@agentforge-io/nest 2.0.22 → 2.1.0

package/dist/modules/admin/admin-tenants.controller.js

@@ -1,178 +0,0 @@
-"use strict";
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.AdminTenantsController = void 0;
-const common_1 = require("@nestjs/common");
-const swagger_1 = require("@nestjs/swagger");
-const core_1 = require("@agentforge/core");
-const current_user_decorator_1 = require("../auth/decorators/current-user.decorator");
-const platform_admin_guard_1 = require("./platform-admin.guard");
-let AdminTenantsController = class AdminTenantsController {
-    constructor(tenants, apiKeys) {
-        this.tenants = tenants;
-        this.apiKeys = apiKeys;
-    }
-    async createTenant(body, userId) {
-        this.ensureB2B();
-        if (!body?.name)
-            throw new common_1.BadRequestException('name is required');
-        return this.tenants.create({
-            name: body.name,
-            ownerUserId: userId,
-            planId: body.planId,
-        });
-    }
-    async listMyTenants(user, q, status, limit, offset) {
-        this.ensureB2B();
-        const limitNum = limit ? Number(limit) : undefined;
-        const offsetNum = offset ? Number(offset) : undefined;
-        const isActive = status === 'active' ? true : status === 'inactive' ? false : undefined;
-        const opts = { q, isActive, limit: limitNum, offset: offsetNum };
-        const result = user.isPlatformAdmin
-            ? await this.tenants.listAll(opts)
-            : await this.tenants.listForOwner(user.userId, opts);
-        return {
-            items: result.items,
-            total: result.total,
-            limit: limitNum ?? null,
-            offset: offsetNum ?? 0,
-        };
-    }
-    async issueApiKey(tenantId, body, user) {
-        this.ensureB2BWithApiKeys();
-        const userId = user.userId;
-        if (!body?.name)
-            throw new common_1.BadRequestException('name is required');
-        await this.tenants.assertOwner(tenantId, userId, { allowAnyOwner: user.isPlatformAdmin });
-        const minted = await this.apiKeys.issue({
-            tenantId,
-            name: body.name,
-            scopes: body.scopes,
-            expiresAt: body.expiresAt ? new Date(body.expiresAt) : undefined,
-        });
-        return {
-            key: minted.key,
-            id: minted.entity.id,
-            name: minted.entity.name,
-            keyPrefix: minted.entity.keyPrefix,
-            scopes: minted.entity.scopes,
-            expiresAt: minted.entity.expiresAt,
-            createdAt: minted.entity.createdAt,
-        };
-    }
-    async listApiKeys(tenantId, user) {
-        this.ensureB2BWithApiKeys();
-        const userId = user.userId;
-        await this.tenants.assertOwner(tenantId, userId, { allowAnyOwner: user.isPlatformAdmin });
-        const keys = await this.apiKeys.listForTenant(tenantId);
-        return keys.map((k) => ({
-            id: k.id,
-            name: k.name,
-            keyPrefix: k.keyPrefix,
-            scopes: k.scopes,
-            createdAt: k.createdAt,
-            lastUsedAt: k.lastUsedAt,
-            expiresAt: k.expiresAt,
-            revokedAt: k.revokedAt,
-        }));
-    }
-    async revokeApiKey(tenantId, keyId, user) {
-        this.ensureB2BWithApiKeys();
-        const userId = user.userId;
-        await this.tenants.assertOwner(tenantId, userId, { allowAnyOwner: user.isPlatformAdmin });
-        await this.apiKeys.revoke(keyId);
-    }
-    ensureB2B() {
-        if (!this.tenants) {
-            throw new common_1.NotImplementedException({
-                error: 'b2b_not_configured',
-                message: 'B2B mode is not configured. Pass tenant/apiKey/externalUser repositories to createAgentForge.',
-            });
-        }
-    }
-    ensureB2BWithApiKeys() {
-        if (!this.tenants || !this.apiKeys) {
-            throw new common_1.NotImplementedException({
-                error: 'b2b_not_configured',
-                message: 'B2B mode is not configured. Pass tenant/apiKey/externalUser repositories to createAgentForge.',
-            });
-        }
-    }
-};
-exports.AdminTenantsController = AdminTenantsController;
-__decorate([
-    (0, common_1.Post)(),
-    (0, swagger_1.ApiOperation)({ summary: 'Create a tenant owned by the current user' }),
-    (0, common_1.HttpCode)(common_1.HttpStatus.CREATED),
-    __param(0, (0, common_1.Body)()),
-    __param(1, (0, current_user_decorator_1.CurrentUser)('userId')),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [Object, String]),
-    __metadata("design:returntype", Promise)
-], AdminTenantsController.prototype, "createTenant", null);
-__decorate([
-    (0, common_1.Get)(),
-    (0, swagger_1.ApiOperation)({
-        summary: 'List tenants. Platform admins see all; everyone else sees only the tenants they own.',
-    }),
-    __param(0, (0, current_user_decorator_1.CurrentUser)()),
-    __param(1, (0, common_1.Query)('q')),
-    __param(2, (0, common_1.Query)('status')),
-    __param(3, (0, common_1.Query)('limit')),
-    __param(4, (0, common_1.Query)('offset')),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [Object, String, String, String, String]),
-    __metadata("design:returntype", Promise)
-], AdminTenantsController.prototype, "listMyTenants", null);
-__decorate([
-    (0, common_1.Post)(':tenantId/api-keys'),
-    (0, swagger_1.ApiOperation)({ summary: 'Issue a new API key for a tenant (owner-only)' }),
-    (0, common_1.HttpCode)(common_1.HttpStatus.CREATED),
-    __param(0, (0, common_1.Param)('tenantId')),
-    __param(1, (0, common_1.Body)()),
-    __param(2, (0, current_user_decorator_1.CurrentUser)()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [String, Object, Object]),
-    __metadata("design:returntype", Promise)
-], AdminTenantsController.prototype, "issueApiKey", null);
-__decorate([
-    (0, common_1.Get)(':tenantId/api-keys'),
-    (0, swagger_1.ApiOperation)({ summary: 'List API keys for a tenant (owner-only)' }),
-    __param(0, (0, common_1.Param)('tenantId')),
-    __param(1, (0, current_user_decorator_1.CurrentUser)()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [String, Object]),
-    __metadata("design:returntype", Promise)
-], AdminTenantsController.prototype, "listApiKeys", null);
-__decorate([
-    (0, common_1.Delete)(':tenantId/api-keys/:keyId'),
-    (0, swagger_1.ApiOperation)({ summary: 'Revoke an API key (owner-only)' }),
-    (0, common_1.HttpCode)(common_1.HttpStatus.NO_CONTENT),
-    __param(0, (0, common_1.Param)('tenantId')),
-    __param(1, (0, common_1.Param)('keyId')),
-    __param(2, (0, current_user_decorator_1.CurrentUser)()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [String, String, Object]),
-    __metadata("design:returntype", Promise)
-], AdminTenantsController.prototype, "revokeApiKey", null);
-exports.AdminTenantsController = AdminTenantsController = __decorate([
-    (0, swagger_1.ApiTags)('Admin: Tenants'),
-    (0, common_1.Controller)('admin/tenants'),
-    (0, common_1.UseGuards)(platform_admin_guard_1.RequireUserSessionGuard),
-    __param(0, (0, common_1.Optional)()),
-    __param(1, (0, common_1.Optional)()),
-    __metadata("design:paramtypes", [core_1.TenantService,
-        core_1.ApiKeyService])
-], AdminTenantsController);
-//# sourceMappingURL=admin-tenants.controller.js.map

