@dofe/sso-contracts 0.1.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +303 -0
- package/dist/api/admin-setting.contract.d.ts +69 -0
- package/dist/api/admin-setting.contract.d.ts.map +1 -0
- package/dist/api/admin-setting.contract.js +29 -0
- package/dist/api/admin-setting.contract.js.map +1 -0
- package/dist/api/admin-webhook.contract.d.ts +290 -0
- package/dist/api/admin-webhook.contract.d.ts.map +1 -0
- package/dist/api/admin-webhook.contract.js +79 -0
- package/dist/api/admin-webhook.contract.js.map +1 -0
- package/dist/api/admin.contract.d.ts +895 -0
- package/dist/api/admin.contract.d.ts.map +1 -0
- package/dist/api/admin.contract.js +178 -0
- package/dist/api/admin.contract.js.map +1 -0
- package/dist/api/analytics.contract.d.ts +99 -0
- package/dist/api/analytics.contract.d.ts.map +1 -0
- package/dist/api/analytics.contract.js +45 -0
- package/dist/api/analytics.contract.js.map +1 -0
- package/dist/api/app-rbac.contract.d.ts +259 -0
- package/dist/api/app-rbac.contract.d.ts.map +1 -0
- package/dist/api/app-rbac.contract.js +106 -0
- package/dist/api/app-rbac.contract.js.map +1 -0
- package/dist/api/approval.contract.d.ts +243 -0
- package/dist/api/approval.contract.d.ts.map +1 -0
- package/dist/api/approval.contract.js +56 -0
- package/dist/api/approval.contract.js.map +1 -0
- package/dist/api/audit-log.contract.d.ts +741 -0
- package/dist/api/audit-log.contract.d.ts.map +1 -0
- package/dist/api/audit-log.contract.js +44 -0
- package/dist/api/audit-log.contract.js.map +1 -0
- package/dist/api/auth.contract.d.ts +757 -0
- package/dist/api/auth.contract.d.ts.map +1 -0
- package/dist/api/auth.contract.js +144 -0
- package/dist/api/auth.contract.js.map +1 -0
- package/dist/api/client.contract.d.ts +435 -0
- package/dist/api/client.contract.d.ts.map +1 -0
- package/dist/api/client.contract.js +90 -0
- package/dist/api/client.contract.js.map +1 -0
- package/dist/api/connector.contract.d.ts +202 -0
- package/dist/api/connector.contract.d.ts.map +1 -0
- package/dist/api/connector.contract.js +54 -0
- package/dist/api/connector.contract.js.map +1 -0
- package/dist/api/dashboard.contract.d.ts +109 -0
- package/dist/api/dashboard.contract.d.ts.map +1 -0
- package/dist/api/dashboard.contract.js +34 -0
- package/dist/api/dashboard.contract.js.map +1 -0
- package/dist/api/download.contract.d.ts +81 -0
- package/dist/api/download.contract.d.ts.map +1 -0
- package/dist/api/download.contract.js +57 -0
- package/dist/api/download.contract.js.map +1 -0
- package/dist/api/impersonation.contract.d.ts +171 -0
- package/dist/api/impersonation.contract.d.ts.map +1 -0
- package/dist/api/impersonation.contract.js +53 -0
- package/dist/api/impersonation.contract.js.map +1 -0
- package/dist/api/index.d.ts +33 -0
- package/dist/api/index.d.ts.map +1 -0
- package/dist/api/index.js +49 -0
- package/dist/api/index.js.map +1 -0
- package/dist/api/internal-app-rbac.contract.d.ts +570 -0
- package/dist/api/internal-app-rbac.contract.d.ts.map +1 -0
- package/dist/api/internal-app-rbac.contract.js +123 -0
- package/dist/api/internal-app-rbac.contract.js.map +1 -0
- package/dist/api/internal-approval.contract.d.ts +490 -0
- package/dist/api/internal-approval.contract.d.ts.map +1 -0
- package/dist/api/internal-approval.contract.js +73 -0
- package/dist/api/internal-approval.contract.js.map +1 -0
- package/dist/api/internal.contract.d.ts +1765 -0
- package/dist/api/internal.contract.d.ts.map +1 -0
- package/dist/api/internal.contract.js +316 -0
- package/dist/api/internal.contract.js.map +1 -0
- package/dist/api/message.contract.d.ts +127 -0
- package/dist/api/message.contract.d.ts.map +1 -0
- package/dist/api/message.contract.js +85 -0
- package/dist/api/message.contract.js.map +1 -0
- package/dist/api/mfa.contract.d.ts +322 -0
- package/dist/api/mfa.contract.d.ts.map +1 -0
- package/dist/api/mfa.contract.js +79 -0
- package/dist/api/mfa.contract.js.map +1 -0
- package/dist/api/oidc.contract.d.ts +69 -0
- package/dist/api/oidc.contract.d.ts.map +1 -0
- package/dist/api/oidc.contract.js +44 -0
- package/dist/api/oidc.contract.js.map +1 -0
- package/dist/api/rbac.contract.d.ts +413 -0
- package/dist/api/rbac.contract.d.ts.map +1 -0
- package/dist/api/rbac.contract.js +151 -0
- package/dist/api/rbac.contract.js.map +1 -0
- package/dist/api/risk-words.contract.d.ts +40 -0
- package/dist/api/risk-words.contract.d.ts.map +1 -0
- package/dist/api/risk-words.contract.js +35 -0
- package/dist/api/risk-words.contract.js.map +1 -0
- package/dist/api/setting.contract.d.ts +302 -0
- package/dist/api/setting.contract.d.ts.map +1 -0
- package/dist/api/setting.contract.js +105 -0
- package/dist/api/setting.contract.js.map +1 -0
- package/dist/api/sign-in-experience.contract.d.ts +156 -0
- package/dist/api/sign-in-experience.contract.d.ts.map +1 -0
- package/dist/api/sign-in-experience.contract.js +29 -0
- package/dist/api/sign-in-experience.contract.js.map +1 -0
- package/dist/api/sign.contract.d.ts +834 -0
