npm - @ackplus/nest-auth - Versions diffs - 1.1.28 → 1.1.30 - Mend

@ackplus/nest-auth 1.1.28 → 1.1.30

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (982) hide show

package/dist/lib/core/interfaces/auth-module-options.interface.d.ts ADDED Viewed

@@ -0,0 +1,164 @@
+import { Type } from '@nestjs/common';
+import { MFAOptions } from './mfa-options.interface';
+import { CookieOptions, SessionOptions } from './session-options.interface';
+import { BaseAuthProvider } from '../providers/base-auth.provider';
+import { DebugLogOptions } from '../services/debug-logger.service';
+import { NestAuthUser } from '../../user/entities/user.entity';
+import { SessionPayload, JWTTokenPayload } from './token-payload.interface';
+export interface DefaultTenantOptions {
+    name: string;
+    slug: string;
+    domain?: string;
+    description?: string;
+    metadata?: Record<string, any>;
+}
+export interface RegistrationCollectProfileField {
+    id: string;
+    label: string;
+    required: boolean;
+    type: 'text' | 'email' | 'phone' | 'select' | 'checkbox' | 'password';
+    placeholder?: string;
+    options?: Array<{
+        label: string;
+        value: string;
+    }>;
+}
+export interface UserHooks {
+    beforeCreate?: (userData: Partial<NestAuthUser>, input: any) => Promise<Partial<NestAuthUser>> | Partial<NestAuthUser>;
+    afterCreate?: (user: NestAuthUser, input: any) => Promise<void> | void;
+    serialize?: (user: NestAuthUser) => Partial<NestAuthUser>;
+    sensitiveFields?: string[];
+}
+export interface AuthHooks {
+    transformResponse?: (response: any, user: NestAuthUser, session: SessionPayload) => Promise<any> | any;
+}
+export interface PasswordHooks {
+    hash?: (password: string) => Promise<string>;
+    verify?: (password: string, hash: string) => Promise<boolean>;
+    validate?: (password: string) => {
+        valid: boolean;
+        errors?: string[];
+    };
+}
+export interface OtpOptions {
+    generate?: (length?: number) => string | Promise<string>;
+    length?: number;
+    format?: 'numeric' | 'alphanumeric';
+}
+export interface GuardHooks {
+    beforeAuth?: (request: any, payload: JWTTokenPayload) => Promise<void | {
+        reject: boolean;
+        reason?: string;
+    }>;
+    afterAuth?: (request: any, user: NestAuthUser, session: SessionPayload) => Promise<void> | void;
+}
+export interface AuthorizationHooks {
+    resolveRoles?: (user: NestAuthUser) => Promise<string[]>;
+    resolvePermissions?: (user: NestAuthUser, roles: string[]) => Promise<string[]>;
+}
+export interface AuthAuditEvent {
+    type: 'login' | 'logout' | 'signup' | 'password_change' | 'mfa_enable' | 'session_revoke';
+    userId?: string;
+    ip?: string;
+    userAgent?: string;
+    success: boolean;
+    metadata?: Record<string, any>;
+    timestamp: Date;
+}
+export interface AuditOptions {
+    enabled?: boolean;
+    onEvent?: (event: AuthAuditEvent) => Promise<void> | void;
+}
+export interface AuthModuleOptions {
+    isGlobal?: boolean;
+    appName: string;
+    enableAutoRefresh?: boolean;
+    accessTokenType?: 'header' | 'cookie';
+    cookieOptions?: CookieOptions;
+    jwt: {
+        secret: string;
+        accessTokenExpiresIn?: number | string;
+        refreshTokenExpiresIn?: number | string;
+        validateToken?: (payload: JWTTokenPayload, session: SessionPayload) => Promise<boolean>;
+    };
+    google?: {
+        clientId: string;
+        clientSecret: string;
+        redirectUri: string;
+    };
+    facebook?: {
+        appId: string;
+        appSecret: string;
+        redirectUri: string;
+    };
+    apple?: {
+        clientId: string;
+        teamId: string;
+        keyId: string;
+        privateKey: string;
+        privateKeyMethod?: string;
+        redirectUri: string;
+    };
+    github?: {
+        clientId: string;
+        clientSecret: string;
+        redirectUri: string;
+    };
+    phoneAuth?: {
+        enabled: boolean;
+    };
+    emailAuth?: {
+        enabled: boolean;
+    };
+    registration?: {
+        enabled?: boolean;
+        requireInvitation?: boolean;
+        collectProfileFields?: Array<RegistrationCollectProfileField>;
+    };
+    clientConfig?: {
+        factory?: (defaultConfig: any, context: {
+            configService: any;
+            tenantService: any;
+        }) => Promise<any> | any;
+    };
+    mfa?: MFAOptions;
+    session?: SessionOptions;
+    customAuthProviders?: BaseAuthProvider[];
+    passwordResetOtpExpiresIn?: number | string;
+    passwordResetTokenExpiresIn?: number | string;
+    defaultTenant?: DefaultTenantOptions;
+    adminConsole?: AdminConsoleOptions;
+    debug?: DebugLogOptions;
+    user?: UserHooks;
+    auth?: AuthHooks;
+    guards?: GuardHooks;
+    password?: PasswordHooks;
+    otp?: OtpOptions;
+    authorization?: AuthorizationHooks;
+    audit?: AuditOptions;
+    errorHandler?: (error: Error, context: 'login' | 'signup' | 'refresh' | 'mfa' | 'password_reset' | 'password_change') => any;
+}
+export interface AdminConsoleOptions {
+    enabled?: boolean;
+    basePath?: string;
+    secretKey?: string;
+    sessionCookieName?: string;
+    sessionDuration?: string | number;
+    superAdminRole?: string;
+    initializeEnabled?: boolean;
+    cookie?: CookieOptions;
+    allowAdminManagement?: boolean;
+}
+export interface AuthModuleAsyncOptions {
+    isGlobal?: boolean;
+    enableAutoRefresh?: boolean;
+    imports?: any[];
+    useFactory?: (...args: any[]) => Promise<AuthModuleOptions> | AuthModuleOptions;
+    inject?: any[];
+    useClass?: Type<AuthModuleOptionsFactory>;
+    useExisting?: Type<AuthModuleOptionsFactory>;
+}
+export interface AuthModuleOptionsFactory {
+    createAuthModuleOptions(): Promise<AuthModuleOptions> | AuthModuleOptions;
+}
+//# sourceMappingURL=auth-module-options.interface.d.ts.map

