@ipetsadmin/contracts 1.1.7 → 1.1.9

package/CHANGELOG.md

@@ -19,6 +19,25 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ### Security
 
+## [1.1.9] - 2026-04-25
+
+### Added
+
+- **`UserProfileResponse`**: id, account fields, and `profile` for the user profile API (no secrets).
+- **`PatchUserProfileInput`**: partial profile update; **`avatar`** is intentionally excluded (separate upload flow).
+- **`IUserService`**: `getProfileForUserId`, `patchProfileForUserId` (optional `RepositoryOperationOptions`).
+
+## [1.1.8] - 2026-04-25
+
+### Added
+
+- **`Auth0UserProfile`**: optional OIDC fields from Auth0 **`/userinfo`** (`name`, `given_name`, `family_name`, `picture`, `nickname`, `locale`) for Google / social flows.
+- **`CreateUserInput`**: optional **`profile`** (`IUser['profile']`) for persisting IdP profile on OAuth sign-up.
+
+### Changed
+
+- **`IUserRepository.update`**: **`patch`** may include **`profile`** (e.g. admin or in-app profile edits; not used for OAuth re-login profile sync in `api-main` by default).
+
 ## [1.1.7] - 2026-04-25
 
 ## Added

package/dist/index.d.mts

@@ -116,12 +116,19 @@ type CreateUserInput = {
         readonly provider: OAuthProvider;
         readonly providerSubject: string;
     };
+    readonly profile?: IUser['profile'];
 };
 
 type Auth0UserProfile = {
     readonly sub: string;
     readonly email?: string;
     readonly email_verified?: boolean;
+    readonly name?: string;
+    readonly given_name?: string;
+    readonly family_name?: string;
+    readonly picture?: string;
+    readonly nickname?: string;
+    readonly locale?: string;
 };
 
 type Auth0AuthorizationParams = {
@@ -162,6 +169,28 @@ type VerifyEmailRequest = {
     readonly token: string;
 };
 
+type UserProfileResponse = Pick<IUser, 'id' | 'email' | 'emailVerified' | 'role' | 'isActive' | 'profile'>;
+
+type PatchUserProfileInput = {
+    readonly firstName?: string;
+    readonly lastName?: string;
+    readonly fullName?: string;
+    readonly location?: {
+        readonly country?: string;
+        readonly city?: string;
+        readonly address?: string;
+        readonly postalCode?: string;
+    };
+    readonly phone?: string;
+    readonly email?: string;
+    readonly website?: string;
+    readonly social?: {
+        readonly twitter?: string;
+        readonly facebook?: string;
+        readonly instagram?: string;
+    };
+};
+
 interface IConfig {
     port: number;
     cors: {
@@ -226,7 +255,7 @@ interface IUserRepository {
     findById(id: string, options?: RepositoryOperationOptions): Promise<IUser | null>;
     findByEmail(email: string, options?: RepositoryOperationOptions): Promise<IUser | null>;
     findByOAuth(provider: OAuthProvider, providerSubject: string, options?: RepositoryOperationOptions): Promise<IUser | null>;
-    update(id: string, patch: Partial<Pick<IUser, 'email' | 'emailVerified' | 'authMethod' | 'oauth'>> & {
+    update(id: string, patch: Partial<Pick<IUser, 'email' | 'emailVerified' | 'authMethod' | 'oauth' | 'profile'>> & {
         passwordHash?: string | null;
     }, options?: RepositoryOperationOptions): Promise<void>;
 }
@@ -313,6 +342,11 @@ interface IEmailVerificationConfig {
     tokenExpiresInSeconds: number;
 }
 
+interface IUserService {
+    getProfileForUserId(userId: string, options?: RepositoryOperationOptions): Promise<UserProfileResponse>;
+    patchProfileForUserId(userId: string, input: PatchUserProfileInput, options?: RepositoryOperationOptions): Promise<UserProfileResponse>;
+}
+
 declare enum Errors {
     NOT_FOUND_ERROR = "NotFoundError",
     BUSINESS_ERROR = "BusinessError",
@@ -363,4 +397,4 @@ declare class UnauthorizedError extends BaseError {
     constructor(message: string, details?: Record<string, unknown>);
 }
 
