@aifabrix/miso-client 1.8.0 → 1.9.0

package/README.md

@@ -481,6 +481,59 @@ const response = createPaginatedListResponse(
 → [Complete sort example](docs/examples.md#sorting)  
 → [API Reference](docs/api-reference.md#pagination-utilities)
 
+---
+
+### Step 9: Multi-Authentication Strategy
+
+**What happens:** Configure flexible authentication methods with priority-based fallback for advanced authentication scenarios.
+
+```typescript
+import { MisoClient, loadConfig } from '@aifabrix/miso-client';
+
+const client = new MisoClient(loadConfig());
+await client.initialize();
+
+// Global strategy configuration
+const client = new MisoClient({
+  ...loadConfig(),
+  authStrategy: {
+    methods: ['bearer', 'client-token', 'client-credentials']
+  }
+});
+
+// Per-request strategy override
+const strategy = client.createAuthStrategy(['bearer', 'api-key'], 'token-123', 'api-key-456');
+await client.getRoles(token, strategy);
+
+// Using requestWithAuthStrategy for custom requests
+await client.requestWithAuthStrategy('GET', '/api/data', {
+  methods: ['client-token']
+});
+
+// Get default strategy
+const defaultStrategy = client.getDefaultAuthStrategy(token);
+// Returns: { methods: ['bearer', 'client-token'], bearerToken: token }
+```
+
+**Supported Authentication Methods:**
+- `bearer` - Bearer token authentication (Authorization: Bearer <token>)
+- `client-token` - Client token authentication (x-client-token header)
+- `client-credentials` - Client credentials authentication (X-Client-Id and X-Client-Secret headers)
+- `api-key` - API key authentication (Authorization: Bearer <api-key>)
+
+**Priority-Based Fallback:** Methods are tried in the order specified in the strategy array until one succeeds.
+
+**Environment Variable Configuration:**
+```bash
+MISO_AUTH_STRATEGY=bearer,client-token,api-key
+MISO_BEARER_TOKEN=optional-bearer-token
+MISO_API_KEY=optional-api-key
+```
+
+**Backward Compatibility:** All existing code continues to work without changes. If no strategy is specified, defaults to `['bearer', 'client-token']` (existing behavior).
+
+→ [Complete authentication strategy example](docs/examples.md#authentication-strategy)  
+→ [API Reference](docs/api-reference.md#authentication-strategy)
 
 ---
 
@@ -496,12 +549,19 @@ interface MisoClientConfig {
   encryptionKey?: string;     // Optional: Encryption key (or use ENCRYPTION_KEY env var)
   sensitiveFieldsConfig?: string; // Optional: Path to ISO 27001 sensitive fields config JSON
   emitEvents?: boolean;       // Optional: Emit log events instead of HTTP/Redis (for direct SDK embedding)
+  authStrategy?: AuthStrategy; // Optional: Default authentication strategy
   cache?: {
     roleTTL?: number;         // Role cache TTL (default: 900s)
     permissionTTL?: number;   // Permission cache TTL (default: 900s)
   };
   audit?: AuditConfig;        // Optional: Audit logging configuration
 }
+
+interface AuthStrategy {
+  methods: ('bearer' | 'client-token' | 'client-credentials' | 'api-key')[];
+  bearerToken?: string;       // Optional: Bearer token for bearer authentication
+  apiKey?: string;            // Optional: API key for api-key authentication
+}
 ```
 
 **Recommended:** Use `loadConfig()` to load from `.env` file automatically.
@@ -607,6 +667,9 @@ REDIS_PORT=6379
 MISO_LOG_LEVEL=info
 MISO_SENSITIVE_FIELDS_CONFIG=/path/to/sensitive-fields.config.json  # Optional: ISO 27001 config
 MISO_EMIT_EVENTS=true  # Optional: Enable event emission mode (for direct SDK embedding)
+MISO_AUTH_STRATEGY=bearer,client-token,api-key  # Optional: Authentication strategy (comma-separated)
+MISO_BEARER_TOKEN=optional-bearer-token  # Optional: Default bearer token
+MISO_API_KEY=optional-api-key  # Optional: Default API key
 ```
 