- package/dist/api/sign.contract.d.ts.map +1 -0
- package/dist/api/sign.contract.js +227 -0
- package/dist/api/sign.contract.js.map +1 -0
- package/dist/api/sms.contract.d.ts +150 -0
- package/dist/api/sms.contract.d.ts.map +1 -0
- package/dist/api/sms.contract.js +76 -0
- package/dist/api/sms.contract.js.map +1 -0
- package/dist/api/system.contract.d.ts +69 -0
- package/dist/api/system.contract.d.ts.map +1 -0
- package/dist/api/system.contract.js +42 -0
- package/dist/api/system.contract.js.map +1 -0
- package/dist/api/task.contract.d.ts +106 -0
- package/dist/api/task.contract.d.ts.map +1 -0
- package/dist/api/task.contract.js +47 -0
- package/dist/api/task.contract.js.map +1 -0
- package/dist/api/tenant.contract.d.ts +855 -0
- package/dist/api/tenant.contract.d.ts.map +1 -0
- package/dist/api/tenant.contract.js +143 -0
- package/dist/api/tenant.contract.js.map +1 -0
- package/dist/api/uploader.contract.d.ts +232 -0
- package/dist/api/uploader.contract.d.ts.map +1 -0
- package/dist/api/uploader.contract.js +75 -0
- package/dist/api/uploader.contract.js.map +1 -0
- package/dist/api/user-v1.contract.d.ts +237 -0
- package/dist/api/user-v1.contract.d.ts.map +1 -0
- package/dist/api/user-v1.contract.js +75 -0
- package/dist/api/user-v1.contract.js.map +1 -0
- package/dist/api/user.contract.d.ts +140 -0
- package/dist/api/user.contract.d.ts.map +1 -0
- package/dist/api/user.contract.js +51 -0
- package/dist/api/user.contract.js.map +1 -0
- package/dist/api/webhook.contract.d.ts +108 -0
- package/dist/api/webhook.contract.d.ts.map +1 -0
- package/dist/api/webhook.contract.js +60 -0
- package/dist/api/webhook.contract.js.map +1 -0
- package/dist/base.d.ts +91 -0
- package/dist/base.d.ts.map +1 -0
- package/dist/base.js +68 -0
- package/dist/base.js.map +1 -0
- package/dist/errors/codes.d.ts +183 -0
- package/dist/errors/codes.d.ts.map +1 -0
- package/dist/errors/codes.js +41 -0
- package/dist/errors/codes.js.map +1 -0
- package/dist/errors/domains/auth.errors.d.ts +8 -0
- package/dist/errors/domains/auth.errors.d.ts.map +1 -0
- package/dist/errors/domains/auth.errors.js +14 -0
- package/dist/errors/domains/auth.errors.js.map +1 -0
- package/dist/errors/domains/common.errors.d.ts +71 -0
- package/dist/errors/domains/common.errors.d.ts.map +1 -0
- package/dist/errors/domains/common.errors.js +205 -0
- package/dist/errors/domains/common.errors.js.map +1 -0
- package/dist/errors/domains/index.d.ts +7 -0
- package/dist/errors/domains/index.d.ts.map +1 -0
- package/dist/errors/domains/index.js +24 -0
- package/dist/errors/domains/index.js.map +1 -0
- package/dist/errors/domains/tenant.errors.d.ts +8 -0
- package/dist/errors/domains/tenant.errors.d.ts.map +1 -0
- package/dist/errors/domains/tenant.errors.js +14 -0
- package/dist/errors/domains/tenant.errors.js.map +1 -0
- package/dist/errors/domains/user.errors.d.ts +21 -0
- package/dist/errors/domains/user.errors.d.ts.map +1 -0
- package/dist/errors/domains/user.errors.js +50 -0
- package/dist/errors/domains/user.errors.js.map +1 -0
- package/dist/errors/error-response.d.ts +116 -0
- package/dist/errors/error-response.d.ts.map +1 -0
- package/dist/errors/error-response.js +128 -0
- package/dist/errors/error-response.js.map +1 -0
- package/dist/errors/index.d.ts +9 -0
- package/dist/errors/index.d.ts.map +1 -0
- package/dist/errors/index.js +29 -0
- package/dist/errors/index.js.map +1 -0
- package/dist/errors/messages.d.ts +26 -0
- package/dist/errors/messages.d.ts.map +1 -0
- package/dist/errors/messages.js +224 -0
- package/dist/errors/messages.js.map +1 -0
- package/dist/index.d.ts +14 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +34 -0
- package/dist/index.js.map +1 -0
- package/dist/schemas/admin-system.schema.d.ts +58 -0
- package/dist/schemas/admin-system.schema.d.ts.map +1 -0
- package/dist/schemas/admin-system.schema.js +40 -0
- package/dist/schemas/admin-system.schema.js.map +1 -0
- package/dist/schemas/admin-webhook.schema.d.ts +129 -0
- package/dist/schemas/admin-webhook.schema.d.ts.map +1 -0
- package/dist/schemas/admin-webhook.schema.js +64 -0
- package/dist/schemas/admin-webhook.schema.js.map +1 -0
- package/dist/schemas/admin.schema.d.ts +255 -0
- package/dist/schemas/admin.schema.d.ts.map +1 -0
- package/dist/schemas/admin.schema.js +164 -0
- package/dist/schemas/admin.schema.js.map +1 -0
- package/dist/schemas/analytics.schema.d.ts +144 -0
- package/dist/schemas/analytics.schema.d.ts.map +1 -0
- package/dist/schemas/analytics.schema.js +69 -0
- package/dist/schemas/analytics.schema.js.map +1 -0
- package/dist/schemas/app-rbac.schema.d.ts +125 -0
- package/dist/schemas/app-rbac.schema.d.ts.map +1 -0
- package/dist/schemas/app-rbac.schema.js +68 -0
- package/dist/schemas/app-rbac.schema.js.map +1 -0
- package/dist/schemas/approval.schema.d.ts +134 -0
- package/dist/schemas/approval.schema.d.ts.map +1 -0
- package/dist/schemas/approval.schema.js +60 -0
- package/dist/schemas/approval.schema.js.map +1 -0
