npm - @masterteam/gateway-auth - Versions diffs - 0.0.11 → 0.0.13 - Mend

@masterteam/gateway-auth 0.0.11 → 0.0.13

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/fesm2022/masterteam-gateway-auth.mjs +182 -5
package/fesm2022/masterteam-gateway-auth.mjs.map +1 -1
package/package.json +11 -11
package/types/masterteam-gateway-auth.d.ts +41 -2

package/package.json CHANGED Viewed

@@ -1,22 +1,22 @@
 {
   "name": "@masterteam/gateway-auth",
-  "version": "0.0.11",
+  "version": "0.0.13",
   "publishConfig": {
     "directory": "../../../dist/masterteam/gateway-auth",
     "linkDirectory": true,
     "access": "public"
   },
   "peerDependencies": {
-    "@angular/common": "catalog:angular21",
-    "@angular/core": "catalog:angular21",
-    "@angular/forms": "catalog:angular21",
-    "@angular/router": "catalog:angular21",
-    "@jsverse/transloco": "catalog:i18n",
-    "@masterteam/brand-display": "workspace:^",
-    "@masterteam/components": "workspace:^",
-    "@masterteam/icons": "workspace:^",
+    "@angular/common": "^21.2.8",
+    "@angular/core": "^21.2.8",
+    "@angular/forms": "^21.2.8",
+    "@angular/router": "^21.2.8",
+    "@jsverse/transloco": "^8.3.0",
     "@ngxs/store": "^20.1.0",
-    "rxjs": "catalog:angular21"
+    "rxjs": "^7.8.2",
+    "@masterteam/brand-display": "^0.0.11",
+    "@masterteam/icons": "^0.0.15",
+    "@masterteam/components": "^0.0.167"
   },
   "repository": {
     "type": "git",
@@ -36,6 +36,6 @@
   },
   "type": "module",
   "dependencies": {
-    "tslib": "catalog:angular21"
+    "tslib": "^2.8.1"
   }
 }

