npm - @digitaldefiance/node-express-suite - Versions diffs - 1.0.23 → 1.0.24 - Mend

@digitaldefiance/node-express-suite 1.0.23 → 1.0.24

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (629) hide show

package/README.md +4 -0
package/package.json +8 -7
package/src/application-base.d.ts +112 -0
package/src/application-base.d.ts.map +1 -0
package/src/application-base.js +335 -0
package/src/application-base.js.map +1 -0
package/src/application.d.ts +20 -0
package/src/application.d.ts.map +1 -0
package/src/application.js +124 -0
package/src/application.js.map +1 -0
package/src/backup-code.d.ts +67 -0
package/src/backup-code.d.ts.map +1 -0
package/src/backup-code.js +238 -0
package/src/backup-code.js.map +1 -0
package/src/constants.d.ts +16 -0
package/src/constants.d.ts.map +1 -0
package/src/constants.js +54 -0
package/src/constants.js.map +1 -0
package/src/controllers/base.d.ts +63 -0
package/src/controllers/base.d.ts.map +1 -0
package/src/controllers/base.js +272 -0
package/src/controllers/base.js.map +1 -0
package/src/controllers/{index.ts → index.d.ts} +1 -0
package/src/controllers/index.d.ts.map +1 -0
package/src/controllers/index.js +6 -0
package/src/controllers/index.js.map +1 -0
package/src/controllers/user.d.ts +45 -0
package/src/controllers/user.d.ts.map +1 -0
package/src/controllers/user.js +748 -0
package/src/controllers/user.js.map +1 -0
package/src/decorators/base-controller.d.ts +14 -0
package/src/decorators/base-controller.d.ts.map +1 -0
package/src/decorators/base-controller.js +49 -0
package/src/decorators/base-controller.js.map +1 -0
package/src/decorators/controller.d.ts +32 -0
package/src/decorators/controller.d.ts.map +1 -0
package/src/decorators/controller.js +67 -0
package/src/decorators/controller.js.map +1 -0
package/src/decorators/{index.ts → index.d.ts} +1 -0
package/src/decorators/index.d.ts.map +1 -0
package/src/decorators/index.js +7 -0
package/src/decorators/index.js.map +1 -0
package/src/decorators/zod-validation.d.ts +5 -0
package/src/decorators/zod-validation.d.ts.map +1 -0
package/src/decorators/zod-validation.js +47 -0
package/src/decorators/zod-validation.js.map +1 -0
package/src/defaults.d.ts +7 -0
package/src/defaults.d.ts.map +1 -0
package/src/defaults.js +83 -0
package/src/defaults.js.map +1 -0
package/src/documents/base.d.ts +3 -0
package/src/documents/base.d.ts.map +1 -0
package/src/documents/base.js +3 -0
package/src/documents/base.js.map +1 -0
package/src/documents/email-token.d.ts +8 -0
package/src/documents/email-token.d.ts.map +1 -0
package/src/documents/email-token.js +3 -0
package/src/documents/email-token.js.map +1 -0
package/src/documents/{index.ts → index.d.ts} +1 -0
package/src/documents/index.d.ts.map +1 -0
package/src/documents/index.js +3 -0
package/src/documents/index.js.map +1 -0
package/src/documents/{mnemonic.ts → mnemonic.d.ts} +2 -5
package/src/documents/mnemonic.d.ts.map +1 -0
package/src/documents/mnemonic.js +3 -0
package/src/documents/mnemonic.js.map +1 -0
package/src/documents/{role.ts → role.d.ts} +2 -5
package/src/documents/role.d.ts.map +1 -0
package/src/documents/role.js +3 -0
package/src/documents/role.js.map +1 -0
package/src/documents/used-direct-login-token.d.ts +5 -0
package/src/documents/used-direct-login-token.d.ts.map +1 -0
package/src/documents/used-direct-login-token.js +3 -0
package/src/documents/used-direct-login-token.js.map +1 -0
package/src/documents/{user-role.ts → user-role.d.ts} +2 -5
package/src/documents/user-role.d.ts.map +1 -0
package/src/documents/user-role.js +3 -0
package/src/documents/user-role.js.map +1 -0
package/src/documents/{user.ts → user.d.ts} +2 -4
package/src/documents/user.d.ts.map +1 -0
package/src/documents/user.js +3 -0
package/src/documents/user.js.map +1 -0
package/src/enumerations/base-model-name.d.ts +38 -0
package/src/enumerations/base-model-name.d.ts.map +1 -0
package/src/enumerations/base-model-name.js +34 -0
package/src/enumerations/base-model-name.js.map +1 -0
package/src/enumerations/{index.ts → index.d.ts} +1 -0
package/src/enumerations/index.d.ts.map +1 -0
package/src/enumerations/index.js +8 -0
package/src/enumerations/index.js.map +1 -0
package/src/enumerations/length-encoding-type.d.ts +7 -0
package/src/enumerations/length-encoding-type.d.ts.map +1 -0
package/src/enumerations/length-encoding-type.js +11 -0
package/src/enumerations/length-encoding-type.js.map +1 -0
package/src/enumerations/schema-collection.d.ts +34 -0
package/src/enumerations/schema-collection.d.ts.map +1 -0
package/src/enumerations/schema-collection.js +38 -0
package/src/enumerations/schema-collection.js.map +1 -0
package/src/enumerations/symmetric-error-type.d.ts +5 -0
package/src/enumerations/symmetric-error-type.d.ts.map +1 -0
package/src/enumerations/symmetric-error-type.js +9 -0
package/src/enumerations/symmetric-error-type.js.map +1 -0
package/src/environment.d.ts +189 -0
package/src/environment.d.ts.map +1 -0
package/src/environment.js +620 -0
package/src/environment.js.map +1 -0
package/src/errors/express-validation.d.ts +9 -0
package/src/errors/express-validation.d.ts.map +1 -0
package/src/errors/express-validation.js +18 -0
package/src/errors/express-validation.js.map +1 -0
package/src/errors/{index.ts → index.d.ts} +1 -0
package/src/errors/index.d.ts.map +1 -0
package/src/errors/index.js +16 -0
package/src/errors/index.js.map +1 -0
package/src/errors/invalid-backup-code-version.d.ts +6 -0
package/src/errors/invalid-backup-code-version.d.ts.map +1 -0
package/src/errors/invalid-backup-code-version.js +15 -0
package/src/errors/invalid-backup-code-version.js.map +1 -0
package/src/errors/invalid-jwt-token.d.ts +5 -0
package/src/errors/invalid-jwt-token.d.ts.map +1 -0
package/src/errors/invalid-jwt-token.js +11 -0
package/src/errors/invalid-jwt-token.js.map +1 -0
package/src/errors/invalid-model.d.ts +6 -0
package/src/errors/invalid-model.d.ts.map +1 -0
package/src/errors/invalid-model.js +14 -0
package/src/errors/invalid-model.js.map +1 -0
package/src/errors/invalid-new-password.d.ts +5 -0
package/src/errors/invalid-new-password.d.ts.map +1 -0
package/src/errors/invalid-new-password.js +14 -0
package/src/errors/invalid-new-password.js.map +1 -0
package/src/errors/invalid-password.d.ts +5 -0
package/src/errors/invalid-password.d.ts.map +1 -0
package/src/errors/invalid-password.js +14 -0
package/src/errors/invalid-password.js.map +1 -0
package/src/errors/missing-validated-data.d.ts +7 -0
package/src/errors/missing-validated-data.d.ts.map +1 -0
package/src/errors/missing-validated-data.js +36 -0
package/src/errors/missing-validated-data.js.map +1 -0
package/src/errors/mnemonic-or-password-required.d.ts +5 -0
package/src/errors/mnemonic-or-password-required.d.ts.map +1 -0
package/src/errors/mnemonic-or-password-required.js +13 -0
package/src/errors/mnemonic-or-password-required.js.map +1 -0
package/src/errors/model-not-registered.d.ts +5 -0
package/src/errors/model-not-registered.d.ts.map +1 -0
package/src/errors/model-not-registered.js +12 -0
package/src/errors/model-not-registered.js.map +1 -0
package/src/errors/mongoose-validation.d.ts +11 -0
package/src/errors/mongoose-validation.d.ts.map +1 -0
package/src/errors/mongoose-validation.js +17 -0
package/src/errors/mongoose-validation.js.map +1 -0
package/src/errors/symmetric.d.ts +8 -0
package/src/errors/symmetric.d.ts.map +1 -0
package/src/errors/symmetric.js +23 -0
package/src/errors/symmetric.js.map +1 -0
package/src/errors/token-expired.d.ts +5 -0
package/src/errors/token-expired.d.ts.map +1 -0
package/src/errors/token-expired.js +11 -0
package/src/errors/token-expired.js.map +1 -0
package/src/get-language.d.ts +2 -0
package/src/get-language.d.ts.map +1 -0
package/src/get-language.js +30 -0
package/src/get-language.js.map +1 -0
package/src/get-timezone.d.ts +3 -0
package/src/get-timezone.d.ts.map +1 -0
package/src/get-timezone.js +31 -0
package/src/get-timezone.js.map +1 -0
package/src/{index.ts → index.d.ts} +1 -1
package/src/index.d.ts.map +1 -0
package/src/index.js +28 -0
package/src/index.js.map +1 -0
package/src/interfaces/{api-error-response.ts → api-error-response.d.ts} +2 -2
package/src/interfaces/api-error-response.d.ts.map +1 -0
package/src/interfaces/api-error-response.js +3 -0
package/src/interfaces/api-error-response.js.map +1 -0
package/src/interfaces/api-express-validation-error-response.d.ts +7 -0
package/src/interfaces/api-express-validation-error-response.d.ts.map +1 -0
package/src/interfaces/api-express-validation-error-response.js +3 -0
