -0
- package/src/lib/request-context/index.js +5 -0
- package/src/lib/request-context/request-context.d.ts +23 -0
- package/src/lib/request-context/request-context.d.ts.map +1 -0
- package/src/lib/request-context/{request-context.ts → request-context.js} +26 -44
- package/src/lib/request-context/request-context.middleware.d.ts +5 -0
- package/src/lib/request-context/request-context.middleware.d.ts.map +1 -0
- package/src/lib/request-context/request-context.middleware.js +15 -0
- package/src/lib/role/entities/role.entity.d.ts +21 -0
- package/src/lib/role/entities/role.entity.d.ts.map +1 -0
- package/src/lib/role/entities/role.entity.js +110 -0
- package/src/lib/role/{index.ts → index.d.ts} +1 -2
- package/src/lib/role/index.d.ts.map +1 -0
- package/src/lib/role/index.js +5 -0
- package/src/lib/role/role.module.d.ts +3 -0
- package/src/lib/role/role.module.d.ts.map +1 -0
- package/src/lib/role/role.module.js +22 -0
- package/src/lib/role/services/role.service.d.ts +21 -0
- package/src/lib/role/services/role.service.d.ts.map +1 -0
- package/src/lib/role/services/{role.service.ts → role.service.js} +51 -107
- package/src/lib/session/entities/session.entity.d.ts +17 -0
- package/src/lib/session/entities/session.entity.d.ts.map +1 -0
- package/src/lib/session/entities/session.entity.js +62 -0
- package/src/lib/session/{index.ts → index.d.ts} +1 -11
- package/src/lib/session/index.d.ts.map +1 -0
- package/src/lib/session/index.js +18 -0
- package/src/lib/session/interfaces/{session-repository.interface.ts → session-repository.interface.d.ts} +1 -10
- package/src/lib/session/interfaces/session-repository.interface.d.ts.map +1 -0
- package/src/lib/session/interfaces/session-repository.interface.js +2 -0
- package/src/lib/session/repositories/{base-session.repository.ts → base-session.repository.d.ts} +7 -41
- package/src/lib/session/repositories/base-session.repository.d.ts.map +1 -0
- package/src/lib/session/repositories/base-session.repository.js +59 -0
- package/src/lib/session/repositories/memory-session.repository.d.ts +27 -0
- package/src/lib/session/repositories/memory-session.repository.d.ts.map +1 -0
- package/src/lib/session/repositories/{memory-session.repository.ts → memory-session.repository.js} +41 -61
- package/src/lib/session/repositories/redis-session.repository.d.ts +30 -0
- package/src/lib/session/repositories/redis-session.repository.d.ts.map +1 -0
- package/src/lib/session/repositories/{redis-session.repository.ts → redis-session.repository.js} +45 -75
- package/src/lib/session/repositories/typeorm-session.repository.d.ts +23 -0
- package/src/lib/session/repositories/typeorm-session.repository.d.ts.map +1 -0
- package/src/lib/session/repositories/typeorm-session.repository.js +79 -0
- package/src/lib/session/services/session-manager.service.d.ts +100 -0
- package/src/lib/session/services/session-manager.service.d.ts.map +1 -0
- package/src/lib/session/services/{session-manager.service.ts → session-manager.service.js} +54 -94
- package/src/lib/session/session.module.d.ts +14 -0
- package/src/lib/session/session.module.d.ts.map +1 -0
- package/src/lib/session/session.module.js +96 -0
- package/src/lib/session/utils/session.util.d.ts +73 -0
- package/src/lib/session/utils/session.util.d.ts.map +1 -0
- package/src/lib/session/utils/{session.util.ts → session.util.js} +24 -63
- package/src/lib/tenant/entities/{tenant.entity.ts → tenant.entity.d.ts} +2 -21
- package/src/lib/tenant/entities/tenant.entity.d.ts.map +1 -0
- package/src/lib/tenant/entities/tenant.entity.js +47 -0
- package/src/lib/tenant/events/tenant-created.event.d.ts +9 -0
- package/src/lib/tenant/events/tenant-created.event.d.ts.map +1 -0
- package/src/lib/tenant/events/tenant-created.event.js +9 -0
- package/src/lib/tenant/events/tenant-deleted.event.d.ts +9 -0
- package/src/lib/tenant/events/tenant-deleted.event.d.ts.map +1 -0
- package/src/lib/tenant/events/tenant-deleted.event.js +9 -0
- package/src/lib/tenant/events/tenant-updated.event.d.ts +10 -0
- package/src/lib/tenant/events/tenant-updated.event.d.ts.map +1 -0
- package/src/lib/tenant/events/tenant-updated.event.js +9 -0
- package/src/lib/tenant/{index.ts → index.d.ts} +1 -2
- package/src/lib/tenant/index.d.ts.map +1 -0
- package/src/lib/tenant/index.js +14 -0
- package/src/lib/tenant/services/tenant.service.d.ts +35 -0
- package/src/lib/tenant/services/tenant.service.d.ts.map +1 -0
- package/src/lib/tenant/services/{tenant.service.ts → tenant.service.js} +83 -137
- package/src/lib/tenant/tenant.module.d.ts +3 -0
- package/src/lib/tenant/tenant.module.d.ts.map +1 -0
- package/src/lib/tenant/tenant.module.js +26 -0
- package/src/lib/user/dto/requests/update-user.dto.d.ts +6 -0
- package/src/lib/user/dto/requests/update-user.dto.d.ts.map +1 -0
- package/src/lib/user/dto/requests/update-user.dto.js +23 -0
- package/src/lib/user/entities/access-key.entity.d.ts +17 -0
- package/src/lib/user/entities/access-key.entity.d.ts.map +1 -0
- package/src/lib/user/entities/access-key.entity.js +62 -0
- package/src/lib/user/entities/identity.entity.d.ts +13 -0
- package/src/lib/user/entities/identity.entity.d.ts.map +1 -0
- package/src/lib/user/entities/identity.entity.js +46 -0
- package/src/lib/user/entities/user.entity.d.ts +40 -0
- package/src/lib/user/entities/user.entity.d.ts.map +1 -0
- package/src/lib/user/entities/user.entity.js +218 -0
- package/src/lib/user/events/user-created.event.d.ts +10 -0
- package/src/lib/user/events/user-created.event.d.ts.map +1 -0
- package/src/lib/user/events/user-created.event.js +9 -0