 ---

package/dist/index.d.ts

@@ -0,0 +1,216 @@
+/**
+ * Main MisoClient SDK class
+ */
+import { LoggerService } from './services/logger.service';
+import { EncryptionService } from './services/encryption.service';
+import { CacheService } from './services/cache.service';
+import { MisoClientConfig, UserInfo, AuthStrategy } from './types/config.types';
+export declare class MisoClient {
+    private config;
+    private httpClient;
+    private redis;
+    private auth;
+    private roles;
+    private permissions;
+    private logger;
+    private encryptionService?;
+    private cacheService;
+    private initialized;
+    constructor(config: MisoClientConfig);
+    /**
+     * Initialize the client (connect to Redis if configured)
+     */
+    initialize(): Promise<void>;
+    /**
+     * Disconnect from Redis
+     */
+    disconnect(): Promise<void>;
+    /**
+     * Check if client is initialized
+     */
+    isInitialized(): boolean;
+    /**
+     * Extract Bearer token from request headers
+     * Supports common request object patterns (Express, Fastify, Next.js)
+     */
+    getToken(req: {
+        headers: {
+            authorization?: string;
+        };
+    }): string | null;
+    /**
+     * Get environment token using client credentials
+     * This is called automatically by HttpClient but can be called manually
+     */
+    getEnvironmentToken(): Promise<string>;
+    /**
+     * Initiate login flow by redirecting to controller
+     * Returns the login URL for browser redirect or manual navigation
+     */
+    login(redirectUri: string): string;
+    /**
+     * Validate token with controller
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
+     */
+    validateToken(token: string, authStrategy?: AuthStrategy): Promise<boolean>;
+    /**
+     * Get user information from token
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
+     */
+    getUser(token: string, authStrategy?: AuthStrategy): Promise<UserInfo | null>;
+    /**
+     * Get user information from GET /api/auth/user endpoint
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
+     */
+    getUserInfo(token: string, authStrategy?: AuthStrategy): Promise<UserInfo | null>;
+    /**
+     * Check if user is authenticated
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
+     */
+    isAuthenticated(token: string, authStrategy?: AuthStrategy): Promise<boolean>;
+    /**
+     * Logout user
+     */
+    logout(): Promise<void>;
+    /**
+     * Get user roles (cached in Redis if available)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
+     */
+    getRoles(token: string, authStrategy?: AuthStrategy): Promise<string[]>;
+    /**
+     * Check if user has specific role
+     * @param token - User authentication token
+     * @param role - Role to check
+     * @param authStrategy - Optional authentication strategy override
+     */
+    hasRole(token: string, role: string, authStrategy?: AuthStrategy): Promise<boolean>;
+    /**
+     * Check if user has any of the specified roles
+     * @param token - User authentication token
+     * @param roles - Roles to check
+     * @param authStrategy - Optional authentication strategy override
+     */
+    hasAnyRole(token: string, roles: string[], authStrategy?: AuthStrategy): Promise<boolean>;
+    /**
+     * Check if user has all of the specified roles
+     * @param token - User authentication token
+     * @param roles - Roles to check
+     * @param authStrategy - Optional authentication strategy override
+     */
+    hasAllRoles(token: string, roles: string[], authStrategy?: AuthStrategy): Promise<boolean>;
+    /**
+     * Force refresh roles from controller (bypass cache)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
+     */
+    refreshRoles(token: string, authStrategy?: AuthStrategy): Promise<string[]>;
+    /**
+     * Get user permissions (cached in Redis if available)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
+     */
