@acmekit/auth 2.13.1

package/README.md

@@ -0,0 +1,3 @@
+# Auth Module
+
+The Auth Module is AcmeKit’s authentication engine engine. It provides functions to authenticate users through identity providers and store metadata about users that can be used for authorization purposes.

package/dist/index.d.ts

@@ -0,0 +1,7 @@
+import "./types";
+import { AuthModuleService } from "./services";
+declare const _default: import("@acmekit/types").ModuleExports<typeof AuthModuleService> & {
+    linkable: Record<string, any>;
+};
+export default _default;
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,SAAS,CAAA;AAChB,OAAO,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAA;;;;AAI7C,wBAGE"}

package/dist/index.js

@@ -0,0 +1,14 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+require("./types");
+const _services_1 = require("./services");
+const providers_1 = __importDefault(require("./loaders/providers"));
+const utils_1 = require("@acmekit/framework/utils");
+exports.default = (0, utils_1.Module)(utils_1.Modules.AUTH, {
+    service: _services_1.AuthModuleService,
+    loaders: [providers_1.default],
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;AAAA,mBAAgB;AAChB,yCAA6C;AAC7C,oEAA+C;AAC/C,oDAA0D;AAE1D,kBAAe,IAAA,cAAM,EAAC,eAAO,CAAC,IAAI,EAAE;IAClC,OAAO,EAAE,6BAAiB;IAC1B,OAAO,EAAE,CAAC,mBAAa,CAAC;CACzB,CAAC,CAAA"}

package/dist/joiner-config.d.ts

@@ -0,0 +1,2 @@
+export declare const joinerConfig: Omit<import("@acmekit/types").ModuleJoinerConfig, "serviceName" | "primaryKeys" | "alias" | "linkableKeys"> & Required<Pick<import("@acmekit/types").ModuleJoinerConfig, "serviceName" | "primaryKeys" | "alias" | "linkableKeys">>;
+//# sourceMappingURL=joiner-config.d.ts.map

package/dist/joiner-config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"joiner-config.d.ts","sourceRoot":"","sources":["../src/joiner-config.ts"],"names":[],"mappings":"AAGA,eAAO,MAAM,YAAY,qOAEvB,CAAA"}

package/dist/joiner-config.js

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.joinerConfig = void 0;
+const utils_1 = require("@acmekit/framework/utils");
+const _models_1 = require("./models");
+exports.joinerConfig = (0, utils_1.defineJoinerConfig)(utils_1.Modules.AUTH, {
+    models: [_models_1.AuthIdentity, _models_1.ProviderIdentity],
+});
+//# sourceMappingURL=joiner-config.js.map

package/dist/joiner-config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"joiner-config.js","sourceRoot":"","sources":["../src/joiner-config.ts"],"names":[],"mappings":";;;AAAA,oDAAsE;AACtE,qCAAwD;AAE3C,QAAA,YAAY,GAAG,IAAA,0BAAkB,EAAC,eAAO,CAAC,IAAI,EAAE;IAC3D,MAAM,EAAE,CAAC,sBAAY,EAAE,0BAAgB,CAAC;CACzC,CAAC,CAAA"}

package/dist/loaders/providers.d.ts

@@ -0,0 +1,5 @@
+import { LoaderOptions, ModulesSdkTypes } from "@acmekit/framework/types";
+import { AuthModuleOptions } from "../types";
+declare const _default: ({ container, options, }: LoaderOptions<(ModulesSdkTypes.ModuleServiceInitializeOptions | ModulesSdkTypes.ModuleServiceInitializeCustomDataLayerOptions) & AuthModuleOptions>) => Promise<void>;
+export default _default;
+//# sourceMappingURL=providers.d.ts.map

package/dist/loaders/providers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"providers.d.ts","sourceRoot":"","sources":["../../src/loaders/providers.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAA;AACzE,OAAO,EAEL,iBAAiB,EAElB,MAAM,QAAQ,CAAA;yBA6CO,yBAGnB,aAAa,CACd,CACI,eAAe,CAAC,8BAA8B,GAC9C,eAAe,CAAC,6CAA6C,CAChE,GACC,iBAAiB,CACpB,KAAG,OAAO,CAAC,IAAI,CAAC;AATjB,wBAsBC"}

package/dist/loaders/providers.js

@@ -0,0 +1,41 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const awilix_1 = require("@acmekit/framework/awilix");
+const modules_sdk_1 = require("@acmekit/framework/modules-sdk");
+const _types_1 = require("../types");
+const acmekit_cloud_auth_1 = require("../providers/acmekit-cloud-auth");
+const validateCloudOptions = (options) => {
+    const { oauth_authorize_endpoint, oauth_token_endpoint, environment_handle, sandbox_handle, api_key, callback_url, } = options ?? {};
+    if (!environment_handle && !sandbox_handle) {
+        return false;
+    }
+    if (!oauth_authorize_endpoint ||
+        !oauth_token_endpoint ||
+        !api_key ||
+        !callback_url) {
+        return false;
+    }
+    return true;
+};
+const registrationFn = async (klass, container, pluginOptions) => {
+    container.register({
+        [_types_1.AuthProviderRegistrationPrefix + pluginOptions.id]: (0, awilix_1.asFunction)((cradle) => new klass(cradle, pluginOptions.options ?? {}), {
+            lifetime: klass.LIFE_TIME || awilix_1.Lifetime.SINGLETON,
+        }),
+    });
+    container.registerAdd(_types_1.AuthIdentifiersRegistrationName, (0, awilix_1.asValue)(pluginOptions.id));
+};
+exports.default = async ({ container, options, }) => {
+    if (validateCloudOptions(options?.cloud) && !options?.cloud?.disabled) {
+        await registrationFn(acmekit_cloud_auth_1.AcmeKitCloudAuthService, container, {
+            options: options?.cloud,
+            id: "cloud",
+        });
+    }
+    await (0, modules_sdk_1.moduleProviderLoader)({
+        container,
+        providers: options?.providers || [],
+        registerServiceFn: registrationFn,
+    });
+};
+//# sourceMappingURL=providers.js.map

package/dist/loaders/providers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"providers.js","sourceRoot":"","sources":["../../src/loaders/providers.ts"],"names":[],"mappings":";;AAAA,sDAAyE;AACzE,gEAAqE;AAErE,mCAIe;AACf,wEAAyE;AAEzE,MAAM,oBAAoB,GAAG,CAAC,OAAmC,EAAE,EAAE;IACnE,MAAM,EACJ,wBAAwB,EACxB,oBAAoB,EACpB,kBAAkB,EAClB,cAAc,EACd,OAAO,EACP,YAAY,GACb,GAAG,OAAO,IAAI,EAAE,CAAA;IAEjB,IAAI,CAAC,kBAAkB,IAAI,CAAC,cAAc,EAAE,CAAC;QAC3C,OAAO,KAAK,CAAA;IACd,CAAC;IAED,IACE,CAAC,wBAAwB;QACzB,CAAC,oBAAoB;QACrB,CAAC,OAAO;QACR,CAAC,YAAY,EACb,CAAC;QACD,OAAO,KAAK,CAAA;IACd,CAAC;IAED,OAAO,IAAI,CAAA;AACb,CAAC,CAAA;AAED,MAAM,cAAc,GAAG,KAAK,EAAE,KAAK,EAAE,SAAS,EAAE,aAAa,EAAE,EAAE;IAC/D,SAAS,CAAC,QAAQ,CAAC;QACjB,CAAC,uCAA8B,GAAG,aAAa,CAAC,EAAE,CAAC,EAAE,IAAA,mBAAU,EAC7D,CAAC,MAAM,EAAE,EAAE,CAAC,IAAI,KAAK,CAAC,MAAM,EAAE,aAAa,CAAC,OAAO,IAAI,EAAE,CAAC,EAC1D;YACE,QAAQ,EAAE,KAAK,CAAC,SAAS,IAAI,iBAAQ,CAAC,SAAS;SAChD,CACF;KACF,CAAC,CAAA;IAEF,SAAS,CAAC,WAAW,CACnB,wCAA+B,EAC/B,IAAA,gBAAO,EAAC,aAAa,CAAC,EAAE,CAAC,CAC1B,CAAA;AACH,CAAC,CAAA;AAED,kBAAe,KAAK,EAAE,EACpB,SAAS,EACT,OAAO,GAOR,EAAiB,EAAE;IAClB,IAAI,oBAAoB,CAAC,OAAO,EAAE,KAAK,CAAC,IAAI,CAAC,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC;QACtE,MAAM,cAAc,CAAC,4CAAuB,EAAE,SAAS,EAAE;YACvD,OAAO,EAAE,OAAO,EAAE,KAAK;YACvB,EAAE,EAAE,OAAO;SACZ,CAAC,CAAA;IACJ,CAAC;IAED,MAAM,IAAA,kCAAoB,EAAC;QACzB,SAAS;QACT,SAAS,EAAE,OAAO,EAAE,SAAS,IAAI,EAAE;QACnC,iBAAiB,EAAE,cAAc;KAClC,CAAC,CAAA;AACJ,CAAC,CAAA"}

package/dist/migrations/Migration20240205025928.d.ts

@@ -0,0 +1,6 @@
+import { Migration } from "@acmekit/framework/mikro-orm/migrations";
+export declare class Migration20240205025928 extends Migration {
+    up(): Promise<void>;
+    down(): Promise<void>;
+}
+//# sourceMappingURL=Migration20240205025928.d.ts.map

package/dist/migrations/Migration20240205025928.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"Migration20240205025928.d.ts","sourceRoot":"","sources":["../../src/migrations/Migration20240205025928.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AAEnE,qBAAa,uBAAwB,SAAQ,SAAS;IAC9C,EAAE,IAAI,OAAO,CAAC,IAAI,CAAC;IAiBnB,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;CAG5B"}

package/dist/migrations/Migration20240205025928.js

@@ -0,0 +1,18 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Migration20240205025928 = void 0;
+const migrations_1 = require("@acmekit/framework/mikro-orm/migrations");
+class Migration20240205025928 extends migrations_1.Migration {
+    async up() {
+        this.addSql('create table if not exists "auth_identity" ("id" text not null, "entity_id" text not null, "provider" text not null, "user_metadata" jsonb null, "app_metadata" jsonb null, "provider_metadata" jsonb null, constraint "auth_identity_pkey" primary key ("id"));');
+        this.addSql('alter table "auth_identity" drop constraint if exists "IDX_auth_identity_provider_entity_id"');
+        this.addSql('alter table "auth_identity" add constraint "IDX_auth_identity_provider_entity_id" unique ("provider", "entity_id");');
+        this.addSql('alter table "auth_identity" drop column if exists "scope";');
+        this.addSql(`alter table "auth_identity" alter column "app_metadata" drop not null;`);
+    }
+    async down() {
+        this.addSql('drop table if exists "auth_identity" cascade;');
+    }
+}
+exports.Migration20240205025928 = Migration20240205025928;
+//# sourceMappingURL=Migration20240205025928.js.map

package/dist/migrations/Migration20240205025928.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Migration20240205025928.js","sourceRoot":"","sources":["../../src/migrations/Migration20240205025928.ts"],"names":[],"mappings":";;;AAAA,wEAAmE;AAEnE,MAAa,uBAAwB,SAAQ,sBAAS;IACpD,KAAK,CAAC,EAAE;QACN,IAAI,CAAC,MAAM,CACT,kQAAkQ,CACnQ,CAAA;QACD,IAAI,CAAC,MAAM,CACT,8FAA8F,CAC/F,CAAA;QACD,IAAI,CAAC,MAAM,CACT,qHAAqH,CACtH,CAAA;QAED,IAAI,CAAC,MAAM,CAAC,4DAA4D,CAAC,CAAA;QACzE,IAAI,CAAC,MAAM,CACT,wEAAwE,CACzE,CAAA;IACH,CAAC;IAED,KAAK,CAAC,IAAI;QACR,IAAI,CAAC,MAAM,CAAC,+CAA+C,CAAC,CAAA;IAC9D,CAAC;CACF;AArBD,0DAqBC"}

