@ackplus/nest-auth 1.1.28 → 1.1.29

package/dist/lib/admin-console/services/admin-user.service.js

@@ -0,0 +1,101 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AdminUserService = void 0;
+const common_1 = require("@nestjs/common");
+const typeorm_1 = require("@nestjs/typeorm");
+const typeorm_2 = require("typeorm");
+const admin_user_entity_1 = require("../entities/admin-user.entity");
+const debug_logger_service_1 = require("../../core/services/debug-logger.service");
+let AdminUserService = class AdminUserService {
+    adminRepo;
+    debugLogger;
+    constructor(adminRepo, debugLogger) {
+        this.adminRepo = adminRepo;
+        this.debugLogger = debugLogger;
+    }
+    async createAdmin(data) {
+        const email = data.email.toLowerCase();
+        const existing = await this.adminRepo.findOne({ where: { email } });
+        if (existing) {
+            throw new common_1.ConflictException({
+                message: `Admin user with email ${email} already exists.`,
+                code: 'ADMIN_USER_EXISTS',
+            });
+        }
+        const admin = this.adminRepo.create({
+            email,
+            name: data.name,
+            metadata: data.metadata ?? {},
+        });
+        await admin.setPassword(data.password);
+        this.debugLogger.debug('Creating admin user', 'AdminUserService', { email });
+        await this.adminRepo.save(admin);
+        this.debugLogger.info('Admin user created', 'AdminUserService', { id: admin.id, email });
+        return admin;
+    }
+    async findByEmail(email) {
+        if (!email) {
+            return null;
+        }
+        return this.adminRepo.findOne({ where: { email: email.toLowerCase() } });
+    }
+    async findById(id) {
+        if (!id) {
+            return null;
+        }
+        return this.adminRepo.findOne({ where: { id } });
+    }
+    async listAdmins() {
+        return this.adminRepo.find({ order: { createdAt: 'DESC' } });
+    }
+    async updateAdmin(id, data) {
+        const admin = await this.findById(id);
+        if (!admin) {
+            throw new common_1.NotFoundException({
+                message: `Admin user with ID ${id} not found`,
+                code: 'ADMIN_USER_NOT_FOUND',
+            });
+        }
+        if (data.name !== undefined) {
+            admin.name = data.name;
+        }
+        if (data.metadata !== undefined) {
+            admin.metadata = data.metadata;
+        }
+        if (data.password) {
+            await admin.setPassword(data.password);
+        }
+        await this.adminRepo.save(admin);
+        return admin;
+    }
+    async deleteAdmin(id) {
+        const admin = await this.findById(id);
+        if (!admin) {
+            throw new common_1.NotFoundException({
+                message: `Admin user with ID ${id} not found`,
+                code: 'ADMIN_USER_NOT_FOUND',
+            });
+        }
+        await this.adminRepo.delete(id);
+    }
+};
+exports.AdminUserService = AdminUserService;
+exports.AdminUserService = AdminUserService = __decorate([
+    (0, common_1.Injectable)(),
+    __param(0, (0, typeorm_1.InjectRepository)(admin_user_entity_1.AdminUser)),
+    __metadata("design:paramtypes", [typeorm_2.Repository,
+        debug_logger_service_1.DebugLoggerService])
+], AdminUserService);
+//# sourceMappingURL=admin-user.service.js.map