+    getPermissions(token: string, authStrategy?: AuthStrategy): Promise<string[]>;
+    /**
+     * Check if user has specific permission
+     * @param token - User authentication token
+     * @param permission - Permission to check
+     * @param authStrategy - Optional authentication strategy override
+     */
+    hasPermission(token: string, permission: string, authStrategy?: AuthStrategy): Promise<boolean>;
+    /**
+     * Check if user has any of the specified permissions
+     * @param token - User authentication token
+     * @param permissions - Permissions to check
+     * @param authStrategy - Optional authentication strategy override
+     */
+    hasAnyPermission(token: string, permissions: string[], authStrategy?: AuthStrategy): Promise<boolean>;
+    /**
+     * Check if user has all of the specified permissions
+     * @param token - User authentication token
+     * @param permissions - Permissions to check
+     * @param authStrategy - Optional authentication strategy override
+     */
+    hasAllPermissions(token: string, permissions: string[], authStrategy?: AuthStrategy): Promise<boolean>;
+    /**
+     * Force refresh permissions from controller (bypass cache)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
+     */
+    refreshPermissions(token: string, authStrategy?: AuthStrategy): Promise<string[]>;
+    /**
+     * Clear cached permissions for a user
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
+     */
+    clearPermissionsCache(token: string, authStrategy?: AuthStrategy): Promise<void>;
+    /**
+     * Get logger service for application logging
+     */
+    get log(): LoggerService;
+    /**
+     * Get encryption service for data encryption/decryption
+     * Returns undefined if encryption key is not configured
+     */
+    get encryption(): EncryptionService | undefined;
+    /**
+     * Get cache service for generic caching
+     */
+    get cache(): CacheService;
+    /**
+     * Get current configuration
+     */
+    getConfig(): MisoClientConfig;
+    /**
+     * Check if Redis is connected
+     */
+    isRedisConnected(): boolean;
+    /**
+     * Make request with authentication strategy
+     * Tries authentication methods in priority order based on strategy
+     * @param method - HTTP method
+     * @param url - Request URL
+     * @param authStrategy - Authentication strategy configuration
+     * @param data - Optional request data
+     * @param config - Optional Axios request config
+     * @returns Response data
+     */
+    requestWithAuthStrategy<T>(method: 'GET' | 'POST' | 'PUT' | 'DELETE', url: string, authStrategy: AuthStrategy, data?: unknown, config?: import('axios').AxiosRequestConfig): Promise<T>;
+    /**
+     * Create authentication strategy helper
+     * @param methods - Array of authentication methods in priority order
+     * @param bearerToken - Optional bearer token
+     * @param apiKey - Optional API key
+     * @returns Authentication strategy
+     */
+    createAuthStrategy(methods: ('bearer' | 'client-token' | 'client-credentials' | 'api-key')[], bearerToken?: string, apiKey?: string): AuthStrategy;
+    /**
+     * Get default authentication strategy
+     * Uses bearer token and client token in that order
+     * @param bearerToken - Optional bearer token
+     * @returns Default authentication strategy
+     */
+    getDefaultAuthStrategy(bearerToken?: string): AuthStrategy;
+}
+export * from './types/config.types';
+export * from './types/pagination.types';
+export * from './types/filter.types';
+export * from './types/sort.types';
+export type { ErrorResponse as ErrorResponseFromErrors, ErrorEnvelope } from './types/errors.types';
+export { AuthService } from './services/auth.service';
+export { RoleService } from './services/role.service';
+export { LoggerService } from './services/logger.service';
+export { RedisService } from './services/redis.service';
+export { EncryptionService } from './services/encryption.service';
