@constructive-io/graphql-server 4.18.1 → 4.18.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (3) hide show
  1. package/esm/middleware/graphile.js +51 -1
  2. package/middleware/graphile.js +51 -1
  3. package/package.json +2 -2
package/esm/middleware/graphile.js CHANGED
@@ -18,31 +18,81 @@ const SAFE_ERROR_CODES = new Set([
18
18
  'PERSISTED_QUERY_NOT_SUPPORTED',
19
19
  // Auth
20
20
  'UNAUTHENTICATED',
21
+ 'NOT_AUTHENTICATED',
22
+ 'USER_NOT_AUTHENTICATED',
21
23
  'FORBIDDEN',
22
24
  'BAD_USER_INPUT',
23
25
  'INCORRECT_PASSWORD',
24
26
  'PASSWORD_INSECURE',
27
+ 'ACCOUNT_LOCKED',
25
28
  'ACCOUNT_LOCKED_EXCEED_ATTEMPTS',
26
29
  'ACCOUNT_DISABLED',
27
30
  'ACCOUNT_EXISTS',
31
+ 'ACCOUNT_NOT_FOUND',
32
+ 'USER_NOT_FOUND',
33
+ 'INVALID_USER',
34
+ 'INVALID_TOKEN',
35
+ 'INVALID_CODE',
36
+ 'NO_PRIMARY_EMAIL',
37
+ 'NO_CREDENTIALS',
28
38
  'PASSWORD_LEN',
29
39
  'INVITE_NOT_FOUND',
30
40
  'INVITE_LIMIT',
31
41
  'INVITE_EMAIL_NOT_FOUND',
32
42
  'INVALID_CREDENTIALS',
43
+ // Auth method toggles (app-level allow_* settings)
44
+ 'SIGN_UP_DISABLED',
45
+ 'PASSWORD_SIGN_IN_DISABLED',
46
+ 'PASSWORD_SIGN_UP_DISABLED',
47
+ 'SSO_SIGN_IN_DISABLED',
48
+ 'SSO_SIGN_UP_DISABLED',
49
+ 'SSO_ACCOUNT_NOT_FOUND',
50
+ 'CONNECTED_ACCOUNT_NOT_FOUND',
51
+ 'MAGIC_LINK_SIGN_IN_DISABLED',
52
+ 'MAGIC_LINK_SIGN_UP_DISABLED',
53
+ 'EMAIL_OTP_SIGN_IN_DISABLED',
54
+ 'SMS_SIGN_IN_DISABLED',
55
+ 'SMS_SIGN_UP_DISABLED',
33
56
  // CSRF
34
57
  'CSRF_TOKEN_REQUIRED',
35
58
  'INVALID_CSRF_TOKEN',
36
59
  // Rate limiting / throttling
37
60
  'TOO_MANY_REQUESTS',
38
61
  'PASSWORD_RESET_LOCKED_EXCEED_ATTEMPTS',
39
- // TOTP
62
+ // TOTP / MFA / step-up
40
63
  'TOTP_NOT_ENABLED',
64
+ 'TOTP_ALREADY_ENABLED',
65
+ 'TOTP_SETUP_NOT_INITIATED',
66
+ 'MFA_REQUIRED',
67
+ 'MFA_CHALLENGE_EXPIRED',
68
+ 'INVALID_MFA_CHALLENGE',
69
+ 'STEP_UP_REQUIRED',
70
+ 'STEP_UP_REQUIRED_PASSWORD',
71
+ 'STEP_UP_REQUIRED_PASSWORD_OR_MFA',
72
+ // Sessions / API keys
73
+ 'SESSION_NOT_FOUND',
74
+ 'API_KEY_NOT_FOUND',
75
+ 'CANNOT_DISCONNECT_LAST_AUTH_METHOD',
76
+ 'CANNOT_REVOKE_CURRENT_SESSION',
41
77
  // Account / resource operations
78
+ 'NOT_FOUND',
42
79
  'NULL_VALUES_DISALLOWED',
43
80
  'OBJECT_NOT_FOUND',
81
+ 'OBJECT_NO_UPDATE',
44
82
  'LIMIT_REACHED',
45
83
  'REQUIRES_ONE_OWNER',
84
+ 'DELETE_FIRST',
85
+ 'REF_NOT_FOUND',
86
+ 'CROSS_DATABASE_REF',
87
+ 'GROUPS_REQ_ENTITIES',
88
+ 'ALREADY_SCHEDULED',
89
+ 'SINGLETON_TABLE',
90
+ // Entity/field immutability
91
+ 'IMMUTABLE_FIELD',
92
+ 'IMMUTABLE_PROPS',
93
+ 'IMMUTABLE_PEOPLESTAMPS',
94
+ 'IMMUTABLE_TIMESTAMPS',
95
+ 'CONST_TYPE_FIELDS_IMMUTABLE',
46
96
  // PublicKeySignature
47
97
  'FEATURE_DISABLED',
48
98
  'INVALID_PUBLIC_KEY',
package/middleware/graphile.js CHANGED
@@ -27,31 +27,81 @@ const SAFE_ERROR_CODES = new Set([
27
27
  'PERSISTED_QUERY_NOT_SUPPORTED',