package/dist/migrations/Migration20240529080336.d.ts

@@ -0,0 +1,6 @@
+import { Migration } from "@acmekit/framework/mikro-orm/migrations";
+export declare class Migration20240529080336 extends Migration {
+    up(): Promise<void>;
+    down(): Promise<void>;
+}
+//# sourceMappingURL=Migration20240529080336.d.ts.map

package/dist/migrations/Migration20240529080336.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"Migration20240529080336.d.ts","sourceRoot":"","sources":["../../src/migrations/Migration20240529080336.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AAEnE,qBAAa,uBAAwB,SAAQ,SAAS;IAC9C,EAAE,IAAI,OAAO,CAAC,IAAI,CAAC;IAoCnB,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;CAgB5B"}

package/dist/migrations/Migration20240529080336.js

@@ -0,0 +1,27 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Migration20240529080336 = void 0;
+const migrations_1 = require("@acmekit/framework/mikro-orm/migrations");
+class Migration20240529080336 extends migrations_1.Migration {
+    async up() {
+        this.addSql('create table if not exists "provider_identity" ("id" text not null, "entity_id" text not null, "provider" text not null, "auth_identity_id" text not null, "user_metadata" jsonb null, "provider_metadata" jsonb null, "created_at" timestamptz not null default now(), "updated_at" timestamptz not null default now(), constraint "provider_identity_pkey" primary key ("id"));');
+        this.addSql('CREATE INDEX IF NOT EXISTS "IDX_provider_identity_auth_identity_id" ON "provider_identity" (auth_identity_id);');
+        this.addSql('CREATE UNIQUE INDEX IF NOT EXISTS "IDX_provider_identity_provider_entity_id" ON "provider_identity" (entity_id, provider);');
+        this.addSql('alter table if exists "provider_identity" add constraint "provider_identity_auth_identity_id_foreign" foreign key ("auth_identity_id") references "auth_identity" ("id") on update cascade on delete cascade;');
+        this.addSql('alter table if exists "auth_identity" add column if not exists "created_at" timestamptz not null default now(), add column "updated_at" timestamptz not null default now();');
+        this.addSql('alter table if exists "auth_identity" drop constraint if exists "IDX_auth_identity_provider_entity_id";');
+        this.addSql('alter table if exists "auth_identity" drop column if exists "entity_id";');
+        this.addSql('alter table if exists "auth_identity" drop column if exists "provider";');
+        this.addSql('alter table if exists "auth_identity" drop column if exists "user_metadata";');
+        this.addSql('alter table if exists "auth_identity" drop column if exists "provider_metadata";');
+    }
+    async down() {
+        this.addSql('drop table if exists "provider_identity" cascade;');
+        this.addSql('alter table if exists "auth_identity" add column if not exists "entity_id" text not null, add column "provider" text not null, add column "user_metadata" jsonb null, add column "provider_metadata" jsonb null;');
+        this.addSql('alter table if exists "auth_identity" alter column "app_metadata" type jsonb using ("app_metadata"::jsonb);');
+        this.addSql('alter table if exists "auth_identity" alter column "app_metadata" set not null;');
+        this.addSql('alter table if exists "auth_identity" add constraint "IDX_auth_identity_provider_entity_id" unique ("provider", "entity_id");');
+    }
+}
+exports.Migration20240529080336 = Migration20240529080336;
+//# sourceMappingURL=Migration20240529080336.js.map

package/dist/migrations/Migration20240529080336.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Migration20240529080336.js","sourceRoot":"","sources":["../../src/migrations/Migration20240529080336.ts"],"names":[],"mappings":";;;AAAA,wEAAmE;AAEnE,MAAa,uBAAwB,SAAQ,sBAAS;IACpD,KAAK,CAAC,EAAE;QACN,IAAI,CAAC,MAAM,CACT,mXAAmX,CACpX,CAAA;QACD,IAAI,CAAC,MAAM,CACT,gHAAgH,CACjH,CAAA;QACD,IAAI,CAAC,MAAM,CACT,4HAA4H,CAC7H,CAAA;QAED,IAAI,CAAC,MAAM,CACT,+MAA+M,CAChN,CAAA;QAED,IAAI,CAAC,MAAM,CACT,6KAA6K,CAC9K,CAAA;QAED,IAAI,CAAC,MAAM,CACT,yGAAyG,CAC1G,CAAA;QACD,IAAI,CAAC,MAAM,CACT,0EAA0E,CAC3E,CAAA;QACD,IAAI,CAAC,MAAM,CACT,yEAAyE,CAC1E,CAAA;QACD,IAAI,CAAC,MAAM,CACT,8EAA8E,CAC/E,CAAA;QACD,IAAI,CAAC,MAAM,CACT,kFAAkF,CACnF,CAAA;IACH,CAAC;IAED,KAAK,CAAC,IAAI;QACR,IAAI,CAAC,MAAM,CAAC,mDAAmD,CAAC,CAAA;QAEhE,IAAI,CAAC,MAAM,CACT,kNAAkN,CACnN,CAAA;QACD,IAAI,CAAC,MAAM,CACT,6GAA6G,CAC9G,CAAA;QACD,IAAI,CAAC,MAAM,CACT,iFAAiF,CAClF,CAAA;QACD,IAAI,CAAC,MAAM,CACT,+HAA+H,CAChI,CAAA;IACH,CAAC;CACF;AArDD,0DAqDC"}

package/dist/migrations/Migration20241202100304.d.ts

@@ -0,0 +1,6 @@
+import { Migration } from "@acmekit/framework/mikro-orm/migrations";
+export declare class Migration20241202100304 extends Migration {
+    up(): Promise<void>;
+    down(): Promise<void>;
+}
+//# sourceMappingURL=Migration20241202100304.d.ts.map

package/dist/migrations/Migration20241202100304.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"Migration20241202100304.d.ts","sourceRoot":"","sources":["../../src/migrations/Migration20241202100304.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AAEnE,qBAAa,uBAAwB,SAAQ,SAAS;IAC9C,EAAE,IAAI,OAAO,CAAC,IAAI,CAAC;IAgBnB,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;CAW5B"}

package/dist/migrations/Migration20241202100304.js

@@ -0,0 +1,20 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Migration20241202100304 = void 0;
+const migrations_1 = require("@acmekit/framework/mikro-orm/migrations");
+class Migration20241202100304 extends migrations_1.Migration {
+    async up() {
+        this.addSql('alter table if exists "auth_identity" add column if not exists "deleted_at" timestamptz null;');
+        this.addSql('CREATE INDEX IF NOT EXISTS "IDX_auth_identity_deleted_at" ON "auth_identity" (deleted_at) WHERE deleted_at IS NULL;');
+        this.addSql('alter table if exists "provider_identity" add column if not exists "deleted_at" timestamptz null;');
+        this.addSql('CREATE INDEX IF NOT EXISTS "IDX_provider_identity_deleted_at" ON "provider_identity" (deleted_at) WHERE deleted_at IS NULL;');
+    }
+    async down() {
+        this.addSql('drop index if exists "IDX_auth_identity_deleted_at";');
+        this.addSql('alter table if exists "auth_identity" drop column if exists "deleted_at";');
+        this.addSql('drop index if exists "IDX_provider_identity_deleted_at";');
+        this.addSql('alter table if exists "provider_identity" drop column if exists "deleted_at";');
+    }
+}
+exports.Migration20241202100304 = Migration20241202100304;
+//# sourceMappingURL=Migration20241202100304.js.map

package/dist/migrations/Migration20241202100304.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Migration20241202100304.js","sourceRoot":"","sources":["../../src/migrations/Migration20241202100304.ts"],"names":[],"mappings":";;;AAAA,wEAAmE;AAEnE,MAAa,uBAAwB,SAAQ,sBAAS;IACpD,KAAK,CAAC,EAAE;QACN,IAAI,CAAC,MAAM,CACT,+FAA+F,CAChG,CAAA;QACD,IAAI,CAAC,MAAM,CACT,qHAAqH,CACtH,CAAA;QAED,IAAI,CAAC,MAAM,CACT,mGAAmG,CACpG,CAAA;QACD,IAAI,CAAC,MAAM,CACT,6HAA6H,CAC9H,CAAA;IACH,CAAC;IAED,KAAK,CAAC,IAAI;QACR,IAAI,CAAC,MAAM,CAAC,sDAAsD,CAAC,CAAA;QACnE,IAAI,CAAC,MAAM,CACT,2EAA2E,CAC5E,CAAA;QAED,IAAI,CAAC,MAAM,CAAC,0DAA0D,CAAC,CAAA;QACvE,IAAI,CAAC,MAAM,CACT,+EAA+E,CAChF,CAAA;IACH,CAAC;CACF;AA5BD,0DA4BC"}

package/dist/models/auth-identity.d.ts

@@ -0,0 +1,13 @@
+export declare const AuthIdentity: import("@acmekit/framework/utils").DmlEntity<import("@acmekit/framework/utils").DMLEntitySchemaBuilder<{
+    id: import("@acmekit/framework/utils").PrimaryKeyModifier<string, import("@acmekit/framework/utils").IdProperty>;
+    provider_identities: import("@acmekit/framework/utils").HasMany<() => import("@acmekit/framework/utils").DmlEntity<import("@acmekit/framework/utils").DMLEntitySchemaBuilder<{
+        id: import("@acmekit/framework/utils").PrimaryKeyModifier<string, import("@acmekit/framework/utils").IdProperty>;
+        entity_id: import("@acmekit/framework/utils").TextProperty;
+        provider: import("@acmekit/framework/utils").TextProperty;
+        auth_identity: import("@acmekit/framework/utils").BelongsTo<() => import("@acmekit/framework/utils").DmlEntity<import("@acmekit/framework/utils").DMLEntitySchemaBuilder</*elided*/ any>, "auth_identity">, undefined>;
+        user_metadata: import("@acmekit/framework/utils").NullableModifier<Record<string, unknown>, import("@acmekit/framework/utils").JSONProperty>;
+        provider_metadata: import("@acmekit/framework/utils").NullableModifier<Record<string, unknown>, import("@acmekit/framework/utils").JSONProperty>;
+    }>, "provider_identity">>;
+    app_metadata: import("@acmekit/framework/utils").NullableModifier<Record<string, unknown>, import("@acmekit/framework/utils").JSONProperty>;
+}>, "auth_identity">;
+//# sourceMappingURL=auth-identity.d.ts.map

package/dist/models/auth-identity.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-identity.d.ts","sourceRoot":"","sources":["../../src/models/auth-identity.ts"],"names":[],"mappings":"AAGA,eAAO,MAAM,YAAY;;;;;;;;;;;oBAUrB,CAAA"}

package/dist/models/auth-identity.js

@@ -0,0 +1,17 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthIdentity = void 0;
+const utils_1 = require("@acmekit/framework/utils");
+const provider_identity_1 = require("./provider-identity");
+exports.AuthIdentity = utils_1.model
+    .define("auth_identity", {
+    id: utils_1.model.id({ prefix: "authid" }).primaryKey(),
+    provider_identities: utils_1.model.hasMany(() => provider_identity_1.ProviderIdentity, {
+        mappedBy: "auth_identity",
+    }),
+    app_metadata: utils_1.model.json().nullable(),
+})
+    .cascades({
+    delete: ["provider_identities"],
+});
+//# sourceMappingURL=auth-identity.js.map

