@byline/admin 0.9.3

package/dist/modules/admin-users/commands.d.ts

@@ -0,0 +1,45 @@
+/**
+ * This Source Code is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * Copyright (c) Infonomic Company Limited
+ */
+import type { RequestContext } from '@byline/auth';
+import type { AdminStore } from '../../store.js';
+import type { AdminUserListResponse, AdminUserResponse, OkResponse } from './schemas.js';
+/**
+ * Transport-agnostic commands for the admin-users module.
+ *
+ * Each command is a plain exported function — not a class method — to
+ * match Byline's existing `document-lifecycle` shape. Every command
+ * follows the same four steps in the same order:
+ *
+ *   1. `schema.parse(input)` — Zod-validate and normalise the raw input.
+ *      Throws `ZodError` on invalid shape; transport adapters translate
+ *      that into a 400-ish response.
+ *   2. `assertAdminActor(context, ability)` — require an `AdminAuth`
+ *      actor holding the specific ability. Throws `ERR_UNAUTHENTICATED`
+ *      or `ERR_FORBIDDEN`.
+ *   3. Call the `AdminUsersService` method with the validated input
+ *      (plus the actor where an invariant needs it).
+ *   4. Parse the response through its output schema. In production the
+ *      check is redundant with the DTO's type; in tests it catches
+ *      drift between schema and DTO early.
+ *
+ * The `deps` argument holds the `AdminStore`. The webapp wraps these in
+ * server fns that supply `deps` from the application's singleton store;
+ * scripts and tests construct their own store and pass it in directly.
+ */
+export interface AdminUsersCommandDeps {
+    store: AdminStore;
+}
+export declare function listAdminUsersCommand(context: RequestContext | undefined, input: unknown, deps: AdminUsersCommandDeps): Promise<AdminUserListResponse>;
+export declare function getAdminUserCommand(context: RequestContext | undefined, input: unknown, deps: AdminUsersCommandDeps): Promise<AdminUserResponse>;
+export declare function createAdminUserCommand(context: RequestContext | undefined, input: unknown, deps: AdminUsersCommandDeps): Promise<AdminUserResponse>;
+export declare function updateAdminUserCommand(context: RequestContext | undefined, input: unknown, deps: AdminUsersCommandDeps): Promise<AdminUserResponse>;
+export declare function setAdminUserPasswordCommand(context: RequestContext | undefined, input: unknown, deps: AdminUsersCommandDeps): Promise<AdminUserResponse>;
+export declare function enableAdminUserCommand(context: RequestContext | undefined, input: unknown, deps: AdminUsersCommandDeps): Promise<OkResponse>;
+export declare function disableAdminUserCommand(context: RequestContext | undefined, input: unknown, deps: AdminUsersCommandDeps): Promise<OkResponse>;
+export declare function deleteAdminUserCommand(context: RequestContext | undefined, input: unknown, deps: AdminUsersCommandDeps): Promise<OkResponse>;
+//# sourceMappingURL=commands.d.ts.map

package/dist/modules/admin-users/commands.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"commands.d.ts","sourceRoot":"","sources":["../../../src/modules/admin-users/commands.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,cAAc,CAAA;AAkBlD,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,gBAAgB,CAAA;AAChD,OAAO,KAAK,EAAE,qBAAqB,EAAE,iBAAiB,EAAE,UAAU,EAAE,MAAM,cAAc,CAAA;AAExF;;;;;;;;;;;;;;;;;;;;;;GAsBG;AAEH,MAAM,WAAW,qBAAqB;IACpC,KAAK,EAAE,UAAU,CAAA;CAClB;AAMD,wBAAsB,qBAAqB,CACzC,OAAO,EAAE,cAAc,GAAG,SAAS,EACnC,KAAK,EAAE,OAAO,EACd,IAAI,EAAE,qBAAqB,GAC1B,OAAO,CAAC,qBAAqB,CAAC,CAKhC;AAED,wBAAsB,mBAAmB,CACvC,OAAO,EAAE,cAAc,GAAG,SAAS,EACnC,KAAK,EAAE,OAAO,EACd,IAAI,EAAE,qBAAqB,GAC1B,OAAO,CAAC,iBAAiB,CAAC,CAK5B;AAED,wBAAsB,sBAAsB,CAC1C,OAAO,EAAE,cAAc,GAAG,SAAS,EACnC,KAAK,EAAE,OAAO,EACd,IAAI,EAAE,qBAAqB,GAC1B,OAAO,CAAC,iBAAiB,CAAC,CAK5B;AAED,wBAAsB,sBAAsB,CAC1C,OAAO,EAAE,cAAc,GAAG,SAAS,EACnC,KAAK,EAAE,OAAO,EACd,IAAI,EAAE,qBAAqB,GAC1B,OAAO,CAAC,iBAAiB,CAAC,CAK5B;AAED,wBAAsB,2BAA2B,CAC/C,OAAO,EAAE,cAAc,GAAG,SAAS,EACnC,KAAK,EAAE,OAAO,EACd,IAAI,EAAE,qBAAqB,GAC1B,OAAO,CAAC,iBAAiB,CAAC,CAK5B;AAED,wBAAsB,sBAAsB,CAC1C,OAAO,EAAE,cAAc,GAAG,SAAS,EACnC,KAAK,EAAE,OAAO,EACd,IAAI,EAAE,qBAAqB,GAC1B,OAAO,CAAC,UAAU,CAAC,CAKrB;AAED,wBAAsB,uBAAuB,CAC3C,OAAO,EAAE,cAAc,GAAG,SAAS,EACnC,KAAK,EAAE,OAAO,EACd,IAAI,EAAE,qBAAqB,GAC1B,OAAO,CAAC,UAAU,CAAC,CAKrB;AAED,wBAAsB,sBAAsB,CAC1C,OAAO,EAAE,cAAc,GAAG,SAAS,EACnC,KAAK,EAAE,OAAO,EACd,IAAI,EAAE,qBAAqB,GAC1B,OAAO,CAAC,UAAU,CAAC,CAKrB"}