package/dist/modules/admin/admin-tenants.controller.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"admin-tenants.controller.js","sourceRoot":"","sources":["../../../src/modules/admin/admin-tenants.controller.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAcwB;AACxB,6CAAwD;AACxD,2CAAgE;AAChE,sFAAuF;AACvF,iEAAiE;AAc1D,IAAM,sBAAsB,GAA5B,MAAM,sBAAsB;IACjC,YAC+B,OAAuB,EACvB,OAAuB;QADvB,YAAO,GAAP,OAAO,CAAgB;QACvB,YAAO,GAAP,OAAO,CAAgB;IACnD,CAAC;IAOE,AAAN,KAAK,CAAC,YAAY,CACR,IAAwC,EACzB,MAAc;QAErC,IAAI,CAAC,SAAS,EAAE,CAAC;QACjB,IAAI,CAAC,IAAI,EAAE,IAAI;YAAE,MAAM,IAAI,4BAAmB,CAAC,kBAAkB,CAAC,CAAC;QACnE,OAAO,IAAI,CAAC,OAAQ,CAAC,MAAM,CAAC;YAC1B,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,WAAW,EAAE,MAAM;YACnB,MAAM,EAAE,IAAI,CAAC,MAAM;SACpB,CAAC,CAAC;IACL,CAAC;IAOK,AAAN,KAAK,CAAC,aAAa,CACF,IAAc,EACjB,CAAU,EACL,MAAe,EAChB,KAAc,EACb,MAAe;QAEhC,IAAI,CAAC,SAAS,EAAE,CAAC;QACjB,MAAM,QAAQ,GAAG,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QACnD,MAAM,SAAS,GAAG,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QAGtD,MAAM,QAAQ,GACZ,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,KAAK,UAAU,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;QACzE,MAAM,IAAI,GAAG,EAAE,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,CAAC;QACjE,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe;YACjC,CAAC,CAAC,MAAM,IAAI,CAAC,OAAQ,CAAC,OAAO,CAAC,IAAI,CAAC;YACnC,CAAC,CAAC,MAAM,IAAI,CAAC,OAAQ,CAAC,YAAY,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QACxD,OAAO;YACL,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,KAAK,EAAE,QAAQ,IAAI,IAAI;YACvB,MAAM,EAAE,SAAS,IAAI,CAAC;SACvB,CAAC;IACJ,CAAC;IAOK,AAAN,KAAK,CAAC,WAAW,CACI,QAAgB,EAC3B,IAA8D,EACvD,IAAc;QAE7B,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC5B,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;QAC3B,IAAI,CAAC,IAAI,EAAE,IAAI;YAAE,MAAM,IAAI,4BAAmB,CAAC,kBAAkB,CAAC,CAAC;QACnE,MAAM,IAAI,CAAC,OAAQ,CAAC,WAAW,CAAC,QAAQ,EAAE,MAAM,EAAE,EAAE,aAAa,EAAE,IAAI,CAAC,eAAe,EAAE,CAAC,CAAC;QAE3F,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,OAAQ,CAAC,KAAK,CAAC;YACvC,QAAQ;YACR,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS;SACjE,CAAC,CAAC;QAGH,OAAO;YACL,GAAG,EAAE,MAAM,CAAC,GAAG;YACf,EAAE,EAAE,MAAM,CAAC,MAAM,CAAC,EAAE;YACpB,IAAI,EAAE,MAAM,CAAC,MAAM,CAAC,IAAI;YACxB,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,SAAS;YAClC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM;YAC5B,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,SAAS;YAClC,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,SAAS;SACnC,CAAC;IACJ,CAAC;IAIK,AAAN,KAAK,CAAC,WAAW,CACI,QAAgB,EACpB,IAAc;QAE7B,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC5B,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;QAC3B,MAAM,IAAI,CAAC,OAAQ,CAAC,WAAW,CAAC,QAAQ,EAAE,MAAM,EAAE,EAAE,aAAa,EAAE,IAAI,CAAC,eAAe,EAAE,CAAC,CAAC;QAC3F,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,OAAQ,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC;QAEzD,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACtB,EAAE,EAAE,CAAC,CAAC,EAAE;YACR,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,SAAS,EAAE,CAAC,CAAC,SAAS;YACtB,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,SAAS,EAAE,CAAC,CAAC,SAAS;YACtB,UAAU,EAAE,CAAC,CAAC,UAAU;YACxB,SAAS,EAAE,CAAC,CAAC,SAAS;YACtB,SAAS,EAAE,CAAC,CAAC,SAAS;SACvB,CAAC,CAAC,CAAC;IACN,CAAC;IAKK,AAAN,KAAK,CAAC,YAAY,CACG,QAAgB,EACnB,KAAa,EACd,IAAc;QAE7B,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC5B,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;QAC3B,MAAM,IAAI,CAAC,OAAQ,CAAC,WAAW,CAAC,QAAQ,EAAE,MAAM,EAAE,EAAE,aAAa,EAAE,IAAI,CAAC,eAAe,EAAE,CAAC,CAAC;QAC3F,MAAM,IAAI,CAAC,OAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACpC,CAAC;IAIO,SAAS;QACf,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YAClB,MAAM,IAAI,gCAAuB,CAAC;gBAChC,KAAK,EAAE,oBAAoB;gBAC3B,OAAO,EACL,+FAA+F;aAClG,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAEO,oBAAoB;QAC1B,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YACnC,MAAM,IAAI,gCAAuB,CAAC;gBAChC,KAAK,EAAE,oBAAoB;gBAC3B,OAAO,EACL,+FAA+F;aAClG,CAAC,CAAC;QACL,CAAC;IACH,CAAC;CACF,CAAA;AAnJY,wDAAsB;AAW3B;IAHL,IAAA,aAAI,GAAE;IACN,IAAA,sBAAY,EAAC,EAAE,OAAO,EAAE,2CAA2C,EAAE,CAAC;IACtE,IAAA,iBAAQ,EAAC,mBAAU,CAAC,OAAO,CAAC;IAE1B,WAAA,IAAA,aAAI,GAAE,CAAA;IACN,WAAA,IAAA,oCAAW,EAAC,QAAQ,CAAC,CAAA;;;;0DASvB;AAOK;IALL,IAAA,YAAG,GAAE;IACL,IAAA,sBAAY,EAAC;QACZ,OAAO,EACL,sFAAsF;KACzF,CAAC;IAEC,WAAA,IAAA,oCAAW,GAAE,CAAA;IACb,WAAA,IAAA,cAAK,EAAC,GAAG,CAAC,CAAA;IACV,WAAA,IAAA,cAAK,EAAC,QAAQ,CAAC,CAAA;IACf,WAAA,IAAA,cAAK,EAAC,OAAO,CAAC,CAAA;IACd,WAAA,IAAA,cAAK,EAAC,QAAQ,CAAC,CAAA;;;;2DAmBjB;AAOK;IAHL,IAAA,aAAI,EAAC,oBAAoB,CAAC;IAC1B,IAAA,sBAAY,EAAC,EAAE,OAAO,EAAE,+CAA+C,EAAE,CAAC;IAC1E,IAAA,iBAAQ,EAAC,mBAAU,CAAC,OAAO,CAAC;IAE1B,WAAA,IAAA,cAAK,EAAC,UAAU,CAAC,CAAA;IACjB,WAAA,IAAA,aAAI,GAAE,CAAA;IACN,WAAA,IAAA,oCAAW,GAAE,CAAA;;;;yDAwBf;AAIK;IAFL,IAAA,YAAG,EAAC,oBAAoB,CAAC;IACzB,IAAA,sBAAY,EAAC,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;IAElE,WAAA,IAAA,cAAK,EAAC,UAAU,CAAC,CAAA;IACjB,WAAA,IAAA,oCAAW,GAAE,CAAA;;;;yDAiBf;AAKK;IAHL,IAAA,eAAM,EAAC,2BAA2B,CAAC;IACnC,IAAA,sBAAY,EAAC,EAAE,OAAO,EAAE,gCAAgC,EAAE,CAAC;IAC3D,IAAA,iBAAQ,EAAC,mBAAU,CAAC,UAAU,CAAC;IAE7B,WAAA,IAAA,cAAK,EAAC,UAAU,CAAC,CAAA;IACjB,WAAA,IAAA,cAAK,EAAC,OAAO,CAAC,CAAA;IACd,WAAA,IAAA,oCAAW,GAAE,CAAA;;;;0DAMf;iCA5HU,sBAAsB;IAHlC,IAAA,iBAAO,EAAC,gBAAgB,CAAC;IACzB,IAAA,mBAAU,EAAC,eAAe,CAAC;IAC3B,IAAA,kBAAS,EAAC,8CAAuB,CAAC;IAG9B,WAAA,IAAA,iBAAQ,GAAE,CAAA;IACV,WAAA,IAAA,iBAAQ,GAAE,CAAA;qCAD4B,oBAAa;QACb,oBAAa;GAH3C,sBAAsB,CAmJlC"}

