@mondomob/gae-node-nestjs 12.0.0-alpha-2 → 12.0.0-alpha-3

package/dist/_test/mocks.d.ts

@@ -0,0 +1,9 @@
+import { Configuration, Context, MailSender } from '..';
+import { Options } from 'nodemailer/lib/mailer';
+export declare const testConfiguration: (overrides?: Partial<Configuration>) => Configuration;
+export declare const mockContext: () => Context<import("..").IUser>;
+export declare class MockMailSender implements MailSender {
+    send(context: Context, mailOptions: Options): Promise<void>;
+}
+export declare const isMock: (obj: any) => boolean;
+export declare const partialInstance: <T>(props?: Partial<T>) => T;

package/dist/_test/mocks.js

@@ -0,0 +1,27 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.partialInstance = exports.isMock = exports.MockMailSender = exports.mockContext = exports.testConfiguration = void 0;
+const ts_mockito_1 = require("ts-mockito");
+const loader_1 = require("../datastore/loader");
+const testConfiguration = (overrides) => (Object.assign({ auth: {}, bucket: 'required but not important for test', environment: 'required but not important for test', gmailUser: 'required but not important for test', host: 'required but not important for test', location: 'required but not important for test', projectId: 'required but not important for test', systemSecret: Buffer.from([]), isDevelopment() {
+        return true;
+    } }, overrides));
+exports.testConfiguration = testConfiguration;
+const mockContext = () => {
+    const datastoreLoader = (0, ts_mockito_1.mock)(loader_1.DatastoreLoader);
+    const context = {
+        datastore: (0, ts_mockito_1.instance)(datastoreLoader),
+    };
+    (0, ts_mockito_1.when)(datastoreLoader.inTransaction((0, ts_mockito_1.anyFunction)())).thenCall((cb) => cb(context));
+    return context;
+};
+exports.mockContext = mockContext;
+class MockMailSender {
+    async send(context, mailOptions) { }
+}
+exports.MockMailSender = MockMailSender;
+const isMock = (obj) => '__tsmockitoMocker' in obj;
+exports.isMock = isMock;
+const partialInstance = (props = {}) => (Object.assign({}, props));
+exports.partialInstance = partialInstance;
+//# sourceMappingURL=mocks.js.map

package/dist/_test/mocks.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mocks.js","sourceRoot":"","sources":["../../src/_test/mocks.ts"],"names":[],"mappings":";;;AAAA,2CAA+D;AAC/D,gDAAsD;AAI/C,MAAM,iBAAiB,GAAG,CAAC,SAAkC,EAAiB,EAAE,CAAC,iBACtF,IAAI,EAAE,EAAE,EACR,MAAM,EAAE,qCAAqC,EAC7C,WAAW,EAAE,qCAAqC,EAClD,SAAS,EAAE,qCAAqC,EAChD,IAAI,EAAE,qCAAqC,EAC3C,QAAQ,EAAE,qCAAqC,EAC/C,SAAS,EAAE,qCAAqC,EAChD,YAAY,EAAE,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,EAC7B,aAAa;QACX,OAAO,IAAI,CAAC;IACd,CAAC,IACE,SAAS,EACZ,CAAC;AAbU,QAAA,iBAAiB,qBAa3B;AAEI,MAAM,WAAW,GAAG,GAAG,EAAE;IAC9B,MAAM,eAAe,GAAG,IAAA,iBAAI,EAAC,wBAAe,CAAC,CAAC;IAE9C,MAAM,OAAO,GAAG;QACd,SAAS,EAAE,IAAA,qBAAQ,EAAC,eAAe,CAAC;KAC1B,CAAC;IAEb,IAAA,iBAAI,EAAC,eAAe,CAAC,aAAa,CAAC,IAAA,wBAAW,GAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAO,EAAE,EAAE,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IAEtF,OAAO,OAAO,CAAC;AACjB,CAAC,CAAC;AAVW,QAAA,WAAW,eAUtB;AAEF,MAAa,cAAc;IACzB,KAAK,CAAC,IAAI,CAAC,OAAgB,EAAE,WAAoB,IAAkB,CAAC;CACrE;AAFD,wCAEC;AAEM,MAAM,MAAM,GAAG,CAAC,GAAQ,EAAE,EAAE,CAAC,mBAAmB,IAAI,GAAG,CAAC;AAAlD,QAAA,MAAM,UAA4C;AAaxD,MAAM,eAAe,GAAG,CAAI,QAAoB,EAAE,EAAK,EAAE,CAAC,CAAC,kBAAK,KAAK,CAAQ,CAAA,CAAC;AAAxE,QAAA,eAAe,mBAAyD"}