package/dist/lib/admin-console/services/admin-user.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin-user.service.js","sourceRoot":"","sources":["../../../../src/lib/admin-console/services/admin-user.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAAkF;AAClF,6CAAmD;AACnD,qCAAqC;AACrC,qEAA0D;AAC1D,mFAA8E;AAGvE,IAAM,gBAAgB,GAAtB,MAAM,gBAAgB;IAGR;IACA;IAHnB,YAEmB,SAAgC,EAChC,WAA+B;QAD/B,cAAS,GAAT,SAAS,CAAuB;QAChC,gBAAW,GAAX,WAAW,CAAoB;IAC/C,CAAC;IAEJ,KAAK,CAAC,WAAW,CAAC,IAKjB;QACC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;QACvC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,EAAE,CAAC,CAAC;QACpE,IAAI,QAAQ,EAAE,CAAC;YACb,MAAM,IAAI,0BAAiB,CAAC;gBAC1B,OAAO,EAAE,yBAAyB,KAAK,kBAAkB;gBACzD,IAAI,EAAE,mBAAmB;aAC1B,CAAC,CAAC;QACL,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC;YAClC,KAAK;YACL,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ,IAAI,EAAE;SAC9B,CAAC,CAAC;QACH,MAAM,KAAK,CAAC,WAAW,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACvC,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,qBAAqB,EAAE,kBAAkB,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QAC7E,MAAM,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACjC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,oBAAoB,EAAE,kBAAkB,EAAE,EAAE,EAAE,EAAE,KAAK,CAAC,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QACzF,OAAO,KAAK,CAAC;IACf,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,KAAa;QAC7B,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,WAAW,EAAE,EAAE,EAAE,CAAC,CAAC;IAC3E,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,EAAU;QACvB,IAAI,CAAC,EAAE,EAAE,CAAC;YACR,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;IACnD,CAAC;IAED,KAAK,CAAC,UAAU;QACd,OAAO,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,SAAS,EAAE,MAAM,EAAE,EAAE,CAAC,CAAC;IAC/D,CAAC;IAED,KAAK,CAAC,WAAW,CACf,EAAU,EACV,IAA0E;QAE1E,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;QACtC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,0BAAiB,CAAC;gBAC1B,OAAO,EAAE,sBAAsB,EAAE,YAAY;gBAC7C,IAAI,EAAE,sBAAsB;aAC7B,CAAC,CAAC;QACL,CAAC;QAED,IAAI,IAAI,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;YAC5B,KAAK,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC;QACzB,CAAC;QACD,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;YAChC,KAAK,CAAC,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC;QACjC,CAAC;QACD,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,MAAM,KAAK,CAAC,WAAW,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACzC,CAAC;QAED,MAAM,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACjC,OAAO,KAAK,CAAC;IACf,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,EAAU;QAC1B,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;QACtC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,0BAAiB,CAAC;gBAC1B,OAAO,EAAE,sBAAsB,EAAE,YAAY;gBAC7C,IAAI,EAAE,sBAAsB;aAC7B,CAAC,CAAC;QACL,CAAC;QACD,MAAM,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IAClC,CAAC;CACF,CAAA;AAxFY,4CAAgB;2BAAhB,gBAAgB;IAD5B,IAAA,mBAAU,GAAE;IAGR,WAAA,IAAA,0BAAgB,EAAC,6BAAS,CAAC,CAAA;qCACA,oBAAU;QACR,yCAAkB;GAJvC,gBAAgB,CAwF5B"}

package/dist/lib/audit/services/audit.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit.service.d.ts","sourceRoot":"","sources":["../../../../src/lib/audit/services/audit.service.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,iBAAiB,EAAE,MAAM,yCAAyC,CAAC;AAE5E,OAAO,EACH,iBAAiB,EACjB,cAAc,EACd,mBAAmB,EACnB,wBAAwB,EACxB,mBAAmB,EACnB,oBAAoB,EACvB,MAAM,mBAAmB,CAAC;AAG3B,qBACa,YAAY;IAIjB,OAAO,CAAC,QAAQ,CAAC,iBAAiB;IAHtC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAiC;gBAGnC,iBAAiB,EAAE,iBAAiB;YAG3C,cAAc;IAiBtB,kBAAkB,CAAC,OAAO,EAAE,iBAAiB;IAgB7C,mBAAmB,CAAC,OAAO,EAAE,cAAc;IAc3C,oBAAoB,CAAC,OAAO,EAAE,mBAAmB;IAcjD,qBAAqB,CAAC,OAAO,EAAE,wBAAwB;IAavD,gBAAgB,CAAC,OAAO,EAAE,mBAAmB;IAc7C,iBAAiB,CAAC,OAAO,EAAE,oBAAoB;CAWxD"}

