@aifabrix/miso-client 1.0.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 eSystems Nordic Ltd.
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,147 @@
+# AI Fabrix Miso Client SDK
+
+[![npm version](https://badge.fury.io/js/%40aifabrix%2Fmiso-client.svg)](https://badge.fury.io/js/%40aifabrix%2Fmiso-client)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
+
+The **AI Fabrix Miso Client SDK** is a TypeScript/JavaScript library that provides authentication, authorization, and logging capabilities for applications integrated with the AI Fabrix platform. It offers seamless integration with Keycloak authentication, Redis caching, and centralized logging.
+
+## 🚀 Features
+
+- **🔐 Authentication**: Token validation and user management
+- **🛡️ Authorization**: Role and permission-based access control
+- **📊 Logging**: Centralized logging with audit trails and API key authentication
+- **⚡ Caching**: Redis-based caching for improved performance
+- **🔄 Fallback**: Automatic fallback to controller when Redis is unavailable
+- **🔑 API Key Security**: Secure API key authentication for application logging
+- **📱 Multi-platform**: Works in Node.js and browser environments
+- **🔧 TypeScript**: Full TypeScript support with type definitions
+
+## 📚 Documentation
+
+- **[Getting Started](docs/getting-started.md)** - Installation and basic setup
+- **[API Reference](docs/api-reference.md)** - Complete API documentation
+- **[Configuration](docs/configuration.md)** - Configuration options and examples
+- **[Examples](docs/examples.md)** - Practical usage examples
+- **[Troubleshooting](docs/troubleshooting.md)** - Common issues and solutions
+
+## 🏃‍♂️ Quick Start
+
+```bash
+npm install @aifabrix/miso-client
+```
+
+```typescript
+import { MisoClient } from '@aifabrix/miso-client';
+
+const client = new MisoClient({
+  controllerUrl: 'https://controller.aifabrix.ai',
+  environment: 'dev',
+  applicationKey: 'your-app-key',
+  applicationId: 'your-app-id-123', // NEW: Application GUID
+  apiKey: 'your-api-key', // NEW: API key for logging
+  redis: {
+    host: 'localhost',
+    port: 6379,
+    password: 'your-redis-password'
+  }
+});
+
+await client.initialize();
+
+// Validate user token
+const isValid = await client.validateToken(userToken);
+if (isValid) {
+  const user = await client.getUser(userToken);
+  const roles = await client.getRoles(userToken);
+
+  // Check permissions
+  const canEdit = await client.hasPermission(userToken, 'edit:content');
+
+  // Log events (now with API key authentication)
+  client.log.audit('user.login', 'authentication', { userId: user.id });
+}
+```
+
+## 🏗️ Architecture
+
+The Miso Client SDK consists of several core services:
+
+- **AuthService**: Handles token validation and user authentication
+- **RoleService**: Manages user roles with Redis caching
+- **PermissionService**: Handles fine-grained permissions
+- **LoggerService**: Centralized logging and audit trails
+- **RedisService**: Caching and queue management
+
+## 🔧 Configuration
+
+The SDK supports flexible configuration options:
+
+```typescript
+interface MisoClientConfig {
+  controllerUrl: string; // AI Fabrix controller URL
+  environment: 'dev' | 'tst' | 'pro'; // Environment
+  applicationKey: string; // Your application identifier
+  applicationId: string; // NEW: Application GUID
+  apiKey?: string; // NEW: API key for logging authentication
+  redis?: RedisConfig; // Optional Redis configuration
+  logLevel?: 'debug' | 'info' | 'warn' | 'error';
+  cache?: {
+    roleTTL?: number; // Role cache TTL (default: 15 minutes)
+    permissionTTL?: number; // Permission cache TTL (default: 15 minutes)
+  };
+}
+```
+
+## 🌐 Environments
+
+The SDK supports three environments:
+
+- **`dev`** - Development environment
+- **`tst`** - Test environment
+- **`pro`** - Production environment
+
+## 📦 Installation
+
+### NPM
+
+```bash
+npm install @aifabrix/miso-client
+```
+
+### Yarn
+
+```bash
+yarn add @aifabrix/miso-client
+```
+
+### PNPM
+
+```bash
+pnpm add @aifabrix/miso-client
+```
+
+## 🔗 Links
+
+- **GitHub Repository**: [https://github.com/aifabrix/aifabrix-miso](https://github.com/aifabrix/aifabrix-miso)
+- **Documentation**: [https://docs.aifabrix.ai](https://docs.aifabrix.ai)
+- **Issues**: [https://github.com/aifabrix/aifabrix-miso/issues](https://github.com/aifabrix/aifabrix-miso/issues)
+
+## 📄 License
+
+This project is licensed under the MIT License - see the [LICENSE](./LICENSE) file for details.
