@digitaldefiance/suite-core-lib 3.6.49 → 3.7.0

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@digitaldefiance/suite-core-lib",
-  "version": "3.6.49",
+  "version": "3.7.0",
   "homepage": "https://github.com/Digital-Defiance/suite-core-lib",
   "repository": {
     "type": "git",
@@ -27,7 +27,7 @@
     "publish:public": "npm publish --access public"
   },
   "dependencies": {
-    "@digitaldefiance/ecies-lib": "4.12.8",
+    "@digitaldefiance/ecies-lib": "4.13.0",
     "@digitaldefiance/i18n-lib": "3.8.16"
   },
   "files": [
@@ -42,9 +42,10 @@
   "license": "MIT",
   "packageManager": "yarn@4.10.3",
   "devDependencies": {
-    "@typescript-eslint/eslint-plugin": "^8.52.0",
-    "@typescript-eslint/parser": "^8.52.0",
+    "@typescript-eslint/eslint-plugin": "^8.53.1",
+    "@typescript-eslint/parser": "^8.53.1",
     "eslint-plugin-import": "^2.32.0",
     "eslint-plugin-prettier": "^5.5.4"
-  }
-}
+  },
+  "type": "commonjs"
+}

package/src/backup-code-string.d.ts

@@ -0,0 +1,29 @@
+import { IConstants } from './interfaces';
+export declare class BackupCodeString {
+    private readonly _normalizedCode;
+    constructor(code: string);
+    get value(): string;
+    get notNullValue(): string;
+    get valueAsHexString(): string;
+    get valueAsBase64String(): string;
+    get valueAsUint8Array(): Uint8Array;
+    get hasValue(): boolean;
+    get length(): number;
+    dispose(): void;
+    /**
+     * Format a 32-char normalized code into display form (8 groups of 4).
+     * Does not restrict characters beyond grouping.
+     */
+    static formatBackupCode(code: string): string;
+    /**
+     * Normalize user-entered code: remove spaces and hyphens, lowercase, and trim.
+     */
+    static normalizeCode(input: string): string;
+    static generateBackupCode(): string;
+    /**
+     * Generate the configured number of backup codes.
+     * Note: If generation alphabet/length is controlled elsewhere, prefer that path.
+     */
+    static generateBackupCodes(constants?: IConstants): Array<BackupCodeString>;
+}
+//# sourceMappingURL=backup-code-string.d.ts.map

package/src/backup-code-string.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"backup-code-string.d.ts","sourceRoot":"","sources":["../../../../packages/digitaldefiance-suite-core-lib/src/backup-code-string.ts"],"names":[],"mappings":"AAMA,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE1C,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAS;gBAE7B,IAAI,EAAE,MAAM;IAQxB,IAAW,KAAK,IAAI,MAAM,CAEzB;IAED,IAAW,YAAY,IAAI,MAAM,CAEhC;IAED,IAAW,gBAAgB,IAAI,MAAM,CAOpC;IAED,IAAW,mBAAmB,IAAI,MAAM,CAKvC;IAED,IAAW,iBAAiB,IAAI,UAAU,CAKzC;IAED,IAAW,QAAQ,IAAI,OAAO,CAE7B;IAED,IAAW,MAAM,IAAI,MAAM,CAE1B;IAEM,OAAO,IAAI,IAAI;IAKtB;;;OAGG;WACW,gBAAgB,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM;IAIpD;;OAEG;WACW,aAAa,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;WAIpC,kBAAkB,IAAI,MAAM;IAU1C;;;OAGG;WACW,mBAAmB,CAC/B,SAAS,GAAE,UAAsB,GAChC,KAAK,CAAC,gBAAgB,CAAC;CAO3B"}