28
28
  // Auth
29
29
  'UNAUTHENTICATED',
30
+ 'NOT_AUTHENTICATED',
31
+ 'USER_NOT_AUTHENTICATED',
30
32
  'FORBIDDEN',
31
33
  'BAD_USER_INPUT',
32
34
  'INCORRECT_PASSWORD',
33
35
  'PASSWORD_INSECURE',
36
+ 'ACCOUNT_LOCKED',
34
37
  'ACCOUNT_LOCKED_EXCEED_ATTEMPTS',
35
38
  'ACCOUNT_DISABLED',
36
39
  'ACCOUNT_EXISTS',
40
+ 'ACCOUNT_NOT_FOUND',
41
+ 'USER_NOT_FOUND',
42
+ 'INVALID_USER',
43
+ 'INVALID_TOKEN',
44
+ 'INVALID_CODE',
45
+ 'NO_PRIMARY_EMAIL',
46
+ 'NO_CREDENTIALS',
37
47
  'PASSWORD_LEN',
38
48
  'INVITE_NOT_FOUND',
39
49
  'INVITE_LIMIT',
40
50
  'INVITE_EMAIL_NOT_FOUND',
41
51
  'INVALID_CREDENTIALS',
52
+ // Auth method toggles (app-level allow_* settings)
53
+ 'SIGN_UP_DISABLED',
54
+ 'PASSWORD_SIGN_IN_DISABLED',
55
+ 'PASSWORD_SIGN_UP_DISABLED',
56
+ 'SSO_SIGN_IN_DISABLED',
57
+ 'SSO_SIGN_UP_DISABLED',
58
+ 'SSO_ACCOUNT_NOT_FOUND',
59
+ 'CONNECTED_ACCOUNT_NOT_FOUND',
60
+ 'MAGIC_LINK_SIGN_IN_DISABLED',
61
+ 'MAGIC_LINK_SIGN_UP_DISABLED',
62
+ 'EMAIL_OTP_SIGN_IN_DISABLED',
63
+ 'SMS_SIGN_IN_DISABLED',
64
+ 'SMS_SIGN_UP_DISABLED',
42
65
  // CSRF
43
66
  'CSRF_TOKEN_REQUIRED',
44
67
  'INVALID_CSRF_TOKEN',
45
68
  // Rate limiting / throttling
46
69
  'TOO_MANY_REQUESTS',
47
70
  'PASSWORD_RESET_LOCKED_EXCEED_ATTEMPTS',
48
- // TOTP
71
+ // TOTP / MFA / step-up
49
72
  'TOTP_NOT_ENABLED',
73
+ 'TOTP_ALREADY_ENABLED',
74
+ 'TOTP_SETUP_NOT_INITIATED',
75
+ 'MFA_REQUIRED',
76
+ 'MFA_CHALLENGE_EXPIRED',
77
+ 'INVALID_MFA_CHALLENGE',
78
+ 'STEP_UP_REQUIRED',
79
+ 'STEP_UP_REQUIRED_PASSWORD',
80
+ 'STEP_UP_REQUIRED_PASSWORD_OR_MFA',
81
+ // Sessions / API keys
82
+ 'SESSION_NOT_FOUND',
83
+ 'API_KEY_NOT_FOUND',
84
+ 'CANNOT_DISCONNECT_LAST_AUTH_METHOD',
85
+ 'CANNOT_REVOKE_CURRENT_SESSION',
50
86
  // Account / resource operations
87
+ 'NOT_FOUND',
51
88
  'NULL_VALUES_DISALLOWED',
52
89
  'OBJECT_NOT_FOUND',
90
+ 'OBJECT_NO_UPDATE',
53
91
  'LIMIT_REACHED',
54
92
  'REQUIRES_ONE_OWNER',
93
+ 'DELETE_FIRST',
94
+ 'REF_NOT_FOUND',
95
+ 'CROSS_DATABASE_REF',
96
+ 'GROUPS_REQ_ENTITIES',
97
+ 'ALREADY_SCHEDULED',
98
+ 'SINGLETON_TABLE',
99
+ // Entity/field immutability
100
+ 'IMMUTABLE_FIELD',
101
+ 'IMMUTABLE_PROPS',
102
+ 'IMMUTABLE_PEOPLESTAMPS',
103
+ 'IMMUTABLE_TIMESTAMPS',
104
+ 'CONST_TYPE_FIELDS_IMMUTABLE',
55
105
  // PublicKeySignature
56
106
  'FEATURE_DISABLED',
57
107
  'INVALID_PUBLIC_KEY',
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@constructive-io/graphql-server",
3
- "version": "4.18.1",
3
+ "version": "4.18.2",
4
4
  "author": "Constructive <developers@constructive.io>",
5
5
  "description": "Constructive GraphQL Server",
6
6
  "main": "index.js",
@@ -90,5 +90,5 @@
90
90
  "nodemon": "^3.1.14",
91
91
  "ts-node": "^10.9.2"
92
92
  },
93
- "gitHead": "da90c33c7bde52c26611509c438fae42cec48b98"
93
+ "gitHead": "01775e13ef44c0e3b6c04a28b8b85f33f86af48b"
94
94
  }