package/dist/lib/core/interfaces/auth-module-options.interface.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"auth-module-options.interface.d.ts","sourceRoot":"","sources":["../../../../src/lib/core/interfaces/auth-module-options.interface.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AACtC,OAAO,EAAE,UAAU,EAAE,MAAM,yBAAyB,CAAC;AACrD,OAAO,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAC5E,OAAO,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAC;AACnE,OAAO,EAAE,eAAe,EAAE,MAAM,kCAAkC,CAAC;AACnE,OAAO,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAC/D,OAAO,EAAE,cAAc,EAAE,eAAe,EAAE,MAAM,2BAA2B,CAAC;AAW5E,MAAM,WAAW,oBAAoB;IAEjC,IAAI,EAAE,MAAM,CAAC;IAOb,IAAI,EAAE,MAAM,CAAC;IAMb,MAAM,CAAC,EAAE,MAAM,CAAC;IAGhB,WAAW,CAAC,EAAE,MAAM,CAAC;IAGrB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAClC;AAED,MAAM,WAAW,+BAA+B;IAC5C,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,OAAO,CAAC;IAClB,IAAI,EAAE,MAAM,GAAG,OAAO,GAAG,OAAO,GAAG,QAAQ,GAAG,UAAU,GAAG,UAAU,CAAC;IACtE,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,KAAK,CAAC;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;CACrD;AAKD,MAAM,WAAW,SAAS;IAatB,YAAY,CAAC,EAAE,CAAC,QAAQ,EAAE,OAAO,CAAC,YAAY,CAAC,EAAE,KAAK,EAAE,GAAG,KAAK,OAAO,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;IAMvH,WAAW,CAAC,EAAE,CAAC,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,GAAG,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAcvE,SAAS,CAAC,EAAE,CAAC,IAAI,EAAE,YAAY,KAAK,OAAO,CAAC,YAAY,CAAC,CAAC;IAG1D,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;CAC9B;AAKD,MAAM,WAAW,SAAS;IActB,iBAAiB,CAAC,EAAE,CAChB,QAAQ,EAAE,GAAG,EACb,IAAI,EAAE,YAAY,EAClB,OAAO,EAAE,cAAc,KACtB,OAAO,CAAC,GAAG,CAAC,GAAG,GAAG,CAAC;CAC3B;AAKD,MAAM,WAAW,aAAa;IAE1B,IAAI,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,CAAC,CAAC;IAE7C,MAAM,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;IAE9D,QAAQ,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,EAAE,CAAA;KAAE,CAAC;CAC1E;AAKD,MAAM,WAAW,UAAU;IAEvB,QAAQ,CAAC,EAAE,CAAC,MAAM,CAAC,EAAE,MAAM,KAAK,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAEzD,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,MAAM,CAAC,EAAE,SAAS,GAAG,cAAc,CAAC;CACvC;AAKD,MAAM,WAAW,UAAU;IAKvB,UAAU,CAAC,EAAE,CACT,OAAO,EAAE,GAAG,EACZ,OAAO,EAAE,eAAe,KACvB,OAAO,CAAC,IAAI,GAAG;QAAE,MAAM,EAAE,OAAO,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAG1D,SAAS,CAAC,EAAE,CACR,OAAO,EAAE,GAAG,EACZ,IAAI,EAAE,YAAY,EAClB,OAAO,EAAE,cAAc,KACtB,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CAC7B;AAKD,MAAM,WAAW,kBAAkB;IAE/B,YAAY,CAAC,EAAE,CAAC,IAAI,EAAE,YAAY,KAAK,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IAEzD,kBAAkB,CAAC,EAAE,CAAC,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;CACnF;AAKD,MAAM,WAAW,cAAc;IAC3B,IAAI,EAAE,OAAO,GAAG,QAAQ,GAAG,QAAQ,GAAG,iBAAiB,GAAG,YAAY,GAAG,gBAAgB,CAAC;IAC1F,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,EAAE,CAAC,EAAE,MAAM,CAAC;IACZ,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAC/B,SAAS,EAAE,IAAI,CAAC;CACnB;AAKD,MAAM,WAAW,YAAY;IACzB,OAAO,CAAC,EAAE,OAAO,CAAC;IAElB,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,cAAc,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CAC7D;AAED,MAAM,WAAW,iBAAiB;IAC9B,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;IAOhB,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B,eAAe,CAAC,EAAE,QAAQ,GAAG,QAAQ,CAAC;IACtC,aAAa,CAAC,EAAE,aAAa,CAAC;IAC9B,GAAG,EAAE;QACD,MAAM,EAAE,MAAM,CAAC;QACf,oBAAoB,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;QACvC,qBAAqB,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;QAExC,aAAa,CAAC,EAAE,CAAC,OAAO,EAAE,eAAe,EAAE,OAAO,EAAE,cAAc,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;KAC3F,CAAC;IACF,MAAM,CAAC,EAAE;QACL,QAAQ,EAAE,MAAM,CAAC;QACjB,YAAY,EAAE,MAAM,CAAC;QACrB,WAAW,EAAE,MAAM,CAAC;KACvB,CAAC;IACF,QAAQ,CAAC,EAAE;QACP,KAAK,EAAE,MAAM,CAAC;QACd,SAAS,EAAE,MAAM,CAAC;QAClB,WAAW,EAAE,MAAM,CAAC;KACvB,CAAC;IACF,KAAK,CAAC,EAAE;QACJ,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,EAAE,MAAM,CAAC;QACf,KAAK,EAAE,MAAM,CAAC;QACd,UAAU,EAAE,MAAM,CAAC;QACnB,gBAAgB,CAAC,EAAE,MAAM,CAAC;QAC1B,WAAW,EAAE,MAAM,CAAC;KACvB,CAAC;IACF,MAAM,CAAC,EAAE;QACL,QAAQ,EAAE,MAAM,CAAC;QACjB,YAAY,EAAE,MAAM,CAAC;QACrB,WAAW,EAAE,MAAM,CAAC;KACvB,CAAC;IACF,SAAS,CAAC,EAAE;QACR,OAAO,EAAE,OAAO,CAAC;KACpB,CAAC;IACF,SAAS,CAAC,EAAE;QACR,OAAO,EAAE,OAAO,CAAC;KACpB,CAAC;IAKF,YAAY,CAAC,EAAE;QACX,OAAO,CAAC,EAAE,OAAO,CAAC;QAClB,iBAAiB,CAAC,EAAE,OAAO,CAAC;QAC5B,oBAAoB,CAAC,EAAE,KAAK,CAAC,+BAA+B,CAAC,CAAC;KACjE,CAAC;IAKF,YAAY,CAAC,EAAE;QAKX,OAAO,CAAC,EAAE,CAAC,aAAa,EAAE,GAAG,EAAE,OAAO,EAAE;YAAE,aAAa,EAAE,GAAG,CAAC;YAAC,aAAa,EAAE,GAAG,CAAA;SAAE,KAAK,OAAO,CAAC,GAAG,CAAC,GAAG,GAAG,CAAC;KAC7G,CAAC;IACF,GAAG,CAAC,EAAE,UAAU,CAAC;IACjB,OAAO,CAAC,EAAE,cAAc,CAAC;IACzB,mBAAmB,CAAC,EAAE,gBAAgB,EAAE,CAAC;IACzC,yBAAyB,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAC5C,2BAA2B,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAsB9C,aAAa,CAAC,EAAE,oBAAoB,CAAC;IAOrC,YAAY,CAAC,EAAE,mBAAmB,CAAC;IACnC,KAAK,CAAC,EAAE,eAAe,CAAC;IAUxB,IAAI,CAAC,EAAE,SAAS,CAAC;IAMjB,IAAI,CAAC,EAAE,SAAS,CAAC;IAMjB,MAAM,CAAC,EAAE,UAAU,CAAC;IAMpB,QAAQ,CAAC,EAAE,aAAa,CAAC;IAMzB,GAAG,CAAC,EAAE,UAAU,CAAC;IAMjB,aAAa,CAAC,EAAE,kBAAkB,CAAC;IAMnC,KAAK,CAAC,EAAE,YAAY,CAAC;IAMrB,YAAY,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,GAAG,QAAQ,GAAG,SAAS,GAAG,KAAK,GAAG,gBAAgB,GAAG,iBAAiB,KAAK,GAAG,CAAC;CAChI;AAED,MAAM,WAAW,mBAAmB;IAEhC,OAAO,CAAC,EAAE,OAAO,CAAC;IAElB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAYlB,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B,eAAe,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAKlC,cAAc,CAAC,EAAE,MAAM,CAAC;IAKxB,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAK5B,MAAM,CAAC,EAAE,aAAa,CAAC;IAIvB,oBAAoB,CAAC,EAAE,OAAO,CAAC;CAClC;AAED,MAAM,WAAW,sBAAsB;IACnC,QAAQ,CAAC,EAAE,OAAO,CAAC;IAOnB,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B,OAAO,CAAC,EAAE,GAAG,EAAE,CAAC;IAChB,UAAU,CAAC,EAAE,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,OAAO,CAAC,iBAAiB,CAAC,GAAG,iBAAiB,CAAC;IAChF,MAAM,CAAC,EAAE,GAAG,EAAE,CAAC;IACf,QAAQ,CAAC,EAAE,IAAI,CAAC,wBAAwB,CAAC,CAAC;IAC1C,WAAW,CAAC,EAAE,IAAI,CAAC,wBAAwB,CAAC,CAAC;CAChD;AAED,MAAM,WAAW,wBAAwB;IACrC,uBAAuB,IAAI,OAAO,CAAC,iBAAiB,CAAC,GAAG,iBAAiB,CAAC;CAC7E"}

