@ambushsoftworks/nestjs-auth-graphql 0.1.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/LICENSE +21 -0
- package/README.md +711 -0
- package/dist/auth.module.d.ts +61 -0
- package/dist/auth.module.d.ts.map +1 -0
- package/dist/auth.module.js +190 -0
- package/dist/auth.module.js.map +1 -0
- package/dist/decorators/current-user.decorator.d.ts +2 -0
- package/dist/decorators/current-user.decorator.d.ts.map +1 -0
- package/dist/decorators/current-user.decorator.js +10 -0
- package/dist/decorators/current-user.decorator.js.map +1 -0
- package/dist/dto/account-lock-status.dto.d.ts +5 -0
- package/dist/dto/account-lock-status.dto.d.ts.map +1 -0
- package/dist/dto/account-lock-status.dto.js +32 -0
- package/dist/dto/account-lock-status.dto.js.map +1 -0
- package/dist/dto/auth-response.dto.d.ts +7 -0
- package/dist/dto/auth-response.dto.d.ts.map +1 -0
- package/dist/dto/auth-response.dto.js +33 -0
- package/dist/dto/auth-response.dto.js.map +1 -0
- package/dist/dto/biometric-challenge.dto.d.ts +6 -0
- package/dist/dto/biometric-challenge.dto.d.ts.map +1 -0
- package/dist/dto/biometric-challenge.dto.js +32 -0
- package/dist/dto/biometric-challenge.dto.js.map +1 -0
- package/dist/dto/biometric-credential.dto.d.ts +10 -0
- package/dist/dto/biometric-credential.dto.d.ts.map +1 -0
- package/dist/dto/biometric-credential.dto.js +48 -0
- package/dist/dto/biometric-credential.dto.js.map +1 -0
- package/dist/dto/biometric-login.input.d.ts +5 -0
- package/dist/dto/biometric-login.input.d.ts.map +1 -0
- package/dist/dto/biometric-login.input.js +33 -0
- package/dist/dto/biometric-login.input.js.map +1 -0
- package/dist/dto/biometric-status.dto.d.ts +5 -0
- package/dist/dto/biometric-status.dto.d.ts.map +1 -0
- package/dist/dto/biometric-status.dto.js +28 -0
- package/dist/dto/biometric-status.dto.js.map +1 -0
- package/dist/dto/complete-facebook-signup.input.d.ts +6 -0
- package/dist/dto/complete-facebook-signup.input.d.ts.map +1 -0
- package/dist/dto/complete-facebook-signup.input.js +45 -0
- package/dist/dto/complete-facebook-signup.input.js.map +1 -0
- package/dist/dto/enable-biometric.input.d.ts +5 -0
- package/dist/dto/enable-biometric.input.d.ts.map +1 -0
- package/dist/dto/enable-biometric.input.js +33 -0
- package/dist/dto/enable-biometric.input.js.map +1 -0
- package/dist/dto/enroll-biometric.input.d.ts +6 -0
- package/dist/dto/enroll-biometric.input.d.ts.map +1 -0
- package/dist/dto/enroll-biometric.input.js +41 -0
- package/dist/dto/enroll-biometric.input.js.map +1 -0
- package/dist/dto/jwt-payload.interface.d.ts +5 -0
- package/dist/dto/jwt-payload.interface.d.ts.map +1 -0
- package/dist/dto/jwt-payload.interface.js +3 -0
- package/dist/dto/jwt-payload.interface.js.map +1 -0
- package/dist/dto/link-google-account.input.d.ts +5 -0
- package/dist/dto/link-google-account.input.d.ts.map +1 -0
- package/dist/dto/link-google-account.input.js +38 -0
- package/dist/dto/link-google-account.input.js.map +1 -0
- package/dist/dto/login.input.d.ts +5 -0
- package/dist/dto/login.input.d.ts.map +1 -0
- package/dist/dto/login.input.js +31 -0
- package/dist/dto/login.input.js.map +1 -0
- package/dist/dto/logout-response.dto.d.ts +9 -0
- package/dist/dto/logout-response.dto.d.ts.map +1 -0
- package/dist/dto/logout-response.dto.js +42 -0
- package/dist/dto/logout-response.dto.js.map +1 -0
- package/dist/dto/logout.input.d.ts +4 -0
- package/dist/dto/logout.input.d.ts.map +1 -0
- package/dist/dto/logout.input.js +27 -0
- package/dist/dto/logout.input.js.map +1 -0
- package/dist/dto/phone-verification-response.dto.d.ts +24 -0
- package/dist/dto/phone-verification-response.dto.d.ts.map +1 -0
- package/dist/dto/phone-verification-response.dto.js +98 -0
- package/dist/dto/phone-verification-response.dto.js.map +1 -0
- package/dist/dto/phone-verification-status.dto.d.ts +9 -0
- package/dist/dto/phone-verification-status.dto.d.ts.map +1 -0
- package/dist/dto/phone-verification-status.dto.js +44 -0
- package/dist/dto/phone-verification-status.dto.js.map +1 -0
- package/dist/dto/refresh-token.input.d.ts +4 -0
- package/dist/dto/refresh-token.input.d.ts.map +1 -0
- package/dist/dto/refresh-token.input.js +27 -0
- package/dist/dto/refresh-token.input.js.map +1 -0
- package/dist/dto/remove-biometric-device-response.dto.d.ts +5 -0
- package/dist/dto/remove-biometric-device-response.dto.d.ts.map +1 -0
- package/dist/dto/remove-biometric-device-response.dto.js +28 -0
- package/dist/dto/remove-biometric-device-response.dto.js.map +1 -0
- package/dist/dto/send-phone-verification.input.d.ts +5 -0
- package/dist/dto/send-phone-verification.input.d.ts.map +1 -0
- package/dist/dto/send-phone-verification.input.js +36 -0
- package/dist/dto/send-phone-verification.input.js.map +1 -0
- package/dist/dto/signup.input.d.ts +5 -0
- package/dist/dto/signup.input.d.ts.map +1 -0
- package/dist/dto/signup.input.js +36 -0
- package/dist/dto/signup.input.js.map +1 -0
- package/dist/dto/unlink-social-account-response.dto.d.ts +8 -0
- package/dist/dto/unlink-social-account-response.dto.d.ts.map +1 -0
- package/dist/dto/unlink-social-account-response.dto.js +37 -0
- package/dist/dto/unlink-social-account-response.dto.js.map +1 -0
- package/dist/dto/unlink-social-account.input.d.ts +4 -0
- package/dist/dto/unlink-social-account.input.d.ts.map +1 -0
- package/dist/dto/unlink-social-account.input.js +28 -0
- package/dist/dto/unlink-social-account.input.js.map +1 -0
- package/dist/dto/verify-biometric-signature.input.d.ts +6 -0
- package/dist/dto/verify-biometric-signature.input.d.ts.map +1 -0
- package/dist/dto/verify-biometric-signature.input.js +39 -0
- package/dist/dto/verify-biometric-signature.input.js.map +1 -0
- package/dist/dto/verify-email-response.dto.d.ts +5 -0
- package/dist/dto/verify-email-response.dto.d.ts.map +1 -0
- package/dist/dto/verify-email-response.dto.js +28 -0
- package/dist/dto/verify-email-response.dto.js.map +1 -0
- package/dist/dto/verify-email.input.d.ts +5 -0
- package/dist/dto/verify-email.input.d.ts.map +1 -0
- package/dist/dto/verify-email.input.js +33 -0
- package/dist/dto/verify-email.input.js.map +1 -0
- package/dist/dto/verify-phone.input.d.ts +5 -0
- package/dist/dto/verify-phone.input.d.ts.map +1 -0
- package/dist/dto/verify-phone.input.js +36 -0
- package/dist/dto/verify-phone.input.js.map +1 -0
- package/dist/entities/auth-user.entity.d.ts +23 -0
- package/dist/entities/auth-user.entity.d.ts.map +1 -0
- package/dist/entities/auth-user.entity.js +87 -0
- package/dist/entities/auth-user.entity.js.map +1 -0
- package/dist/exceptions/account-locked.exception.d.ts +5 -0
- package/dist/exceptions/account-locked.exception.d.ts.map +1 -0
- package/dist/exceptions/account-locked.exception.js +18 -0
- package/dist/exceptions/account-locked.exception.js.map +1 -0
- package/dist/exceptions/oauth.exceptions.d.ts +23 -0
- package/dist/exceptions/oauth.exceptions.d.ts.map +1 -0
- package/dist/exceptions/oauth.exceptions.js +84 -0
- package/dist/exceptions/oauth.exceptions.js.map +1 -0
- package/dist/exceptions/verification.exceptions.d.ts +14 -0
- package/dist/exceptions/verification.exceptions.d.ts.map +1 -0
- package/dist/exceptions/verification.exceptions.js +43 -0
- package/dist/exceptions/verification.exceptions.js.map +1 -0
- package/dist/guards/jwt-auth.guard.d.ts +7 -0
- package/dist/guards/jwt-auth.guard.d.ts.map +1 -0
- package/dist/guards/jwt-auth.guard.js +23 -0
- package/dist/guards/jwt-auth.guard.js.map +1 -0
- package/dist/index.d.ts +66 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +82 -0
- package/dist/index.js.map +1 -0
- package/dist/interfaces/auth-lifecycle-hooks.interface.d.ts +11 -0
- package/dist/interfaces/auth-lifecycle-hooks.interface.d.ts.map +1 -0
- package/dist/interfaces/auth-lifecycle-hooks.interface.js +3 -0
- package/dist/interfaces/auth-lifecycle-hooks.interface.js.map +1 -0
- package/dist/interfaces/auth-logger.interface.d.ts +45 -0
- package/dist/interfaces/auth-logger.interface.d.ts.map +1 -0
- package/dist/interfaces/auth-logger.interface.js +42 -0
- package/dist/interfaces/auth-logger.interface.js.map +1 -0
- package/dist/interfaces/auth-user.interface.d.ts +32 -0
- package/dist/interfaces/auth-user.interface.d.ts.map +1 -0
- package/dist/interfaces/auth-user.interface.js +17 -0
- package/dist/interfaces/auth-user.interface.js.map +1 -0
- package/dist/interfaces/biometric-repository.interface.d.ts +22 -0
- package/dist/interfaces/biometric-repository.interface.d.ts.map +1 -0
- package/dist/interfaces/biometric-repository.interface.js +3 -0
- package/dist/interfaces/biometric-repository.interface.js.map +1 -0
- package/dist/interfaces/brute-force-repository.interface.d.ts +11 -0
- package/dist/interfaces/brute-force-repository.interface.d.ts.map +1 -0
- package/dist/interfaces/brute-force-repository.interface.js +3 -0
- package/dist/interfaces/brute-force-repository.interface.js.map +1 -0