package/dist/modules/admin/admin-users.controller.d.ts

@@ -1,41 +0,0 @@
-import { AuthService } from '@agentforge/core';
-export declare class AdminUsersController {
-    private readonly auth;
-    constructor(auth: AuthService);
-    list(q?: string, role?: string, status?: string, emailVerified?: string, limit?: string, offset?: string): Promise<{
-        items: {
-            id: string;
-            email: string | undefined;
-            name: string | undefined;
-            role: import("@agentforge/core").UserRole;
-            isActive: boolean;
-            currentPlanId: string;
-            createdAt: Date;
-            lastLoginAt: Date | undefined;
-            emailVerifiedAt: Date | undefined;
-        }[];
-        total: number;
-        limit: number | null;
-        offset: number;
-    }>;
-    get(userId: string): Promise<{
-        id: string;
-        email: string | undefined;
-        name: string | undefined;
-        role: import("@agentforge/core").UserRole;
-        isActive: boolean;
-        currentPlanId: string;
-        creditsBalance: number;
-        providerCustomerId: string | undefined;
-        createdAt: Date;
-        lastLoginAt: Date | undefined;
-        emailVerifiedAt: Date | undefined;
-    }>;
-    setRole(userId: string, body: {
-        role?: 'user' | 'platform_admin';
-    }): Promise<{
-        id: string;
-        email: string | undefined;
-        role: import("@agentforge/core").UserRole;
-    }>;
-}