package/dist/_test/request-scope-test-utils.d.ts

@@ -0,0 +1,3 @@
+import { RequestScopeInterceptor } from '../request-scope';
+import { Request } from 'express';
+export declare const interceptorTest: <T extends Request>(interceptor: RequestScopeInterceptor, req: T, testAssertions: () => void) => void;

package/dist/_test/request-scope-test-utils.js

@@ -0,0 +1,18 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.interceptorTest = void 0;
+const ts_mockito_1 = require("ts-mockito");
+const request_scope_middleware_1 = require("../request-scope/request-scope.middleware");
+const mocks_1 = require("./mocks");
+const configProvider = (0, mocks_1.partialInstance)({ requestScope: { enabled: true } });
+const interceptorTest = (interceptor, req, testAssertions) => {
+    const request = (0, mocks_1.isMock)(req) ? (0, ts_mockito_1.instance)(req) : req;
+    let nextCalled = false;
+    new request_scope_middleware_1.RequestScopeMiddleware(configProvider, [interceptor]).use(request, (0, ts_mockito_1.instance)((0, ts_mockito_1.mock)()), () => {
+        nextCalled = true;
+        testAssertions();
+    });
+    expect(nextCalled).toBe(true);
+};
+exports.interceptorTest = interceptorTest;
+//# sourceMappingURL=request-scope-test-utils.js.map

package/dist/_test/request-scope-test-utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"request-scope-test-utils.js","sourceRoot":"","sources":["../../src/_test/request-scope-test-utils.ts"],"names":[],"mappings":";;;AAAA,2CAA4C;AAE5C,wFAAmF;AACnF,mCAAkD;AAIlD,MAAM,cAAc,GAAG,IAAA,uBAAe,EAAgB,EAAE,YAAY,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC;AAEpF,MAAM,eAAe,GAAG,CAC7B,WAAoC,EACpC,GAAM,EACN,cAA0B,EAC1B,EAAE;IACF,MAAM,OAAO,GAAG,IAAA,cAAM,EAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAA,qBAAQ,EAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC;IAClD,IAAI,UAAU,GAAG,KAAK,CAAC;IACvB,IAAI,iDAAsB,CAAC,cAAc,EAAE,CAAC,WAAW,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,IAAA,qBAAQ,EAAC,IAAA,iBAAI,GAAY,CAAC,EAAE,GAAG,EAAE;QACtG,UAAU,GAAG,IAAI,CAAC;QAClB,cAAc,EAAE,CAAC;IACnB,CAAC,CAAC,CAAC;IACH,MAAM,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAChC,CAAC,CAAC;AAZW,QAAA,eAAe,mBAY1B"}

package/dist/auth/auth-user.model.d.ts

@@ -0,0 +1,9 @@
+declare class Credentials {
+    username: string;
+    type: string;
+}
+export declare class AuthUser {
+    credentials?: Credentials;
+    roles: readonly string[];
+}
+export {};

package/dist/auth/auth-user.model.js

@@ -0,0 +1,33 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthUser = void 0;
+const tslib_1 = require("tslib");
+const graphql_1 = require("@nestjs/graphql");
+let Credentials = class Credentials {
+};
+tslib_1.__decorate([
+    (0, graphql_1.Field)(),
+    tslib_1.__metadata("design:type", String)
+], Credentials.prototype, "username", void 0);
+tslib_1.__decorate([
+    (0, graphql_1.Field)(),
+    tslib_1.__metadata("design:type", String)
+], Credentials.prototype, "type", void 0);
+Credentials = tslib_1.__decorate([
+    (0, graphql_1.ObjectType)()
+], Credentials);
+let AuthUser = class AuthUser {
+};
+exports.AuthUser = AuthUser;
+tslib_1.__decorate([
+    (0, graphql_1.Field)(),
+    tslib_1.__metadata("design:type", Credentials)
+], AuthUser.prototype, "credentials", void 0);
+tslib_1.__decorate([
+    (0, graphql_1.Field)(() => [String]),
+    tslib_1.__metadata("design:type", Array)
+], AuthUser.prototype, "roles", void 0);
+exports.AuthUser = AuthUser = tslib_1.__decorate([
+    (0, graphql_1.ObjectType)()
+], AuthUser);
+//# sourceMappingURL=auth-user.model.js.map