- package/src/lib/user/events/user-deleted.event.d.ts +10 -0
- package/src/lib/user/events/user-deleted.event.d.ts.map +1 -0
- package/src/lib/user/events/user-deleted.event.js +9 -0
- package/src/lib/user/events/user-updated.event.d.ts +11 -0
- package/src/lib/user/events/user-updated.event.d.ts.map +1 -0
- package/src/lib/user/events/user-updated.event.js +9 -0
- package/src/lib/user/{index.ts → index.d.ts} +1 -5
- package/src/lib/user/index.d.ts.map +1 -0
- package/src/lib/user/index.js +12 -0
- package/src/lib/user/services/access-key.service.d.ts +20 -0
- package/src/lib/user/services/access-key.service.d.ts.map +1 -0
- package/src/lib/user/services/access-key.service.js +121 -0
- package/src/lib/user/services/user.service.d.ts +28 -0
- package/src/lib/user/services/user.service.d.ts.map +1 -0
- package/src/lib/user/services/{user.service.ts → user.service.js} +92 -164
- package/src/lib/user/user.module.d.ts +3 -0
- package/src/lib/user/user.module.d.ts.map +1 -0
- package/src/lib/user/user.module.js +33 -0
- package/src/lib/utils/database.utils.d.ts +3 -0
- package/src/lib/utils/database.utils.d.ts.map +1 -0
- package/src/lib/utils/database.utils.js +7 -0
- package/src/lib/utils/date.util.d.ts +41 -0
- package/src/lib/utils/date.util.d.ts.map +1 -0
- package/src/lib/utils/{date.util.ts → date.util.js} +28 -35
- package/src/lib/utils/device.util.d.ts +50 -0
- package/src/lib/utils/device.util.d.ts.map +1 -0
- package/src/lib/utils/device.util.js +114 -0
- package/src/lib/utils/{index.ts → index.d.ts} +1 -0
- package/src/lib/utils/index.d.ts.map +1 -0
- package/src/lib/utils/index.js +9 -0
- package/src/lib/utils/otp.d.ts +2 -0
- package/src/lib/utils/otp.d.ts.map +1 -0
- package/src/lib/utils/otp.js +6 -0
- package/src/lib/utils/security.util.d.ts +11 -0
- package/src/lib/utils/security.util.d.ts.map +1 -0
- package/src/lib/utils/{security.util.ts → security.util.js} +10 -9
- package/src/lib/utils/slug.util.d.ts +38 -0
- package/src/lib/utils/slug.util.d.ts.map +1 -0
- package/src/lib/utils/{slug.util.ts → slug.util.js} +10 -9
- package/eslint.config.mjs +0 -59
- package/jest.config.ts +0 -10
- package/project.json +0 -86
- package/src/lib/admin-console/admin-console.module.ts +0 -62
- package/src/lib/admin-console/controllers/admin-auth.controller.ts +0 -339
- package/src/lib/admin-console/controllers/admin-console.controller.ts +0 -82
- package/src/lib/admin-console/controllers/admin-permissions.controller.ts +0 -180
- package/src/lib/admin-console/controllers/admin-roles.controller.ts +0 -89
- package/src/lib/admin-console/controllers/admin-tenants.controller.ts +0 -68
- package/src/lib/admin-console/controllers/admin-users.controller.ts +0 -379
- package/src/lib/admin-console/decorators/current-admin.decorator.ts +0 -9
- package/src/lib/admin-console/dto/admin-permission.dto.ts +0 -106
- package/src/lib/admin-console/dto/admin-role.dto.ts +0 -45
- package/src/lib/admin-console/dto/admin-tenant.dto.ts +0 -43
- package/src/lib/admin-console/dto/admin-user.dto.ts +0 -87
- package/src/lib/admin-console/dto/create-dashboard-admin.dto.ts +0 -34
- package/src/lib/admin-console/dto/login.dto.ts +0 -10
- package/src/lib/admin-console/dto/reset-password.dto.ts +0 -21
- package/src/lib/admin-console/dto/setup-admin.dto.ts +0 -23
- package/src/lib/admin-console/dto/signup.dto.ts +0 -51
- package/src/lib/admin-console/entities/admin-user.entity.ts +0 -74
- package/src/lib/admin-console/guards/admin-session.guard.ts +0 -47
- package/src/lib/admin-console/services/admin-auth.service.ts +0 -82
- package/src/lib/admin-console/services/admin-console-config.service.ts +0 -62
- package/src/lib/admin-console/services/admin-session.service.ts +0 -106
- package/src/lib/admin-console/services/admin-user.service.ts +0 -96
- package/src/lib/auth/auth.module.ts +0 -58
- package/src/lib/auth/controllers/auth.controller.ts +0 -393
- package/src/lib/auth/controllers/mfa.controller.ts +0 -200
- package/src/lib/auth/dto/credentials/email-credentials.dto.ts +0 -24
- package/src/lib/auth/dto/credentials/phone-credentials.dto.ts +0 -24
- package/src/lib/auth/dto/credentials/social-credentials.dto.ts +0 -15
- package/src/lib/auth/dto/index.ts +0 -1
- package/src/lib/auth/dto/requests/change-password.request.dto.ts +0 -34
- package/src/lib/auth/dto/requests/forgot-password.request.dto.ts +0 -30
- package/src/lib/auth/dto/requests/initialize-admin.request.dto.ts +0 -51
- package/src/lib/auth/dto/requests/login.request.dto.ts +0 -65
- package/src/lib/auth/dto/requests/refresh-token.request.dto.ts +0 -12
- package/src/lib/auth/dto/requests/reset-password-with-token.request.dto.ts +0 -22
- package/src/lib/auth/dto/requests/reset-password.request.dto.ts +0 -50
- package/src/lib/auth/dto/requests/send-email-verification.request.dto.ts +0 -12
- package/src/lib/auth/dto/requests/send-mfa-code.request.dto.ts +0 -19
- package/src/lib/auth/dto/requests/signup.request.dto.ts +0 -42
- package/src/lib/auth/dto/requests/toggle-mfa.request.dto.ts +0 -12
- package/src/lib/auth/dto/requests/verify-2fa.request.dto.ts +0 -24
- package/src/lib/auth/dto/requests/verify-email.request.dto.ts +0 -22
- package/src/lib/auth/dto/requests/verify-forgot-password-otp-request-dto.ts +0 -41
- package/src/lib/auth/dto/requests/verify-totp-setup.request.dto.ts +0 -22
- package/src/lib/auth/dto/responses/auth.response.dto.ts +0 -99
- package/src/lib/auth/dto/responses/client-config.response.dto.ts +0 -153
- package/src/lib/auth/dto/responses/initialize-admin.response.dto.ts +0 -22