package/dist/modules/admin/admin-users.controller.js

@@ -1,121 +0,0 @@
-"use strict";
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.AdminUsersController = void 0;
-const common_1 = require("@nestjs/common");
-const swagger_1 = require("@nestjs/swagger");
-const core_1 = require("@agentforge/core");
-const platform_admin_guard_1 = require("./platform-admin.guard");
-let AdminUsersController = class AdminUsersController {
-    constructor(auth) {
-        this.auth = auth;
-    }
-    async list(q, role, status, emailVerified, limit, offset) {
-        const roleFilter = role === 'platform_admin' || role === 'user' ? role : undefined;
-        const isActive = status === 'active' ? true : status === 'inactive' ? false : undefined;
-        const verified = emailVerified === 'true' ? true : emailVerified === 'false' ? false : undefined;
-        const limitNum = limit ? Number(limit) : undefined;
-        const offsetNum = offset ? Number(offset) : undefined;
-        const result = await this.auth.listUsers({
-            q,
-            role: roleFilter,
-            isActive,
-            emailVerified: verified,
-            limit: limitNum,
-            offset: offsetNum,
-        });
-        return {
-            items: result.items.map((u) => ({
-                id: u.id,
-                email: u.email,
-                name: u.name,
-                role: u.role,
-                isActive: u.isActive,
-                currentPlanId: u.currentPlanId,
-                createdAt: u.createdAt,
-                lastLoginAt: u.lastLoginAt,
-                emailVerifiedAt: u.emailVerifiedAt,
-            })),
-            total: result.total,
-            limit: limitNum ?? null,
-            offset: offsetNum ?? 0,
-        };
-    }
-    async get(userId) {
-        const user = await this.auth.getFullUserById(userId);
-        if (!user)
-            throw new common_1.NotFoundException(`User "${userId}" not found`);
-        return {
-            id: user.id,
-            email: user.email,
-            name: user.name,
-            role: user.role,
-            isActive: user.isActive,
-            currentPlanId: user.currentPlanId,
-            creditsBalance: user.creditsBalance,
-            providerCustomerId: user.providerCustomerId,
-            createdAt: user.createdAt,
-            lastLoginAt: user.lastLoginAt,
-            emailVerifiedAt: user.emailVerifiedAt,
-        };
-    }
-    async setRole(userId, body) {
-        const role = body?.role;
-        if (role !== 'user' && role !== 'platform_admin') {
-            throw new common_1.BadRequestException('role must be "user" or "platform_admin"');
-        }
-        const updated = await this.auth.setUserRole(userId, role);
-        return { id: updated.id, email: updated.email, role: updated.role };
-    }
-};
-exports.AdminUsersController = AdminUsersController;
-__decorate([
-    (0, common_1.Get)(),
-    (0, swagger_1.ApiOperation)({ summary: 'List users (paginated, newest first)' }),
-    __param(0, (0, common_1.Query)('q')),
-    __param(1, (0, common_1.Query)('role')),
-    __param(2, (0, common_1.Query)('status')),
-    __param(3, (0, common_1.Query)('emailVerified')),
-    __param(4, (0, common_1.Query)('limit')),
-    __param(5, (0, common_1.Query)('offset')),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [String, String, String, String, String, String]),
-    __metadata("design:returntype", Promise)
-], AdminUsersController.prototype, "list", null);
-__decorate([
-    (0, common_1.Get)(':userId'),
-    (0, swagger_1.ApiOperation)({ summary: 'Get a single user by id' }),
-    __param(0, (0, common_1.Param)('userId')),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [String]),
-    __metadata("design:returntype", Promise)
-], AdminUsersController.prototype, "get", null);
-__decorate([
-    (0, common_1.Patch)(':userId/role'),
-    (0, swagger_1.ApiOperation)({
-        summary: 'Change a user role. Refuses to demote the last platform_admin (409).',
-    }),
-    __param(0, (0, common_1.Param)('userId')),
-    __param(1, (0, common_1.Body)()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [String, Object]),
-    __metadata("design:returntype", Promise)
-], AdminUsersController.prototype, "setRole", null);
-exports.AdminUsersController = AdminUsersController = __decorate([
-    (0, swagger_1.ApiTags)('Admin: Users'),
-    (0, common_1.Controller)('admin/users'),
-    (0, common_1.UseGuards)(platform_admin_guard_1.PlatformAdminGuard),
-    __metadata("design:paramtypes", [core_1.AuthService])
-], AdminUsersController);
-//# sourceMappingURL=admin-users.controller.js.map