- package/dist/interfaces/email-service.interface.d.ts +10 -0
- package/dist/interfaces/email-service.interface.d.ts.map +1 -0
- package/dist/interfaces/email-service.interface.js +3 -0
- package/dist/interfaces/email-service.interface.js.map +1 -0
- package/dist/interfaces/index.d.ts +12 -0
- package/dist/interfaces/index.d.ts.map +1 -0
- package/dist/interfaces/index.js +28 -0
- package/dist/interfaces/index.js.map +1 -0
- package/dist/interfaces/refresh-token-repository.interface.d.ts +18 -0
- package/dist/interfaces/refresh-token-repository.interface.d.ts.map +1 -0
- package/dist/interfaces/refresh-token-repository.interface.js +3 -0
- package/dist/interfaces/refresh-token-repository.interface.js.map +1 -0
- package/dist/interfaces/sms-service.interface.d.ts +8 -0
- package/dist/interfaces/sms-service.interface.d.ts.map +1 -0
- package/dist/interfaces/sms-service.interface.js +3 -0
- package/dist/interfaces/sms-service.interface.js.map +1 -0
- package/dist/interfaces/storage-service.interface.d.ts +5 -0
- package/dist/interfaces/storage-service.interface.d.ts.map +1 -0
- package/dist/interfaces/storage-service.interface.js +3 -0
- package/dist/interfaces/storage-service.interface.js.map +1 -0
- package/dist/interfaces/user-repository.interface.d.ts +42 -0
- package/dist/interfaces/user-repository.interface.d.ts.map +1 -0
- package/dist/interfaces/user-repository.interface.js +3 -0
- package/dist/interfaces/user-repository.interface.js.map +1 -0
- package/dist/interfaces/verification-repository.interface.d.ts +11 -0
- package/dist/interfaces/verification-repository.interface.d.ts.map +1 -0
- package/dist/interfaces/verification-repository.interface.js +3 -0
- package/dist/interfaces/verification-repository.interface.js.map +1 -0
- package/dist/repositories/noop-biometric.repository.d.ts +23 -0
- package/dist/repositories/noop-biometric.repository.d.ts.map +1 -0
- package/dist/repositories/noop-biometric.repository.js +42 -0
- package/dist/repositories/noop-biometric.repository.js.map +1 -0
- package/dist/repositories/noop-brute-force.repository.d.ts +12 -0
- package/dist/repositories/noop-brute-force.repository.d.ts.map +1 -0
- package/dist/repositories/noop-brute-force.repository.js +34 -0
- package/dist/repositories/noop-brute-force.repository.js.map +1 -0
- package/dist/repositories/noop-verification.repository.d.ts +12 -0
- package/dist/repositories/noop-verification.repository.d.ts.map +1 -0
- package/dist/repositories/noop-verification.repository.js +30 -0
- package/dist/repositories/noop-verification.repository.js.map +1 -0
- package/dist/resolvers/auth.resolver.d.ts +66 -0
- package/dist/resolvers/auth.resolver.d.ts.map +1 -0
- package/dist/resolvers/auth.resolver.js +455 -0
- package/dist/resolvers/auth.resolver.js.map +1 -0
- package/dist/resolvers/oauth.controller.d.ts +32 -0
- package/dist/resolvers/oauth.controller.d.ts.map +1 -0
- package/dist/resolvers/oauth.controller.js +216 -0
- package/dist/resolvers/oauth.controller.js.map +1 -0
- package/dist/services/auth.service.d.ts +104 -0
- package/dist/services/auth.service.d.ts.map +1 -0
- package/dist/services/auth.service.js +720 -0
- package/dist/services/auth.service.js.map +1 -0
- package/dist/services/biometric-auth.service.d.ts +26 -0
- package/dist/services/biometric-auth.service.d.ts.map +1 -0
- package/dist/services/biometric-auth.service.js +108 -0
- package/dist/services/biometric-auth.service.js.map +1 -0
- package/dist/services/biometric-verification.service.d.ts +9 -0
- package/dist/services/biometric-verification.service.d.ts.map +1 -0
- package/dist/services/biometric-verification.service.js +78 -0
- package/dist/services/biometric-verification.service.js.map +1 -0
- package/dist/services/brute-force-protection.service.d.ts +23 -0
- package/dist/services/brute-force-protection.service.d.ts.map +1 -0
- package/dist/services/brute-force-protection.service.js +105 -0
- package/dist/services/brute-force-protection.service.js.map +1 -0
- package/dist/services/console-logger.service.d.ts +9 -0
- package/dist/services/console-logger.service.d.ts.map +1 -0
- package/dist/services/console-logger.service.js +46 -0
- package/dist/services/console-logger.service.js.map +1 -0
- package/dist/services/encryption.service.d.ts +14 -0
- package/dist/services/encryption.service.d.ts.map +1 -0
- package/dist/services/encryption.service.js +98 -0
- package/dist/services/encryption.service.js.map +1 -0
- package/dist/services/noop-email.service.d.ts +12 -0
- package/dist/services/noop-email.service.d.ts.map +1 -0
- package/dist/services/noop-email.service.js +42 -0
- package/dist/services/noop-email.service.js.map +1 -0
- package/dist/services/noop-sms.service.d.ts +8 -0
- package/dist/services/noop-sms.service.d.ts.map +1 -0
- package/dist/services/noop-sms.service.js +38 -0
- package/dist/services/noop-sms.service.js.map +1 -0
- package/dist/services/oauth-linking-token.service.d.ts +24 -0
- package/dist/services/oauth-linking-token.service.d.ts.map +1 -0
- package/dist/services/oauth-linking-token.service.js +79 -0
- package/dist/services/oauth-linking-token.service.js.map +1 -0
- package/dist/services/oauth-state.service.d.ts +19 -0
- package/dist/services/oauth-state.service.d.ts.map +1 -0
- package/dist/services/oauth-state.service.js +91 -0
- package/dist/services/oauth-state.service.js.map +1 -0
- package/dist/services/refresh-token.service.d.ts +29 -0
- package/dist/services/refresh-token.service.d.ts.map +1 -0
- package/dist/services/refresh-token.service.js +106 -0
- package/dist/services/refresh-token.service.js.map +1 -0
- package/dist/services/sendgrid-email.service.d.ts +33 -0
- package/dist/services/sendgrid-email.service.d.ts.map +1 -0
- package/dist/services/sendgrid-email.service.js +1002 -0
- package/dist/services/sendgrid-email.service.js.map +1 -0
- package/dist/services/twilio-sms.service.d.ts +13 -0
- package/dist/services/twilio-sms.service.d.ts.map +1 -0
- package/dist/services/twilio-sms.service.js +84 -0
- package/dist/services/twilio-sms.service.js.map +1 -0
- package/dist/services/verification.service.d.ts +27 -0
- package/dist/services/verification.service.d.ts.map +1 -0
- package/dist/services/verification.service.js +179 -0
- package/dist/services/verification.service.js.map +1 -0
- package/dist/strategies/facebook.strategy.d.ts +18 -0
- package/dist/strategies/facebook.strategy.d.ts.map +1 -0
- package/dist/strategies/facebook.strategy.js +96 -0
- package/dist/strategies/facebook.strategy.js.map +1 -0
- package/dist/strategies/google.strategy.d.ts +17 -0
- package/dist/strategies/google.strategy.d.ts.map +1 -0
- package/dist/strategies/google.strategy.js +73 -0
- package/dist/strategies/google.strategy.js.map +1 -0
- package/dist/strategies/jwt.strategy.d.ts +14 -0
- package/dist/strategies/jwt.strategy.d.ts.map +1 -0
- package/dist/strategies/jwt.strategy.js +45 -0
- package/dist/strategies/jwt.strategy.js.map +1 -0
- package/dist/utils/provider-helpers.d.ts +12 -0
- package/dist/utils/provider-helpers.d.ts.map +1 -0
- package/dist/utils/provider-helpers.js +33 -0
- package/dist/utils/provider-helpers.js.map +1 -0
- package/package.json +109 -0
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"sendgrid-email.service.js","sourceRoot":"","sources":["../../src/services/sendgrid-email.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,2CAAoD;AACpD,2CAA+C;AAC/C,uDAAyC;AAQlC,IAAM,YAAY,oBAAlB,MAAM,YAAY;IAKvB,YAAoB,aAA4B;QAA5B,kBAAa,GAAb,aAAa,CAAe;QAJ/B,WAAM,GAAG,IAAI,eAAM,CAAC,cAAY,CAAC,IAAI,CAAC,CAAC;QAMtD,MAAM,MAAM,GAAG,IAAI,CAAC,aAAa,CAAC,UAAU,CAAS,kBAAkB,CAAC,CAAC;QACzE,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;QAGzB,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,aAAa,CAAC,UAAU,CAAS,qBAAqB,CAAC,CAAC;QAC9E,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,oBAAoB,EAAE,QAAQ,CAAC,CAAC;QAE/E,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,oCAAoC,IAAI,CAAC,SAAS,GAAG,CAAC,CAAC;IACzE,CAAC;IAKD,KAAK,CAAC,qBAAqB,CACzB,KAAa,EACb,IAAY,EACZ,gBAAwB;QAExB,IAAI,CAAC;YACH,MAAM,GAAG,GAAG;gBACV,EAAE,EAAE,KAAK;gBACT,IAAI,EAAE;oBACJ,KAAK,EAAE,IAAI,CAAC,SAAS;oBACrB,IAAI,EAAE,IAAI,CAAC,QAAQ;iBACpB;gBACD,OAAO,EAAE,4BAA4B;gBACrC,IAAI,EAAE,IAAI,CAAC,8BAA8B,CAAC,IAAI,EAAE,gBAAgB,CAAC;gBACjE,IAAI,EAAE,IAAI,CAAC,8BAA8B,CAAC,IAAI,EAAE,gBAAgB,CAAC;aAClE,CAAC;YAEF,MAAM,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACvB,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,8BAA8B,KAAK,EAAE,CAAC,CAAC;QACzD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,wCAAwC,KAAK,EAAE,EAAE,KAAK,CAAC,CAAC;YAC1E,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;QACvD,CAAC;IACH,CAAC;IAKD,KAAK,CAAC,sBAAsB,CAC1B,KAAa,EACb,UAAkB,EAClB,QAAgB;QAEhB,IAAI,CAAC;YACH,MAAM,GAAG,GAAG;gBACV,EAAE,EAAE,KAAK;gBACT,IAAI,EAAE;oBACJ,KAAK,EAAE,IAAI,CAAC,SAAS;oBACrB,IAAI,EAAE,IAAI,CAAC,QAAQ;iBACpB;gBACD,OAAO,EAAE,4BAA4B;gBACrC,IAAI,EAAE,IAAI,CAAC,+BAA+B,CAAC,QAAQ,CAAC;gBACpD,IAAI,EAAE,IAAI,CAAC,+BAA+B,CAAC,QAAQ,CAAC;aACrD,CAAC;YAEF,MAAM,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACvB,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,gCAAgC,KAAK,EAAE,CAAC,CAAC;QAC3D,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,0CAA0C,KAAK,EAAE,EAAE,KAAK,CAAC,CAAC;YAC5E,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;QACzD,CAAC;IACH,CAAC;IAKD,KAAK,CAAC,sBAAsB,CAC1B,KAAa,EACb,mBAA2B;QAE3B,IAAI,CAAC;YACH,MAAM,GAAG,GAAG;gBACV,EAAE,EAAE,KAAK;gBACT,IAAI,EAAE;oBACJ,KAAK,EAAE,IAAI,CAAC,SAAS;oBACrB,IAAI,EAAE,IAAI,CAAC,QAAQ;iBACpB;gBACD,OAAO,EAAE,iDAAiD;gBAC1D,IAAI,EAAE,IAAI,CAAC,+BAA+B,CAAC,mBAAmB,CAAC;gBAC/D,IAAI,EAAE,IAAI,CAAC,+BAA+B,CAAC,mBAAmB,CAAC;aAChE,CAAC;YAEF,MAAM,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACvB,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,gCAAgC,KAAK,EAAE,CAAC,CAAC;QAC3D,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,0CAA0C,KAAK,EAAE,EAAE,KAAK,CAAC,CAAC;QAE9E,CAAC;IACH,CAAC;IAKD,KAAK,CAAC,gBAAgB,CAAC,KAAa,EAAE,IAAa;QACjD,IAAI,CAAC;YACH,MAAM,GAAG,GAAG;gBACV,EAAE,EAAE,KAAK;gBACT,IAAI,EAAE;oBACJ,KAAK,EAAE,IAAI,CAAC,SAAS;oBACrB,IAAI,EAAE,IAAI,CAAC,QAAQ;iBACpB;gBACD,OAAO,EAAE,oBAAoB;gBAC7B,IAAI,EAAE,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC;gBAC1C,IAAI,EAAE,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC;aAC3C,CAAC;YAEF,MAAM,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACvB,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,yBAAyB,KAAK,EAAE,CAAC,CAAC;QACpD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,mCAAmC,KAAK,EAAE,EAAE,KAAK,CAAC,CAAC;QAEvE,CAAC;IACH,CAAC;IAKD,KAAK,CAAC,sBAAsB,CAC1B,KAAa,EACb,QAA+B,EAC/B,QAAc;QAEd,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,GAAG,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,iBAAiB,CAAC;YAC9D,MAAM,GAAG,GAAG;gBACV,EAAE,EAAE,KAAK;gBACT,IAAI,EAAE;oBACJ,KAAK,EAAE,IAAI,CAAC,SAAS;oBACrB,IAAI,EAAE,IAAI,CAAC,QAAQ;iBACpB;gBACD,OAAO;gBACP,IAAI,EAAE,IAAI,CAAC,+BAA+B,CAAC,QAAQ,EAAE,QAAQ,CAAC;gBAC9D,IAAI,EAAE,IAAI,CAAC,+BAA+B,CAAC,QAAQ,EAAE,QAAQ,CAAC;aAC/D,CAAC;YAEF,MAAM,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACvB,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,gCAAgC,KAAK,eAAe,QAAQ,GAAG,CAAC,CAAC;QACnF,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,KAAK,CACf,0CAA0C,KAAK,EAAE,EACjD,KAAK,CACN,CAAC;QAEJ,CAAC;IACH,CAAC;IAKD,KAAK,CAAC,wBAAwB,CAC5B,KAAa,EACb,QAA+B,EAC/B,UAAgB;QAEhB,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,GAAG,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,mBAAmB,CAAC;YAChE,MAAM,GAAG,GAAG;gBACV,EAAE,EAAE,KAAK;gBACT,IAAI,EAAE;oBACJ,KAAK,EAAE,IAAI,CAAC,SAAS;oBACrB,IAAI,EAAE,IAAI,CAAC,QAAQ;iBACpB;gBACD,OAAO;gBACP,IAAI,EAAE,IAAI,CAAC,iCAAiC,CAAC,QAAQ,EAAE,UAAU,CAAC;gBAClE,IAAI,EAAE,IAAI,CAAC,iCAAiC,CAAC,QAAQ,EAAE,UAAU,CAAC;aACnE,CAAC;YAEF,MAAM,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACvB,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,kCAAkC,KAAK,eAAe,QAAQ,GAAG,CAAC,CAAC;QACrF,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,KAAK,CACf,4CAA4C,KAAK,EAAE,EACnD,KAAK,CACN,CAAC;QAEJ,CAAC;IACH,CAAC;IAKD,KAAK,CAAC,wBAAwB,CAC5B,KAAa,EACb,SAAe,EACf,SAAkB;QAElB,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,kBAAkB,CAAC;YACnC,MAAM,GAAG,GAAG;gBACV,EAAE,EAAE,KAAK;gBACT,IAAI,EAAE;oBACJ,KAAK,EAAE,IAAI,CAAC,SAAS;oBACrB,IAAI,EAAE,IAAI,CAAC,QAAQ;iBACpB;gBACD,OAAO;gBACP,IAAI,EAAE,IAAI,CAAC,iCAAiC,CAAC,SAAS,EAAE,SAAS,CAAC;gBAClE,IAAI,EAAE,IAAI,CAAC,iCAAiC,CAAC,SAAS,EAAE,SAAS,CAAC;aACnE,CAAC;YAEF,MAAM,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACvB,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,kCAAkC,KAAK,EAAE,CAAC,CAAC;QAC7D,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,KAAK,CACf,4CAA4C,KAAK,EAAE,EACnD,KAAK,CACN,CAAC;QAEJ,CAAC;IACH,CAAC;IAMO,8BAA8B,CAAC,IAAY,EAAE,gBAAwB;QAC3E,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;gCA2FqB,IAAI;6CACS,gBAAgB;;;;;;mBAM1C,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;;;;;;;;KAQtC,CAAC;IACJ,CAAC;IAEO,+BAA+B,CAAC,QAAgB;QACtD,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;uBAgFY,QAAQ;;;;2BAIJ,QAAQ;;;;;;mBAMhB,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;;;;;KAKtC,CAAC;IACJ,CAAC;IAEO,+BAA+B,CAAC,mBAA2B;QACjE,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;iDAwEsC,mBAAmB;;;;;;;;mBAQjD,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;;;;;KAKtC,CAAC;IACJ,CAAC;IAEO,yBAAyB,CAAC,IAAa;QAC7C,MAAM,QAAQ,GAAG,IAAI,CAAC,CAAC,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;QACjD,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;gBAkEK,QAAQ;;;;;;;;;;;;;mBAaL,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;;;;;KAKtC,CAAC;IACJ,CAAC;IAEO,+BAA+B,CACrC,QAA+B,EAC/B,QAAc;QAEd,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;4BA4EiB,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,+EAA+E,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;wCACrH,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;;;;;;;;;mBAS9C,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;;;;;KAKtC,CAAC;IACJ,CAAC;IAEO,iCAAiC,CACvC,QAA+B,EAC/B,UAAgB;QAEhB,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;4BA6EiB,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,sEAAsE,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC;0DAC5F,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;;;;;;;;;mBAShE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;;;;;KAKtC,CAAC;IACJ,CAAC;IAEO,iCAAiC,CACvC,SAAe,EACf,SAAkB;QAElB,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;mEAoFwD,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC;YACjF,SAAS,CAAC,CAAC,CAAC,iEAAiE,SAAS,aAAa,CAAC,CAAC,CAAC,EAAE;;;;;;;;;mBASjG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;;;;;KAKtC,CAAC;IACJ,CAAC;IAMO,8BAA8B,CAAC,IAAY,EAAE,gBAAwB;QAC3E,OAAO;;;;;EAKT,IAAI;;uBAEiB,gBAAgB;;;;IAInC,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACvB,CAAC,IAAI,EAAE,CAAC;IACX,CAAC;IAEO,+BAA+B,CAAC,QAAgB;QACtD,OAAO;;;;EAIT,QAAQ;;;;;;IAMN,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACvB,CAAC,IAAI,EAAE,CAAC;IACX,CAAC;IAEO,+BAA+B,CAAC,mBAA2B;QACjE,OAAO;;;;;iBAKM,mBAAmB;;;;;;IAMhC,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACvB,CAAC,IAAI,EAAE,CAAC;IACX,CAAC;IAEO,yBAAyB,CAAC,IAAa;QAC7C,MAAM,QAAQ,GAAG,IAAI,CAAC,CAAC,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;QACjD,OAAO;WACA,QAAQ;;;;;;;;;;;IAWf,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACvB,CAAC,IAAI,EAAE,CAAC;IACX,CAAC;IAEO,+BAA+B,CACrC,QAA+B,EAC/B,QAAc;QAEd,OAAO;;;;;OAKJ,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,8DAA8D,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;;2BAE5F,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;;;;;;;IAOhD,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACvB,CAAC,IAAI,EAAE,CAAC;IACX,CAAC;IAEO,iCAAiC,CACvC,QAA+B,EAC/B,UAAgB;QAEhB,OAAO;;;;;OAKJ,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,qDAAqD,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC;;6CAEnE,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;;;;;;;IAOlE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACvB,CAAC,IAAI,EAAE,CAAC;IACX,CAAC;IAEO,iCAAiC,CACvC,SAAe,EACf,SAAkB;QAElB,OAAO;;;;;8CAKmC,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC;;EAEtE,SAAS,CAAC,CAAC,CAAC,eAAe,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE;;;;;;;IAOzC,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACvB,CAAC,IAAI,EAAE,CAAC;IACX,CAAC;IAMO,UAAU,CAAC,GAAW;QAC5B,OAAO,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACpD,CAAC;IAEO,UAAU,CAAC,IAAU;QAC3B,OAAO,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE;YAClC,SAAS,EAAE,MAAM;YACjB,SAAS,EAAE,OAAO;SACnB,CAAC,CAAC;IACL,CAAC;CACF,CAAA;AAviCY,oCAAY;uBAAZ,YAAY;IADxB,IAAA,mBAAU,GAAE;qCAMwB,sBAAa;GALrC,YAAY,CAuiCxB"}
|
|
@@ -0,0 +1,13 @@
|
|
|
1
|
+
import { ConfigService } from '@nestjs/config';
|
|
2
|
+
export declare class SmsService {
|
|
3
|
+
private configService;
|
|
4
|
+
private readonly logger;
|
|
5
|
+
private readonly twilioClient;
|
|
6
|
+
private readonly fromPhoneNumber;
|
|
7
|
+
constructor(configService: ConfigService);
|
|
8
|
+
sendVerificationSms(phoneNumber: string, code: string, expiresInMinutes: number): Promise<void>;
|
|
9
|
+
normalizePhoneNumber(phoneNumber: string, countryCode?: string): string | null;
|
|
10
|
+
maskPhoneNumber(phoneNumber: string): string;
|
|
11
|
+
private renderVerificationMessage;
|
|
12
|
+
}
|
|
13
|
+
//# sourceMappingURL=twilio-sms.service.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"twilio-sms.service.d.ts","sourceRoot":"","sources":["../../src/services/twilio-sms.service.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAQ/C,qBACa,UAAU;IAKT,OAAO,CAAC,aAAa;IAJjC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAA+B;IACtD,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAS;IACtC,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAS;gBAErB,aAAa,EAAE,aAAa;IAe1C,mBAAmB,CACvB,WAAW,EAAE,MAAM,EACnB,IAAI,EAAE,MAAM,EACZ,gBAAgB,EAAE,MAAM,GACvB,OAAO,CAAC,IAAI,CAAC;IAsChB,oBAAoB,CAClB,WAAW,EAAE,MAAM,EACnB,WAAW,CAAC,EAAE,MAAM,GACnB,MAAM,GAAG,IAAI;IA0BhB,eAAe,CAAC,WAAW,EAAE,MAAM,GAAG,MAAM;IAgB5C,OAAO,CAAC,yBAAyB;CAMlC"}