package/dist/auth/auth-user.model.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-user.model.js","sourceRoot":"","sources":["../../src/auth/auth-user.model.ts"],"names":[],"mappings":";;;;AAAA,6CAAoD;AAGpD,IAAM,WAAW,GAAjB,MAAM,WAAW;CAKhB,CAAA;AAHC;IADC,IAAA,eAAK,GAAE;;6CACS;AAEjB;IADC,IAAA,eAAK,GAAE;;yCACK;AAJT,WAAW;IADhB,IAAA,oBAAU,GAAE;GACP,WAAW,CAKhB;AAGM,IAAM,QAAQ,GAAd,MAAM,QAAQ;CAKpB,CAAA;AALY,4BAAQ;AAEnB;IADC,IAAA,eAAK,GAAE;sCACM,WAAW;6CAAC;AAE1B;IADC,IAAA,eAAK,EAAC,GAAG,EAAE,CAAC,CAAC,MAAO,CAAC,CAAC;;uCACE;mBAJd,QAAQ;IADpB,IAAA,oBAAU,GAAE;GACA,QAAQ,CAKpB"}

package/dist/auth/auth.callbacks.d.ts

@@ -0,0 +1,8 @@
+import { Request } from 'express';
+export declare const AUTH_CALLBACKS = "AuthCallbacks";
+export interface AuthCallbacks {
+    buildUserRolesList?(authType: string, profileData: any): string[];
+    buildUserPropertiesObject?(authType: string, profileData: any): any;
+    buildAuthenticationOptions?(authType: string, req: Request, defaultAuthenticateOptions: any): any;
+    getLoginIdentifier?(authType: string, authToken: any): string;
+}

package/dist/auth/auth.callbacks.js

@@ -0,0 +1,5 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AUTH_CALLBACKS = void 0;
+exports.AUTH_CALLBACKS = 'AuthCallbacks';
+//# sourceMappingURL=auth.callbacks.js.map

package/dist/auth/auth.callbacks.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.callbacks.js","sourceRoot":"","sources":["../../src/auth/auth.callbacks.ts"],"names":[],"mappings":";;;AAEa,QAAA,cAAc,GAAG,eAAe,CAAC"}

package/dist/auth/auth.configurer.d.ts

@@ -0,0 +1,35 @@
+import { Request } from 'express';
+import { Profile } from 'passport-auth0';
+import { IVerifyOptions } from 'passport-local';
+import { Configuration } from '../configuration';
+import { IUser } from '../datastore/context';
+import { DatastoreProvider } from '../datastore/datastore.provider';
+import { AuthCallbacks } from './auth.callbacks';
+import { AuthService } from './auth.service';
+export declare class AuthConfigurer {
+    private readonly configuration;
+    private readonly authService;
+    private readonly authCallbacks;
+    private readonly datastore;
+    private readonly logger;
+    constructor(datastoreProvider: DatastoreProvider, configuration: Configuration, authService: AuthService, authCallbacks: AuthCallbacks);
+    private init;
+    beginAuthenticateGoogle(): any;
+    completeAuthenticateGoogle(): any;
+    beginAuthenticateSaml(): any;
+    completeAuthenticateSaml(): any;
+    beginAuthenticateOidc(): any;
+    completeAuthenticateOidc(): any;
+    beginAuthenticateAuth0(req: Request): any;
+    completeAuthenticateAuth0(req: Request): any;
+    getSignoutUrlAuth0(): string;
+    authenticateLocal(): any;
+    authenticateFake(): any;
+    validate: (username: string, password: string, done: (error: Error | null, user: IUser | false) => void) => Promise<void>;
+    validateFakeLogin: (req: Request, username: string, password: string, done: (error: Error | null, user: IUser | false) => void) => Promise<void>;
+    validateGmail: (accessToken: string, refreshToken: string, profile: object, done: (error: Error | null, user: IUser | false) => void) => Promise<void>;
+    validateSaml: (profile: any, done: any) => Promise<void>;
+    validateOidc: (_issuer: any, _sub: any, profile: any, _accessToken: any, _refreshToken: any, done: (error: Error | null, user: IUser | false) => void) => Promise<void>;
+    validateAuth0: (accessToken: string, refreshToken: string, extraParams: any, profile: Profile, done: (error: Error | null, user: IUser | false) => void) => Promise<void>;
+    validateAuth: (done: (error: Error | null, user: IUser | false, options?: IVerifyOptions) => void, auth: () => Promise<IUser>) => Promise<void>;
+}