package/dist/models/auth-identity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-identity.js","sourceRoot":"","sources":["../../src/models/auth-identity.ts"],"names":[],"mappings":";;;AAAA,oDAAgD;AAChD,2DAAsD;AAEzC,QAAA,YAAY,GAAG,aAAK;KAC9B,MAAM,CAAC,eAAe,EAAE;IACvB,EAAE,EAAE,aAAK,CAAC,EAAE,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC,UAAU,EAAE;IAC/C,mBAAmB,EAAE,aAAK,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,oCAAgB,EAAE;QACzD,QAAQ,EAAE,eAAe;KAC1B,CAAC;IACF,YAAY,EAAE,aAAK,CAAC,IAAI,EAAE,CAAC,QAAQ,EAAE;CACtC,CAAC;KACD,QAAQ,CAAC;IACR,MAAM,EAAE,CAAC,qBAAqB,CAAC;CAChC,CAAC,CAAA"}

package/dist/models/index.d.ts

@@ -0,0 +1,3 @@
+export { AuthIdentity } from "./auth-identity";
+export { ProviderIdentity } from "./provider-identity";
+//# sourceMappingURL=index.d.ts.map

package/dist/models/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/models/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAA;AAC9C,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAA"}

package/dist/models/index.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ProviderIdentity = exports.AuthIdentity = void 0;
+var auth_identity_1 = require("./auth-identity");
+Object.defineProperty(exports, "AuthIdentity", { enumerable: true, get: function () { return auth_identity_1.AuthIdentity; } });
+var provider_identity_1 = require("./provider-identity");
+Object.defineProperty(exports, "ProviderIdentity", { enumerable: true, get: function () { return provider_identity_1.ProviderIdentity; } });
+//# sourceMappingURL=index.js.map

package/dist/models/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/models/index.ts"],"names":[],"mappings":";;;AAAA,iDAA8C;AAArC,6GAAA,YAAY,OAAA;AACrB,yDAAsD;AAA7C,qHAAA,gBAAgB,OAAA"}

package/dist/models/provider-identity.d.ts

@@ -0,0 +1,13 @@
+export declare const ProviderIdentity: import("@acmekit/framework/utils").DmlEntity<import("@acmekit/framework/utils").DMLEntitySchemaBuilder<{
+    id: import("@acmekit/framework/utils").PrimaryKeyModifier<string, import("@acmekit/framework/utils").IdProperty>;
+    entity_id: import("@acmekit/framework/utils").TextProperty;
+    provider: import("@acmekit/framework/utils").TextProperty;
+    auth_identity: import("@acmekit/framework/utils").BelongsTo<() => import("@acmekit/framework/utils").DmlEntity<import("@acmekit/framework/utils").DMLEntitySchemaBuilder<{
+        id: import("@acmekit/framework/utils").PrimaryKeyModifier<string, import("@acmekit/framework/utils").IdProperty>;
+        provider_identities: import("@acmekit/framework/utils").HasMany<() => import("@acmekit/framework/utils").DmlEntity<import("@acmekit/framework/utils").DMLEntitySchemaBuilder</*elided*/ any>, "provider_identity">>;
+        app_metadata: import("@acmekit/framework/utils").NullableModifier<Record<string, unknown>, import("@acmekit/framework/utils").JSONProperty>;
+    }>, "auth_identity">, undefined>;
+    user_metadata: import("@acmekit/framework/utils").NullableModifier<Record<string, unknown>, import("@acmekit/framework/utils").JSONProperty>;
+    provider_metadata: import("@acmekit/framework/utils").NullableModifier<Record<string, unknown>, import("@acmekit/framework/utils").JSONProperty>;
+}>, "provider_identity">;
+//# sourceMappingURL=provider-identity.d.ts.map

package/dist/models/provider-identity.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-identity.d.ts","sourceRoot":"","sources":["../../src/models/provider-identity.ts"],"names":[],"mappings":"AAGA,eAAO,MAAM,gBAAgB;;;;;;;;;;;wBAiBzB,CAAA"}

package/dist/models/provider-identity.js

@@ -0,0 +1,24 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ProviderIdentity = void 0;
+const utils_1 = require("@acmekit/framework/utils");
+const auth_identity_1 = require("./auth-identity");
+exports.ProviderIdentity = utils_1.model
+    .define("provider_identity", {
+    id: utils_1.model.id().primaryKey(),
+    entity_id: utils_1.model.text(),
+    provider: utils_1.model.text(),
+    auth_identity: utils_1.model.belongsTo(() => auth_identity_1.AuthIdentity, {
+        mappedBy: "provider_identities",
+    }),
+    user_metadata: utils_1.model.json().nullable(),
+    provider_metadata: utils_1.model.json().nullable(),
+})
+    .indexes([
+    {
+        name: "IDX_provider_identity_provider_entity_id",
+        on: ["entity_id", "provider"],
+        unique: true,
+    },
+]);
+//# sourceMappingURL=provider-identity.js.map

package/dist/models/provider-identity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-identity.js","sourceRoot":"","sources":["../../src/models/provider-identity.ts"],"names":[],"mappings":";;;AAAA,oDAAgD;AAChD,mDAA8C;AAEjC,QAAA,gBAAgB,GAAG,aAAK;KAClC,MAAM,CAAC,mBAAmB,EAAE;IAC3B,EAAE,EAAE,aAAK,CAAC,EAAE,EAAE,CAAC,UAAU,EAAE;IAC3B,SAAS,EAAE,aAAK,CAAC,IAAI,EAAE;IACvB,QAAQ,EAAE,aAAK,CAAC,IAAI,EAAE;IACtB,aAAa,EAAE,aAAK,CAAC,SAAS,CAAC,GAAG,EAAE,CAAC,4BAAY,EAAE;QACjD,QAAQ,EAAE,qBAAqB;KAChC,CAAC;IACF,aAAa,EAAE,aAAK,CAAC,IAAI,EAAE,CAAC,QAAQ,EAAE;IACtC,iBAAiB,EAAE,aAAK,CAAC,IAAI,EAAE,CAAC,QAAQ,EAAE;CAC3C,CAAC;KACD,OAAO,CAAC;IACP;QACE,IAAI,EAAE,0CAA0C;QAChD,EAAE,EAAE,CAAC,WAAW,EAAE,UAAU,CAAC;QAC7B,MAAM,EAAE,IAAI;KACb;CACF,CAAC,CAAA"}

package/dist/providers/acmekit-cloud-auth.d.ts

@@ -0,0 +1,29 @@
+import { AuthenticationInput, AuthenticationResponse, AuthIdentityProviderService, Logger } from "@acmekit/framework/types";
+import { AbstractAuthModuleProvider } from "@acmekit/framework/utils";
+import { AcmeKitCloudAuthProviderOptions } from "../types";
+type InjectedDependencies = {
+    logger: Logger;
+};
+export declare class AcmeKitCloudAuthService extends AbstractAuthModuleProvider {
+    static identifier: string;
+    static DISPLAY_NAME: string;
+    protected config_: AcmeKitCloudAuthProviderOptions;
+    protected logger_: Logger;
+    constructor({ logger }: InjectedDependencies, options: AcmeKitCloudAuthProviderOptions);
+    register(_: any): Promise<AuthenticationResponse>;
+    authenticate(req: AuthenticationInput, authIdentityService: AuthIdentityProviderService): Promise<AuthenticationResponse>;
+    validateCallback(req: AuthenticationInput, authIdentityService: AuthIdentityProviderService): Promise<AuthenticationResponse>;
+    verify_(idToken: string | undefined, authIdentityService: AuthIdentityProviderService): Promise<{
+        success: boolean;
+        error: any;
+        authIdentity?: undefined;
+    } | {
+        success: boolean;
+        authIdentity: any;
+        error?: undefined;
+    }>;
+    private getRedirect;
+    private getClientId;
+}
+export {};
+//# sourceMappingURL=acmekit-cloud-auth.d.ts.map

package/dist/providers/acmekit-cloud-auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"acmekit-cloud-auth.d.ts","sourceRoot":"","sources":["../../src/providers/acmekit-cloud-auth.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,mBAAmB,EACnB,sBAAsB,EACtB,2BAA2B,EAC3B,MAAM,EACP,MAAM,0BAA0B,CAAA;AACjC,OAAO,EACL,0BAA0B,EAE3B,MAAM,0BAA0B,CAAA;AACjC,OAAO,EAAE,+BAA+B,EAAE,MAAM,QAAQ,CAAA;AAIxD,KAAK,oBAAoB,GAAG;IAC1B,MAAM,EAAE,MAAM,CAAA;CACf,CAAA;AAED,qBAAa,uBAAwB,SAAQ,0BAA0B;IACrE,MAAM,CAAC,UAAU,SAAU;IAC3B,MAAM,CAAC,YAAY,SAAiC;IAEpD,SAAS,CAAC,OAAO,EAAE,+BAA+B,CAAA;IAClD,SAAS,CAAC,OAAO,EAAE,MAAM,CAAA;gBAGvB,EAAE,MAAM,EAAE,EAAE,oBAAoB,EAChC,OAAO,EAAE,+BAA+B;IAQpC,QAAQ,CAAC,CAAC,KAAA,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAO5C,YAAY,CAChB,GAAG,EAAE,mBAAmB,EACxB,mBAAmB,EAAE,2BAA2B,GAC/C,OAAO,CAAC,sBAAsB,CAAC;IAoB5B,gBAAgB,CACpB,GAAG,EAAE,mBAAmB,EACxB,mBAAmB,EAAE,2BAA2B,GAC/C,OAAO,CAAC,sBAAsB,CAAC;IAmE5B,OAAO,CACX,OAAO,EAAE,MAAM,GAAG,SAAS,EAC3B,mBAAmB,EAAE,2BAA2B;;;;;;;;;IAsDlD,OAAO,CAAC,WAAW;IAWnB,OAAO,CAAC,WAAW;CAGpB"}