package/dist/modules/admin/admin-users.controller.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"admin-users.controller.js","sourceRoot":"","sources":["../../../src/modules/admin/admin-users.controller.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAUwB;AACxB,6CAAwD;AACxD,2CAA+C;AAC/C,iEAA4D;AAYrD,IAAM,oBAAoB,GAA1B,MAAM,oBAAoB;IAC/B,YAA6B,IAAiB;QAAjB,SAAI,GAAJ,IAAI,CAAa;IAAG,CAAC;IAI5C,AAAN,KAAK,CAAC,IAAI,CACI,CAAU,EACP,IAAa,EACX,MAAe,EACR,aAAsB,EAC9B,KAAc,EACb,MAAe;QAEhC,MAAM,UAAU,GACd,IAAI,KAAK,gBAAgB,IAAI,IAAI,KAAK,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;QAClE,MAAM,QAAQ,GACZ,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,KAAK,UAAU,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;QACzE,MAAM,QAAQ,GACZ,aAAa,KAAK,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,aAAa,KAAK,OAAO,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;QAClF,MAAM,QAAQ,GAAG,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QACnD,MAAM,SAAS,GAAG,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QAEtD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC;YACvC,CAAC;YACD,IAAI,EAAE,UAAU;YAChB,QAAQ;YACR,aAAa,EAAE,QAAQ;YACvB,KAAK,EAAE,QAAQ;YACf,MAAM,EAAE,SAAS;SAClB,CAAC,CAAC;QAEH,OAAO;YACL,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBAC9B,EAAE,EAAE,CAAC,CAAC,EAAE;gBACR,KAAK,EAAE,CAAC,CAAC,KAAK;gBACd,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,QAAQ,EAAE,CAAC,CAAC,QAAQ;gBACpB,aAAa,EAAE,CAAC,CAAC,aAAa;gBAC9B,SAAS,EAAE,CAAC,CAAC,SAAS;gBACtB,WAAW,EAAE,CAAC,CAAC,WAAW;gBAC1B,eAAe,EAAE,CAAC,CAAC,eAAe;aACnC,CAAC,CAAC;YACH,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,KAAK,EAAE,QAAQ,IAAI,IAAI;YACvB,MAAM,EAAE,SAAS,IAAI,CAAC;SACvB,CAAC;IACJ,CAAC;IAIK,AAAN,KAAK,CAAC,GAAG,CAAkB,MAAc;QACvC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;QACrD,IAAI,CAAC,IAAI;YAAE,MAAM,IAAI,0BAAiB,CAAC,SAAS,MAAM,aAAa,CAAC,CAAC;QACrE,OAAO;YACL,EAAE,EAAE,IAAI,CAAC,EAAE;YACX,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,aAAa,EAAE,IAAI,CAAC,aAAa;YACjC,cAAc,EAAE,IAAI,CAAC,cAAc;YACnC,kBAAkB,EAAE,IAAI,CAAC,kBAAkB;YAC3C,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,eAAe,EAAE,IAAI,CAAC,eAAe;SACtC,CAAC;IACJ,CAAC;IAOK,AAAN,KAAK,CAAC,OAAO,CACM,MAAc,EACvB,IAA0C;QAElD,MAAM,IAAI,GAAG,IAAI,EAAE,IAAI,CAAC;QACxB,IAAI,IAAI,KAAK,MAAM,IAAI,IAAI,KAAK,gBAAgB,EAAE,CAAC;YACjD,MAAM,IAAI,4BAAmB,CAAC,yCAAyC,CAAC,CAAC;QAC3E,CAAC;QACD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QAC1D,OAAO,EAAE,EAAE,EAAE,OAAO,CAAC,EAAE,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,IAAI,EAAE,CAAC;IACtE,CAAC;CACF,CAAA;AArFY,oDAAoB;AAKzB;IAFL,IAAA,YAAG,GAAE;IACL,IAAA,sBAAY,EAAC,EAAE,OAAO,EAAE,sCAAsC,EAAE,CAAC;IAE/D,WAAA,IAAA,cAAK,EAAC,GAAG,CAAC,CAAA;IACV,WAAA,IAAA,cAAK,EAAC,MAAM,CAAC,CAAA;IACb,WAAA,IAAA,cAAK,EAAC,QAAQ,CAAC,CAAA;IACf,WAAA,IAAA,cAAK,EAAC,eAAe,CAAC,CAAA;IACtB,WAAA,IAAA,cAAK,EAAC,OAAO,CAAC,CAAA;IACd,WAAA,IAAA,cAAK,EAAC,QAAQ,CAAC,CAAA;;;;gDAoCjB;AAIK;IAFL,IAAA,YAAG,EAAC,SAAS,CAAC;IACd,IAAA,sBAAY,EAAC,EAAE,OAAO,EAAE,yBAAyB,EAAE,CAAC;IAC1C,WAAA,IAAA,cAAK,EAAC,QAAQ,CAAC,CAAA;;;;+CAgBzB;AAOK;IALL,IAAA,cAAK,EAAC,cAAc,CAAC;IACrB,IAAA,sBAAY,EAAC;QACZ,OAAO,EACL,sEAAsE;KACzE,CAAC;IAEC,WAAA,IAAA,cAAK,EAAC,QAAQ,CAAC,CAAA;IACf,WAAA,IAAA,aAAI,GAAE,CAAA;;;;mDAQR;+BApFU,oBAAoB;IAHhC,IAAA,iBAAO,EAAC,cAAc,CAAC;IACvB,IAAA,mBAAU,EAAC,aAAa,CAAC;IACzB,IAAA,kBAAS,EAAC,yCAAkB,CAAC;qCAEO,kBAAW;GADnC,oBAAoB,CAqFhC"}