package/dist/modules/admin-users/commands.js

@@ -0,0 +1,63 @@
+/**
+ * This Source Code is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * Copyright (c) Infonomic Company Limited
+ */
+import { assertAdminActor } from '../../lib/assert-admin-actor.js';
+import { ADMIN_USERS_ABILITIES } from './abilities.js';
+import { adminUserListResponseSchema, adminUserResponseSchema, createAdminUserRequestSchema, deleteAdminUserRequestSchema, disableAdminUserRequestSchema, enableAdminUserRequestSchema, getAdminUserRequestSchema, listAdminUsersRequestSchema, okResponseSchema, setAdminUserPasswordRequestSchema, updateAdminUserRequestSchema, } from './schemas.js';
+import { AdminUsersService } from './service.js';
+function serviceOf(deps) {
+    return new AdminUsersService({ repo: deps.store.adminUsers });
+}
+export async function listAdminUsersCommand(context, input, deps) {
+    const parsed = listAdminUsersRequestSchema.parse(input ?? {});
+    assertAdminActor(context, ADMIN_USERS_ABILITIES.read);
+    const result = await serviceOf(deps).listUsers(parsed);
+    return adminUserListResponseSchema.parse(result);
+}
+export async function getAdminUserCommand(context, input, deps) {
+    const parsed = getAdminUserRequestSchema.parse(input);
+    assertAdminActor(context, ADMIN_USERS_ABILITIES.read);
+    const result = await serviceOf(deps).getUser(parsed);
+    return adminUserResponseSchema.parse(result);
+}
+export async function createAdminUserCommand(context, input, deps) {
+    const parsed = createAdminUserRequestSchema.parse(input);
+    assertAdminActor(context, ADMIN_USERS_ABILITIES.create);
+    const result = await serviceOf(deps).createUser(parsed);
+    return adminUserResponseSchema.parse(result);
+}
+export async function updateAdminUserCommand(context, input, deps) {
+    const parsed = updateAdminUserRequestSchema.parse(input);
+    assertAdminActor(context, ADMIN_USERS_ABILITIES.update);
+    const result = await serviceOf(deps).updateUser(parsed);
+    return adminUserResponseSchema.parse(result);
+}
+export async function setAdminUserPasswordCommand(context, input, deps) {
+    const parsed = setAdminUserPasswordRequestSchema.parse(input);
+    assertAdminActor(context, ADMIN_USERS_ABILITIES.changePassword);
+    const result = await serviceOf(deps).setPassword(parsed);
+    return adminUserResponseSchema.parse(result);
+}
+export async function enableAdminUserCommand(context, input, deps) {
+    const parsed = enableAdminUserRequestSchema.parse(input);
+    assertAdminActor(context, ADMIN_USERS_ABILITIES.update);
+    await serviceOf(deps).enableUser(parsed);
+    return okResponseSchema.parse({ ok: true });
+}
+export async function disableAdminUserCommand(context, input, deps) {
+    const parsed = disableAdminUserRequestSchema.parse(input);
+    const actor = assertAdminActor(context, ADMIN_USERS_ABILITIES.update);
+    await serviceOf(deps).disableUser(actor, parsed);
+    return okResponseSchema.parse({ ok: true });
+}
+export async function deleteAdminUserCommand(context, input, deps) {
+    const parsed = deleteAdminUserRequestSchema.parse(input);
+    const actor = assertAdminActor(context, ADMIN_USERS_ABILITIES.delete);
+    await serviceOf(deps).deleteUser(actor, parsed);
+    return okResponseSchema.parse({ ok: true });
+}
+//# sourceMappingURL=commands.js.map

package/dist/modules/admin-users/commands.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"commands.js","sourceRoot":"","sources":["../../../src/modules/admin-users/commands.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH,OAAO,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAA;AAClE,OAAO,EAAE,qBAAqB,EAAE,MAAM,gBAAgB,CAAA;AACtD,OAAO,EACL,2BAA2B,EAC3B,uBAAuB,EACvB,4BAA4B,EAC5B,4BAA4B,EAC5B,6BAA6B,EAC7B,4BAA4B,EAC5B,yBAAyB,EACzB,2BAA2B,EAC3B,gBAAgB,EAChB,iCAAiC,EACjC,4BAA4B,GAC7B,MAAM,cAAc,CAAA;AACrB,OAAO,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAA;AAgChD,SAAS,SAAS,CAAC,IAA2B;IAC5C,OAAO,IAAI,iBAAiB,CAAC,EAAE,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC,CAAA;AAC/D,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,OAAmC,EACnC,KAAc,EACd,IAA2B;IAE3B,MAAM,MAAM,GAAG,2BAA2B,CAAC,KAAK,CAAC,KAAK,IAAI,EAAE,CAAC,CAAA;IAC7D,gBAAgB,CAAC,OAAO,EAAE,qBAAqB,CAAC,IAAI,CAAC,CAAA;IACrD,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,CAAA;IACtD,OAAO,2BAA2B,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;AAClD,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,OAAmC,EACnC,KAAc,EACd,IAA2B;IAE3B,MAAM,MAAM,GAAG,yBAAyB,CAAC,KAAK,CAAC,KAAK,CAAC,CAAA;IACrD,gBAAgB,CAAC,OAAO,EAAE,qBAAqB,CAAC,IAAI,CAAC,CAAA;IACrD,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAA;IACpD,OAAO,uBAAuB,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;AAC9C,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,OAAmC,EACnC,KAAc,EACd,IAA2B;IAE3B,MAAM,MAAM,GAAG,4BAA4B,CAAC,KAAK,CAAC,KAAK,CAAC,CAAA;IACxD,gBAAgB,CAAC,OAAO,EAAE,qBAAqB,CAAC,MAAM,CAAC,CAAA;IACvD,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,CAAA;IACvD,OAAO,uBAAuB,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;AAC9C,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,OAAmC,EACnC,KAAc,EACd,IAA2B;IAE3B,MAAM,MAAM,GAAG,4BAA4B,CAAC,KAAK,CAAC,KAAK,CAAC,CAAA;IACxD,gBAAgB,CAAC,OAAO,EAAE,qBAAqB,CAAC,MAAM,CAAC,CAAA;IACvD,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,CAAA;IACvD,OAAO,uBAAuB,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;AAC9C,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,2BAA2B,CAC/C,OAAmC,EACnC,KAAc,EACd,IAA2B;IAE3B,MAAM,MAAM,GAAG,iCAAiC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAA;IAC7D,gBAAgB,CAAC,OAAO,EAAE,qBAAqB,CAAC,cAAc,CAAC,CAAA;IAC/D,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,CAAC,WAAW,CAAC,MAAM,CAAC,CAAA;IACxD,OAAO,uBAAuB,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;AAC9C,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,OAAmC,EACnC,KAAc,EACd,IAA2B;IAE3B,MAAM,MAAM,GAAG,4BAA4B,CAAC,KAAK,CAAC,KAAK,CAAC,CAAA;IACxD,gBAAgB,CAAC,OAAO,EAAE,qBAAqB,CAAC,MAAM,CAAC,CAAA;IACvD,MAAM,SAAS,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,CAAA;IACxC,OAAO,gBAAgB,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAA;AAC7C,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAC3C,OAAmC,EACnC,KAAc,EACd,IAA2B;IAE3B,MAAM,MAAM,GAAG,6BAA6B,CAAC,KAAK,CAAC,KAAK,CAAC,CAAA;IACzD,MAAM,KAAK,GAAG,gBAAgB,CAAC,OAAO,EAAE,qBAAqB,CAAC,MAAM,CAAC,CAAA;IACrE,MAAM,SAAS,CAAC,IAAI,CAAC,CAAC,WAAW,CAAC,KAAK,EAAE,MAAM,CAAC,CAAA;IAChD,OAAO,gBAAgB,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAA;AAC7C,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,OAAmC,EACnC,KAAc,EACd,IAA2B;IAE3B,MAAM,MAAM,GAAG,4BAA4B,CAAC,KAAK,CAAC,KAAK,CAAC,CAAA;IACxD,MAAM,KAAK,GAAG,gBAAgB,CAAC,OAAO,EAAE,qBAAqB,CAAC,MAAM,CAAC,CAAA;IACrE,MAAM,SAAS,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,KAAK,EAAE,MAAM,CAAC,CAAA;IAC/C,OAAO,gBAAgB,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAA;AAC7C,CAAC"}

