@fiado/api-invoker 4.5.0 → 4.7.0

package/src/cognitoBackofficeConnector/api/CognitoBackofficeConnectorApi.ts

@@ -1,254 +1,254 @@
-import { inject, injectable } from "inversify";
-import { IHttpRequest } from "@fiado/http-client";
-import { ApiGatewayResponse } from "@fiado/gateway-adapter";
-import {
-    CreateUserRequest,
-    CreateUserResponse,
-    UpdateUserAttributesRequest,
-    UserActionRequest,
-    ResendInvitationRequest,
-    UserDetailResponse,
-    AuthEventsRequest,
-    AuthEventResponse,
-    InitiateAuthRequest,
-    InitiateAuthResponse,
-    RespondToChallengeRequest,
-    RespondToChallengeResponse,
-    RefreshTokensRequest,
-    RefreshTokensResponse,
-    ForgotPasswordRequest,
-    ConfirmForgotPasswordRequest,
-    ResendConfirmationRequest,
-    ChangePasswordRequest,
-    TotpBeginRequest,
-    TotpBeginResponse,
-    TotpVerifyRequest,
-    MfaVerifyResponse,
-    SetMfaPreferenceRequest,
-    MfaResetRequest,
-    UpdateEmailRequest,
-    VerifyEmailRequest,
-    UpdateProfileRequest,
-    CreatePoolRequest,
-    CreatePoolResponse,
-    DeletePoolRequest,
-    HealthcheckResponse,
-} from "@fiado/type-kit/bin/cognitoBackofficeConnector";
-import { ICognitoBackofficeConnectorApi } from "./interfaces/ICognitoBackofficeConnectorApi";
-
-/**
- * Publisher HTTP del lambda `cognito-backoffice-connector` (componente 05 SureKeep Fase 0).
- *
- * Env var requerida en el consumer: `COGNITO_BACKOFFICE_CONNECTOR_LAMBDA_URL`.
- * El template.yml del consumer la setea con:
- *
- *   COGNITO_BACKOFFICE_CONNECTOR_LAMBDA_URL: '{{resolve:ssm:cognito-backoffice-connector}}'
- *
- * Convención CLAUDE.md global: SSM key = nombre del lambda owner de la URL.
- * El connector publica su URL en SSM bajo la key `cognito-backoffice-connector`
- * vía el `post_build` del buildspec.yml estándar Fiado.
- */
-@injectable()
-export default class CognitoBackofficeConnectorApi implements ICognitoBackofficeConnectorApi {
-    /** URL base del lambda. Leída de env var en cold start del consumer. */
-    private readonly baseUrl = process.env.COGNITO_BACKOFFICE_CONNECTOR_LAMBDA_URL || "";
-
-    constructor(@inject("IHttpRequest") private httpRequest: IHttpRequest) {}
-
-    // ============= Admin user CRUD (9) =============
-
-    async createUser(input: CreateUserRequest): Promise<ApiGatewayResponse<CreateUserResponse>> {
-        const url = `${this.baseUrl}/users`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async getUser(
-        cognitoSub: string,
-        userPoolId: string,
-        region: string,
-    ): Promise<ApiGatewayResponse<UserDetailResponse>> {
-        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}`;
-        return await this.httpRequest.get(url, { userPoolId, region });
-    }
-
-    async updateUserAttributes(
-        cognitoSub: string,
-        input: UpdateUserAttributesRequest,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/attributes`;
-        return await this.httpRequest.put(url, input);
-    }
-
-    async deleteUser(
-        cognitoSub: string,
-        userPoolId: string,
-        region: string,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}`;
-        return await this.httpRequest.delete(url, { userPoolId, region });
-    }
-
-    async disableUser(
-        cognitoSub: string,
-        input: UserActionRequest,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/disable`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async enableUser(
-        cognitoSub: string,
-        input: UserActionRequest,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/enable`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async resetUserPassword(
-        cognitoSub: string,
-        input: UserActionRequest,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/password/reset`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async globalSignOut(
-        cognitoSub: string,
-        input: UserActionRequest,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/global-signout`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async resendInvitation(
-        cognitoSub: string,
-        input: ResendInvitationRequest,
-    ): Promise<ApiGatewayResponse<{ cognitoSub: string; temporaryPassword?: string }>> {
-        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/resend-invitation`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    // ============= MFA admin + setup (4) =============
-
-    async mfaTotpBegin(
-        input: TotpBeginRequest,
-    ): Promise<ApiGatewayResponse<TotpBeginResponse>> {
-        const url = `${this.baseUrl}/mfa/totp/begin`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async mfaTotpVerify(
-        input: TotpVerifyRequest,
-    ): Promise<ApiGatewayResponse<MfaVerifyResponse>> {
-        const url = `${this.baseUrl}/mfa/totp/verify`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async setMfaPreference(
-        input: SetMfaPreferenceRequest,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/mfa/preference`;
-        return await this.httpRequest.put(url, input);
-    }
-
-    async resetUserMfa(