+
+## 🤝 Contributing
+
+Contributions are welcome! Please read our contributing guidelines and submit pull requests to our GitHub repository.
+
+## 📞 Support
+
+For support and questions:
+
+- **Email**: <support@aifabrix.ai>
+- **Documentation**: [https://docs.aifabrix.ai](https://docs.aifabrix.ai)
+- **GitHub Issues**: [https://github.com/aifabrix/aifabrix-miso/issues](https://github.com/aifabrix/aifabrix-miso/issues)
+
+---
+
+**Made with ❤️ by the AI Fabrix Team**

package/dist/index.d.ts

@@ -0,0 +1,111 @@
+/**
+ * Main MisoClient SDK class
+ */
+import { LoggerService } from './services/logger.service';
+import { MisoClientConfig, UserInfo } from './types/config.types';
+export declare class MisoClient {
+    private config;
+    private redis;
+    private auth;
+    private roles;
+    private permissions;
+    private logger;
+    private initialized;
+    constructor(config: MisoClientConfig);
+    /**
+     * Initialize the client (connect to Redis if configured)
+     */
+    initialize(): Promise<void>;
+    /**
+     * Disconnect from Redis
+     */
+    disconnect(): Promise<void>;
+    /**
+     * Check if client is initialized
+     */
+    isInitialized(): boolean;
+    /**
+     * Initiate login flow by redirecting to controller
+     * Returns the login URL for browser redirect or manual navigation
+     */
+    login(redirectUri: string): string;
+    /**
+     * Validate token with controller
+     */
+    validateToken(token: string): Promise<boolean>;
+    /**
+     * Get user information from token
+     */
+    getUser(token: string): Promise<UserInfo | null>;
+    /**
+     * Check if user is authenticated
+     */
+    isAuthenticated(token: string): Promise<boolean>;
+    /**
+     * Logout user
+     */
+    logout(): Promise<void>;
+    /**
+     * Get user roles (cached in Redis if available)
+     */
+    getRoles(token: string): Promise<string[]>;
+    /**
+     * Check if user has specific role
+     */
+    hasRole(token: string, role: string): Promise<boolean>;
+    /**
+     * Check if user has any of the specified roles
+     */
+    hasAnyRole(token: string, roles: string[]): Promise<boolean>;
+    /**
+     * Check if user has all of the specified roles
+     */
+    hasAllRoles(token: string, roles: string[]): Promise<boolean>;
+    /**
+     * Force refresh roles from controller (bypass cache)
+     */
+    refreshRoles(token: string): Promise<string[]>;
+    /**
+     * Get user permissions (cached in Redis if available)
+     */
+    getPermissions(token: string): Promise<string[]>;
+    /**
+     * Check if user has specific permission
+     */
+    hasPermission(token: string, permission: string): Promise<boolean>;
+    /**
+     * Check if user has any of the specified permissions
+     */
+    hasAnyPermission(token: string, permissions: string[]): Promise<boolean>;
+    /**
+     * Check if user has all of the specified permissions
+     */
+    hasAllPermissions(token: string, permissions: string[]): Promise<boolean>;
+    /**
+     * Force refresh permissions from controller (bypass cache)
+     */
+    refreshPermissions(token: string): Promise<string[]>;
+    /**
+     * Clear cached permissions for a user
+     */
+    clearPermissionsCache(token: string): Promise<void>;
+    /**
+     * Get logger service for application logging
+     */
+    get log(): LoggerService;
+    /**
+     * Get current configuration
+     */
+    getConfig(): MisoClientConfig;
+    /**
+     * Check if Redis is connected
+     */
+    isRedisConnected(): boolean;
+}
+export * from './types/config.types';
+export { AuthService } from './services/auth.service';
+export { RoleService } from './services/role.service';
+export { LoggerService } from './services/logger.service';