- package/src/lib/auth/dto/responses/mfa-code-response.dto.ts +0 -27
- package/src/lib/auth/dto/responses/mfa-status.response.dto.ts +0 -89
- package/src/lib/auth/dto/responses/verify-otp.response.dto.ts +0 -9
- package/src/lib/auth/entities/mfa-secret.entity.ts +0 -33
- package/src/lib/auth/entities/otp.entity.ts +0 -33
- package/src/lib/auth/services/cookie.service.ts +0 -43
- package/src/lib/auth.constants.ts +0 -63
- package/src/lib/core/core.module.ts +0 -50
- package/src/lib/core/decorators/permissions.decorator.ts +0 -17
- package/src/lib/core/decorators/role.decorator.ts +0 -12
- package/src/lib/core/decorators/skip-mfa.decorator.ts +0 -4
- package/src/lib/core/dto/message.response.dto.ts +0 -6
- package/src/lib/core/interfaces/mfa-options.interface.ts +0 -46
- package/src/lib/core/interfaces/otp.interface.ts +0 -6
- package/src/lib/core/interfaces/session-options.interface.ts +0 -19
- package/src/lib/core/providers/apple-auth.provider.ts +0 -61
- package/src/lib/core/providers/base-auth.provider.ts +0 -74
- package/src/lib/core/providers/email-auth.provider.ts +0 -71
- package/src/lib/core/providers/facebook-auth.provider.ts +0 -55
- package/src/lib/core/providers/google-auth.provider.ts +0 -61
- package/src/lib/core/providers/jwt-auth.provider.ts +0 -50
- package/src/lib/core/providers/phone-auth.provider.ts +0 -45
- package/src/lib/core/services/auth-config.service.ts +0 -184
- package/src/lib/core/services/auth-provider-registry.service.ts +0 -93
- package/src/lib/core/services/initialization.service.ts +0 -29
- package/src/lib/core/services/jwt.service.ts +0 -137
- package/src/lib/nest-auth.module.ts +0 -152
- package/src/lib/permission/entities/permission.entity.ts +0 -56
- package/src/lib/permission/permission.module.ts +0 -14
- package/src/lib/request-context/request-context.middleware.ts +0 -13
- package/src/lib/role/entities/role.entity.ts +0 -103
- package/src/lib/role/role.module.ts +0 -15
- package/src/lib/session/entities/session.entity.ts +0 -54
- package/src/lib/session/repositories/typeorm-session.repository.ts +0 -86
- package/src/lib/session/session.module.ts +0 -102
- package/src/lib/tenant/events/tenant-created.event.ts +0 -9
- package/src/lib/tenant/events/tenant-deleted.event.ts +0 -11
- package/src/lib/tenant/events/tenant-updated.event.ts +0 -12
- package/src/lib/tenant/tenant.module.ts +0 -19
- package/src/lib/types/express.d.ts +0 -14
- package/src/lib/user/dto/requests/update-user.dto.ts +0 -15
- package/src/lib/user/entities/access-key.entity.ts +0 -53
- package/src/lib/user/entities/identity.entity.ts +0 -31
- package/src/lib/user/entities/user.entity.ts +0 -212
- package/src/lib/user/events/user-created.event.ts +0 -10
- package/src/lib/user/events/user-deleted.event.ts +0 -12
- package/src/lib/user/events/user-updated.event.ts +0 -13
- package/src/lib/user/services/access-key.service.ts +0 -145
- package/src/lib/user/user.module.ts +0 -26
- package/src/lib/utils/database.utils.ts +0 -6
- package/src/lib/utils/device.util.ts +0 -111
- package/src/lib/utils/otp.ts +0 -3
- package/src/types/ms.d.ts +0 -1
- package/test/access-key.service.spec.ts +0 -204
- package/test/auth.service.spec.ts +0 -541
- package/test/mfa.service.spec.ts +0 -359
- package/test/role.service.spec.ts +0 -418
- package/test/tenant.service.spec.ts +0 -218
- package/test/test.setup.ts +0 -66
- package/test/user.service.spec.ts +0 -374
- package/tsconfig.json +0 -17
- package/tsconfig.lib.json +0 -15
- package/tsconfig.spec.json +0 -15
- package/tsconfig.tsbuildinfo +0 -1
- package/ui/.env +0 -1
- package/ui/.env.example +0 -1
- package/ui/.eslintignore +0 -7
- package/ui/README.md +0 -288
- package/ui/index.html +0 -17
- package/ui/package.json +0 -34
- package/ui/postcss.config.js +0 -6
- package/ui/src/App.tsx +0 -245
- package/ui/src/components/AuthGuard.tsx +0 -59
- package/ui/src/components/AuthProvider.tsx +0 -76
- package/ui/src/components/Button.tsx +0 -37
- package/ui/src/components/Card.tsx +0 -37
- package/ui/src/components/ErrorMessage.tsx +0 -15
- package/ui/src/components/FormDialog.tsx +0 -61
- package/ui/src/components/FormFooter.tsx +0 -37
- package/ui/src/components/Layout.tsx +0 -112
- package/ui/src/components/LoadingMessage.tsx +0 -11
- package/ui/src/components/Modal.tsx +0 -97
- package/ui/src/components/MultiSelect.tsx +0 -145
- package/ui/src/components/PageHeader.tsx +0 -42
- package/ui/src/components/PanelHeader.tsx +0 -28
- package/ui/src/components/PermissionInput.tsx +0 -473
- package/ui/src/components/SearchInput.tsx +0 -69
- package/ui/src/components/Select.tsx +0 -51
- package/ui/src/components/SwaggerUIWrapper.tsx +0 -316
- package/ui/src/components/Table.tsx +0 -207
- package/ui/src/components/Tag.tsx +0 -9
- package/ui/src/components/TagsInput.tsx +0 -96
- package/ui/src/components/admin/AdminForm.tsx +0 -170
- package/ui/src/components/admin/CreateAdminDialog.tsx +0 -38
- package/ui/src/components/auth/LoginFooter.tsx +0 -17
- package/ui/src/components/auth/LoginHeader.tsx +0 -14
- package/ui/src/components/auth/components/CodeBlock.tsx +0 -43
- package/ui/src/components/auth/components/CreateAccountCodeExamples.tsx +0 -60
- package/ui/src/components/auth/components/PasswordRequirements.tsx +0 -16
- package/ui/src/components/auth/components/PasswordStrengthIndicator.tsx +0 -48
- package/ui/src/components/auth/components/ResetPasswordCodeExamples.tsx +0 -76
- package/ui/src/components/auth/components/Tabs.tsx +0 -32
- package/ui/src/components/auth/dialogs/CreateAccountDialog.tsx +0 -79