package/dist/auth/auth.configurer.js

@@ -0,0 +1,212 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthConfigurer = void 0;
+const tslib_1 = require("tslib");
+const common_1 = require("@nestjs/common");
+const passport_saml_1 = require("@node-saml/passport-saml");
+const jsonwebtoken_1 = require("jsonwebtoken");
+const lodash_1 = require("lodash");
+const passport = require("passport");
+const passport_auth0_1 = require("passport-auth0");
+const passport_google_oauth20_1 = require("passport-google-oauth20");
+const passport_local_1 = require("passport-local");
+const passport_openidconnect_1 = require("passport-openidconnect");
+const context_1 = require("../datastore/context");
+const datastore_provider_1 = require("../datastore/datastore.provider");
+const logging_1 = require("../logging");
+const auth_callbacks_1 = require("./auth.callbacks");
+const auth_service_1 = require("./auth.service");
+const user_service_1 = require("./user.service");
+const GOOGLE_SIGNIN = 'google';
+const SAML_SIGNIN = 'saml';
+const AUTH0_SIGNIN = 'auth0';
+const OIDC_SIGNIN = 'oidc';
+const LOCAL_SIGNIN = 'local-signin';
+const FAKE_SIGNIN = 'fake-signin';
+const DEFAULT_FAILURE_REDIRECT = '/';
+let AuthConfigurer = class AuthConfigurer {
+    constructor(datastoreProvider, configuration, authService, authCallbacks) {
+        this.configuration = configuration;
+        this.authService = authService;
+        this.authCallbacks = authCallbacks;
+        this.validate = async (username, password, done) => this.validateAuth(done, () => this.authService.validateUser((0, context_1.newContext)(this.datastore), username, password));
+        this.validateFakeLogin = async (req, username, password, done) => this.validateAuth(done, () => this.authService.validateFakeLogin((0, context_1.newContext)(this.datastore), req.headers['x-fake-secret'], username, (0, lodash_1.get)(req, 'body.name', ''), (0, lodash_1.get)(req, 'body.roles', []), (0, lodash_1.get)(req, 'body.orgId', ''), (0, lodash_1.get)(req, 'body.props', {})));
+        this.validateGmail = async (accessToken, refreshToken, profile, done) => this.validateAuth(done, () => this.authService.validateUserGoogle((0, context_1.newContext)(this.datastore), profile));
+        this.validateSaml = (profile, done) => this.validateAuth(done, () => this.authService.validateUserSaml((0, context_1.newContext)(this.datastore), profile));
+        this.validateOidc = (_issuer, _sub, profile, _accessToken, _refreshToken, done) => this.validateAuth(done, () => this.authService.validateUserOidc((0, context_1.newContext)(this.datastore), profile, !!this.configuration.auth.oidc.replaceAuth, this.configuration.auth.oidc.newUserRoles));
+        this.validateAuth0 = (accessToken, refreshToken, extraParams, profile, done) => this.validateAuth(done, () => {
+            const decoded = (0, jsonwebtoken_1.decode)(extraParams.id_token);
+            const { email, name } = decoded;
+            const normalisedEmail = (0, user_service_1.normaliseEmail)(email);
+            const namespace = this.configuration.auth.auth0.namespace;
+            const roles = decoded[`${namespace}roles`];
+            const orgId = decoded[`${namespace}orgId`];
+            let id = normalisedEmail;
+            if (this.authCallbacks && this.authCallbacks.getLoginIdentifier) {
+                id = this.authCallbacks.getLoginIdentifier(AUTH0_SIGNIN, decoded);
+            }
+            let props = decoded[`${namespace}props`];
+            if (this.authCallbacks && this.authCallbacks.buildUserPropertiesObject) {
+                props = this.authCallbacks.buildUserPropertiesObject(AUTH0_SIGNIN, decoded);
+            }
+            if (!roles || !roles.length) {
+                this.logger.warn(`No roles were provided by auth0 for ${normalisedEmail}`);
+            }