- package/dist/schemas/audit-log.schema.d.ts +395 -0
- package/dist/schemas/audit-log.schema.d.ts.map +1 -0
- package/dist/schemas/audit-log.schema.js +49 -0
- package/dist/schemas/audit-log.schema.js.map +1 -0
- package/dist/schemas/auth.schema.d.ts +110 -0
- package/dist/schemas/auth.schema.d.ts.map +1 -0
- package/dist/schemas/auth.schema.js +100 -0
- package/dist/schemas/auth.schema.js.map +1 -0
- package/dist/schemas/client.schema.d.ts +103 -0
- package/dist/schemas/client.schema.d.ts.map +1 -0
- package/dist/schemas/client.schema.js +62 -0
- package/dist/schemas/client.schema.js.map +1 -0
- package/dist/schemas/connector.schema.d.ts +71 -0
- package/dist/schemas/connector.schema.d.ts.map +1 -0
- package/dist/schemas/connector.schema.js +35 -0
- package/dist/schemas/connector.schema.js.map +1 -0
- package/dist/schemas/dashboard.schema.d.ts +34 -0
- package/dist/schemas/dashboard.schema.d.ts.map +1 -0
- package/dist/schemas/dashboard.schema.js +34 -0
- package/dist/schemas/dashboard.schema.js.map +1 -0
- package/dist/schemas/download.schema.d.ts +42 -0
- package/dist/schemas/download.schema.d.ts.map +1 -0
- package/dist/schemas/download.schema.js +43 -0
- package/dist/schemas/download.schema.js.map +1 -0
- package/dist/schemas/impersonation.schema.d.ts +34 -0
- package/dist/schemas/impersonation.schema.d.ts.map +1 -0
- package/dist/schemas/impersonation.schema.js +37 -0
- package/dist/schemas/impersonation.schema.js.map +1 -0
- package/dist/schemas/index.d.ts +33 -0
- package/dist/schemas/index.d.ts.map +1 -0
- package/dist/schemas/index.js +51 -0
- package/dist/schemas/index.js.map +1 -0
- package/dist/schemas/internal.schema.d.ts +339 -0
- package/dist/schemas/internal.schema.d.ts.map +1 -0
- package/dist/schemas/internal.schema.js +218 -0
- package/dist/schemas/internal.schema.js.map +1 -0
- package/dist/schemas/message.schema.d.ts +117 -0
- package/dist/schemas/message.schema.d.ts.map +1 -0
- package/dist/schemas/message.schema.js +73 -0
- package/dist/schemas/message.schema.js.map +1 -0
- package/dist/schemas/mfa.schema.d.ts +52 -0
- package/dist/schemas/mfa.schema.d.ts.map +1 -0
- package/dist/schemas/mfa.schema.js +53 -0
- package/dist/schemas/mfa.schema.js.map +1 -0
- package/dist/schemas/oidc.schema.d.ts +101 -0
- package/dist/schemas/oidc.schema.d.ts.map +1 -0
- package/dist/schemas/oidc.schema.js +101 -0
- package/dist/schemas/oidc.schema.js.map +1 -0
- package/dist/schemas/prisma-enums.generated.d.ts +196 -0
- package/dist/schemas/prisma-enums.generated.d.ts.map +1 -0
- package/dist/schemas/prisma-enums.generated.js +91 -0
- package/dist/schemas/prisma-enums.generated.js.map +1 -0
- package/dist/schemas/rbac.schema.d.ts +170 -0
- package/dist/schemas/rbac.schema.d.ts.map +1 -0
- package/dist/schemas/rbac.schema.js +82 -0
- package/dist/schemas/rbac.schema.js.map +1 -0
- package/dist/schemas/risk-words.schema.d.ts +16 -0
- package/dist/schemas/risk-words.schema.d.ts.map +1 -0
- package/dist/schemas/risk-words.schema.js +25 -0
- package/dist/schemas/risk-words.schema.js.map +1 -0
- package/dist/schemas/setting.schema.d.ts +62 -0
- package/dist/schemas/setting.schema.d.ts.map +1 -0
- package/dist/schemas/setting.schema.js +66 -0
- package/dist/schemas/setting.schema.js.map +1 -0
- package/dist/schemas/sie.schema.d.ts +180 -0
- package/dist/schemas/sie.schema.d.ts.map +1 -0
- package/dist/schemas/sie.schema.js +56 -0
- package/dist/schemas/sie.schema.js.map +1 -0
- package/dist/schemas/sign.schema.d.ts +156 -0
- package/dist/schemas/sign.schema.d.ts.map +1 -0
- package/dist/schemas/sign.schema.js +143 -0
- package/dist/schemas/sign.schema.js.map +1 -0
- package/dist/schemas/sms.schema.d.ts +36 -0
- package/dist/schemas/sms.schema.d.ts.map +1 -0
- package/dist/schemas/sms.schema.js +48 -0
- package/dist/schemas/sms.schema.js.map +1 -0
- package/dist/schemas/sse.schema.d.ts +27 -0
- package/dist/schemas/sse.schema.d.ts.map +1 -0
- package/dist/schemas/sse.schema.js +32 -0
- package/dist/schemas/sse.schema.js.map +1 -0
- package/dist/schemas/system.schema.d.ts +48 -0
- package/dist/schemas/system.schema.d.ts.map +1 -0
- package/dist/schemas/system.schema.js +25 -0
- package/dist/schemas/system.schema.js.map +1 -0
- package/dist/schemas/tag.schema.d.ts +57 -0
- package/dist/schemas/tag.schema.d.ts.map +1 -0
- package/dist/schemas/tag.schema.js +46 -0
- package/dist/schemas/tag.schema.js.map +1 -0
- package/dist/schemas/task.schema.d.ts +92 -0
- package/dist/schemas/task.schema.d.ts.map +1 -0
- package/dist/schemas/task.schema.js +45 -0
- package/dist/schemas/task.schema.js.map +1 -0
- package/dist/schemas/tenant.schema.d.ts +206 -0
- package/dist/schemas/tenant.schema.d.ts.map +1 -0
- package/dist/schemas/tenant.schema.js +90 -0
- package/dist/schemas/tenant.schema.js.map +1 -0
- package/dist/schemas/uploader.schema.d.ts +137 -0
- package/dist/schemas/uploader.schema.d.ts.map +1 -0
- package/dist/schemas/uploader.schema.js +115 -0
- package/dist/schemas/uploader.schema.js.map +1 -0