- package/ui/src/components/auth/dialogs/ForgotPasswordDialog.tsx +0 -79
- package/ui/src/components/auth/forms/CreateAccountForm.tsx +0 -226
- package/ui/src/components/auth/forms/LoginForm.tsx +0 -149
- package/ui/src/components/auth/forms/ResetPasswordForm.tsx +0 -202
- package/ui/src/components/auth/types.ts +0 -17
- package/ui/src/components/auth/utils/security.ts +0 -82
- package/ui/src/components/auth/utils/utils.ts +0 -25
- package/ui/src/components/form/EmailField.tsx +0 -25
- package/ui/src/components/form/FormField.tsx +0 -102
- package/ui/src/components/form/FormMultiSelect.tsx +0 -46
- package/ui/src/components/form/FormSelect.tsx +0 -60
- package/ui/src/components/form/FormTagsInput.tsx +0 -42
- package/ui/src/components/form/FormTextarea.tsx +0 -42
- package/ui/src/components/form/PasswordField.tsx +0 -93
- package/ui/src/components/form/SecretKeyField.tsx +0 -49
- package/ui/src/components/permission/CreatePermissionDialog.tsx +0 -44
- package/ui/src/components/permission/EditPermissionDialog.tsx +0 -55
- package/ui/src/components/permission/PermissionForm.tsx +0 -251
- package/ui/src/components/role/CreateRoleDialog.tsx +0 -45
- package/ui/src/components/role/EditRoleDialog.tsx +0 -55
- package/ui/src/components/role/RoleDialog.tsx +0 -252
- package/ui/src/components/role/RoleForm.tsx +0 -246
- package/ui/src/components/tenant/CreateTenantDialog.tsx +0 -41
- package/ui/src/components/tenant/EditTenantDialog.tsx +0 -52
- package/ui/src/components/tenant/TenantForm.tsx +0 -160
- package/ui/src/components/user/CreateUserDialog.tsx +0 -45
- package/ui/src/components/user/UserDetailModal.tsx +0 -815
- package/ui/src/components/user/UserForm.tsx +0 -191
- package/ui/src/data/nest-auth.json +0 -1687
- package/ui/src/hooks/useApi.ts +0 -69
- package/ui/src/hooks/useAuth.ts +0 -100
- package/ui/src/hooks/useConfirm.tsx +0 -105
- package/ui/src/hooks/useFormFooter.tsx +0 -42
- package/ui/src/hooks/usePagination.ts +0 -69
- package/ui/src/index.css +0 -59
- package/ui/src/main.tsx +0 -13
- package/ui/src/pages/AdminsPage.tsx +0 -178
- package/ui/src/pages/ApiPage.tsx +0 -89
- package/ui/src/pages/DashboardPage.tsx +0 -281
- package/ui/src/pages/LoginPage.tsx +0 -39
- package/ui/src/pages/PermissionsPage.tsx +0 -376
- package/ui/src/pages/RolesPage.tsx +0 -274
- package/ui/src/pages/TenantsPage.tsx +0 -221
- package/ui/src/pages/UsersPage.tsx +0 -387
- package/ui/src/services/api.ts +0 -115
- package/ui/src/types/index.ts +0 -136
- package/ui/src/vite-env.d.ts +0 -9
- package/ui/tailwind.config.js +0 -45
- package/ui/tsconfig.json +0 -24
- package/ui/tsconfig.node.json +0 -10
- package/ui/vite.config.ts +0 -37
- package/ui/yarn.lock +0 -3137
|
@@ -1,96 +0,0 @@
|
|
|
1
|
-
import { ConflictException, Injectable, NotFoundException } from '@nestjs/common';
|
|
2
|
-
import { InjectRepository } from '@nestjs/typeorm';
|
|
3
|
-
import { Repository } from 'typeorm';
|
|
4
|
-
import { AdminUser } from '../entities/admin-user.entity';
|
|
5
|
-
import { DebugLoggerService } from '../../core/services/debug-logger.service';
|
|
6
|
-
|
|
7
|
-
@Injectable()
|
|
8
|
-
export class AdminUserService {
|
|
9
|
-
constructor(
|
|
10
|
-
@InjectRepository(AdminUser)
|
|
11
|
-
private readonly adminRepo: Repository<AdminUser>,
|
|
12
|
-
private readonly debugLogger: DebugLoggerService,
|
|
13
|
-
) {}
|
|
14
|
-
|
|
15
|
-
async createAdmin(data: {
|
|
16
|
-
email: string;
|
|
17
|
-
password: string;
|
|
18
|
-
name?: string;
|
|
19
|
-
metadata?: Record<string, any>;
|
|
20
|
-
}): Promise<AdminUser> {
|
|
21
|
-
const email = data.email.toLowerCase();
|
|
22
|
-
const existing = await this.adminRepo.findOne({ where: { email } });
|
|
23
|
-
if (existing) {
|
|
24
|
-
throw new ConflictException({
|
|
25
|
-
message: `Admin user with email ${email} already exists.`,
|
|
26
|
-
code: 'ADMIN_USER_EXISTS',
|
|
27
|
-
});
|
|
28
|
-
}
|
|
29
|
-
|
|
30
|
-
const admin = this.adminRepo.create({
|
|
31
|
-
email,
|
|
32
|
-
name: data.name,
|
|
33
|
-
metadata: data.metadata ?? {},
|
|
34
|
-
});
|
|
35
|
-
await admin.setPassword(data.password);
|
|
36
|
-
this.debugLogger.debug('Creating admin user', 'AdminUserService', { email });
|
|
37
|
-
await this.adminRepo.save(admin);
|
|
38
|
-
this.debugLogger.info('Admin user created', 'AdminUserService', { id: admin.id, email });
|
|
39
|
-
return admin;
|
|
40
|
-
}
|
|
41
|
-
|
|
42
|
-
async findByEmail(email: string): Promise<AdminUser | null> {
|
|
43
|
-
if (!email) {
|
|
44
|
-
return null;
|
|
45
|
-
}
|
|
46
|
-
return this.adminRepo.findOne({ where: { email: email.toLowerCase() } });
|
|
47
|
-
}
|
|
48
|
-
|
|
49
|
-
async findById(id: string): Promise<AdminUser | null> {
|
|
50
|
-
if (!id) {
|
|
51
|
-
return null;
|
|
52
|
-
}
|
|
53
|
-
return this.adminRepo.findOne({ where: { id } });
|
|
54
|
-
}
|
|
55
|
-
|
|
56
|
-
async listAdmins(): Promise<AdminUser[]> {
|
|
57
|
-
return this.adminRepo.find({ order: { createdAt: 'DESC' } });
|
|
58
|
-
}
|
|
59
|
-
|
|
60
|
-
async updateAdmin(
|
|
61
|
-
id: string,
|
|
62
|
-
data: { name?: string; password?: string; metadata?: Record<string, any> },
|
|
63
|
-
): Promise<AdminUser> {
|
|
64
|
-
const admin = await this.findById(id);
|
|
65
|
-
if (!admin) {
|
|
66
|
-
throw new NotFoundException({
|
|
67
|
-
message: `Admin user with ID ${id} not found`,
|
|
68
|
-
code: 'ADMIN_USER_NOT_FOUND',
|
|
69
|
-
});
|
|
70
|
-
}
|
|
71
|
-
|
|
72
|
-
if (data.name !== undefined) {
|
|
73
|
-
admin.name = data.name;