package/dist/modules/admin/admin.module.d.ts

@@ -1,2 +0,0 @@
-export declare class AdminModule {
-}

package/dist/modules/admin/admin.module.js

@@ -1,26 +0,0 @@
-"use strict";
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.AdminModule = void 0;
-const common_1 = require("@nestjs/common");
-const admin_tenants_controller_1 = require("./admin-tenants.controller");
-const admin_tenant_agents_controller_1 = require("./admin-tenant-agents.controller");
-const admin_users_controller_1 = require("./admin-users.controller");
-let AdminModule = class AdminModule {
-};
-exports.AdminModule = AdminModule;
-exports.AdminModule = AdminModule = __decorate([
-    (0, common_1.Module)({
-        controllers: [
-            admin_tenants_controller_1.AdminTenantsController,
-            admin_tenant_agents_controller_1.AdminTenantAgentsController,
-            admin_users_controller_1.AdminUsersController,
-        ],
-    })
-], AdminModule);
-//# sourceMappingURL=admin.module.js.map

package/dist/modules/admin/admin.module.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"admin.module.js","sourceRoot":"","sources":["../../../src/modules/admin/admin.module.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAAwC;AACxC,yEAAoE;AACpE,qFAA+E;AAC/E,qEAAgE;AAoBzD,IAAM,WAAW,GAAjB,MAAM,WAAW;CAAG,CAAA;AAAd,kCAAW;sBAAX,WAAW;IAPvB,IAAA,eAAM,EAAC;QACN,WAAW,EAAE;YACX,iDAAsB;YACtB,4DAA2B;YAC3B,6CAAoB;SACrB;KACF,CAAC;GACW,WAAW,CAAG"}

package/dist/modules/admin/platform-admin.guard.d.ts

@@ -1,7 +0,0 @@
-import { CanActivate, ExecutionContext } from '@nestjs/common';
-export declare class RequireUserSessionGuard implements CanActivate {
-    canActivate(context: ExecutionContext): boolean;
-}
-export declare class PlatformAdminGuard implements CanActivate {
-    canActivate(context: ExecutionContext): boolean;
-}

package/dist/modules/admin/platform-admin.guard.js

@@ -1,52 +0,0 @@
-"use strict";
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.PlatformAdminGuard = exports.RequireUserSessionGuard = void 0;
-const common_1 = require("@nestjs/common");
-function isApiKey(req) {
-    return req.user?.isApiKey === true;
-}
-let RequireUserSessionGuard = class RequireUserSessionGuard {
-    canActivate(context) {
-        const req = context.switchToHttp().getRequest();
-        if (isApiKey(req)) {
-            throw new common_1.ForbiddenException({
-                error: 'admin_required',
-                message: 'Use end-user auth (JWT) for admin endpoints.',
-            });
-        }
-        return true;
-    }
-};
-exports.RequireUserSessionGuard = RequireUserSessionGuard;
-exports.RequireUserSessionGuard = RequireUserSessionGuard = __decorate([
-    (0, common_1.Injectable)()
-], RequireUserSessionGuard);
-let PlatformAdminGuard = class PlatformAdminGuard {
-    canActivate(context) {
-        const req = context.switchToHttp().getRequest();
-        if (isApiKey(req)) {
-            throw new common_1.ForbiddenException({
-                error: 'admin_required',
-                message: 'Use end-user auth (JWT) for admin endpoints.',
-            });
-        }
-        if (!req.user?.isPlatformAdmin) {
-            throw new common_1.ForbiddenException({
-                error: 'platform_admin_required',
-                message: 'This endpoint manages the AgentForge instance — your account does not have platform-admin privileges.',
-            });
-        }
-        return true;
-    }
-};
-exports.PlatformAdminGuard = PlatformAdminGuard;
-exports.PlatformAdminGuard = PlatformAdminGuard = __decorate([
-    (0, common_1.Injectable)()
-], PlatformAdminGuard);
-//# sourceMappingURL=platform-admin.guard.js.map