package/src/backup-code-string.js

@@ -0,0 +1,85 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.BackupCodeString = void 0;
+/**
+ * Backup code string class for generating, validating, and formatting backup codes.
+ * Provides type-safe handling of backup codes with multiple output formats.
+ */
+const constants_1 = require("./constants");
+const invalid_backup_code_1 = require("./errors/invalid-backup-code");
+class BackupCodeString {
+    _normalizedCode;
+    constructor(code) {
+        const normalizedCode = BackupCodeString.normalizeCode(code);
+        if (!constants_1.Constants.BACKUP_CODES.NormalizedHexRegex.test(normalizedCode)) {
+            throw new invalid_backup_code_1.InvalidBackupCodeError();
+        }
+        this._normalizedCode = normalizedCode;
+    }
+    get value() {
+        return BackupCodeString.formatBackupCode(this._normalizedCode);
+    }
+    get notNullValue() {
+        return BackupCodeString.formatBackupCode(this._normalizedCode);
+    }
+    get valueAsHexString() {
+        const formattedValue = BackupCodeString.formatBackupCode(this._normalizedCode);
+        return new TextEncoder().encode(formattedValue).reduce((str, byte) => {
+            return str + byte.toString(16).padStart(2, '0');
+        }, '');
+    }
+    get valueAsBase64String() {
+        const formattedValue = BackupCodeString.formatBackupCode(this._normalizedCode);
+        return btoa(formattedValue);
+    }
+    get valueAsUint8Array() {
+        const formattedValue = BackupCodeString.formatBackupCode(this._normalizedCode);
+        return new TextEncoder().encode(formattedValue);
+    }
+    get hasValue() {
+        return this._normalizedCode.length > 0;
+    }
+    get length() {
+        return this._normalizedCode.length;
+    }
+    dispose() {
+        // Backup codes are not sensitive enough to require secure disposal
+        // They're already encrypted when stored in the database
+    }
+    /**
+     * Format a 32-char normalized code into display form (8 groups of 4).
+     * Does not restrict characters beyond grouping.
+     */
+    static formatBackupCode(code) {
+        const groups = code.match(/.{1,4}/g) ?? [code];
+        return groups.join('-');
+    }
+    /**
+     * Normalize user-entered code: remove spaces and hyphens, lowercase, and trim.
+     */
+    static normalizeCode(input) {
+        return input.replace(/[\s-]/g, '').toLowerCase().trim();
+    }
+    static generateBackupCode() {
+        const alphabet = 'abcdefghijklmnopqrstuvwxyz0123456789';
+        const rnd = crypto.getRandomValues(new Uint8Array(32));
+        let raw = '';
+        for (let j = 0; j < 32; j++) {
+            raw += alphabet[rnd[j] % alphabet.length];
+        }
+        return raw;
+    }
+    /**
+     * Generate the configured number of backup codes.
+     * Note: If generation alphabet/length is controlled elsewhere, prefer that path.
+     */
+    static generateBackupCodes(constants = constants_1.Constants) {
+        const codes = [];
+        for (let i = 0; i < constants.BACKUP_CODES.Count; i++) {
+            codes.push(new BackupCodeString(BackupCodeString.generateBackupCode()));
+        }
+        return codes;
+    }
+}
+exports.BackupCodeString = BackupCodeString;
+//# sourceMappingURL=backup-code-string.js.map

package/src/backup-code-string.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"backup-code-string.js","sourceRoot":"","sources":["../../../../packages/digitaldefiance-suite-core-lib/src/backup-code-string.ts"],"names":[],"mappings":";;;AAAA;;;GAGG;AACH,2CAAwC;AACxC,sEAAsE;AAGtE,MAAa,gBAAgB;IACV,eAAe,CAAS;IAEzC,YAAY,IAAY;QACtB,MAAM,cAAc,GAAG,gBAAgB,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC;QAC5D,IAAI,CAAC,qBAAS,CAAC,YAAY,CAAC,kBAAkB,CAAC,IAAI,CAAC,cAAc,CAAC,EAAE,CAAC;YACpE,MAAM,IAAI,4CAAsB,EAAE,CAAC;QACrC,CAAC;QACD,IAAI,CAAC,eAAe,GAAG,cAAc,CAAC;IACxC,CAAC;IAED,IAAW,KAAK;QACd,OAAO,gBAAgB,CAAC,gBAAgB,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;IACjE,CAAC;IAED,IAAW,YAAY;QACrB,OAAO,gBAAgB,CAAC,gBAAgB,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;IACjE,CAAC;IAED,IAAW,gBAAgB;QACzB,MAAM,cAAc,GAAG,gBAAgB,CAAC,gBAAgB,CACtD,IAAI,CAAC,eAAe,CACrB,CAAC;QACF,OAAO,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE;YACnE,OAAO,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;QAClD,CAAC,EAAE,EAAE,CAAC,CAAC;IACT,CAAC;IAED,IAAW,mBAAmB;QAC5B,MAAM,cAAc,GAAG,gBAAgB,CAAC,gBAAgB,CACtD,IAAI,CAAC,eAAe,CACrB,CAAC;QACF,OAAO,IAAI,CAAC,cAAc,CAAC,CAAC;IAC9B,CAAC;IAED,IAAW,iBAAiB;QAC1B,MAAM,cAAc,GAAG,gBAAgB,CAAC,gBAAgB,CACtD,IAAI,CAAC,eAAe,CACrB,CAAC;QACF,OAAO,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC;IAClD,CAAC;IAED,IAAW,QAAQ;QACjB,OAAO,IAAI,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,CAAC;IACzC,CAAC;IAED,IAAW,MAAM;QACf,OAAO,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC;IACrC,CAAC;IAEM,OAAO;QACZ,mEAAmE;QACnE,wDAAwD;IAC1D,CAAC;IAED;;;OAGG;IACI,MAAM,CAAC,gBAAgB,CAAC,IAAY;QACzC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC/C,OAAO,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC1B,CAAC;IACD;;OAEG;IACI,MAAM,CAAC,aAAa,CAAC,KAAa;QACvC,OAAO,KAAK,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC;IAC1D,CAAC;IAEM,MAAM,CAAC,kBAAkB;QAC9B,MAAM,QAAQ,GAAG,sCAAsC,CAAC;QACxD,MAAM,GAAG,GAAG,MAAM,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC,CAAC;QACvD,IAAI,GAAG,GAAG,EAAE,CAAC;QACb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC;YAC5B,GAAG,IAAI,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC;QAC5C,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC;IAED;;;OAGG;IACI,MAAM,CAAC,mBAAmB,CAC/B,YAAwB,qBAAS;QAEjC,MAAM,KAAK,GAA4B,EAAE,CAAC;QAC1C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,SAAS,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC,EAAE,EAAE,CAAC;YACtD,KAAK,CAAC,IAAI,CAAC,IAAI,gBAAgB,CAAC,gBAAgB,CAAC,kBAAkB,EAAE,CAAC,CAAC,CAAC;QAC1E,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;CACF;AA7FD,4CA6FC"}

