npm - @eaccess/auth - Versions diffs - 0.1.2 → 0.1.3 - Mend

@eaccess/auth 0.1.2 → 0.1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.d.cts CHANGED Viewed

@@ -548,6 +548,50 @@ declare function createUser(config: AuthConfig, credentials: {
     password: string;
 }, userId?: string | number, callback?: TokenCallback): Promise<AuthAccount>;
+type UserIdentifier = {
+    accountId?: number;
+    email?: string;
+    userId?: string;
+};
+/**
+ * Add a role to a user's account.
+ * Uses bitwise OR to add role to existing rolemask.
+ *
+ * @param config - Auth configuration containing database connection
+ * @param identifier - Find user by accountId, email, or userId
+ * @param role - Role bitmask to add (e.g., AuthRole.Admin)
+ * @throws {UserNotFoundError} No account matches the identifier
+ */
+declare function addRoleToUser(config: AuthConfig, identifier: UserIdentifier, role: number): Promise<void>;
+/**
+ * Remove a role from a user's account.
+ * Uses bitwise operations to remove role from rolemask.
+ *
+ * @param config - Auth configuration containing database connection
+ * @param identifier - Find user by accountId, email, or userId
+ * @param role - Role bitmask to remove (e.g., AuthRole.Admin)
+ * @throws {UserNotFoundError} No account matches the identifier
+ */
+declare function removeRoleFromUser(config: AuthConfig, identifier: UserIdentifier, role: number): Promise<void>;
+/**
+ * Set a user's complete role mask, replacing any existing roles.
+ *
+ * @param config - Auth configuration containing database connection
+ * @param identifier - Find user by accountId, email, or userId
+ * @param rolemask - Complete role bitmask to set
+ * @throws {UserNotFoundError} No account matches the identifier
+ */
+declare function setUserRoles(config: AuthConfig, identifier: UserIdentifier, rolemask: number): Promise<void>;
+/**
+ * Get a user's current role mask.
+ *
+ * @param config - Auth configuration containing database connection
+ * @param identifier - Find user by accountId, email, or userId
+ * @returns The user's current role bitmask
+ * @throws {UserNotFoundError} No account matches the identifier
+ */
+declare function getUserRoles(config: AuthConfig, identifier: UserIdentifier): Promise<number>;
 declare class AuthError extends Error {
     constructor(message: string);
 }
@@ -962,4 +1006,4 @@ declare class AzureProvider extends BaseOAuthProvider {
     protected exchangeCodeForToken(code: string, tokenUrl: string): Promise<string>;
 }
-export { ActivityLogger, type AuthAccount, type AuthActivity, AuthActivityAction, type AuthActivityActionType, type AuthAdminManager, type AuthConfig, type AuthConfirmation, AuthError, type AuthManager$1 as AuthManager, type AuthProvider, type AuthRemember, type AuthReset, AuthRole, type AuthSession, AuthStatus, AzureProvider, type AzureProviderConfig, BaseOAuthProvider, ConfirmationExpiredError, ConfirmationNotFoundError, EmailNotVerifiedError, EmailTakenError, GitHubProvider, type GitHubProviderConfig, GoogleProvider, type GoogleProviderConfig, InvalidBackupCodeError, InvalidEmailError, InvalidPasswordError, InvalidTokenError, InvalidTwoFactorCodeError, type OAuthProvider, type OAuthProviderConfig, type OAuthUserData, OtpProvider, ResetDisabledError, ResetExpiredError, ResetNotFoundError, SecondFactorRequiredError, type TokenCallback, TooManyResetsError, TotpProvider, TwoFactorAlreadyEnabledError, type TwoFactorChallenge, TwoFactorExpiredError, TwoFactorManager, TwoFactorMechanism, type TwoFactorMethod, TwoFactorNotSetupError, TwoFactorSetupIncompleteError, type TwoFactorSetupResult, type TwoFactorToken, UserInactiveError, UserNotFoundError, UserNotLoggedInError, cleanupExpiredTokens, createAuthMiddleware, createAuthTables, createUser, dropAuthTables, getAuthTableStats, isValidEmail, validateEmail };
+export { ActivityLogger, type AuthAccount, type AuthActivity, AuthActivityAction, type AuthActivityActionType, type AuthAdminManager, type AuthConfig, type AuthConfirmation, AuthError, type AuthManager$1 as AuthManager, type AuthProvider, type AuthRemember, type AuthReset, AuthRole, type AuthSession, AuthStatus, AzureProvider, type AzureProviderConfig, BaseOAuthProvider, ConfirmationExpiredError, ConfirmationNotFoundError, EmailNotVerifiedError, EmailTakenError, GitHubProvider, type GitHubProviderConfig, GoogleProvider, type GoogleProviderConfig, InvalidBackupCodeError, InvalidEmailError, InvalidPasswordError, InvalidTokenError, InvalidTwoFactorCodeError, type OAuthProvider, type OAuthProviderConfig, type OAuthUserData, OtpProvider, ResetDisabledError, ResetExpiredError, ResetNotFoundError, SecondFactorRequiredError, type TokenCallback, TooManyResetsError, TotpProvider, TwoFactorAlreadyEnabledError, type TwoFactorChallenge, TwoFactorExpiredError, TwoFactorManager, TwoFactorMechanism, type TwoFactorMethod, TwoFactorNotSetupError, TwoFactorSetupIncompleteError, type TwoFactorSetupResult, type TwoFactorToken, type UserIdentifier, UserInactiveError, UserNotFoundError, UserNotLoggedInError, addRoleToUser, cleanupExpiredTokens, createAuthMiddleware, createAuthTables, createUser, dropAuthTables, getAuthTableStats, getUserRoles, isValidEmail, removeRoleFromUser, setUserRoles, validateEmail };