package/src/interfaces/api-express-validation-error-response.js.map +1 -0
package/src/interfaces/api-message-response.d.ts +4 -0
package/src/interfaces/api-message-response.d.ts.map +1 -0
package/src/interfaces/api-message-response.js +3 -0
package/src/interfaces/api-message-response.js.map +1 -0
package/src/interfaces/{api-mongo-validation-error-response.ts → api-mongo-validation-error-response.d.ts} +2 -2
package/src/interfaces/api-mongo-validation-error-response.d.ts.map +1 -0
package/src/interfaces/api-mongo-validation-error-response.js +3 -0
package/src/interfaces/api-mongo-validation-error-response.js.map +1 -0
package/src/interfaces/api-responses/{backup-codes-response.ts → backup-codes-response.d.ts} +2 -2
package/src/interfaces/api-responses/backup-codes-response.d.ts.map +1 -0
package/src/interfaces/api-responses/backup-codes-response.js +3 -0
package/src/interfaces/api-responses/backup-codes-response.js.map +1 -0
package/src/interfaces/api-responses/{challenge-response.ts → challenge-response.d.ts} +3 -3
package/src/interfaces/api-responses/challenge-response.d.ts.map +1 -0
package/src/interfaces/api-responses/challenge-response.js +3 -0
package/src/interfaces/api-responses/challenge-response.js.map +1 -0
package/src/interfaces/api-responses/{code-count-response.ts → code-count-response.d.ts} +2 -2
package/src/interfaces/api-responses/code-count-response.d.ts.map +1 -0
package/src/interfaces/api-responses/code-count-response.js +3 -0
package/src/interfaces/api-responses/code-count-response.js.map +1 -0
package/src/interfaces/api-responses/{index.ts → index.d.ts} +1 -0
package/src/interfaces/api-responses/index.d.ts.map +1 -0
package/src/interfaces/api-responses/index.js +11 -0
package/src/interfaces/api-responses/index.js.map +1 -0
package/src/interfaces/api-responses/{login-response.ts → login-response.d.ts} +4 -4
package/src/interfaces/api-responses/login-response.d.ts.map +1 -0
package/src/interfaces/api-responses/login-response.js +3 -0
package/src/interfaces/api-responses/login-response.js.map +1 -0
package/src/interfaces/api-responses/{mnemonic-response.ts → mnemonic-response.d.ts} +2 -2
package/src/interfaces/api-responses/mnemonic-response.d.ts.map +1 -0
package/src/interfaces/api-responses/mnemonic-response.js +3 -0
package/src/interfaces/api-responses/mnemonic-response.js.map +1 -0
package/src/interfaces/api-responses/{registration-response.ts → registration-response.d.ts} +3 -3
package/src/interfaces/api-responses/registration-response.d.ts.map +1 -0
package/src/interfaces/api-responses/registration-response.js +3 -0
package/src/interfaces/api-responses/registration-response.js.map +1 -0
package/src/interfaces/api-responses/{request-user-response.ts → request-user-response.d.ts} +2 -2
package/src/interfaces/api-responses/request-user-response.d.ts.map +1 -0
package/src/interfaces/api-responses/request-user-response.js +3 -0
package/src/interfaces/api-responses/request-user-response.js.map +1 -0
package/src/interfaces/{application.ts → application.d.ts} +7 -7
package/src/interfaces/application.d.ts.map +1 -0
package/src/interfaces/application.js +3 -0
package/src/interfaces/application.js.map +1 -0
package/src/interfaces/backend-objects/email-token.d.ts +4 -0
package/src/interfaces/backend-objects/email-token.d.ts.map +1 -0
package/src/interfaces/backend-objects/email-token.js +3 -0
package/src/interfaces/backend-objects/email-token.js.map +1 -0
package/src/interfaces/backend-objects/{index.ts → index.d.ts} +1 -0
package/src/interfaces/backend-objects/index.d.ts.map +1 -0
package/src/interfaces/backend-objects/index.js +8 -0
package/src/interfaces/backend-objects/index.js.map +1 -0
package/src/interfaces/backend-objects/{request-user.ts → request-user.d.ts} +2 -7
package/src/interfaces/backend-objects/request-user.d.ts.map +1 -0
package/src/interfaces/backend-objects/request-user.js +3 -0
package/src/interfaces/backend-objects/request-user.js.map +1 -0
package/src/interfaces/backend-objects/{role.ts → role.d.ts} +1 -1
package/src/interfaces/backend-objects/role.d.ts.map +1 -0
package/src/interfaces/backend-objects/role.js +3 -0
package/src/interfaces/backend-objects/role.js.map +1 -0
package/src/interfaces/backend-objects/user.d.ts +4 -0
package/src/interfaces/backend-objects/user.d.ts.map +1 -0
package/src/interfaces/backend-objects/user.js +3 -0
package/src/interfaces/backend-objects/user.js.map +1 -0
package/src/interfaces/checksum-config.d.ts +5 -0
package/src/interfaces/checksum-config.d.ts.map +1 -0
package/src/interfaces/checksum-config.js +3 -0
package/src/interfaces/checksum-config.js.map +1 -0
package/src/interfaces/checksum-consts.d.ts +11 -0
package/src/interfaces/checksum-consts.d.ts.map +1 -0
package/src/interfaces/checksum-consts.js +3 -0
package/src/interfaces/checksum-consts.js.map +1 -0
package/src/interfaces/{constants.ts → constants.d.ts} +5 -5
package/src/interfaces/constants.d.ts.map +1 -0
package/src/interfaces/constants.js +3 -0
package/src/interfaces/constants.js.map +1 -0
package/src/interfaces/create-user-basics.d.ts +18 -0
package/src/interfaces/create-user-basics.d.ts.map +1 -0
package/src/interfaces/create-user-basics.js +3 -0
package/src/interfaces/create-user-basics.js.map +1 -0
package/src/interfaces/csp-config.d.ts +14 -0
package/src/interfaces/csp-config.d.ts.map +1 -0
package/src/interfaces/csp-config.js +3 -0
package/src/interfaces/csp-config.js.map +1 -0
package/src/interfaces/deep-partial.d.ts +4 -0
package/src/interfaces/deep-partial.d.ts.map +1 -0
package/src/interfaces/deep-partial.js +3 -0
package/src/interfaces/deep-partial.js.map +1 -0
package/src/interfaces/{discriminator-collections.ts → discriminator-collections.d.ts} +3 -3
package/src/interfaces/discriminator-collections.d.ts.map +1 -0
package/src/interfaces/discriminator-collections.js +3 -0
package/src/interfaces/discriminator-collections.js.map +1 -0
package/src/interfaces/email-service.d.ts +4 -0
package/src/interfaces/email-service.d.ts.map +1 -0
package/src/interfaces/email-service.js +3 -0
package/src/interfaces/email-service.js.map +1 -0
package/src/interfaces/environment-mongo.d.ts +76 -0
package/src/interfaces/environment-mongo.d.ts.map +1 -0
package/src/interfaces/environment-mongo.js +3 -0
package/src/interfaces/environment-mongo.js.map +1 -0
package/src/interfaces/environment.d.ts +181 -0
package/src/interfaces/environment.d.ts.map +1 -0
package/src/interfaces/environment.js +3 -0
package/src/interfaces/environment.js.map +1 -0
package/src/interfaces/failable-result.d.ts +7 -0
package/src/interfaces/failable-result.d.ts.map +1 -0
package/src/interfaces/failable-result.js +3 -0
package/src/interfaces/failable-result.js.map +1 -0
package/src/interfaces/fec-consts.d.ts +5 -0
package/src/interfaces/fec-consts.d.ts.map +1 -0
package/src/interfaces/fec-consts.js +3 -0
package/src/interfaces/fec-consts.js.map +1 -0
package/src/interfaces/handleable-error-options.d.ts +7 -0
package/src/interfaces/handleable-error-options.d.ts.map +1 -0
package/src/interfaces/handleable-error-options.js +3 -0
package/src/interfaces/handleable-error-options.js.map +1 -0
package/src/interfaces/{index.ts → index.d.ts} +1 -0
package/src/interfaces/index.d.ts.map +1 -0
package/src/interfaces/index.js +33 -0
package/src/interfaces/index.js.map +1 -0
package/src/interfaces/jwt-consts.d.ts +11 -0
package/src/interfaces/jwt-consts.d.ts.map +1 -0
package/src/interfaces/jwt-consts.js +3 -0
package/src/interfaces/jwt-consts.js.map +1 -0
package/src/interfaces/jwt-sign-response.d.ts +11 -0
package/src/interfaces/jwt-sign-response.d.ts.map +1 -0
package/src/interfaces/jwt-sign-response.js +3 -0
package/src/interfaces/jwt-sign-response.js.map +1 -0
package/src/interfaces/mongo-errors.d.ts +5 -0
package/src/interfaces/mongo-errors.d.ts.map +1 -0
package/src/interfaces/mongo-errors.js +3 -0
package/src/interfaces/mongo-errors.js.map +1 -0
package/src/interfaces/request-user.d.ts +42 -0
package/src/interfaces/request-user.d.ts.map +1 -0
package/src/interfaces/request-user.js +3 -0
package/src/interfaces/request-user.js.map +1 -0
package/src/interfaces/required-string-keys.d.ts +22 -0
package/src/interfaces/required-string-keys.d.ts.map +1 -0
package/src/interfaces/required-string-keys.js +3 -0
package/src/interfaces/required-string-keys.js.map +1 -0
package/src/interfaces/schema.d.ts +29 -0
package/src/interfaces/schema.d.ts.map +1 -0
package/src/interfaces/schema.js +3 -0
package/src/interfaces/schema.js.map +1 -0