- package/dist/schemas/user.schema.d.ts +107 -0
- package/dist/schemas/user.schema.d.ts.map +1 -0
- package/dist/schemas/user.schema.js +70 -0
- package/dist/schemas/user.schema.js.map +1 -0
- package/dist/schemas/webhook.schema.d.ts +75 -0
- package/dist/schemas/webhook.schema.d.ts.map +1 -0
- package/dist/schemas/webhook.schema.js +71 -0
- package/dist/schemas/webhook.schema.js.map +1 -0
- package/package.json +77 -0
|
@@ -0,0 +1,322 @@
|
|
|
1
|
+
export declare const mfaContract: {
|
|
2
|
+
initSetup: {
|
|
3
|
+
summary: "初始化 MFA 设置(生成 QR Code 和密钥)";
|
|
4
|
+
method: "POST";
|
|
5
|
+
body: import("@ts-rest/core").ContractPlainType<object>;
|
|
6
|
+
path: "/mfa/setup/init";
|
|
7
|
+
responses: {
|
|
8
|
+
200: import("zod").ZodObject<{
|
|
9
|
+
code: import("zod").ZodNumber;
|
|
10
|
+
msg: import("zod").ZodString;
|
|
11
|
+
data: import("zod").ZodObject<{
|
|
12
|
+
qrCodeDataUrl: import("zod").ZodString;
|
|
13
|
+
provisioningUri: import("zod").ZodString;
|
|
14
|
+
secret: import("zod").ZodString;
|
|
15
|
+
issuer: import("zod").ZodString;
|
|
16
|
+
accountName: import("zod").ZodString;
|
|
17
|
+
}, import("zod/v4/core").$strip>;
|
|
18
|
+
}, import("zod/v4/core").$strip>;
|
|
19
|
+
};
|
|
20
|
+
};
|
|
21
|
+
verifySetup: {
|
|
22
|
+
summary: "验证 TOTP 并完成 MFA 绑定";
|
|
23
|
+
method: "POST";
|
|
24
|
+
body: import("zod").ZodObject<{
|
|
25
|
+
code: import("zod").ZodString;
|
|
26
|
+
}, import("zod/v4/core").$strip>;
|
|
27
|
+
path: "/mfa/setup/verify";
|
|
28
|
+
responses: {
|
|
29
|
+
200: import("zod").ZodObject<{
|
|
30
|
+
code: import("zod").ZodNumber;
|
|
31
|
+
msg: import("zod").ZodString;
|
|
32
|
+
data: import("zod").ZodObject<{
|
|
33
|
+
backupCodes: import("zod").ZodArray<import("zod").ZodString>;
|
|
34
|
+
enabled: import("zod").ZodBoolean;
|
|
35
|
+
}, import("zod/v4/core").$strip>;
|
|
36
|
+
}, import("zod/v4/core").$strip>;
|
|
37
|
+
};
|
|
38
|
+
};
|
|
39
|
+
login: {
|
|
40
|
+
summary: "MFA 二次验证登录";
|
|
41
|
+
method: "POST";
|
|
42
|
+
body: import("zod").ZodObject<{
|
|
43
|
+
mfaToken: import("zod").ZodString;
|
|
44
|
+
code: import("zod").ZodString;
|
|
45
|
+
}, import("zod/v4/core").$strip>;
|
|
46
|
+
path: "/mfa/login";
|
|
47
|
+
responses: {
|
|
48
|
+
200: import("zod").ZodObject<{
|
|
49
|
+
code: import("zod").ZodNumber;
|
|
50
|
+
msg: import("zod").ZodString;
|
|
51
|
+
data: import("zod").ZodObject<{
|
|
52
|
+
access: import("zod").ZodString;
|
|
53
|
+
refresh: import("zod").ZodString;
|
|
54
|
+
expire: import("zod").ZodNumber;
|
|
55
|
+
accessExpire: import("zod").ZodNumber;
|
|
56
|
+
isAnonymity: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
57
|
+
user: import("zod").ZodObject<{
|
|
58
|
+
id: import("zod").ZodString;
|
|
59
|
+
isAnonymity: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
60
|
+
isAdmin: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
61
|
+
code: import("zod").ZodNullable<import("zod").ZodString>;
|
|
62
|
+
nickname: import("zod").ZodNullable<import("zod").ZodString>;
|
|
63
|
+
headerImg: import("zod").ZodNullable<import("zod").ZodString>;
|
|
64
|
+
sex: import("zod").ZodNullable<import("zod").ZodString>;
|
|
65
|
+
mobile: import("zod").ZodOptional<import("zod").ZodNullable<import("zod").ZodString>>;
|
|
66
|
+
email: import("zod").ZodOptional<import("zod").ZodNullable<import("zod").ZodString>>;
|
|
67
|
+
}, import("zod/v4/core").$strip>;
|
|
68
|
+
id_token: import("zod").ZodOptional<import("zod").ZodString>;
|
|
69
|
+
}, import("zod/v4/core").$strip>;
|
|
70
|
+
}, import("zod/v4/core").$strip>;
|
|
71
|
+
};
|
|
72
|
+
};
|
|
73
|
+
disable: {
|
|
74
|
+
summary: "禁用 MFA(需 TOTP 验证)";
|
|
75
|
+
method: "POST";
|
|
76
|
+
body: import("zod").ZodObject<{
|
|
77
|
+
code: import("zod").ZodString;
|
|
78
|
+
}, import("zod/v4/core").$strip>;
|
|
79
|
+
path: "/mfa/disable";
|
|
80
|
+
responses: {
|
|
81
|
+
200: import("zod").ZodObject<{
|
|
82
|
+
code: import("zod").ZodNumber;
|
|
83
|
+
msg: import("zod").ZodString;
|
|
84
|
+
data: import("zod").ZodObject<{
|
|
85
|
+
success: import("zod").ZodBoolean;
|
|
86
|
+
}, import("zod/v4/core").$strip>;
|
|
87
|
+
}, import("zod/v4/core").$strip>;
|
|
88
|
+
};
|
|
89
|
+
};
|
|
90
|
+
recover: {
|
|
91
|
+
summary: "使用备用恢复码登录并禁用 MFA";
|
|
92
|
+
method: "POST";
|
|
93
|
+
body: import("zod").ZodObject<{
|
|
94
|
+
mfaToken: import("zod").ZodString;
|
|
95
|
+
backupCode: import("zod").ZodString;
|
|
96
|
+
}, import("zod/v4/core").$strip>;
|
|
97
|
+
path: "/mfa/recover";
|
|
98
|
+
responses: {
|
|
99
|
+
200: import("zod").ZodObject<{
|
|
100
|
+
code: import("zod").ZodNumber;
|
|
101
|
+
msg: import("zod").ZodString;
|
|
102
|
+
data: import("zod").ZodObject<{
|
|
103
|
+
access: import("zod").ZodString;
|
|
104
|
+
refresh: import("zod").ZodString;
|
|
105
|
+
expire: import("zod").ZodNumber;
|
|
106
|
+
accessExpire: import("zod").ZodNumber;
|
|
107
|
+
isAnonymity: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