+export { CacheService } from './services/cache.service';
+export { HttpClient } from './utils/http-client';
+export { loadConfig } from './utils/config-loader';
+export * from './utils/pagination.utils';
+export * from './utils/filter.utils';
+export * from './utils/sort.utils';
+export { MisoClientError, ApiErrorException, transformError, handleApiError } from './utils/errors';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAKH,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAE1D,OAAO,EAAE,iBAAiB,EAAE,MAAM,+BAA+B,CAAC;AAClE,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AAKxD,OAAO,EAAE,gBAAgB,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AAEhF,qBAAa,UAAU;IACrB,OAAO,CAAC,MAAM,CAAmB;IACjC,OAAO,CAAC,UAAU,CAAa;IAC/B,OAAO,CAAC,KAAK,CAAe;IAC5B,OAAO,CAAC,IAAI,CAAc;IAC1B,OAAO,CAAC,KAAK,CAAc;IAC3B,OAAO,CAAC,WAAW,CAAoB;IACvC,OAAO,CAAC,MAAM,CAAgB;IAC9B,OAAO,CAAC,iBAAiB,CAAC,CAAoB;IAC9C,OAAO,CAAC,YAAY,CAAe;IACnC,OAAO,CAAC,WAAW,CAAS;gBAEhB,MAAM,EAAE,gBAAgB;IAgDpC;;OAEG;IACG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAcjC;;OAEG;IACG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAKjC;;OAEG;IACH,aAAa,IAAI,OAAO;IAMxB;;;OAGG;IACH,QAAQ,CAAC,GAAG,EAAE;QAAE,OAAO,EAAE;YAAE,aAAa,CAAC,EAAE,MAAM,CAAA;SAAE,CAAA;KAAE,GAAG,MAAM,GAAG,IAAI;IAerE;;;OAGG;IACG,mBAAmB,IAAI,OAAO,CAAC,MAAM,CAAC;IAI5C;;;OAGG;IACH,KAAK,CAAC,WAAW,EAAE,MAAM,GAAG,MAAM;IAIlC;;;;OAIG;IACG,aAAa,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC;IAIjF;;;;OAIG;IACG,OAAO,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;IAInF;;;;OAIG;IACG,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;IAIvF;;;;OAIG;IACG,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC;IAInF;;OAEG;IACG,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC;IAM7B;;;;OAIG;IACG,QAAQ,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAI7E;;;;;OAKG;IACG,OAAO,CAAC,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC;IAIzF;;;;;OAKG;IACG,UAAU,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC;IAI/F;;;;;OAKG;IACG,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC;IAIhG;;;;OAIG;IACG,YAAY,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAIjF;;;;OAIG;IACG,cAAc,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAInF;;;;;OAKG;IACG,aAAa,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC;IAIrG;;;;;OAKG;IACG,gBAAgB,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC;IAI3G;;;;;OAKG;IACG,iBAAiB,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC;IAI5G;;;;OAIG;IACG,kBAAkB,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAIvF;;;;OAIG;IACG,qBAAqB,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC;IAMtF;;OAEG;IACH,IAAI,GAAG,IAAI,aAAa,CAEvB;IAID;;;OAGG;IACH,IAAI,UAAU,IAAI,iBAAiB,GAAG,SAAS,CAE9C;IAID;;OAEG;IACH,IAAI,KAAK,IAAI,YAAY,CAExB;IAID;;OAEG;IACH,SAAS,IAAI,gBAAgB;IAI7B;;OAEG;IACH,gBAAgB,IAAI,OAAO;IAI3B;;;;;;;;;OASG;IACG,uBAAuB,CAAC,CAAC,EAC7B,MAAM,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,EACzC,GAAG,EAAE,MAAM,EACX,YAAY,EAAE,YAAY,EAC1B,IAAI,CAAC,EAAE,OAAO,EACd,MAAM,CAAC,EAAE,OAAO,OAAO,EAAE,kBAAkB,GAC1C,OAAO,CAAC,CAAC,CAAC;IAIb;;;;;;OAMG;IACH,kBAAkB,CAChB,OAAO,EAAE,CAAC,QAAQ,GAAG,cAAc,GAAG,oBAAoB,GAAG,SAAS,CAAC,EAAE,EACzE,WAAW,CAAC,EAAE,MAAM,EACpB,MAAM,CAAC,EAAE,MAAM,GACd,YAAY;IAQf;;;;;OAKG;IACH,sBAAsB,CAAC,WAAW,CAAC,EAAE,MAAM,GAAG,YAAY;CAG3D;AAGD,cAAc,sBAAsB,CAAC;AAGrC,cAAc,0BAA0B,CAAC;AACzC,cAAc,sBAAsB,CAAC;AACrC,cAAc,oBAAoB,CAAC;AAGnC,YAAY,EAAE,aAAa,IAAI,uBAAuB,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AAGpG,OAAO,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AACtD,OAAO,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AACtD,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EAAE,iBAAiB,EAAE,MAAM,+BAA+B,CAAC;AAClE,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAC;AAGjD,OAAO,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAC;AAGnD,cAAc,0BAA0B,CAAC;AACzC,cAAc,sBAAsB,CAAC;AACrC,cAAc,oBAAoB,CAAC;AAGnC,OAAO,EAAE,eAAe,EAAE,iBAAiB,EAAE,cAAc,EAAE,cAAc,EAAE,MAAM,gBAAgB,CAAC"}

