@idp.global/interfaces 1.0.1

package/changelog.md

@@ -0,0 +1,16 @@
+# Changelog
+
+## Pending
+
+
+## 2026-05-18 - 1.0.1
+
+### Fixes
+
+- add SmartConfig project metadata and update development tooling versions (build)
+  - adds .smartconfig.json with npm package, repository, and release target configuration
+  - bumps @git.zone build/test/documentation tooling and @types/node devDependency versions
+
+## 1.0.0
+
+- Initial standalone extraction of idp.global shared interfaces.

package/dist_ts/00_commitinfo_data.d.ts

@@ -0,0 +1,8 @@
+/**
+ * autocreated commitinfo by @push.rocks/commitinfo
+ */
+export declare const commitinfo: {
+    name: string;
+    version: string;
+    description: string;
+};

package/dist_ts/00_commitinfo_data.js

@@ -0,0 +1,9 @@
+/**
+ * autocreated commitinfo by @push.rocks/commitinfo
+ */
+export const commitinfo = {
+    name: '@idp.global/interfaces',
+    version: '1.0.1',
+    description: 'Shared TypeScript interfaces and TypedRequest contracts for the idp.global ecosystem.'
+};
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiMDBfY29tbWl0aW5mb19kYXRhLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vdHMvMDBfY29tbWl0aW5mb19kYXRhLnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiJBQUFBOztHQUVHO0FBQ0gsTUFBTSxDQUFDLE1BQU0sVUFBVSxHQUFHO0lBQ3hCLElBQUksRUFBRSx3QkFBd0I7SUFDOUIsT0FBTyxFQUFFLE9BQU87SUFDaEIsV0FBVyxFQUFFLHVGQUF1RjtDQUNyRyxDQUFBIn0=

package/dist_ts/data/abusewindow.d.ts

@@ -0,0 +1,13 @@
+export interface IAbuseWindow {
+    id: string;
+    data: {
+        action: string;
+        identifierHash: string;
+        attemptCount: number;
+        windowStartedAt: number;
+        blockedUntil: number;
+        validUntil: number;
+        createdAt: number;
+        updatedAt: number;
+    };
+}

package/dist_ts/data/abusewindow.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiYWJ1c2V3aW5kb3cuanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi90cy9kYXRhL2FidXNld2luZG93LnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiIifQ==

package/dist_ts/data/activity.d.ts

@@ -0,0 +1,16 @@
+export type TActivityAction = 'login' | 'logout' | 'session_created' | 'session_revoked' | 'passport_device_enrolled' | 'passport_device_revoked' | 'passport_challenge_approved' | 'passport_challenge_rejected' | 'org_created' | 'org_updated' | 'org_deleted' | 'org_ownership_transferred' | 'org_joined' | 'org_left' | 'role_changed' | 'org_app_role_mappings_updated' | 'profile_updated' | 'app_connected' | 'app_disconnected';
+export interface IActivityLog {
+    id: string;
+    data: {
+        userId: string;
+        action: TActivityAction;
+        timestamp: number;
+        metadata: {
+            ip?: string;
+            userAgent?: string;
+            targetId?: string;
+            targetType?: string;
+            description: string;
+        };
+    };
+}

package/dist_ts/data/activity.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiYWN0aXZpdHkuanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi90cy9kYXRhL2FjdGl2aXR5LnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiIifQ==

package/dist_ts/data/alert.d.ts

@@ -0,0 +1,31 @@
+export type TAlertSeverity = 'low' | 'medium' | 'high' | 'critical';
+export type TAlertStatus = 'pending' | 'seen' | 'dismissed';
+export type TAlertCategory = 'security' | 'admin' | 'system';
+export type TAlertNotificationStatus = 'pending' | 'sent' | 'failed' | 'seen';
+export interface IAlert {
+    id: string;
+    data: {
+        recipientUserId: string;
+        organizationId?: string;
+        category: TAlertCategory;
+        eventType: string;
+        severity: TAlertSeverity;
+        title: string;
+        body: string;
+        actorUserId?: string;
+        relatedEntityId?: string;
+        relatedEntityType?: string;
+        notification: {
+            hintId: string;
+            status: TAlertNotificationStatus;
+            attemptCount: number;
+            createdAt: number;
+            deliveredAt?: number | null;
+            seenAt?: number | null;
+            lastError?: string | null;
+        };
+        createdAt: number;
+        seenAt?: number | null;
+        dismissedAt?: number | null;
+    };
+}