package/src/interfaces/server-init-result.d.ts +35 -0
package/src/interfaces/server-init-result.d.ts.map +1 -0
package/src/interfaces/server-init-result.js +3 -0
package/src/interfaces/server-init-result.js.map +1 -0
package/src/interfaces/status-code-response.d.ts +7 -0
package/src/interfaces/status-code-response.d.ts.map +1 -0
package/src/interfaces/status-code-response.js +3 -0
package/src/interfaces/status-code-response.js.map +1 -0
package/src/interfaces/symmetric-encryption-results.d.ts +3 -3
package/src/interfaces/symmetric-encryption-results.d.ts.map +1 -1
package/src/interfaces/symmetric-encryption-results.js.map +1 -1
package/src/interfaces/{token-response.ts → token-response.d.ts} +2 -2
package/src/interfaces/token-response.d.ts.map +1 -0
package/src/interfaces/token-response.js +3 -0
package/src/interfaces/token-response.js.map +1 -0
package/src/middlewares/authenticate-crypto.d.ts +13 -0
package/src/middlewares/authenticate-crypto.d.ts.map +1 -0
package/src/middlewares/authenticate-crypto.js +146 -0
package/src/middlewares/authenticate-crypto.js.map +1 -0
package/src/middlewares/authenticate-token.d.ts +24 -0
package/src/middlewares/authenticate-token.d.ts.map +1 -0
package/src/middlewares/authenticate-token.js +102 -0
package/src/middlewares/authenticate-token.js.map +1 -0
package/src/middlewares/cleanup-crypto.d.ts +7 -0
package/src/middlewares/cleanup-crypto.d.ts.map +1 -0
package/src/middlewares/cleanup-crypto.js +32 -0
package/src/middlewares/cleanup-crypto.js.map +1 -0
package/src/middlewares/{index.ts → index.d.ts} +1 -0
package/src/middlewares/index.d.ts.map +1 -0
package/src/middlewares/index.js +8 -0
package/src/middlewares/index.js.map +1 -0
package/src/middlewares/set-global-context-language.d.ts +3 -0
package/src/middlewares/set-global-context-language.d.ts.map +1 -0
package/src/middlewares/set-global-context-language.js +14 -0
package/src/middlewares/set-global-context-language.js.map +1 -0
package/src/middlewares.d.ts +18 -0
package/src/middlewares.d.ts.map +1 -0
package/src/middlewares.js +74 -0
package/src/middlewares.js.map +1 -0
package/src/model-registry.d.ts +23 -0
package/src/model-registry.d.ts.map +1 -0
package/src/model-registry.js +47 -0
package/src/model-registry.js.map +1 -0
package/src/models/email-token.d.ts +11 -0
package/src/models/email-token.d.ts.map +1 -0
package/src/models/email-token.js +11 -0
package/src/models/email-token.js.map +1 -0
package/src/models/{index.ts → index.d.ts} +1 -0
package/src/models/index.d.ts.map +1 -0
package/src/models/index.js +10 -0
package/src/models/index.js.map +1 -0
package/src/models/mnemonic.d.ts +11 -0
package/src/models/mnemonic.d.ts.map +1 -0
package/src/models/mnemonic.js +11 -0
package/src/models/mnemonic.js.map +1 -0
package/src/models/role.d.ts +11 -0
package/src/models/role.d.ts.map +1 -0
package/src/models/role.js +11 -0
package/src/models/role.js.map +1 -0
package/src/models/used-direct-login-token.d.ts +11 -0
package/src/models/used-direct-login-token.d.ts.map +1 -0
package/src/models/used-direct-login-token.js +11 -0
package/src/models/used-direct-login-token.js.map +1 -0
package/src/models/user-role.d.ts +6 -0
package/src/models/user-role.d.ts.map +1 -0
package/src/models/user-role.js +10 -0
package/src/models/user-role.js.map +1 -0
package/src/models/user.d.ts +7 -0
package/src/models/user.d.ts.map +1 -0
package/src/models/user.js +11 -0
package/src/models/user.js.map +1 -0
package/src/registry/email-service-registry.d.ts +9 -0
package/src/registry/email-service-registry.d.ts.map +1 -0
package/src/registry/email-service-registry.js +18 -0
package/src/registry/email-service-registry.js.map +1 -0
package/src/registry/{index.ts → index.d.ts} +1 -0
package/src/registry/index.d.ts.map +1 -0
package/src/registry/index.js +6 -0
package/src/registry/index.js.map +1 -0
package/src/routers/api.d.ts +27 -0
package/src/routers/api.d.ts.map +1 -0
package/src/routers/api.js +52 -0
package/src/routers/api.js.map +1 -0
package/src/routers/app.d.ts +28 -0
package/src/routers/app.d.ts.map +1 -0
package/src/routers/app.js +186 -0
package/src/routers/app.js.map +1 -0
package/src/routers/base.d.ts +12 -0
package/src/routers/base.d.ts.map +1 -0
package/src/routers/base.js +14 -0
package/src/routers/base.js.map +1 -0
package/src/routers/{index.ts → index.d.ts} +1 -0
package/src/routers/index.d.ts.map +1 -0
package/src/routers/index.js +7 -0
package/src/routers/index.js.map +1 -0
package/src/schemas/email-token.d.ts +38 -0
package/src/schemas/email-token.d.ts.map +1 -0
package/src/schemas/email-token.js +54 -0
package/src/schemas/email-token.js.map +1 -0
package/src/schemas/{index.ts → index.d.ts} +2 -1
package/src/schemas/index.d.ts.map +1 -0
package/src/schemas/index.js +11 -0
package/src/schemas/index.js.map +1 -0
package/src/schemas/mnemonic.d.ts +20 -0
package/src/schemas/mnemonic.d.ts.map +1 -0
package/src/schemas/mnemonic.js +30 -0
package/src/schemas/mnemonic.js.map +1 -0
package/src/schemas/role.d.ts +32 -0
package/src/schemas/role.d.ts.map +1 -0
package/src/schemas/role.js +86 -0
package/src/schemas/role.js.map +1 -0
package/src/schemas/schema.d.ts +40 -0
package/src/schemas/schema.d.ts.map +1 -0
package/src/schemas/schema.js +62 -0
package/src/schemas/schema.js.map +1 -0
package/src/schemas/used-direct-login-token.d.ts +27 -0
package/src/schemas/used-direct-login-token.d.ts.map +1 -0
package/src/schemas/used-direct-login-token.js +23 -0
package/src/schemas/used-direct-login-token.js.map +1 -0
package/src/schemas/user-role.d.ts +29 -0
package/src/schemas/user-role.d.ts.map +1 -0
package/src/schemas/user-role.js +54 -0
package/src/schemas/user-role.js.map +1 -0
package/src/schemas/user.d.ts +21 -0
package/src/schemas/user.d.ts.map +1 -0
package/src/schemas/user.js +176 -0
package/src/schemas/user.js.map +1 -0
package/src/services/backup-code.d.ts +78 -0
package/src/services/backup-code.d.ts.map +1 -0
package/src/services/backup-code.js +184 -0
package/src/services/backup-code.js.map +1 -0
package/src/services/base.d.ts +13 -0
package/src/services/base.d.ts.map +1 -0
package/src/services/base.js +15 -0
package/src/services/base.js.map +1 -0
package/src/services/checksum.d.ts +67 -0
package/src/services/checksum.d.ts.map +1 -0
package/src/services/checksum.js +143 -0
package/src/services/checksum.js.map +1 -0
package/src/services/crc.d.ts +87 -0
package/src/services/crc.d.ts.map +1 -0
package/src/services/crc.js +198 -0
package/src/services/crc.js.map +1 -0
package/src/services/database-initialization.d.ts +105 -0
package/src/services/database-initialization.d.ts.map +1 -0
package/src/services/database-initialization.js +782 -0
package/src/services/database-initialization.js.map +1 -0
package/src/services/direct-login-token.d.ts +9 -0
package/src/services/direct-login-token.d.ts.map +1 -0
package/src/services/direct-login-token.js +41 -0
package/src/services/direct-login-token.js.map +1 -0
package/src/services/fec-usage-example.d.ts +38 -0
package/src/services/fec-usage-example.d.ts.map +1 -0
package/src/services/fec-usage-example.js +75 -0
package/src/services/fec-usage-example.js.map +1 -0
package/src/services/fec.d.ts +46 -0
package/src/services/fec.d.ts.map +1 -0
package/src/services/fec.js +192 -0
package/src/services/fec.js.map +1 -0
package/src/services/{index.ts → index.d.ts} +1 -0
package/src/services/index.d.ts.map +1 -0
package/src/services/index.js +22 -0
package/src/services/index.js.map +1 -0
package/src/services/jwt.d.ts +33 -0
package/src/services/jwt.d.ts.map +1 -0
package/src/services/jwt.js +91 -0
package/src/services/jwt.js.map +1 -0
package/src/services/key-wrapping.d.ts +60 -0
package/src/services/key-wrapping.d.ts.map +1 -0
package/src/services/key-wrapping.js +311 -0
package/src/services/key-wrapping.js.map +1 -0
package/src/services/mnemonic.d.ts +61 -0
package/src/services/mnemonic.d.ts.map +1 -0
package/src/services/mnemonic.js +115 -0
package/src/services/mnemonic.js.map +1 -0
package/src/services/request-user.d.ts +20 -0
package/src/services/request-user.d.ts.map +1 -0
package/src/services/request-user.js +50 -0
package/src/services/request-user.js.map +1 -0
package/src/services/role.d.ts +88 -0
package/src/services/role.d.ts.map +1 -0
package/src/services/role.js +263 -0
package/src/services/role.js.map +1 -0
package/src/services/symmetric.d.ts +42 -0
package/src/services/symmetric.d.ts.map +1 -0
package/src/services/symmetric.js +101 -0
package/src/services/symmetric.js.map +1 -0
package/src/services/system-user.d.ts +17 -0