|
|
74
|
-
}
|
|
75
|
-
if (data.metadata !== undefined) {
|
|
76
|
-
admin.metadata = data.metadata;
|
|
77
|
-
}
|
|
78
|
-
if (data.password) {
|
|
79
|
-
await admin.setPassword(data.password);
|
|
80
|
-
}
|
|
81
|
-
|
|
82
|
-
await this.adminRepo.save(admin);
|
|
83
|
-
return admin;
|
|
84
|
-
}
|
|
85
|
-
|
|
86
|
-
async deleteAdmin(id: string): Promise<void> {
|
|
87
|
-
const admin = await this.findById(id);
|
|
88
|
-
if (!admin) {
|
|
89
|
-
throw new NotFoundException({
|
|
90
|
-
message: `Admin user with ID ${id} not found`,
|
|
91
|
-
code: 'ADMIN_USER_NOT_FOUND',
|
|
92
|
-
});
|
|
93
|
-
}
|
|
94
|
-
await this.adminRepo.delete(id);
|
|
95
|
-
}
|
|
96
|
-
}
|
|
@@ -1,58 +0,0 @@
|
|
|
1
|
-
import { Module, forwardRef } from '@nestjs/common';
|
|
2
|
-
import { AuthService } from './services/auth.service';
|
|
3
|
-
import { CookieService } from './services/cookie.service';
|
|
4
|
-
import { MfaService } from './services/mfa.service';
|
|
5
|
-
import { ClientConfigService } from './services/client-config.service';
|
|
6
|
-
import { NestAuthAuthGuard } from './guards/auth.guard';
|
|
7
|
-
import { RefreshTokenInterceptor } from './interceptors/refresh-token.interceptor';
|
|
8
|
-
import { AuthController } from './controllers/auth.controller';
|
|
9
|
-
import { MfaController } from './controllers/mfa.controller';
|
|
10
|
-
import { NestAuthIdentity } from '../user/entities/identity.entity';
|
|
11
|
-
import { TypeOrmModule } from '@nestjs/typeorm';
|
|
12
|
-
import { NestAuthUser } from '../user/entities/user.entity';
|
|
13
|
-
import { NestAuthOTP } from './entities/otp.entity';
|
|
14
|
-
import { NestAuthMFASecret } from './entities/mfa-secret.entity';
|
|
15
|
-
import { NestAuthAccessKey } from '../user/entities/access-key.entity';
|
|
16
|
-
import { EventEmitterModule } from '@nestjs/event-emitter';
|
|
17
|
-
import { UserModule } from '../user/user.module';
|
|
18
|
-
import { CoreModule } from '../core/core.module';
|
|
19
|
-
import { SessionModule } from '../session/session.module';
|
|
20
|
-
import { TenantModule } from '../tenant/tenant.module';
|
|
21
|
-
import { RoleModule } from '../role/role.module';
|
|
22
|
-
|
|
23
|
-
@Module({
|
|
24
|
-
imports: [
|
|
25
|
-
EventEmitterModule,
|
|
26
|
-
TypeOrmModule.forFeature([
|
|
27
|
-
NestAuthUser,
|
|
28
|
-
NestAuthOTP,
|
|
29
|
-
NestAuthMFASecret,
|
|
30
|
-
NestAuthAccessKey,
|
|
31
|
-
NestAuthIdentity,
|
|
32
|
-
]),
|
|
33
|
-
forwardRef(() => CoreModule),
|
|
34
|
-
forwardRef(() => UserModule),
|
|
35
|
-
forwardRef(() => SessionModule),
|
|
36
|
-
forwardRef(() => TenantModule),
|
|
37
|
-
forwardRef(() => RoleModule),
|
|
38
|
-
],
|
|
39
|
-
providers: [
|
|
40
|
-
AuthService,
|
|
41
|
-
CookieService,
|
|
42
|
-
MfaService,
|
|
43
|
-
ClientConfigService,
|
|
44
|
-
NestAuthAuthGuard,
|
|
45
|
-
RefreshTokenInterceptor,
|
|
46
|
-
],
|
|
47
|
-
controllers: [AuthController, MfaController],
|
|
48
|
-
exports: [
|
|
49
|
-
AuthService,
|
|
50
|
-
CookieService,
|
|
51
|
-
MfaService,
|
|
52
|
-
ClientConfigService,
|
|
53
|
-
NestAuthAuthGuard,
|
|
54
|
-
RefreshTokenInterceptor,
|
|
55
|
-
],
|
|
56
|
-
})
|
|
57
|
-
export class AuthModule {
|
|
58
|
-
}
|
|
@@ -1,393 +0,0 @@
|
|
|
1
|
-
import { Controller, Post, Body, Get, UseGuards, Res, HttpCode, Query, Param } from '@nestjs/common';
|
|
2
|
-
import { AuthService } from '../services/auth.service';
|
|
3
|
-
import { Verify2faRequestDto } from '../dto/requests/verify-2fa.request.dto';
|
|
4
|
-
import { RefreshTokenRequestDto } from '../dto/requests/refresh-token.request.dto';
|
|
5
|
-
import { Response } from 'express';
|
|
6
|
-
import { ApiResponse } from '@nestjs/swagger';
|
|
7
|
-
import { ApiOperation } from '@nestjs/swagger';
|
|
8
|
-
import { CookieService } from '../services/cookie.service';
|
|
9
|
-
import { AuthConfigService } from '../../core/services/auth-config.service';
|
|
10
|
-
import { AuthWithTokensResponseDto, UserResponseDto, Verify2faWithTokensResponseDto } from '../dto/responses/auth.response.dto';
|
|
11
|
-
import { AuthCookieResponseDto } from '../dto/responses/auth-cookie.response.dto';
|
|
12
|
-
import { SignupRequestDto } from '../dto/requests/signup.request.dto';
|
|
13
|
-
import { LoginRequestDto } from '../dto/requests/login.request.dto';
|
|
14
|
-
import { RequestContext } from '../../request-context/request-context';
|
|
15
|
-
import { MessageResponseDto, MFAMethodEnum, SkipMfa } from '../../core';
|
|
16
|
-
import { ForgotPasswordRequestDto } from '../dto/requests/forgot-password.request.dto';
|
|
17
|
-
import { ResetPasswordRequestDto } from '../dto/requests/reset-password.request.dto';
|
|
18
|
-
import { NestAuthAuthGuard } from '../guards/auth.guard';
|
|
19
|
-
import { VerifyForgotPasswordOtpRequestDto } from '../dto/requests/verify-forgot-password-otp-request-dto';
|
|
20
|
-
import { ResetPasswordWithTokenRequestDto } from '../dto/requests/reset-password-with-token.request.dto';
|
|
21
|
-
import { VerifyOtpResponseDto } from '../dto/responses/verify-otp.response.dto';
|
|
22
|
-
import { ChangePasswordRequestDto } from '../dto/requests/change-password.request.dto';
|
|
23
|
-
import { SendEmailVerificationRequestDto } from '../dto/requests/send-email-verification.request.dto';
|
|
24
|
-
import { VerifyEmailRequestDto } from '../dto/requests/verify-email.request.dto';
|
|
25
|
-
import { ClientConfigService } from '../services/client-config.service';
|
|
26
|
-