-        cognitoSub: string,
-        input: MfaResetRequest,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/mfa/reset`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    // ============= Auth flow no-admin BFF M18 (7) =============
-
-    async authInitiate(
-        input: InitiateAuthRequest,
-    ): Promise<ApiGatewayResponse<InitiateAuthResponse>> {
-        const url = `${this.baseUrl}/auth/initiate`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async authRespondChallenge(
-        input: RespondToChallengeRequest,
-    ): Promise<ApiGatewayResponse<RespondToChallengeResponse>> {
-        const url = `${this.baseUrl}/auth/respond-challenge`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async authRefreshTokens(
-        input: RefreshTokensRequest,
-    ): Promise<ApiGatewayResponse<RefreshTokensResponse>> {
-        const url = `${this.baseUrl}/auth/refresh-tokens`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async authForgotPassword(
-        input: ForgotPasswordRequest,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/auth/forgot-password`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async authConfirmForgotPassword(
-        input: ConfirmForgotPasswordRequest,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/auth/confirm-forgot-password`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async authResendConfirmation(
-        input: ResendConfirmationRequest,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/auth/resend-confirmation`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async authChangePassword(
-        input: ChangePasswordRequest,
-    ): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/auth/change-password`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    // ============= Email + Profile self-service (3) =============
-
-    async updateEmail(input: UpdateEmailRequest): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/users/email/update`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async verifyEmail(input: VerifyEmailRequest): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/users/email/verify`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async updateProfile(input: UpdateProfileRequest): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/users/profile/update`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    // ============= Pool + auth events + healthcheck (4) =============
-
-    async listUserAuthEvents(
-        cognitoSub: string,
-        input: AuthEventsRequest,
-    ): Promise<ApiGatewayResponse<AuthEventResponse[]>> {
-        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/auth-events`;
-        return await this.httpRequest.get(url, { ...input });
-    }
-
-    async createPool(input: CreatePoolRequest): Promise<ApiGatewayResponse<CreatePoolResponse>> {
-        const url = `${this.baseUrl}/pools`;
-        return await this.httpRequest.post(url, input);
-    }
-
-    async deletePool(userPoolId: string, region: string): Promise<ApiGatewayResponse<void>> {
-        const url = `${this.baseUrl}/pools/${encodeURIComponent(userPoolId)}`;
-        return await this.httpRequest.delete(url, { region });
-    }
-
-    async healthcheck(): Promise<ApiGatewayResponse<HealthcheckResponse>> {
-        const url = `${this.baseUrl}/healthcheck`;
-        return await this.httpRequest.get(url);
-    }
-}
+import { inject, injectable } from "inversify";
+import { IHttpRequest } from "@fiado/http-client";
+import { ApiGatewayResponse } from "@fiado/gateway-adapter";
+import {
+    CreateUserRequest,
+    CreateUserResponse,
+    UpdateUserAttributesRequest,
+    UserActionRequest,
+    ResendInvitationRequest,
+    UserDetailResponse,
+    AuthEventsRequest,
+    AuthEventResponse,
+    InitiateAuthRequest,
+    InitiateAuthResponse,
+    RespondToChallengeRequest,
+    RespondToChallengeResponse,
+    RefreshTokensRequest,
+    RefreshTokensResponse,
+    ForgotPasswordRequest,
+    ConfirmForgotPasswordRequest,
+    ResendConfirmationRequest,
+    ChangePasswordRequest,
+    TotpBeginRequest,
+    TotpBeginResponse,
+    TotpVerifyRequest,
+    MfaVerifyResponse,
+    SetMfaPreferenceRequest,
+    MfaResetRequest,
+    UpdateEmailRequest,
+    VerifyEmailRequest,
+    UpdateProfileRequest,
+    CreatePoolRequest,
+    CreatePoolResponse,
+    DeletePoolRequest,
+    HealthcheckResponse,
+} from "@fiado/type-kit/bin/cognitoBackofficeConnector";
+import { ICognitoBackofficeConnectorApi } from "./interfaces/ICognitoBackofficeConnectorApi";
+
+/**
+ * Publisher HTTP del lambda `cognito-backoffice-connector` (componente 05 SureKeep Fase 0).
+ *
+ * Env var requerida en el consumer: `COGNITO_BACKOFFICE_CONNECTOR_LAMBDA_URL`.
+ * El template.yml del consumer la setea con:
+ *
+ *   COGNITO_BACKOFFICE_CONNECTOR_LAMBDA_URL: '{{resolve:ssm:cognito-backoffice-connector}}'
+ *
+ * Convención CLAUDE.md global: SSM key = nombre del lambda owner de la URL.
+ * El connector publica su URL en SSM bajo la key `cognito-backoffice-connector`
+ * vía el `post_build` del buildspec.yml estándar Fiado.