108
|
+
user: import("zod").ZodObject<{
|
|
109
|
+
id: import("zod").ZodString;
|
|
110
|
+
isAnonymity: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
111
|
+
isAdmin: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
112
|
+
code: import("zod").ZodNullable<import("zod").ZodString>;
|
|
113
|
+
nickname: import("zod").ZodNullable<import("zod").ZodString>;
|
|
114
|
+
headerImg: import("zod").ZodNullable<import("zod").ZodString>;
|
|
115
|
+
sex: import("zod").ZodNullable<import("zod").ZodString>;
|
|
116
|
+
mobile: import("zod").ZodOptional<import("zod").ZodNullable<import("zod").ZodString>>;
|
|
117
|
+
email: import("zod").ZodOptional<import("zod").ZodNullable<import("zod").ZodString>>;
|
|
118
|
+
}, import("zod/v4/core").$strip>;
|
|
119
|
+
id_token: import("zod").ZodOptional<import("zod").ZodString>;
|
|
120
|
+
}, import("zod/v4/core").$strip>;
|
|
121
|
+
}, import("zod/v4/core").$strip>;
|
|
122
|
+
};
|
|
123
|
+
};
|
|
124
|
+
getStatus: {
|
|
125
|
+
summary: "获取当前用户 MFA 状态";
|
|
126
|
+
method: "GET";
|
|
127
|
+
path: "/mfa/status";
|
|
128
|
+
responses: {
|
|
129
|
+
200: import("zod").ZodObject<{
|
|
130
|
+
code: import("zod").ZodNumber;
|
|
131
|
+
msg: import("zod").ZodString;
|
|
132
|
+
data: import("zod").ZodObject<{
|
|
133
|
+
enabled: import("zod").ZodBoolean;
|
|
134
|
+
mfaType: import("zod").ZodString;
|
|
135
|
+
backupCodesRemaining: import("zod").ZodNumber;
|
|
136
|
+
createdAt: import("zod").ZodNullable<import("zod").ZodString>;
|
|
137
|
+
globallyDisabled: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
138
|
+
}, import("zod/v4/core").$strip>;
|
|
139
|
+
}, import("zod/v4/core").$strip>;
|
|
140
|
+
};
|
|
141
|
+
};
|
|
142
|
+
regenerateBackup: {
|
|
143
|
+
summary: "重新生成备用恢复码";
|
|
144
|
+
method: "POST";
|
|
145
|
+
body: import("zod").ZodObject<{
|
|
146
|
+
code: import("zod").ZodString;
|
|
147
|
+
}, import("zod/v4/core").$strip>;
|
|
148
|
+
path: "/mfa/backup/regen";
|
|
149
|
+
responses: {
|
|
150
|
+
200: import("zod").ZodObject<{
|
|
151
|
+
code: import("zod").ZodNumber;
|
|
152
|
+
msg: import("zod").ZodString;
|
|
153
|
+
data: import("zod").ZodObject<{
|
|
154
|
+
backupCodes: import("zod").ZodArray<import("zod").ZodString>;
|
|
155
|
+
enabled: import("zod").ZodBoolean;
|
|
156
|
+
}, import("zod/v4/core").$strip>;
|
|
157
|
+
}, import("zod/v4/core").$strip>;
|
|
158
|
+
};
|
|
159
|
+
};
|
|
160
|
+
};
|
|
161
|
+
export declare const mfaContractVersioned: import("@dofe/infra-contracts-base/base").VersionedContract<{
|
|
162
|
+
initSetup: {
|
|
163
|
+
summary: "初始化 MFA 设置(生成 QR Code 和密钥)";
|
|
164
|
+
method: "POST";
|
|
165
|
+
body: import("@ts-rest/core").ContractPlainType<object>;
|
|
166
|
+
path: "/mfa/setup/init";
|
|
167
|
+
responses: {
|
|
168
|
+
200: import("zod").ZodObject<{
|
|
169
|
+
code: import("zod").ZodNumber;
|
|
170
|
+
msg: import("zod").ZodString;
|
|
171
|
+
data: import("zod").ZodObject<{
|
|
172
|
+
qrCodeDataUrl: import("zod").ZodString;
|
|
173
|
+
provisioningUri: import("zod").ZodString;
|
|
174
|
+
secret: import("zod").ZodString;
|
|
175
|
+
issuer: import("zod").ZodString;
|
|
176
|
+
accountName: import("zod").ZodString;
|
|
177
|
+
}, import("zod/v4/core").$strip>;
|
|
178
|
+
}, import("zod/v4/core").$strip>;
|
|
179
|
+
};
|
|
180
|
+
};
|
|
181
|
+
verifySetup: {
|
|
182
|
+
summary: "验证 TOTP 并完成 MFA 绑定";
|
|
183
|
+
method: "POST";
|
|
184
|
+
body: import("zod").ZodObject<{
|
|
185
|
+
code: import("zod").ZodString;
|
|
186
|
+
}, import("zod/v4/core").$strip>;
|
|
187
|
+
path: "/mfa/setup/verify";
|
|
188
|
+
responses: {
|
|
189
|
+
200: import("zod").ZodObject<{
|
|
190
|
+
code: import("zod").ZodNumber;
|
|
191
|
+
msg: import("zod").ZodString;
|
|
192
|
+
data: import("zod").ZodObject<{
|
|
193
|
+
backupCodes: import("zod").ZodArray<import("zod").ZodString>;
|
|
194
|
+
enabled: import("zod").ZodBoolean;
|
|
195
|
+
}, import("zod/v4/core").$strip>;
|
|
196
|
+
}, import("zod/v4/core").$strip>;
|
|
197
|
+
};
|
|
198
|
+
};
|
|
199
|
+
login: {
|
|
200
|
+
summary: "MFA 二次验证登录";
|
|
201
|
+
method: "POST";
|
|
202
|
+
body: import("zod").ZodObject<{
|
|
203
|
+
mfaToken: import("zod").ZodString;
|
|
204
|
+
code: import("zod").ZodString;
|
|
205
|
+
}, import("zod/v4/core").$strip>;
|
|
206
|
+
path: "/mfa/login";
|
|
207
|
+
responses: {
|
|
208
|
+
200: import("zod").ZodObject<{
|
|
209
|
+
code: import("zod").ZodNumber;
|
|
210
|
+
msg: import("zod").ZodString;
|
|
211
|
+
data: import("zod").ZodObject<{
|
|
212
|
+
access: import("zod").ZodString;
|
|
213
|
+
refresh: import("zod").ZodString;
|
|
214
|
+
expire: import("zod").ZodNumber;
|
|
215
|
+
accessExpire: import("zod").ZodNumber;
|
|
216
|
+
isAnonymity: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
217
|
+
user: import("zod").ZodObject<{
|
|
218
|
+
id: import("zod").ZodString;
|
|
219
|
+
isAnonymity: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
220
|
+