package/src/builders/{index.ts → index.d.ts}

@@ -1,6 +1,6 @@
 /**
  * Builders module - fluent builders for common objects
  */
-
 export * from './role-builder';
 export * from './user-builder';
+//# sourceMappingURL=index.d.ts.map

package/src/builders/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../packages/digitaldefiance-suite-core-lib/src/builders/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,cAAc,gBAAgB,CAAC;AAC/B,cAAc,gBAAgB,CAAC"}

package/src/builders/index.js

@@ -0,0 +1,9 @@
+"use strict";
+/**
+ * Builders module - fluent builders for common objects
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+const tslib_1 = require("tslib");
+tslib_1.__exportStar(require("./role-builder"), exports);
+tslib_1.__exportStar(require("./user-builder"), exports);
+//# sourceMappingURL=index.js.map

package/src/builders/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../packages/digitaldefiance-suite-core-lib/src/builders/index.ts"],"names":[],"mappings":";AAAA;;GAEG;;;AAEH,yDAA+B;AAC/B,yDAA+B"}

package/src/builders/role-builder.d.ts

@@ -0,0 +1,20 @@
+/**
+ * Fluent builder for creating role objects
+ */
+import type { PlatformID } from '@digitaldefiance/ecies-lib';
+import { Role } from '../enumerations/role';
+import { IRoleBase } from '../interfaces/bases/role';
+/**
+ * Builder for creating role objects with fluent API
+ */
+export declare class RoleBuilder<TID extends PlatformID = PlatformID, TDate extends Date | string = Date> {
+    private data;
+    static create<TID extends PlatformID = PlatformID, TDate extends Date | string = Date>(): RoleBuilder<TID, TDate>;
+    withName(name: Role): this;
+    asAdmin(): this;
+    asMember(): this;
+    asChild(): this;
+    asSystem(): this;
+    build(): Partial<IRoleBase<TID, TDate, Role>>;
+}
+//# sourceMappingURL=role-builder.d.ts.map

package/src/builders/role-builder.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"role-builder.d.ts","sourceRoot":"","sources":["../../../../../packages/digitaldefiance-suite-core-lib/src/builders/role-builder.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AAC7D,OAAO,EAAE,IAAI,EAAE,MAAM,sBAAsB,CAAC;AAC5C,OAAO,EAAE,SAAS,EAAE,MAAM,0BAA0B,CAAC;AAErD;;GAEG;AACH,qBAAa,WAAW,CACtB,GAAG,SAAS,UAAU,GAAG,UAAU,EACnC,KAAK,SAAS,IAAI,GAAG,MAAM,GAAG,IAAI;IAElC,OAAO,CAAC,IAAI,CAKV;IAEF,MAAM,CAAC,MAAM,CACX,GAAG,SAAS,UAAU,GAAG,UAAU,EACnC,KAAK,SAAS,IAAI,GAAG,MAAM,GAAG,IAAI,KAC/B,WAAW,CAAC,GAAG,EAAE,KAAK,CAAC;IAI5B,QAAQ,CAAC,IAAI,EAAE,IAAI,GAAG,IAAI;IAK1B,OAAO,IAAI,IAAI;IAQf,QAAQ,IAAI,IAAI;IAQhB,OAAO,IAAI,IAAI;IAQf,QAAQ,IAAI,IAAI;IAQhB,KAAK,IAAI,OAAO,CAAC,SAAS,CAAC,GAAG,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC;CAG9C"}

package/src/builders/role-builder.js

@@ -0,0 +1,57 @@
+"use strict";
+/**
+ * Fluent builder for creating role objects
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RoleBuilder = void 0;
+/**
+ * Builder for creating role objects with fluent API
+ */
+class RoleBuilder {
+    data = {
+        admin: false,
+        member: false,
+        child: false,
+        system: false,
+    };
+    static create() {
+        return new RoleBuilder();
+    }
+    withName(name) {
+        this.data.name = name;
+        return this;
+    }
+    asAdmin() {
+        this.data.admin = true;
+        this.data.member = false;
+        this.data.child = false;
+        this.data.system = false;
+        return this;
+    }
+    asMember() {
+        this.data.admin = false;
+        this.data.member = true;
+        this.data.child = false;
+        this.data.system = false;
+        return this;
+    }
+    asChild() {
+        this.data.admin = false;
+        this.data.member = false;
+        this.data.child = true;
+        this.data.system = false;
+        return this;
+    }
+    asSystem() {
+        this.data.admin = false;
+        this.data.member = false;
+        this.data.child = false;
+        this.data.system = true;
+        return this;
+    }
+    build() {
+        return { ...this.data };
+    }
+}
+exports.RoleBuilder = RoleBuilder;
+//# sourceMappingURL=role-builder.js.map