package/dist/lib/core/interfaces/auth-module-options.interface.js ADDED Viewed

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=auth-module-options.interface.js.map

package/dist/lib/core/interfaces/auth-module-options.interface.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"auth-module-options.interface.js","sourceRoot":"","sources":["../../../../src/lib/core/interfaces/auth-module-options.interface.ts"],"names":[],"mappings":""}

package/dist/lib/core/interfaces/mfa-options.interface.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"mfa-options.interface.d.ts","sourceRoot":"","sources":["../../../../src/lib/core/interfaces/mfa-options.interface.ts"],"names":[],"mappings":"AACA,MAAM,WAAW,UAAU;IAEvB,OAAO,CAAC,EAAE,OAAO,CAAC;IAGlB,QAAQ,CAAC,EAAE,OAAO,CAAC;IAGnB,OAAO,CAAC,EAAE,aAAa,EAAE,CAAC;IAG1B,SAAS,CAAC,EAAE,MAAM,CAAC;IAGnB,IAAI,CAAC,EAAE;QACH,MAAM,EAAE,MAAM,CAAC;QACf,MAAM,EAAE,MAAM,CAAC;KAClB,CAAC;IAGF,GAAG,CAAC,EAAE;QACF,QAAQ,EAAE,MAAM,CAAC;QACjB,QAAQ,EAAE,MAAM,CAAC;KACpB,CAAC;IAGF,KAAK,CAAC,EAAE;QACJ,QAAQ,EAAE,MAAM,CAAC;KACpB,CAAC;IAGF,eAAe,CAAC,EAAE,OAAO,CAAC;IAG1B,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAG/B,YAAY,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAG/B,qBAAqB,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAGxC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAIhC,UAAU,CAAC,EAAE,MAAM,CAAC;CACvB;AAED,oBAAY,aAAa;IACrB,IAAI,SAAS;IACb,GAAG,QAAQ;IACX,KAAK,UAAU;CAClB"}

package/dist/lib/core/interfaces/mfa-options.interface.js ADDED Viewed

@@ -0,0 +1,10 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MFAMethodEnum = void 0;
+var MFAMethodEnum;
+(function (MFAMethodEnum) {
+    MFAMethodEnum["TOTP"] = "totp";
+    MFAMethodEnum["SMS"] = "sms";
+    MFAMethodEnum["EMAIL"] = "email";
+})(MFAMethodEnum || (exports.MFAMethodEnum = MFAMethodEnum = {}));
+//# sourceMappingURL=mfa-options.interface.js.map

package/dist/lib/core/interfaces/mfa-options.interface.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"mfa-options.interface.js","sourceRoot":"","sources":["../../../../src/lib/core/interfaces/mfa-options.interface.ts"],"names":[],"mappings":";;;AAmDA,IAAY,aAIX;AAJD,WAAY,aAAa;IACrB,8BAAa,CAAA;IACb,4BAAW,CAAA;IACX,gCAAe,CAAA;AACnB,CAAC,EAJW,aAAa,6BAAb,aAAa,QAIxB"}