package/src/services/system-user.d.ts.map +1 -0
package/src/services/system-user.js +46 -0
package/src/services/system-user.js.map +1 -0
package/src/services/user.d.ts +320 -0
package/src/services/user.d.ts.map +1 -0
package/src/services/user.js +1378 -0
package/src/services/user.js.map +1 -0
package/src/services/xor.d.ts +24 -0
package/src/services/xor.d.ts.map +1 -0
package/src/services/xor.js +37 -0
package/src/services/xor.js.map +1 -0
package/src/types.d.ts +66 -40
package/src/types.d.ts.map +1 -0
package/src/types.js +14 -0
package/src/types.js.map +1 -0
package/src/utils.d.ts +202 -0
package/src/utils.d.ts.map +1 -0
package/src/utils.js +784 -0
package/src/utils.js.map +1 -0
package/LICENSE +0 -21
package/src/application-base.ts +0 -492
package/src/application.ts +0 -254
package/src/backup-code.ts +0 -336
package/src/constants.ts +0 -69
package/src/controllers/base.ts +0 -440
package/src/controllers/user.ts +0 -1451
package/src/decorators/base-controller.ts +0 -61
package/src/decorators/controller.ts +0 -109
package/src/decorators/zod-validation.ts +0 -57
package/src/defaults.ts +0 -94
package/src/documents/base.ts +0 -7
package/src/documents/email-token.ts +0 -14
package/src/documents/used-direct-login-token.ts +0 -7
package/src/enumerations/base-model-name.ts +0 -41
package/src/enumerations/length-encoding-type.ts +0 -6
package/src/enumerations/schema-collection.ts +0 -33
package/src/enumerations/symmetric-error-type.ts +0 -4
package/src/environment.ts +0 -770
package/src/errors/express-validation.ts +0 -21
package/src/errors/invalid-backup-code-version.ts +0 -14
package/src/errors/invalid-jwt-token.ts +0 -10
package/src/errors/invalid-model.ts +0 -11
package/src/errors/invalid-new-password.ts +0 -18
package/src/errors/invalid-password.ts +0 -13
package/src/errors/missing-validated-data.ts +0 -36
package/src/errors/mnemonic-or-password-required.ts +0 -12
package/src/errors/model-not-registered.ts +0 -11
package/src/errors/mongoose-validation.ts +0 -34
package/src/errors/symmetric.ts +0 -41
package/src/errors/token-expired.ts +0 -10
package/src/get-language.ts +0 -53
package/src/get-timezone.ts +0 -45
package/src/interfaces/api-express-validation-error-response.ts +0 -8
package/src/interfaces/api-message-response.ts +0 -3
package/src/interfaces/backend-objects/email-token.ts +0 -11
package/src/interfaces/backend-objects/user.ts +0 -9
package/src/interfaces/checksum-config.ts +0 -4
package/src/interfaces/checksum-consts.ts +0 -13
package/src/interfaces/create-user-basics.ts +0 -17
package/src/interfaces/csp-config.ts +0 -35
package/src/interfaces/deep-partial.ts +0 -3
package/src/interfaces/email-service.ts +0 -8
package/src/interfaces/environment-mongo.ts +0 -76
package/src/interfaces/environment.ts +0 -181
package/src/interfaces/failable-result.ts +0 -6
package/src/interfaces/fec-consts.ts +0 -4
package/src/interfaces/handleable-error-options.ts +0 -6
package/src/interfaces/jwt-consts.ts +0 -23
package/src/interfaces/jwt-sign-response.ts +0 -19
package/src/interfaces/mongo-errors.ts +0 -5
package/src/interfaces/request-user.ts +0 -50
package/src/interfaces/required-string-keys.ts +0 -26
package/src/interfaces/schema.ts +0 -31
package/src/interfaces/server-init-result.ts +0 -37
package/src/interfaces/status-code-response.ts +0 -7
package/src/interfaces/symmetric-encryption-results.ts +0 -4
package/src/middlewares/authenticate-crypto.ts +0 -243
package/src/middlewares/authenticate-token.ts +0 -152
package/src/middlewares/cleanup-crypto.ts +0 -40
package/src/middlewares/set-global-context-language.ts +0 -24
package/src/middlewares.ts +0 -120
package/src/model-registry.ts +0 -75
package/src/models/email-token.ts +0 -19
package/src/models/mnemonic.ts +0 -19
package/src/models/role.ts +0 -19
package/src/models/used-direct-login-token.ts +0 -23
package/src/models/user-role.ts +0 -17
package/src/models/user.ts +0 -19
package/src/registry/email-service-registry.ts +0 -24
package/src/routers/api.ts +0 -151
package/src/routers/app.ts +0 -258
package/src/routers/base.ts +0 -17
package/src/schemas/email-token.ts +0 -91
package/src/schemas/mnemonic.ts +0 -37
package/src/schemas/role.ts +0 -127
package/src/schemas/schema.ts +0 -140
package/src/schemas/used-direct-login-token.ts +0 -38
package/src/schemas/user-role.ts +0 -75
package/src/schemas/user.ts +0 -202
package/src/services/backup-code.ts +0 -316
package/src/services/base.ts +0 -33
package/src/services/checksum.ts +0 -161
package/src/services/crc.ts +0 -213
package/src/services/database-initialization.ts +0 -1479
package/src/services/db-init-cache.d.ts +0 -16
package/src/services/direct-login-token.ts +0 -62
package/src/services/fec-usage-example.ts +0 -102
package/src/services/fec.ts +0 -296
package/src/services/jwt.ts +0 -134
package/src/services/key-wrapping.ts +0 -434
package/src/services/mnemonic.ts +0 -167
package/src/services/request-user.ts +0 -62
package/src/services/role.ts +0 -396
package/src/services/symmetric.ts +0 -139
package/src/services/system-user.ts +0 -82
package/src/services/user.ts +0 -2137
package/src/services/xor.ts +0 -34
package/src/types.ts +0 -128
package/src/utils.ts +0 -1022

package/src/controllers/user.ts DELETED Viewed

@@ -1,1451 +0,0 @@
-/// <reference path="../types.d.ts" />
-import {
-  ECIES,
-  EmailString,
-  SecureString,
-  UINT64_SIZE,
-} from '@digitaldefiance/ecies-lib';
-import {
-  CoreLanguageCode,
-  HandleableError,
-  isValidTimezone,
-  LanguageCodes,
-} from '@digitaldefiance/i18n-lib';
-import {
-  Member as BackendMember,
-  ECIESService,
-} from '@digitaldefiance/node-ecies-lib';
-import {
-  AccountStatus,
-  Constants as AppConstants,
-  EmailTokenType,
-  GenericValidationError,
-  getSuiteCoreTranslation,
-  ITokenRole,
-  ITokenUser,
-  IUserBase,
-  SuiteCoreStringKey,
-  UsernameOrEmailRequiredError,
-} from '@digitaldefiance/suite-core-lib';
-import type { NextFunction, Request, Response } from 'express';
-import { body } from 'express-validator';
-import { Types } from 'mongoose';
-import { z } from 'zod';
-import { BackupCode } from '../backup-code';
-import { DecoratorBaseController } from '../decorators/base-controller';
-import { Controller, Get, Post } from '../decorators/controller';
-import { IBaseDocument } from '../documents';
-import { IUserDocument } from '../documents/user';
-import { BaseModelName } from '../enumerations/base-model-name';
-import { Environment } from '../environment';
-import { MnemonicOrPasswordRequiredError } from '../errors/mnemonic-or-password-required';
-import {
-  IApiChallengeResponse,
-  IApiCodeCountResponse,
-  IApiLoginResponse,
-  IApiMessageResponse,
-  IApiMnemonicResponse,
-  IApiRegistrationResponse,
-  IApiRequestUserResponse,
-  IConstants,
-} from '../interfaces';
-import { IApiBackupCodesResponse } from '../interfaces/api-responses/backup-codes-response';
-import type { IApplication } from '../interfaces/application';
-import { IStatusCodeResponse } from '../interfaces/status-code-response';
-import { findAuthToken } from '../middlewares/authenticate-token';
-import { BackupCodeService } from '../services/backup-code';
-import { JwtService } from '../services/jwt';
-import { RequestUserService } from '../services/request-user';
-import { RoleService } from '../services/role';
-import { SystemUserService } from '../services/system-user';
-import { UserService } from '../services/user';
-import { ApiErrorResponse } from '../types';
-import { requireValidatedFieldsAsync, withTransaction } from '../utils';
-const isString = (v: unknown): v is string => typeof v === 'string';
-const RegisterSchema = z.object({
-  username: z.string(),
-  email: z.string(),
-  timezone: z.string(),
-  password: z.string().min(8).optional(),
-});
-const EmailLoginChallengeSchema = z.object({
-  token: z.string(),
-  signature: z.string(),
-  email: z.string().optional(),
-  username: z.string().optional(),
-});
-const DirectLoginChallengeSchema = z.object({
-  challenge: z.string(),
-  signature: z.string(),
-  email: z.string().optional(),
-  username: z.string().optional(),
-});
-@Controller()
-export class UserController<
-  I extends Types.ObjectId | string = Types.ObjectId,
-  D extends Date = Date,
-  S extends string = string,
-  A extends string = string,
-  TUser extends IUserBase<I, D, S, A> = IUserBase<I, D, S, A>,
-  TTokenRole extends ITokenRole<I, D> = ITokenRole<I, D>,
-  TTokenUser extends ITokenUser = ITokenUser,
-  TApplication extends IApplication<
-    any,