package/src/builders/role-builder.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"role-builder.js","sourceRoot":"","sources":["../../../../../packages/digitaldefiance-suite-core-lib/src/builders/role-builder.ts"],"names":[],"mappings":";AAAA;;GAEG;;;AAMH;;GAEG;AACH,MAAa,WAAW;IAId,IAAI,GAAyC;QACnD,KAAK,EAAE,KAAK;QACZ,MAAM,EAAE,KAAK;QACb,KAAK,EAAE,KAAK;QACZ,MAAM,EAAE,KAAK;KACd,CAAC;IAEF,MAAM,CAAC,MAAM;QAIX,OAAO,IAAI,WAAW,EAAc,CAAC;IACvC,CAAC;IAED,QAAQ,CAAC,IAAU;QACjB,IAAI,CAAC,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACtB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,OAAO;QACL,IAAI,CAAC,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QACvB,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC;QACzB,IAAI,CAAC,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACxB,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC;QACzB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,QAAQ;QACN,IAAI,CAAC,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACxB,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;QACxB,IAAI,CAAC,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACxB,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC;QACzB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,OAAO;QACL,IAAI,CAAC,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACxB,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC;QACzB,IAAI,CAAC,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QACvB,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC;QACzB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,QAAQ;QACN,IAAI,CAAC,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACxB,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC;QACzB,IAAI,CAAC,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACxB,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;QACxB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,KAAK;QACH,OAAO,EAAE,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;IAC1B,CAAC;CACF;AA1DD,kCA0DC"}

package/src/builders/user-builder.d.ts

@@ -0,0 +1,24 @@
+/**
+ * Fluent builder for creating user objects
+ */
+import type { PlatformID } from '@digitaldefiance/ecies-lib';
+import { AccountStatus } from '../enumerations/account-status';
+import { IUserBase } from '../interfaces/bases/user';
+/**
+ * Builder for creating user objects with fluent API
+ */
+export declare class UserBuilder<TID extends PlatformID = PlatformID, TDate extends Date | string = Date, TLanguage extends string = string> {
+    private data;
+    static create<TID extends PlatformID = PlatformID, TDate extends Date | string = Date, TLanguage extends string = string>(): UserBuilder<TID, TDate, TLanguage>;
+    withUsername(username: string): this;
+    withEmail(email: string): this;
+    withPublicKey(publicKey: string): this;
+    withTimezone(timezone: string): this;
+    withSiteLanguage(siteLanguage: TLanguage): this;
+    withEmailVerified(verified: boolean): this;
+    withAccountStatus(status: AccountStatus): this;
+    withDirectChallenge(enabled: boolean): this;
+    withMnemonicRecovery(recovery: string): this;
+    build(): Partial<IUserBase<TID, TDate, TLanguage, AccountStatus>>;
+}
+//# sourceMappingURL=user-builder.d.ts.map

package/src/builders/user-builder.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-builder.d.ts","sourceRoot":"","sources":["../../../../../packages/digitaldefiance-suite-core-lib/src/builders/user-builder.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AAC7D,OAAO,EAAE,aAAa,EAAE,MAAM,gCAAgC,CAAC;AAC/D,OAAO,EAAE,SAAS,EAAE,MAAM,0BAA0B,CAAC;AAErD;;GAEG;AACH,qBAAa,WAAW,CACtB,GAAG,SAAS,UAAU,GAAG,UAAU,EACnC,KAAK,SAAS,IAAI,GAAG,MAAM,GAAG,IAAI,EAClC,SAAS,SAAS,MAAM,GAAG,MAAM;IAEjC,OAAO,CAAC,IAAI,CAMV;IAEF,MAAM,CAAC,MAAM,CACX,GAAG,SAAS,UAAU,GAAG,UAAU,EACnC,KAAK,SAAS,IAAI,GAAG,MAAM,GAAG,IAAI,EAClC,SAAS,SAAS,MAAM,GAAG,MAAM,KAC9B,WAAW,CAAC,GAAG,EAAE,KAAK,EAAE,SAAS,CAAC;IAIvC,YAAY,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI;IAKpC,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI;IAK9B,aAAa,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IAKtC,YAAY,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI;IAKpC,gBAAgB,CAAC,YAAY,EAAE,SAAS,GAAG,IAAI;IAK/C,iBAAiB,CAAC,QAAQ,EAAE,OAAO,GAAG,IAAI;IAK1C,iBAAiB,CAAC,MAAM,EAAE,aAAa,GAAG,IAAI;IAK9C,mBAAmB,CAAC,OAAO,EAAE,OAAO,GAAG,IAAI;IAK3C,oBAAoB,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI;IAK5C,KAAK,IAAI,OAAO,CAAC,SAAS,CAAC,GAAG,EAAE,KAAK,EAAE,SAAS,EAAE,aAAa,CAAC,CAAC;CAGlE"}