package/dist/{src/index.js → index.js}

@@ -28,6 +28,7 @@ const cache_service_1 = require("./services/cache.service");
 const http_client_1 = require("./utils/http-client");
 const internal_http_client_1 = require("./utils/internal-http-client");
 const data_masker_1 = require("./utils/data-masker");
+const auth_strategy_1 = require("./utils/auth-strategy");
 class MisoClient {
     constructor(config) {
         this.initialized = false;
@@ -130,27 +131,35 @@ class MisoClient {
     }
     /**
      * Validate token with controller
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async validateToken(token) {
-        return this.auth.validateToken(token);
+    async validateToken(token, authStrategy) {
+        return this.auth.validateToken(token, authStrategy);
     }
     /**
      * Get user information from token
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async getUser(token) {
-        return this.auth.getUser(token);
+    async getUser(token, authStrategy) {
+        return this.auth.getUser(token, authStrategy);
     }
     /**
      * Get user information from GET /api/auth/user endpoint
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async getUserInfo(token) {
-        return this.auth.getUserInfo(token);
+    async getUserInfo(token, authStrategy) {
+        return this.auth.getUserInfo(token, authStrategy);
     }
     /**
      * Check if user is authenticated
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async isAuthenticated(token) {
-        return this.auth.isAuthenticated(token);
+    async isAuthenticated(token, authStrategy) {
+        return this.auth.isAuthenticated(token, authStrategy);
     }
     /**
      * Logout user
@@ -161,69 +170,97 @@ class MisoClient {
     // ==================== AUTHORIZATION METHODS ====================
     /**
      * Get user roles (cached in Redis if available)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async getRoles(token) {
-        return this.roles.getRoles(token);
+    async getRoles(token, authStrategy) {
+        return this.roles.getRoles(token, authStrategy);
     }
     /**
      * Check if user has specific role
+     * @param token - User authentication token
+     * @param role - Role to check
+     * @param authStrategy - Optional authentication strategy override
      */
-    async hasRole(token, role) {
-        return this.roles.hasRole(token, role);
+    async hasRole(token, role, authStrategy) {
+        return this.roles.hasRole(token, role, authStrategy);
     }
     /**
      * Check if user has any of the specified roles
+     * @param token - User authentication token
+     * @param roles - Roles to check
+     * @param authStrategy - Optional authentication strategy override
      */
-    async hasAnyRole(token, roles) {
-        return this.roles.hasAnyRole(token, roles);
+    async hasAnyRole(token, roles, authStrategy) {
+        return this.roles.hasAnyRole(token, roles, authStrategy);
     }
     /**
      * Check if user has all of the specified roles
+     * @param token - User authentication token
+     * @param roles - Roles to check
+     * @param authStrategy - Optional authentication strategy override
      */
-    async hasAllRoles(token, roles) {
-        return this.roles.hasAllRoles(token, roles);
+    async hasAllRoles(token, roles, authStrategy) {
+        return this.roles.hasAllRoles(token, roles, authStrategy);
     }
     /**
      * Force refresh roles from controller (bypass cache)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async refreshRoles(token) {
-        return this.roles.refreshRoles(token);
+    async refreshRoles(token, authStrategy) {
+        return this.roles.refreshRoles(token, authStrategy);
     }
     /**
      * Get user permissions (cached in Redis if available)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async getPermissions(token) {
-        return this.permissions.getPermissions(token);
+    async getPermissions(token, authStrategy) {
+        return this.permissions.getPermissions(token, authStrategy);
     }
     /**
      * Check if user has specific permission
+     * @param token - User authentication token
+     * @param permission - Permission to check
+     * @param authStrategy - Optional authentication strategy override
      */
-    async hasPermission(token, permission) {
-        return this.permissions.hasPermission(token, permission);
+    async hasPermission(token, permission, authStrategy) {
+        return this.permissions.hasPermission(token, permission, authStrategy);
     }
     /**
      * Check if user has any of the specified permissions
+     * @param token - User authentication token
+     * @param permissions - Permissions to check
+     * @param authStrategy - Optional authentication strategy override
      */
-    async hasAnyPermission(token, permissions) {
-        return this.permissions.hasAnyPermission(token, permissions);
+    async hasAnyPermission(token, permissions, authStrategy) {
+        return this.permissions.hasAnyPermission(token, permissions, authStrategy);
     }
     /**
      * Check if user has all of the specified permissions
+     * @param token - User authentication token
+     * @param permissions - Permissions to check
+     * @param authStrategy - Optional authentication strategy override
      */
-    async hasAllPermissions(token, permissions) {
-        return this.permissions.hasAllPermissions(token, permissions);
+    async hasAllPermissions(token, permissions, authStrategy) {
+        return this.permissions.hasAllPermissions(token, permissions, authStrategy);
     }
     /**
      * Force refresh permissions from controller (bypass cache)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async refreshPermissions(token) {
-        return this.permissions.refreshPermissions(token);
+    async refreshPermissions(token, authStrategy) {
+        return this.permissions.refreshPermissions(token, authStrategy);
     }
     /**
      * Clear cached permissions for a user
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async clearPermissionsCache(token) {
-        return this.permissions.clearPermissionsCache(token);
+    async clearPermissionsCache(token, authStrategy) {
+        return this.permissions.clearPermissionsCache(token, authStrategy);
     }
     // ==================== LOGGING METHODS ====================
     /**
@@ -260,6 +297,42 @@ class MisoClient {
     isRedisConnected() {
         return this.redis.isConnected();
     }
+    /**
+     * Make request with authentication strategy
+     * Tries authentication methods in priority order based on strategy
+     * @param method - HTTP method
+     * @param url - Request URL
+     * @param authStrategy - Authentication strategy configuration
+     * @param data - Optional request data
+     * @param config - Optional Axios request config
+     * @returns Response data
+     */
+    async requestWithAuthStrategy(method, url, authStrategy, data, config) {
+        return this.httpClient.requestWithAuthStrategy(method, url, authStrategy, data, config);
+    }
+    /**
+     * Create authentication strategy helper
+     * @param methods - Array of authentication methods in priority order
+     * @param bearerToken - Optional bearer token
+     * @param apiKey - Optional API key
+     * @returns Authentication strategy
+     */
+    createAuthStrategy(methods, bearerToken, apiKey) {
+        return {
+            methods,
+            bearerToken,
+            apiKey
+        };
+    }
+    /**
+     * Get default authentication strategy
+     * Uses bearer token and client token in that order
+     * @param bearerToken - Optional bearer token
+     * @returns Default authentication strategy
+     */
+    getDefaultAuthStrategy(bearerToken) {
+        return auth_strategy_1.AuthStrategyHandler.getDefaultStrategy(bearerToken);
+    }
 }
 exports.MisoClient = MisoClient;
 // Export types