package/dist/lib/audit/services/audit.service.js

@@ -0,0 +1,153 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var AuditService_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuditService = void 0;
+const common_1 = require("@nestjs/common");
+const event_emitter_1 = require("@nestjs/event-emitter");
+const auth_config_service_1 = require("../../core/services/auth-config.service");
+const auth_constants_1 = require("../../auth.constants");
+const events_1 = require("../../auth/events");
+let AuditService = AuditService_1 = class AuditService {
+    authConfigService;
+    logger = new common_1.Logger(AuditService_1.name);
+    constructor(authConfigService) {
+        this.authConfigService = authConfigService;
+    }
+    async emitAuditEvent(event) {
+        const config = this.authConfigService.getConfig();
+        if (config.audit?.enabled === false) {
+            return;
+        }
+        if (config.audit?.onEvent) {
+            try {
+                await config.audit.onEvent(event);
+            }
+            catch (error) {
+                this.logger.error(`Error in audit.onEvent hook: ${error.message}`, error.stack);
+            }
+        }
+    }
+    async handleUserLoggedIn(payload) {
+        await this.emitAuditEvent({
+            type: 'login',
+            userId: payload.payload.user.id,
+            ip: payload.payload.session.ipAddress,
+            userAgent: payload.payload.session.userAgent,
+            success: true,
+            metadata: {
+                provider: payload.payload.provider,
+                tenantId: payload.payload.tenantId,
+            },
+            timestamp: new Date(),
+        });
+    }
+    async handleUserLoggedOut(payload) {
+        await this.emitAuditEvent({
+            type: 'logout',
+            userId: payload.payload.user?.id,
+            success: true,
+            metadata: {
+                reason: payload.payload.reason,
+                sessionId: payload.payload.session.id,
+            },
+            timestamp: new Date(),
+        });
+    }
+    async handleUserRegistered(payload) {
+        await this.emitAuditEvent({
+            type: 'signup',
+            userId: payload.payload.user.id,
+            success: true,
+            metadata: {
+                tenantId: payload.payload.tenantId,
+                provider: payload.payload.provider,
+            },
+            timestamp: new Date(),
+        });
+    }
+    async handlePasswordChanged(payload) {
+        await this.emitAuditEvent({
+            type: 'password_change',
+            userId: payload.payload.user.id,
+            success: true,
+            metadata: {
+                initiatedBy: payload.payload.initiatedBy,
+            },
+            timestamp: new Date(),
+        });
+    }
+    async handle2faEnabled(payload) {
+        await this.emitAuditEvent({
+            type: 'mfa_enable',
+            userId: payload.payload.user.id,
+            success: true,
+            metadata: {
+                method: payload.payload.method,
+                action: 'enabled'
+            },
+            timestamp: new Date(),
+        });
+    }