package/dist/index.d.ts CHANGED Viewed

@@ -548,6 +548,50 @@ declare function createUser(config: AuthConfig, credentials: {
     password: string;
 }, userId?: string | number, callback?: TokenCallback): Promise<AuthAccount>;
+type UserIdentifier = {
+    accountId?: number;
+    email?: string;
+    userId?: string;
+};
+/**
+ * Add a role to a user's account.
+ * Uses bitwise OR to add role to existing rolemask.
+ *
+ * @param config - Auth configuration containing database connection
+ * @param identifier - Find user by accountId, email, or userId
+ * @param role - Role bitmask to add (e.g., AuthRole.Admin)
+ * @throws {UserNotFoundError} No account matches the identifier
+ */
+declare function addRoleToUser(config: AuthConfig, identifier: UserIdentifier, role: number): Promise<void>;
+/**
+ * Remove a role from a user's account.
+ * Uses bitwise operations to remove role from rolemask.
+ *
+ * @param config - Auth configuration containing database connection
+ * @param identifier - Find user by accountId, email, or userId
+ * @param role - Role bitmask to remove (e.g., AuthRole.Admin)
+ * @throws {UserNotFoundError} No account matches the identifier
+ */
+declare function removeRoleFromUser(config: AuthConfig, identifier: UserIdentifier, role: number): Promise<void>;
+/**
+ * Set a user's complete role mask, replacing any existing roles.
+ *
+ * @param config - Auth configuration containing database connection
+ * @param identifier - Find user by accountId, email, or userId
+ * @param rolemask - Complete role bitmask to set
+ * @throws {UserNotFoundError} No account matches the identifier
+ */
+declare function setUserRoles(config: AuthConfig, identifier: UserIdentifier, rolemask: number): Promise<void>;
+/**
+ * Get a user's current role mask.
+ *
+ * @param config - Auth configuration containing database connection
+ * @param identifier - Find user by accountId, email, or userId
+ * @returns The user's current role bitmask
+ * @throws {UserNotFoundError} No account matches the identifier
+ */
+declare function getUserRoles(config: AuthConfig, identifier: UserIdentifier): Promise<number>;
 declare class AuthError extends Error {
     constructor(message: string);
 }
@@ -962,4 +1006,4 @@ declare class AzureProvider extends BaseOAuthProvider {
     protected exchangeCodeForToken(code: string, tokenUrl: string): Promise<string>;
 }
-export { ActivityLogger, type AuthAccount, type AuthActivity, AuthActivityAction, type AuthActivityActionType, type AuthAdminManager, type AuthConfig, type AuthConfirmation, AuthError, type AuthManager$1 as AuthManager, type AuthProvider, type AuthRemember, type AuthReset, AuthRole, type AuthSession, AuthStatus, AzureProvider, type AzureProviderConfig, BaseOAuthProvider, ConfirmationExpiredError, ConfirmationNotFoundError, EmailNotVerifiedError, EmailTakenError, GitHubProvider, type GitHubProviderConfig, GoogleProvider, type GoogleProviderConfig, InvalidBackupCodeError, InvalidEmailError, InvalidPasswordError, InvalidTokenError, InvalidTwoFactorCodeError, type OAuthProvider, type OAuthProviderConfig, type OAuthUserData, OtpProvider, ResetDisabledError, ResetExpiredError, ResetNotFoundError, SecondFactorRequiredError, type TokenCallback, TooManyResetsError, TotpProvider, TwoFactorAlreadyEnabledError, type TwoFactorChallenge, TwoFactorExpiredError, TwoFactorManager, TwoFactorMechanism, type TwoFactorMethod, TwoFactorNotSetupError, TwoFactorSetupIncompleteError, type TwoFactorSetupResult, type TwoFactorToken, UserInactiveError, UserNotFoundError, UserNotLoggedInError, cleanupExpiredTokens, createAuthMiddleware, createAuthTables, createUser, dropAuthTables, getAuthTableStats, isValidEmail, validateEmail };
+export { ActivityLogger, type AuthAccount, type AuthActivity, AuthActivityAction, type AuthActivityActionType, type AuthAdminManager, type AuthConfig, type AuthConfirmation, AuthError, type AuthManager$1 as AuthManager, type AuthProvider, type AuthRemember, type AuthReset, AuthRole, type AuthSession, AuthStatus, AzureProvider, type AzureProviderConfig, BaseOAuthProvider, ConfirmationExpiredError, ConfirmationNotFoundError, EmailNotVerifiedError, EmailTakenError, GitHubProvider, type GitHubProviderConfig, GoogleProvider, type GoogleProviderConfig, InvalidBackupCodeError, InvalidEmailError, InvalidPasswordError, InvalidTokenError, InvalidTwoFactorCodeError, type OAuthProvider, type OAuthProviderConfig, type OAuthUserData, OtpProvider, ResetDisabledError, ResetExpiredError, ResetNotFoundError, SecondFactorRequiredError, type TokenCallback, TooManyResetsError, TotpProvider, TwoFactorAlreadyEnabledError, type TwoFactorChallenge, TwoFactorExpiredError, TwoFactorManager, TwoFactorMechanism, type TwoFactorMethod, TwoFactorNotSetupError, TwoFactorSetupIncompleteError, type TwoFactorSetupResult, type TwoFactorToken, type UserIdentifier, UserInactiveError, UserNotFoundError, UserNotLoggedInError, addRoleToUser, cleanupExpiredTokens, createAuthMiddleware, createAuthTables, createUser, dropAuthTables, getAuthTableStats, getUserRoles, isValidEmail, removeRoleFromUser, setUserRoles, validateEmail };