+export { RedisService } from './services/redis.service';
+export { HttpClient } from './utils/http-client';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAKH,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAE1D,OAAO,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,sBAAsB,CAAC;AAElE,qBAAa,UAAU;IACrB,OAAO,CAAC,MAAM,CAAmB;IACjC,OAAO,CAAC,KAAK,CAAe;IAC5B,OAAO,CAAC,IAAI,CAAc;IAC1B,OAAO,CAAC,KAAK,CAAc;IAC3B,OAAO,CAAC,WAAW,CAAoB;IACvC,OAAO,CAAC,MAAM,CAAgB;IAC9B,OAAO,CAAC,WAAW,CAAS;gBAEhB,MAAM,EAAE,gBAAgB;IASpC;;OAEG;IACG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAcjC;;OAEG;IACG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAKjC;;OAEG;IACH,aAAa,IAAI,OAAO;IAMxB;;;OAGG;IACH,KAAK,CAAC,WAAW,EAAE,MAAM,GAAG,MAAM;IAIlC;;OAEG;IACG,aAAa,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAIpD;;OAEG;IACG,OAAO,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;IAItD;;OAEG;IACG,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAItD;;OAEG;IACG,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC;IAM7B;;OAEG;IACG,QAAQ,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAIhD;;OAEG;IACG,OAAO,CAAC,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAI5D;;OAEG;IACG,UAAU,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,OAAO,CAAC;IAIlE;;OAEG;IACG,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,OAAO,CAAC;IAInE;;OAEG;IACG,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAIpD;;OAEG;IACG,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAItD;;OAEG;IACG,aAAa,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAIxE;;OAEG;IACG,gBAAgB,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,OAAO,CAAC;IAI9E;;OAEG;IACG,iBAAiB,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,OAAO,CAAC;IAI/E;;OAEG;IACG,kBAAkB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAI1D;;OAEG;IACG,qBAAqB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAMzD;;OAEG;IACH,IAAI,GAAG,IAAI,aAAa,CAEvB;IAID;;OAEG;IACH,SAAS,IAAI,gBAAgB;IAI7B;;OAEG;IACH,gBAAgB,IAAI,OAAO;CAG5B;AAGD,cAAc,sBAAsB,CAAC;AAGrC,OAAO,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AACtD,OAAO,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AACtD,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAC"}

package/dist/index.js

@@ -0,0 +1,199 @@
+"use strict";
+/**
+ * Main MisoClient SDK class
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.HttpClient = exports.RedisService = exports.LoggerService = exports.RoleService = exports.AuthService = exports.MisoClient = void 0;
+const auth_service_1 = require("./services/auth.service");
+const role_service_1 = require("./services/role.service");
+const permission_service_1 = require("./services/permission.service");
+const logger_service_1 = require("./services/logger.service");
+const redis_service_1 = require("./services/redis.service");
+class MisoClient {
+    constructor(config) {
+        this.initialized = false;
+        this.config = config;
+        this.redis = new redis_service_1.RedisService(config.redis);
+        this.auth = new auth_service_1.AuthService(config, this.redis);
+        this.roles = new role_service_1.RoleService(config, this.redis);
+        this.permissions = new permission_service_1.PermissionService(config, this.redis);
+        this.logger = new logger_service_1.LoggerService(config, this.redis);
+    }
+    /**
+     * Initialize the client (connect to Redis if configured)
+     */
+    async initialize() {
+        if (this.initialized) {
+            return;
+        }
+        try {
+            await this.redis.connect();
+            this.initialized = true;
+        }
+        catch (error) {
+            // Redis connection failed, continue with controller fallback mode
+            this.initialized = true; // Still mark as initialized for fallback mode