package/src/builders/user-builder.js

@@ -0,0 +1,63 @@
+"use strict";
+/**
+ * Fluent builder for creating user objects
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UserBuilder = void 0;
+const account_status_1 = require("../enumerations/account-status");
+/**
+ * Builder for creating user objects with fluent API
+ */
+class UserBuilder {
+    data = {
+        emailVerified: false,
+        accountStatus: account_status_1.AccountStatus.Active,
+        directChallenge: false,
+        backupCodes: [],
+        timezone: 'UTC',
+    };
+    static create() {
+        return new UserBuilder();
+    }
+    withUsername(username) {
+        this.data.username = username;
+        return this;
+    }
+    withEmail(email) {
+        this.data.email = email;
+        return this;
+    }
+    withPublicKey(publicKey) {
+        this.data.publicKey = publicKey;
+        return this;
+    }
+    withTimezone(timezone) {
+        this.data.timezone = timezone;
+        return this;
+    }
+    withSiteLanguage(siteLanguage) {
+        this.data.siteLanguage = siteLanguage;
+        return this;
+    }
+    withEmailVerified(verified) {
+        this.data.emailVerified = verified;
+        return this;
+    }
+    withAccountStatus(status) {
+        this.data.accountStatus = status;
+        return this;
+    }
+    withDirectChallenge(enabled) {
+        this.data.directChallenge = enabled;
+        return this;
+    }
+    withMnemonicRecovery(recovery) {
+        this.data.mnemonicRecovery = recovery;
+        return this;
+    }
+    build() {
+        return { ...this.data };
+    }
+}
+exports.UserBuilder = UserBuilder;
+//# sourceMappingURL=user-builder.js.map

package/src/builders/user-builder.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-builder.js","sourceRoot":"","sources":["../../../../../packages/digitaldefiance-suite-core-lib/src/builders/user-builder.ts"],"names":[],"mappings":";AAAA;;GAEG;;;AAGH,mEAA+D;AAG/D;;GAEG;AACH,MAAa,WAAW;IAKd,IAAI,GAA6D;QACvE,aAAa,EAAE,KAAK;QACpB,aAAa,EAAE,8BAAa,CAAC,MAAM;QACnC,eAAe,EAAE,KAAK;QACtB,WAAW,EAAE,EAAE;QACf,QAAQ,EAAE,KAAK;KAChB,CAAC;IAEF,MAAM,CAAC,MAAM;QAKX,OAAO,IAAI,WAAW,EAAyB,CAAC;IAClD,CAAC;IAED,YAAY,CAAC,QAAgB;QAC3B,IAAI,CAAC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QAC9B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,SAAS,CAAC,KAAa;QACrB,IAAI,CAAC,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACxB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,aAAa,CAAC,SAAiB;QAC7B,IAAI,CAAC,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;QAChC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,YAAY,CAAC,QAAgB;QAC3B,IAAI,CAAC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QAC9B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,gBAAgB,CAAC,YAAuB;QACtC,IAAI,CAAC,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC;QACtC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,iBAAiB,CAAC,QAAiB;QACjC,IAAI,CAAC,IAAI,CAAC,aAAa,GAAG,QAAQ,CAAC;QACnC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,iBAAiB,CAAC,MAAqB;QACrC,IAAI,CAAC,IAAI,CAAC,aAAa,GAAG,MAAM,CAAC;QACjC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,mBAAmB,CAAC,OAAgB;QAClC,IAAI,CAAC,IAAI,CAAC,eAAe,GAAG,OAAO,CAAC;QACpC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,oBAAoB,CAAC,QAAgB;QACnC,IAAI,CAAC,IAAI,CAAC,gBAAgB,GAAG,QAAQ,CAAC;QACtC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,KAAK;QACH,OAAO,EAAE,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;IAC1B,CAAC;CACF;AArED,kCAqEC"}

package/src/constants.d.ts

@@ -0,0 +1,7 @@
+import { IBackupCodeConstants, ICoreConstants } from './interfaces';
+import { IConstants } from './interfaces/constants';
+export declare const BACKUP_CODES: IBackupCodeConstants;
+export declare const CORE: ICoreConstants;
+export declare const createConstants: (siteDomain: string, siteHostname: string, overrides?: Partial<IConstants>) => IConstants;
+export declare const Constants: IConstants;
+//# sourceMappingURL=constants.d.ts.map