package/dist_ts/data/alert.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiYWxlcnQuanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi90cy9kYXRhL2FsZXJ0LnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiIifQ==

package/dist_ts/data/alertrule.d.ts

@@ -0,0 +1,19 @@
+import type { TAlertSeverity } from './alert.js';
+export type TAlertRuleScope = 'global' | 'organization';
+export type TAlertRuleRecipientMode = 'global_admins' | 'org_admins' | 'specific_users';
+export interface IAlertRule {
+    id: string;
+    data: {
+        scope: TAlertRuleScope;
+        organizationId?: string;
+        eventType: string;
+        minimumSeverity: TAlertSeverity;
+        recipientMode: TAlertRuleRecipientMode;
+        recipientUserIds?: string[];
+        push: boolean;
+        enabled: boolean;
+        createdByUserId: string;
+        createdAt: number;
+        updatedAt: number;
+    };
+}

package/dist_ts/data/alertrule.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiYWxlcnRydWxlLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vdHMvZGF0YS9hbGVydHJ1bGUudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IiJ9

package/dist_ts/data/app.d.ts

@@ -0,0 +1,86 @@
+export type TAppType = 'global' | 'partner' | 'custom_oidc';
+export type TAppApprovalStatus = 'draft' | 'pending_review' | 'approved' | 'rejected' | 'suspended';
+export interface IOAuthCredentials {
+    clientId: string;
+    clientSecretHash: string;
+    redirectUris: string[];
+    allowedScopes: string[];
+    grantTypes: ('authorization_code' | 'client_credentials' | 'refresh_token')[];
+}
+export interface IAppBaseData {
+    name: string;
+    description: string;
+    logoUrl: string;
+    appUrl: string;
+}
+export interface IGlobalApp {
+    id: string;
+    type: 'global';
+    data: IAppBaseData & {
+        oauthCredentials: IOAuthCredentials;
+        isActive: boolean;
+        category: string;
+        createdAt: number;
+        createdByUserId: string;
+    };
+}
+export interface IPartnerApp {
+    id: string;
+    type: 'partner';
+    data: IAppBaseData & {
+        ownerOrganizationId: string;
+        oauthCredentials: IOAuthCredentials;
+        appStoreMetadata: {
+            shortDescription: string;
+            longDescription: string;
+            screenshots: string[];
+            category: string;
+            tags: string[];
+            pricing: {
+                model: 'free' | 'paid' | 'freemium';
+            };
+        };
+        approvalStatus: TAppApprovalStatus;
+        isPublished: boolean;
+        installCount: number;
+    };
+}
+export interface ICustomOidcApp {
+    id: string;
+    type: 'custom_oidc';
+    data: IAppBaseData & {
+        ownerOrganizationId: string;
+        oauthCredentials: IOAuthCredentials;
+        oidcSettings: {
+            accessTokenLifetime: number;
+            refreshTokenLifetime: number;
+        };
+    };
+}
+export type IApp = IGlobalApp | IPartnerApp | ICustomOidcApp;
+/**
+ * Legacy interface for backwards compatibility with existing code
+ * that expects a flat app structure (e.g., idpclient, transfermanager)
+ */
+export interface IAppLegacy {
+    /**
+     * must be unique
+     */
+    id: string;
+    /**
+     * should be unique
+     */
+    name: string;
+    description: string;
+    logoUrl: string;
+    appUrl: string;
+}
+/**
+ * Storage interface for SmartData documents
+ * Uses the discriminated union approach with a 'type' field
+ */
+export interface IAppDocument {
+    id: string;
+    type: TAppType;
+    data: IGlobalApp['data'] | IPartnerApp['data'] | ICustomOidcApp['data'];
+}