|
|
@@ -0,0 +1,84 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
|
|
3
|
+
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
|
|
4
|
+
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
|
|
5
|
+
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
|
|
6
|
+
return c > 3 && r && Object.defineProperty(target, key, r), r;
|
|
7
|
+
};
|
|
8
|
+
var __metadata = (this && this.__metadata) || function (k, v) {
|
|
9
|
+
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
|
|
10
|
+
};
|
|
11
|
+
var SmsService_1;
|
|
12
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
13
|
+
exports.SmsService = void 0;
|
|
14
|
+
const common_1 = require("@nestjs/common");
|
|
15
|
+
const config_1 = require("@nestjs/config");
|
|
16
|
+
const twilio_1 = require("twilio");
|
|
17
|
+
const libphonenumber_js_1 = require("libphonenumber-js");
|
|
18
|
+
let SmsService = SmsService_1 = class SmsService {
|
|
19
|
+
constructor(configService) {
|
|
20
|
+
this.configService = configService;
|
|
21
|
+
this.logger = new common_1.Logger(SmsService_1.name);
|
|
22
|
+
const accountSid = this.configService.getOrThrow('TWILIO_ACCOUNT_SID');
|
|
23
|
+
const authToken = this.configService.getOrThrow('TWILIO_AUTH_TOKEN');
|
|
24
|
+
this.twilioClient = new twilio_1.Twilio(accountSid, authToken);
|
|
25
|
+
this.fromPhoneNumber = this.configService.getOrThrow('TWILIO_PHONE_NUMBER');
|
|
26
|
+
this.logger.log(`SMS service initialized (from: ${this.fromPhoneNumber})`);
|
|
27
|
+
}
|
|
28
|
+
async sendVerificationSms(phoneNumber, code, expiresInMinutes) {
|
|
29
|
+
try {
|
|
30
|
+
const message = this.renderVerificationMessage(code, expiresInMinutes);
|
|
31
|
+
const result = await this.twilioClient.messages.create({
|
|
32
|
+
body: message,
|
|
33
|
+
from: this.fromPhoneNumber,
|
|
34
|
+
to: phoneNumber,
|
|
35
|
+
});
|
|
36
|
+
this.logger.log(`Verification SMS sent to ${phoneNumber} (SID: ${result.sid})`);
|
|
37
|
+
}
|
|
38
|
+
catch (error) {
|
|
39
|
+
this.logger.error(`Failed to send verification SMS to ${phoneNumber}`, error);
|
|
40
|
+
if (error.code === 21211) {
|
|
41
|
+
throw new Error('Invalid phone number format');
|
|
42
|
+
}
|
|
43
|
+
else if (error.code === 21408) {
|
|
44
|
+
throw new Error('Phone number cannot receive SMS');
|
|
45
|
+
}
|
|
46
|
+
else if (error.code === 21610) {
|
|
47
|
+
throw new Error('Phone number is not verified (Twilio trial account)');
|
|
48
|
+
}
|
|
49
|
+
throw new Error('Failed to send verification SMS');
|
|
50
|
+
}
|
|
51
|
+
}
|
|
52
|
+
normalizePhoneNumber(phoneNumber, countryCode) {
|
|
53
|
+
try {
|
|
54
|
+
const parsedPhone = (0, libphonenumber_js_1.parsePhoneNumber)(phoneNumber, countryCode);
|
|
55
|
+
if (!parsedPhone.isValid()) {
|
|
56
|
+
return null;
|
|
57
|
+
}
|
|
58
|
+
return parsedPhone.number;
|
|
59
|
+
}
|
|
60
|
+
catch (error) {
|
|
61
|
+
this.logger.warn(`Failed to parse phone number: ${phoneNumber}`, error);
|
|
62
|
+
return null;
|
|
63
|
+
}
|
|
64
|
+
}
|
|
65
|
+
maskPhoneNumber(phoneNumber) {
|
|
66
|
+
try {
|
|
67
|
+
const parsedPhone = (0, libphonenumber_js_1.parsePhoneNumber)(phoneNumber);
|
|
68
|
+
const national = parsedPhone.formatNational();
|
|
69
|
+
return national.replace(/\d(?=\d{2})/g, 'X');
|
|
70
|
+
}
|
|
71
|
+
catch (error) {
|
|
72
|
+
return phoneNumber.replace(/.(?=.{2})/g, 'X');
|
|
73
|
+
}
|
|
74
|
+
}
|
|
75
|
+
renderVerificationMessage(code, expiresInMinutes) {
|
|
76
|
+
return `Your LiftIQ verification code is: ${code}\n\nThis code expires in ${expiresInMinutes} minutes.\n\nIf you didn't request this code, please ignore this message.`;
|
|
77
|
+
}
|
|
78
|
+
};
|
|
79
|
+
exports.SmsService = SmsService;
|
|
80
|
+
exports.SmsService = SmsService = SmsService_1 = __decorate([
|
|
81
|
+
(0, common_1.Injectable)(),
|
|
82
|
+
__metadata("design:paramtypes", [config_1.ConfigService])
|
|
83
|
+
], SmsService);
|
|
84
|
+
//# sourceMappingURL=twilio-sms.service.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"twilio-sms.service.js","sourceRoot":"","sources":["../../src/services/twilio-sms.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;AAAA,2CAAoD;AACpD,2CAA+C;AAC/C,mCAAgC;AAChC,yDAA+E;AAOxE,IAAM,UAAU,kBAAhB,MAAM,UAAU;IAKrB,YAAoB,aAA4B;QAA5B,kBAAa,GAAb,aAAa,CAAe;QAJ/B,WAAM,GAAG,IAAI,eAAM,CAAC,YAAU,CAAC,IAAI,CAAC,CAAC;QAMpD,MAAM,UAAU,GAAG,IAAI,CAAC,aAAa,CAAC,UAAU,CAAS,oBAAoB,CAAC,CAAC;QAC/E,MAAM,SAAS,GAAG,IAAI,CAAC,aAAa,CAAC,UAAU,CAAS,mBAAmB,CAAC,CAAC;QAC7E,IAAI,CAAC,YAAY,GAAG,IAAI,eAAM,CAAC,UAAU,EAAE,SAAS,CAAC,CAAC;QAGtD,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC,aAAa,CAAC,UAAU,CAAS,qBAAqB,CAAC,CAAC;QAEpF,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,kCAAkC,IAAI,CAAC,eAAe,GAAG,CAAC,CAAC;IAC7E,CAAC;IAKD,KAAK,CAAC,mBAAmB,CACvB,WAAmB,EACnB,IAAY,EACZ,gBAAwB;QAExB,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAI,CAAC,yBAAyB,CAAC,IAAI,EAAE,gBAAgB,CAAC,CAAC;YAEvE,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACrD,IAAI,EAAE,OAAO;gBACb,IAAI,EAAE,IAAI,CAAC,eAAe;gBAC1B,EAAE,EAAE,WAAW;aAChB,CAAC,CAAC;YAEH,IAAI,CAAC,MAAM,CAAC,GAAG,CACb,4BAA4B,WAAW,UAAU,MAAM,CAAC,GAAG,GAAG,CAC/D,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,KAAK,CACf,sCAAsC,WAAW,EAAE,EACnD,KAAK,CACN,CAAC;YAGF,IAAI,KAAK,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;gBACzB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;YACjD,CAAC;iBAAM,IAAI,KAAK,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;gBAChC,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;YACrD,CAAC;iBAAM,IAAI,KAAK,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;gBAChC,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;YACzE,CAAC;YAED,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAQD,oBAAoB,CAClB,WAAmB,EACnB,WAAoB;QAEpB,IAAI,CAAC;YACH,MAAM,WAAW,GAAgB,IAAA,oCAAgB,EAC/C,WAAW,EACX,WAA0B,CAC3B,CAAC;YAEF,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,EAAE,CAAC;gBAC3B,OAAO,IAAI,CAAC;YACd,CAAC;YAED,OAAO,WAAW,CAAC,MAAM,CAAC;QAC5B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,IAAI,CACd,iCAAiC,WAAW,EAAE,EAC9C,KAAK,CACN,CAAC;YACF,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAOD,eAAe,CAAC,WAAmB;QACjC,IAAI,CAAC;YACH,MAAM,WAAW,GAAgB,IAAA,oCAAgB,EAAC,WAAW,CAAC,CAAC;YAC/D,MAAM,QAAQ,GAAG,WAAW,CAAC,cAAc,EAAE,CAAC;YAG9C,OAAO,QAAQ,CAAC,OAAO,CAAC,cAAc,EAAE,GAAG,CAAC,CAAC;QAC/C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAEf,OAAO,WAAW,CAAC,OAAO,CAAC,YAAY,EAAE,GAAG,CAAC,CAAC;QAChD,CAAC;IACH,CAAC;IAKO,yBAAyB,CAC/B,IAAY,EACZ,gBAAwB;QAExB,OAAO,qCAAqC,IAAI,4BAA4B,gBAAgB,2EAA2E,CAAC;IAC1K,CAAC;CACF,CAAA;AAjHY,gCAAU;qBAAV,UAAU;IADtB,IAAA,mBAAU,GAAE;qCAMwB,sBAAa;GALrC,UAAU,CAiHtB"}
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
import { ConfigService } from '@nestjs/config';
|
|
2
|
+
import { IAuthLogger } from '../interfaces/auth-logger.interface';
|
|
3
|
+
import { IVerificationRepository } from '../interfaces/verification-repository.interface';
|
|
4
|
+
import { IUserRepository } from '../interfaces/user-repository.interface';
|
|
5
|
+
import { IAuthUser } from '../interfaces/auth-user.interface';
|
|
6
|
+
export declare class VerificationService {
|
|
7
|
+
private configService;
|
|
8
|
+
private readonly userRepository;
|
|
9
|
+
private readonly verificationRepository;
|
|
10
|
+
private securityLogger;
|
|
11
|
+
private readonly codeLength;
|
|
12
|
+
private readonly expiryMinutes;
|
|
13
|
+
private readonly maxAttempts;
|
|
14
|
+
constructor(configService: ConfigService, userRepository: IUserRepository<IAuthUser>, verificationRepository: IVerificationRepository, securityLogger: IAuthLogger);
|
|
15
|
+
generateCode(identifier: string, type: 'email' | 'sms' | 'password-reset'): Promise<string>;
|
|
16
|
+
validateCode(identifier: string, type: 'email' | 'sms' | 'password-reset', code: string): Promise<boolean>;
|
|
17
|
+
invalidateCode(identifier: string, type: 'email' | 'sms' | 'password-reset'): Promise<void>;
|
|
18
|
+
hasActiveCode(identifier: string, type: 'email' | 'sms' | 'password-reset'): Promise<boolean>;
|
|
19
|
+
private generateRandomCode;
|
|
20
|
+
private hashCode;
|
|
21
|
+
getCodeEntry(identifier: string, type: 'email' | 'sms' | 'password-reset'): Promise<{
|
|
22
|
+
codeHash: string;
|
|
23
|
+
expiresAt: Date;
|
|
24
|
+
attempts: number;
|
|
25
|
+
} | null>;
|
|
26
|
+
}
|
|
27
|
+