import { ClientConfigResponseDto } from '../dto/responses/client-config.response.dto';
|
|
27
|
-
|
|
28
|
-
|
|
29
|
-
@Controller('auth')
|
|
30
|
-
export class AuthController {
|
|
31
|
-
constructor(
|
|
32
|
-
private readonly authService: AuthService,
|
|
33
|
-
private readonly cookieService: CookieService,
|
|
34
|
-
private readonly authConfig: AuthConfigService,
|
|
35
|
-
private readonly clientConfigService: ClientConfigService,
|
|
36
|
-
) { }
|
|
37
|
-
|
|
38
|
-
/**
|
|
39
|
-
* Check if using cookie-based authentication
|
|
40
|
-
*/
|
|
41
|
-
protected isUsingCookies(): boolean {
|
|
42
|
-
const config = this.authConfig.getConfig();
|
|
43
|
-
return config.accessTokenType === 'cookie';
|
|
44
|
-
}
|
|
45
|
-
|
|
46
|
-
/**
|
|
47
|
-
* Handle auth response based on configuration
|
|
48
|
-
* - If cookie mode: Sets tokens in cookies, returns success message
|
|
49
|
-
* - If header mode: Returns tokens in response body
|
|
50
|
-
*/
|
|
51
|
-
protected handleAuthResponse(
|
|
52
|
-
res: Response,
|
|
53
|
-
authResult: { accessToken: string; refreshToken: string; isRequiresMfa: boolean },
|
|
54
|
-
successMessage: string = 'Authentication successful'
|
|
55
|
-
): void {
|
|
56
|
-
if (this.isUsingCookies()) {
|
|
57
|
-
// Cookie mode: Set tokens in cookies, return success message
|
|
58
|
-
this.cookieService.setTokens(res, authResult.accessToken, authResult.refreshToken);
|
|
59
|
-
res.status(200).json({
|
|
60
|
-
message: successMessage,
|
|
61
|
-
isRequiresMfa: authResult.isRequiresMfa
|
|
62
|
-
} as AuthCookieResponseDto);
|
|
63
|
-
} else {
|
|
64
|
-
// Header mode: Return tokens in response body
|
|
65
|
-
res.status(200).json({
|
|
66
|
-
message: successMessage,
|
|
67
|
-
accessToken: authResult.accessToken,
|
|
68
|
-
refreshToken: authResult.refreshToken,
|
|
69
|
-
isRequiresMfa: authResult.isRequiresMfa
|
|
70
|
-
} as AuthWithTokensResponseDto);
|
|
71
|
-
}
|
|
72
|
-
}
|
|
73
|
-
|
|
74
|
-
/**
|
|
75
|
-
* Handle 2FA verification response based on configuration
|
|
76
|
-
*/
|
|
77
|
-
protected handle2faResponse(
|
|
78
|
-
res: Response,
|
|
79
|
-
authResult: { accessToken: string; refreshToken: string }
|
|
80
|
-
): void {
|
|
81
|
-
if (this.isUsingCookies()) {
|
|
82
|
-
// Cookie mode: Set tokens in cookies, return success message
|
|
83
|
-
this.cookieService.setTokens(res, authResult.accessToken, authResult.refreshToken);
|
|
84
|
-
res.status(200).json({
|
|
85
|
-
message: '2FA verification successful'
|
|
86
|
-
// Note: No isRequiresMfa for 2FA verification (it's already verified)
|
|
87
|
-
} as AuthCookieResponseDto);
|
|
88
|
-
} else {
|
|
89
|
-
// Header mode: Return message AND tokens in response body
|
|
90
|
-
res.status(200).json({
|
|
91
|
-
message: '2FA verification successful',
|
|
92
|
-
accessToken: authResult.accessToken,
|
|
93
|
-
refreshToken: authResult.refreshToken
|
|
94
|
-
} as Verify2faWithTokensResponseDto);
|
|
95
|
-
}
|
|
96
|
-
}
|
|
97
|
-
|
|
98
|
-
@ApiOperation({
|
|
99
|
-
summary: 'Signup',
|
|
100
|
-
description: 'Register a new user. Response format depends on accessTokenType configuration:\n' +
|
|
101
|
-
'- Header mode (default): Returns tokens in response body\n' +
|
|
102
|
-
'- Cookie mode: Sets tokens in HTTP-only cookies and returns success message'
|
|
103
|
-
})
|
|
104
|
-
@ApiResponse({ status: 200, type: AuthWithTokensResponseDto, description: 'Header mode: Returns message + tokens in body' })
|
|
105
|
-
@ApiResponse({ status: 200, type: AuthCookieResponseDto, description: 'Cookie mode: Returns message only, tokens in cookies' })
|
|
106
|
-
@HttpCode(200)
|
|
107
|
-
@Post('signup')
|
|
108
|
-
async signup(@Body() input: SignupRequestDto, @Res() res: Response) {
|
|
109
|
-
const response = await this.authService.signup(input);
|
|
110
|
-
this.handleAuthResponse(res, response, 'Signup successful');
|
|
111
|
-
}
|
|
112
|
-
|
|
113
|
-
@ApiOperation({
|
|
114
|
-
summary: 'Login',
|
|
115
|
-
description: 'Authenticate user. Response format depends on accessTokenType configuration:\n' +
|
|
116
|
-
'- Header mode (default): Returns tokens in response body\n' +
|
|
117
|
-
'- Cookie mode: Sets tokens in HTTP-only cookies and returns success message'
|
|
118
|
-
})
|
|
119
|
-
@ApiResponse({ status: 200, type: AuthWithTokensResponseDto, description: 'Header mode: Returns message + tokens in body' })
|
|
120
|
-
@ApiResponse({ status: 200, type: AuthCookieResponseDto, description: 'Cookie mode: Returns message only, tokens in cookies' })
|
|
121
|
-
@HttpCode(200)
|
|
122
|
-
@Post('login')
|
|
123
|
-
async login(@Body() input: LoginRequestDto, @Res() res: Response) {
|
|
124
|
-
const response = await this.authService.login(input);
|
|
125
|
-
this.handleAuthResponse(res, response, 'Login successful');
|
|
126
|
-
}
|
|
127
|
-
|
|
128
|
-
@ApiOperation({
|
|
129
|
-
summary: 'Refresh Token',
|
|
130
|
-
description: 'Refresh access token. Response format depends on accessTokenType configuration:\n' +
|
|
131
|
-
'- Header mode (default): Returns new tokens in response body\n' +
|
|
132
|
-
'- Cookie mode: Sets new tokens in HTTP-only cookies and returns success message'
|
|
133
|
-
})
|
|
134
|
-
@ApiResponse({ status: 200, type: AuthWithTokensResponseDto, description: 'Header mode: Returns message + tokens in body' })
|
|
135
|
-
@ApiResponse({ status: 200, type: AuthCookieResponseDto, description: 'Cookie mode: Returns message only, tokens in cookies' })
|
|
136
|
-
@HttpCode(200)
|
|
137
|
-
@Post('refresh-token')
|
|
138
|
-