package/dist/lib/core/interfaces/otp.interface.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"otp.interface.d.ts","sourceRoot":"","sources":["../../../../src/lib/core/interfaces/otp.interface.ts"],"names":[],"mappings":"AACA,oBAAY,WAAW;IACnB,cAAc,mBAAmB;IACjC,YAAY,iBAAiB;IAC7B,GAAG,QAAQ;CACd"}

package/dist/lib/core/interfaces/otp.interface.js ADDED Viewed

@@ -0,0 +1,10 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OTPTypeEnum = void 0;
+var OTPTypeEnum;
+(function (OTPTypeEnum) {
+    OTPTypeEnum["PASSWORD_RESET"] = "password_reset";
+    OTPTypeEnum["VERIFICATION"] = "verification";
+    OTPTypeEnum["MFA"] = "mfa";
+})(OTPTypeEnum || (exports.OTPTypeEnum = OTPTypeEnum = {}));
+//# sourceMappingURL=otp.interface.js.map

package/dist/lib/core/interfaces/otp.interface.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"otp.interface.js","sourceRoot":"","sources":["../../../../src/lib/core/interfaces/otp.interface.ts"],"names":[],"mappings":";;;AACA,IAAY,WAIX;AAJD,WAAY,WAAW;IACnB,gDAAiC,CAAA;IACjC,4CAA6B,CAAA;IAC7B,0BAAW,CAAA;AACf,CAAC,EAJW,WAAW,2BAAX,WAAW,QAItB"}

package/dist/lib/core/interfaces/session-options.interface.d.ts ADDED Viewed

@@ -0,0 +1,23 @@
+import { CookieOptions as ExpressCookieOptions } from 'express';
+import { NestAuthUser } from '../../user/entities/user.entity';
+import { SessionDataPayload, SessionPayload, JWTTokenPayload } from './token-payload.interface';
+export declare enum SessionStorageType {
+    REDIS = "redis",
+    DATABASE = "database",
+    MEMORY = "memory"
+}
+export interface SessionOptions {
+    storageType: SessionStorageType;
+    redisUrl?: string;
+    sessionExpiry?: number | string;
+    refreshTokenExpiry?: number | string;
+    maxSessionsPerUser?: number;
+    slidingExpiration?: boolean;
+    customizeSessionData?: (defaultData: SessionDataPayload, user: NestAuthUser) => Promise<SessionDataPayload> | SessionDataPayload;
+    customizeTokenPayload?: (defaultPayload: JWTTokenPayload, session: SessionPayload) => Promise<JWTTokenPayload> | JWTTokenPayload;
+    onCreated?: (session: SessionPayload, user: any) => Promise<void> | void;
+    onRefreshed?: (oldSession: SessionPayload, newSession: SessionPayload) => Promise<void> | void;
+    onRevoked?: (session: SessionPayload, reason: 'logout' | 'expired' | 'admin' | 'security' | 'password_change') => Promise<void> | void;
+}
+export type CookieOptions = Omit<ExpressCookieOptions, 'maxAge'>;
+//# sourceMappingURL=session-options.interface.d.ts.map

package/dist/lib/core/interfaces/session-options.interface.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"session-options.interface.d.ts","sourceRoot":"","sources":["../../../../src/lib/core/interfaces/session-options.interface.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,IAAI,oBAAoB,EAAE,MAAM,SAAS,CAAC;AAChE,OAAO,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAC/D,OAAO,EAAE,kBAAkB,EAAE,cAAc,EAAE,eAAe,EAAE,MAAM,2BAA2B,CAAC;AAEhG,oBAAY,kBAAkB;IAC1B,KAAK,UAAU;IACf,QAAQ,aAAa;IACrB,MAAM,WAAW;CACpB;AAED,MAAM,WAAW,cAAc;IAC3B,WAAW,EAAE,kBAAkB,CAAC;IAChC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,aAAa,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAChC,kBAAkB,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACrC,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAoB5B,oBAAoB,CAAC,EAAE,CACnB,WAAW,EAAE,kBAAkB,EAC/B,IAAI,EAAE,YAAY,KACjB,OAAO,CAAC,kBAAkB,CAAC,GAAG,kBAAkB,CAAC;IAoBtD,qBAAqB,CAAC,EAAE,CACpB,cAAc,EAAE,eAAe,EAC/B,OAAO,EAAE,cAAc,KACtB,OAAO,CAAC,eAAe,CAAC,GAAG,eAAe,CAAC;IAShD,SAAS,CAAC,EAAE,CAAC,OAAO,EAAE,cAAc,EAAE,IAAI,EAAE,GAAG,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAKzE,WAAW,CAAC,EAAE,CAAC,UAAU,EAAE,cAAc,EAAE,UAAU,EAAE,cAAc,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAK/F,SAAS,CAAC,EAAE,CAAC,OAAO,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,GAAG,SAAS,GAAG,OAAO,GAAG,UAAU,GAAG,iBAAiB,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CAC1I;AAGD,MAAM,MAAM,aAAa,GAAG,IAAI,CAAC,oBAAoB,EAAE,QAAQ,CAAC,CAAA"}

package/dist/lib/core/interfaces/session-options.interface.js ADDED Viewed

@@ -0,0 +1,10 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SessionStorageType = void 0;
+var SessionStorageType;
+(function (SessionStorageType) {
+    SessionStorageType["REDIS"] = "redis";
+    SessionStorageType["DATABASE"] = "database";
+    SessionStorageType["MEMORY"] = "memory";
+})(SessionStorageType || (exports.SessionStorageType = SessionStorageType = {}));
+//# sourceMappingURL=session-options.interface.js.map

package/dist/lib/core/interfaces/session-options.interface.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"session-options.interface.js","sourceRoot":"","sources":["../../../../src/lib/core/interfaces/session-options.interface.ts"],"names":[],"mappings":";;;AAIA,IAAY,kBAIX;AAJD,WAAY,kBAAkB;IAC1B,qCAAe,CAAA;IACf,2CAAqB,CAAA;IACrB,uCAAiB,CAAA;AACrB,CAAC,EAJW,kBAAkB,kCAAlB,kBAAkB,QAI7B"}