-    Types.ObjectId,
-    IBaseDocument<any, Types.ObjectId>,
-    Environment,
-    IConstants
-  > = IApplication<
-    any,
-    Types.ObjectId,
-    IBaseDocument<any, Types.ObjectId>,
-    Environment,
-    IConstants
-  >,
-  TLanguage extends CoreLanguageCode = CoreLanguageCode,
-> extends DecoratorBaseController<TLanguage> {
-  protected readonly userService: UserService<
-    any,
-    I,
-    D,
-    S,
-    A,
-    any,
-    any,
-    any,
-    TUser,
-    TTokenRole,
-    TApplication
-  >;
-  protected readonly jwtService: JwtService<
-    I,
-    D,
-    TTokenRole,
-    TTokenUser,
-    TApplication
-  >;
-  protected readonly backupCodeService: BackupCodeService<
-    I,
-    D,
-    TTokenRole,
-    TApplication
-  >;
-  protected readonly roleService: RoleService<I, D, TTokenRole>;
-  protected readonly eciesService: ECIESService;
-  protected readonly systemUser: BackendMember;
-  constructor(
-    application: IApplication<
-      any,
-      Types.ObjectId,
-      IBaseDocument<any, Types.ObjectId>,
-      Environment,
-      IConstants
-    >,
-    jwtService: JwtService<I, D, TTokenRole, TTokenUser, TApplication>,
-    userService: UserService<
-      any,
-      I,
-      D,
-      S,
-      A,
-      any,
-      any,
-      any,
-      TUser,
-      TTokenRole,
-      TApplication
-    >,
-    backupCodeService: BackupCodeService<I, D, TTokenRole, TApplication>,
-    roleService: RoleService<I, D, TTokenRole>,
-    eciesService: ECIESService,
-  ) {
-    super(application);
-    this.jwtService = jwtService;
-    this.userService = userService;
-    this.backupCodeService = backupCodeService;
-    this.roleService = roleService;
-    this.eciesService = eciesService;
-    this.systemUser = SystemUserService.getSystemUser(application.environment);
-  }
-  @Get('/verify', { auth: true })
-  async tokenVerifiedResponse(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiRequestUserResponse | ApiErrorResponse>> {
-    if (!req.user) {
-      throw new HandleableError(
-        new Error(
-          getSuiteCoreTranslation(SuiteCoreStringKey.Common_NoUserOnRequest),
-        ),
-        {
-          statusCode: 401,
-        },
-      );
-    }
-    return {
-      statusCode: 200,
-      response: {
-        message: getSuiteCoreTranslation(
-          SuiteCoreStringKey.Validation_TokenValid,
-        ),
-        user: req.user,
-      },
-    };
-  }
-  @Get('/refresh-token', { auth: true })
-  async refreshToken(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiLoginResponse | ApiErrorResponse>> {
-    const token = findAuthToken(req.headers);
-    if (!token) {
-      throw new GenericValidationError(
-        getSuiteCoreTranslation(SuiteCoreStringKey.Validation_TokenMissing),
-      );
-    }
-    const tokenUser = await this.jwtService.verifyToken(token);
-    if (!tokenUser) {
-      throw new GenericValidationError(
-        getSuiteCoreTranslation(SuiteCoreStringKey.Validation_TokenInvalid),
-      );
-    }
-    const UserModel = this.application.getModel<IUserDocument>(
-      BaseModelName.User,
-    );
-    const userDoc = await UserModel.findById(tokenUser.userId, {
-      password: 0,
-    });
-    if (!userDoc || userDoc.accountStatus !== AccountStatus.Active) {
-      throw new GenericValidationError(
-        getSuiteCoreTranslation(SuiteCoreStringKey.Validation_UserNotFound),
-      );
-    }
-    const { token: newToken, roles } = await this.jwtService.signToken(
-      userDoc,
-      this.application.environment.jwtSecret,
-      (req.user?.siteLanguage as string) ?? LanguageCodes.EN_US,
-    );
-    return {
-      statusCode: 200,
-      response: {
-        message: getSuiteCoreTranslation(SuiteCoreStringKey.TokenRefreshed),
-        user: RequestUserService.makeRequestUserDTO(userDoc, roles),
-        token: newToken,
-        serverPublicKey: this.application.environment.systemPublicKeyHex ?? '',
-      },
-      headers: {
-        Authorization: `Bearer ${newToken}`,
-      },
-    };
-  }
-  @Post('/register', {
-    schema: RegisterSchema,
-    validation: (validationLanguage: TLanguage) => [
-      body('username')
-        .matches(AppConstants.UsernameRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_UsernameRegexErrorTemplate,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('email')
-        .isEmail()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidEmail,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('timezone')
-        .isString()
-        .custom((value) => isValidTimezone(value))
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_TimezoneInvalid,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('password')
-        .optional()
-        .matches(AppConstants.PasswordRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_PasswordRegexErrorTemplate,
-          ),
-        ),
-    ],
-  })
-  async register(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiRegistrationResponse | ApiErrorResponse>> {
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        return await requireValidatedFieldsAsync(
-          req,
-          RegisterSchema,
-          async ({ username, email, timezone, password }) => {
-            if (
-              !isString(username) ||
-              !isString(email) ||
-              !isString(timezone)
-            ) {
-              throw new GenericValidationError(
-                getSuiteCoreTranslation(
-                  SuiteCoreStringKey.Validation_MissingValidatedData,
-                ),
-              );
-            }
-            const { user, mnemonic, backupCodes } =
-              await this.userService.newUser(
-                this.systemUser,
-                {
-                  username: username.trim(),
-                  email: email.trim(),
-                  timezone: timezone,
-                },
-                undefined,
-                undefined,
-                sess,
-                this.application.environment.debug,
-                password as string | undefined,
-              );
-            await this.userService.createAndSendEmailToken(
-              user,
-              EmailTokenType.AccountVerification,
-              sess,
-              this.application.environment.debug,
-            );
-            return {
-              statusCode: 201,
-              response: {
-                message: getSuiteCoreTranslation(
-                  SuiteCoreStringKey.Registration_Success,
-                  { MNEMONIC: mnemonic },
-                ),
-                mnemonic,
-                backupCodes,
-              },
-            };
-          },
-        );
-      },
-      {
-        timeoutMs: this.application.environment.mongo.transactionTimeout * 30,
-      },
-    );
-  }
-  @Post('/account-verification', {
-    validation: (validationLanguage: TLanguage) => [
-      body('token')
-        .not()
-        .isEmpty()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_TokenRequired,
-            undefined,
-            validationLanguage,
-          ),
-        )
-        .matches(new RegExp(`^[a-f0-9]{${AppConstants.EmailTokenLength * 2}}$`))
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidToken,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-    ],
-  })
-  async completeAccountVerification(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiMessageResponse | ApiErrorResponse>> {
-    const { token } = this.validatedBody;
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        await this.userService.verifyAccountTokenAndComplete(
-          token as string,
-          sess,
-        );
-        return {
-          statusCode: 200,
-          response: {
-            message: getSuiteCoreTranslation(
-              SuiteCoreStringKey.EmailVerification_Success,
-            ),
-          },
-        };
-      },
-    );
-  }
-  @Post('/language', {
-    auth: true,
-    validation: (validationLanguage: TLanguage) => [
-      body('language')
-        .isString()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidLanguage,
-            undefined,
-            validationLanguage,
-          ),
-        )
-        .isIn(Object.values(LanguageCodes))
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidLanguage,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-    ],
-  })
-  async setLanguage(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiRequestUserResponse | ApiErrorResponse>> {