package/dist/providers/acmekit-cloud-auth.js

@@ -0,0 +1,146 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AcmeKitCloudAuthService = void 0;
+const utils_1 = require("@acmekit/framework/utils");
+const crypto_1 = __importDefault(require("crypto"));
+const jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
+class AcmeKitCloudAuthService extends utils_1.AbstractAuthModuleProvider {
+    constructor({ logger }, options) {
+        // @ts-ignore
+        super(...arguments);
+        this.config_ = options;
+        this.logger_ = logger;
+    }
+    async register(_) {
+        throw new utils_1.AcmeKitError(utils_1.AcmeKitError.Types.NOT_ALLOWED, "AcmeKit Cloud does not support registration. Use method `authenticate` instead.");
+    }
+    async authenticate(req, authIdentityService) {
+        const query = req.query ?? {};
+        const body = req.body ?? {};
+        if (query.error) {
+            return {
+                success: false,
+                error: `${query.error}`,
+            };
+        }
+        const stateKey = crypto_1.default.randomBytes(32).toString("hex");
+        const state = {
+            callback_url: body?.callback_url ?? this.config_.callback_url,
+        };
+        await authIdentityService.setState(stateKey, state);
+        return this.getRedirect(this.getClientId(), state.callback_url, stateKey);
+    }
+    async validateCallback(req, authIdentityService) {
+        const query = req.query ?? {};
+        const body = req.body ?? {};
+        if (query.error) {
+            return {
+                success: false,
+                error: `${query.error}`,
+            };
+        }
+        const code = query?.code ?? body?.code;
+        if (!code) {
+            return { success: false, error: "No code provided" };
+        }
+        const state = await authIdentityService.getState(query?.state);
+        if (!state) {
+            return { success: false, error: "No state provided, or session expired" };
+        }
+        const clientId = this.getClientId();
+        try {
+            const response = await fetch(this.config_.oauth_token_endpoint, {
+                method: "POST",
+                headers: {
+                    "Content-Type": "application/x-www-form-urlencoded",
+                },
+                body: new URLSearchParams({
+                    client_id: clientId,
+                    client_secret: this.config_.api_key,
+                    code,
+                    redirect_uri: state.callback_url,
+                    grant_type: "authorization_code",
+                }),
+            }).then((r) => {
+                if (!r.ok) {
+                    this.logger_.warn(`Could not exchange token, ${r.status}, ${r.statusText}: response: ${JSON.stringify(r)}`);
+                    throw new utils_1.AcmeKitError(utils_1.AcmeKitError.Types.INVALID_DATA, `Could not exchange token, ${r.status}, ${r.statusText}`);
+                }
+                return r.json();
+            });
+            const { authIdentity, success, error } = await this.verify_(response.id_token, authIdentityService);
+            return {
+                success,
+                authIdentity,
+                error,
+            };
+        }
+        catch (error) {
+            return { success: false, error: error.message };
+        }
+    }
+    async verify_(idToken, authIdentityService) {
+        if (!idToken) {
+            return { success: false, error: "No id_token" };
+        }
+        const jwtData = jsonwebtoken_1.default.decode(idToken, {
+            complete: true,
+        });
+        if (!jwtData) {
+            return { success: false, error: "The id_token is not a valid JWT" };
+        }
+        const payload = jwtData.payload;
+        if (!payload.email_verified) {
+            throw new utils_1.AcmeKitError(utils_1.AcmeKitError.Types.INVALID_DATA, "Email not verified, cannot proceed with authentication");
+        }
+        const entity_id = payload.sub;
+        const userMetadata = {
+            name: payload.name,
+            email: payload.email,
+            picture: payload.picture,
+            given_name: payload.given_name,
+            family_name: payload.family_name,
+        };
+        let authIdentity;
+        try {
+            authIdentity = await authIdentityService.retrieve({
+                entity_id,
+            });
+        }
+        catch (error) {
+            if (error.type === utils_1.AcmeKitError.Types.NOT_FOUND) {
+                const createdAuthIdentity = await authIdentityService.create({
+                    entity_id,
+                    user_metadata: userMetadata,
+                });
+                authIdentity = createdAuthIdentity;
+            }
+            else {
+                return { success: false, error: error.message };
+            }
+        }
+        return {
+            success: true,
+            authIdentity,
+        };
+    }
+    getRedirect(clientId, callbackUrl, stateKey) {
+        const authUrl = new URL(this.config_.oauth_authorize_endpoint);
+        authUrl.searchParams.set("redirect_uri", callbackUrl);
+        authUrl.searchParams.set("client_id", clientId);
+        authUrl.searchParams.set("response_type", "code");
+        authUrl.searchParams.set("scope", "email profile openid");
+        authUrl.searchParams.set("state", stateKey);
+        return { success: true, location: authUrl.toString() };
+    }
+    getClientId() {
+        return this.config_.environment_handle || this.config_.sandbox_handle;
+    }
+}
+exports.AcmeKitCloudAuthService = AcmeKitCloudAuthService;
+AcmeKitCloudAuthService.identifier = "cloud";
+AcmeKitCloudAuthService.DISPLAY_NAME = "AcmeKit Cloud Authentication";
+//# sourceMappingURL=acmekit-cloud-auth.js.map

package/dist/providers/acmekit-cloud-auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"acmekit-cloud-auth.js","sourceRoot":"","sources":["../../src/providers/acmekit-cloud-auth.ts"],"names":[],"mappings":";;;;;;AAMA,oDAGiC;AAEjC,oDAA2B;AAC3B,gEAAmD;AAMnD,MAAa,uBAAwB,SAAQ,kCAA0B;IAOrE,YACE,EAAE,MAAM,EAAwB,EAChC,OAAwC;QAExC,aAAa;QACb,KAAK,CAAC,GAAG,SAAS,CAAC,CAAA;QACnB,IAAI,CAAC,OAAO,GAAG,OAAO,CAAA;QACtB,IAAI,CAAC,OAAO,GAAG,MAAM,CAAA;IACvB,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,CAAC;QACd,MAAM,IAAI,oBAAY,CACpB,oBAAY,CAAC,KAAK,CAAC,WAAW,EAC9B,iFAAiF,CAClF,CAAA;IACH,CAAC;IAED,KAAK,CAAC,YAAY,CAChB,GAAwB,EACxB,mBAAgD;QAEhD,MAAM,KAAK,GAA2B,GAAG,CAAC,KAAK,IAAI,EAAE,CAAA;QACrD,MAAM,IAAI,GAA2B,GAAG,CAAC,IAAI,IAAI,EAAE,CAAA;QAEnD,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;YAChB,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,GAAG,KAAK,CAAC,KAAK,EAAE;aACxB,CAAA;QACH,CAAC;QAED,MAAM,QAAQ,GAAG,gBAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;QACvD,MAAM,KAAK,GAAG;YACZ,YAAY,EAAE,IAAI,EAAE,YAAY,IAAI,IAAI,CAAC,OAAO,CAAC,YAAY;SAC9D,CAAA;QAED,MAAM,mBAAmB,CAAC,QAAQ,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAA;QACnD,OAAO,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,WAAW,EAAE,EAAE,KAAK,CAAC,YAAY,EAAE,QAAQ,CAAC,CAAA;IAC3E,CAAC;IAED,KAAK,CAAC,gBAAgB,CACpB,GAAwB,EACxB,mBAAgD;QAEhD,MAAM,KAAK,GAA2B,GAAG,CAAC,KAAK,IAAI,EAAE,CAAA;QACrD,MAAM,IAAI,GAA2B,GAAG,CAAC,IAAI,IAAI,EAAE,CAAA;QAEnD,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;YAChB,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,GAAG,KAAK,CAAC,KAAK,EAAE;aACxB,CAAA;QACH,CAAC;QAED,MAAM,IAAI,GAAG,KAAK,EAAE,IAAI,IAAI,IAAI,EAAE,IAAI,CAAA;QACtC,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,kBAAkB,EAAE,CAAA;QACtD,CAAC;QAED,MAAM,KAAK,GAAG,MAAM,mBAAmB,CAAC,QAAQ,CAAC,KAAK,EAAE,KAAe,CAAC,CAAA;QACxE,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,uCAAuC,EAAE,CAAA;QAC3E,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,EAAE,CAAA;QAEnC,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,oBAAoB,EAAE;gBAC9D,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,mCAAmC;iBACpD;gBACD,IAAI,EAAE,IAAI,eAAe,CAAC;oBACxB,SAAS,EAAE,QAAQ;oBACnB,aAAa,EAAE,IAAI,CAAC,OAAO,CAAC,OAAO;oBACnC,IAAI;oBACJ,YAAY,EAAE,KAAK,CAAC,YAAsB;oBAC1C,UAAU,EAAE,oBAAoB;iBACjC,CAAC;aACH,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE;gBACZ,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;oBACV,IAAI,CAAC,OAAO,CAAC,IAAI,CACf,6BAA6B,CAAC,CAAC,MAAM,KACnC,CAAC,CAAC,UACJ,eAAe,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CACnC,CAAA;oBACD,MAAM,IAAI,oBAAY,CACpB,oBAAY,CAAC,KAAK,CAAC,YAAY,EAC/B,6BAA6B,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,UAAU,EAAE,CACzD,CAAA;gBACH,CAAC;gBAED,OAAO,CAAC,CAAC,IAAI,EAAE,CAAA;YACjB,CAAC,CAAC,CAAA;YAEF,MAAM,EAAE,YAAY,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,OAAO,CACzD,QAAQ,CAAC,QAAkB,EAC3B,mBAAmB,CACpB,CAAA;YAED,OAAO;gBACL,OAAO;gBACP,YAAY;gBACZ,KAAK;aACN,CAAA;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAA;QACjD,CAAC;IACH,CAAC;IAED,KAAK,CAAC,OAAO,CACX,OAA2B,EAC3B,mBAAgD;QAEhD,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,aAAa,EAAE,CAAA;QACjD,CAAC;QAED,MAAM,OAAO,GAAG,sBAAG,CAAC,MAAM,CAAC,OAAO,EAAE;YAClC,QAAQ,EAAE,IAAI;SACf,CAAe,CAAA;QAChB,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,iCAAiC,EAAE,CAAA;QACrE,CAAC;QACD,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAA;QAE/B,IAAI,CAAC,OAAO,CAAC,cAAc,EAAE,CAAC;YAC5B,MAAM,IAAI,oBAAY,CACpB,oBAAY,CAAC,KAAK,CAAC,YAAY,EAC/B,wDAAwD,CACzD,CAAA;QACH,CAAC;QAED,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAA;QAC7B,MAAM,YAAY,GAAG;YACnB,IAAI,EAAE,OAAO,CAAC,IAAI;YAClB,KAAK,EAAE,OAAO,CAAC,KAAK;YACpB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,UAAU,EAAE,OAAO,CAAC,UAAU;YAC9B,WAAW,EAAE,OAAO,CAAC,WAAW;SACjC,CAAA;QAED,IAAI,YAAY,CAAA;QAEhB,IAAI,CAAC;YACH,YAAY,GAAG,MAAM,mBAAmB,CAAC,QAAQ,CAAC;gBAChD,SAAS;aACV,CAAC,CAAA;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,CAAC,IAAI,KAAK,oBAAY,CAAC,KAAK,CAAC,SAAS,EAAE,CAAC;gBAChD,MAAM,mBAAmB,GAAG,MAAM,mBAAmB,CAAC,MAAM,CAAC;oBAC3D,SAAS;oBACT,aAAa,EAAE,YAAY;iBAC5B,CAAC,CAAA;gBACF,YAAY,GAAG,mBAAmB,CAAA;YACpC,CAAC;iBAAM,CAAC;gBACN,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAA;YACjD,CAAC;QACH,CAAC;QAED,OAAO;YACL,OAAO,EAAE,IAAI;YACb,YAAY;SACb,CAAA;IACH,CAAC;IAEO,WAAW,CAAC,QAAgB,EAAE,WAAmB,EAAE,QAAgB;QACzE,MAAM,OAAO,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,wBAAwB,CAAC,CAAA;QAC9D,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,CAAA;QACrD,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAA;QAC/C,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,EAAE,MAAM,CAAC,CAAA;QACjD,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,sBAAsB,CAAC,CAAA;QACzD,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAA;QAE3C,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAA;IACxD,CAAC;IAEO,WAAW;QACjB,OAAO,IAAI,CAAC,OAAO,CAAC,kBAAkB,IAAI,IAAI,CAAC,OAAO,CAAC,cAAc,CAAA;IACvE,CAAC;;AA1LH,0DA2LC;AA1LQ,kCAAU,GAAG,OAAO,CAAA;AACpB,oCAAY,GAAG,8BAA8B,CAAA"}