package/dist/lib/core/interfaces/token-payload.interface.d.ts ADDED Viewed

@@ -0,0 +1,44 @@
+import { NestAuthRole } from '../../role/entities/role.entity';
+import { NestAuthUser } from '../../user/entities/user.entity';
+export interface JWTTokenPayload {
+    id?: string;
+    sub?: string;
+    email?: string;
+    phone?: string;
+    isVerified?: boolean;
+    roles?: Partial<NestAuthRole>[];
+    tenantId?: string;
+    isMfaEnabled?: boolean;
+    isMfaVerified?: boolean;
+    sessionId?: string;
+    type?: 'access' | 'refresh';
+    exp?: number;
+    iat?: number;
+}
+export interface SessionDataPayload {
+    user: NestAuthUser;
+    isMfaVerified: boolean;
+    isMfaEnabled?: boolean;
+    roles: Partial<NestAuthRole>[];
+    permissions: string[];
+    [key: string]: any;
+}
+export interface SessionPayload {
+    id?: string;
+    userId?: string;
+    refreshToken?: string;
+    userAgent?: string;
+    ipAddress?: string;
+    deviceName?: string;
+    data?: SessionDataPayload;
+    expiresAt?: Date;
+    lastActive: Date;
+    createdAt?: Date;
+    updatedAt?: Date;
+}
+export interface TokenGenerationResponse {
+    accessToken: string;
+    refreshToken: string;
+    user?: NestAuthUser;
+}
+//# sourceMappingURL=token-payload.interface.d.ts.map

package/dist/lib/core/interfaces/token-payload.interface.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"token-payload.interface.d.ts","sourceRoot":"","sources":["../../../../src/lib/core/interfaces/token-payload.interface.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAC/D,OAAO,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAE/D,MAAM,WAAW,eAAe;IAC5B,EAAE,CAAC,EAAE,MAAM,CAAC;IACZ,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,KAAK,CAAC,EAAE,OAAO,CAAC,YAAY,CAAC,EAAE,CAAC;IAChC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,IAAI,CAAC,EAAE,QAAQ,GAAG,SAAS,CAAC;IAC5B,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;CAChB;AAMD,MAAM,WAAW,kBAAkB;IAC/B,IAAI,EAAE,YAAY,CAAC;IACnB,aAAa,EAAE,OAAO,CAAC;IACvB,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,KAAK,EAAE,OAAO,CAAC,YAAY,CAAC,EAAE,CAAC;IAC/B,WAAW,EAAE,MAAM,EAAE,CAAC;IAEtB,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;CACtB;AAED,MAAM,WAAW,cAAc;IAC3B,EAAE,CAAC,EAAE,MAAM,CAAC;IACZ,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE,kBAAkB,CAAC;IAC1B,SAAS,CAAC,EAAE,IAAI,CAAC;IACjB,UAAU,EAAE,IAAI,CAAC;IACjB,SAAS,CAAC,EAAE,IAAI,CAAC;IACjB,SAAS,CAAC,EAAE,IAAI,CAAC;CACpB;AAED,MAAM,WAAW,uBAAuB;IACpC,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,YAAY,CAAC;CACvB"}

package/dist/lib/core/interfaces/token-payload.interface.js ADDED Viewed

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=token-payload.interface.js.map

package/dist/lib/core/interfaces/token-payload.interface.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"token-payload.interface.js","sourceRoot":"","sources":["../../../../src/lib/core/interfaces/token-payload.interface.ts"],"names":[],"mappings":""}

package/dist/lib/core/providers/apple-auth.provider.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"apple-auth.provider.d.ts","sourceRoot":"","sources":["../../../../src/lib/core/providers/apple-auth.provider.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAIxD,OAAO,EAAE,UAAU,EAAE,MAAM,yBAAyB,CAAC;AAGrD,qBACa,iBAAkB,SAAQ,gBAAgB;IAO/C,QAAQ,CAAC,UAAU,EAAE,UAAU;IAC/B,OAAO,CAAC,QAAQ,CAAC,UAAU;IAP/B,YAAY,SAAuB;IACnC,OAAO,UAAQ;IACf,OAAO,CAAC,WAAW,CAA6B;IAChD,OAAO,CAAC,SAAS,CAAY;gBAGhB,UAAU,EAAE,UAAU,EACd,UAAU,EAAE,UAAU;IA0BrC,QAAQ,CAAC,WAAW,EAAE;QAAE,KAAK,EAAE,MAAM,CAAA;KAAE;;;;;IAc7C,iBAAiB,IAAI,MAAM,EAAE;CAGhC"}

package/dist/lib/core/providers/apple-auth.provider.js ADDED Viewed

@@ -0,0 +1,73 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AppleAuthProvider = void 0;
+const apple_auth_1 = __importDefault(require("apple-auth"));
+const common_1 = require("@nestjs/common");
+const typeorm_1 = require("typeorm");
+const base_auth_provider_1 = require("./base-auth.provider");
+const auth_constants_1 = require("../../auth.constants");
+const user_entity_1 = require("../../user/entities/user.entity");
+const identity_entity_1 = require("../../user/entities/identity.entity");
+const jwt_service_1 = require("../services/jwt.service");
+let AppleAuthProvider = class AppleAuthProvider extends base_auth_provider_1.BaseAuthProvider {
+    dataSource;
+    jwtService;
+    providerName = auth_constants_1.APPLE_AUTH_PROVIDER;
+    skipMfa = true;
+    appleConfig;
+    appleAuth;
+    constructor(dataSource, jwtService) {
+        const userRepository = dataSource.getRepository(user_entity_1.NestAuthUser);
+        const authIdentityRepository = dataSource.getRepository(identity_entity_1.NestAuthIdentity);
+        super(userRepository, authIdentityRepository);
+        this.dataSource = dataSource;
+        this.jwtService = jwtService;
+        this.appleConfig = this.options.apple;
+        this.enabled = Boolean(this.options.apple);
+        if (this.enabled) {
+            this.appleAuth = new apple_auth_1.default({
+                scope: 'email name',
+                redirect_uri: this.appleConfig.redirectUri,
+                team_id: this.appleConfig.teamId,
+                key_id: this.appleConfig.keyId,
+                client_id: this.appleConfig.clientId,
+            }, this.appleConfig.privateKey, this.appleConfig.privateKeyMethod || 'text');
+        }
+    }
+    async validate(credentials) {
+        try {
+            const response = await this.appleAuth.accessToken(credentials.token);
+            const user = this.jwtService.decodeToken(response.id_token);
+            return {
+                userId: user.id,
+                email: user.email || '',
+                metadata: user,
+            };
+        }
+        catch (error) {
+            throw new common_1.UnauthorizedException('Invalid Apple token');
+        }
+    }
+    getRequiredFields() {
+        return ['token'];
+    }
+};
+exports.AppleAuthProvider = AppleAuthProvider;
+exports.AppleAuthProvider = AppleAuthProvider = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [typeorm_1.DataSource,
+        jwt_service_1.JwtService])
+], AppleAuthProvider);
+//# sourceMappingURL=apple-auth.provider.js.map