//# sourceMappingURL=verification.service.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"verification.service.d.ts","sourceRoot":"","sources":["../../src/services/verification.service.ts"],"names":[],"mappings":"AAMA,OAAO,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAE/C,OAAO,EAAE,WAAW,EAAiB,MAAM,qCAAqC,CAAC;AACjF,OAAO,EAAE,uBAAuB,EAAE,MAAM,iDAAiD,CAAC;AAC1F,OAAO,EAAE,eAAe,EAAE,MAAM,yCAAyC,CAAC;AAC1E,OAAO,EAAE,SAAS,EAAE,MAAM,mCAAmC,CAAC;AAgC9D,qBACa,mBAAmB;IAM5B,OAAO,CAAC,aAAa;IAErB,OAAO,CAAC,QAAQ,CAAC,cAAc;IAE/B,OAAO,CAAC,QAAQ,CAAC,sBAAsB;IAEvC,OAAO,CAAC,cAAc;IAXxB,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAK;IAChC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAM;IACpC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAK;gBAGvB,aAAa,EAAE,aAAa,EAEnB,cAAc,EAAE,eAAe,CAAC,SAAS,CAAC,EAE1C,sBAAsB,EAAE,uBAAuB,EAExD,cAAc,EAAE,WAAW;IAW/B,YAAY,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,OAAO,GAAG,KAAK,GAAG,gBAAgB,GAAG,OAAO,CAAC,MAAM,CAAC;IA0D3F,YAAY,CAChB,UAAU,EAAE,MAAM,EAClB,IAAI,EAAE,OAAO,GAAG,KAAK,GAAG,gBAAgB,EACxC,IAAI,EAAE,MAAM,GACX,OAAO,CAAC,OAAO,CAAC;IA2Hb,cAAc,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,OAAO,GAAG,KAAK,GAAG,gBAAgB,GAAG,OAAO,CAAC,IAAI,CAAC;IAgC3F,aAAa,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,OAAO,GAAG,KAAK,GAAG,gBAAgB,GAAG,OAAO,CAAC,OAAO,CAAC;IA+BnG,OAAO,CAAC,kBAAkB;IAa1B,OAAO,CAAC,QAAQ;IAaV,YAAY,CAChB,UAAU,EAAE,MAAM,EAClB,IAAI,EAAE,OAAO,GAAG,KAAK,GAAG,gBAAgB,GACvC,OAAO,CAAC;QAAE,QAAQ,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,IAAI,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,GAAG,IAAI,CAAC;CAqC3E"}
|
|
@@ -0,0 +1,179 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
|
|
3
|
+
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
|
|
4
|
+
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
|
|
5
|
+
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
|
|
6
|
+
return c > 3 && r && Object.defineProperty(target, key, r), r;
|
|
7
|
+
};
|
|
8
|
+
var __metadata = (this && this.__metadata) || function (k, v) {
|
|
9
|
+
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
|
|
10
|
+
};
|
|
11
|
+
var __param = (this && this.__param) || function (paramIndex, decorator) {
|
|
12
|
+
return function (target, key) { decorator(target, key, paramIndex); }
|
|
13
|
+
};
|
|
14
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
15
|
+
exports.VerificationService = void 0;
|
|
16
|
+
const common_1 = require("@nestjs/common");
|
|
17
|
+
const config_1 = require("@nestjs/config");
|
|
18
|
+
const crypto_1 = require("crypto");
|
|
19
|
+
const auth_logger_interface_1 = require("../interfaces/auth-logger.interface");
|
|
20
|
+
let VerificationService = class VerificationService {
|
|
21
|
+
constructor(configService, userRepository, verificationRepository, securityLogger) {
|
|
22
|
+
this.configService = configService;
|
|
23
|
+
this.userRepository = userRepository;
|
|
24
|
+
this.verificationRepository = verificationRepository;
|
|
25
|
+
this.securityLogger = securityLogger;
|
|
26
|
+
this.codeLength = 6;
|
|
27
|
+
this.expiryMinutes = 15;
|
|
28
|
+
this.maxAttempts = 3;
|
|
29
|
+
}
|
|
30
|
+
async generateCode(identifier, type) {
|
|
31
|
+
if (type === 'password-reset') {
|
|
32
|
+
throw new common_1.BadRequestException('Password reset not yet implemented');
|
|
33
|
+
}
|
|
34
|
+
const user = type === 'email'
|
|
35
|
+
? await this.userRepository.findByEmail(identifier.toLowerCase())
|
|
36
|
+
: await this.userRepository.findByPhoneNumber(identifier);
|
|
37
|
+
if (!user) {
|
|
38
|
+
throw new common_1.BadRequestException('User not found');
|
|
39
|
+
}
|
|
40
|
+
const code = this.generateRandomCode();
|
|
41
|
+
const hashedCode = this.hashCode(code);
|
|
42
|
+
const expiresAt = new Date(Date.now() + this.expiryMinutes * 60 * 1000);
|
|
43
|
+
const repositoryType = type === 'sms' ? 'phone' : 'email';
|
|
44
|
+
await this.verificationRepository.storeVerificationCode(user.id, hashedCode, expiresAt, repositoryType);
|
|
45
|
+
this.securityLogger.log(auth_logger_interface_1.SecurityEvent.VERIFICATION_CODE_SENT, {
|
|
46
|
+
email: type === 'email' ? identifier : undefined,
|
|
47
|
+
phoneNumber: type === 'sms' ? identifier : undefined,
|
|
48
|
+
verificationType: type,
|
|
49
|
+
});
|
|
50
|
+
return code;
|
|
51
|
+
}
|
|
52
|
+
async validateCode(identifier, type, code) {
|
|
53
|
+
if (type === 'password-reset') {
|
|
54
|
+
throw new common_1.BadRequestException('Password reset not yet implemented');
|
|
55
|
+
}
|
|
56
|
+
const user = type === 'email'
|
|
57
|
+
? await this.userRepository.findByEmail(identifier.toLowerCase())
|
|
58
|
+
: await this.userRepository.findByPhoneNumber(identifier);
|
|
59
|
+
if (!user) {
|
|
60
|
+
throw new common_1.UnauthorizedException('User not found');
|
|
61
|
+
}
|
|
62
|
+
const repositoryType = type === 'sms' ? 'phone' : 'email';
|
|
63
|
+
const entry = await this.verificationRepository.getVerificationCode(user.id, repositoryType);
|
|
64
|
+
if (!entry) {
|
|
65
|
+
throw new common_1.UnauthorizedException('Verification code not found or has expired');
|
|
66
|
+
}
|
|
67
|
+
if (new Date() > entry.expiresAt) {
|
|
68
|
+
await this.verificationRepository.clearVerificationCode(user.id, repositoryType);
|
|
69
|
+
this.securityLogger.log(auth_logger_interface_1.SecurityEvent.VERIFICATION_CODE_EXPIRED, {
|
|
70
|
+
email: type === 'email' ? identifier : undefined,
|
|
71
|
+
phoneNumber: type === 'sms' ? identifier : undefined,
|
|
72
|
+
verificationType: type,
|
|
73
|
+
});
|
|
74
|
+
throw new common_1.UnauthorizedException('Verification code has expired');
|
|
75
|
+
}
|
|
76
|
+
if (entry.attempts >= this.maxAttempts) {
|
|
77
|
+
await this.verificationRepository.clearVerificationCode(user.id, repositoryType);
|
|
78
|
+
throw new common_1.UnauthorizedException('Too many failed attempts. Please request a new code.');
|
|
79
|
+
}
|
|
80
|
+
const hashedSubmittedCode = this.hashCode(code);
|
|
81
|
+
const isValid = hashedSubmittedCode === entry.code;
|
|
82
|
+
if (!isValid) {
|
|
83
|
+
await this.verificationRepository.incrementVerificationAttempts(user.id, repositoryType);
|
|
84
|
+
const updatedEntry = await this.verificationRepository.getVerificationCode(user.id, repositoryType);
|
|
85
|
+
const attemptCount = updatedEntry?.attempts || entry.attempts + 1;
|
|
86
|
+
this.securityLogger.log(auth_logger_interface_1.SecurityEvent.VERIFICATION_CODE_FAILED, {
|
|
87
|
+
email: type === 'email' ? identifier : undefined,
|
|
88
|
+
phoneNumber: type === 'sms' ? identifier : undefined,
|
|
89
|
+
verificationType: type,
|
|
90
|
+
attemptCount,
|
|
91
|
+
});
|
|
92
|
+
const remainingAttempts = this.maxAttempts - attemptCount;
|
|
93
|
+
if (remainingAttempts > 0) {
|
|
94
|
+
throw new common_1.UnauthorizedException(`Invalid verification code. ${remainingAttempts} attempt(s) remaining.`);
|
|
95
|
+
}
|
|
96
|
+
else {
|
|
97
|
+
await this.verificationRepository.clearVerificationCode(user.id, repositoryType);
|
|
98
|
+
throw new common_1.UnauthorizedException('Invalid verification code. Maximum attempts exceeded. Please request a new code.');
|
|
99
|
+
}
|
|
100
|
+
}
|
|
101
|
+
await this.verificationRepository.clearVerificationCode(user.id, repositoryType);
|
|
102
|
+
this.securityLogger.log(auth_logger_interface_1.SecurityEvent.VERIFICATION_CODE_VALIDATED, {
|
|
103
|
+
email: type === 'email' ? identifier : undefined,
|
|
104
|
+
phoneNumber: type === 'sms' ? identifier : undefined,
|
|
105
|
+
verificationType: type,
|
|
106
|
+
});
|
|
107
|
+
return true;
|
|
108
|
+
}
|
|
109
|
+
async invalidateCode(identifier, type) {
|
|
110
|
+
if (type === 'password-reset') {
|
|
111
|
+
return;
|
|
112
|
+
}
|
|
113
|
+
const user = type === 'email'
|
|
114
|
+
? await this.userRepository.findByEmail(identifier.toLowerCase())
|
|
115
|
+
: await this.userRepository.findByPhoneNumber(identifier);
|
|
116
|
+
if (!user) {
|
|
117
|
+
return;
|
|
118
|
+
}
|
|
119
|
+
const repositoryType = type === 'sms' ? 'phone' : 'email';
|
|
120
|
+
await this.verificationRepository.clearVerificationCode(user.id, repositoryType);
|
|
121
|
+
}
|
|
122
|
+
async hasActiveCode(identifier, type) {
|
|
123
|
+
if (type === 'password-reset') {
|
|
124
|
+
return false;
|
|
125
|
+
}
|
|
126
|
+
const user = type === 'email'
|
|
127
|
+
? await this.userRepository.findByEmail(identifier.toLowerCase())
|
|
128
|
+
: await this.userRepository.findByPhoneNumber(identifier);
|
|
129
|
+
if (!user) {
|
|
130
|
+
return false;
|
|
131
|
+
}
|
|
132
|
+
const repositoryType = type === 'sms' ? 'phone' : 'email';
|
|
133
|
+
const entry = await this.verificationRepository.getVerificationCode(user.id, repositoryType);
|
|
134
|
+
return !!entry && new Date() <= entry.expiresAt;
|
|
135
|
+
}
|
|
136
|
+
generateRandomCode() {
|
|
137
|
+
const code = (0, crypto_1.randomInt)(0, 1000000);
|
|
138
|
+
return code.toString().padStart(this.codeLength, '0');
|
|
139
|
+
}
|
|
140
|
+
hashCode(code) {
|
|
141
|
+
const secret = this.configService.getOrThrow('VERIFICATION_CODE_SECRET');
|
|
142
|
+
const hmac = (0, crypto_1.createHmac)('sha256', secret);
|
|
143
|
+
hmac.update(code);
|
|
144
|
+
return hmac.digest('hex');
|
|
145
|
+
}
|
|
146
|
+
async getCodeEntry(identifier, type) {