package/dist/modules/admin-users/dto.d.ts

@@ -0,0 +1,20 @@
+/**
+ * This Source Code is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * Copyright (c) Infonomic Company Limited
+ */
+import type { AdminUserRow } from './repository.js';
+import type { AdminUserResponse } from './schemas.js';
+/**
+ * Shape an `AdminUserRow` into its public `AdminUserResponse` form.
+ *
+ * The row type from the repository already omits `password_hash`, so
+ * this is effectively an identity map — the indirection exists so that
+ * if internal fields ever get added to the row (e.g. tenant id,
+ * soft-delete timestamp), they are explicitly opted out of the public
+ * shape here rather than leaking by default.
+ */
+export declare function toAdminUser(row: AdminUserRow): AdminUserResponse;
+//# sourceMappingURL=dto.d.ts.map

package/dist/modules/admin-users/dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dto.d.ts","sourceRoot":"","sources":["../../../src/modules/admin-users/dto.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAA;AACnD,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAA;AAErD;;;;;;;;GAQG;AACH,wBAAgB,WAAW,CAAC,GAAG,EAAE,YAAY,GAAG,iBAAiB,CAkBhE"}

package/dist/modules/admin-users/dto.js

@@ -0,0 +1,36 @@
+/**
+ * This Source Code is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * Copyright (c) Infonomic Company Limited
+ */
+/**
+ * Shape an `AdminUserRow` into its public `AdminUserResponse` form.
+ *
+ * The row type from the repository already omits `password_hash`, so
+ * this is effectively an identity map — the indirection exists so that
+ * if internal fields ever get added to the row (e.g. tenant id,
+ * soft-delete timestamp), they are explicitly opted out of the public
+ * shape here rather than leaking by default.
+ */
+export function toAdminUser(row) {
+    return {
+        id: row.id,
+        vid: row.vid,
+        email: row.email,
+        given_name: row.given_name,
+        family_name: row.family_name,
+        username: row.username,
+        remember_me: row.remember_me,
+        last_login: row.last_login,
+        last_login_ip: row.last_login_ip,
+        failed_login_attempts: row.failed_login_attempts,
+        is_super_admin: row.is_super_admin,
+        is_enabled: row.is_enabled,
+        is_email_verified: row.is_email_verified,
+        created_at: row.created_at,
+        updated_at: row.updated_at,
+    };
+}
+//# sourceMappingURL=dto.js.map

package/dist/modules/admin-users/dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dto.js","sourceRoot":"","sources":["../../../src/modules/admin-users/dto.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAKH;;;;;;;;GAQG;AACH,MAAM,UAAU,WAAW,CAAC,GAAiB;IAC3C,OAAO;QACL,EAAE,EAAE,GAAG,CAAC,EAAE;QACV,GAAG,EAAE,GAAG,CAAC,GAAG;QACZ,KAAK,EAAE,GAAG,CAAC,KAAK;QAChB,UAAU,EAAE,GAAG,CAAC,UAAU;QAC1B,WAAW,EAAE,GAAG,CAAC,WAAW;QAC5B,QAAQ,EAAE,GAAG,CAAC,QAAQ;QACtB,WAAW,EAAE,GAAG,CAAC,WAAW;QAC5B,UAAU,EAAE,GAAG,CAAC,UAAU;QAC1B,aAAa,EAAE,GAAG,CAAC,aAAa;QAChC,qBAAqB,EAAE,GAAG,CAAC,qBAAqB;QAChD,cAAc,EAAE,GAAG,CAAC,cAAc;QAClC,UAAU,EAAE,GAAG,CAAC,UAAU;QAC1B,iBAAiB,EAAE,GAAG,CAAC,iBAAiB;QACxC,UAAU,EAAE,GAAG,CAAC,UAAU;QAC1B,UAAU,EAAE,GAAG,CAAC,UAAU;KAC3B,CAAA;AACH,CAAC"}