package/src/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../../../packages/digitaldefiance-suite-core-lib/src/constants.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,oBAAoB,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AACpE,OAAO,EAAE,UAAU,EAAE,MAAM,wBAAwB,CAAC;AAEpD,eAAO,MAAM,YAAY,EAAE,oBAOhB,CAAC;AAEZ,eAAO,MAAM,IAAI,EAAE,cAoIR,CAAC;AAEZ,eAAO,MAAM,eAAe,EAAE,CAC5B,UAAU,EAAE,MAAM,EAClB,YAAY,EAAE,MAAM,EACpB,SAAS,CAAC,EAAE,OAAO,CAAC,UAAU,CAAC,KAC5B,UAqEJ,CAAC;AAEF,eAAO,MAAM,SAAS,YAA4C,CAAC"}

package/src/constants.js

@@ -0,0 +1,214 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Constants = exports.createConstants = exports.CORE = exports.BACKUP_CODES = void 0;
+/**
+ * Constants and configuration for the suite-core library.
+ * Provides runtime configuration including backup codes, authentication settings,
+ * validation rules, and site-specific constants.
+ */
+const ecies_lib_1 = require("@digitaldefiance/ecies-lib");
+const role_1 = require("./enumerations/role");
+exports.BACKUP_CODES = Object.freeze({
+    /**
+     * How many backup codes to generate for users
+     */
+    Count: 10,
+    NormalizedHexRegex: /^[a-z0-9]{32}$/, // exactly 32 lowercase alphanumeric chars
+    DisplayRegex: /^([a-z0-9]{4}-){7}[a-z0-9]{4}$/, // xxxx-xxxx-xxxx-xxxx-xxxx-xxxx-xxxx-xxxx
+});
+exports.CORE = Object.freeze({
+    /**
+     * The ID provider to use for generating and parsing IDs
+     */
+    idProvider: new ecies_lib_1.ObjectIdProvider(),
+    /**
+     * Default duration in seconds for which a mnemonic is kept in memory
+     */
+    DefaultExpireMemoryMnemonicSeconds: 300, // 5 minutes
+    /**
+     * Default duration in seconds for which a wallet is kept in memory
+     */
+    DefaultExpireMemoryWalletSeconds: 300, // 5 minutes
+    /**
+     * Duration in milliseconds for which a login challenge is valid.
+     */
+    LoginChallengeExpiration: 60000, // 60 seconds
+    /**
+     * The expected length of a direct login challenge in bytes
+     */
+    DirectLoginChallengeLength: 104,
+    /**
+     * Backup code system configuration
+     */
+    BACKUP_CODES: exports.BACKUP_CODES,
+    /**
+     * Duration in milliseconds for which an email token is valid.
+     */
+    EmailTokenExpiration: 86400000, // 24 * 60 * 60 * 1000
+    /**
+     * Length in bytes of the email token generated (is represented as a hex string of twice as many)
+     */
+    EmailTokenLength: 32,
+    /**
+     * Number of rounds for bcrypt hashing. Higher values increase security but also consume more CPU resources.
+     */
+    BcryptRounds: 10,
+    /**
+     * The username of the administrator user.
+     */
+    AdministratorUser: 'admin',
+    /**
+     * The name of the administrator role.
+     */
+    AdministratorRole: role_1.Role.Admin,
+    /**
+     * The name of the member role.
+     */
+    MemberRole: role_1.Role.Member,
+    /**
+     * The username of the test user.
+     */
+    MemberUser: 'test',
+    /**
+     * The name of the system role.
+     */
+    SystemRole: role_1.Role.System,
+    /**
+     * The username of the system user.
+     */
+    SystemUser: 'system',
+    /**
+     * Minimum username length
+     */
+    UsernameMinLength: 3,
+    /**
+     * Maximum username length
+     */
+    UsernameMaxLength: 30,
+    /**
+     * The regular expression for valid usernames.
+     */
+    UsernameRegex: /^[A-Za-z0-9]{3,30}$/,
+    /**
+     * Minimum password length
+     */
+    PasswordMinLength: 8,
+    /**
+     * The regular expression for valid passwords.
+     */
+    PasswordRegex: /^(?=.*[A-Za-z])(?=.*\d)(?=.*[!@#$%^&*()_+\-=[\]{};':"\\|,.<>/?])[A-Za-z\d!@#$%^&*()_+\-=[\]{};':"\\|,.<>/?]{8,}$/,
+    /**
+     * The regular expression for valid JWT tokens.
+     */
+    JwtSecretRegex: /^[0-9a-f]{64}$/i,
+    /**
+     * The regular expression for valid mnemonic phrases.
+     * BIP39 - supports 12, 15, 18, 21, or 24 word mnemonics
+     */
+    MnemonicRegex: /^(?:\w+\s){11}\w+$|^(?:\w+\s){14}\w+$|^(?:\w+\s){17}\w+$|^(?:\w+\s){20}\w+$|^(?:\w+\s){23}\w+$/i,
+    /**
+     * Matches a 64-character hexadecimal string (SHA-256).
+     */
+    MnemonicHmacRegex: /^[a-f0-9]{64}$/,
+    /**
+     * The regular expression for valid encryption keys.
+     */
+    MnemonicEncryptionKeyRegex: /^[a-f0-9]{64}$/,
+    /**
+     * The amount of time in milliseconds after which an email token can be resent.
+     */
+    EmailTokenResendInterval: 300000, // 5 * 60 * 1000 = 5 minutes
+    /**
+     * The interval in minutes after which an email token can be resent.
+     */
+    EmailTokenResendIntervalMinutes: 5,
+    /**
+     * The site name. Overridden by specific site constants.
+     */
+    Site: 'New Site',
+    /**
+     * The site tagline. Overridden by specific site constants.
+     */
+    SiteTagline: 'New Site Tagline',
+    /**
+     * The site description. Overridden by specific site constants.
+     */
+    SiteDescription: 'Description of the new site',
+    /**
+     * Email domain of usernames on the site. Overridden by specific site constants.
+     */
+    SiteEmailDomain: 'localhost',
+    /**
+     * The hostname of the site. Overridden by specific site constants.
+     */
+    SiteHostname: 'localhost',
+});
+const createConstants = (siteDomain, siteHostname, overrides) => {
+    return Object.freeze({
+        ...exports.CORE,
+        /**
+         * The email of the administrator user/admin contact
+         */
+        AdministratorEmail: `admin@${siteDomain}`,
+        /**
+         * The email of the test user.
+         */
+        MemberEmail: `test@${siteDomain}`,
+        /**
+         * The email of the system user.
+         */
+        SystemEmail: `system@${siteDomain}`,
+        /**
+         * The email domain of usernames on the site.
+         */
+        SiteEmailDomain: siteDomain,
+        /**
+         * The hostname of the site.
+         */
+        SiteHostname: siteHostname,
+        /**
+         * The color used to indicate success states.
+         */
+        success_color: '#4CAF50',
+        /**
+         * The color used to indicate failure states.
+         */
+        failure_color: '#F44336',
+        /**
+         * The color used to indicate warning states.
+         */
+        warning_color: '#FF9800',
+        /**
+         * The light variant of the primary text color.
+         */
+        primary_text_light: '#ffffff',
+        /**
+         * The dark variant of the primary text color.
+         */
+        primary_text_dark: '#000000',
+        /**
+         * The light variant of the secondary text color.
+         */
+        secondary_text_light: '#ffffff',
+        /**
+         * The dark variant of the secondary text color.
+         */
+        secondary_text_dark: '#000000',
+        /**
+         * The primary brand color (used for primary theme color)
+         */
+        logo_primary_color: '#050505ff',
+        /**
+         * The primary text color (used for logo and text)
+         */
+        logo_primary_text: '#212121',
+        /**
+         * The secondary text color (used for logo and accents)
+         */
+        logo_secondary_text: '#757575',
+        ...(overrides ?? {}),
+    });
+};
+exports.createConstants = createConstants;
+exports.Constants = (0, exports.createConstants)('localhost', 'localhost');
+//# sourceMappingURL=constants.js.map

