@fiado/type-kit 3.117.0 → 3.118.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -28,12 +28,23 @@ export interface ApplicationBrandingDefault {
28
28
  faviconUrl?: string;
29
29
  webappBaseUrl?: string;
30
30
  }
31
+ export interface AutoregisterAllowedRole {
32
+ roleId: string;
33
+ scope: PermissionScope;
34
+ allowedScopeRefs?: string[];
35
+ }
36
+ export interface AutoregisterConfig {
37
+ enabled: boolean;
38
+ allowedRoles: AutoregisterAllowedRole[];
39
+ otpTtlSeconds?: number;
40
+ }
31
41
  export interface ApplicationDefaults {
32
42
  externalScopeLevels?: PermissionScope[];
33
43
  userFieldDefs?: UserFieldDef[];
34
44
  securityPolicy?: ApplicationSecurityPolicyDefault;
35
45
  brandingConfig?: ApplicationBrandingDefault;
36
46
  tokenValidationMode?: TokenValidationMode;
47
+ autoregister?: AutoregisterConfig;
37
48
  }
38
49
  export interface SeedRole {
39
50
  roleId: string;
@@ -36,7 +36,7 @@ export * from './dtos/UpdateUserFieldRequest';
36
36
  export type { InjectableUserAttributesResponse } from './dtos/InjectableUserAttributesResponse';
37
37
  export * from './enums/ApplicationStatus';
38
38
  export * from './enums/PermissionKind';
39
- export type { LevelDef, ApplicationSecurityPolicyDefault, ApplicationBrandingDefault, ApplicationDefaults, SeedRole, Application, } from './application/Application';
39
+ export type { LevelDef, ApplicationSecurityPolicyDefault, ApplicationBrandingDefault, AutoregisterAllowedRole, AutoregisterConfig, ApplicationDefaults, SeedRole, Application, } from './application/Application';
40
40
  export type { ApplicationPermission } from './application/ApplicationPermission';
41
41
  export type { CreateApplicationRequest, UpdateApplicationRequest, UpsertApplicationPermissionRequest, } from './application/requests';
42
42
  export * from './dtos/SelfRegisterStartRequest';
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@fiado/type-kit",
3
- "version": "3.117.0",
3
+ "version": "3.118.0",
4
4
  "description": "",
5
5
  "main": "bin/index.js",
6
6
  "types": "bin/index.d.ts",
@@ -23,12 +23,29 @@ export interface ApplicationBrandingDefault {
23
23
  logoWidth?: number; faviconUrl?: string; webappBaseUrl?: string;
24
24
  }
25
25
 
26
+ // DEC-RBAC-038: config de autoregistro self-service. Promovido desde el tipo local
27
+ // `PlatformTenantConfigRow.AutoregisterConfig` del platform-rbac-business a shape compartido
28
+ // (patrón stub→swap DEC-001). `allowedRoles` es la allowlist anti-escalación que valida el
29
+ // server contra el roleId/scope/scopeRef del SelfRegisterStartRequest.
30
+ export interface AutoregisterAllowedRole {
31
+ roleId: string;
32
+ scope: PermissionScope;
33
+ allowedScopeRefs?: string[];
34
+ }
35
+
36
+ export interface AutoregisterConfig {
37
+ enabled: boolean;
38
+ allowedRoles: AutoregisterAllowedRole[];
39
+ otpTtlSeconds?: number;
40
+ }
41
+
26
42
  export interface ApplicationDefaults {
27
43
  externalScopeLevels?: PermissionScope[];
28
44
  userFieldDefs?: UserFieldDef[];
29
45
  securityPolicy?: ApplicationSecurityPolicyDefault;
30
46
  brandingConfig?: ApplicationBrandingDefault;
31
47
  tokenValidationMode?: TokenValidationMode;
48
+ autoregister?: AutoregisterConfig;
32
49
  }
33
50
 
34
51
  export interface SeedRole {
@@ -83,6 +83,8 @@ export type {
83
83
  LevelDef,
84
84
  ApplicationSecurityPolicyDefault,
85
85
  ApplicationBrandingDefault,
86
+ AutoregisterAllowedRole,
87
+ AutoregisterConfig,
86
88
  ApplicationDefaults,
87
89
  SeedRole,
88
90
  Application,