package/dist/modules/admin-users/errors.d.ts

@@ -0,0 +1,53 @@
+/**
+ * This Source Code is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * Copyright (c) Infonomic Company Limited
+ */
+/**
+ * Module-local error codes for admin-users.
+ *
+ * Follows the same `code + factory` shape used by `AuthError` in
+ * `@byline/auth`, but with its own class so consumers can distinguish
+ * admin-users-specific failures from generic auth failures (e.g. to
+ * translate `EMAIL_IN_USE` into a 409 at a transport boundary while
+ * `FORBIDDEN` maps to 403).
+ *
+ * The codes are intentionally prefixed — `admin.users.*` — so they sort
+ * alongside the matching ability keys in logs and admin UI messages.
+ */
+export declare const AdminUsersErrorCodes: {
+    readonly NOT_FOUND: "admin.users.notFound";
+    readonly EMAIL_IN_USE: "admin.users.emailInUse";
+    readonly SELF_DELETE_FORBIDDEN: "admin.users.selfDeleteForbidden";
+    readonly SELF_DISABLE_FORBIDDEN: "admin.users.selfDisableForbidden";
+    readonly VERSION_CONFLICT: "admin.users.versionConflict";
+};
+export type AdminUsersErrorCode = (typeof AdminUsersErrorCodes)[keyof typeof AdminUsersErrorCodes];
+export interface AdminUsersErrorOptions {
+    message?: string;
+    cause?: unknown;
+}
+export declare class AdminUsersError extends Error {
+    readonly code: AdminUsersErrorCode;
+    constructor(code: AdminUsersErrorCode, options: {
+        message: string;
+        cause?: unknown;
+    });
+}
+/** The referenced admin user id does not exist. */
+export declare const ERR_ADMIN_USER_NOT_FOUND: (options?: AdminUsersErrorOptions) => AdminUsersError;
+/** Creating or updating an admin user conflicts with an existing email. */
+export declare const ERR_ADMIN_USER_EMAIL_IN_USE: (options?: AdminUsersErrorOptions) => AdminUsersError;
+/** The actor attempted to delete their own admin-user row. */
+export declare const ERR_ADMIN_USER_SELF_DELETE: (options?: AdminUsersErrorOptions) => AdminUsersError;
+/** The actor attempted to disable their own admin-user row. */
+export declare const ERR_ADMIN_USER_SELF_DISABLE: (options?: AdminUsersErrorOptions) => AdminUsersError;
+/**
+ * The stored `vid` does not match the client-supplied `expectedVid` —
+ * the caller is holding a stale version of the row. Typical admin-UI
+ * response is to reload the edit form with the current values.
+ */
+export declare const ERR_ADMIN_USER_VERSION_CONFLICT: (options?: AdminUsersErrorOptions) => AdminUsersError;
+//# sourceMappingURL=errors.d.ts.map

package/dist/modules/admin-users/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../../src/modules/admin-users/errors.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH;;;;;;;;;;;GAWG;AAEH,eAAO,MAAM,oBAAoB;;;;;;CAMvB,CAAA;AAEV,MAAM,MAAM,mBAAmB,GAAG,CAAC,OAAO,oBAAoB,CAAC,CAAC,MAAM,OAAO,oBAAoB,CAAC,CAAA;AAElG,MAAM,WAAW,sBAAsB;IACrC,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,KAAK,CAAC,EAAE,OAAO,CAAA;CAChB;AAED,qBAAa,eAAgB,SAAQ,KAAK;IACxC,SAAgB,IAAI,EAAE,mBAAmB,CAAA;gBAE7B,IAAI,EAAE,mBAAmB,EAAE,OAAO,EAAE;QAAE,OAAO,EAAE,MAAM,CAAC;QAAC,KAAK,CAAC,EAAE,OAAO,CAAA;KAAE;CAKrF;AAUD,mDAAmD;AACnD,eAAO,MAAM,wBAAwB,aAPxB,sBAAsB,KAAG,eAO8D,CAAA;AAEpG,2EAA2E;AAC3E,eAAO,MAAM,2BAA2B,aAV3B,sBAAsB,KAAG,eAarC,CAAA;AAED,8DAA8D;AAC9D,eAAO,MAAM,0BAA0B,aAhB1B,sBAAsB,KAAG,eAmBrC,CAAA;AAED,+DAA+D;AAC/D,eAAO,MAAM,2BAA2B,aAtB3B,sBAAsB,KAAG,eAyBrC,CAAA;AAED;;;;GAIG;AACH,eAAO,MAAM,+BAA+B,aAhC/B,sBAAsB,KAAG,eAmCrC,CAAA"}