package/dist/index.js CHANGED Viewed

@@ -2544,6 +2544,44 @@ async function getAuthTableStats(config) {
     expiredTwoFactorTokens: parseInt(expiredTwoFactorTokensResult.rows[0]?.count || "0")
   };
 }
+// src/user-roles.ts
+async function findAccountByIdentifier(queries, identifier) {
+  let account = null;
+  if (identifier.accountId !== void 0) {
+    account = await queries.findAccountById(identifier.accountId);
+  } else if (identifier.email !== void 0) {
+    account = await queries.findAccountByEmail(identifier.email);
+  } else if (identifier.userId !== void 0) {
+    account = await queries.findAccountByUserId(identifier.userId);
+  }
+  if (!account) {
+    throw new UserNotFoundError();
+  }
+  return account;
+}
+async function addRoleToUser(config, identifier, role) {
+  const queries = new AuthQueries(config);
+  const account = await findAccountByIdentifier(queries, identifier);
+  const rolemask = account.rolemask | role;
+  await queries.updateAccount(account.id, { rolemask });
+}
+async function removeRoleFromUser(config, identifier, role) {
+  const queries = new AuthQueries(config);
+  const account = await findAccountByIdentifier(queries, identifier);
+  const rolemask = account.rolemask & ~role;
+  await queries.updateAccount(account.id, { rolemask });
+}
+async function setUserRoles(config, identifier, rolemask) {
+  const queries = new AuthQueries(config);
+  const account = await findAccountByIdentifier(queries, identifier);
+  await queries.updateAccount(account.id, { rolemask });
+}
+async function getUserRoles(config, identifier) {
+  const queries = new AuthQueries(config);
+  const account = await findAccountByIdentifier(queries, identifier);
+  return account.rolemask;
+}
 export {
   ActivityLogger,
   AuthActivityAction,
@@ -2579,13 +2617,17 @@ export {
   UserInactiveError,
   UserNotFoundError,
   UserNotLoggedInError,
+  addRoleToUser,
   cleanupExpiredTokens,
   createAuthMiddleware,
   createAuthTables,
   createUser,
   dropAuthTables,
   getAuthTableStats,
+  getUserRoles,
   isValidEmail,
+  removeRoleFromUser,
+  setUserRoles,
   validateEmail
 };
 //# sourceMappingURL=index.js.map