package/dist/lib/core/providers/apple-auth.provider.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"apple-auth.provider.js","sourceRoot":"","sources":["../../../../src/lib/core/providers/apple-auth.provider.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,4DAAmC;AACnC,2CAAmE;AACnE,qCAAqC;AACrC,6DAAwD;AACxD,yDAA2D;AAC3D,iEAA+D;AAC/D,yEAAuE;AACvE,yDAAqD;AAI9C,IAAM,iBAAiB,GAAvB,MAAM,iBAAkB,SAAQ,qCAAgB;IAOtC;IACQ;IAPrB,YAAY,GAAG,oCAAmB,CAAC;IACnC,OAAO,GAAG,IAAI,CAAC;IACP,WAAW,CAA6B;IACxC,SAAS,CAAY;IAE7B,YACa,UAAsB,EACd,UAAsB;QAEvC,MAAM,cAAc,GAAG,UAAU,CAAC,aAAa,CAAC,0BAAY,CAAC,CAAC;QAC9D,MAAM,sBAAsB,GAAG,UAAU,CAAC,aAAa,CAAC,kCAAgB,CAAC,CAAC;QAE1E,KAAK,CAAC,cAAc,EAAE,sBAAsB,CAAC,CAAC;QANrC,eAAU,GAAV,UAAU,CAAY;QACd,eAAU,GAAV,UAAU,CAAY;QAOvC,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC;QAEtC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;QAE3C,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YACf,IAAI,CAAC,SAAS,GAAG,IAAI,oBAAS,CAC1B;gBACI,KAAK,EAAE,YAAY;gBACnB,YAAY,EAAE,IAAI,CAAC,WAAW,CAAC,WAAW;gBAC1C,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,MAAM;gBAChC,MAAM,EAAE,IAAI,CAAC,WAAW,CAAC,KAAK;gBAC9B,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,QAAQ;aACvC,EACD,IAAI,CAAC,WAAW,CAAC,UAAU,EAC3B,IAAI,CAAC,WAAW,CAAC,gBAAgB,IAAI,MAAM,CAC9C,CAAC;QACN,CAAC;IACL,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,WAA8B;QACzC,IAAI,CAAC;YACD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;YACrE,MAAM,IAAI,GAAG,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;YAC5D,OAAO;gBACH,MAAM,EAAE,IAAI,CAAC,EAAE;gBACf,KAAK,EAAE,IAAI,CAAC,KAAK,IAAI,EAAE;gBACvB,QAAQ,EAAE,IAAI;aACjB,CAAC;QACN,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,MAAM,IAAI,8BAAqB,CAAC,qBAAqB,CAAC,CAAC;QAC3D,CAAC;IACL,CAAC;IAED,iBAAiB;QACb,OAAO,CAAC,OAAO,CAAC,CAAC;IACrB,CAAC;CACJ,CAAA;AAnDY,8CAAiB;4BAAjB,iBAAiB;IAD7B,IAAA,mBAAU,GAAE;qCAQgB,oBAAU;QACF,wBAAU;GARlC,iBAAiB,CAmD7B"}

package/dist/lib/core/providers/base-auth.provider.d.ts ADDED Viewed

@@ -0,0 +1,28 @@
+import { Repository } from 'typeorm';
+import { NestAuthUser } from '../../user/entities/user.entity';
+import { NestAuthIdentity } from '../../user/entities/identity.entity';
+import { AuthModuleOptions } from '../interfaces/auth-module-options.interface';
+export interface AuthProviderUser {
+    userId: string;
+    email?: string;
+    phone?: string;
+    username?: string;
+    metadata?: Record<string, any>;
+}
+export type LinkUserWith = 'email' | 'phone';
+export declare abstract class BaseAuthProvider {
+    protected readonly userRepository: Repository<NestAuthUser>;
+    protected readonly authIdentityRepository: Repository<NestAuthIdentity>;
+    abstract providerName: string;
+    enabled: boolean;
+    options: AuthModuleOptions;
+    skipMfa: boolean;
+    constructor(userRepository: Repository<NestAuthUser>, authIdentityRepository: Repository<NestAuthIdentity>);
+    linkToUser(userId: string, providerUserId: string, metadata?: Record<string, any>): Promise<void>;
+    findIdentityByUserId(userId: string): Promise<NestAuthIdentity | null>;
+    findIdentity(providerUserId: string): Promise<NestAuthIdentity | null>;
+    abstract validate(credentials: any): Promise<AuthProviderUser | null>;
+    abstract getRequiredFields(): string[];
+    linkUserWith(): LinkUserWith;
+}
+//# sourceMappingURL=base-auth.provider.d.ts.map

package/dist/lib/core/providers/base-auth.provider.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"base-auth.provider.d.ts","sourceRoot":"","sources":["../../../../src/lib/core/providers/base-auth.provider.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAC/D,OAAO,EAAE,gBAAgB,EAAE,MAAM,qCAAqC,CAAC;AAEvE,OAAO,EAAE,iBAAiB,EAAE,MAAM,6CAA6C,CAAC;AAEhF,MAAM,WAAW,gBAAgB;IAC7B,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAClC;AAED,MAAM,MAAM,YAAY,GAAG,OAAO,GAAG,OAAO,CAAC;AAG7C,8BAAsB,gBAAgB;IAO9B,SAAS,CAAC,QAAQ,CAAC,cAAc,EAAE,UAAU,CAAC,YAAY,CAAC;IAC3D,SAAS,CAAC,QAAQ,CAAC,sBAAsB,EAAE,UAAU,CAAC,gBAAgB,CAAC;IAP3E,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAC;IAC9B,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,iBAAiB,CAAC;IAC3B,OAAO,UAAS;gBAGO,cAAc,EAAE,UAAU,CAAC,YAAY,CAAC,EACxC,sBAAsB,EAAE,UAAU,CAAC,gBAAgB,CAAC;IAQrE,UAAU,CAAC,MAAM,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;IAUjG,oBAAoB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC;IAatE,YAAY,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC;IAU5E,QAAQ,CAAC,QAAQ,CAAC,WAAW,EAAE,GAAG,GAAG,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC;IAErE,QAAQ,CAAC,iBAAiB,IAAI,MAAM,EAAE;IAGtC,YAAY,IAAI,YAAY;CAG/B"}