package/dist/modules/admin-users/errors.js

@@ -0,0 +1,53 @@
+/**
+ * This Source Code is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * Copyright (c) Infonomic Company Limited
+ */
+/**
+ * Module-local error codes for admin-users.
+ *
+ * Follows the same `code + factory` shape used by `AuthError` in
+ * `@byline/auth`, but with its own class so consumers can distinguish
+ * admin-users-specific failures from generic auth failures (e.g. to
+ * translate `EMAIL_IN_USE` into a 409 at a transport boundary while
+ * `FORBIDDEN` maps to 403).
+ *
+ * The codes are intentionally prefixed — `admin.users.*` — so they sort
+ * alongside the matching ability keys in logs and admin UI messages.
+ */
+export const AdminUsersErrorCodes = {
+    NOT_FOUND: 'admin.users.notFound',
+    EMAIL_IN_USE: 'admin.users.emailInUse',
+    SELF_DELETE_FORBIDDEN: 'admin.users.selfDeleteForbidden',
+    SELF_DISABLE_FORBIDDEN: 'admin.users.selfDisableForbidden',
+    VERSION_CONFLICT: 'admin.users.versionConflict',
+};
+export class AdminUsersError extends Error {
+    code;
+    constructor(code, options) {
+        super(options.message, options.cause != null ? { cause: options.cause } : undefined);
+        this.name = 'AdminUsersError';
+        this.code = code;
+    }
+}
+const make = (code, defaultMessage) => (options) => new AdminUsersError(code, {
+    message: options?.message ?? defaultMessage,
+    cause: options?.cause,
+});
+/** The referenced admin user id does not exist. */
+export const ERR_ADMIN_USER_NOT_FOUND = make(AdminUsersErrorCodes.NOT_FOUND, 'admin user not found');
+/** Creating or updating an admin user conflicts with an existing email. */
+export const ERR_ADMIN_USER_EMAIL_IN_USE = make(AdminUsersErrorCodes.EMAIL_IN_USE, 'email already in use');
+/** The actor attempted to delete their own admin-user row. */
+export const ERR_ADMIN_USER_SELF_DELETE = make(AdminUsersErrorCodes.SELF_DELETE_FORBIDDEN, 'cannot delete your own admin account');
+/** The actor attempted to disable their own admin-user row. */
+export const ERR_ADMIN_USER_SELF_DISABLE = make(AdminUsersErrorCodes.SELF_DISABLE_FORBIDDEN, 'cannot disable your own admin account');
+/**
+ * The stored `vid` does not match the client-supplied `expectedVid` —
+ * the caller is holding a stale version of the row. Typical admin-UI
+ * response is to reload the edit form with the current values.
+ */
+export const ERR_ADMIN_USER_VERSION_CONFLICT = make(AdminUsersErrorCodes.VERSION_CONFLICT, 'admin user has been modified elsewhere — please reload and try again');
+//# sourceMappingURL=errors.js.map

package/dist/modules/admin-users/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../../../src/modules/admin-users/errors.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH;;;;;;;;;;;GAWG;AAEH,MAAM,CAAC,MAAM,oBAAoB,GAAG;IAClC,SAAS,EAAE,sBAAsB;IACjC,YAAY,EAAE,wBAAwB;IACtC,qBAAqB,EAAE,iCAAiC;IACxD,sBAAsB,EAAE,kCAAkC;IAC1D,gBAAgB,EAAE,6BAA6B;CACvC,CAAA;AASV,MAAM,OAAO,eAAgB,SAAQ,KAAK;IACxB,IAAI,CAAqB;IAEzC,YAAY,IAAyB,EAAE,OAA6C;QAClF,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,OAAO,CAAC,KAAK,IAAI,IAAI,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,CAAA;QACpF,IAAI,CAAC,IAAI,GAAG,iBAAiB,CAAA;QAC7B,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;IAClB,CAAC;CACF;AAED,MAAM,IAAI,GACR,CAAC,IAAyB,EAAE,cAAsB,EAAE,EAAE,CACtD,CAAC,OAAgC,EAAmB,EAAE,CACpD,IAAI,eAAe,CAAC,IAAI,EAAE;IACxB,OAAO,EAAE,OAAO,EAAE,OAAO,IAAI,cAAc;IAC3C,KAAK,EAAE,OAAO,EAAE,KAAK;CACtB,CAAC,CAAA;AAEN,mDAAmD;AACnD,MAAM,CAAC,MAAM,wBAAwB,GAAG,IAAI,CAAC,oBAAoB,CAAC,SAAS,EAAE,sBAAsB,CAAC,CAAA;AAEpG,2EAA2E;AAC3E,MAAM,CAAC,MAAM,2BAA2B,GAAG,IAAI,CAC7C,oBAAoB,CAAC,YAAY,EACjC,sBAAsB,CACvB,CAAA;AAED,8DAA8D;AAC9D,MAAM,CAAC,MAAM,0BAA0B,GAAG,IAAI,CAC5C,oBAAoB,CAAC,qBAAqB,EAC1C,sCAAsC,CACvC,CAAA;AAED,+DAA+D;AAC/D,MAAM,CAAC,MAAM,2BAA2B,GAAG,IAAI,CAC7C,oBAAoB,CAAC,sBAAsB,EAC3C,uCAAuC,CACxC,CAAA;AAED;;;;GAIG;AACH,MAAM,CAAC,MAAM,+BAA+B,GAAG,IAAI,CACjD,oBAAoB,CAAC,gBAAgB,EACrC,sEAAsE,CACvE,CAAA"}