async refreshToken(@Body() input: RefreshTokenRequestDto, @Res() res: Response) {
|
|
139
|
-
const response = await this.authService.refreshToken(input.refreshToken);
|
|
140
|
-
// Note: Refresh response doesn't have isRequiresMfa, so we create a compatible object
|
|
141
|
-
this.handleAuthResponse(res, { ...response, isRequiresMfa: false }, 'Token refreshed successfully');
|
|
142
|
-
}
|
|
143
|
-
|
|
144
|
-
|
|
145
|
-
@ApiOperation({ summary: 'Send 2FA Code' })
|
|
146
|
-
@ApiResponse({ status: 200, type: MessageResponseDto })
|
|
147
|
-
@HttpCode(200)
|
|
148
|
-
@Post('send-2fa-code')
|
|
149
|
-
@SkipMfa()
|
|
150
|
-
@UseGuards(NestAuthAuthGuard)
|
|
151
|
-
async send2faCode(@Body('method') method: MFAMethodEnum) {
|
|
152
|
-
const user = RequestContext.currentUser();
|
|
153
|
-
await this.authService.send2faCode(user.id, method);
|
|
154
|
-
return { message: '2FA code sent successfully' }
|
|
155
|
-
}
|
|
156
|
-
|
|
157
|
-
@ApiOperation({
|
|
158
|
-
summary: 'Verify 2FA',
|
|
159
|
-
description: 'Verify two-factor authentication. Response format depends on accessTokenType configuration:\n' +
|
|
160
|
-
'- Header mode (default): Returns tokens in response body\n' +
|
|
161
|
-
'- Cookie mode: Sets tokens in HTTP-only cookies and returns success message'
|
|
162
|
-
})
|
|
163
|
-
@ApiResponse({ status: 200, type: Verify2faWithTokensResponseDto, description: 'Header mode: Returns message + tokens in body' })
|
|
164
|
-
@ApiResponse({ status: 200, type: AuthCookieResponseDto, description: 'Cookie mode: Returns message only, tokens in cookies' })
|
|
165
|
-
@HttpCode(200)
|
|
166
|
-
@Post('verify-2fa')
|
|
167
|
-
@SkipMfa()
|
|
168
|
-
@UseGuards(NestAuthAuthGuard)
|
|
169
|
-
async verify2fa(@Body() input: Verify2faRequestDto, @Res() res: Response) {
|
|
170
|
-
const response = await this.authService.verify2fa(input);
|
|
171
|
-
this.handle2faResponse(res, response);
|
|
172
|
-
}
|
|
173
|
-
|
|
174
|
-
@ApiOperation({ summary: 'Logout' })
|
|
175
|
-
@ApiResponse({ status: 200, type: MessageResponseDto })
|
|
176
|
-
@HttpCode(200)
|
|
177
|
-
@Post('logout')
|
|
178
|
-
@SkipMfa()
|
|
179
|
-
@UseGuards(NestAuthAuthGuard)
|
|
180
|
-
async logout(@Res() res: Response) {
|
|
181
|
-
await this.authService.logout();
|
|
182
|
-
|
|
183
|
-
// Only clear cookies if using cookie-based auth
|
|
184
|
-
if (this.isUsingCookies()) {
|
|
185
|
-
this.cookieService.clearCookies(res);
|
|
186
|
-
}
|
|
187
|
-
|
|
188
|
-
res.status(200).json({ message: 'Logged out successfully' });
|
|
189
|
-
}
|
|
190
|
-
|
|
191
|
-
@ApiOperation({ summary: 'Logout All' })
|
|
192
|
-
@ApiResponse({ status: 200, type: MessageResponseDto })
|
|
193
|
-
@HttpCode(200)
|
|
194
|
-
@Post('logout-all')
|
|
195
|
-
@SkipMfa()
|
|
196
|
-
@UseGuards(NestAuthAuthGuard)
|
|
197
|
-
async logoutAll(): Promise<MessageResponseDto> {
|
|
198
|
-
const user = RequestContext.currentUser();
|
|
199
|
-
await this.authService.logoutAll(user.id);
|
|
200
|
-
return { message: 'Logged out from all devices successfully' };
|
|
201
|
-
}
|
|
202
|
-
|
|
203
|
-
@ApiOperation({ summary: 'Change Password' })
|
|
204
|
-
@ApiResponse({ status: 200, type: AuthWithTokensResponseDto })
|
|
205
|
-
@HttpCode(200)
|
|
206
|
-
@Post('change-password')
|
|
207
|
-
@SkipMfa()
|
|
208
|
-
@UseGuards(NestAuthAuthGuard)
|
|
209
|
-
async changePassword(@Body() input: ChangePasswordRequestDto, @Res() res: Response) {
|
|
210
|
-
const response = await this.authService.changePassword(input);
|
|
211
|
-
this.handleAuthResponse(res, response, 'Password updated successfully');
|
|
212
|
-
}
|
|
213
|
-
|
|
214
|
-
@ApiOperation({ summary: 'Forgot Password' })
|
|
215
|
-
@ApiResponse({ status: 200, type: MessageResponseDto })
|
|
216
|
-
@HttpCode(200)
|
|
217
|
-
@Post('forgot-password')
|
|
218
|
-
@SkipMfa()
|
|
219
|
-
async forgotPassword(@Body() input: ForgotPasswordRequestDto): Promise<MessageResponseDto> {
|
|
220
|
-
await this.authService.forgotPassword(input);
|
|
221
|
-
return { message: 'If the account exists, a password reset code has been sent' }
|
|
222
|
-
}
|
|
223
|
-
|
|
224
|
-
@ApiOperation({ summary: 'Verify Forgot Password OTP and get reset token' })
|
|
225
|
-
@ApiResponse({ status: 200, type: VerifyOtpResponseDto })
|
|
226
|
-
@HttpCode(200)
|
|
227
|
-
@Post('verify-forgot-password-otp')
|
|
228
|
-
@SkipMfa()
|
|
229
|
-
async verifyForgotPasswordOtp(@Body() input: VerifyForgotPasswordOtpRequestDto): Promise<VerifyOtpResponseDto> {
|
|
230
|
-
return await this.authService.verifyForgotPasswordOtp(input);
|
|
231
|
-
}
|
|
232
|
-
|
|
233
|
-
@ApiOperation({ summary: 'Reset Password (Legacy - using OTP)' })
|
|
234
|
-
@ApiResponse({ status: 200, type: MessageResponseDto })
|
|
235
|
-
@HttpCode(200)
|
|
236
|
-
@Post('reset-password')
|
|
237
|
-
@SkipMfa()
|
|
238
|
-
async resetPassword(@Body() input: ResetPasswordRequestDto): Promise<MessageResponseDto> {
|
|
239
|
-
await this.authService.resetPassword(input);
|
|
240
|
-
return { message: 'Password reset successfully' }
|
|
241
|
-
}
|
|
242
|
-
|
|
243
|
-
@ApiOperation({ summary: 'Reset Password with Token' })
|
|
244
|
-
@ApiResponse({ status: 200, type: MessageResponseDto })
|
|
245
|
-
@HttpCode(200)
|
|
246
|
-
@Post('reset-password-with-token')
|
|
247
|
-
@SkipMfa()
|
|
248
|
-
async resetPasswordWithToken(@Body() input: ResetPasswordWithTokenRequestDto): Promise<MessageResponseDto> {
|
|
249
|
-
await this.authService.resetPasswordWithToken(input);
|
|
250
|
-