package/dist_ts/data/app.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiYXBwLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vdHMvZGF0YS9hcHAudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IiJ9

package/dist_ts/data/appconnection.d.ts

@@ -0,0 +1,16 @@
+import type { TAppType } from './app.js';
+import type { IAppRoleMapping } from './role.js';
+export type TAppConnectionStatus = 'active' | 'disconnected';
+export interface IAppConnection {
+    id: string;
+    data: {
+        organizationId: string;
+        appId: string;
+        appType: TAppType;
+        status: TAppConnectionStatus;
+        connectedAt: number;
+        connectedByUserId: string;
+        grantedScopes: string[];
+        roleMappings?: IAppRoleMapping[];
+    };
+}

package/dist_ts/data/appconnection.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiYXBwY29ubmVjdGlvbi5qcyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbIi4uLy4uL3RzL2RhdGEvYXBwY29ubmVjdGlvbi50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiIn0=

package/dist_ts/data/billingplan.d.ts

@@ -0,0 +1,43 @@
+export type TSupportedCurrency = 'EUR';
+export interface IBillableItem {
+    name: string;
+    monthlyPrice: number;
+    currency: TSupportedCurrency;
+    from: number;
+    to: number;
+    factoredOn30DayMonth: number;
+    quantity: number;
+}
+export interface IBillingPlan {
+    id: string;
+    data: {
+        type: 'Paddle' | 'AppSumo' | 'FairUsageFree' | 'Enterprise' | 'Internal' | 'Testing';
+        proEnabled: boolean;
+        organizationId: string;
+        lastProcessed: number;
+        seats: number;
+        status: 'active' | 'activeOverdue' | 'pausedOverdue' | 'inactive' | 'suspended';
+        paddleData?: {
+            checkoutId: string;
+        };
+        alternativePaymentData?: {
+            enterprise: boolean;
+            appSumoCode: string;
+        };
+        nextBilling: {
+            items: Array<IBillableItem>;
+            method: 'paddle';
+            ontrack: boolean;
+            errorText?: string;
+            selectedBillingDate: number;
+        };
+        billingEvents: Array<{
+            timestamp: number;
+            amount: number;
+            currency: TSupportedCurrency;
+            billedItems: Array<IBillableItem>;
+            checkoutLink?: string;
+        }>;
+        communications: Array<any>;
+    };
+}

package/dist_ts/data/billingplan.js

@@ -0,0 +1,2 @@
+import * as plugins from '../plugins.js';
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiYmlsbGluZ3BsYW4uanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi90cy9kYXRhL2JpbGxpbmdwbGFuLnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiJBQUFBLE9BQU8sS0FBSyxPQUFPLE1BQU0sZUFBZSxDQUFDIn0=

package/dist_ts/data/device.d.ts

@@ -0,0 +1,3 @@
+import * as plugins from '../plugins.js';
+export interface IDevice extends plugins.tsclass.network.IDevice {
+}

package/dist_ts/data/device.js

@@ -0,0 +1,2 @@
+import * as plugins from '../plugins.js';
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiZGV2aWNlLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vdHMvZGF0YS9kZXZpY2UudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IkFBQUEsT0FBTyxLQUFLLE9BQU8sTUFBTSxlQUFlLENBQUMifQ==

package/dist_ts/data/emailactiontoken.d.ts

@@ -0,0 +1,11 @@
+export type TEmailActionTokenAction = 'emailLogin' | 'passwordReset';
+export interface IEmailActionToken {
+    id: string;
+    data: {
+        email: string;
+        action: TEmailActionTokenAction;
+        tokenHash: string;
+        validUntil: number;
+        createdAt: number;
+    };
+}

package/dist_ts/data/emailactiontoken.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiZW1haWxhY3Rpb250b2tlbi5qcyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbIi4uLy4uL3RzL2RhdGEvZW1haWxhY3Rpb250b2tlbi50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiIn0=