+        }
+    }
+    /**
+     * Disconnect from Redis
+     */
+    async disconnect() {
+        await this.redis.disconnect();
+        this.initialized = false;
+    }
+    /**
+     * Check if client is initialized
+     */
+    isInitialized() {
+        return this.initialized;
+    }
+    // ==================== AUTHENTICATION METHODS ====================
+    /**
+     * Initiate login flow by redirecting to controller
+     * Returns the login URL for browser redirect or manual navigation
+     */
+    login(redirectUri) {
+        return this.auth.login(redirectUri);
+    }
+    /**
+     * Validate token with controller
+     */
+    async validateToken(token) {
+        return this.auth.validateToken(token);
+    }
+    /**
+     * Get user information from token
+     */
+    async getUser(token) {
+        return this.auth.getUser(token);
+    }
+    /**
+     * Check if user is authenticated
+     */
+    async isAuthenticated(token) {
+        return this.auth.isAuthenticated(token);
+    }
+    /**
+     * Logout user
+     */
+    async logout() {
+        return this.auth.logout();
+    }
+    // ==================== AUTHORIZATION METHODS ====================
+    /**
+     * Get user roles (cached in Redis if available)
+     */
+    async getRoles(token) {
+        return this.roles.getRoles(token);
+    }
+    /**
+     * Check if user has specific role
+     */
+    async hasRole(token, role) {
+        return this.roles.hasRole(token, role);
+    }
+    /**
+     * Check if user has any of the specified roles
+     */
+    async hasAnyRole(token, roles) {
+        return this.roles.hasAnyRole(token, roles);
+    }
+    /**
+     * Check if user has all of the specified roles
+     */
+    async hasAllRoles(token, roles) {
+        return this.roles.hasAllRoles(token, roles);
+    }
+    /**
+     * Force refresh roles from controller (bypass cache)
+     */
+    async refreshRoles(token) {
+        return this.roles.refreshRoles(token);
+    }
+    /**
+     * Get user permissions (cached in Redis if available)
+     */
+    async getPermissions(token) {
+        return this.permissions.getPermissions(token);
+    }
+    /**
+     * Check if user has specific permission
+     */
+    async hasPermission(token, permission) {
+        return this.permissions.hasPermission(token, permission);
+    }
+    /**
+     * Check if user has any of the specified permissions
+     */
+    async hasAnyPermission(token, permissions) {
+        return this.permissions.hasAnyPermission(token, permissions);
+    }
+    /**
+     * Check if user has all of the specified permissions
+     */
+    async hasAllPermissions(token, permissions) {
+        return this.permissions.hasAllPermissions(token, permissions);
+    }
+    /**
+     * Force refresh permissions from controller (bypass cache)
+     */
+    async refreshPermissions(token) {
+        return this.permissions.refreshPermissions(token);
+    }
+    /**
+     * Clear cached permissions for a user
+     */
+    async clearPermissionsCache(token) {
+        return this.permissions.clearPermissionsCache(token);
+    }
+    // ==================== LOGGING METHODS ====================
+    /**
+     * Get logger service for application logging
+     */
+    get log() {
+        return this.logger;
+    }
+    // ==================== UTILITY METHODS ====================
+    /**
+     * Get current configuration
+     */
+    getConfig() {
+        return { ...this.config };
+    }
+    /**
+     * Check if Redis is connected
+     */
+    isRedisConnected() {
+        return this.redis.isConnected();
+    }
+}
+exports.MisoClient = MisoClient;
+// Export types
+__exportStar(require("./types/config.types"), exports);