-export { type Auth0AuthorizationParams, type Auth0UserProfile, AuthMethod, type AuthSessionResponse, type AuthUserResponse, BaseError, BusinessError, type CreateUserInput, type EmailAddress, EmailProvider, type EmailVerificationTokenRecord, Errors, ForbiddenError, type HealthCheck, HealthStatus, type IApiResponse, type IAuth0GoogleOAuthService, type IAuthService, type IConfig, type IEmailConfig, type IEmailProviderAdapter, type IEmailService, type IEmailVerificationConfig, type IEmailVerificationTokenRepository, type IJwtTokensService, type IOAuthStateRepository, type IPaginatedResponse, type IRefreshTokenRepository, type IServerInit, type IUser, type IUserRepository, type LoginRequest, type LogoutRequest, NotFoundError, type OAuthAccessTokenResult, type OAuthGoogleCallbackRequest, type OAuthGoogleStartQuery, type OAuthGoogleStartResponse, OAuthProvider, type OAuthStateRecord, type RefreshRequest, type RefreshTokenRecord, type RegisterRequest, type RepositoryOperationOptions, type SendEmailInput, type SendEmailResult, ServerError, type TokenPair, UnauthorizedError, UserRole, type VerifyEmailRequest };
+export { type Auth0AuthorizationParams, type Auth0UserProfile, AuthMethod, type AuthSessionResponse, type AuthUserResponse, BaseError, BusinessError, type CreateUserInput, type EmailAddress, EmailProvider, type EmailVerificationTokenRecord, Errors, ForbiddenError, type HealthCheck, HealthStatus, type IApiResponse, type IAuth0GoogleOAuthService, type IAuthService, type IConfig, type IEmailConfig, type IEmailProviderAdapter, type IEmailService, type IEmailVerificationConfig, type IEmailVerificationTokenRepository, type IJwtTokensService, type IOAuthStateRepository, type IPaginatedResponse, type IRefreshTokenRepository, type IServerInit, type IUser, type IUserRepository, type IUserService, type LoginRequest, type LogoutRequest, NotFoundError, type OAuthAccessTokenResult, type OAuthGoogleCallbackRequest, type OAuthGoogleStartQuery, type OAuthGoogleStartResponse, OAuthProvider, type OAuthStateRecord, type PatchUserProfileInput, type RefreshRequest, type RefreshTokenRecord, type RegisterRequest, type RepositoryOperationOptions, type SendEmailInput, type SendEmailResult, ServerError, type TokenPair, UnauthorizedError, type UserProfileResponse, UserRole, type VerifyEmailRequest };

package/dist/index.d.ts

@@ -116,12 +116,19 @@ type CreateUserInput = {
         readonly provider: OAuthProvider;
         readonly providerSubject: string;
     };
+    readonly profile?: IUser['profile'];
 };
 
 type Auth0UserProfile = {
     readonly sub: string;
     readonly email?: string;
     readonly email_verified?: boolean;
+    readonly name?: string;
+    readonly given_name?: string;
+    readonly family_name?: string;
+    readonly picture?: string;
+    readonly nickname?: string;
+    readonly locale?: string;
 };
 
 type Auth0AuthorizationParams = {
@@ -162,6 +169,28 @@ type VerifyEmailRequest = {
     readonly token: string;
 };
 
+type UserProfileResponse = Pick<IUser, 'id' | 'email' | 'emailVerified' | 'role' | 'isActive' | 'profile'>;
+
+type PatchUserProfileInput = {
+    readonly firstName?: string;
+    readonly lastName?: string;
+    readonly fullName?: string;
+    readonly location?: {
+        readonly country?: string;
+        readonly city?: string;
+        readonly address?: string;
+        readonly postalCode?: string;
+    };
+    readonly phone?: string;
+    readonly email?: string;
+    readonly website?: string;
+    readonly social?: {
+        readonly twitter?: string;
+        readonly facebook?: string;
+        readonly instagram?: string;
+    };
+};
+
 interface IConfig {
     port: number;
     cors: {
@@ -226,7 +255,7 @@ interface IUserRepository {
     findById(id: string, options?: RepositoryOperationOptions): Promise<IUser | null>;
     findByEmail(email: string, options?: RepositoryOperationOptions): Promise<IUser | null>;
     findByOAuth(provider: OAuthProvider, providerSubject: string, options?: RepositoryOperationOptions): Promise<IUser | null>;
-    update(id: string, patch: Partial<Pick<IUser, 'email' | 'emailVerified' | 'authMethod' | 'oauth'>> & {
+    update(id: string, patch: Partial<Pick<IUser, 'email' | 'emailVerified' | 'authMethod' | 'oauth' | 'profile'>> & {
         passwordHash?: string | null;
     }, options?: RepositoryOperationOptions): Promise<void>;
 }
@@ -313,6 +342,11 @@ interface IEmailVerificationConfig {
     tokenExpiresInSeconds: number;
 }
 