package/dist/modules/admin-users/index.d.ts

@@ -0,0 +1,31 @@
+/**
+ * This Source Code is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * Copyright (c) Infonomic Company Limited
+ */
+/**
+ * `@byline/admin/admin-users` — admin user CRUD.
+ *
+ * Exports the adapter-facing `AdminUsersRepository` contract, ability
+ * keys, transport-agnostic commands, the `AdminUsersService`, the seed
+ * helper, and the module's error types. Commands are the recommended
+ * entry point for any caller; the service is exposed for internal uses
+ * (seeds, other services) that want to skip Zod/ability overhead.
+ *
+ * Password hashing is owned by `@byline/admin/auth`; this module takes
+ * pre-hashed `password_hash` strings on the repository boundary so the
+ * adapter never sees plaintext.
+ */
+export { ADMIN_USERS_ABILITIES, type AdminUsersAbilityKey, registerAdminUsersAbilities, } from './abilities.js';
+export { createAdminUserCommand, deleteAdminUserCommand, disableAdminUserCommand, enableAdminUserCommand, getAdminUserCommand, listAdminUsersCommand, setAdminUserPasswordCommand, updateAdminUserCommand, } from './commands.js';
+export { toAdminUser } from './dto.js';
+export { AdminUsersError, type AdminUsersErrorCode, AdminUsersErrorCodes, ERR_ADMIN_USER_EMAIL_IN_USE, ERR_ADMIN_USER_NOT_FOUND, ERR_ADMIN_USER_SELF_DELETE, ERR_ADMIN_USER_SELF_DISABLE, ERR_ADMIN_USER_VERSION_CONFLICT, } from './errors.js';
+export { adminUserListResponseSchema, adminUserResponseSchema, createAdminUserRequestSchema, deleteAdminUserRequestSchema, disableAdminUserRequestSchema, enableAdminUserRequestSchema, getAdminUserRequestSchema, listAdminUsersRequestSchema, okResponseSchema, setAdminUserPasswordRequestSchema, updateAdminUserRequestSchema, } from './schemas.js';
+export { type SeedSuperAdminInput, type SeedSuperAdminResult, seedSuperAdmin, } from './seed-super-admin.js';
+export { AdminUsersService } from './service.js';
+export type { AdminUsersCommandDeps } from './commands.js';
+export type { AdminUserListOrder, AdminUserRow, AdminUsersRepository, AdminUserWithPasswordRow, CountAdminUsersOptions, CreateAdminUserInput, ListAdminUsersOptions, UpdateAdminUserInput, } from './repository.js';
+export type { AdminUserListResponse, AdminUserResponse, CreateAdminUserRequest, DeleteAdminUserRequest, DisableAdminUserRequest, EnableAdminUserRequest, GetAdminUserRequest, ListAdminUsersRequest, OkResponse, SetAdminUserPasswordRequest, UpdateAdminUserRequest, } from './schemas.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/modules/admin-users/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/modules/admin-users/index.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH;;;;;;;;;;;;GAYG;AAEH,OAAO,EACL,qBAAqB,EACrB,KAAK,oBAAoB,EACzB,2BAA2B,GAC5B,MAAM,gBAAgB,CAAA;AACvB,OAAO,EACL,sBAAsB,EACtB,sBAAsB,EACtB,uBAAuB,EACvB,sBAAsB,EACtB,mBAAmB,EACnB,qBAAqB,EACrB,2BAA2B,EAC3B,sBAAsB,GACvB,MAAM,eAAe,CAAA;AACtB,OAAO,EAAE,WAAW,EAAE,MAAM,UAAU,CAAA;AACtC,OAAO,EACL,eAAe,EACf,KAAK,mBAAmB,EACxB,oBAAoB,EACpB,2BAA2B,EAC3B,wBAAwB,EACxB,0BAA0B,EAC1B,2BAA2B,EAC3B,+BAA+B,GAChC,MAAM,aAAa,CAAA;AACpB,OAAO,EACL,2BAA2B,EAC3B,uBAAuB,EACvB,4BAA4B,EAC5B,4BAA4B,EAC5B,6BAA6B,EAC7B,4BAA4B,EAC5B,yBAAyB,EACzB,2BAA2B,EAC3B,gBAAgB,EAChB,iCAAiC,EACjC,4BAA4B,GAC7B,MAAM,cAAc,CAAA;AACrB,OAAO,EACL,KAAK,mBAAmB,EACxB,KAAK,oBAAoB,EACzB,cAAc,GACf,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAA;AAChD,YAAY,EAAE,qBAAqB,EAAE,MAAM,eAAe,CAAA;AAC1D,YAAY,EACV,kBAAkB,EAClB,YAAY,EACZ,oBAAoB,EACpB,wBAAwB,EACxB,sBAAsB,EACtB,oBAAoB,EACpB,qBAAqB,EACrB,oBAAoB,GACrB,MAAM,iBAAiB,CAAA;AACxB,YAAY,EACV,qBAAqB,EACrB,iBAAiB,EACjB,sBAAsB,EACtB,sBAAsB,EACtB,uBAAuB,EACvB,sBAAsB,EACtB,mBAAmB,EACnB,qBAAqB,EACrB,UAAU,EACV,2BAA2B,EAC3B,sBAAsB,GACvB,MAAM,cAAc,CAAA"}

package/dist/modules/admin-users/index.js

@@ -0,0 +1,28 @@
+/**
+ * This Source Code is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * Copyright (c) Infonomic Company Limited
+ */
+/**
+ * `@byline/admin/admin-users` — admin user CRUD.
+ *
+ * Exports the adapter-facing `AdminUsersRepository` contract, ability
+ * keys, transport-agnostic commands, the `AdminUsersService`, the seed
+ * helper, and the module's error types. Commands are the recommended
+ * entry point for any caller; the service is exposed for internal uses
+ * (seeds, other services) that want to skip Zod/ability overhead.
+ *
+ * Password hashing is owned by `@byline/admin/auth`; this module takes
+ * pre-hashed `password_hash` strings on the repository boundary so the
+ * adapter never sees plaintext.
+ */
+export { ADMIN_USERS_ABILITIES, registerAdminUsersAbilities, } from './abilities.js';
+export { createAdminUserCommand, deleteAdminUserCommand, disableAdminUserCommand, enableAdminUserCommand, getAdminUserCommand, listAdminUsersCommand, setAdminUserPasswordCommand, updateAdminUserCommand, } from './commands.js';
+export { toAdminUser } from './dto.js';
+export { AdminUsersError, AdminUsersErrorCodes, ERR_ADMIN_USER_EMAIL_IN_USE, ERR_ADMIN_USER_NOT_FOUND, ERR_ADMIN_USER_SELF_DELETE, ERR_ADMIN_USER_SELF_DISABLE, ERR_ADMIN_USER_VERSION_CONFLICT, } from './errors.js';
+export { adminUserListResponseSchema, adminUserResponseSchema, createAdminUserRequestSchema, deleteAdminUserRequestSchema, disableAdminUserRequestSchema, enableAdminUserRequestSchema, getAdminUserRequestSchema, listAdminUsersRequestSchema, okResponseSchema, setAdminUserPasswordRequestSchema, updateAdminUserRequestSchema, } from './schemas.js';
+export { seedSuperAdmin, } from './seed-super-admin.js';
+export { AdminUsersService } from './service.js';
+//# sourceMappingURL=index.js.map