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        const { language } = this.validatedBody;
-        if (!req.user) {
-          throw new HandleableError(
-            new Error(
-              getSuiteCoreTranslation(
-                SuiteCoreStringKey.Common_NoUserOnRequest,
-              ),
-            ),
-            { statusCode: 401 },
-          );
-        }
-        const user = await this.userService.updateSiteLanguage(
-          req.user.id,
-          language as string,
-          sess,
-        );
-        return {
-          statusCode: 200,
-          response: {
-            message: getSuiteCoreTranslation(
-              SuiteCoreStringKey.LanguageUpdate_Success,
-            ),
-            user,
-          },
-        };
-      },
-    );
-  }
-  @Get('/backup-codes', { auth: true })
-  async getBackupCodeCount(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiCodeCountResponse | ApiErrorResponse>> {
-    if (!req.user) {
-      throw new HandleableError(
-        new Error(
-          getSuiteCoreTranslation(SuiteCoreStringKey.Common_NoUserOnRequest),
-        ),
-        { statusCode: 401 },
-      );
-    }
-    const UserModel = this.application.getModel<IUserDocument>(
-      BaseModelName.User,
-    );
-    const user = await UserModel.findById(req.user.id);
-    return {
-      statusCode: 200,
-      response: {
-        message: 'Backup codes retrieved',
-        codeCount: user?.backupCodes?.length || 0,
-      } as IApiCodeCountResponse,
-    };
-  }
-  @Post('/backup-codes', {
-    auth: true,
-    cryptoAuth: true,
-    validation: (validationLanguage: TLanguage) => [
-      body().custom((value, { req }) => {
-        if (!req.body?.password && !req.body?.mnemonic) {
-          throw new MnemonicOrPasswordRequiredError();
-        }
-        return true;
-      }),
-      body('password')
-        .optional()
-        .notEmpty()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_CurrentPasswordRequired,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('mnemonic')
-        .optional()
-        .notEmpty()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_MnemonicRequired,
-            undefined,
-            validationLanguage,
-          ),
-        )
-        .matches(AppConstants.MnemonicRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_MnemonicRegex,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-    ],
-  })
-  async resetBackupCodes(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiBackupCodesResponse | ApiErrorResponse>> {
-    if (!req.user || !req.eciesUser || !req.eciesUser.hasPrivateKey) {
-      throw new HandleableError(
-        new Error(
-          getSuiteCoreTranslation(SuiteCoreStringKey.Common_NoUserOnRequest),
-        ),
-        { statusCode: 401 },
-      );
-    }
-    const newBackupCodes = await this.userService.resetUserBackupCodes(
-      req.eciesUser,
-      this.systemUser,
-    );
-    const codes = newBackupCodes.map((c) => c.notNullValue);
-    newBackupCodes.forEach((c) => c.dispose());
-    return {
-      statusCode: 200,
-      response: {
-        message: getSuiteCoreTranslation(
-          SuiteCoreStringKey.BackupCodeRecovery_YourNewCodes,
-        ),
-        backupCodes: codes,
-      },
-    };
-  }
-  @Post('/recover-mnemonic', {
-    auth: true,
-    cryptoAuth: true,
-    validation: (validationLanguage: TLanguage) => [
-      body('password')
-        .isString()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_CurrentPasswordRequired,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-    ],
-  })
-  async recoverMnemonic(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiMnemonicResponse | ApiErrorResponse>> {
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        if (!req.user) {
-          throw new HandleableError(
-            new Error(
-              getSuiteCoreTranslation(
-                SuiteCoreStringKey.Validation_InvalidCredentials,
-              ),
-            ),
-            { statusCode: 401 },
-          );
-        } else if (!req.eciesUser) {
-          throw new HandleableError(
-            new Error(
-              getSuiteCoreTranslation(
-                SuiteCoreStringKey.Validation_MnemonicOrPasswordRequired,
-              ),
-            ),
-            { statusCode: 401 },
-          );
-        }
-        const { password } = this.validatedBody;
-        if (!isString(password)) {
-          throw new GenericValidationError(
-            getSuiteCoreTranslation(
-              SuiteCoreStringKey.Validation_MissingValidatedData,
-            ),
-          );
-        }
-        const userDoc = await this.userService.findUserById(
-          new Types.ObjectId(req.user.id),
-          true,
-          sess,
-        );
-        const mnemonic = await this.userService.recoverMnemonic(
-          req.eciesUser,
-          userDoc.mnemonicRecovery,
-        );
-        return {
-          statusCode: 200,
-          response: {
-            message: getSuiteCoreTranslation(
-              SuiteCoreStringKey.MnemonicRecovery_Success,
-            ),
-            mnemonic: mnemonic.notNullValue,
-          },
-        };
-      },
-    );
-  }
-  @Post('/change-password', {
-    auth: true,
-    validation: (validationLanguage: TLanguage) => [
-      body('currentPassword')
-        .notEmpty()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_Required,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('newPassword')
-        .matches(AppConstants.PasswordRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_PasswordRegexErrorTemplate,
-          ),
-        )
-        .notEmpty()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_Required,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-    ],
-  })
-  async changePassword(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiMessageResponse | ApiErrorResponse>> {
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        const { currentPassword, newPassword } = this.validatedBody;
-        if (!req.user) {
-          throw new HandleableError(
-            new Error(
-              getSuiteCoreTranslation(
-                SuiteCoreStringKey.Common_NoUserOnRequest,
-              ),
-            ),
-            { statusCode: 401 },
-          );
-        }
-        if (!isString(currentPassword) || !isString(newPassword)) {
-          throw new GenericValidationError(
-            getSuiteCoreTranslation(
-              SuiteCoreStringKey.Validation_MissingValidatedData,
-            ),
-          );
-        }
-        await this.userService.changePassword(
-          req.user.id,
-          currentPassword,
-          newPassword,
-          sess,
-        );
-        return {
-          statusCode: 200,
-          response: {
-            message: getSuiteCoreTranslation(
-              SuiteCoreStringKey.PasswordChange_Success,
-            ),
-          },
-        };
-      },
-    );
-  }
-  @Post('/request-direct-login')
-  async requestDirectLogin(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiChallengeResponse | ApiErrorResponse>> {
-    const challenge = this.userService.generateDirectLoginChallenge();
-    return {
-      statusCode: 200,
-      response: {
-        challenge: challenge,
-        message: getSuiteCoreTranslation(
-          SuiteCoreStringKey.Login_ChallengeGenerated,
-        ),
-        serverPublicKey: this.application.environment.systemPublicKeyHex ?? '',
-      },
-    };
-  }
-  @Post('/direct-challenge', {
-    schema: DirectLoginChallengeSchema,
-    validation: (validationLanguage: TLanguage) => [
-      body('challenge')
-        .not()
-        .isEmpty()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidChallenge,
-            undefined,
-            validationLanguage,
-          ),
-        )
-        .matches(
-          new RegExp(
-            `^[a-f0-9]{${(UINT64_SIZE + 32 + ECIES.SIGNATURE_SIZE) * 2}}$`,
-          ),
-        )
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidChallenge,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('signature')
-        .not()
-        .isEmpty()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidSignature,
-          ),
-        )
-        .matches(new RegExp(`^[a-f0-9]{${ECIES.SIGNATURE_SIZE * 2}}$`))
-        .withMessage(SuiteCoreStringKey.Validation_InvalidSignature),
-      body().custom((value, { req }) => {
-        if (!req.body.username && !req.body.email) {
-          throw new UsernameOrEmailRequiredError();