return { message: 'Password reset successfully' }
|
|
251
|
-
}
|
|
252
|
-
|
|
253
|
-
@ApiOperation({ summary: 'Get Logged In User' })
|
|
254
|
-
@ApiResponse({ status: 200, type: UserResponseDto })
|
|
255
|
-
@UseGuards(NestAuthAuthGuard)
|
|
256
|
-
@Get('user')
|
|
257
|
-
async getUser() {
|
|
258
|
-
return await this.authService.getUser();
|
|
259
|
-
}
|
|
260
|
-
|
|
261
|
-
@ApiOperation({ summary: 'Send Email Verification' })
|
|
262
|
-
@ApiResponse({ status: 200, type: MessageResponseDto })
|
|
263
|
-
@HttpCode(200)
|
|
264
|
-
@Post('send-email-verification')
|
|
265
|
-
@SkipMfa()
|
|
266
|
-
@UseGuards(NestAuthAuthGuard)
|
|
267
|
-
async sendEmailVerification(@Body() input: SendEmailVerificationRequestDto): Promise<MessageResponseDto> {
|
|
268
|
-
return await this.authService.sendEmailVerification(input);
|
|
269
|
-
}
|
|
270
|
-
|
|
271
|
-
@ApiOperation({ summary: 'Verify Email' })
|
|
272
|
-
@ApiResponse({ status: 200, type: MessageResponseDto })
|
|
273
|
-
@HttpCode(200)
|
|
274
|
-
@Post('verify-email')
|
|
275
|
-
@SkipMfa()
|
|
276
|
-
@UseGuards(NestAuthAuthGuard)
|
|
277
|
-
async verifyEmail(@Body() input: VerifyEmailRequestDto): Promise<MessageResponseDto> {
|
|
278
|
-
return await this.authService.verifyEmail(input);
|
|
279
|
-
}
|
|
280
|
-
|
|
281
|
-
@ApiOperation({
|
|
282
|
-
summary: 'Get Client Configuration',
|
|
283
|
-
description: 'Returns backend configuration for frontend clients. Includes enabled auth methods, registration settings, MFA options, tenant configuration, and SSO providers. Can be customized via clientConfig.factory in AuthModuleOptions.',
|
|
284
|
-
})
|
|
285
|
-
@ApiResponse({ status: 200, type: ClientConfigResponseDto })
|
|
286
|
-
@HttpCode(200)
|
|
287
|
-
@Get('client-config')
|
|
288
|
-
async getClientConfig(): Promise<ClientConfigResponseDto> {
|
|
289
|
-
return await this.clientConfigService.getClientConfig();
|
|
290
|
-
}
|
|
291
|
-
|
|
292
|
-
@ApiOperation({
|
|
293
|
-
summary: 'SSO Callback',
|
|
294
|
-
description: 'OAuth callback endpoint for SSO providers. Exchanges authorization code for access token and returns raw SSO user info. Returns HTML page that posts SSO data to parent window and auto-closes.',
|
|
295
|
-
})
|
|
296
|
-
@Get('callback/:provider')
|
|
297
|
-
async ssoCallback(
|
|
298
|
-
@Param('provider') provider: string,
|
|
299
|
-
@Query() data: any,
|
|
300
|
-
@Res() res: Response,
|
|
301
|
-
) {
|
|
302
|
-
|
|
303
|
-
const jsonData = JSON.stringify(data);
|
|
304
|
-
const escapedData = jsonData.replace(/</g, '\\u003c').replace(/>/g, '\\u003e');
|
|
305
|
-
|
|
306
|
-
const html = `<!DOCTYPE html>
|
|
307
|
-
<html lang="en">
|
|
308
|
-
<head>
|
|
309
|
-
<meta charset="UTF-8">
|
|
310
|
-
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
311
|
-
<title>SSO Callback</title>
|
|
312
|
-
<style>
|
|
313
|
-
body {
|
|
314
|
-
font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen, Ubuntu, Cantarell, sans-serif;
|
|
315
|
-
display: flex;
|
|
316
|
-
justify-content: center;
|
|
317
|
-
align-items: center;
|
|
318
|
-
min-height: 100vh;
|
|
319
|
-
margin: 0;
|
|
320
|
-
background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
|
|
321
|
-
}
|
|
322
|
-
.container {
|
|
323
|
-
background: white;
|
|
324
|
-
padding: 2rem;
|
|
325
|
-
border-radius: 8px;
|
|
326
|
-
box-shadow: 0 4px 6px rgba(0, 0, 0, 0.1);
|
|
327
|
-
text-align: center;
|
|
328
|
-
max-width: 400px;
|
|
329
|
-
}
|
|
330
|
-
.spinner {
|
|
331
|
-
border: 3px solid #f3f3f3;
|
|
332
|
-
border-top: 3px solid #667eea;
|
|
333
|
-
border-radius: 50%;
|
|
334
|
-
width: 40px;
|
|
335
|
-
height: 40px;
|
|
336
|
-
animation: spin 1s linear infinite;
|
|
337
|
-
margin: 0 auto 1rem;
|
|
338
|
-
}
|
|
339
|
-
@keyframes spin {
|
|
340
|
-
0% { transform: rotate(0deg); }
|
|
341
|
-
100% { transform: rotate(360deg); }
|
|
342
|
-
}
|
|
343
|
-
.message {
|
|
344
|
-
color: #333;
|
|
345
|
-
margin-top: 1rem;
|
|
346
|
-
}
|
|
347
|
-
.error {
|
|
348
|
-
color: #dc3545;
|
|
349
|
-
}
|
|
350
|
-
</style>
|
|
351
|
-
</head>
|
|
352
|
-
<body>
|
|
353
|
-
<div class="container">
|
|
354
|
-
<div class="spinner"></div>
|
|
355
|
-
<div class="message" id="message">Processing...</div>
|
|
356
|
-
</div>
|
|
357
|
-
<script>
|
|
358
|
-
(function() {
|
|
359
|
-
const data = ${escapedData};
|
|
360
|
-
|
|
361
|
-
// Post message to parent window
|
|
362
|
-
if (window.opener) {
|
|
363
|
-
window.opener.postMessage({
|
|
364
|
-
type: 'nest-auth-sso-callback',
|
|
365
|
-
...data
|
|
366
|
-
}, '*');
|
|
367
|
-
|
|
368
|
-
// Auto-close immediately
|
|
369
|
-
window.close();
|
|
370
|
-
} else if (window.parent && window.parent !== window) {
|
|
371
|
-
// Iframe context
|
|
372
|
-
window.parent.postMessage({
|
|
373
|
-
type: 'nest-auth-sso-callback',
|
|
374
|
-
...data
|
|
375
|
-
}, '*');
|
|
376
|
-
// Note: Can't close iframe from inside
|
|
377
|
-
} else {
|
|
378
|
-
// No parent window, show message
|
|
379
|
-
document.getElementById('message').textContent = data.success
|
|
380
|
-
? 'Success! You can close this window.'
|
|
381
|
-
: 'Error: ' + (data.errorDescription || data.error);
|
|
382
|
-
document.getElementById('message').className = data.success ? 'message' : 'message error';
|
|
383
|
-
}
|
|
384
|
-
})();
|
|
385
|
-
</script>
|
|
386
|
-
</body>
|
|
387
|
-
</html>`;
|
|
388
|
-
|
|
389
|
-
res.setHeader('Content-Type', 'text/html');
|
|
390
|
-
res.status(200).send(html);
|
|
391
|
-
}
|
|
392
|
-
|
|
393
|
-
}
|