+// Export services for advanced usage
+var auth_service_2 = require("./services/auth.service");
+Object.defineProperty(exports, "AuthService", { enumerable: true, get: function () { return auth_service_2.AuthService; } });
+var role_service_2 = require("./services/role.service");
+Object.defineProperty(exports, "RoleService", { enumerable: true, get: function () { return role_service_2.RoleService; } });
+var logger_service_2 = require("./services/logger.service");
+Object.defineProperty(exports, "LoggerService", { enumerable: true, get: function () { return logger_service_2.LoggerService; } });
+var redis_service_2 = require("./services/redis.service");
+Object.defineProperty(exports, "RedisService", { enumerable: true, get: function () { return redis_service_2.RedisService; } });
+var http_client_1 = require("./utils/http-client");
+Object.defineProperty(exports, "HttpClient", { enumerable: true, get: function () { return http_client_1.HttpClient; } });
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;GAEG;;;;;;;;;;;;;;;;;AAEH,0DAAsD;AACtD,0DAAsD;AACtD,sEAAkE;AAClE,8DAA0D;AAC1D,4DAAwD;AAGxD,MAAa,UAAU;IASrB,YAAY,MAAwB;QAF5B,gBAAW,GAAG,KAAK,CAAC;QAG1B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,KAAK,GAAG,IAAI,4BAAY,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAC5C,IAAI,CAAC,IAAI,GAAG,IAAI,0BAAW,CAAC,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;QAChD,IAAI,CAAC,KAAK,GAAG,IAAI,0BAAW,CAAC,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;QACjD,IAAI,CAAC,WAAW,GAAG,IAAI,sCAAiB,CAAC,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;QAC7D,IAAI,CAAC,MAAM,GAAG,IAAI,8BAAa,CAAC,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;IACtD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU;QACd,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACrB,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;YAC3B,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;QAC1B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,kEAAkE;YAClE,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC,8CAA8C;QACzE,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU;QACd,MAAM,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;QAC9B,IAAI,CAAC,WAAW,GAAG,KAAK,CAAC;IAC3B,CAAC;IAED;;OAEG;IACH,aAAa;QACX,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED,mEAAmE;IAEnE;;;OAGG;IACH,KAAK,CAAC,WAAmB;QACvB,OAAO,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa,CAAC,KAAa;QAC/B,OAAO,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;IACxC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,KAAa;QACzB,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;IAClC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,eAAe,CAAC,KAAa;QACjC,OAAO,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAM;QACV,OAAO,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;IAC5B,CAAC;IAED,kEAAkE;IAElE;;OAEG;IACH,KAAK,CAAC,QAAQ,CAAC,KAAa;QAC1B,OAAO,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IACpC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,KAAa,EAAE,IAAY;QACvC,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;IACzC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU,CAAC,KAAa,EAAE,KAAe;QAC7C,OAAO,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;IAC7C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,KAAa,EAAE,KAAe;QAC9C,OAAO,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;IAC9C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY,CAAC,KAAa;QAC9B,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC;IACxC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,cAAc,CAAC,KAAa;QAChC,OAAO,IAAI,CAAC,WAAW,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa,CAAC,KAAa,EAAE,UAAkB;QACnD,OAAO,IAAI,CAAC,WAAW,CAAC,aAAa,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC;IAC3D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,gBAAgB,CAAC,KAAa,EAAE,WAAqB;QACzD,OAAO,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;IAC/D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB,CAAC,KAAa,EAAE,WAAqB;QAC1D,OAAO,IAAI,CAAC,WAAW,CAAC,iBAAiB,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;IAChE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,kBAAkB,CAAC,KAAa;QACpC,OAAO,IAAI,CAAC,WAAW,CAAC,kBAAkB,CAAC,KAAK,CAAC,CAAC;IACpD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,qBAAqB,CAAC,KAAa;QACvC,OAAO,IAAI,CAAC,WAAW,CAAC,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACvD,CAAC;IAED,4DAA4D;IAE5D;;OAEG;IACH,IAAI,GAAG;QACL,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;IAED,4DAA4D;IAE5D;;OAEG;IACH,SAAS;QACP,OAAO,EAAE,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC;IAC5B,CAAC;IAED;;OAEG;IACH,gBAAgB;QACd,OAAO,IAAI,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;IAClC,CAAC;CACF;AA/LD,gCA+LC;AAED,eAAe;AACf,uDAAqC;AAErC,qCAAqC;AACrC,wDAAsD;AAA7C,2GAAA,WAAW,OAAA;AACpB,wDAAsD;AAA7C,2GAAA,WAAW,OAAA;AACpB,4DAA0D;AAAjD,+GAAA,aAAa,OAAA;AACtB,0DAAwD;AAA/C,6GAAA,YAAY,OAAA;AACrB,mDAAiD;AAAxC,yGAAA,UAAU,OAAA"}

package/dist/services/auth.service.d.ts

@@ -0,0 +1,33 @@
+/**
+ * Authentication service for token validation and user management
+ */
+import { RedisService } from './redis.service';
+import { MisoClientConfig, UserInfo } from '../types/config.types';
+export declare class AuthService {
+    private httpClient;
+    private redis;
+    private config;
+    constructor(config: MisoClientConfig, redis: RedisService);
+    /**
+     * Initiate login flow by redirecting to controller
+     * Returns the login URL for browser redirect or manual navigation
+     */
+    login(redirectUri: string): string;
+    /**
+     * Validate token with controller
+     */
+    validateToken(token: string): Promise<boolean>;
+    /**
+     * Get user information from token
+     */
+    getUser(token: string): Promise<UserInfo | null>;
+    /**
+     * Logout user
+     */
+    logout(): Promise<void>;
+    /**
+     * Check if user is authenticated (has valid token)
+     */
+    isAuthenticated(token: string): Promise<boolean>;
+}
+//# sourceMappingURL=auth.service.d.ts.map

package/dist/services/auth.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.service.d.ts","sourceRoot":"","sources":["../../src/services/auth.service.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,gBAAgB,EAAE,QAAQ,EAAc,MAAM,uBAAuB,CAAC;AAE/E,qBAAa,WAAW;IACtB,OAAO,CAAC,UAAU,CAAa;IAC/B,OAAO,CAAC,KAAK,CAAe;IAC5B,OAAO,CAAC,MAAM,CAAmB;gBAErB,MAAM,EAAE,gBAAgB,EAAE,KAAK,EAAE,YAAY;IAMzD;;;OAGG;IACH,KAAK,CAAC,WAAW,EAAE,MAAM,GAAG,MAAM;IAYlC;;OAEG;IACG,aAAa,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAepD;;OAEG;IACG,OAAO,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;IAmBtD;;OAEG;IACG,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC;IAc7B;;OAEG;IACG,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;CAGvD"}

package/dist/services/auth.service.js

@@ -0,0 +1,79 @@
+"use strict";
+/**
+ * Authentication service for token validation and user management
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthService = void 0;
+const http_client_1 = require("../utils/http-client");
+class AuthService {
+    constructor(config, redis) {
+        this.config = config;
+        this.redis = redis;
+        this.httpClient = new http_client_1.HttpClient(config);
+    }
+    /**
+     * Initiate login flow by redirecting to controller
+     * Returns the login URL for browser redirect or manual navigation
+     */
+    login(redirectUri) {
+        const loginUrl = `${this.config.controllerUrl}/auth/login?` +
+            `environment=${this.config.environment}&` +