-        }
-        return true;
-      }),
-      body('username')
-        .optional()
-        .matches(AppConstants.UsernameRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_UsernameRegexErrorTemplate,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('email')
-        .optional()
-        .isEmail()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidEmail,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-    ],
-  })
-  async directLoginChallenge(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiLoginResponse | ApiErrorResponse>> {
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        const { username, email, challenge, signature } = this.validatedBody;
-        const { userDoc } = await this.userService.verifyDirectLoginChallenge(
-          String(challenge),
-          String(signature) as any,
-          username ? String(username) : undefined,
-          email ? String(email) : undefined,
-          sess,
-        );
-        const { token: jwtToken, roles } = await this.jwtService.signToken(
-          userDoc,
-          this.application.environment.jwtSecret,
-          (req.user?.siteLanguage as string) ?? LanguageCodes.EN_US,
-        );
-        return {
-          statusCode: 200,
-          response: {
-            user: userDoc as any,
-            token: jwtToken,
-            serverPublicKey:
-              this.application.environment.systemPublicKeyHex ?? '',
-            message: getSuiteCoreTranslation(
-              SuiteCoreStringKey.LoggedIn_Success,
-            ),
-          },
-        };
-      },
-    );
-  }
-  @Post('/request-email-login', {
-    validation: (validationLanguage: TLanguage) => [
-      body().custom((value, { req }) => {
-        if (!req.body.username && !req.body.email) {
-          throw new UsernameOrEmailRequiredError();
-        }
-        return true;
-      }),
-      body('username')
-        .optional()
-        .matches(AppConstants.UsernameRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_UsernameRegexErrorTemplate,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('email')
-        .optional()
-        .isEmail()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidEmail,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-    ],
-  })
-  async requestEmailLogin(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiMessageResponse | ApiErrorResponse>> {
-    const { username, email } = this.validatedBody;
-    try {
-      await withTransaction(
-        this.application.db.connection,
-        this.application.environment.mongo.useTransactions,
-        undefined,
-        async (sess) => {
-          const userDoc = await this.userService.findUser(
-            email as string,
-            username as string,
-            sess,
-          );
-          await this.userService.createAndSendEmailToken(
-            userDoc,
-            EmailTokenType.LoginRequest,
-            sess,
-            this.application.environment.debug,
-          );
-        },
-      );
-    } catch (error) {
-      // Suppress user-related errors for security
-    }
-    return {
-      statusCode: 200,
-      response: {
-        message: getSuiteCoreTranslation(SuiteCoreStringKey.Email_TokenSent),
-      },
-    };
-  }
-  @Post('/email-challenge', {
-    schema: EmailLoginChallengeSchema,
-    validation: (validationLanguage: TLanguage) => [
-      body('token')
-        .not()
-        .isEmpty()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_TokenRequired,
-            undefined,
-            validationLanguage,
-          ),
-        )
-        .matches(new RegExp(`^[a-f0-9]{${AppConstants.EmailTokenLength * 2}}$`))
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidToken,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('signature')
-        .not()
-        .isEmpty()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidSignature,
-          ),
-        )
-        .matches(new RegExp(`^[a-f0-9]{${ECIES.SIGNATURE_SIZE * 2}}$`))
-        .withMessage(SuiteCoreStringKey.Validation_InvalidSignature),
-      body().custom((value, { req }) => {
-        if (!req.body.username && !req.body.email) {
-          throw new UsernameOrEmailRequiredError();
-        }
-        return true;
-      }),
-      body('username')
-        .optional()
-        .matches(AppConstants.UsernameRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_UsernameRegexErrorTemplate,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('email')
-        .optional()
-        .isEmail()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidEmail,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-    ],
-  })
-  async emailLoginChallenge(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiLoginResponse | ApiErrorResponse>> {
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        const { token, signature } = this.validatedBody;
-        const userDoc = await this.userService.validateEmailLoginTokenChallenge(
-          String(token),
-          String(signature) as any,
-          sess,
-        );
-        const { token: jwtToken, roles } = await this.jwtService.signToken(
-          userDoc,
-          this.application.environment.jwtSecret,
-          (req.user?.siteLanguage as string) ?? LanguageCodes.EN_US,
-        );
-        return {
-          statusCode: 200,
-          response: {
-            user: userDoc as any,
-            token: jwtToken,
-            serverPublicKey:
-              this.application.environment.systemPublicKeyHex ?? '',
-            message: getSuiteCoreTranslation(
-              SuiteCoreStringKey.LoggedIn_Success,
-            ),
-          },
-        };
-      },
-    );
-  }
-  @Post('/resend-verification', {
-    validation: (validationLanguage: TLanguage) => [
-      body().custom((value, { req }) => {
-        if (!req.body.username && !req.body.email) {
-          throw new UsernameOrEmailRequiredError();
-        }
-        return true;
-      }),
-      body('username')
-        .optional()
-        .isString()
-        .matches(AppConstants.UsernameRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_UsernameRegexErrorTemplate,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('email').optional().isEmail(),
-    ],
-  })
-  async resendVerification(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiMessageResponse | ApiErrorResponse>> {
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        const { username, email } = this.validatedBody;
-        const UserModel = this.application.getModel<IUserDocument>(
-          BaseModelName.User,
-        );
-        let query: { username?: string; email?: string } = {};
-        if (isString(username)) query.username = username;
-        else if (isString(email)) query.email = email;
-        else {
-          throw new GenericValidationError(
-            getSuiteCoreTranslation(
-              SuiteCoreStringKey.Validation_MissingValidatedData,
-            ),
-          );
-        }
-        const user = await UserModel.findOne(query).session(sess ?? null);
-        if (!user) {
-          throw new GenericValidationError(
-            getSuiteCoreTranslation(SuiteCoreStringKey.Validation_UserNotFound),
-            { statusCode: 404 },
-          );
-        }
-        await this.userService.resendEmailToken(
-          user._id.toString(),
-          EmailTokenType.AccountVerification,
-          sess,
-          this.application.environment.debug,
-        );
-        return {
-          statusCode: 200,
-          response: {
-            message: getSuiteCoreTranslation(
-              SuiteCoreStringKey.EmailVerification_Resent,
-            ),
-          },
-        };
-      },
-    );
-  }
-  @Post('/backup-code', {
-    validation: (validationLanguage: TLanguage) => [
-      body('email').optional().isEmail(),
-      body('username')
-        .optional()
-        .matches(AppConstants.UsernameRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_UsernameRegexErrorTemplate,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('code')
-        .custom((value) => {
-          const normalized = BackupCode.normalizeCode(value);
-          return (
-            AppConstants.BACKUP_CODES.DisplayRegex.test(value) ||
-            AppConstants.BACKUP_CODES.NormalizedHexRegex.test(normalized)
-          );
-        })
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidBackupCode,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('recoverMnemonic').isBoolean().optional(),