+    async handle2faDisabled(payload) {
+        await this.emitAuditEvent({
+            type: 'mfa_enable',
+            userId: payload.payload.user.id,
+            success: true,
+            metadata: {
+                action: 'disabled'
+            },
+            timestamp: new Date(),
+        });
+    }
+};
+exports.AuditService = AuditService;
+__decorate([
+    (0, event_emitter_1.OnEvent)(auth_constants_1.NestAuthEvents.LOGGED_IN),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [events_1.UserLoggedInEvent]),
+    __metadata("design:returntype", Promise)
+], AuditService.prototype, "handleUserLoggedIn", null);
+__decorate([
+    (0, event_emitter_1.OnEvent)(auth_constants_1.NestAuthEvents.LOGGED_OUT),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [events_1.LoggedOutEvent]),
+    __metadata("design:returntype", Promise)
+], AuditService.prototype, "handleUserLoggedOut", null);
+__decorate([
+    (0, event_emitter_1.OnEvent)(auth_constants_1.NestAuthEvents.REGISTERED),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [events_1.UserRegisteredEvent]),
+    __metadata("design:returntype", Promise)
+], AuditService.prototype, "handleUserRegistered", null);
+__decorate([
+    (0, event_emitter_1.OnEvent)(auth_constants_1.NestAuthEvents.PASSWORD_CHANGED),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [events_1.UserPasswordChangedEvent]),
+    __metadata("design:returntype", Promise)
+], AuditService.prototype, "handlePasswordChanged", null);
+__decorate([
+    (0, event_emitter_1.OnEvent)(auth_constants_1.NestAuthEvents.TWO_FACTOR_ENABLED),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [events_1.User2faEnabledEvent]),
+    __metadata("design:returntype", Promise)
+], AuditService.prototype, "handle2faEnabled", null);
+__decorate([
+    (0, event_emitter_1.OnEvent)(auth_constants_1.NestAuthEvents.TWO_FACTOR_DISABLED),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [events_1.User2faDisabledEvent]),
+    __metadata("design:returntype", Promise)
+], AuditService.prototype, "handle2faDisabled", null);
+exports.AuditService = AuditService = AuditService_1 = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [auth_config_service_1.AuthConfigService])
+], AuditService);
+//# sourceMappingURL=audit.service.js.map

package/dist/lib/audit/services/audit.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit.service.js","sourceRoot":"","sources":["../../../../src/lib/audit/services/audit.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;AAAA,2CAAoD;AACpD,yDAAgD;AAChD,iFAA4E;AAC5E,yDAAsD;AACtD,8CAO2B;AAIpB,IAAM,YAAY,oBAAlB,MAAM,YAAY;IAIA;IAHJ,MAAM,GAAG,IAAI,eAAM,CAAC,cAAY,CAAC,IAAI,CAAC,CAAC;IAExD,YACqB,iBAAoC;QAApC,sBAAiB,GAAjB,iBAAiB,CAAmB;IACrD,CAAC;IAEG,KAAK,CAAC,cAAc,CAAC,KAAqB;QAC9C,MAAM,MAAM,GAAG,IAAI,CAAC,iBAAiB,CAAC,SAAS,EAAE,CAAC;QAElD,IAAI,MAAM,CAAC,KAAK,EAAE,OAAO,KAAK,KAAK,EAAE,CAAC;YAClC,OAAO;QACX,CAAC;QAED,IAAI,MAAM,CAAC,KAAK,EAAE,OAAO,EAAE,CAAC;YACxB,IAAI,CAAC;gBACD,MAAM,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;YACtC,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACb,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,gCAAgC,KAAK,CAAC,OAAO,EAAE,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC;YACpF,CAAC;QACL,CAAC;IACL,CAAC;IAGK,AAAN,KAAK,CAAC,kBAAkB,CAAC,OAA0B;QAC/C,MAAM,IAAI,CAAC,cAAc,CAAC;YACtB,IAAI,EAAE,OAAO;YACb,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;YAC/B,EAAE,EAAE,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,SAAS;YACrC