package/dist/modules/admin/platform-admin.guard.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"platform-admin.guard.js","sourceRoot":"","sources":["../../../src/modules/admin/platform-admin.guard.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAKwB;AAMxB,SAAS,QAAQ,CAAC,GAAgB;IAChC,OAAO,GAAG,CAAC,IAAI,EAAE,QAAQ,KAAK,IAAI,CAAC;AACrC,CAAC;AASM,IAAM,uBAAuB,GAA7B,MAAM,uBAAuB;IAClC,WAAW,CAAC,OAAyB;QACnC,MAAM,GAAG,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAe,CAAC;QAC7D,IAAI,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YAClB,MAAM,IAAI,2BAAkB,CAAC;gBAC3B,KAAK,EAAE,gBAAgB;gBACvB,OAAO,EAAE,8CAA8C;aACxD,CAAC,CAAC;QACL,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;CACF,CAAA;AAXY,0DAAuB;kCAAvB,uBAAuB;IADnC,IAAA,mBAAU,GAAE;GACA,uBAAuB,CAWnC;AAQM,IAAM,kBAAkB,GAAxB,MAAM,kBAAkB;IAC7B,WAAW,CAAC,OAAyB;QACnC,MAAM,GAAG,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAe,CAAC;QAE7D,IAAI,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YAClB,MAAM,IAAI,2BAAkB,CAAC;gBAC3B,KAAK,EAAE,gBAAgB;gBACvB,OAAO,EAAE,8CAA8C;aACxD,CAAC,CAAC;QACL,CAAC;QAED,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,eAAe,EAAE,CAAC;YAC/B,MAAM,IAAI,2BAAkB,CAAC;gBAC3B,KAAK,EAAE,yBAAyB;gBAChC,OAAO,EACL,uGAAuG;aAC1G,CAAC,CAAC;QACL,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;CACF,CAAA;AArBY,gDAAkB;6BAAlB,kBAAkB;IAD9B,IAAA,mBAAU,GAAE;GACA,kBAAkB,CAqB9B"}

package/dist/modules/auth/auth.controller.d.ts

@@ -1,63 +0,0 @@
-import type { Request, Response } from 'express';
-import { AuthService } from './auth.service';
-import { RegisterDto } from './dto/register.dto';
-import { LoginDto } from './dto/login.dto';
-import { AuthUser } from './decorators/current-user.decorator';
-import type { AgentForgeConfig } from '../../types';
-export declare class AuthController {
-    private readonly config;
-    private readonly auth;
-    constructor(config: AgentForgeConfig, auth: AuthService);
-    register(dto: RegisterDto, req: Request, res: Response): Promise<{
-        accessToken: string;
-        user: {
-            id: string;
-            email?: string;
-            name?: string;
-        };
-    }>;
-    login(dto: LoginDto, req: Request, res: Response): Promise<{
-        accessToken: string;
-        user: {
-            id: string;
-            email?: string;
-            name?: string;
-        };
-    }>;
-    refresh(req: Request, res: Response): Promise<{
-        accessToken: string;
-        user: {
-            id: string;
-            email?: string;
-            name?: string;
-        };
-    }>;
-    logout(req: Request, res: Response): Promise<void>;
-    logoutAll(userId: string, res: Response): Promise<void>;
-    me(user: AuthUser): AuthUser;
-    verifyEmail(body: {
-        token: string;
-    }): Promise<{
-        userId: string;
-    }>;
-    resendVerification(userId: string): Promise<void>;
-    requestPasswordReset(body: {
-        email: string;
-    }): Promise<{
-        ok: boolean;
-    }>;
-    resetPassword(body: {
-        token: string;
-        password: string;
-    }): Promise<{
-        ok: boolean;
-    }>;
-    private accessCookieName;
-    private refreshCookieName;
-    private cookieSecure;
-    private metaFrom;
-    private setSessionCookies;
-    private clearSessionCookies;
-    private publicResult;
-    private parseAccessTtlMs;
-}