+interface IUserService {
+    getProfileForUserId(userId: string, options?: RepositoryOperationOptions): Promise<UserProfileResponse>;
+    patchProfileForUserId(userId: string, input: PatchUserProfileInput, options?: RepositoryOperationOptions): Promise<UserProfileResponse>;
+}
+
 declare enum Errors {
     NOT_FOUND_ERROR = "NotFoundError",
     BUSINESS_ERROR = "BusinessError",
@@ -363,4 +397,4 @@ declare class UnauthorizedError extends BaseError {
     constructor(message: string, details?: Record<string, unknown>);
 }
 
-export { type Auth0AuthorizationParams, type Auth0UserProfile, AuthMethod, type AuthSessionResponse, type AuthUserResponse, BaseError, BusinessError, type CreateUserInput, type EmailAddress, EmailProvider, type EmailVerificationTokenRecord, Errors, ForbiddenError, type HealthCheck, HealthStatus, type IApiResponse, type IAuth0GoogleOAuthService, type IAuthService, type IConfig, type IEmailConfig, type IEmailProviderAdapter, type IEmailService, type IEmailVerificationConfig, type IEmailVerificationTokenRepository, type IJwtTokensService, type IOAuthStateRepository, type IPaginatedResponse, type IRefreshTokenRepository, type IServerInit, type IUser, type IUserRepository, type LoginRequest, type LogoutRequest, NotFoundError, type OAuthAccessTokenResult, type OAuthGoogleCallbackRequest, type OAuthGoogleStartQuery, type OAuthGoogleStartResponse, OAuthProvider, type OAuthStateRecord, type RefreshRequest, type RefreshTokenRecord, type RegisterRequest, type RepositoryOperationOptions, type SendEmailInput, type SendEmailResult, ServerError, type TokenPair, UnauthorizedError, UserRole, type VerifyEmailRequest };
+export { type Auth0AuthorizationParams, type Auth0UserProfile, AuthMethod, type AuthSessionResponse, type AuthUserResponse, BaseError, BusinessError, type CreateUserInput, type EmailAddress, EmailProvider, type EmailVerificationTokenRecord, Errors, ForbiddenError, type HealthCheck, HealthStatus, type IApiResponse, type IAuth0GoogleOAuthService, type IAuthService, type IConfig, type IEmailConfig, type IEmailProviderAdapter, type IEmailService, type IEmailVerificationConfig, type IEmailVerificationTokenRepository, type IJwtTokensService, type IOAuthStateRepository, type IPaginatedResponse, type IRefreshTokenRepository, type IServerInit, type IUser, type IUserRepository, type IUserService, type LoginRequest, type LogoutRequest, NotFoundError, type OAuthAccessTokenResult, type OAuthGoogleCallbackRequest, type OAuthGoogleStartQuery, type OAuthGoogleStartResponse, OAuthProvider, type OAuthStateRecord, type PatchUserProfileInput, type RefreshRequest, type RefreshTokenRecord, type RegisterRequest, type RepositoryOperationOptions, type SendEmailInput, type SendEmailResult, ServerError, type TokenPair, UnauthorizedError, type UserProfileResponse, UserRole, type VerifyEmailRequest };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@ipetsadmin/contracts",
-  "version": "1.1.7",
+  "version": "1.1.9",
   "description": "Shared types, enums, and interfaces for Truffa projects",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",