package/dist/lib/core/providers/base-auth.provider.js ADDED Viewed

@@ -0,0 +1,48 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.BaseAuthProvider = void 0;
+const auth_config_service_1 = require("../services/auth-config.service");
+class BaseAuthProvider {
+    userRepository;
+    authIdentityRepository;
+    enabled;
+    options;
+    skipMfa = false;
+    constructor(userRepository, authIdentityRepository) {
+        this.userRepository = userRepository;
+        this.authIdentityRepository = authIdentityRepository;
+        this.options = auth_config_service_1.AuthConfigService.getOptions();
+    }
+    async linkToUser(userId, providerUserId, metadata) {
+        const identity = this.authIdentityRepository.create({
+            userId,
+            provider: this.providerName,
+            providerId: providerUserId,
+            metadata: metadata || {},
+        });
+        await this.authIdentityRepository.save(identity);
+    }
+    async findIdentityByUserId(userId) {
+        return this.authIdentityRepository.findOne({
+            where: {
+                userId,
+                provider: this.providerName,
+            },
+            relations: ['user'],
+        });
+    }
+    async findIdentity(providerUserId) {
+        return this.authIdentityRepository.findOne({
+            where: {
+                provider: this.providerName,
+                providerId: providerUserId,
+            },
+            relations: ['user'],
+        });
+    }
+    linkUserWith() {
+        return 'email';
+    }
+}
+exports.BaseAuthProvider = BaseAuthProvider;
+//# sourceMappingURL=base-auth.provider.js.map

package/dist/lib/core/providers/base-auth.provider.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"base-auth.provider.js","sourceRoot":"","sources":["../../../../src/lib/core/providers/base-auth.provider.ts"],"names":[],"mappings":";;;AAGA,yEAAoE;AAcpE,MAAsB,gBAAgB;IAOX;IACA;IANvB,OAAO,CAAU;IACjB,OAAO,CAAoB;IAC3B,OAAO,GAAG,KAAK,CAAC;IAEhB,YACuB,cAAwC,EACxC,sBAAoD;QADpD,mBAAc,GAAd,cAAc,CAA0B;QACxC,2BAAsB,GAAtB,sBAAsB,CAA8B;QAEvE,IAAI,CAAC,OAAO,GAAG,uCAAiB,CAAC,UAAU,EAAE,CAAC;IAClD,CAAC;IAKD,KAAK,CAAC,UAAU,CAAC,MAAc,EAAE,cAAsB,EAAE,QAA8B;QACnF,MAAM,QAAQ,GAAG,IAAI,CAAC,sBAAsB,CAAC,MAAM,CAAC;YAChD,MAAM;YACN,QAAQ,EAAE,IAAI,CAAC,YAAY;YAC3B,UAAU,EAAE,cAAc;YAC1B,QAAQ,EAAE,QAAQ,IAAI,EAAE;SAC3B,CAAC,CAAC;QACH,MAAM,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACrD,CAAC;IAED,KAAK,CAAC,oBAAoB,CAAC,MAAc;QACrC,OAAO,IAAI,CAAC,sBAAsB,CAAC,OAAO,CAAC;YACvC,KAAK,EAAE;gBACH,MAAM;gBACN,QAAQ,EAAE,IAAI,CAAC,YAAY;aAC9B;YACD,SAAS,EAAE,CAAC,MAAM,CAAC;SACtB,CAAC,CAAC;IACP,CAAC;IAKD,KAAK,CAAC,YAAY,CAAC,cAAsB;QACrC,OAAO,IAAI,CAAC,sBAAsB,CAAC,OAAO,CAAC;YACvC,KAAK,EAAE;gBACH,QAAQ,EAAE,IAAI,CAAC,YAAY;gBAC3B,UAAU,EAAE,cAAc;aAC7B;YACD,SAAS,EAAE,CAAC,MAAM,CAAC;SACtB,CAAC,CAAC;IACP,CAAC;IAOD,YAAY;QACR,OAAO,OAAO,CAAC;IACnB,CAAC;CACJ;AAzDD,4CAyDC"}

package/dist/lib/core/providers/email-auth.provider.d.ts ADDED Viewed

@@ -0,0 +1,22 @@
+import { DataSource } from 'typeorm';
+import { BaseAuthProvider } from './base-auth.provider';
+import { NestAuthUser } from '../../user/entities/user.entity';
+import { NestAuthIdentity } from '../../user/entities/identity.entity';
+export declare class EmailAuthProvider extends BaseAuthProvider {
+    readonly dataSource: DataSource;
+    providerName: string;
+    constructor(dataSource: DataSource);
+    private normalizeEmail;
+    findIdentity(providerUserId: string): Promise<NestAuthIdentity | null>;
+    linkToUser(userId: string, providerUserId: string, metadata?: Record<string, any>): Promise<void>;
+    validate(credentials: {
+        email?: string;
+        password?: string;
+    }): Promise<{
+        userId: string;
+        email: string;
+        metadata: NestAuthUser;
+    }>;
+    getRequiredFields(): string[];
+}
+//# sourceMappingURL=email-auth.provider.d.ts.map

package/dist/lib/core/providers/email-auth.provider.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"email-auth.provider.d.ts","sourceRoot":"","sources":["../../../../src/lib/core/providers/email-auth.provider.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAExD,OAAO,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAC/D,OAAO,EAAE,gBAAgB,EAAE,MAAM,qCAAqC,CAAC;AAEvE,qBACa,iBAAkB,SAAQ,gBAAgB;IAI/C,QAAQ,CAAC,UAAU,EAAE,UAAU;IAHnC,YAAY,SAAuB;gBAGtB,UAAU,EAAE,UAAU;IAanC,OAAO,CAAC,cAAc;IAQhB,YAAY,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC;IAQtE,UAAU,CAAC,MAAM,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;IAKjG,QAAQ,CAAC,WAAW,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;KAAE;;;;;IAqBjE,iBAAiB,IAAI,MAAM,EAAE;CAGhC"}