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;GAEG;;;;;;;;;;;;;;;;;AAEH,0DAAsD;AACtD,0DAAsD;AACtD,sEAAkE;AAClE,8DAA0D;AAC1D,4DAAwD;AACxD,sEAAkE;AAClE,4DAAwD;AACxD,qDAAiD;AACjD,uEAAkE;AAClE,qDAAiD;AACjD,yDAA4D;AAG5D,MAAa,UAAU;IAYrB,YAAY,MAAwB;QAF5B,gBAAW,GAAG,KAAK,CAAC;QAG1B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QAErB,4DAA4D;QAC5D,IAAI,MAAM,CAAC,qBAAqB,EAAE,CAAC;YACjC,wBAAU,CAAC,aAAa,CAAC,MAAM,CAAC,qBAAqB,CAAC,CAAC;QACzD,CAAC;QAED,4DAA4D;QAC5D,MAAM,cAAc,GAAG,IAAI,yCAAkB,CAAC,MAAM,CAAC,CAAC;QAEtD,uBAAuB;QACvB,IAAI,CAAC,KAAK,GAAG,IAAI,4BAAY,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAE5C,wGAAwG;QACxG,kEAAkE;QAClE,4FAA4F;QAC5F,IAAI,CAAC,MAAM,GAAG,IAAI,8BAAa,CAAC,cAAuC,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;QAErF,qEAAqE;QACrE,IAAI,CAAC,UAAU,GAAG,IAAI,wBAAU,CAAC,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAEtD,sEAAsE;QACtE,wGAAwG;QACxG,8DAA8D;QAC7D,IAAI,CAAC,MAAc,CAAC,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC;QAElD,kBAAkB;QAClB,IAAI,CAAC,IAAI,GAAG,IAAI,0BAAW,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;QAEzD,8EAA8E;QAC9E,IAAI,CAAC,YAAY,GAAG,IAAI,4BAAY,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAEjD,qCAAqC;QACrC,IAAI,CAAC,KAAK,GAAG,IAAI,0BAAW,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC;QACjE,IAAI,CAAC,WAAW,GAAG,IAAI,sCAAiB,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC;QAE7E,8DAA8D;QAC9D,IAAI,MAAM,CAAC,aAAa,IAAI,OAAO,CAAC,GAAG,CAAC,cAAc,EAAE,CAAC;YACvD,IAAI,CAAC;gBACH,IAAI,CAAC,iBAAiB,GAAG,IAAI,sCAAiB,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;YACvE,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,uDAAuD;gBACvD,wCAAwC;YAC1C,CAAC;QACH,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU;QACd,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACrB,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;YAC3B,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;QAC1B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,kEAAkE;YAClE,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC,8CAA8C;QACzE,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU;QACd,MAAM,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;QAC9B,IAAI,CAAC,WAAW,GAAG,KAAK,CAAC;IAC3B,CAAC;IAED;;OAEG;IACH,aAAa;QACX,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED,mEAAmE;IAEnE;;;OAGG;IACH,QAAQ,CAAC,GAA4C;QACnD,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC;QAC7C,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,kCAAkC;QAClC,IAAI,UAAU,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YACrC,OAAO,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;QACjC,CAAC;QAED,4DAA4D;QAC5D,OAAO,UAAU,CAAC;IACpB,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,mBAAmB;QACvB,OAAO,IAAI,CAAC,IAAI,CAAC,mBAAmB,EAAE,CAAC;IACzC,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,WAAmB;QACvB,OAAO,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;IACtC,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,aAAa,CAAC,KAAa,EAAE,YAA2B;QAC5D,OAAO,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;IACtD,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,OAAO,CAAC,KAAa,EAAE,YAA2B;QACtD,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;IAChD,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,WAAW,CAAC,KAAa,EAAE,YAA2B;QAC1D,OAAO,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;IACpD,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,eAAe,CAAC,KAAa,EAAE,YAA2B;QAC9D,OAAO,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;IACxD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAM;QACV,OAAO,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;IAC5B,CAAC;IAED,kEAAkE;IAElE;;;;OAIG;IACH,KAAK,CAAC,QAAQ,CAAC,KAAa,EAAE,YAA2B;QACvD,OAAO,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;IAClD,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,OAAO,CAAC,KAAa,EAAE,IAAY,EAAE,YAA2B;QACpE,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,EAAE,YAAY,CAAC,CAAC;IACvD,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,UAAU,CAAC,KAAa,EAAE,KAAe,EAAE,YAA2B;QAC1E,OAAO,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,KAAK,EAAE,KAAK,EAAE,YAAY,CAAC,CAAC;IAC3D,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,WAAW,CAAC,KAAa,EAAE,KAAe,EAAE,YAA2B;QAC3E,OAAO,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,KAAK,EAAE,KAAK,EAAE,YAAY,CAAC,CAAC;IAC5D,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,YAAY,CAAC,KAAa,EAAE,YAA2B;QAC3D,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;IACtD,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,cAAc,CAAC,KAAa,EAAE,YAA2B;QAC7D,OAAO,IAAI,CAAC,WAAW,CAAC,cAAc,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;IAC9D,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,aAAa,CAAC,KAAa,EAAE,UAAkB,EAAE,YAA2B;QAChF,OAAO,IAAI,CAAC,WAAW,CAAC,aAAa,CAAC,KAAK,EAAE,UAAU,EAAE,YAAY,CAAC,CAAC;IACzE,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,gBAAgB,CAAC,KAAa,EAAE,WAAqB,EAAE,YAA2B;QACtF,OAAO,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAAC,KAAK,EAAE,WAAW,EAAE,YAAY,CAAC,CAAC;IAC7E,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,iBAAiB,CAAC,KAAa,EAAE,WAAqB,EAAE,YAA2B;QACvF,OAAO,IAAI,CAAC,WAAW,CAAC,iBAAiB,CAAC,KAAK,EAAE,WAAW,EAAE,YAAY,CAAC,CAAC;IAC9E,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,kBAAkB,CAAC,KAAa,EAAE,YAA2B;QACjE,OAAO,IAAI,CAAC,WAAW,CAAC,kBAAkB,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;IAClE,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,qBAAqB,CAAC,KAAa,EAAE,YAA2B;QACpE,OAAO,IAAI,CAAC,WAAW,CAAC,qBAAqB,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;IACrE,CAAC;IAED,4DAA4D;IAE5D;;OAEG;IACH,IAAI,GAAG;QACL,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;IAED,+DAA+D;IAE/D;;;OAGG;IACH,IAAI,UAAU;QACZ,OAAO,IAAI,CAAC,iBAAiB,CAAC;IAChC,CAAC;IAED,0DAA0D;IAE1D;;OAEG;IACH,IAAI,KAAK;QACP,OAAO,IAAI,CAAC,YAAY,CAAC;IAC3B,CAAC;IAED,4DAA4D;IAE5D;;OAEG;IACH,SAAS;QACP,OAAO,EAAE,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC;IAC5B,CAAC;IAED;;OAEG;IACH,gBAAgB;QACd,OAAO,IAAI,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;IAClC,CAAC;IAED;;;;;;;;;OASG;IACH,KAAK,CAAC,uBAAuB,CAC3B,MAAyC,EACzC,GAAW,EACX,YAA0B,EAC1B,IAAc,EACd,MAA2C;QAE3C,OAAO,IAAI,CAAC,UAAU,CAAC,uBAAuB,CAAI,MAAM,EAAE,GAAG,EAAE,YAAY,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;IAC7F,CAAC;IAED;;;;;;OAMG;IACH,kBAAkB,CAChB,OAAyE,EACzE,WAAoB,EACpB,MAAe;QAEf,OAAO;YACL,OAAO;YACP,WAAW;YACX,MAAM;SACP,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACH,sBAAsB,CAAC,WAAoB;QACzC,OAAO,mCAAmB,CAAC,kBAAkB,CAAC,WAAW,CAAC,CAAC;IAC7D,CAAC;CACF;AAnXD,gCAmXC;AAED,eAAe;AACf,uDAAqC;AAErC,wCAAwC;AACxC,2DAAyC;AACzC,uDAAqC;AACrC,qDAAmC;AAKnC,qCAAqC;AACrC,wDAAsD;AAA7C,2GAAA,WAAW,OAAA;AACpB,wDAAsD;AAA7C,2GAAA,WAAW,OAAA;AACpB,4DAA0D;AAAjD,+GAAA,aAAa,OAAA;AACtB,0DAAwD;AAA/C,6GAAA,YAAY,OAAA;AACrB,oEAAkE;AAAzD,uHAAA,iBAAiB,OAAA;AAC1B,0DAAwD;AAA/C,6GAAA,YAAY,OAAA;AACrB,mDAAiD;AAAxC,yGAAA,UAAU,OAAA;AAEnB,mBAAmB;AACnB,uDAAmD;AAA1C,2GAAA,UAAU,OAAA;AAEnB,4CAA4C;AAC5C,2DAAyC;AACzC,uDAAqC;AACrC,qDAAmC;AAEnC,qCAAqC;AACrC,yCAAoG;AAA3F,yGAAA,eAAe,OAAA;AAAE,2GAAA,iBAAiB,OAAA;AAAE,wGAAA,cAAc,OAAA;AAAE,wGAAA,cAAc,OAAA"}