package/dist/modules/admin-users/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/modules/admin-users/index.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH;;;;;;;;;;;;GAYG;AAEH,OAAO,EACL,qBAAqB,EAErB,2BAA2B,GAC5B,MAAM,gBAAgB,CAAA;AACvB,OAAO,EACL,sBAAsB,EACtB,sBAAsB,EACtB,uBAAuB,EACvB,sBAAsB,EACtB,mBAAmB,EACnB,qBAAqB,EACrB,2BAA2B,EAC3B,sBAAsB,GACvB,MAAM,eAAe,CAAA;AACtB,OAAO,EAAE,WAAW,EAAE,MAAM,UAAU,CAAA;AACtC,OAAO,EACL,eAAe,EAEf,oBAAoB,EACpB,2BAA2B,EAC3B,wBAAwB,EACxB,0BAA0B,EAC1B,2BAA2B,EAC3B,+BAA+B,GAChC,MAAM,aAAa,CAAA;AACpB,OAAO,EACL,2BAA2B,EAC3B,uBAAuB,EACvB,4BAA4B,EAC5B,4BAA4B,EAC5B,6BAA6B,EAC7B,4BAA4B,EAC5B,yBAAyB,EACzB,2BAA2B,EAC3B,gBAAgB,EAChB,iCAAiC,EACjC,4BAA4B,GAC7B,MAAM,cAAc,CAAA;AACrB,OAAO,EAGL,cAAc,GACf,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAA"}

package/dist/modules/admin-users/repository.d.ts

@@ -0,0 +1,147 @@
+/**
+ * This Source Code is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * Copyright (c) Infonomic Company Limited
+ */
+/**
+ * `AdminUsersRepository` — the DB-adapter-facing contract for the
+ * `byline_admin_users` table.
+ *
+ * The interface deliberately takes **pre-hashed** password strings
+ * (`password_hash`) rather than plaintext. Argon2 / bcrypt hashing is a
+ * service-layer concern that depends on `@byline/admin/auth` primitives;
+ * keeping it out of the repository means the adapter stays unaware of
+ * password policy and the hashing library of the day.
+ *
+ * **Optimistic concurrency.** Content-shaped writes (`update`,
+ * `setPasswordHash`, `delete`) take an `expectedVid` and bump the stored
+ * `vid` on success. If the stored `vid` does not match `expectedVid` the
+ * adapter throws `AdminUsersError(VERSION_CONFLICT)`, signalling a stale
+ * client. Admin-intent writes that do not depend on current state
+ * (`setEnabled`, login counters) are vid-less — last-writer-wins is the
+ * right semantic for those.
+ *
+ * Adapters (e.g. `@byline/db-postgres`) implement this interface; admin
+ * services (`seed-super-admin`, admin-user commands) consume it. No
+ * caller should ever construct `AdminUsersRepository` instances directly
+ * outside the adapter — use the `AdminStore` bundle passed at
+ * `initBylineCore()` time.
+ */
+/**
+ * Public-facing admin-user row — the `password_hash` column is
+ * deliberately omitted. Only `getByEmailForSignIn` returns the hash, and
+ * only so the session provider can verify it.
+ */
+export interface AdminUserRow {
+    id: string;
+    vid: number;
+    given_name: string | null;
+    family_name: string | null;
+    username: string | null;
+    email: string;
+    remember_me: boolean;
+    last_login: Date | null;
+    last_login_ip: string | null;
+    failed_login_attempts: number;
+    is_super_admin: boolean;
+    is_enabled: boolean;
+    is_email_verified: boolean;
+    created_at: Date;
+    updated_at: Date;
+}
+/**
+ * Admin-user row including the PHC password hash. Returned only by
+ * `getByEmailForSignIn` — callers must treat it with care (never log,
+ * never return to clients).
+ */
+export interface AdminUserWithPasswordRow extends AdminUserRow {
+    password_hash: string;
+}
+export interface CreateAdminUserInput {
+    email: string;
+    /** Pre-hashed PHC string. Service layer hashes plaintext before calling. */
+    password_hash: string;
+    given_name?: string | null;
+    family_name?: string | null;
+    username?: string | null;
+    is_super_admin?: boolean;
+    is_enabled?: boolean;
+    is_email_verified?: boolean;
+}
+export interface UpdateAdminUserInput {
+    given_name?: string | null;
+    family_name?: string | null;
+    username?: string | null;
+    email?: string;
+    is_super_admin?: boolean;
+    is_enabled?: boolean;
+    is_email_verified?: boolean;
+    remember_me?: boolean;
+}
+export type AdminUserListOrder = 'given_name' | 'family_name' | 'email' | 'username' | 'created_at' | 'updated_at';
+export interface ListAdminUsersOptions {
+    /** 1-based page number. */
+    page: number;
+    /** Page size. Reasonable ceiling applied at the command layer. */
+    pageSize: number;
+    /** Free-text search across email, given_name, family_name, username. */
+    query?: string;
+    /** Column to sort by. */
+    order: AdminUserListOrder;
+    /** True for DESC, false for ASC. */
+    desc: boolean;
+}
+export interface CountAdminUsersOptions {
+    /** Free-text search — same semantics as `list`. */
+    query?: string;
+}
+export interface AdminUsersRepository {
+    create(input: CreateAdminUserInput): Promise<AdminUserRow>;
+    getById(id: string): Promise<AdminUserRow | null>;
+    getByEmail(email: string): Promise<AdminUserRow | null>;
+    getByUsername(username: string): Promise<AdminUserRow | null>;
+    /**
+     * Sign-in-only lookup. Returns the PHC hash alongside the public row so
+     * the session provider can verify. Callers **must not** persist or echo
+     * the `password_hash` field.
+     */
+    getByEmailForSignIn(email: string): Promise<AdminUserWithPasswordRow | null>;
+    /**
+     * Authenticated-verification lookup. Same shape as
+     * `getByEmailForSignIn` but keyed by id — used by the self-service
+     * change-password flow, where the actor is already authenticated and
+     * we need to verify the *current* password before swapping in a new
+     * one. Same handling rules apply: callers **must not** persist or
+     * echo the `password_hash` field.
+     */
+    getByIdForSignIn(id: string): Promise<AdminUserWithPasswordRow | null>;
+    /** Paginated, filtered, sorted list. */
+    list(options: ListAdminUsersOptions): Promise<AdminUserRow[]>;
+    /** Total row count matching the same filter (for pager `total_pages`). */
+    count(options?: CountAdminUsersOptions): Promise<number>;
+    /**
+     * Content update with optimistic concurrency. Throws
+     * `AdminUsersError(VERSION_CONFLICT)` if the stored `vid` differs from
+     * `expectedVid`. Bumps `vid` on success and returns the fresh row.
+     */
+    update(id: string, expectedVid: number, patch: UpdateAdminUserInput): Promise<AdminUserRow>;
+    /**
+     * Replace the stored password hash with optimistic concurrency.
+     * Version-gated on `expectedVid`. Caller supplies a pre-hashed PHC string.
+     * Returns the updated row so callers holding the edit form can refresh
+     * their cached `vid` without a second round-trip.
+     */
+    setPasswordHash(id: string, expectedVid: number, passwordHash: string): Promise<AdminUserRow>;
+    /** Toggle enabled state. Vid-less — admin intent is independent of other edits. */
+    setEnabled(id: string, enabled: boolean): Promise<void>;
+    recordLoginSuccess(id: string, ip: string | null): Promise<void>;
+    recordLoginFailure(id: string): Promise<void>;
+    /**
+     * Delete with optimistic concurrency. Version-gated on `expectedVid` to
+     * prevent races against a concurrent update.
+     */
+    delete(id: string, expectedVid: number): Promise<void>;
+}
+//# sourceMappingURL=repository.d.ts.map