package/types/masterteam-gateway-auth.d.ts CHANGED Viewed

@@ -211,6 +211,13 @@ declare function withGatewayAuthNgswBypass(url: string): string;
 declare function readPersistedGatewayAuthTokens(): GatewayAuthTokens | null;
 declare function mapGatewayUser(user: GatewayUserDetails, tokenData: GatewayMappedTokens, delegations?: unknown[]): GatewayMappedUser;
 declare function hasGatewayTokens(tokens?: Partial<GatewayAuthTokens | GatewayRefreshData> | null): boolean;
+declare const GATEWAY_RATE_LIMIT_STATUS = 429;
+declare const GATEWAY_RATE_LIMIT_ERROR_CODE = "RATE_001";
+interface GatewayRateLimitInfo {
+    retryAfterSeconds: number | null;
+    message: string;
+}
+declare function extractGatewayRateLimitInfo(error: unknown): GatewayRateLimitInfo | null;
 declare function getGatewayErrorMessage(error: unknown, fallback: string): string;
 declare function normalizeGatewayBase(baseUrl?: string | null): string;
 declare function buildGatewayUrl(gatewayApiBaseUrl: string | undefined | null, path: string): string;
@@ -249,6 +256,13 @@ type AuthRefreshData = GatewayRefreshData;
 type TwoFactorChallenge = GatewayTwoFactorChallenge;
 type SsoProvider = GatewaySsoProvider;
 type Response<T> = GatewayResponse<T>;
+type AuthRateLimitScope = 'login' | 'verifyMfa' | 'resendMfa' | 'ssoExchange';
+interface AuthRateLimit {
+    retryUntilMs: number | null;
+    totalSeconds: number | null;
+    message: string;
+    scope: AuthRateLimitScope;
+}
 interface AuthStateModel {
     user: User | null;
     token: string | null;
@@ -263,6 +277,7 @@ interface AuthStateModel {
     twoFactorRequired: boolean;
     pendingMfa: TwoFactorChallenge | null;
     ssoProviders: SsoProvider[];
+    rateLimit: AuthRateLimit | null;
 }
 declare const AUTH_STATE_DEFAULTS: AuthStateModel;
 declare function sanitizePersistedAuthState(obj: Partial<AuthStateModel> | null): {
@@ -274,6 +289,7 @@ declare function sanitizePersistedAuthState(obj: Partial<AuthStateModel> | null)
     twoFactorRequired: boolean;
     pendingMfa: null;
     ssoProviders: never[];
+    rateLimit: AuthRateLimit | null;
     user: User | null;
     token: string | null;
     refreshToken: string | null;
@@ -374,11 +390,20 @@ declare class ClearError {
 declare class ClearPendingMfa {
     static readonly type = "[Auth] Clear Pending MFA";
 }
+declare class SetRateLimit {
+    lock: AuthRateLimit;
+    static readonly type = "[Auth] Set Rate Limit";
+    constructor(lock: AuthRateLimit);
+}
+declare class ClearRateLimit {
+    static readonly type = "[Auth] Clear Rate Limit";
+}
 declare class GatewayAuthState {
     private readonly http;
     private readonly options;
     private readonly router;
+    private readonly modalService;
     private readonly ssoSession;
     static user(state: AuthStateModel): User | null;
     static loading(state: AuthStateModel): boolean;
@@ -393,6 +418,7 @@ declare class GatewayAuthState {
     static twoFactorRequired(state: AuthStateModel): boolean;
     static pendingMfa(state: AuthStateModel): GatewayTwoFactorChallenge | null;
     static ssoProviders(state: AuthStateModel): SsoProvider[];
+    static rateLimit(state: AuthStateModel): AuthRateLimit | null;
     static isAdmin(state: AuthStateModel): boolean;
     static userDetails(state: AuthStateModel): _masterteam_gateway_auth.GatewayUserDetails | null;
     login(ctx: StateContext<AuthStateModel>, action: Login): Observable<unknown>;
@@ -408,6 +434,10 @@ declare class GatewayAuthState {
     updateTokens(ctx: StateContext<AuthStateModel>, action: UpdateTokens): void;
     clearError(ctx: StateContext<AuthStateModel>): void;
     clearPendingMfa(ctx: StateContext<AuthStateModel>): void;
+    setRateLimit(ctx: StateContext<AuthStateModel>, action: SetRateLimit): void;
+    clearRateLimit(ctx: StateContext<AuthStateModel>): void;
+    private isRateLimitActive;
+    private handleRateLimit;
     private handleLoginResponse;
     private get deviceToken();
     private gatewayUrl;
@@ -435,6 +465,7 @@ declare class GatewayAuthFacade {
     readonly twoFactorRequired: _angular_core.Signal<boolean>;
     readonly pendingMfa: _angular_core.Signal<_masterteam_gateway_auth.GatewayTwoFactorChallenge | null>;
     readonly ssoProviders: _angular_core.Signal<_masterteam_gateway_auth.GatewaySsoProvider[]>;
+    readonly rateLimit: _angular_core.Signal<_masterteam_gateway_auth.AuthRateLimit | null>;
     readonly isAdmin: _angular_core.Signal<boolean>;
     readonly userDetails: _angular_core.Signal<_masterteam_gateway_auth.GatewayUserDetails | null>;
     readonly hasError: _angular_core.Signal<boolean>;
@@ -455,6 +486,7 @@ declare class GatewayAuthFacade {
     updateTokens(tokens: AuthTokens): void;
     clearError(): void;
     clearPendingMfa(): void;
+    clearRateLimit(): void;
     hasRole(role: string): boolean;
     hasGroup(group: string): boolean;
     isTokenExpired(): boolean;
@@ -480,6 +512,13 @@ declare class GatewayLoginPage implements OnInit {