package/dist/{src/services → services}/auth.service.d.ts

@@ -3,7 +3,7 @@
  */
 import { HttpClient } from '../utils/http-client';
 import { RedisService } from './redis.service';
-import { UserInfo } from '../types/config.types';
+import { UserInfo, AuthStrategy } from '../types/config.types';
 export declare class AuthService {
     private httpClient;
     private redis;
@@ -27,25 +27,33 @@ export declare class AuthService {
     /**
      * Validate token with controller
      * If API_KEY is configured and token matches, returns true without calling controller
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    validateToken(token: string): Promise<boolean>;
+    validateToken(token: string, authStrategy?: AuthStrategy): Promise<boolean>;
     /**
      * Get user information from token
      * If API_KEY is configured and token matches, returns null (by design for testing)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    getUser(token: string): Promise<UserInfo | null>;
+    getUser(token: string, authStrategy?: AuthStrategy): Promise<UserInfo | null>;
     /**
      * Get user information from GET /api/auth/user endpoint
      * If API_KEY is configured and token matches, returns null (by design for testing)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    getUserInfo(token: string): Promise<UserInfo | null>;
+    getUserInfo(token: string, authStrategy?: AuthStrategy): Promise<UserInfo | null>;
     /**
      * Logout user
      */
     logout(): Promise<void>;
     /**
      * Check if user is authenticated (has valid token)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    isAuthenticated(token: string): Promise<boolean>;
+    isAuthenticated(token: string, authStrategy?: AuthStrategy): Promise<boolean>;
 }
 //# sourceMappingURL=auth.service.d.ts.map

package/dist/services/auth.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.service.d.ts","sourceRoot":"","sources":["../../src/services/auth.service.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAClD,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAoB,QAAQ,EAAc,YAAY,EAAE,MAAM,uBAAuB,CAAC;AAE7F,qBAAa,WAAW;IACtB,OAAO,CAAC,UAAU,CAAa;IAC/B,OAAO,CAAC,KAAK,CAAe;IAC5B,OAAO,CAAC,MAAM,CAAmB;gBAErB,UAAU,EAAE,UAAU,EAAE,KAAK,EAAE,YAAY;IAMvD;;;OAGG;IACH,OAAO,CAAC,aAAa;IAIrB;;;OAGG;IACG,mBAAmB,IAAI,OAAO,CAAC,MAAM,CAAC;IA+B5C;;;OAGG;IACH,KAAK,CAAC,WAAW,EAAE,MAAM,GAAG,MAAM;IAKlC;;;;;OAKG;IACG,aAAa,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC;IAuBjF;;;;;OAKG;IACG,OAAO,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;IA2BnF;;;;;OAKG;IACG,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;IAuBvF;;OAEG;IACG,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC;IAY7B;;;;OAIG;IACG,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC;CAGpF"}

package/dist/{src/services → services}/auth.service.js

@@ -89,15 +89,17 @@ class AuthService {
     /**
      * Validate token with controller
      * If API_KEY is configured and token matches, returns true without calling controller
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async validateToken(token) {
+    async validateToken(token, authStrategy) {
         // Check API_KEY bypass for testing
         if (this.isApiKeyToken(token)) {
             return true;
         }
         try {
             const result = await this.httpClient.authenticatedRequest('POST', '/api/auth/validate', // Backend knows app/env from client token
-            token);
+            token, undefined, undefined, authStrategy);
             return result.authenticated;
         }
         catch (error) {
@@ -108,14 +110,16 @@ class AuthService {
     /**
      * Get user information from token
      * If API_KEY is configured and token matches, returns null (by design for testing)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async getUser(token) {
+    async getUser(token, authStrategy) {
         // Check API_KEY bypass for testing - return null by design
         if (this.isApiKeyToken(token)) {
             return null;
         }
         try {
-            const result = await this.httpClient.authenticatedRequest('POST', '/api/auth/validate', token);
+            const result = await this.httpClient.authenticatedRequest('POST', '/api/auth/validate', token, undefined, undefined, authStrategy);
             if (result.authenticated && result.user) {
                 return result.user;
             }
@@ -129,14 +133,16 @@ class AuthService {
     /**
      * Get user information from GET /api/auth/user endpoint
      * If API_KEY is configured and token matches, returns null (by design for testing)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async getUserInfo(token) {
+    async getUserInfo(token, authStrategy) {
         // Check API_KEY bypass for testing - return null by design
         if (this.isApiKeyToken(token)) {
             return null;
         }
         try {
-            const user = await this.httpClient.authenticatedRequest('GET', '/api/auth/user', token);
+            const user = await this.httpClient.authenticatedRequest('GET', '/api/auth/user', token, undefined, undefined, authStrategy);
             return user;
         }
         catch (error) {
@@ -159,9 +165,11 @@ class AuthService {
     }
     /**
      * Check if user is authenticated (has valid token)
+     * @param token - User authentication token
+     * @param authStrategy - Optional authentication strategy override
      */
-    async isAuthenticated(token) {
-        return this.validateToken(token);
+    async isAuthenticated(token, authStrategy) {
+        return this.validateToken(token, authStrategy);
     }
 }
 exports.AuthService = AuthService;