|
|
147
|
+
if (this.configService.get('NODE_ENV') !== 'development') {
|
|
148
|
+
throw new common_1.BadRequestException('Only available in development');
|
|
149
|
+
}
|
|
150
|
+
if (type === 'password-reset') {
|
|
151
|
+
return null;
|
|
152
|
+
}
|
|
153
|
+
const user = type === 'email'
|
|
154
|
+
? await this.userRepository.findByEmail(identifier.toLowerCase())
|
|
155
|
+
: await this.userRepository.findByPhoneNumber(identifier);
|
|
156
|
+
if (!user) {
|
|
157
|
+
return null;
|
|
158
|
+
}
|
|
159
|
+
const repositoryType = type === 'sms' ? 'phone' : 'email';
|
|
160
|
+
const entry = await this.verificationRepository.getVerificationCode(user.id, repositoryType);
|
|
161
|
+
if (!entry) {
|
|
162
|
+
return null;
|
|
163
|
+
}
|
|
164
|
+
return {
|
|
165
|
+
codeHash: entry.code,
|
|
166
|
+
expiresAt: entry.expiresAt,
|
|
167
|
+
attempts: entry.attempts,
|
|
168
|
+
};
|
|
169
|
+
}
|
|
170
|
+
};
|
|
171
|
+
exports.VerificationService = VerificationService;
|
|
172
|
+
exports.VerificationService = VerificationService = __decorate([
|
|
173
|
+
(0, common_1.Injectable)(),
|
|
174
|
+
__param(1, (0, common_1.Inject)('USER_REPOSITORY')),
|
|
175
|
+
__param(2, (0, common_1.Inject)('VERIFICATION_REPOSITORY')),
|
|
176
|
+
__param(3, (0, common_1.Inject)('AUTH_LOGGER')),
|
|
177
|
+
__metadata("design:paramtypes", [config_1.ConfigService, Object, Object, Object])
|
|
178
|
+
], VerificationService);
|
|
179
|
+
//# sourceMappingURL=verification.service.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"verification.service.js","sourceRoot":"","sources":["../../src/services/verification.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAKwB;AACxB,2CAA+C;AAC/C,mCAA+C;AAC/C,+EAAiF;AAoC1E,IAAM,mBAAmB,GAAzB,MAAM,mBAAmB;IAK9B,YACU,aAA4B,EAEpC,cAA2D,EAE3D,sBAAgE,EAEhE,cAAmC;QAN3B,kBAAa,GAAb,aAAa,CAAe;QAEnB,mBAAc,GAAd,cAAc,CAA4B;QAE1C,2BAAsB,GAAtB,sBAAsB,CAAyB;QAExD,mBAAc,GAAd,cAAc,CAAa;QAXpB,eAAU,GAAG,CAAC,CAAC;QACf,kBAAa,GAAG,EAAE,CAAC;QACnB,gBAAW,GAAG,CAAC,CAAC;IAU9B,CAAC;IAUJ,KAAK,CAAC,YAAY,CAAC,UAAkB,EAAE,IAAwC;QAE7E,IAAI,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAC9B,MAAM,IAAI,4BAAmB,CAAC,oCAAoC,CAAC,CAAC;QACtE,CAAC;QAGD,MAAM,IAAI,GAAG,IAAI,KAAK,OAAO;YAC3B,CAAC,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC;YACjE,CAAC,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;QAE5D,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,4BAAmB,CAAC,gBAAgB,CAAC,CAAC;QAClD,CAAC;QAGD,MAAM,IAAI,GAAG,IAAI,CAAC,kBAAkB,EAAE,CAAC;QAGvC,MAAM,UAAU,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAGvC,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,aAAa,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QAGxE,MAAM,cAAc,GAAG,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC;QAG1D,MAAM,IAAI,CAAC,sBAAsB,CAAC,qBAAqB,CACrD,IAAI,CAAC,EAAE,EACP,UAAU,EACV,SAAS,EACT,cAAc,CACf,CAAC;QAGF,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,qCAAa,CAAC,sBAAsB,EAAE;YAC5D,KAAK,EAAE,IAAI,KAAK,OAAO,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;YAChD,WAAW,EAAE,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;YACpD,gBAAgB,EAAE,IAAI;SACvB,CAAC,CAAC;QAEH,OAAO,IAAI,CAAC;IACd,CAAC;IAeD,KAAK,CAAC,YAAY,CAChB,UAAkB,EAClB,IAAwC,EACxC,IAAY;QAGZ,IAAI,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAC9B,MAAM,IAAI,4BAAmB,CAAC,oCAAoC,CAAC,CAAC;QACtE,CAAC;QAGD,MAAM,IAAI,GAAG,IAAI,KAAK,OAAO;YAC3B,CAAC,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC;YACjE,CAAC,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;QAE5D,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,8BAAqB,CAAC,gBAAgB,CAAC,CAAC;QACpD,CAAC;QAGD,MAAM,cAAc,GAAG,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC;QAG1D,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,mBAAmB,CACjE,IAAI,CAAC,EAAE,EACP,cAAc,CACf,CAAC;QAGF,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,8BAAqB,CAC7B,4CAA4C,CAC7C,CAAC;QACJ,CAAC;QAGD,IAAI,IAAI,IAAI,EAAE,GAAG,KAAK,CAAC,SAAS,EAAE,CAAC;YACjC,MAAM,IAAI,CAAC,sBAAsB,CAAC,qBAAqB,CACrD,IAAI,CAAC,EAAE,EACP,cAAc,CACf,CAAC;YAGF,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,qCAAa,CAAC,yBAAyB,EAAE;gBAC/D,KAAK,EAAE,IAAI,KAAK,OAAO,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;gBAChD,WAAW,EAAE,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;gBACpD,gBAAgB,EAAE,IAAI;aACvB,CAAC,CAAC;YAEH,MAAM,IAAI,8BAAqB,CAAC,+BAA+B,CAAC,CAAC;QACnE,CAAC;QAGD,IAAI,KAAK,CAAC,QAAQ,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACvC,MAAM,IAAI,CAAC,sBAAsB,CAAC,qBAAqB,CACrD,IAAI,CAAC,EAAE,EACP,cAAc,CACf,CAAC;YACF,MAAM,IAAI,8BAAqB,CAC7B,sDAAsD,CACvD,CAAC;QACJ,CAAC;QAGD,MAAM,mBAAmB,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAChD,MAAM,OAAO,GAAG,mBAAmB,KAAK,KAAK,CAAC,IAAI,CAAC;QAEnD,IAAI,CAAC,OAAO,EAAE,CAAC;YAEb,MAAM,IAAI,CAAC,sBAAsB,CAAC,6BAA6B,CAC7D,IAAI,CAAC,EAAE,EACP,cAAc,CACf,CAAC;YAGF,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,mBAAmB,CACxE,IAAI,CAAC,EAAE,EACP,cAAc,CACf,CAAC;YACF,MAAM,YAAY,GAAG,YAAY,EAAE,QAAQ,IAAI,KAAK,CAAC,QAAQ,GAAG,CAAC,CAAC;YAGlE,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,qCAAa,CAAC,wBAAwB,EAAE;gBAC9D,KAAK,EAAE,IAAI,KAAK,OAAO,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;gBAChD,WAAW,EAAE,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;gBACpD,gBAAgB,EAAE,IAAI;gBACtB,YAAY;aACb,CAAC,CAAC;YAEH,MAAM,iBAAiB,GAAG,IAAI,CAAC,WAAW,GAAG,YAAY,CAAC;YAC1D,IAAI,iBAAiB,GAAG,CAAC,EAAE,CAAC;gBAC1B,MAAM,IAAI,8BAAqB,CAC7B,8BAA8B,iBAAiB,wBAAwB,CACxE,CAAC;YACJ,CAAC;iBAAM,CAAC;gBACN,MAAM,IAAI,CAAC,sBAAsB,CAAC,qBAAqB,CACrD,IAAI,CAAC,EAAE,EACP,cAAc,CACf,CAAC;gBACF,MAAM,IAAI,8BAAqB,CAC7B,kFAAkF,CACnF,CAAC;YACJ,CAAC;QACH,CAAC;QAGD,MAAM,IAAI,CAAC,sBAAsB,CAAC,qBAAqB,CACrD,IAAI,CAAC,EAAE,EACP,cAAc,CACf,CAAC;QAGF,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,qCAAa,CAAC,2BAA2B,EAAE;YACjE,KAAK,EAAE,IAAI,KAAK,OAAO,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;YAChD,WAAW,EAAE,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;YACpD,gBAAgB,EAAE,IAAI;SACvB,CAAC,CAAC;QAEH,OAAO,IAAI,CAAC;IACd,CAAC;IAQD,KAAK,CAAC,cAAc,CAAC,UAAkB,EAAE,IAAwC;QAE/E,IAAI,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAC9B,OAAO;QACT,CAAC;QAGD,MAAM,IAAI,GAAG,IAAI,KAAK,OAAO;YAC3B,CAAC,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC;YACjE,CAAC,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;QAE5D,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO;QACT,CAAC;QAGD,MAAM,cAAc,GAAG,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC;QAE1D,MAAM,IAAI,CAAC,sBAAsB,CAAC,qBAAqB,CACrD,IAAI,CAAC,EAAE,EACP,cAAc,CACf,CAAC;IACJ,CAAC;IAUD,KAAK,CAAC,aAAa,CAAC,UAAkB,EAAE,IAAwC;QAE9E,IAAI,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC;QACf,CAAC;QAGD,MAAM,IAAI,GAAG,IAAI,KAAK,OAAO;YAC3B,CAAC,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC;YACjE,CAAC,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;QAE5D,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,KAAK,CAAC;QACf,CAAC;QAGD,MAAM,cAAc,GAAG,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC;QAE1D,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,mBAAmB,CACjE,IAAI,CAAC,EAAE,EACP,cAAc,CACf,CAAC;QAGF,OAAO,CAAC,CAAC,KAAK,IAAI,IAAI,IAAI,EAAE,IAAI,KAAK,CAAC,SAAS,CAAC;IAClD,CAAC;IAMO,kBAAkB;QAExB,MAAM,IAAI,GAAG,IAAA,kBAAS,EAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QAEnC,OAAO,IAAI,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;IACxD,CAAC;IAQO,QAAQ,CAAC,IAAY;QAC3B,MAAM,MAAM,GAAG,IAAI,CAAC,aAAa,CAAC,UAAU,CAC1C,0BAA0B,CAC3B,CAAC;QACF,MAAM,IAAI,GAAG,IAAA,mBAAU,EAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAC1C,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAClB,OAAO,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAC5B,CAAC;IAMD,KAAK,CAAC,YAAY,CAChB,UAAkB,EAClB,IAAwC;QAExC,IAAI,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,UAAU,CAAC,KAAK,aAAa,EAAE,CAAC;YACzD,MAAM,IAAI,4BAAmB,CAAC,+BAA+B,CAAC,CAAC;QACjE,CAAC;QAGD,IAAI,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAC9B,OAAO,IAAI,CAAC;QACd,CAAC;QAGD,MAAM,IAAI,GAAG,IAAI,KAAK,OAAO;YAC3B,CAAC,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC;YACjE,CAAC,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;QAE5D,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,IAAI,CAAC;QACd,CAAC;QAGD,MAAM,cAAc,GAAG,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC;QAE1D,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,mBAAmB,CACjE,IAAI,CAAC,EAAE,EACP,cAAc,CACf,CAAC;QAEF,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO;YACL,QAAQ,EAAE,KAAK,CAAC,IAAI;YACpB,SAAS,EAAE,KAAK,CAAC,SAAS;YAC1B,QAAQ,EAAE,KAAK,CAAC,QAAQ;SACzB,CAAC;IACJ,CAAC;CACF,CAAA;AAjVY,kDAAmB;8BAAnB,mBAAmB;IAD/B,IAAA,mBAAU,GAAE;IAQR,WAAA,IAAA,eAAM,EAAC,iBAAiB,CAAC,CAAA;IAEzB,WAAA,IAAA,eAAM,EAAC,yBAAyB,CAAC,CAAA;IAEjC,WAAA,IAAA,eAAM,EAAC,aAAa,CAAC,CAAA;qCALC,sBAAa;GAN3B,mBAAmB,CAiV/B"}
|
|
@@ -0,0 +1,18 @@
|
|
|
1
|
+
import { AuthModuleOptions } from '../auth.module';
|
|
2
|
+
export interface FacebookProfile {
|
|
3
|
+