     readonly error: _angular_core.Signal<string | null>;
     readonly passwordVisible: _angular_core.WritableSignal<boolean>;
     readonly selectedLanguage: _angular_core.WritableSignal<string>;
+    private readonly nowMs;
+    readonly rateLimit: _angular_core.Signal<_masterteam_gateway_auth.AuthRateLimit | null>;
+    readonly rateLimitSecondsLeft: _angular_core.Signal<number | null>;
+    readonly rateLimitProgress: _angular_core.Signal<number>;
+    readonly rateLimitCountdownLabel: _angular_core.Signal<string>;
+    readonly isRateLimited: _angular_core.Signal<boolean>;
+    readonly submitDisabled: _angular_core.Signal<boolean>;
     private readonly loginOptions;
     private readonly defaultDisplayData;
     private readonly loginData;
@@ -567,5 +606,5 @@ declare class GatewaySsoButtons implements OnInit {
     static ɵcmp: _angular_core.ɵɵComponentDeclaration<GatewaySsoButtons, "mt-gateway-sso-buttons", never, { "dividerLabel": { "alias": "dividerLabel"; "required": false; "isSignal": true; }; }, {}, never, never, true, never>;
 }
-export { AUTH_STATE_DEFAULTS, ClearError, ClearPendingMfa, ExchangeSsoCode, GATEWAY_AUTH_ACCESS_TOKEN_REFRESH_SKEW_MS, GATEWAY_AUTH_DEVICE_TOKEN, GATEWAY_AUTH_DEVICE_TOKEN_STORAGE_KEY, GATEWAY_AUTH_ENDPOINTS, GATEWAY_AUTH_NGSW_BYPASS_PARAM, GATEWAY_AUTH_OPTIONS, GATEWAY_AUTH_RETRY_CONTEXT, GatewayAuthFacade, GatewayAuthState, GatewayLoginPage, GatewayMfa, GatewaySsoButtons, GatewaySsoCallback, GatewaySsoSession, LoadSsoProviders, Login, LoginFailure, LoginSuccess, Logout, ResendMfa, StartSso, UpdateTokens, UpdateUserData, VerifyMfa, buildGatewayUrl, buildSsoStartUrl, createSecureClientState, gatewayAuthInterceptor, getGatewayErrorMessage, hasGatewayTokens, isExpired, isGatewayAuthRequestUrl, mapGatewayTokens, mapGatewayUser, normalizeGatewayBase, readPersistedGatewayAuthTokens, resolveAccessTokenRefreshSkewMs, resolveApiDateValue, resolveGatewayAuthPath, resolveGatewayDeviceToken, sanitizePersistedAuthState, withGatewayAuthNgswBypass };
-export type { ApiDateValue, AuthLoginData, AuthRefreshData, AuthStateModel, AuthTokens, BuildSsoStartUrlOptions, GatewayApiDateValue, GatewayAuthHookResult, GatewayAuthOptions, GatewayAuthTokens, GatewayDeviceTokenOption, GatewayExternalTokenExchangeRequest, GatewayLoginLanguageOption, GatewayLoginPageOptions, GatewayLoginRequest, GatewayLoginResponse, GatewayLogoutRequest, GatewayMappedTokens, GatewayMappedUser, GatewayNafathStartData, GatewayNafathStartRequest, GatewayNafathStatusData, GatewayNafathStatusRequest, GatewayPlatform, GatewayRefreshData, GatewayRefreshRequest, GatewayResendMfaRequest, GatewayResponse, GatewaySsoExchangeRequest, GatewaySsoFlow, GatewaySsoProtocol, GatewaySsoProvider, GatewaySsoProvidersData, GatewayTwoFactorChallenge, GatewayUserDetails, GatewayVerifyMfaRequest, LoginRequest, Response, SsoProvider, TwoFactorChallenge, User, UserDetails };
+export { AUTH_STATE_DEFAULTS, ClearError, ClearPendingMfa, ClearRateLimit, ExchangeSsoCode, GATEWAY_AUTH_ACCESS_TOKEN_REFRESH_SKEW_MS, GATEWAY_AUTH_DEVICE_TOKEN, GATEWAY_AUTH_DEVICE_TOKEN_STORAGE_KEY, GATEWAY_AUTH_ENDPOINTS, GATEWAY_AUTH_NGSW_BYPASS_PARAM, GATEWAY_AUTH_OPTIONS, GATEWAY_AUTH_RETRY_CONTEXT, GATEWAY_RATE_LIMIT_ERROR_CODE, GATEWAY_RATE_LIMIT_STATUS, GatewayAuthFacade, GatewayAuthState, GatewayLoginPage, GatewayMfa, GatewaySsoButtons, GatewaySsoCallback, GatewaySsoSession, LoadSsoProviders, Login, LoginFailure, LoginSuccess, Logout, ResendMfa, SetRateLimit, StartSso, UpdateTokens, UpdateUserData, VerifyMfa, buildGatewayUrl, buildSsoStartUrl, createSecureClientState, extractGatewayRateLimitInfo, gatewayAuthInterceptor, getGatewayErrorMessage, hasGatewayTokens, isExpired, isGatewayAuthRequestUrl, mapGatewayTokens, mapGatewayUser, normalizeGatewayBase, readPersistedGatewayAuthTokens, resolveAccessTokenRefreshSkewMs, resolveApiDateValue, resolveGatewayAuthPath, resolveGatewayDeviceToken, sanitizePersistedAuthState, withGatewayAuthNgswBypass };
+export type { ApiDateValue, AuthLoginData, AuthRateLimit, AuthRateLimitScope, AuthRefreshData, AuthStateModel, AuthTokens, BuildSsoStartUrlOptions, GatewayApiDateValue, GatewayAuthHookResult, GatewayAuthOptions, GatewayAuthTokens, GatewayDeviceTokenOption, GatewayExternalTokenExchangeRequest, GatewayLoginLanguageOption, GatewayLoginPageOptions, GatewayLoginRequest, GatewayLoginResponse, GatewayLogoutRequest, GatewayMappedTokens, GatewayMappedUser, GatewayNafathStartData, GatewayNafathStartRequest, GatewayNafathStatusData, GatewayNafathStatusRequest, GatewayPlatform, GatewayRateLimitInfo, GatewayRefreshData, GatewayRefreshRequest, GatewayResendMfaRequest, GatewayResponse, GatewaySsoExchangeRequest, GatewaySsoFlow, GatewaySsoProtocol, GatewaySsoProvider, GatewaySsoProvidersData, GatewayTwoFactorChallenge, GatewayUserDetails, GatewayVerifyMfaRequest, LoginRequest, Response, SsoProvider, TwoFactorChallenge, User, UserDetails };