package/dist/services/auth-module.d.ts

@@ -0,0 +1,44 @@
+import { AuthenticationInput, AuthenticationResponse, AuthIdentityProviderService, AuthTypes, Context, DAL, ICacheService, InferEntityType, InternalModuleDeclaration, Logger, ModuleJoinerConfig, ModulesSdkTypes } from "@acmekit/framework/types";
+import { AuthIdentity, ProviderIdentity } from "../models";
+import AuthProviderService from "./auth-provider";
+type InjectedDependencies = {
+    baseRepository: DAL.RepositoryService;
+    authIdentityService: ModulesSdkTypes.IAcmeKitInternalService<any>;
+    providerIdentityService: ModulesSdkTypes.IAcmeKitInternalService<any>;
+    authProviderService: AuthProviderService;
+    logger?: Logger;
+    cache?: ICacheService;
+};
+declare const AuthModuleService_base: import("@acmekit/framework/utils").AcmeKitServiceReturnType<{
+    AuthIdentity: {
+        dto: AuthTypes.AuthIdentityDTO;
+    };
+    ProviderIdentity: {
+        dto: AuthTypes.ProviderIdentityDTO;
+    };
+}>;
+export default class AuthModuleService extends AuthModuleService_base implements AuthTypes.IAuthModuleService {
+    protected readonly moduleDeclaration: InternalModuleDeclaration;
+    protected baseRepository_: DAL.RepositoryService;
+    protected authIdentityService_: ModulesSdkTypes.IAcmeKitInternalService<InferEntityType<typeof AuthIdentity>>;
+    protected providerIdentityService_: ModulesSdkTypes.IAcmeKitInternalService<InferEntityType<typeof ProviderIdentity>>;
+    protected readonly authProviderService_: AuthProviderService;
+    protected readonly cache_: ICacheService | undefined;
+    constructor({ authIdentityService, providerIdentityService, authProviderService, baseRepository, cache, }: InjectedDependencies, moduleDeclaration: InternalModuleDeclaration);
+    __joinerConfig(): ModuleJoinerConfig;
+    createAuthIdentities(data: AuthTypes.CreateAuthIdentityDTO[], sharedContext?: Context): Promise<AuthTypes.AuthIdentityDTO[]>;
+    createAuthIdentities(data: AuthTypes.CreateAuthIdentityDTO, sharedContext?: Context): Promise<AuthTypes.AuthIdentityDTO>;
+    updateAuthIdentities(data: AuthTypes.UpdateAuthIdentityDTO[], sharedContext?: Context): Promise<AuthTypes.AuthIdentityDTO[]>;
+    updateAuthIdentities(data: AuthTypes.UpdateAuthIdentityDTO, sharedContext?: Context): Promise<AuthTypes.AuthIdentityDTO>;
+    register(provider: string, authenticationData: AuthenticationInput): Promise<AuthenticationResponse>;
+    createProviderIdentities(data: AuthTypes.CreateProviderIdentityDTO[], sharedContext?: Context): Promise<AuthTypes.ProviderIdentityDTO[]>;
+    createProviderIdentities(data: AuthTypes.CreateProviderIdentityDTO, sharedContext?: Context): Promise<AuthTypes.ProviderIdentityDTO>;
+    updateProviderIdentities(data: AuthTypes.UpdateProviderIdentityDTO[], sharedContext?: Context): Promise<AuthTypes.ProviderIdentityDTO[]>;
+    updateProviderIdentities(data: AuthTypes.UpdateProviderIdentityDTO, sharedContext?: Context): Promise<AuthTypes.ProviderIdentityDTO>;
+    updateProvider(provider: string, data: Record<string, unknown>): Promise<AuthenticationResponse>;
+    authenticate(provider: string, authenticationData: AuthenticationInput): Promise<AuthenticationResponse>;
+    validateCallback(provider: string, authenticationData: AuthenticationInput): Promise<AuthenticationResponse>;
+    getAuthIdentityProviderService(provider: string): AuthIdentityProviderService;
+}
+export {};
+//# sourceMappingURL=auth-module.d.ts.map

package/dist/services/auth-module.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-module.d.ts","sourceRoot":"","sources":["../../src/services/auth-module.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,mBAAmB,EACnB,sBAAsB,EACtB,2BAA2B,EAC3B,SAAS,EACT,OAAO,EACP,GAAG,EACH,aAAa,EACb,eAAe,EACf,yBAAyB,EACzB,MAAM,EACN,kBAAkB,EAClB,eAAe,EAChB,MAAM,0BAA0B,CAAA;AAOjC,OAAO,EAAE,YAAY,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAA;AAExD,OAAO,mBAAmB,MAAM,iBAAiB,CAAA;AAEjD,KAAK,oBAAoB,GAAG;IAC1B,cAAc,EAAE,GAAG,CAAC,iBAAiB,CAAA;IACrC,mBAAmB,EAAE,eAAe,CAAC,uBAAuB,CAAC,GAAG,CAAC,CAAA;IACjE,uBAAuB,EAAE,eAAe,CAAC,uBAAuB,CAAC,GAAG,CAAC,CAAA;IACrE,mBAAmB,EAAE,mBAAmB,CAAA;IACxC,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,KAAK,CAAC,EAAE,aAAa,CAAA;CACtB,CAAA;;kBAGiB;QAAE,GAAG,EAAE,SAAS,CAAC,eAAe,CAAA;KAAE;sBAC9B;QAAE,GAAG,EAAE,SAAS,CAAC,mBAAmB,CAAA;KAAE;;AAH5D,MAAM,CAAC,OAAO,OAAO,iBACnB,SAAQ,sBAIR,YAAW,SAAS,CAAC,kBAAkB;IAmBrC,SAAS,CAAC,QAAQ,CAAC,iBAAiB,EAAE,yBAAyB;IAjBjE,SAAS,CAAC,eAAe,EAAE,GAAG,CAAC,iBAAiB,CAAA;IAChD,SAAS,CAAC,oBAAoB,EAAE,eAAe,CAAC,uBAAuB,CACrE,eAAe,CAAC,OAAO,YAAY,CAAC,CACrC,CAAA;IACD,SAAS,CAAC,wBAAwB,EAAE,eAAe,CAAC,uBAAuB,CACzE,eAAe,CAAC,OAAO,gBAAgB,CAAC,CACzC,CAAA;IACD,SAAS,CAAC,QAAQ,CAAC,oBAAoB,EAAE,mBAAmB,CAAA;IAC5D,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,aAAa,GAAG,SAAS,CAAA;gBAElD,EACE,mBAAmB,EACnB,uBAAuB,EACvB,mBAAmB,EACnB,cAAc,EACd,KAAK,GACN,EAAE,oBAAoB,EACJ,iBAAiB,EAAE,yBAAyB;IAYjE,cAAc,IAAI,kBAAkB;IAKpC,oBAAoB,CAClB,IAAI,EAAE,SAAS,CAAC,qBAAqB,EAAE,EACvC,aAAa,CAAC,EAAE,OAAO,GACtB,OAAO,CAAC,SAAS,CAAC,eAAe,EAAE,CAAC;IAEvC,oBAAoB,CAClB,IAAI,EAAE,SAAS,CAAC,qBAAqB,EACrC,aAAa,CAAC,EAAE,OAAO,GACtB,OAAO,CAAC,SAAS,CAAC,eAAe,CAAC;IAsBrC,oBAAoB,CAClB,IAAI,EAAE,SAAS,CAAC,qBAAqB,EAAE,EACvC,aAAa,CAAC,EAAE,OAAO,GACtB,OAAO,CAAC,SAAS,CAAC,eAAe,EAAE,CAAC;IAGvC,oBAAoB,CAClB,IAAI,EAAE,SAAS,CAAC,qBAAqB,EACrC,aAAa,CAAC,EAAE,OAAO,GACtB,OAAO,CAAC,SAAS,CAAC,eAAe,CAAC;IAsB/B,QAAQ,CACZ,QAAQ,EAAE,MAAM,EAChB,kBAAkB,EAAE,mBAAmB,GACtC,OAAO,CAAC,sBAAsB,CAAC;IAalC,wBAAwB,CACtB,IAAI,EAAE,SAAS,CAAC,yBAAyB,EAAE,EAC3C,aAAa,CAAC,EAAE,OAAO,GACtB,OAAO,CAAC,SAAS,CAAC,mBAAmB,EAAE,CAAC;IAG3C,wBAAwB,CACtB,IAAI,EAAE,SAAS,CAAC,yBAAyB,EACzC,aAAa,CAAC,EAAE,OAAO,GACtB,OAAO,CAAC,SAAS,CAAC,mBAAmB,CAAC;IAqBzC,wBAAwB,CACtB,IAAI,EAAE,SAAS,CAAC,yBAAyB,EAAE,EAC3C,aAAa,CAAC,EAAE,OAAO,GACtB,OAAO,CAAC,SAAS,CAAC,mBAAmB,EAAE,CAAC;IAG3C,wBAAwB,CACtB,IAAI,EAAE,SAAS,CAAC,yBAAyB,EACzC,aAAa,CAAC,EAAE,OAAO,GACtB,OAAO,CAAC,SAAS,CAAC,mBAAmB,CAAC;IAsBnC,cAAc,CAClB,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC5B,OAAO,CAAC,sBAAsB,CAAC;IAY5B,YAAY,CAChB,QAAQ,EAAE,MAAM,EAChB,kBAAkB,EAAE,mBAAmB,GACtC,OAAO,CAAC,sBAAsB,CAAC;IAY5B,gBAAgB,CACpB,QAAQ,EAAE,MAAM,EAChB,kBAAkB,EAAE,mBAAmB,GACtC,OAAO,CAAC,sBAAsB,CAAC;IAYlC,8BAA8B,CAC5B,QAAQ,EAAE,MAAM,GACf,2BAA2B;CAqJ/B"}