+            `application=${this.config.applicationKey}&` +
+            `redirect=${encodeURIComponent(redirectUri)}`;
+        // In a browser environment, application should redirect to this URL
+        // In Node.js, application should handle URL appropriately
+        return loginUrl;
+    }
+    /**
+     * Validate token with controller
+     */
+    async validateToken(token) {
+        try {
+            const result = await this.httpClient.authenticatedRequest('POST', '/auth/validate', token);
+            return result.authenticated;
+        }
+        catch (error) {
+            // Token validation failed, return false
+            return false;
+        }
+    }
+    /**
+     * Get user information from token
+     */
+    async getUser(token) {
+        try {
+            const result = await this.httpClient.authenticatedRequest('POST', '/auth/validate', token);
+            if (result.authenticated && result.user) {
+                return result.user;
+            }
+            return null;
+        }
+        catch (error) {
+            // Failed to get user info, return null
+            return null;
+        }
+    }
+    /**
+     * Logout user
+     */
+    async logout() {
+        try {
+            await this.httpClient.post('/auth/logout', {
+                environment: this.config.environment,
+                application: this.config.applicationKey
+            });
+        }
+        catch (error) {
+            // Logout failed, re-throw error for application to handle
+            throw new Error('Logout failed: ' + (error instanceof Error ? error.message : 'Unknown error'));
+        }
+    }
+    /**
+     * Check if user is authenticated (has valid token)
+     */
+    async isAuthenticated(token) {
+        return this.validateToken(token);
+    }
+}
+exports.AuthService = AuthService;
+//# sourceMappingURL=auth.service.js.map

package/dist/services/auth.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.service.js","sourceRoot":"","sources":["../../src/services/auth.service.ts"],"names":[],"mappings":";AAAA;;GAEG;;;AAEH,sDAAkD;AAIlD,MAAa,WAAW;IAKtB,YAAY,MAAwB,EAAE,KAAmB;QACvD,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACnB,IAAI,CAAC,UAAU,GAAG,IAAI,wBAAU,CAAC,MAAM,CAAC,CAAC;IAC3C,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,WAAmB;QACvB,MAAM,QAAQ,GACZ,GAAG,IAAI,CAAC,MAAM,CAAC,aAAa,cAAc;YAC1C,eAAe,IAAI,CAAC,MAAM,CAAC,WAAW,GAAG;YACzC,eAAe,IAAI,CAAC,MAAM,CAAC,cAAc,GAAG;YAC5C,YAAY,kBAAkB,CAAC,WAAW,CAAC,EAAE,CAAC;QAEhD,oEAAoE;QACpE,0DAA0D;QAC1D,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa,CAAC,KAAa;QAC/B,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,oBAAoB,CACvD,MAAM,EACN,gBAAgB,EAChB,KAAK,CACN,CAAC;YAEF,OAAO,MAAM,CAAC,aAAa,CAAC;QAC9B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,wCAAwC;YACxC,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,KAAa;QACzB,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,oBAAoB,CACvD,MAAM,EACN,gBAAgB,EAChB,KAAK,CACN,CAAC;YAEF,IAAI,MAAM,CAAC,aAAa,IAAI,MAAM,CAAC,IAAI,EAAE,CAAC;gBACxC,OAAO,MAAM,CAAC,IAAI,CAAC;YACrB,CAAC;YAED,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,uCAAuC;YACvC,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAM;QACV,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,cAAc,EAAE;gBACzC,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,WAAW;gBACpC,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,cAAc;aACxC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,0DAA0D;YAC1D,MAAM,IAAI,KAAK,CACb,iBAAiB,GAAG,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC,CAC/E,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,eAAe,CAAC,KAAa;QACjC,OAAO,IAAI,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;IACnC,CAAC;CACF;AA1FD,kCA0FC"}