package/dist/modules/admin-users/repository.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"repository.d.ts","sourceRoot":"","sources":["../../../src/modules/admin-users/repository.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AAEH;;;;GAIG;AACH,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,CAAA;IACV,GAAG,EAAE,MAAM,CAAA;IACX,UAAU,EAAE,MAAM,GAAG,IAAI,CAAA;IACzB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAA;IAC1B,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAA;IACvB,KAAK,EAAE,MAAM,CAAA;IACb,WAAW,EAAE,OAAO,CAAA;IACpB,UAAU,EAAE,IAAI,GAAG,IAAI,CAAA;IACvB,aAAa,EAAE,MAAM,GAAG,IAAI,CAAA;IAC5B,qBAAqB,EAAE,MAAM,CAAA;IAC7B,cAAc,EAAE,OAAO,CAAA;IACvB,UAAU,EAAE,OAAO,CAAA;IACnB,iBAAiB,EAAE,OAAO,CAAA;IAC1B,UAAU,EAAE,IAAI,CAAA;IAChB,UAAU,EAAE,IAAI,CAAA;CACjB;AAED;;;;GAIG;AACH,MAAM,WAAW,wBAAyB,SAAQ,YAAY;IAC5D,aAAa,EAAE,MAAM,CAAA;CACtB;AAED,MAAM,WAAW,oBAAoB;IACnC,KAAK,EAAE,MAAM,CAAA;IACb,4EAA4E;IAC5E,aAAa,EAAE,MAAM,CAAA;IACrB,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IAC1B,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IAC3B,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IACxB,cAAc,CAAC,EAAE,OAAO,CAAA;IACxB,UAAU,CAAC,EAAE,OAAO,CAAA;IACpB,iBAAiB,CAAC,EAAE,OAAO,CAAA;CAC5B;AAED,MAAM,WAAW,oBAAoB;IACnC,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IAC1B,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IAC3B,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IACxB,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,cAAc,CAAC,EAAE,OAAO,CAAA;IACxB,UAAU,CAAC,EAAE,OAAO,CAAA;IACpB,iBAAiB,CAAC,EAAE,OAAO,CAAA;IAC3B,WAAW,CAAC,EAAE,OAAO,CAAA;CACtB;AAED,MAAM,MAAM,kBAAkB,GAC1B,YAAY,GACZ,aAAa,GACb,OAAO,GACP,UAAU,GACV,YAAY,GACZ,YAAY,CAAA;AAEhB,MAAM,WAAW,qBAAqB;IACpC,2BAA2B;IAC3B,IAAI,EAAE,MAAM,CAAA;IACZ,kEAAkE;IAClE,QAAQ,EAAE,MAAM,CAAA;IAChB,wEAAwE;IACxE,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,yBAAyB;IACzB,KAAK,EAAE,kBAAkB,CAAA;IACzB,oCAAoC;IACpC,IAAI,EAAE,OAAO,CAAA;CACd;AAED,MAAM,WAAW,sBAAsB;IACrC,mDAAmD;IACnD,KAAK,CAAC,EAAE,MAAM,CAAA;CACf;AAED,MAAM,WAAW,oBAAoB;IACnC,MAAM,CAAC,KAAK,EAAE,oBAAoB,GAAG,OAAO,CAAC,YAAY,CAAC,CAAA;IAC1D,OAAO,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAAA;IACjD,UAAU,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAAA;IACvD,aAAa,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAAA;IAC7D;;;;OAIG;IACH,mBAAmB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,wBAAwB,GAAG,IAAI,CAAC,CAAA;IAC5E;;;;;;;OAOG;IACH,gBAAgB,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,wBAAwB,GAAG,IAAI,CAAC,CAAA;IACtE,wCAAwC;IACxC,IAAI,CAAC,OAAO,EAAE,qBAAqB,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,CAAA;IAC7D,0EAA0E;IAC1E,KAAK,CAAC,OAAO,CAAC,EAAE,sBAAsB,GAAG,OAAO,CAAC,MAAM,CAAC,CAAA;IACxD;;;;OAIG;IACH,MAAM,CAAC,EAAE,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,KAAK,EAAE,oBAAoB,GAAG,OAAO,CAAC,YAAY,CAAC,CAAA;IAC3F;;;;;OAKG;IACH,eAAe,CAAC,EAAE,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC,CAAA;IAC7F,mFAAmF;IACnF,UAAU,CAAC,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IACvD,kBAAkB,CAAC,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAChE,kBAAkB,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAC7C;;;OAGG;IACH,MAAM,CAAC,EAAE,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;CACvD"}

package/dist/modules/admin-users/repository.js

@@ -0,0 +1,9 @@
+/**
+ * This Source Code is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * Copyright (c) Infonomic Company Limited
+ */
+export {};
+//# sourceMappingURL=repository.js.map

package/dist/modules/admin-users/repository.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"repository.js","sourceRoot":"","sources":["../../../src/modules/admin-users/repository.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG"}