,SAAS,EAAE,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,SAAS;YAC5C,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE;gBACN,QAAQ,EAAE,OAAO,CAAC,OAAO,CAAC,QAAQ;gBAClC,QAAQ,EAAE,OAAO,CAAC,OAAO,CAAC,QAAQ;aACrC;YACD,SAAS,EAAE,IAAI,IAAI,EAAE;SACxB,CAAC,CAAC;IACP,CAAC;IAGK,AAAN,KAAK,CAAC,mBAAmB,CAAC,OAAuB;QAC7C,MAAM,IAAI,CAAC,cAAc,CAAC;YACtB,IAAI,EAAE,QAAQ;YACd,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE;YAChC,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE;gBACN,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM;gBAC9B,SAAS,EAAE,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE;aACxC;YACD,SAAS,EAAE,IAAI,IAAI,EAAE;SACxB,CAAC,CAAC;IACP,CAAC;IAGK,AAAN,KAAK,CAAC,oBAAoB,CAAC,OAA4B;QACnD,MAAM,IAAI,CAAC,cAAc,CAAC;YACtB,IAAI,EAAE,QAAQ;YACd,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;YAC/B,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE;gBACN,QAAQ,EAAE,OAAO,CAAC,OAAO,CAAC,QAAQ;gBAClC,QAAQ,EAAE,OAAO,CAAC,OAAO,CAAC,QAAQ;aACrC;YACD,SAAS,EAAE,IAAI,IAAI,EAAE;SACxB,CAAC,CAAC;IACP,CAAC;IAGK,AAAN,KAAK,CAAC,qBAAqB,CAAC,OAAiC;QACzD,MAAM,IAAI,CAAC,cAAc,CAAC;YACtB,IAAI,EAAE,iBAAiB;YACvB,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;YAC/B,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE;gBACN,WAAW,EAAE,OAAO,CAAC,OAAO,CAAC,WAAW;aAC3C;YACD,SAAS,EAAE,IAAI,IAAI,EAAE;SACxB,CAAC,CAAC;IACP,CAAC;IAGK,AAAN,KAAK,CAAC,gBAAgB,CAAC,OAA4B;QAC/C,MAAM,IAAI,CAAC,cAAc,CAAC;YACtB,IAAI,EAAE,YAAY;YAClB,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;YAC/B,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE;gBACN,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM;gBAC9B,MAAM,EAAE,SAAS;aACpB;YACD,SAAS,EAAE,IAAI,IAAI,EAAE;SACxB,CAAC,CAAC;IACP,CAAC;IAGK,AAAN,KAAK,CAAC,iBAAiB,CAAC,OAA6B;QACjD,MAAM,IAAI,CAAC,cAAc,CAAC;YACtB,IAAI,EAAE,YAAY;YAClB,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;YAC/B,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE;gBACN,MAAM,EAAE,UAAU;aACrB;YACD,SAAS,EAAE,IAAI,IAAI,EAAE;SACxB,CAAC,CAAC;IACP,CAAC;CACJ,CAAA;AA1GY,oCAAY;AAwBf;IADL,IAAA,uBAAO,EAAC,+BAAc,CAAC,SAAS,CAAC;;qCACA,0BAAiB;;sDAalD;AAGK;IADL,IAAA,uBAAO,EAAC,+BAAc,CAAC,UAAU,CAAC;;qCACA,uBAAc;;uDAWhD;AAGK;IADL,IAAA,uBAAO,EAAC,+BAAc,CAAC,UAAU,CAAC;;qCACC,4BAAmB;;wDAWtD;AAGK;IADL,IAAA,uBAAO,EAAC,+BAAc,CAAC,gBAAgB,CAAC;;qCACJ,iCAAwB;;yDAU5D;AAGK;IADL,IAAA,uBAAO,EAAC,+BAAc,CAAC,kBAAkB,CAAC;;qCACX,4BAAmB;;oDAWlD;AAGK;IADL,IAAA,uBAAO,EAAC,+BAAc,CAAC,mBAAmB,CAAC;;qCACX,6BAAoB;;qDAUpD;uBAzGQ,YAAY;IADxB,IAAA,mBAAU,GAAE;qCAK+B,uCAAiB;GAJhD,YAAY,CA0GxB"}

package/dist/lib/auth/auth.module.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.module.d.ts","sourceRoot":"","sources":["../../../src/lib/auth/auth.module.ts"],"names":[],"mappings":"AAwBA,qBAoCa,UAAU;CACtB"}

package/dist/lib/auth/auth.module.js

@@ -0,0 +1,74 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthModule = void 0;
+const common_1 = require("@nestjs/common");
+const auth_service_1 = require("./services/auth.service");
+const cookie_service_1 = require("./services/cookie.service");
+const mfa_service_1 = require("./services/mfa.service");
+const client_config_service_1 = require("./services/client-config.service");
+const auth_guard_1 = require("./guards/auth.guard");
+const refresh_token_interceptor_1 = require("./interceptors/refresh-token.interceptor");
+const auth_controller_1 = require("./controllers/auth.controller");
+const mfa_controller_1 = require("./controllers/mfa.controller");