facebookId: string;
|
|
4
|
+
email: string | undefined;
|
|
5
|
+
emailVerified: boolean | undefined;
|
|
6
|
+
firstName?: string;
|
|
7
|
+
lastName?: string;
|
|
8
|
+
photo?: string;
|
|
9
|
+
}
|
|
10
|
+
export declare class FacebookStrategy {
|
|
11
|
+
private options;
|
|
12
|
+
private readonly logger;
|
|
13
|
+
private readonly appId;
|
|
14
|
+
private readonly appSecret;
|
|
15
|
+
constructor(options: AuthModuleOptions);
|
|
16
|
+
verifyAccessToken(accessToken: string): Promise<FacebookProfile>;
|
|
17
|
+
}
|
|
18
|
+
//# sourceMappingURL=facebook.strategy.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"facebook.strategy.d.ts","sourceRoot":"","sources":["../../src/strategies/facebook.strategy.ts"],"names":[],"mappings":"AAKA,OAAO,EAAuB,iBAAiB,EAAE,MAAM,gBAAgB,CAAC;AAExE,MAAM,WAAW,eAAe;IAC9B,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,EAAE,MAAM,GAAG,SAAS,CAAC;IAC1B,aAAa,EAAE,OAAO,GAAG,SAAS,CAAC;IACnC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AASD,qBACa,gBAAgB;IAKc,OAAO,CAAC,OAAO;IAJxD,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAqC;IAC5D,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAS;IAC/B,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;gBAEc,OAAO,EAAE,iBAAiB;IA2BrE,iBAAiB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;CAkHvE"}
|
|
@@ -0,0 +1,96 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
|
|
3
|
+
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
|
|
4
|
+
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
|
|
5
|
+
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
|
|
6
|
+
return c > 3 && r && Object.defineProperty(target, key, r), r;
|
|
7
|
+
};
|
|
8
|
+
var __metadata = (this && this.__metadata) || function (k, v) {
|
|
9
|
+
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
|
|
10
|
+
};
|
|
11
|
+
var __param = (this && this.__param) || function (paramIndex, decorator) {
|
|
12
|
+
return function (target, key) { decorator(target, key, paramIndex); }
|
|
13
|
+
};
|
|
14
|
+
var FacebookStrategy_1;
|
|
15
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
16
|
+
exports.FacebookStrategy = void 0;
|
|
17
|
+
const common_1 = require("@nestjs/common");
|
|
18
|
+
const oauth_exceptions_1 = require("../exceptions/oauth.exceptions");
|
|
19
|
+
const auth_module_1 = require("../auth.module");
|
|
20
|
+
let FacebookStrategy = FacebookStrategy_1 = class FacebookStrategy {
|
|
21
|
+
constructor(options) {
|
|
22
|
+
this.options = options;
|
|
23
|
+
this.logger = new common_1.Logger(FacebookStrategy_1.name);
|
|
24
|
+
const appId = this.options.oauth?.facebook?.clientId;
|
|
25
|
+
const appSecret = this.options.oauth?.facebook?.clientSecret;
|
|
26
|
+
if (!appId || !appSecret) {
|
|
27
|
+
throw new Error('Facebook OAuth not configured - missing oauth.facebook.clientId and clientSecret in AuthModuleOptions');
|
|
28
|
+
}
|
|
29
|
+
this.appId = appId;
|
|
30
|
+
this.appSecret = appSecret;
|
|
31
|
+
}
|
|
32
|
+
async verifyAccessToken(accessToken) {
|
|
33
|
+
try {
|
|
34
|
+
this.logger.log('[FACEBOOK_STRATEGY] Validating access token...');
|
|
35
|
+
const debugTokenUrl = `https://graph.facebook.com/debug_token?input_token=${accessToken}&access_token=${this.appId}|${this.appSecret}`;
|
|
36
|
+
const debugResponse = await fetch(debugTokenUrl);
|
|
37
|
+
if (!debugResponse.ok) {
|
|
38
|
+
throw new oauth_exceptions_1.InvalidOAuthTokenException('facebook', `Token validation failed: ${debugResponse.statusText}`);
|
|
39
|
+
}
|
|
40
|
+
const debugData = await debugResponse.json();
|
|
41
|
+
if (!debugData.data || !debugData.data.is_valid) {
|
|
42
|
+
this.logger.warn(`[FACEBOOK_STRATEGY] Invalid token: ${JSON.stringify(debugData)}`);
|
|
43
|
+
throw new oauth_exceptions_1.InvalidOAuthTokenException('facebook', 'Token validation failed');
|
|
44
|
+
}
|
|
45
|
+
const scopes = debugData.data.scopes || [];
|
|
46
|
+
this.logger.log(`[FACEBOOK_STRATEGY] Token validated with scopes: ${scopes.join(', ')}`);
|
|
47
|
+
this.logger.log('[FACEBOOK_STRATEGY] Fetching profile...');
|
|
48
|
+
const profileUrl = `https://graph.facebook.com/me?fields=id,email,first_name,last_name,picture&access_token=${accessToken}`;
|
|
49
|
+
const profileResponse = await fetch(profileUrl);
|
|
50
|
+
if (!profileResponse.ok) {
|
|
51
|
+
throw new oauth_exceptions_1.InvalidOAuthTokenException('facebook', `Profile fetch failed: ${profileResponse.statusText}`);
|
|
52
|
+
}
|
|
53
|
+
const profileData = await profileResponse.json();
|
|
54
|
+
this.logger.log(`[FACEBOOK_STRATEGY] Full profile response: ${JSON.stringify(profileData)}`);
|
|
55
|
+
if (!profileData.id) {
|
|
56
|
+
throw new oauth_exceptions_1.InvalidOAuthTokenException('facebook', 'Missing user ID in profile');
|
|
57
|
+
}
|
|
58
|
+
if (!profileData.email) {
|
|
59
|
+
this.logger.warn('[FACEBOOK_STRATEGY] Missing email in profile response');
|
|
60
|
+
this.logger.warn(`[FACEBOOK_STRATEGY] Available fields: ${Object.keys(profileData).join(', ')}`);
|
|
61
|
+
return {
|
|
62
|
+
facebookId: profileData.id,
|
|
63
|
+
email: undefined,
|
|
64
|
+
emailVerified: undefined,
|
|
65
|
+
firstName: profileData.first_name,
|
|
66
|
+
lastName: profileData.last_name,
|
|
67
|
+
photo: profileData.picture?.data?.url,
|
|
68
|
+
};
|
|
69
|
+
}
|
|
70
|
+
this.logger.log(`[FACEBOOK_STRATEGY] Profile retrieved for email: ${profileData.email}`);
|
|
71
|
+
return {
|
|
72
|
+
facebookId: profileData.id,
|
|
73
|
+
email: profileData.email,
|
|
74
|
+
emailVerified: true,
|
|
75
|
+
firstName: profileData.first_name,
|
|
76
|
+
lastName: profileData.last_name,
|
|
77
|
+
photo: profileData.picture?.data?.url,
|
|
78
|
+
};
|
|
79
|
+
}
|
|
80
|
+
catch (error) {
|
|
81
|
+
if (error instanceof oauth_exceptions_1.InvalidOAuthTokenException ||
|
|
82
|
+
error instanceof oauth_exceptions_1.OAuthMissingDataException) {
|
|
83
|
+
throw error;
|
|
84
|
+
}
|
|
85
|
+
this.logger.error(`[FACEBOOK_STRATEGY] Token verification error: ${error.message}`, error.stack);
|
|
86
|
+
throw new oauth_exceptions_1.InvalidOAuthTokenException('facebook', error.message || 'Token verification failed');
|
|
87
|
+
}
|
|
88
|
+
}
|
|
89
|
+
};
|
|
90
|
+
exports.FacebookStrategy = FacebookStrategy;
|
|
91
|
+
exports.FacebookStrategy = FacebookStrategy = FacebookStrategy_1 = __decorate([
|
|
92
|
+
(0, common_1.Injectable)(),
|
|
93
|
+
__param(0, (0, common_1.Inject)(auth_module_1.AUTH_MODULE_OPTIONS)),
|
|
94
|
+
__metadata("design:paramtypes", [Object])
|
|
95
|
+
], FacebookStrategy);
|
|
96
|
+
//# sourceMappingURL=facebook.strategy.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"facebook.strategy.js","sourceRoot":"","sources":["../../src/strategies/facebook.strategy.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CAA4D;AAC5D,qEAGwC;AACxC,gDAAwE;AAmBjE,IAAM,gBAAgB,wBAAtB,MAAM,gBAAgB;IAK3B,YAAyC,OAAkC;QAA1B,YAAO,GAAP,OAAO,CAAmB;QAJ1D,WAAM,GAAG,IAAI,eAAM,CAAC,kBAAgB,CAAC,IAAI,CAAC,CAAC;QAK1D,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,QAAQ,EAAE,QAAQ,CAAC;QACrD,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,QAAQ,EAAE,YAAY,CAAC;QAE7D,IAAI,CAAC,KAAK,IAAI,CAAC,SAAS,EAAE,CAAC;YACzB,MAAM,IAAI,KAAK,CACb,uGAAuG,CACxG,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACnB,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;IAC7B,CAAC;IAeD,KAAK,CAAC,iBAAiB,CAAC,WAAmB;QACzC,IAAI,CAAC;YACH,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,gDAAgD,CAAC,CAAC;YAGlE,MAAM,aAAa,GAAG,sDAAsD,WAAW,iBAAiB,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACvI,MAAM,aAAa,GAAG,MAAM,KAAK,CAAC,aAAa,CAAC,CAAC;YAEjD,IAAI,CAAC,aAAa,CAAC,EAAE,EAAE,CAAC;gBACtB,MAAM,IAAI,6CAA0B,CAClC,UAAU,EACV,4BAA4B,aAAa,CAAC,UAAU,EAAE,CACvD,CAAC;YACJ,CAAC;YAED,MAAM,SAAS,GAAG,MAAM,aAAa,CAAC,IAAI,EAAE,CAAC;YAE7C,IAAI,CAAC,SAAS,CAAC,IAAI,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;gBAChD,IAAI,CAAC,MAAM,CAAC,IAAI,CACd,sCAAsC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,EAAE,CAClE,CAAC;gBACF,MAAM,IAAI,6CAA0B,CAClC,UAAU,EACV,yBAAyB,CAC1B,CAAC;YACJ,CAAC;YAGD,MAAM,MAAM,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,IAAI,EAAE,CAAC;YAC3C,IAAI,CAAC,MAAM,CAAC,GAAG,CACb,oDAAoD,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CACxE,CAAC;YACF,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,yCAAyC,CAAC,CAAC;YAG3D,MAAM,UAAU,GAAG,2FAA2F,WAAW,EAAE,CAAC;YAC5H,MAAM,eAAe,GAAG,MAAM,KAAK,CAAC,UAAU,CAAC,CAAC;YAEhD,IAAI,CAAC,eAAe,CAAC,EAAE,EAAE,CAAC;gBACxB,MAAM,IAAI,6CAA0B,CAClC,UAAU,EACV,yBAAyB,eAAe,CAAC,UAAU,EAAE,CACtD,CAAC;YACJ,CAAC;YAED,MAAM,WAAW,GAAG,MAAM,eAAe,CAAC,IAAI,EAAE,CAAC;YAGjD,IAAI,CAAC,MAAM,CAAC,GAAG,CACb,8CAA8C,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,EAAE,CAC5E,CAAC;YAGF,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,CAAC;gBACpB,MAAM,IAAI,6CAA0B,CAClC,UAAU,EACV,4BAA4B,CAC7B,CAAC;YACJ,CAAC;YAGD,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,CAAC;gBACvB,IAAI,CAAC,MAAM,CAAC,IAAI,CACd,uDAAuD,CACxD,CAAC;gBACF,IAAI,CAAC,MAAM,CAAC,IAAI,CACd,yCAAyC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAC/E,CAAC;gBAGF,OAAO;oBACL,UAAU,EAAE,WAAW,CAAC,EAAE;oBAC1B,KAAK,EAAE,SAAS;oBAChB,aAAa,EAAE,SAAS;oBACxB,SAAS,EAAE,WAAW,CAAC,UAAU;oBACjC,QAAQ,EAAE,WAAW,CAAC,SAAS;oBAC/B,KAAK,EAAE,WAAW,CAAC,OAAO,EAAE,IAAI,EAAE,GAAG;iBACtC,CAAC;YACJ,CAAC;YAED,IAAI,CAAC,MAAM,CAAC,GAAG,CACb,oDAAoD,WAAW,CAAC,KAAK,EAAE,CACxE,CAAC;YAGF,OAAO;gBACL,UAAU,EAAE,WAAW,CAAC,EAAE;gBAC1B,KAAK,EAAE,WAAW,CAAC,KAAK;gBACxB,aAAa,EAAE,IAAI;gBACnB,SAAS,EAAE,WAAW,CAAC,UAAU;gBACjC,QAAQ,EAAE,WAAW,CAAC,SAAS;gBAC/B,KAAK,EAAE,WAAW,CAAC,OAAO,EAAE,IAAI,EAAE,GAAG;aACtC,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAEf,IACE,KAAK,YAAY,6CAA0B;gBAC3C,KAAK,YAAY,4CAAyB,EAC1C,CAAC;gBACD,MAAM,KAAK,CAAC;YACd,CAAC;YAGD,IAAI,CAAC,MAAM,CAAC,KAAK,CACf,iDAAiD,KAAK,CAAC,OAAO,EAAE,EAChE,KAAK,CAAC,KAAK,CACZ,CAAC;YAEF,MAAM,IAAI,6CAA0B,CAClC,UAAU,EACV,KAAK,CAAC,OAAO,IAAI,2BAA2B,CAC7C,CAAC;QACJ,CAAC;IACH,CAAC;CACF,CAAA;AAlJY,4CAAgB;2BAAhB,gBAAgB;IAD5B,IAAA,mBAAU,GAAE;IAME,WAAA,IAAA,eAAM,EAAC,iCAAmB,CAAC,CAAA;;GAL7B,gBAAgB,CAkJ5B"}