isAdmin: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
221
|
+
code: import("zod").ZodNullable<import("zod").ZodString>;
|
|
222
|
+
nickname: import("zod").ZodNullable<import("zod").ZodString>;
|
|
223
|
+
headerImg: import("zod").ZodNullable<import("zod").ZodString>;
|
|
224
|
+
sex: import("zod").ZodNullable<import("zod").ZodString>;
|
|
225
|
+
mobile: import("zod").ZodOptional<import("zod").ZodNullable<import("zod").ZodString>>;
|
|
226
|
+
email: import("zod").ZodOptional<import("zod").ZodNullable<import("zod").ZodString>>;
|
|
227
|
+
}, import("zod/v4/core").$strip>;
|
|
228
|
+
id_token: import("zod").ZodOptional<import("zod").ZodString>;
|
|
229
|
+
}, import("zod/v4/core").$strip>;
|
|
230
|
+
}, import("zod/v4/core").$strip>;
|
|
231
|
+
};
|
|
232
|
+
};
|
|
233
|
+
disable: {
|
|
234
|
+
summary: "禁用 MFA(需 TOTP 验证)";
|
|
235
|
+
method: "POST";
|
|
236
|
+
body: import("zod").ZodObject<{
|
|
237
|
+
code: import("zod").ZodString;
|
|
238
|
+
}, import("zod/v4/core").$strip>;
|
|
239
|
+
path: "/mfa/disable";
|
|
240
|
+
responses: {
|
|
241
|
+
200: import("zod").ZodObject<{
|
|
242
|
+
code: import("zod").ZodNumber;
|
|
243
|
+
msg: import("zod").ZodString;
|
|
244
|
+
data: import("zod").ZodObject<{
|
|
245
|
+
success: import("zod").ZodBoolean;
|
|
246
|
+
}, import("zod/v4/core").$strip>;
|
|
247
|
+
}, import("zod/v4/core").$strip>;
|
|
248
|
+
};
|
|
249
|
+
};
|
|
250
|
+
recover: {
|
|
251
|
+
summary: "使用备用恢复码登录并禁用 MFA";
|
|
252
|
+
method: "POST";
|
|
253
|
+
body: import("zod").ZodObject<{
|
|
254
|
+
mfaToken: import("zod").ZodString;
|
|
255
|
+
backupCode: import("zod").ZodString;
|
|
256
|
+
}, import("zod/v4/core").$strip>;
|
|
257
|
+
path: "/mfa/recover";
|
|
258
|
+
responses: {
|
|
259
|
+
200: import("zod").ZodObject<{
|
|
260
|
+
code: import("zod").ZodNumber;
|
|
261
|
+
msg: import("zod").ZodString;
|
|
262
|
+
data: import("zod").ZodObject<{
|
|
263
|
+
access: import("zod").ZodString;
|
|
264
|
+
refresh: import("zod").ZodString;
|
|
265
|
+
expire: import("zod").ZodNumber;
|
|
266
|
+
accessExpire: import("zod").ZodNumber;
|
|
267
|
+
isAnonymity: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
268
|
+
user: import("zod").ZodObject<{
|
|
269
|
+
id: import("zod").ZodString;
|
|
270
|
+
isAnonymity: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
271
|
+
isAdmin: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
272
|
+
code: import("zod").ZodNullable<import("zod").ZodString>;
|
|
273
|
+
nickname: import("zod").ZodNullable<import("zod").ZodString>;
|
|
274
|
+
headerImg: import("zod").ZodNullable<import("zod").ZodString>;
|
|
275
|
+
sex: import("zod").ZodNullable<import("zod").ZodString>;
|
|
276
|
+
mobile: import("zod").ZodOptional<import("zod").ZodNullable<import("zod").ZodString>>;
|
|
277
|
+
email: import("zod").ZodOptional<import("zod").ZodNullable<import("zod").ZodString>>;
|
|
278
|
+
}, import("zod/v4/core").$strip>;
|
|
279
|
+
id_token: import("zod").ZodOptional<import("zod").ZodString>;
|
|
280
|
+
}, import("zod/v4/core").$strip>;
|
|
281
|
+
}, import("zod/v4/core").$strip>;
|
|
282
|
+
};
|
|
283
|
+
};
|
|
284
|
+
getStatus: {
|
|
285
|
+
summary: "获取当前用户 MFA 状态";
|
|
286
|
+
method: "GET";
|
|
287
|
+
path: "/mfa/status";
|
|
288
|
+
responses: {
|
|
289
|
+
200: import("zod").ZodObject<{
|
|
290
|
+
code: import("zod").ZodNumber;
|
|
291
|
+
msg: import("zod").ZodString;
|
|
292
|
+
data: import("zod").ZodObject<{
|
|
293
|
+
enabled: import("zod").ZodBoolean;
|
|
294
|
+
mfaType: import("zod").ZodString;
|
|
295
|
+
backupCodesRemaining: import("zod").ZodNumber;
|
|
296
|
+
createdAt: import("zod").ZodNullable<import("zod").ZodString>;
|
|
297
|
+
globallyDisabled: import("zod").ZodOptional<import("zod").ZodBoolean>;
|
|
298
|
+
}, import("zod/v4/core").$strip>;
|
|
299
|
+
}, import("zod/v4/core").$strip>;
|
|
300
|
+
};
|
|
301
|
+
};
|
|
302
|
+
regenerateBackup: {
|
|
303
|
+
summary: "重新生成备用恢复码";
|
|
304
|
+
method: "POST";
|
|
305
|
+
body: import("zod").ZodObject<{
|
|
306
|
+
code: import("zod").ZodString;
|
|
307
|
+
}, import("zod/v4/core").$strip>;
|
|
308
|
+
path: "/mfa/backup/regen";
|
|
309
|
+
responses: {
|
|
310
|
+
200: import("zod").ZodObject<{
|
|
311
|
+
code: import("zod").ZodNumber;
|
|
312
|
+
msg: import("zod").ZodString;
|
|
313
|
+
data: import("zod").ZodObject<{
|
|
314
|
+
backupCodes: import("zod").ZodArray<import("zod").ZodString>;
|
|
315
|
+
enabled: import("zod").ZodBoolean;
|
|
316
|
+
}, import("zod/v4/core").$strip>;
|
|
317
|
+
}, import("zod/v4/core").$strip>;
|
|
318
|
+
};
|
|
319
|
+
};
|
|
320
|
+
}>;
|
|
321
|
+
export type MfaContract = typeof mfaContract;
|
|
322
|
+
//# sourceMappingURL=mfa.contract.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"mfa.contract.d.ts","sourceRoot":"","sources":["../../src/api/mfa.contract.ts"],"names":[],"mappings":"AAgBA,eAAO,MAAM,WAAW;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA0EvB,CAAC;AAEF,eAAO,MAAM,oBAAoB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAG/B,CAAC;AAEH,MAAM,MAAM,WAAW,GAAG,OAAO,WAAW,CAAC"}