package/src/constants.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.js","sourceRoot":"","sources":["../../../../packages/digitaldefiance-suite-core-lib/src/constants.ts"],"names":[],"mappings":";;;AAAA;;;;GAIG;AACH,0DAA8D;AAC9D,8CAA2C;AAI9B,QAAA,YAAY,GAAyB,MAAM,CAAC,MAAM,CAAC;IAC9D;;OAEG;IACH,KAAK,EAAE,EAAW;IAClB,kBAAkB,EAAE,gBAAgB,EAAE,0CAA0C;IAChF,YAAY,EAAE,gCAAgC,EAAE,0CAA0C;CAClF,CAAC,CAAC;AAEC,QAAA,IAAI,GAAmB,MAAM,CAAC,MAAM,CAAC;IAChD;;OAEG;IACH,UAAU,EAAE,IAAI,4BAAgB,EAAE;IAClC;;OAEG;IACH,kCAAkC,EAAE,GAAY,EAAE,YAAY;IAC9D;;OAEG;IACH,gCAAgC,EAAE,GAAY,EAAE,YAAY;IAE5D;;OAEG;IACH,wBAAwB,EAAE,KAAc,EAAE,aAAa;IAEvD;;OAEG;IACH,0BAA0B,EAAE,GAAY;IAExC;;OAEG;IACH,YAAY,EAAE,oBAAY;IAE1B;;OAEG;IACH,oBAAoB,EAAE,QAAiB,EAAE,sBAAsB;IAC/D;;OAEG;IACH,gBAAgB,EAAE,EAAW;IAC7B;;OAEG;IACH,YAAY,EAAE,EAAW;IACzB;;OAEG;IACH,iBAAiB,EAAE,OAAgB;IACnC;;OAEG;IACH,iBAAiB,EAAE,WAAI,CAAC,KAAc;IACtC;;OAEG;IACH,UAAU,EAAE,WAAI,CAAC,MAAe;IAChC;;OAEG;IACH,UAAU,EAAE,MAAe;IAC3B;;OAEG;IACH,UAAU,EAAE,WAAI,CAAC,MAAe;IAChC;;OAEG;IACH,UAAU,EAAE,QAAiB;IAC7B;;OAEG;IACH,iBAAiB,EAAE,CAAU;IAC7B;;OAEG;IACH,iBAAiB,EAAE,EAAW;IAC9B;;OAEG;IACH,aAAa,EAAE,qBAAqB;IACpC;;OAEG;IACH,iBAAiB,EAAE,CAAU;IAC7B;;OAEG;IACH,aAAa,EACX,kHAAkH;IACpH;;OAEG;IACH,cAAc,EAAE,iBAAiB;IACjC;;;OAGG;IACH,aAAa,EACX,iGAAiG;IACnG;;OAEG;IACH,iBAAiB,EAAE,gBAAgB;IACnC;;OAEG;IACH,0BAA0B,EAAE,gBAAgB;IAC5C;;OAEG;IACH,wBAAwB,EAAE,MAAe,EAAE,4BAA4B;IACvE;;OAEG;IACH,+BAA+B,EAAE,CAAU;IAC3C;;OAEG;IACH,IAAI,EAAE,UAAmB;IACzB;;OAEG;IACH,WAAW,EAAE,kBAA2B;IACxC;;OAEG;IACH,eAAe,EAAE,6BAAsC;IACvD;;OAEG;IACH,eAAe,EAAE,WAAoB;IACrC;;OAEG;IACH,YAAY,EAAE,WAAoB;CAC1B,CAAC,CAAC;AAEL,MAAM,eAAe,GAIV,CAChB,UAAkB,EAClB,YAAoB,EACpB,SAA+B,EAC/B,EAAE;IACF,OAAO,MAAM,CAAC,MAAM,CAAC;QACnB,GAAG,YAAI;QACP;;WAEG;QACH,kBAAkB,EAAE,SAAS,UAAU,EAAW;QAClD;;WAEG;QACH,WAAW,EAAE,QAAQ,UAAU,EAAW;QAC1C;;WAEG;QACH,WAAW,EAAE,UAAU,UAAU,EAAW;QAC5C;;WAEG;QACH,eAAe,EAAE,UAAU;QAC3B;;WAEG;QACH,YAAY,EAAE,YAAY;QAC1B;;WAEG;QACH,aAAa,EAAE,SAAS;QACxB;;WAEG;QACH,aAAa,EAAE,SAAS;QACxB;;WAEG;QACH,aAAa,EAAE,SAAS;QACxB;;WAEG;QACH,kBAAkB,EAAE,SAAS;QAC7B;;WAEG;QACH,iBAAiB,EAAE,SAAS;QAC5B;;WAEG;QACH,oBAAoB,EAAE,SAAS;QAC/B;;WAEG;QACH,mBAAmB,EAAE,SAAS;QAC9B;;WAEG;QACH,kBAAkB,EAAE,WAAW;QAC/B;;WAEG;QACH,iBAAiB,EAAE,SAAS;QAC5B;;WAEG;QACH,mBAAmB,EAAE,SAAS;QAC9B,GAAG,CAAC,SAAS,IAAI,EAAE,CAAC;KACZ,CAAC,CAAC;AACd,CAAC,CAAC;AAzEW,QAAA,eAAe,mBAyE1B;AAEW,QAAA,SAAS,GAAG,IAAA,uBAAe,EAAC,WAAW,EAAE,WAAW,CAAC,CAAC"}