package/dist/services/auth-module.js

@@ -0,0 +1,204 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const utils_1 = require("@acmekit/framework/utils");
+const _models_1 = require("../models");
+const joiner_config_1 = require("../joiner-config");
+class AuthModuleService extends (0, utils_1.AcmeKitService)({ AuthIdentity: _models_1.AuthIdentity, ProviderIdentity: _models_1.ProviderIdentity }) {
+    constructor({ authIdentityService, providerIdentityService, authProviderService, baseRepository, cache, }, moduleDeclaration) {
+        // @ts-ignore
+        super(...arguments);
+        this.moduleDeclaration = moduleDeclaration;
+        this.baseRepository_ = baseRepository;
+        this.authIdentityService_ = authIdentityService;
+        this.authProviderService_ = authProviderService;
+        this.providerIdentityService_ = providerIdentityService;
+        this.cache_ = cache;
+    }
+    __joinerConfig() {
+        return joiner_config_1.joinerConfig;
+    }
+    async createAuthIdentities(data, sharedContext = {}) {
+        const authIdentities = await this.authIdentityService_.create(data, sharedContext);
+        return await this.baseRepository_.serialize(authIdentities, {
+            populate: true,
+        });
+    }
+    // @ts-expect-error
+    async updateAuthIdentities(data, sharedContext = {}) {
+        const updatedUsers = await this.authIdentityService_.update(data, sharedContext);
+        const serializedUsers = await this.baseRepository_.serialize(updatedUsers, {
+            populate: true,
+        });
+        return serializedUsers;
+    }
+    async register(provider, authenticationData) {
+        try {
+            return await this.authProviderService_.register(provider, authenticationData, this.getAuthIdentityProviderService(provider));
+        }
+        catch (error) {
+            return { success: false, error: error.message };
+        }
+    }
+    // @ts-expect-error
+    async createProviderIdentities(data, sharedContext = {}) {
+        const providerIdentities = await this.providerIdentityService_.create(data, sharedContext);
+        return await this.baseRepository_.serialize(providerIdentities);
+    }
+    // @ts-expect-error
+    async updateProviderIdentities(data, sharedContext = {}) {
+        const updatedProviders = await this.providerIdentityService_.update(data, sharedContext);
+        const serializedProviders = await this.baseRepository_.serialize(updatedProviders);
+        return serializedProviders;
+    }
+    async updateProvider(provider, data) {
+        try {
+            return await this.authProviderService_.update(provider, data, this.getAuthIdentityProviderService(provider));
+        }
+        catch (error) {
+            return { success: false, error: error.message };
+        }
+    }
+    async authenticate(provider, authenticationData) {
+        try {
+            return await this.authProviderService_.authenticate(provider, authenticationData, this.getAuthIdentityProviderService(provider));
+        }
+        catch (error) {
+            return { success: false, error: error.message };
+        }
+    }
+    async validateCallback(provider, authenticationData) {
+        try {
+            return await this.authProviderService_.validateCallback(provider, authenticationData, this.getAuthIdentityProviderService(provider));
+        }
+        catch (error) {
+            return { success: false, error: error.message };
+        }
+    }
+    getAuthIdentityProviderService(provider) {
+        return {
+            retrieve: async ({ entity_id }) => {
+                const authIdentities = await this.authIdentityService_.list({
+                    provider_identities: {
+                        entity_id,
+                        provider,
+                    },
+                }, {
+                    relations: ["provider_identities"],
+                });
+                if (!authIdentities.length) {
+                    throw new utils_1.AcmeKitError(utils_1.AcmeKitError.Types.NOT_FOUND, `AuthIdentity with entity_id "${entity_id}" not found`);
+                }
+                if (authIdentities.length > 1) {
+                    throw new utils_1.AcmeKitError(utils_1.AcmeKitError.Types.INVALID_DATA, `Multiple authIdentities found for entity_id "${entity_id}"`);
+                }
+                return await this.baseRepository_.serialize(authIdentities[0]);
+            },
+            create: async (data) => {
+                const normalizedRequest = {
+                    provider_identities: [
+                        {
+                            entity_id: data.entity_id,
+                            provider_metadata: data.provider_metadata,
+                            user_metadata: data.user_metadata,
+                            provider,
+                        },
+                    ],
+                };
+                const createdAuthIdentity = await this.authIdentityService_.create(normalizedRequest);
+                return await this.baseRepository_.serialize(createdAuthIdentity);
+            },
+            update: async (entity_id, data) => {
+                const authIdentities = await this.authIdentityService_.list({
+                    provider_identities: {
+                        entity_id,
+                        provider,
+                    },
+                }, {
+                    relations: ["provider_identities"],
+                });
+                if (!authIdentities.length) {
+                    throw new utils_1.AcmeKitError(utils_1.AcmeKitError.Types.NOT_FOUND, `AuthIdentity with entity_id "${entity_id}" not found`);
+                }
+                if (authIdentities.length > 1) {
+                    throw new utils_1.AcmeKitError(utils_1.AcmeKitError.Types.INVALID_DATA, `Multiple authIdentities found for entity_id "${entity_id}"`);
+                }
+                const providerIdentityData = authIdentities[0].provider_identities.find((pi) => pi.provider === provider);
+                if (!providerIdentityData) {
+                    throw new utils_1.AcmeKitError(utils_1.AcmeKitError.Types.NOT_FOUND, `ProviderIdentity with entity_id "${entity_id}" not found`);
+                }
+                const updatedProviderIdentity = await this.providerIdentityService_.update({
+                    id: providerIdentityData.id,
+                    ...data,
+                });
+                const serializedResponse = await this.baseRepository_.serialize(authIdentities[0]);
+                const serializedProviderIdentity = await this.baseRepository_.serialize(updatedProviderIdentity);
+                serializedResponse.provider_identities = [
+                    ...(serializedResponse.provider_identities?.filter((p) => p.provider !== provider) ?? []),
+                    serializedProviderIdentity,
+                ];
+                return serializedResponse;
+            },
+            setState: async (key, value) => {
+                if (!this.cache_) {
+                    throw new utils_1.AcmeKitError(utils_1.AcmeKitError.Types.INVALID_ARGUMENT, "Cache module dependency is required when using OAuth providers that require state");
+                }
+                // 20 minutes. Can be made configurable if necessary, but this is a good default.
+                this.cache_.set(key, value, 1200);
+            },
+            getState: async (key) => {
+                if (!this.cache_) {
+                    throw new utils_1.AcmeKitError(utils_1.AcmeKitError.Types.INVALID_ARGUMENT, "Cache module dependency is required when using OAuth providers that require state");
+                }
+                return await this.cache_.get(key);
+            },
+        };
+    }
+}
+exports.default = AuthModuleService;
+__decorate([
+    (0, utils_1.InjectManager)(),
+    __param(1, (0, utils_1.AcmeKitContext)()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], AuthModuleService.prototype, "createAuthIdentities", null);
+__decorate([
+    (0, utils_1.InjectManager)()
+    // @ts-expect-error
+    ,
+    __param(1, (0, utils_1.AcmeKitContext)()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], AuthModuleService.prototype, "updateAuthIdentities", null);
+__decorate([
+    (0, utils_1.InjectManager)()
+    // @ts-expect-error
+    ,
+    __param(1, (0, utils_1.AcmeKitContext)()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], AuthModuleService.prototype, "createProviderIdentities", null);
+__decorate([
+    (0, utils_1.InjectManager)()
+    // @ts-expect-error
+    ,
+    __param(1, (0, utils_1.AcmeKitContext)()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, Object]),
+    __metadata("design:returntype", Promise)
+], AuthModuleService.prototype, "updateProviderIdentities", null);
+//# sourceMappingURL=auth-module.js.map

package/dist/services/auth-module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-module.js","sourceRoot":"","sources":["../../src/services/auth-module.ts"],"names":[],"mappings":";;;;;;;;;;;;;;AAcA,oDAKiC;AACjC,qCAAwD;AACxD,oDAA+C;AAW/C,MAAqB,iBACnB,SAAQ,IAAA,sBAAc,EAGnB,EAAE,YAAY,EAAZ,sBAAY,EAAE,gBAAgB,EAAhB,0BAAgB,EAAE,CAAC;IAYtC,YACE,EACE,mBAAmB,EACnB,uBAAuB,EACvB,mBAAmB,EACnB,cAAc,EACd,KAAK,GACgB,EACJ,iBAA4C;QAE/D,aAAa;QACb,KAAK,CAAC,GAAG,SAAS,CAAC,CAAA;QAHA,sBAAiB,GAAjB,iBAAiB,CAA2B;QAK/D,IAAI,CAAC,eAAe,GAAG,cAAc,CAAA;QACrC,IAAI,CAAC,oBAAoB,GAAG,mBAAmB,CAAA;QAC/C,IAAI,CAAC,oBAAoB,GAAG,mBAAmB,CAAA;QAC/C,IAAI,CAAC,wBAAwB,GAAG,uBAAuB,CAAA;QACvD,IAAI,CAAC,MAAM,GAAG,KAAK,CAAA;IACrB,CAAC;IAED,cAAc;QACZ,OAAO,4BAAY,CAAA;IACrB,CAAC;IAcK,AAAN,KAAK,CAAC,oBAAoB,CACxB,IAAyE,EACvD,gBAAyB,EAAE;QAE7C,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAC3D,IAAI,EACJ,aAAa,CACd,CAAA;QAED,OAAO,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CACzC,cAAc,EACd;YACE,QAAQ,EAAE,IAAI;SACf,CACF,CAAA;IACH,CAAC;IAiBK,AADN,mBAAmB;IACnB,KAAK,CAAC,oBAAoB,CACxB,IAAyE,EACvD,gBAAyB,EAAE;QAE7C,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,MAAM,CACzD,IAAI,EACJ,aAAa,CACd,CAAA;QAED,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CAE1D,YAAY,EAAE;YACd,QAAQ,EAAE,IAAI;SACf,CAAC,CAAA;QAEF,OAAO,eAAe,CAAA;IACxB,CAAC;IAED,KAAK,CAAC,QAAQ,CACZ,QAAgB,EAChB,kBAAuC;QAEvC,IAAI,CAAC;YACH,OAAO,MAAM,IAAI,CAAC,oBAAoB,CAAC,QAAQ,CAC7C,QAAQ,EACR,kBAAkB,EAClB,IAAI,CAAC,8BAA8B,CAAC,QAAQ,CAAC,CAC9C,CAAA;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAA;QACjD,CAAC;IACH,CAAC;IAgBK,AADN,mBAAmB;IACnB,KAAK,CAAC,wBAAwB,CAC5B,IAEuC,EACrB,gBAAyB,EAAE;QAE7C,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,wBAAwB,CAAC,MAAM,CACnE,IAAI,EACJ,aAAa,CACd,CAAA;QAED,OAAO,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CAEzC,kBAAkB,CAAC,CAAA;IACvB,CAAC;IAgBK,AADN,mBAAmB;IACnB,KAAK,CAAC,wBAAwB,CAC5B,IAEyC,EACvB,gBAAyB,EAAE;QAE7C,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,wBAAwB,CAAC,MAAM,CACjE,IAAI,EACJ,aAAa,CACd,CAAA;QAED,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CAE9D,gBAAgB,CAAC,CAAA;QAEnB,OAAO,mBAAmB,CAAA;IAC5B,CAAC;IAED,KAAK,CAAC,cAAc,CAClB,QAAgB,EAChB,IAA6B;QAE7B,IAAI,CAAC;YACH,OAAO,MAAM,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAC3C,QAAQ,EACR,IAAI,EACJ,IAAI,CAAC,8BAA8B,CAAC,QAAQ,CAAC,CAC9C,CAAA;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAA;QACjD,CAAC;IACH,CAAC;IAED,KAAK,CAAC,YAAY,CAChB,QAAgB,EAChB,kBAAuC;QAEvC,IAAI,CAAC;YACH,OAAO,MAAM,IAAI,CAAC,oBAAoB,CAAC,YAAY,CACjD,QAAQ,EACR,kBAAkB,EAClB,IAAI,CAAC,8BAA8B,CAAC,QAAQ,CAAC,CAC9C,CAAA;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAA;QACjD,CAAC;IACH,CAAC;IAED,KAAK,CAAC,gBAAgB,CACpB,QAAgB,EAChB,kBAAuC;QAEvC,IAAI,CAAC;YACH,OAAO,MAAM,IAAI,CAAC,oBAAoB,CAAC,gBAAgB,CACrD,QAAQ,EACR,kBAAkB,EAClB,IAAI,CAAC,8BAA8B,CAAC,QAAQ,CAAC,CAC9C,CAAA;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAA;QACjD,CAAC;IACH,CAAC;IAED,8BAA8B,CAC5B,QAAgB;QAEhB,OAAO;YACL,QAAQ,EAAE,KAAK,EAAE,EAAE,SAAS,EAAE,EAAE,EAAE;gBAChC,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,IAAI,CACzD;oBACE,mBAAmB,EAAE;wBACnB,SAAS;wBACT,QAAQ;qBACT;iBACF,EACD;oBACE,SAAS,EAAE,CAAC,qBAAqB,CAAC;iBACnC,CACF,CAAA;gBAED,IAAI,CAAC,cAAc,CAAC,MAAM,EAAE,CAAC;oBAC3B,MAAM,IAAI,oBAAY,CACpB,oBAAY,CAAC,KAAK,CAAC,SAAS,EAC5B,gCAAgC,SAAS,aAAa,CACvD,CAAA;gBACH,CAAC;gBAED,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBAC9B,MAAM,IAAI,oBAAY,CACpB,oBAAY,CAAC,KAAK,CAAC,YAAY,EAC/B,gDAAgD,SAAS,GAAG,CAC7D,CAAA;gBACH,CAAC;gBAED,OAAO,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CACzC,cAAc,CAAC,CAAC,CAAC,CAClB,CAAA;YACH,CAAC;YAED,MAAM,EAAE,KAAK,EAAE,IAId,EAAE,EAAE;gBACH,MAAM,iBAAiB,GAAG;oBACxB,mBAAmB,EAAE;wBACnB;4BACE,SAAS,EAAE,IAAI,CAAC,SAAS;4BACzB,iBAAiB,EAAE,IAAI,CAAC,iBAAiB;4BACzC,aAAa,EAAE,IAAI,CAAC,aAAa;4BACjC,QAAQ;yBACT;qBACF;iBACF,CAAA;gBAED,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAChE,iBAAiB,CAClB,CAAA;gBAED,OAAO,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CACzC,mBAAmB,CACpB,CAAA;YACH,CAAC;YACD,MAAM,EAAE,KAAK,EACX,SAAiB,EACjB,IAGC,EACD,EAAE;gBACF,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,IAAI,CACzD;oBACE,mBAAmB,EAAE;wBACnB,SAAS;wBACT,QAAQ;qBACT;iBACF,EACD;oBACE,SAAS,EAAE,CAAC,qBAAqB,CAAC;iBACnC,CACF,CAAA;gBAED,IAAI,CAAC,cAAc,CAAC,MAAM,EAAE,CAAC;oBAC3B,MAAM,IAAI,oBAAY,CACpB,oBAAY,CAAC,KAAK,CAAC,SAAS,EAC5B,gCAAgC,SAAS,aAAa,CACvD,CAAA;gBACH,CAAC;gBAED,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBAC9B,MAAM,IAAI,oBAAY,CACpB,oBAAY,CAAC,KAAK,CAAC,YAAY,EAC/B,gDAAgD,SAAS,GAAG,CAC7D,CAAA;gBACH,CAAC;gBAED,MAAM,oBAAoB,GAAG,cAAc,CAAC,CAAC,CAAC,CAAC,mBAAmB,CAAC,IAAI,CACrE,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,QAAQ,KAAK,QAAQ,CACjC,CAAA;gBAED,IAAI,CAAC,oBAAoB,EAAE,CAAC;oBAC1B,MAAM,IAAI,oBAAY,CACpB,oBAAY,CAAC,KAAK,CAAC,SAAS,EAC5B,oCAAoC,SAAS,aAAa,CAC3D,CAAA;gBACH,CAAC;gBAED,MAAM,uBAAuB,GAC3B,MAAM,IAAI,CAAC,wBAAwB,CAAC,MAAM,CAAC;oBACzC,EAAE,EAAE,oBAAoB,CAAC,EAAE;oBAC3B,GAAG,IAAI;iBACR,CAAC,CAAA;gBAEJ,MAAM,kBAAkB,GACtB,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CAClC,cAAc,CAAC,CAAC,CAAC,CAClB,CAAA;gBACH,MAAM,0BAA0B,GAC9B,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CAClC,uBAAuB,CACxB,CAAA;gBAEH,kBAAkB,CAAC,mBAAmB,GAAG;oBACvC,GAAG,CAAC,kBAAkB,CAAC,mBAAmB,EAAE,MAAM,CAChD,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAC/B,IAAI,EAAE,CAAC;oBACR,0BAA0B;iBAC3B,CAAA;gBAED,OAAO,kBAAkB,CAAA;YAC3B,CAAC;YACD,QAAQ,EAAE,KAAK,EAAE,GAAW,EAAE,KAA8B,EAAE,EAAE;gBAC9D,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;oBACjB,MAAM,IAAI,oBAAY,CACpB,oBAAY,CAAC,KAAK,CAAC,gBAAgB,EACnC,mFAAmF,CACpF,CAAA;gBACH,CAAC;gBAED,iFAAiF;gBACjF,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,EAAE,IAAI,CAAC,CAAA;YACnC,CAAC;YACD,QAAQ,EAAE,KAAK,EAAE,GAAW,EAAE,EAAE;gBAC9B,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;oBACjB,MAAM,IAAI,oBAAY,CACpB,oBAAY,CAAC,KAAK,CAAC,gBAAgB,EACnC,mFAAmF,CACpF,CAAA;gBACH,CAAC;gBAED,OAAO,MAAM,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;YACnC,CAAC;SACF,CAAA;IACH,CAAC;CACF;AAvXD,oCAuXC;AAnUO;IADL,IAAA,qBAAa,GAAE;IAGb,WAAA,IAAA,sBAAc,GAAE,CAAA;;;;6DAalB;AAiBK;IAFL,IAAA,qBAAa,GAAE;IAChB,mBAAmB;;IAGhB,WAAA,IAAA,sBAAc,GAAE,CAAA;;;;6DAclB;AA+BK;IAFL,IAAA,qBAAa,GAAE;IAChB,mBAAmB;;IAKhB,WAAA,IAAA,sBAAc,GAAE,CAAA;;;;iEAUlB;AAgBK;IAFL,IAAA,qBAAa,GAAE;IAChB,mBAAmB;;IAKhB,WAAA,IAAA,sBAAc,GAAE,CAAA;;;;iEAYlB"}