+const auth_session_event_listener_service_1 = require("./services/auth-session-event-listener.service");
+const identity_entity_1 = require("../user/entities/identity.entity");
+const typeorm_1 = require("@nestjs/typeorm");
+const user_entity_1 = require("../user/entities/user.entity");
+const otp_entity_1 = require("./entities/otp.entity");
+const mfa_secret_entity_1 = require("./entities/mfa-secret.entity");
+const access_key_entity_1 = require("../user/entities/access-key.entity");
+const trusted_device_entity_1 = require("./entities/trusted-device.entity");
+const event_emitter_1 = require("@nestjs/event-emitter");
+const user_module_1 = require("../user/user.module");
+const core_module_1 = require("../core/core.module");
+const session_module_1 = require("../session/session.module");
+const tenant_module_1 = require("../tenant/tenant.module");
+const role_module_1 = require("../role/role.module");
+let AuthModule = class AuthModule {
+};
+exports.AuthModule = AuthModule;
+exports.AuthModule = AuthModule = __decorate([
+    (0, common_1.Module)({
+        imports: [
+            event_emitter_1.EventEmitterModule,
+            typeorm_1.TypeOrmModule.forFeature([
+                user_entity_1.NestAuthUser,
+                otp_entity_1.NestAuthOTP,
+                mfa_secret_entity_1.NestAuthMFASecret,
+                access_key_entity_1.NestAuthAccessKey,
+                identity_entity_1.NestAuthIdentity,
+                trusted_device_entity_1.NestAuthTrustedDevice,
+            ]),
+            (0, common_1.forwardRef)(() => core_module_1.CoreModule),
+            (0, common_1.forwardRef)(() => user_module_1.UserModule),
+            (0, common_1.forwardRef)(() => session_module_1.SessionModule),
+            (0, common_1.forwardRef)(() => tenant_module_1.TenantModule),
+            (0, common_1.forwardRef)(() => role_module_1.RoleModule),
+        ],
+        providers: [
+            auth_service_1.AuthService,
+            cookie_service_1.CookieService,
+            mfa_service_1.MfaService,
+            client_config_service_1.ClientConfigService,
+            auth_guard_1.NestAuthAuthGuard,
+            refresh_token_interceptor_1.RefreshTokenInterceptor,
+            auth_session_event_listener_service_1.AuthSessionEventListener,
+        ],
+        controllers: [auth_controller_1.AuthController, mfa_controller_1.MfaController],
+        exports: [
+            auth_service_1.AuthService,
+            cookie_service_1.CookieService,
+            mfa_service_1.MfaService,
+            client_config_service_1.ClientConfigService,
+            auth_guard_1.NestAuthAuthGuard,
+            refresh_token_interceptor_1.RefreshTokenInterceptor,
+        ],
+    })
+], AuthModule);
+//# sourceMappingURL=auth.module.js.map

package/dist/lib/auth/auth.module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.module.js","sourceRoot":"","sources":["../../../src/lib/auth/auth.module.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAAoD;AACpD,0DAAsD;AACtD,8DAA0D;AAC1D,wDAAoD;AACpD,4EAAuE;AACvE,oDAAwD;AACxD,wFAAmF;AACnF,mEAA+D;AAC/D,iEAA6D;AAC7D,wGAA0F;AAC1F,sEAAoE;AACpE,6CAAgD;AAChD,8DAA4D;AAC5D,sDAAoD;AACpD,oEAAiE;AACjE,0EAAuE;AACvE,4EAAyE;AACzE,yDAA2D;AAC3D,qDAAiD;AACjD,qDAAiD;AACjD,8DAA0D;AAC1D,2DAAuD;AACvD,qDAAiD;AAsC1C,IAAM,UAAU,GAAhB,MAAM,UAAU;CACtB,CAAA;AADY,gCAAU;qBAAV,UAAU;IApCtB,IAAA,eAAM,EAAC;QACJ,OAAO,EAAE;YACL,kCAAkB;YAClB,uBAAa,CAAC,UAAU,CAAC;gBACrB,0BAAY;gBACZ,wBAAW;gBACX,qCAAiB;gBACjB,qCAAiB;gBACjB,kCAAgB;gBAChB,6CAAqB;aACxB,CAAC;YACF,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,wBAAU,CAAC;YAC5B,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,wBAAU,CAAC;YAC5B,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,8BAAa,CAAC;YAC/B,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,4BAAY,CAAC;YAC9B,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,wBAAU,CAAC;SAC/B;QACD,SAAS,EAAE;YACP,0BAAW;YACX,8BAAa;YACb,wBAAU;YACV,2CAAmB;YACnB,8BAAiB;YACjB,mDAAuB;YACvB,8DAAwB;SAC3B;QACD,WAAW,EAAE,CAAC,gCAAc,EAAE,8BAAa,CAAC;QAC5C,OAAO,EAAE;YACL,0BAAW;YACX,8BAAa;YACb,wBAAU;YACV,2CAAmB;YACnB,8BAAiB;YACjB,mDAAuB;SAC1B;KACJ,CAAC;GACW,UAAU,CACtB"}

package/dist/lib/auth/controllers/auth.controller.d.ts

@@ -0,0 +1,57 @@
+import { AuthService } from '../services/auth.service';
+import { Verify2faRequestDto } from '../dto/requests/verify-2fa.request.dto';
+import { RefreshTokenRequestDto } from '../dto/requests/refresh-token.request.dto';
+import { Response } from 'express';
+import { CookieService } from '../services/cookie.service';
+import { AuthConfigService } from '../../core/services/auth-config.service';
+import { SignupRequestDto } from '../dto/requests/signup.request.dto';
+import { LoginRequestDto } from '../dto/requests/login.request.dto';
+import { MessageResponseDto, MFAMethodEnum } from '../../core';
+import { ForgotPasswordRequestDto } from '../dto/requests/forgot-password.request.dto';
+import { ResetPasswordRequestDto } from '../dto/requests/reset-password.request.dto';
+import { VerifyForgotPasswordOtpRequestDto } from '../dto/requests/verify-forgot-password-otp-request-dto';
+import { ResetPasswordWithTokenRequestDto } from '../dto/requests/reset-password-with-token.request.dto';
+import { VerifyOtpResponseDto } from '../dto/responses/verify-otp.response.dto';
+import { ChangePasswordRequestDto } from '../dto/requests/change-password.request.dto';
+import { SendEmailVerificationRequestDto } from '../dto/requests/send-email-verification.request.dto';
+import { VerifyEmailRequestDto } from '../dto/requests/verify-email.request.dto';
+import { ClientConfigService } from '../services/client-config.service';
+import { ClientConfigResponseDto } from '../dto/responses/client-config.response.dto';
+export declare class AuthController {
+    private readonly authService;
+    private readonly cookieService;
+    private readonly authConfig;
+    private readonly clientConfigService;
+    constructor(authService: AuthService, cookieService: CookieService, authConfig: AuthConfigService, clientConfigService: ClientConfigService);
+    protected isUsingCookies(): boolean;
+    protected handleAuthResponse(res: Response, authResult: {
+        accessToken: string;
+        refreshToken: string;
+        isRequiresMfa: boolean;
+    }, successMessage?: string): void;
+    protected handle2faResponse(res: Response, authResult: {
+        accessToken: string;
+        refreshToken: string;
+        trustToken?: string;
+    }): void;
+    signup(input: SignupRequestDto, res: Response): Promise<void>;
+    login(input: LoginRequestDto, res: Response): Promise<void>;
+    refreshToken(input: RefreshTokenRequestDto, res: Response): Promise<void>;
+    send2faCode(method: MFAMethodEnum): Promise<{
+        message: string;
+    }>;
+    verify2fa(input: Verify2faRequestDto, res: Response): Promise<void>;
+    logout(res: Response): Promise<void>;
+    logoutAll(): Promise<MessageResponseDto>;