package/dist/lib/core/providers/email-auth.provider.js ADDED Viewed

@@ -0,0 +1,66 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EmailAuthProvider = void 0;
+const common_1 = require("@nestjs/common");
+const typeorm_1 = require("typeorm");
+const base_auth_provider_1 = require("./base-auth.provider");
+const auth_constants_1 = require("../../auth.constants");
+const user_entity_1 = require("../../user/entities/user.entity");
+const identity_entity_1 = require("../../user/entities/identity.entity");
+let EmailAuthProvider = class EmailAuthProvider extends base_auth_provider_1.BaseAuthProvider {
+    dataSource;
+    providerName = auth_constants_1.EMAIL_AUTH_PROVIDER;
+    constructor(dataSource) {
+        const userRepository = dataSource.getRepository(user_entity_1.NestAuthUser);
+        const authIdentityRepository = dataSource.getRepository(identity_entity_1.NestAuthIdentity);
+        super(userRepository, authIdentityRepository);
+        this.dataSource = dataSource;
+        this.enabled = this.options.emailAuth?.enabled;
+    }
+    normalizeEmail(email) {
+        if (!email)
+            return null;
+        return email.toLowerCase().trim();
+    }
+    async findIdentity(providerUserId) {
+        const normalizedEmail = this.normalizeEmail(providerUserId);
+        return super.findIdentity(normalizedEmail || providerUserId);
+    }
+    async linkToUser(userId, providerUserId, metadata) {
+        const normalizedEmail = this.normalizeEmail(providerUserId);
+        return super.linkToUser(userId, normalizedEmail || providerUserId, metadata);
+    }
+    async validate(credentials) {
+        const normalizedEmail = this.normalizeEmail(credentials.email);
+        if (!normalizedEmail) {
+            throw new common_1.UnauthorizedException('Email is required');
+        }
+        const identity = await this.findIdentity(normalizedEmail);
+        if (!identity?.user || !(await identity.user.validatePassword(credentials.password))) {
+            throw new common_1.UnauthorizedException('Invalid credentials');
+        }
+        return {
+            userId: identity.user?.email,
+            email: identity.user?.email || '',
+            metadata: identity.user,
+        };
+    }
+    getRequiredFields() {
+        return ['email', 'password'];
+    }
+};
+exports.EmailAuthProvider = EmailAuthProvider;
+exports.EmailAuthProvider = EmailAuthProvider = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [typeorm_1.DataSource])
+], EmailAuthProvider);
+//# sourceMappingURL=email-auth.provider.js.map

package/dist/lib/core/providers/email-auth.provider.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"email-auth.provider.js","sourceRoot":"","sources":["../../../../src/lib/core/providers/email-auth.provider.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,2CAAmE;AACnE,qCAAqC;AACrC,6DAAwD;AACxD,yDAA2D;AAC3D,iEAA+D;AAC/D,yEAAuE;AAGhE,IAAM,iBAAiB,GAAvB,MAAM,iBAAkB,SAAQ,qCAAgB;IAItC;IAHb,YAAY,GAAG,oCAAmB,CAAC;IAEnC,YACa,UAAsB;QAE/B,MAAM,cAAc,GAAG,UAAU,CAAC,aAAa,CAAC,0BAAY,CAAC,CAAC;QAC9D,MAAM,sBAAsB,GAAG,UAAU,CAAC,aAAa,CAAC,kCAAgB,CAAC,CAAC;QAE1E,KAAK,CAAC,cAAc,EAAE,sBAAsB,CAAC,CAAC;QALrC,eAAU,GAAV,UAAU,CAAY;QAO/B,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,OAAO,CAAC;IACnD,CAAC;IAKO,cAAc,CAAC,KAAgC;QACnD,IAAI,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC;QACxB,OAAO,KAAK,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC;IACtC,CAAC;IAKD,KAAK,CAAC,YAAY,CAAC,cAAsB;QACrC,MAAM,eAAe,GAAG,IAAI,CAAC,cAAc,CAAC,cAAc,CAAC,CAAC;QAC5D,OAAO,KAAK,CAAC,YAAY,CAAC,eAAe,IAAI,cAAc,CAAC,CAAC;IACjE,CAAC;IAKD,KAAK,CAAC,UAAU,CAAC,MAAc,EAAE,cAAsB,EAAE,QAA8B;QACnF,MAAM,eAAe,GAAG,IAAI,CAAC,cAAc,CAAC,cAAc,CAAC,CAAC;QAC5D,OAAO,KAAK,CAAC,UAAU,CAAC,MAAM,EAAE,eAAe,IAAI,cAAc,EAAE,QAAQ,CAAC,CAAC;IACjF,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,WAAkD;QAE7D,MAAM,eAAe,GAAG,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QAE/D,IAAI,CAAC,eAAe,EAAE,CAAC;YACnB,MAAM,IAAI,8BAAqB,CAAC,mBAAmB,CAAC,CAAC;QACzD,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,eAAe,CAAC,CAAC;QAE1D,IAAI,CAAC,QAAQ,EAAE,IAAI,IAAI,CAAC,CAAC,MAAM,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;YACnF,MAAM,IAAI,8BAAqB,CAAC,qBAAqB,CAAC,CAAC;QAC3D,CAAC;QAED,OAAO;YACH,MAAM,EAAE,QAAQ,CAAC,IAAI,EAAE,KAAK;YAC5B,KAAK,EAAE,QAAQ,CAAC,IAAI,EAAE,KAAK,IAAI,EAAE;YACjC,QAAQ,EAAE,QAAQ,CAAC,IAAI;SAC1B,CAAC;IACN,CAAC;IAED,iBAAiB;QACb,OAAO,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;IACjC,CAAC;CACJ,CAAA;AA9DY,8CAAiB;4BAAjB,iBAAiB;IAD7B,IAAA,mBAAU,GAAE;qCAKgB,oBAAU;GAJ1B,iBAAiB,CA8D7B"}

package/dist/lib/core/providers/facebook-auth.provider.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"facebook-auth.provider.d.ts","sourceRoot":"","sources":["../../../../src/lib/core/providers/facebook-auth.provider.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAExD,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAMrC,qBACa,oBAAqB,SAAQ,gBAAgB;IAMlD,QAAQ,CAAC,UAAU,EAAE,UAAU;IALnC,YAAY,SAA0B;IACtC,OAAO,UAAQ;IACf,OAAO,CAAC,cAAc,CAAgC;gBAGzC,UAAU,EAAE,UAAU;IAkB7B,QAAQ,CAAC,WAAW,EAAE;QAAE,KAAK,EAAE,MAAM,CAAA;KAAE;;;;;;;;IAoB7C,iBAAiB,IAAI,MAAM,EAAE;CAGhC"}