|
|
@@ -0,0 +1,79 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.mfaContractVersioned = exports.mfaContract = void 0;
|
|
4
|
+
const core_1 = require("@ts-rest/core");
|
|
5
|
+
const base_1 = require("../base");
|
|
6
|
+
const mfa_schema_1 = require("../schemas/mfa.schema");
|
|
7
|
+
const sign_schema_1 = require("../schemas/sign.schema");
|
|
8
|
+
const c = (0, core_1.initContract)();
|
|
9
|
+
exports.mfaContract = c.router({
|
|
10
|
+
initSetup: {
|
|
11
|
+
method: 'POST',
|
|
12
|
+
path: '/setup/init',
|
|
13
|
+
body: c.type(),
|
|
14
|
+
responses: {
|
|
15
|
+
200: (0, base_1.ApiResponseSchema)(mfa_schema_1.MfaSetupInitResponseSchema),
|
|
16
|
+
},
|
|
17
|
+
summary: '初始化 MFA 设置(生成 QR Code 和密钥)',
|
|
18
|
+
},
|
|
19
|
+
verifySetup: {
|
|
20
|
+
method: 'POST',
|
|
21
|
+
path: '/setup/verify',
|
|
22
|
+
body: mfa_schema_1.MfaSetupVerifyBodySchema,
|
|
23
|
+
responses: {
|
|
24
|
+
200: (0, base_1.ApiResponseSchema)(mfa_schema_1.MfaSetupVerifyResponseSchema),
|
|
25
|
+
},
|
|
26
|
+
summary: '验证 TOTP 并完成 MFA 绑定',
|
|
27
|
+
},
|
|
28
|
+
login: {
|
|
29
|
+
method: 'POST',
|
|
30
|
+
path: '/login',
|
|
31
|
+
body: mfa_schema_1.MfaLoginBodySchema,
|
|
32
|
+
responses: {
|
|
33
|
+
200: (0, base_1.ApiResponseSchema)(sign_schema_1.LoginSuccessSchema),
|
|
34
|
+
},
|
|
35
|
+
summary: 'MFA 二次验证登录',
|
|
36
|
+
},
|
|
37
|
+
disable: {
|
|
38
|
+
method: 'POST',
|
|
39
|
+
path: '/disable',
|
|
40
|
+
body: mfa_schema_1.MfaDisableBodySchema,
|
|
41
|
+
responses: {
|
|
42
|
+
200: (0, base_1.ApiResponseSchema)(base_1.SuccessResponseSchema),
|
|
43
|
+
},
|
|
44
|
+
summary: '禁用 MFA(需 TOTP 验证)',
|
|
45
|
+
},
|
|
46
|
+
recover: {
|
|
47
|
+
method: 'POST',
|
|
48
|
+
path: '/recover',
|
|
49
|
+
body: mfa_schema_1.MfaRecoverBodySchema,
|
|
50
|
+
responses: {
|
|
51
|
+
200: (0, base_1.ApiResponseSchema)(sign_schema_1.LoginSuccessSchema),
|
|
52
|
+
},
|
|
53
|
+
summary: '使用备用恢复码登录并禁用 MFA',
|
|
54
|
+
},
|
|
55
|
+
getStatus: {
|
|
56
|
+
method: 'GET',
|
|
57
|
+
path: '/status',
|
|
58
|
+
responses: {
|
|
59
|
+
200: (0, base_1.ApiResponseSchema)(mfa_schema_1.MfaStatusResponseSchema),
|
|
60
|
+
},
|
|
61
|
+
summary: '获取当前用户 MFA 状态',
|
|
62
|
+
},
|
|
63
|
+
regenerateBackup: {
|
|
64
|
+
method: 'POST',
|
|
65
|
+
path: '/backup/regen',
|
|
66
|
+
body: mfa_schema_1.MfaRegenBackupBodySchema,
|
|
67
|
+
responses: {
|
|
68
|
+
200: (0, base_1.ApiResponseSchema)(mfa_schema_1.MfaSetupVerifyResponseSchema),
|
|
69
|
+
},
|
|
70
|
+
summary: '重新生成备用恢复码',
|
|
71
|
+
},
|
|
72
|
+
}, {
|
|
73
|
+
pathPrefix: '/mfa',
|
|
74
|
+
});
|
|
75
|
+
exports.mfaContractVersioned = (0, base_1.withVersion)(exports.mfaContract, {
|
|
76
|
+
version: base_1.API_VERSION.V1,
|
|
77
|
+
pathPrefix: '/mfa',
|
|
78
|
+
});
|
|
79
|
+
//# sourceMappingURL=mfa.contract.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"mfa.contract.js","sourceRoot":"","sources":["../../src/api/mfa.contract.ts"],"names":[],"mappings":";;;AAAA,wCAA6C;AAC7C,kCAA6F;AAC7F,sDAS+B;AAC/B,wDAA4D;AAE5D,MAAM,CAAC,GAAG,IAAA,mBAAY,GAAE,CAAC;AAEZ,QAAA,WAAW,GAAG,CAAC,CAAC,MAAM,CACjC;IACE,SAAS,EAAE;QACT,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,aAAa;QACnB,IAAI,EAAE,CAAC,CAAC,IAAI,EAAU;QACtB,SAAS,EAAE;YACT,GAAG,EAAE,IAAA,wBAAiB,EAAC,uCAA0B,CAAC;SACnD;QACD,OAAO,EAAE,4BAA4B;KACtC;IAED,WAAW,EAAE;QACX,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,eAAe;QACrB,IAAI,EAAE,qCAAwB;QAC9B,SAAS,EAAE;YACT,GAAG,EAAE,IAAA,wBAAiB,EAAC,yCAA4B,CAAC;SACrD;QACD,OAAO,EAAE,oBAAoB;KAC9B;IAED,KAAK,EAAE;QACL,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,QAAQ;QACd,IAAI,EAAE,+BAAkB;QACxB,SAAS,EAAE;YACT,GAAG,EAAE,IAAA,wBAAiB,EAAC,gCAAkB,CAAC;SAC3C;QACD,OAAO,EAAE,YAAY;KACtB;IAED,OAAO,EAAE;QACP,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,UAAU;QAChB,IAAI,EAAE,iCAAoB;QAC1B,SAAS,EAAE;YACT,GAAG,EAAE,IAAA,wBAAiB,EAAC,4BAAqB,CAAC;SAC9C;QACD,OAAO,EAAE,mBAAmB;KAC7B;IAED,OAAO,EAAE;QACP,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,UAAU;QAChB,IAAI,EAAE,iCAAoB;QAC1B,SAAS,EAAE;YACT,GAAG,EAAE,IAAA,wBAAiB,EAAC,gCAAkB,CAAC;SAC3C;QACD,OAAO,EAAE,kBAAkB;KAC5B;IAED,SAAS,EAAE;QACT,MAAM,EAAE,KAAK;QACb,IAAI,EAAE,SAAS;QACf,SAAS,EAAE;YACT,GAAG,EAAE,IAAA,wBAAiB,EAAC,oCAAuB,CAAC;SAChD;QACD,OAAO,EAAE,eAAe;KACzB;IAED,gBAAgB,EAAE;QAChB,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,eAAe;QACrB,IAAI,EAAE,qCAAwB;QAC9B,SAAS,EAAE;YACT,GAAG,EAAE,IAAA,wBAAiB,EAAC,yCAA4B,CAAC;SACrD;QACD,OAAO,EAAE,WAAW;KACrB;CACF,EACD;IACE,UAAU,EAAE,MAAM;CACnB,CACF,CAAC;AAEW,QAAA,oBAAoB,GAAG,IAAA,kBAAW,EAAC,mBAAW,EAAE;IAC3D,OAAO,EAAE,kBAAW,CAAC,EAAE;IACvB,UAAU,EAAE,MAAM;CACnB,CAAC,CAAC"}
|
|
@@ -0,0 +1,69 @@
|
|
|
1
|
+
import { z } from 'zod';
|
|
2
|
+
export declare const oidcContract: {
|
|
3
|
+
registerClient: {
|
|
4
|
+
summary: "注册 OAuth 客户端";
|
|
5
|
+
method: "POST";
|
|
6
|
+
body: z.ZodObject<{
|
|
7
|
+