|
|
@@ -0,0 +1,17 @@
|
|
|
1
|
+
import { AuthModuleOptions } from '../auth.module';
|
|
2
|
+
export interface GoogleProfile {
|
|
3
|
+
googleId: string;
|
|
4
|
+
email: string;
|
|
5
|
+
emailVerified: boolean;
|
|
6
|
+
firstName?: string;
|
|
7
|
+
lastName?: string;
|
|
8
|
+
photo?: string;
|
|
9
|
+
}
|
|
10
|
+
export declare class GoogleStrategy {
|
|
11
|
+
private options;
|
|
12
|
+
private googleClient;
|
|
13
|
+
private clientId;
|
|
14
|
+
constructor(options: AuthModuleOptions);
|
|
15
|
+
verifyIdToken(idToken: string): Promise<GoogleProfile>;
|
|
16
|
+
}
|
|
17
|
+
//# sourceMappingURL=google.strategy.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"google.strategy.d.ts","sourceRoot":"","sources":["../../src/strategies/google.strategy.ts"],"names":[],"mappings":"AAMA,OAAO,EAAuB,iBAAiB,EAAE,MAAM,gBAAgB,CAAC;AAExE,MAAM,WAAW,aAAa;IAC5B,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,aAAa,EAAE,OAAO,CAAC;IACvB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAOD,qBACa,cAAc;IAIgB,OAAO,CAAC,OAAO;IAHxD,OAAO,CAAC,YAAY,CAAe;IACnC,OAAO,CAAC,QAAQ,CAAS;gBAEwB,OAAO,EAAE,iBAAiB;IAoBrE,aAAa,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC;CAuD7D"}
|
|
@@ -0,0 +1,73 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
|
|
3
|
+
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
|
|
4
|
+
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
|
|
5
|
+
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
|
|
6
|
+
return c > 3 && r && Object.defineProperty(target, key, r), r;
|
|
7
|
+
};
|
|
8
|
+
var __metadata = (this && this.__metadata) || function (k, v) {
|
|
9
|
+
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
|
|
10
|
+
};
|
|
11
|
+
var __param = (this && this.__param) || function (paramIndex, decorator) {
|
|
12
|
+
return function (target, key) { decorator(target, key, paramIndex); }
|
|
13
|
+
};
|
|
14
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
15
|
+
exports.GoogleStrategy = void 0;
|
|
16
|
+
const common_1 = require("@nestjs/common");
|
|
17
|
+
const google_auth_library_1 = require("google-auth-library");
|
|
18
|
+
const oauth_exceptions_1 = require("../exceptions/oauth.exceptions");
|
|
19
|
+
const auth_module_1 = require("../auth.module");
|
|
20
|
+
let GoogleStrategy = class GoogleStrategy {
|
|
21
|
+
constructor(options) {
|
|
22
|
+
this.options = options;
|
|
23
|
+
const clientId = this.options.oauth?.google?.clientId;
|
|
24
|
+
if (!clientId) {
|
|
25
|
+
throw new Error('Google OAuth not configured - missing oauth.google.clientId in AuthModuleOptions');
|
|
26
|
+
}
|
|
27
|
+
this.clientId = clientId;
|
|
28
|
+
this.googleClient = new google_auth_library_1.OAuth2Client(clientId);
|
|
29
|
+
}
|
|
30
|
+
async verifyIdToken(idToken) {
|
|
31
|
+
try {
|
|
32
|
+
const ticket = await this.googleClient.verifyIdToken({
|
|
33
|
+
idToken,
|
|
34
|
+
audience: this.clientId,
|
|
35
|
+
});
|
|
36
|
+
const payload = ticket.getPayload();
|
|
37
|
+
if (!payload) {
|
|
38
|
+
throw new oauth_exceptions_1.InvalidOAuthTokenException('google', 'Empty token payload');
|
|
39
|
+
}
|
|
40
|
+
if (!payload.email) {
|
|
41
|
+
throw new oauth_exceptions_1.OAuthMissingDataException('Google', 'email');
|
|
42
|
+
}
|
|
43
|
+
if (!payload.sub) {
|
|
44
|
+
throw new oauth_exceptions_1.InvalidOAuthTokenException('google', 'Missing user ID (sub)');
|
|
45
|
+
}
|
|
46
|
+
if (!payload.email_verified) {
|
|
47
|
+
throw new oauth_exceptions_1.OAuthMissingDataException('Google', 'email verification');
|
|
48
|
+
}
|
|
49
|
+
return {
|
|
50
|
+
googleId: payload.sub,
|
|
51
|
+
email: payload.email,
|
|
52
|
+
emailVerified: payload.email_verified,
|
|
53
|
+
firstName: payload.given_name,
|
|
54
|
+
lastName: payload.family_name,
|
|
55
|
+
photo: payload.picture,
|
|
56
|
+
};
|
|
57
|
+
}
|
|
58
|
+
catch (error) {
|
|
59
|
+
if (error instanceof oauth_exceptions_1.InvalidOAuthTokenException ||
|
|
60
|
+
error instanceof oauth_exceptions_1.OAuthMissingDataException) {
|
|
61
|
+
throw error;
|
|
62
|
+
}
|
|
63
|
+
throw new oauth_exceptions_1.InvalidOAuthTokenException('google', error.message || 'Token verification failed');
|
|
64
|
+
}
|
|
65
|
+
}
|
|
66
|
+
};
|
|
67
|
+
exports.GoogleStrategy = GoogleStrategy;
|
|
68
|
+
exports.GoogleStrategy = GoogleStrategy = __decorate([
|
|
69
|
+
(0, common_1.Injectable)(),
|
|
70
|
+
__param(0, (0, common_1.Inject)(auth_module_1.AUTH_MODULE_OPTIONS)),
|
|
71
|
+
__metadata("design:paramtypes", [Object])
|
|
72
|
+
], GoogleStrategy);
|
|
73
|
+
//# sourceMappingURL=google.strategy.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"google.strategy.js","sourceRoot":"","sources":["../../src/strategies/google.strategy.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAAoD;AACpD,6DAAmD;AACnD,qEAGwC;AACxC,gDAAwE;AAiBjE,IAAM,cAAc,GAApB,MAAM,cAAc;IAIzB,YAAiD,OAA0B;QAA1B,YAAO,GAAP,OAAO,CAAmB;QACzE,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,CAAC;QAEtD,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,KAAK,CACb,kFAAkF,CACnF,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,YAAY,GAAG,IAAI,kCAAY,CAAC,QAAQ,CAAC,CAAC;IACjD,CAAC;IASD,KAAK,CAAC,aAAa,CAAC,OAAe;QACjC,IAAI,CAAC;YAEH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC;gBACnD,OAAO;gBACP,QAAQ,EAAE,IAAI,CAAC,QAAQ;aACxB,CAAC,CAAC;YAEH,MAAM,OAAO,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;YAEpC,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,IAAI,6CAA0B,CAAC,QAAQ,EAAE,qBAAqB,CAAC,CAAC;YACxE,CAAC;YAGD,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;gBACnB,MAAM,IAAI,4CAAyB,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YACzD,CAAC;YAED,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC;gBACjB,MAAM,IAAI,6CAA0B,CAClC,QAAQ,EACR,uBAAuB,CACxB,CAAC;YACJ,CAAC;YAGD,IAAI,CAAC,OAAO,CAAC,cAAc,EAAE,CAAC;gBAC5B,MAAM,IAAI,4CAAyB,CAAC,QAAQ,EAAE,oBAAoB,CAAC,CAAC;YACtE,CAAC;YAGD,OAAO;gBACL,QAAQ,EAAE,OAAO,CAAC,GAAG;gBACrB,KAAK,EAAE,OAAO,CAAC,KAAK;gBACpB,aAAa,EAAE,OAAO,CAAC,cAAc;gBACrC,SAAS,EAAE,OAAO,CAAC,UAAU;gBAC7B,QAAQ,EAAE,OAAO,CAAC,WAAW;gBAC7B,KAAK,EAAE,OAAO,CAAC,OAAO;aACvB,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAEf,IACE,KAAK,YAAY,6CAA0B;gBAC3C,KAAK,YAAY,4CAAyB,EAC1C,CAAC;gBACD,MAAM,KAAK,CAAC;YACd,CAAC;YAED,MAAM,IAAI,6CAA0B,CAClC,QAAQ,EACR,KAAK,CAAC,OAAO,IAAI,2BAA2B,CAC7C,CAAC;QACJ,CAAC;IACH,CAAC;CACF,CAAA;AA/EY,wCAAc;yBAAd,cAAc;IAD1B,IAAA,mBAAU,GAAE;IAKE,WAAA,IAAA,eAAM,EAAC,iCAAmB,CAAC,CAAA;;GAJ7B,cAAc,CA+E1B"}
|
|
@@ -0,0 +1,14 @@
|
|
|
1
|
+
import { Strategy } from 'passport-jwt';
|
|
2
|
+
import { AuthService } from '../services/auth.service';
|
|
3
|
+
import { JwtPayload } from '../dto/jwt-payload.interface';
|
|
4
|
+
import { IAuthUser } from '../interfaces/auth-user.interface';
|
|
5
|
+
import { AuthModuleOptions } from '../auth.module';
|
|
6
|
+
declare const JwtStrategy_base: new (...args: any[]) => Strategy;
|
|
7
|
+
export declare class JwtStrategy extends JwtStrategy_base {
|
|
8
|
+
private options;
|
|
9
|
+
private authService;
|
|
10
|
+
constructor(options: AuthModuleOptions, authService: AuthService);
|
|
11
|
+
validate(payload: JwtPayload): Promise<IAuthUser>;
|
|
12
|
+
}
|
|
13
|
+
export {};
|
|
14
|
+
//# sourceMappingURL=jwt.strategy.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"jwt.strategy.d.ts","sourceRoot":"","sources":["../../src/strategies/jwt.strategy.ts"],"names":[],"mappings":"AAEA,OAAO,EAAc,QAAQ,EAAE,MAAM,cAAc,CAAC;AACpD,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAC;AACvD,OAAO,EAAE,UAAU,EAAE,MAAM,8BAA8B,CAAC;AAC1D,OAAO,EAAE,SAAS,EAAE,MAAM,mCAAmC,CAAC;AAC9D,OAAO,EAAuB,iBAAiB,EAAE,MAAM,gBAAgB,CAAC;;AAExE,qBACa,WAAY,SAAQ,gBAA0B;IAE1B,OAAO,CAAC,OAAO;IAC5C,OAAO,CAAC,WAAW;gBADkB,OAAO,EAAE,iBAAiB,EACvD,WAAW,EAAE,WAAW;IAS5B,QAAQ,CAAC,OAAO,EAAE,UAAU,GAAG,OAAO,CAAC,SAAS,CAAC;CASxD"}
|