package/dist_ts/data/index.d.ts

@@ -0,0 +1,21 @@
+export * from './abusewindow.js';
+export * from './activity.js';
+export * from './alert.js';
+export * from './alertrule.js';
+export * from './app.js';
+export * from './emailactiontoken.js';
+export * from './oidc.js';
+export * from './appconnection.js';
+export * from './billingplan.js';
+export * from './device.js';
+export * from './jwt.js';
+export * from './loginsession.js';
+export * from './organization.js';
+export * from './paddlecheckoutdata.js';
+export * from './passportchallenge.js';
+export * from './passportdevice.js';
+export * from './passportnonce.js';
+export * from './registrationsession.js';
+export * from './role.js';
+export * from './user.js';
+export * from './userinvitation.js';

package/dist_ts/data/index.js

@@ -0,0 +1,22 @@
+export * from './abusewindow.js';
+export * from './activity.js';
+export * from './alert.js';
+export * from './alertrule.js';
+export * from './app.js';
+export * from './emailactiontoken.js';
+export * from './oidc.js';
+export * from './appconnection.js';
+export * from './billingplan.js';
+export * from './device.js';
+export * from './jwt.js';
+export * from './loginsession.js';
+export * from './organization.js';
+export * from './paddlecheckoutdata.js';
+export * from './passportchallenge.js';
+export * from './passportdevice.js';
+export * from './passportnonce.js';
+export * from './registrationsession.js';
+export * from './role.js';
+export * from './user.js';
+export * from './userinvitation.js';
+//# sourceMappingURL=data:application/json;base64,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

package/dist_ts/data/jwt.d.ts

@@ -0,0 +1,38 @@
+export type TLoginStatus = 'loggedIn' | 'loggedOut' | 'invalidated' | 'not found' | 'transfer';
+export type TLoginAction = 'login' | 'logout' | 'manage';
+export interface IJwt {
+    id: string;
+    blocked: boolean;
+    data: {
+        /**
+         * the user id of the jwt
+         */
+        userId: string;
+        /**
+         * the login session backing this jwt
+         */
+        sessionId?: string;
+        /**
+         * the latest point of
+         */
+        validUntil: number;
+        /**
+         * hold off from refreshing before
+         */
+        refreshFrom: number;
+        /**
+         * an interval in millis to recheck token invalidation
+         */
+        refreshEvery: number;
+        /**
+         * legacy field kept for compatibility with already-issued jwt documents
+         */
+        refreshToken?: string;
+        /**
+         * just for looks/debugging
+         */
+        justForLooks: {
+            validUntilIsoString: string;
+        };
+    };
+}

package/dist_ts/data/jwt.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiand0LmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vdHMvZGF0YS9qd3QudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IiJ9

package/dist_ts/data/loginsession.d.ts

@@ -0,0 +1,38 @@
+export interface ILoginSession {
+    id: string;
+    data: {
+        userId: string | null;
+        validUntil: number;
+        invalidated: boolean;
+        /**
+         * legacy plaintext refresh token field kept so existing sessions can migrate on first use
+         */
+        refreshToken?: string | null;
+        refreshTokenHash?: string | null;
+        rotatedRefreshTokenHashes?: string[];
+        transferTokenHash?: string | null;
+        transferTokenExpiresAt?: number | null;
+        /**
+         * a device id that can be used to share the login session
+         * in different contexts on the same device
+         */
+        deviceId?: string | null;
+        /**
+         * Device metadata for session display
+         */
+        deviceInfo?: {
+            deviceName: string;
+            browser: string;
+            os: string;
+            ip: string;
+        } | null;
+        /**
+         * When this session was created
+         */
+        createdAt?: number;
+        /**
+         * Last time this session was active (e.g., refreshed)
+         */
+        lastActive?: number;
+    };
+}

package/dist_ts/data/loginsession.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoibG9naW5zZXNzaW9uLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vdHMvZGF0YS9sb2dpbnNlc3Npb24udHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IiJ9