clientName: z.ZodString;
|
|
8
|
+
clientUri: z.ZodOptional<z.ZodString>;
|
|
9
|
+
redirectUris: z.ZodArray<z.ZodString>;
|
|
10
|
+
grantTypes: z.ZodDefault<z.ZodArray<z.ZodEnum<{
|
|
11
|
+
authorization_code: "authorization_code";
|
|
12
|
+
refresh_token: "refresh_token";
|
|
13
|
+
}>>>;
|
|
14
|
+
scopes: z.ZodDefault<z.ZodArray<z.ZodString>>;
|
|
15
|
+
isConfidential: z.ZodDefault<z.ZodBoolean>;
|
|
16
|
+
}, z.core.$strip>;
|
|
17
|
+
path: "/oauth/register";
|
|
18
|
+
responses: {
|
|
19
|
+
200: z.ZodObject<{
|
|
20
|
+
code: z.ZodNumber;
|
|
21
|
+
msg: z.ZodString;
|
|
22
|
+
data: z.ZodObject<{
|
|
23
|
+
clientId: z.ZodString;
|
|
24
|
+
clientSecret: z.ZodString;
|
|
25
|
+
}, z.core.$strip>;
|
|
26
|
+
}, z.core.$strip>;
|
|
27
|
+
};
|
|
28
|
+
};
|
|
29
|
+
listClients: {
|
|
30
|
+
summary: "列出 OAuth 客户端";
|
|
31
|
+
method: "GET";
|
|
32
|
+
path: "/oauth/clients";
|
|
33
|
+
responses: {
|
|
34
|
+
200: z.ZodObject<{
|
|
35
|
+
code: z.ZodNumber;
|
|
36
|
+
msg: z.ZodString;
|
|
37
|
+
data: z.ZodArray<z.ZodObject<{
|
|
38
|
+
clientId: z.ZodString;
|
|
39
|
+
clientName: z.ZodString;
|
|
40
|
+
clientUri: z.ZodOptional<z.ZodString>;
|
|
41
|
+
redirectUris: z.ZodArray<z.ZodString>;
|
|
42
|
+
grantTypes: z.ZodArray<z.ZodString>;
|
|
43
|
+
scopes: z.ZodArray<z.ZodString>;
|
|
44
|
+
isConfidential: z.ZodBoolean;
|
|
45
|
+
isActive: z.ZodBoolean;
|
|
46
|
+
createdAt: z.ZodOptional<z.ZodDate>;
|
|
47
|
+
}, z.core.$strip>>;
|
|
48
|
+
}, z.core.$strip>;
|
|
49
|
+
};
|
|
50
|
+
};
|
|
51
|
+
revokeClient: {
|
|
52
|
+
summary: "吊销 OAuth 客户端";
|
|
53
|
+
pathParams: z.ZodObject<{
|
|
54
|
+
clientId: z.ZodString;
|
|
55
|
+
}, z.core.$strip>;
|
|
56
|
+
method: "DELETE";
|
|
57
|
+
path: "/oauth/clients/:clientId";
|
|
58
|
+
responses: {
|
|
59
|
+
200: z.ZodObject<{
|
|
60
|
+
code: z.ZodNumber;
|
|
61
|
+
msg: z.ZodString;
|
|
62
|
+
data: z.ZodObject<{
|
|
63
|
+
success: z.ZodBoolean;
|
|
64
|
+
}, z.core.$strip>;
|
|
65
|
+
}, z.core.$strip>;
|
|
66
|
+
};
|
|
67
|
+
};
|
|
68
|
+
};
|
|
69
|
+
//# sourceMappingURL=oidc.contract.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"oidc.contract.d.ts","sourceRoot":"","sources":["../../src/api/oidc.contract.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AASxB,eAAO,MAAM,YAAY;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAyCxB,CAAC"}
|
|
@@ -0,0 +1,44 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.oidcContract = void 0;
|
|
4
|
+
const core_1 = require("@ts-rest/core");
|
|
5
|
+
const zod_1 = require("zod");
|
|
6
|
+
const base_1 = require("../base");
|
|
7
|
+
const oidc_schema_1 = require("../schemas/oidc.schema");
|
|
8
|
+
const c = (0, core_1.initContract)();
|
|
9
|
+
exports.oidcContract = c.router({
|
|
10
|
+
registerClient: {
|
|
11
|
+
method: 'POST',
|
|
12
|
+
path: '/register',
|
|
13
|
+
body: oidc_schema_1.RegisterOAuthClientBodySchema,
|
|
14
|
+
responses: {
|
|
15
|
+
200: (0, base_1.ApiResponseSchema)(zod_1.z.object({
|
|
16
|
+
clientId: zod_1.z.string(),
|
|
17
|
+
clientSecret: zod_1.z.string(),
|
|
18
|
+
})),
|
|
19
|
+
},
|
|
20
|
+
summary: '注册 OAuth 客户端',
|
|
21
|
+
},
|
|
22
|
+
listClients: {
|
|
23
|
+
method: 'GET',
|
|
24
|
+
path: '/clients',
|
|
25
|
+
responses: {
|
|
26
|
+
200: (0, base_1.ApiResponseSchema)(zod_1.z.array(oidc_schema_1.OAuthClientSchema)),
|
|
27
|
+
},
|
|
28
|
+
summary: '列出 OAuth 客户端',
|
|
29
|
+
},
|
|
30
|
+
revokeClient: {
|
|
31
|
+
method: 'DELETE',
|
|
32
|
+
path: '/clients/:clientId',
|
|
33
|
+
pathParams: zod_1.z.object({
|
|
34
|
+
clientId: zod_1.z.string(),
|
|
35
|
+
}),
|
|
36
|
+
responses: {
|
|
37
|
+
200: (0, base_1.ApiResponseSchema)(base_1.SuccessResponseSchema),
|
|
38
|
+
},
|
|
39
|
+
summary: '吊销 OAuth 客户端',
|
|
40
|
+
},
|
|
41
|
+
}, {
|
|
42
|
+
pathPrefix: '/oauth',
|
|
43
|
+
});
|
|
44
|
+
//# sourceMappingURL=oidc.contract.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"oidc.contract.js","sourceRoot":"","sources":["../../src/api/oidc.contract.ts"],"names":[],"mappings":";;;AAAA,wCAA6C;AAC7C,6BAAwB;AACxB,kCAAmE;AACnE,wDAGgC;AAEhC,MAAM,CAAC,GAAG,IAAA,mBAAY,GAAE,CAAC;AAEZ,QAAA,YAAY,GAAG,CAAC,CAAC,MAAM,CAClC;IACE,cAAc,EAAE;QACd,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,WAAW;QACjB,IAAI,EAAE,2CAA6B;QACnC,SAAS,EAAE;YACT,GAAG,EAAE,IAAA,wBAAiB,EACpB,OAAC,CAAC,MAAM,CAAC;gBACP,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE;gBACpB,YAAY,EAAE,OAAC,CAAC,MAAM,EAAE;aACzB,CAAC,CACH;SACF;QACD,OAAO,EAAE,cAAc;KACxB;IAED,WAAW,EAAE;QACX,MAAM,EAAE,KAAK;QACb,IAAI,EAAE,UAAU;QAChB,SAAS,EAAE;YACT,GAAG,EAAE,IAAA,wBAAiB,EAAC,OAAC,CAAC,KAAK,CAAC,+BAAiB,CAAC,CAAC;SACnD;QACD,OAAO,EAAE,cAAc;KACxB;IAED,YAAY,EAAE;QACZ,MAAM,EAAE,QAAQ;QAChB,IAAI,EAAE,oBAAoB;QAC1B,UAAU,EAAE,OAAC,CAAC,MAAM,CAAC;YACnB,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE;SACrB,CAAC;QACF,SAAS,EAAE;YACT,GAAG,EAAE,IAAA,wBAAiB,EAAC,4BAAqB,CAAC;SAC9C;QACD,OAAO,EAAE,cAAc;KACxB;CACF,EACD;IACE,UAAU,EAAE,QAAQ;CACrB,CACF,CAAC"}
|