+    changePassword(input: ChangePasswordRequestDto, res: Response): Promise<void>;
+    forgotPassword(input: ForgotPasswordRequestDto): Promise<MessageResponseDto>;
+    verifyForgotPasswordOtp(input: VerifyForgotPasswordOtpRequestDto): Promise<VerifyOtpResponseDto>;
+    resetPassword(input: ResetPasswordRequestDto): Promise<MessageResponseDto>;
+    resetPasswordWithToken(input: ResetPasswordWithTokenRequestDto): Promise<MessageResponseDto>;
+    getUser(): Promise<Partial<import("../../core").NestAuthUser>>;
+    sendEmailVerification(input: SendEmailVerificationRequestDto): Promise<MessageResponseDto>;
+    verifyEmail(input: VerifyEmailRequestDto): Promise<MessageResponseDto>;
+    getClientConfig(): Promise<ClientConfigResponseDto>;
+    ssoCallback(provider: string, data: any, res: Response): Promise<void>;
+}
+//# sourceMappingURL=auth.controller.d.ts.map

package/dist/lib/auth/controllers/auth.controller.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.controller.d.ts","sourceRoot":"","sources":["../../../../src/lib/auth/controllers/auth.controller.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAC;AACvD,OAAO,EAAE,mBAAmB,EAAE,MAAM,wCAAwC,CAAC;AAC7E,OAAO,EAAE,sBAAsB,EAAE,MAAM,2CAA2C,CAAC;AACnF,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAGnC,OAAO,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAC;AAC3D,OAAO,EAAE,iBAAiB,EAAE,MAAM,yCAAyC,CAAC;AAG5E,OAAO,EAAE,gBAAgB,EAAE,MAAM,oCAAoC,CAAC;AACtE,OAAO,EAAE,eAAe,EAAE,MAAM,mCAAmC,CAAC;AAEpE,OAAO,EAAE,kBAAkB,EAAE,aAAa,EAAW,MAAM,YAAY,CAAC;AACxE,OAAO,EAAE,wBAAwB,EAAE,MAAM,6CAA6C,CAAC;AACvF,OAAO,EAAE,uBAAuB,EAAE,MAAM,4CAA4C,CAAC;AAErF,OAAO,EAAE,iCAAiC,EAAE,MAAM,wDAAwD,CAAC;AAC3G,OAAO,EAAE,gCAAgC,EAAE,MAAM,uDAAuD,CAAC;AACzG,OAAO,EAAE,oBAAoB,EAAE,MAAM,0CAA0C,CAAC;AAChF,OAAO,EAAE,wBAAwB,EAAE,MAAM,6CAA6C,CAAC;AACvF,OAAO,EAAE,+BAA+B,EAAE,MAAM,qDAAqD,CAAC;AACtG,OAAO,EAAE,qBAAqB,EAAE,MAAM,0CAA0C,CAAC;AACjF,OAAO,EAAE,mBAAmB,EAAE,MAAM,mCAAmC,CAAC;AACxE,OAAO,EAAE,uBAAuB,EAAE,MAAM,6CAA6C,CAAC;AAItF,qBACa,cAAc;IAEnB,OAAO,CAAC,QAAQ,CAAC,WAAW;IAC5B,OAAO,CAAC,QAAQ,CAAC,aAAa;IAC9B,OAAO,CAAC,QAAQ,CAAC,UAAU;IAC3B,OAAO,CAAC,QAAQ,CAAC,mBAAmB;gBAHnB,WAAW,EAAE,WAAW,EACxB,aAAa,EAAE,aAAa,EAC5B,UAAU,EAAE,iBAAiB,EAC7B,mBAAmB,EAAE,mBAAmB;IAM7D,SAAS,CAAC,cAAc,IAAI,OAAO;IAUnC,SAAS,CAAC,kBAAkB,CACxB,GAAG,EAAE,QAAQ,EACb,UAAU,EAAE;QAAE,WAAW,EAAE,MAAM,CAAC;QAAC,YAAY,EAAE,MAAM,CAAC;QAAC,aAAa,EAAE,OAAO,CAAA;KAAE,EACjF,cAAc,GAAE,MAAoC,GACrD,IAAI;IAsBP,SAAS,CAAC,iBAAiB,CACvB,GAAG,EAAE,QAAQ,EACb,UAAU,EAAE;QAAE,WAAW,EAAE,MAAM,CAAC;QAAC,YAAY,EAAE,MAAM,CAAC;QAAC,UAAU,CAAC,EAAE,MAAM,CAAA;KAAE,GAC/E,IAAI;IA8CD,MAAM,CAAS,KAAK,EAAE,gBAAgB,EAAS,GAAG,EAAE,QAAQ;IAe5D,KAAK,CAAS,KAAK,EAAE,eAAe,EAAS,GAAG,EAAE,QAAQ;IAe1D,YAAY,CAAS,KAAK,EAAE,sBAAsB,EAAS,GAAG,EAAE,QAAQ;IAaxE,WAAW,CAAiB,MAAM,EAAE,aAAa;;;IAkBjD,SAAS,CAAS,KAAK,EAAE,mBAAmB,EAAS,GAAG,EAAE,QAAQ;IAWlE,MAAM,CAAQ,GAAG,EAAE,QAAQ;IAiB3B,SAAS,IAAI,OAAO,CAAC,kBAAkB,CAAC;IAYxC,cAAc,CAAS,KAAK,EAAE,wBAAwB,EAAS,GAAG,EAAE,QAAQ;IAU5E,cAAc,CAAS,KAAK,EAAE,wBAAwB,GAAG,OAAO,CAAC,kBAAkB,CAAC;IAUpF,uBAAuB,CAAS,KAAK,EAAE,iCAAiC,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAexG,aAAa,CAAS,KAAK,EAAE,uBAAuB,GAAG,OAAO,CAAC,kBAAkB,CAAC;IAUlF,sBAAsB,CAAS,KAAK,EAAE,gCAAgC,GAAG,OAAO,CAAC,kBAAkB,CAAC;IASpG,OAAO;IAUP,qBAAqB,CAAS,KAAK,EAAE,+BAA+B,GAAG,OAAO,CAAC,kBAAkB,CAAC;IAUlG,WAAW,CAAS,KAAK,EAAE,qBAAqB,GAAG,OAAO,CAAC,kBAAkB,CAAC;IAW9E,eAAe,IAAI,OAAO,CAAC,uBAAuB,CAAC;IASnD,WAAW,CACM,QAAQ,EAAE,MAAM,EAC1B,IAAI,EAAE,GAAG,EACX,GAAG,EAAE,QAAQ;CA6F3B"}