package/dist/services/auth-provider.d.ts

@@ -0,0 +1,18 @@
+import { AuthenticationInput, AuthenticationResponse, AuthIdentityProviderService, AuthTypes, Logger } from "@acmekit/framework/types";
+import { AuthProviderRegistrationPrefix } from "../types";
+type InjectedDependencies = {
+    [key: `${typeof AuthProviderRegistrationPrefix}${string}`]: AuthTypes.IAuthProvider;
+    logger?: Logger;
+};
+export default class AuthProviderService {
+    #private;
+    protected dependencies: InjectedDependencies;
+    constructor(container: InjectedDependencies);
+    protected retrieveProviderRegistration(providerId: string): AuthTypes.IAuthProvider;
+    authenticate(provider: string, auth: AuthenticationInput, authIdentityProviderService: AuthIdentityProviderService): Promise<AuthenticationResponse>;
+    register(provider: string, auth: AuthenticationInput, authIdentityProviderService: AuthIdentityProviderService): Promise<AuthenticationResponse>;
+    update(provider: string, data: Record<string, unknown>, authIdentityProviderService: AuthIdentityProviderService): Promise<AuthenticationResponse>;
+    validateCallback(provider: string, auth: AuthenticationInput, authIdentityProviderService: AuthIdentityProviderService): Promise<AuthenticationResponse>;
+}
+export {};
+//# sourceMappingURL=auth-provider.d.ts.map

package/dist/services/auth-provider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-provider.d.ts","sourceRoot":"","sources":["../../src/services/auth-provider.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,mBAAmB,EACnB,sBAAsB,EACtB,2BAA2B,EAC3B,SAAS,EACT,MAAM,EACP,MAAM,0BAA0B,CAAA;AACjC,OAAO,EAAE,8BAA8B,EAAE,MAAM,QAAQ,CAAA;AAEvD,KAAK,oBAAoB,GAAG;IAC1B,CACE,GAAG,EAAE,GAAG,OAAO,8BAA8B,GAAG,MAAM,EAAE,GACvD,SAAS,CAAC,aAAa,CAAA;IAC1B,MAAM,CAAC,EAAE,MAAM,CAAA;CAChB,CAAA;AAED,MAAM,CAAC,OAAO,OAAO,mBAAmB;;IACtC,SAAS,CAAC,YAAY,EAAE,oBAAoB,CAAA;gBAGhC,SAAS,EAAE,oBAAoB;IAO3C,SAAS,CAAC,4BAA4B,CACpC,UAAU,EAAE,MAAM,GACjB,SAAS,CAAC,aAAa;IAsBpB,YAAY,CAChB,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,mBAAmB,EACzB,2BAA2B,EAAE,2BAA2B,GACvD,OAAO,CAAC,sBAAsB,CAAC;IAK5B,QAAQ,CACZ,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,mBAAmB,EACzB,2BAA2B,EAAE,2BAA2B,GACvD,OAAO,CAAC,sBAAsB,CAAC;IAK5B,MAAM,CACV,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC7B,2BAA2B,EAAE,2BAA2B,GACvD,OAAO,CAAC,sBAAsB,CAAC;IAK5B,gBAAgB,CACpB,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,mBAAmB,EACzB,2BAA2B,EAAE,2BAA2B,GACvD,OAAO,CAAC,sBAAsB,CAAC;CAOnC"}

package/dist/services/auth-provider.js

@@ -0,0 +1,61 @@
+"use strict";
+var __classPrivateFieldSet = (this && this.__classPrivateFieldSet) || function (receiver, state, value, kind, f) {
+    if (kind === "m") throw new TypeError("Private method is not writable");
+    if (kind === "a" && !f) throw new TypeError("Private accessor was defined without a setter");
+    if (typeof state === "function" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError("Cannot write private member to an object whose class did not declare it");
+    return (kind === "a" ? f.call(receiver, value) : f ? f.value = value : state.set(receiver, value)), value;
+};
+var __classPrivateFieldGet = (this && this.__classPrivateFieldGet) || function (receiver, state, kind, f) {
+    if (kind === "a" && !f) throw new TypeError("Private accessor was defined without a getter");
+    if (typeof state === "function" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError("Cannot read private member from an object whose class did not declare it");
+    return kind === "m" ? f : kind === "a" ? f.call(receiver) : f ? f.value : state.get(receiver);
+};
+var _AuthProviderService_logger;
+Object.defineProperty(exports, "__esModule", { value: true });
+const _types_1 = require("../types");
+class AuthProviderService {
+    constructor(container) {
+        _AuthProviderService_logger.set(this, void 0);
+        this.dependencies = container;
+        __classPrivateFieldSet(this, _AuthProviderService_logger, container["logger"]
+            ? container.logger
+            : console, "f");
+    }
+    retrieveProviderRegistration(providerId) {
+        try {
+            return this.dependencies[`${_types_1.AuthProviderRegistrationPrefix}${providerId}`];
+        }
+        catch (err) {
+            if (err.name === "AwilixResolutionError") {
+                const errMessage = `
+Unable to retrieve the auth provider with id: ${providerId}
+Please make sure that the provider is registered in the container and it is configured correctly in your project configuration file.`;
+                // Log full error for debugging
+                __classPrivateFieldGet(this, _AuthProviderService_logger, "f").error(`AwilixResolutionError: ${err.message}`, err);
+                throw new Error(errMessage);
+            }
+            const errMessage = `Unable to retrieve the auth provider with id: ${providerId}, the following error occurred: ${err.message}`;
+            __classPrivateFieldGet(this, _AuthProviderService_logger, "f").error(errMessage);
+            throw new Error(errMessage);
+        }
+    }
+    async authenticate(provider, auth, authIdentityProviderService) {
+        const providerHandler = this.retrieveProviderRegistration(provider);
+        return await providerHandler.authenticate(auth, authIdentityProviderService);
+    }
+    async register(provider, auth, authIdentityProviderService) {
+        const providerHandler = this.retrieveProviderRegistration(provider);
+        return await providerHandler.register(auth, authIdentityProviderService);
+    }
+    async update(provider, data, authIdentityProviderService) {
+        const providerHandler = this.retrieveProviderRegistration(provider);
+        return await providerHandler.update(data, authIdentityProviderService);
+    }
+    async validateCallback(provider, auth, authIdentityProviderService) {
+        const providerHandler = this.retrieveProviderRegistration(provider);
+        return await providerHandler.validateCallback(auth, authIdentityProviderService);
+    }
+}
+_AuthProviderService_logger = new WeakMap();
+exports.default = AuthProviderService;
+//# sourceMappingURL=auth-provider.js.map

package/dist/services/auth-provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-provider.js","sourceRoot":"","sources":["../../src/services/auth-provider.ts"],"names":[],"mappings":";;;;;;;;;;;;;;AAOA,mCAAuD;AASvD,MAAqB,mBAAmB;IAItC,YAAY,SAA+B;QAF3C,8CAAe;QAGb,IAAI,CAAC,YAAY,GAAG,SAAS,CAAA;QAC7B,uBAAA,IAAI,+BAAW,SAAS,CAAC,QAAQ,CAAC;YAChC,CAAC,CAAC,SAAS,CAAC,MAAM;YAClB,CAAC,CAAE,OAA6B,MAAA,CAAA;IACpC,CAAC;IAES,4BAA4B,CACpC,UAAkB;QAElB,IAAI,CAAC;YACH,OAAO,IAAI,CAAC,YAAY,CAAC,GAAG,uCAA8B,GAAG,UAAU,EAAE,CAAC,CAAA;QAC5E,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,GAAG,CAAC,IAAI,KAAK,uBAAuB,EAAE,CAAC;gBACzC,MAAM,UAAU,GAAG;gDACqB,UAAU;qIAC2E,CAAA;gBAE7H,+BAA+B;gBAC/B,uBAAA,IAAI,mCAAQ,CAAC,KAAK,CAAC,0BAA0B,GAAG,CAAC,OAAO,EAAE,EAAE,GAAG,CAAC,CAAA;gBAEhE,MAAM,IAAI,KAAK,CAAC,UAAU,CAAC,CAAA;YAC7B,CAAC;YAED,MAAM,UAAU,GAAG,iDAAiD,UAAU,mCAAmC,GAAG,CAAC,OAAO,EAAE,CAAA;YAC9H,uBAAA,IAAI,mCAAQ,CAAC,KAAK,CAAC,UAAU,CAAC,CAAA;YAE9B,MAAM,IAAI,KAAK,CAAC,UAAU,CAAC,CAAA;QAC7B,CAAC;IACH,CAAC;IAED,KAAK,CAAC,YAAY,CAChB,QAAgB,EAChB,IAAyB,EACzB,2BAAwD;QAExD,MAAM,eAAe,GAAG,IAAI,CAAC,4BAA4B,CAAC,QAAQ,CAAC,CAAA;QACnE,OAAO,MAAM,eAAe,CAAC,YAAY,CAAC,IAAI,EAAE,2BAA2B,CAAC,CAAA;IAC9E,CAAC;IAED,KAAK,CAAC,QAAQ,CACZ,QAAgB,EAChB,IAAyB,EACzB,2BAAwD;QAExD,MAAM,eAAe,GAAG,IAAI,CAAC,4BAA4B,CAAC,QAAQ,CAAC,CAAA;QACnE,OAAO,MAAM,eAAe,CAAC,QAAQ,CAAC,IAAI,EAAE,2BAA2B,CAAC,CAAA;IAC1E,CAAC;IAED,KAAK,CAAC,MAAM,CACV,QAAgB,EAChB,IAA6B,EAC7B,2BAAwD;QAExD,MAAM,eAAe,GAAG,IAAI,CAAC,4BAA4B,CAAC,QAAQ,CAAC,CAAA;QACnE,OAAO,MAAM,eAAe,CAAC,MAAM,CAAC,IAAI,EAAE,2BAA2B,CAAC,CAAA;IACxE,CAAC;IAED,KAAK,CAAC,gBAAgB,CACpB,QAAgB,EAChB,IAAyB,EACzB,2BAAwD;QAExD,MAAM,eAAe,GAAG,IAAI,CAAC,4BAA4B,CAAC,QAAQ,CAAC,CAAA;QACnE,OAAO,MAAM,eAAe,CAAC,gBAAgB,CAC3C,IAAI,EACJ,2BAA2B,CAC5B,CAAA;IACH,CAAC;CACF;;kBAzEoB,mBAAmB"}

package/dist/services/index.d.ts

@@ -0,0 +1,3 @@
+export { default as AuthModuleService } from "./auth-module";
+export { default as AuthProviderService } from "./auth-provider";
+//# sourceMappingURL=index.d.ts.map

package/dist/services/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/services/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,IAAI,iBAAiB,EAAE,MAAM,eAAe,CAAA;AAC5D,OAAO,EAAE,OAAO,IAAI,mBAAmB,EAAE,MAAM,iBAAiB,CAAA"}

package/dist/services/index.js

@@ -0,0 +1,11 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthProviderService = exports.AuthModuleService = void 0;
+var auth_module_1 = require("./auth-module");
+Object.defineProperty(exports, "AuthModuleService", { enumerable: true, get: function () { return __importDefault(auth_module_1).default; } });
+var auth_provider_1 = require("./auth-provider");
+Object.defineProperty(exports, "AuthProviderService", { enumerable: true, get: function () { return __importDefault(auth_provider_1).default; } });
+//# sourceMappingURL=index.js.map

package/dist/services/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/services/index.ts"],"names":[],"mappings":";;;;;;AAAA,6CAA4D;AAAnD,iIAAA,OAAO,OAAqB;AACrC,iDAAgE;AAAvD,qIAAA,OAAO,OAAuB"}

package/dist/tsconfig.tsbuildinfo

@@ -0,0 +1 @@
+{"root":["../src/index.ts","../src/joiner-config.ts","../src/loaders/providers.ts","../src/migrations/migration20240205025928.ts","../src/migrations/migration20240529080336.ts","../src/migrations/migration20241202100304.ts","../src/models/auth-identity.ts","../src/models/index.ts","../src/models/provider-identity.ts","../src/providers/acmekit-cloud-auth.ts","../src/services/auth-module.ts","../src/services/auth-provider.ts","../src/services/index.ts","../src/types/index.ts"],"version":"5.9.3"}

package/dist/types/index.d.ts

@@ -0,0 +1,46 @@
+import { Logger, ModuleProviderExports, ModuleServiceInitializeOptions } from "@acmekit/framework/types";
+export type InitializeModuleInjectableDependencies = {
+    logger?: Logger;
+};
+export declare const AuthIdentifiersRegistrationName = "auth_providers_identifier";
+export declare const AuthProviderRegistrationPrefix = "au_";
+export type AuthModuleOptions = Partial<ModuleServiceInitializeOptions> & {
+    /**
+     * Providers to be registered
+     */
+    providers?: {
+        /**
+         * The module provider to be registered
+         */
+        resolve: string | ModuleProviderExports;
+        /**
+         * The id of the provider
+         */
+        id: string;
+        /**
+         * key value pair of the configuration to be passed to the provider constructor
+         */
+        options?: Record<string, unknown>;
+    }[];
+    /**
+     * Options for the default AcmeKit Cloud Auth provider
+     * @private
+     */
+    cloud?: AcmeKitCloudAuthProviderOptions;
+};
+export interface AcmeKitCloudAuthProviderOptions {
+    oauth_authorize_endpoint: string;
+    oauth_token_endpoint: string;
+    environment_handle: string;
+    sandbox_handle: string;
+    api_key: string;
+    callback_url: string;
+    disabled: boolean;
+}
+declare module "@acmekit/types" {
+    interface ModuleOptions {
+        "@acmekit/auth": AuthModuleOptions;
+        "@acmekit/acmekit/auth": AuthModuleOptions;
+    }
+}
+//# sourceMappingURL=index.d.ts.map

package/dist/types/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,MAAM,EACN,qBAAqB,EACrB,8BAA8B,EAC/B,MAAM,0BAA0B,CAAA;AAEjC,MAAM,MAAM,sCAAsC,GAAG;IACnD,MAAM,CAAC,EAAE,MAAM,CAAA;CAChB,CAAA;AAED,eAAO,MAAM,+BAA+B,8BAA8B,CAAA;AAE1E,eAAO,MAAM,8BAA8B,QAAQ,CAAA;AAEnD,MAAM,MAAM,iBAAiB,GAAG,OAAO,CAAC,8BAA8B,CAAC,GAAG;IACxE;;OAEG;IACH,SAAS,CAAC,EAAE;QACV;;WAEG;QACH,OAAO,EAAE,MAAM,GAAG,qBAAqB,CAAA;QACvC;;WAEG;QACH,EAAE,EAAE,MAAM,CAAA;QACV;;WAEG;QACH,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;KAClC,EAAE,CAAA;IACH;;;OAGG;IACH,KAAK,CAAC,EAAE,+BAA+B,CAAA;CACxC,CAAA;AAED,MAAM,WAAW,+BAA+B;IAC9C,wBAAwB,EAAE,MAAM,CAAA;IAChC,oBAAoB,EAAE,MAAM,CAAA;IAC5B,kBAAkB,EAAE,MAAM,CAAA;IAC1B,cAAc,EAAE,MAAM,CAAA;IACtB,OAAO,EAAE,MAAM,CAAA;IACf,YAAY,EAAE,MAAM,CAAA;IACpB,QAAQ,EAAE,OAAO,CAAA;CAClB;AAED,OAAO,QAAQ,gBAAgB,CAAC;IAC9B,UAAU,aAAa;QACrB,eAAe,EAAE,iBAAiB,CAAA;QAClC,uBAAuB,EAAE,iBAAiB,CAAA;KAC3C;CACF"}

package/dist/types/index.js

@@ -0,0 +1,6 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthProviderRegistrationPrefix = exports.AuthIdentifiersRegistrationName = void 0;
+exports.AuthIdentifiersRegistrationName = "auth_providers_identifier";
+exports.AuthProviderRegistrationPrefix = "au_";
+//# sourceMappingURL=index.js.map

package/dist/types/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":";;;AAUa,QAAA,+BAA+B,GAAG,2BAA2B,CAAA;AAE7D,QAAA,8BAA8B,GAAG,KAAK,CAAA"}

package/package.json

@@ -0,0 +1,45 @@
+{
+  "name": "@acmekit/auth",
+  "version": "2.13.1",
+  "description": "AcmeKit Auth module",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "files": [
+    "dist",
+    "!dist/**/__tests__",
+    "!dist/**/__mocks__",
+    "!dist/**/__fixtures__"
+  ],
+  "engines": {
+    "node": ">=20"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/acmekit/acmekit",
+    "directory": "packages/modules/auth"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "author": "AcmeKit",
+  "license": "MIT",
+  "scripts": {
+    "watch": "yarn run -T tsc --build --watch",
+    "watch:test": "yarn run -T tsc --build tsconfig.spec.json --watch",
+    "resolve:aliases": "yarn run -T tsc --showConfig -p tsconfig.json > tsconfig.resolved.json && yarn run -T tsc-alias -p tsconfig.resolved.json && yarn run -T rimraf tsconfig.resolved.json",
+    "build": "yarn run -T rimraf dist && yarn run -T tsc --build && npm run resolve:aliases",
+    "test": "../../../node_modules/.bin/jest --bail --passWithNoTests --forceExit --testPathPattern=src",
+    "test:integration": "../../../node_modules/.bin/jest --passWithNoTests --forceExit --testPathPattern=\"integration-tests/__tests__/.*\\.ts\"",
+    "migration:initial": "MIKRO_ORM_CLI_CONFIG=./mikro-orm.config.dev.ts MIKRO_ORM_ALLOW_GLOBAL_CLI=true acmekit-mikro-orm migration:create --initial",
+    "migration:create": "MIKRO_ORM_CLI_CONFIG=./mikro-orm.config.dev.ts MIKRO_ORM_ALLOW_GLOBAL_CLI=true acmekit-mikro-orm migration:create",
+    "migration:up": "MIKRO_ORM_CLI_CONFIG=./mikro-orm.config.dev.ts MIKRO_ORM_ALLOW_GLOBAL_CLI=true acmekit-mikro-orm migration:up",
+    "orm:cache:clear": "MIKRO_ORM_CLI_CONFIG=./mikro-orm.config.dev.ts MIKRO_ORM_ALLOW_GLOBAL_CLI=true acmekit-mikro-orm cache:clear"
+  },
+  "devDependencies": {
+    "@acmekit/framework": "2.13.1",
+    "@acmekit/test-utils": "2.13.1"
+  },
+  "peerDependencies": {
+    "@acmekit/framework": "2.13.1"
+  }
+}