-      body('newPassword')
-        .optional()
-        .matches(AppConstants.PasswordRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_PasswordRegexErrorTemplate,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-    ],
-  })
-  async useBackupCodeLogin(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiLoginResponse | ApiErrorResponse>> {
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        const { code, newPassword, email, username } = this.validatedBody;
-        if (!code) {
-          throw new GenericValidationError(
-            getSuiteCoreTranslation(
-              SuiteCoreStringKey.Validation_MissingValidatedData,
-            ),
-          );
-        }
-        const recoverMnemonic =
-          this.validatedBody?.['recoverMnemonic'] === 'true' ||
-          this.validatedBody?.['recoverMnemonic'] === true;
-        const userDoc = await this.userService.findUser(
-          email as string,
-          username as string,
-          sess,
-        );
-        const {
-          user,
-          userDoc: updatedUserDoc,
-          codeCount,
-        } = await this.backupCodeService.recoverKeyWithBackupCode(
-          userDoc,
-          code as string,
-          newPassword ? new SecureString(newPassword as string) : undefined,
-          sess,
-        );
-        let mnemonic: SecureString | undefined;
-        if (recoverMnemonic) {
-          const memberType = await this.roleService.getMemberType(
-            updatedUserDoc,
-            sess,
-          );
-          const freshUser = new BackendMember(
-            this.eciesService,
-            memberType,
-            updatedUserDoc.username,
-            new EmailString(updatedUserDoc.email),
-            Buffer.from(updatedUserDoc.publicKey, 'hex'),
-            user.privateKey,
-            undefined,
-            updatedUserDoc._id,
-            new Date(updatedUserDoc.createdAt),
-            new Date(updatedUserDoc.updatedAt),
-          );
-          mnemonic = await this.userService.recoverMnemonic(
-            freshUser,
-            updatedUserDoc.mnemonicRecovery,
-          );
-        }
-        const { token, roles } = await this.jwtService.signToken(
-          userDoc,
-          this.application.environment.jwtSecret,
-          LanguageCodes.EN_US,
-        );
-        this.userService.updateLastLogin(updatedUserDoc._id).catch(() => {});
-        return {
-          statusCode: 200,
-          response: {
-            user: RequestUserService.makeRequestUserDTO(userDoc, roles),
-            token: token,
-            message: getSuiteCoreTranslation(
-              SuiteCoreStringKey.BackupCodeRecovery_Success,
-            ),
-            codeCount,
-            ...(recoverMnemonic && mnemonic
-              ? { mnemonic: mnemonic.value }
-              : {}),
-            serverPublicKey:
-              this.application.environment.systemPublicKeyHex ?? '',
-          },
-        };
-      },
-    );
-  }
-  @Post('/forgot-password', {
-    validation: (validationLanguage: TLanguage) => [
-      body('email')
-        .isEmail()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidEmail,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-    ],
-  })
-  async forgotPassword(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiMessageResponse | ApiErrorResponse>> {
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        const { email } = this.validatedBody;
-        const UserModel = this.application.getModel<IUserDocument>(
-          BaseModelName.User,
-        );
-        if (!isString(email)) {
-          throw new GenericValidationError(
-            getSuiteCoreTranslation(
-              SuiteCoreStringKey.Validation_MissingValidatedData,
-            ),
-          );
-        }
-        const user = await UserModel.findOne({
-          email: email.toLowerCase(),
-        }).session(sess ?? null);
-        if (!user || !user.passwordWrappedPrivateKey) {
-          return {
-            statusCode: 200,
-            response: {
-              message: getSuiteCoreTranslation(
-                SuiteCoreStringKey.PasswordReset_Success,
-              ),
-            },
-          };
-        }
-        await this.userService.createAndSendEmailToken(
-          user,
-          EmailTokenType.PasswordReset,
-          sess,
-          this.application.environment.debug,
-        );
-        return {
-          statusCode: 200,
-          response: {
-            message: getSuiteCoreTranslation(
-              SuiteCoreStringKey.PasswordReset_Success,
-            ),
-          },
-        };
-      },
-    );
-  }
-  @Get('/verify-reset-token')
-  async verifyResetToken(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiMessageResponse | ApiErrorResponse>> {
-    const token = req.query['token'] as string;
-    if (!token) {
-      throw new GenericValidationError(
-        getSuiteCoreTranslation(SuiteCoreStringKey.Validation_TokenMissing),
-      );
-    }
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        await this.userService.verifyEmailToken(
-          token,
-          EmailTokenType.PasswordReset,
-          sess,
-        );
-        return {
-          statusCode: 200,
-          response: {
-            message: 'Token is valid',
-          },
-        };
-      },
-    );
-  }
-  @Post('/reset-password', {
-    validation: (validationLanguage: TLanguage) => [
-      body('token')
-        .not()
-        .isEmpty()
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_TokenRequired,
-            undefined,
-            validationLanguage,
-          ),
-        )
-        .matches(new RegExp(`^[a-f0-9]{${AppConstants.EmailTokenLength * 2}}$`))
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_InvalidToken,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('newPassword')
-        .optional()
-        .isLength({ min: 8 })
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_PasswordMinLengthTemplate,
-            undefined,
-            validationLanguage,
-          ),
-        )
-        .matches(AppConstants.PasswordRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_PasswordRegexErrorTemplate,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('password')
-        .optional()
-        .isLength({ min: 8 })
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_PasswordMinLengthTemplate,
-            undefined,
-            validationLanguage,
-          ),
-        )
-        .matches(AppConstants.PasswordRegex)
-        .withMessage(
-          getSuiteCoreTranslation(
-            SuiteCoreStringKey.Validation_PasswordRegexErrorTemplate,
-            undefined,
-            validationLanguage,
-          ),
-        ),
-      body('currentPassword').optional().isString(),
-      body('mnemonic').optional().isString(),
-    ],
-  })
-  async resetPassword(
-    req: Request,
-    res: Response,
-    next: NextFunction,
-  ): Promise<IStatusCodeResponse<IApiMessageResponse | ApiErrorResponse>> {
-    return await withTransaction(
-      this.application.db.connection,
-      this.application.environment.mongo.useTransactions,
-      undefined,
-      async (sess) => {
-        const { token, newPassword, password, currentPassword, mnemonic } =
-          this.validatedBody;
-        const selectedNewPassword = (newPassword ?? password) as
-          | string
-          | undefined;
-        if (!isString(token) || !isString(selectedNewPassword)) {
-          throw new GenericValidationError(
-            getSuiteCoreTranslation(
-              SuiteCoreStringKey.Validation_MissingValidatedData,
-            ),
-          );
-        }
-        const credential =
-          (mnemonic as string | undefined) ??
-          (currentPassword as string | undefined);
-        if (!isString(credential)) {
-          throw new GenericValidationError(
-            getSuiteCoreTranslation(
-              SuiteCoreStringKey.Validation_MissingValidatedData,
-            ),
-          );
-        }
-        await this.userService.resetPasswordWithToken(
-          token as string,
-          selectedNewPassword,
-          credential,
-          sess,
-        );
-        return {
-          statusCode: 200,
-          response: {
-            message: getSuiteCoreTranslation(
-              SuiteCoreStringKey.PasswordChange_Success,
-            ),
-          },
-        };
-      },
-    );
-  }
-}