+ */
+@injectable()
+export default class CognitoBackofficeConnectorApi implements ICognitoBackofficeConnectorApi {
+    /** URL base del lambda. Leída de env var en cold start del consumer. */
+    private readonly baseUrl = process.env.COGNITO_BACKOFFICE_CONNECTOR_LAMBDA_URL || "";
+
+    constructor(@inject("IHttpRequest") private httpRequest: IHttpRequest) {}
+
+    // ============= Admin user CRUD (9) =============
+
+    async createUser(input: CreateUserRequest): Promise<ApiGatewayResponse<CreateUserResponse>> {
+        const url = `${this.baseUrl}/users`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async getUser(
+        cognitoSub: string,
+        userPoolId: string,
+        region: string,
+    ): Promise<ApiGatewayResponse<UserDetailResponse>> {
+        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}`;
+        return await this.httpRequest.get(url, { userPoolId, region });
+    }
+
+    async updateUserAttributes(
+        cognitoSub: string,
+        input: UpdateUserAttributesRequest,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/attributes`;
+        return await this.httpRequest.put(url, input);
+    }
+
+    async deleteUser(
+        cognitoSub: string,
+        userPoolId: string,
+        region: string,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}`;
+        return await this.httpRequest.delete(url, { userPoolId, region });
+    }
+
+    async disableUser(
+        cognitoSub: string,
+        input: UserActionRequest,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/disable`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async enableUser(
+        cognitoSub: string,
+        input: UserActionRequest,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/enable`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async resetUserPassword(
+        cognitoSub: string,
+        input: UserActionRequest,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/password/reset`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async globalSignOut(
+        cognitoSub: string,
+        input: UserActionRequest,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/global-signout`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async resendInvitation(
+        cognitoSub: string,
+        input: ResendInvitationRequest,
+    ): Promise<ApiGatewayResponse<{ cognitoSub: string; temporaryPassword?: string }>> {
+        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/resend-invitation`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    // ============= MFA admin + setup (4) =============
+
+    async mfaTotpBegin(
+        input: TotpBeginRequest,
+    ): Promise<ApiGatewayResponse<TotpBeginResponse>> {
+        const url = `${this.baseUrl}/mfa/totp/begin`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async mfaTotpVerify(
+        input: TotpVerifyRequest,
+    ): Promise<ApiGatewayResponse<MfaVerifyResponse>> {
+        const url = `${this.baseUrl}/mfa/totp/verify`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async setMfaPreference(
+        input: SetMfaPreferenceRequest,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/mfa/preference`;
+        return await this.httpRequest.put(url, input);
+    }
+
+    async resetUserMfa(
+        cognitoSub: string,
+        input: MfaResetRequest,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/mfa/reset`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    // ============= Auth flow no-admin BFF M18 (7) =============
+
+    async authInitiate(
+        input: InitiateAuthRequest,
+    ): Promise<ApiGatewayResponse<InitiateAuthResponse>> {
+        const url = `${this.baseUrl}/auth/initiate`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async authRespondChallenge(
+        input: RespondToChallengeRequest,
+    ): Promise<ApiGatewayResponse<RespondToChallengeResponse>> {
+        const url = `${this.baseUrl}/auth/respond-challenge`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async authRefreshTokens(
+        input: RefreshTokensRequest,
+    ): Promise<ApiGatewayResponse<RefreshTokensResponse>> {
+        const url = `${this.baseUrl}/auth/refresh-tokens`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async authForgotPassword(
+        input: ForgotPasswordRequest,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/auth/forgot-password`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async authConfirmForgotPassword(
+        input: ConfirmForgotPasswordRequest,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/auth/confirm-forgot-password`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async authResendConfirmation(
+        input: ResendConfirmationRequest,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/auth/resend-confirmation`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async authChangePassword(
+        input: ChangePasswordRequest,
+    ): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/auth/change-password`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    // ============= Email + Profile self-service (3) =============
+
+    async updateEmail(input: UpdateEmailRequest): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/users/email/update`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async verifyEmail(input: VerifyEmailRequest): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/users/email/verify`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async updateProfile(input: UpdateProfileRequest): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/users/profile/update`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    // ============= Pool + auth events + healthcheck (4) =============
+
+    async listUserAuthEvents(
+        cognitoSub: string,
+        input: AuthEventsRequest,
+    ): Promise<ApiGatewayResponse<AuthEventResponse[]>> {
+        const url = `${this.baseUrl}/users/${encodeURIComponent(cognitoSub)}/auth-events`;
+        return await this.httpRequest.get(url, { ...input });
+    }
+
+    async createPool(input: CreatePoolRequest): Promise<ApiGatewayResponse<CreatePoolResponse>> {
+        const url = `${this.baseUrl}/pools`;
+        return await this.httpRequest.post(url, input);
+    }
+
+    async deletePool(userPoolId: string, region: string): Promise<ApiGatewayResponse<void>> {
+        const url = `${this.baseUrl}/pools/${encodeURIComponent(userPoolId)}`;
+        return await this.httpRequest.delete(url, { region });
+    }
+
+    async healthcheck(): Promise<ApiGatewayResponse<HealthcheckResponse>> {
+        const url = `${this.baseUrl}/healthcheck`;
+        return await this.httpRequest.get(url);
+    }
+}