package/src/core/{errors.ts → errors.d.ts}

@@ -1,13 +1,9 @@
 /**
  * Core error class exports for suite-core-lib
  */
-
-// Base error classes
 export { CoreTypedHandleableError } from '../errors/core-typed-handleable';
 export { TranslatableSuiteError } from '../errors/translatable-suite';
 export { TranslatableSuiteHandleableError } from '../errors/translatable-suite-handleable';
-
-// Common error classes
 export { EmailInUseError } from '../errors/email-in-use';
 export { GenericValidationError } from '../errors/generic-validation';
 export { InvalidCredentialsError } from '../errors/invalid-credentials';
@@ -15,3 +11,4 @@ export { InvalidEmailError } from '../errors/invalid-email';
 export { InvalidUsernameError } from '../errors/invalid-username';
 export { UserNotFoundError } from '../errors/user-not-found';
 export { UsernameInUseError } from '../errors/username-in-use';
+//# sourceMappingURL=errors.d.ts.map

package/src/core/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../../../../packages/digitaldefiance-suite-core-lib/src/core/errors.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,EAAE,wBAAwB,EAAE,MAAM,iCAAiC,CAAC;AAC3E,OAAO,EAAE,sBAAsB,EAAE,MAAM,8BAA8B,CAAC;AACtE,OAAO,EAAE,gCAAgC,EAAE,MAAM,yCAAyC,CAAC;AAG3F,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,sBAAsB,EAAE,MAAM,8BAA8B,CAAC;AACtE,OAAO,EAAE,uBAAuB,EAAE,MAAM,+BAA+B,CAAC;AACxE,OAAO,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAC5D,OAAO,EAAE,oBAAoB,EAAE,MAAM,4BAA4B,CAAC;AAClE,OAAO,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAC;AAC7D,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC"}