+            return this.authService.validateUserAuth0((0, context_1.newContext)(this.datastore), id, normalisedEmail, name, orgId, roles, props);
+        });
+        this.validateAuth = async (done, auth) => {
+            try {
+                const user = await auth();
+                if (!user) {
+                    return done(null, false, new common_1.UnauthorizedException());
+                }
+                done(null, user);
+            }
+            catch (ex) {
+                this.logger.error(ex);
+                if (ex instanceof auth_service_1.AuthenticationFailedException) {
+                    done(null, false, ex);
+                }
+                else {
+                    done(new common_1.UnauthorizedException(ex, 'Internal error'), false);
+                }
+            }
+        };
+        this.datastore = datastoreProvider.datastore;
+        this.logger = (0, logging_1.createLogger)('auth');
+        this.init();
+    }
+    init() {
+        passport.serializeUser((user, done) => {
+            done(null, { id: user.id });
+        });
+        passport.deserializeUser(async (user, done) => {
+            done(null, { id: user.id });
+        });
+        if (this.configuration.auth.local && this.configuration.auth.local.enabled) {
+            passport.use(LOCAL_SIGNIN, new passport_local_1.Strategy({}, this.validate));
+        }
+        if (this.configuration.auth.fake && this.configuration.auth.fake.enabled) {
+            if (!this.configuration.isDevelopment()) {
+                if (!this.configuration.auth.fake.secret) {
+                    throw new Error('Fake login must have secret configured in non-development environments');
+                }
+                this.logger.warn('Fake login is enabled');
+            }
+            passport.use(FAKE_SIGNIN, new passport_local_1.Strategy({ passReqToCallback: true }, this.validateFakeLogin));
+        }
+        if (this.configuration.auth.google && this.configuration.auth.google.enabled) {
+            passport.use(new passport_google_oauth20_1.Strategy({
+                clientID: this.configuration.auth.google.clientId,
+                clientSecret: this.configuration.auth.google.secret,
+                callbackURL: `${this.configuration.host}/auth/signin/google/callback`,
+                userProfileURL: 'https://www.googleapis.com/oauth2/v3/userinfo',
+            }, this.validateGmail));
+        }
+        if (this.configuration.auth.saml && this.configuration.auth.saml.enabled) {
+            passport.use(SAML_SIGNIN, new passport_saml_1.Strategy({
+                entryPoint: this.configuration.auth.saml.identityProviderUrl,
+                callbackUrl: `${this.configuration.host}/auth/signin/saml/acs`,
+                issuer: this.configuration.host,
+                audience: this.configuration.host,
+                acceptedClockSkewMs: 5000,
+                idpCert: this.configuration.auth.saml.cert,
+                wantAuthnResponseSigned: false,
+            }, this.validateSaml, () => undefined));
+        }
+        if (this.configuration.auth.auth0 && this.configuration.auth.auth0.enabled) {
+            passport.use(AUTH0_SIGNIN, new passport_auth0_1.Strategy({
+                domain: this.configuration.auth.auth0.domain,
+                clientID: this.configuration.auth.auth0.clientId,
+                clientSecret: this.configuration.auth.auth0.secret,
+                callbackURL: `${this.configuration.host}/auth/signin/auth0/callback`,
+            }, this.validateAuth0));
+        }
+        if (this.configuration.auth.oidc && this.configuration.auth.oidc.enabled) {
+            const { authUrl, clientId, enabled, issuer, secret, tokenUrl, userInfoUrl } = this.configuration.auth.oidc;
+            passport.use(OIDC_SIGNIN, new passport_openidconnect_1.Strategy({
+                issuer,
+                authorizationURL: authUrl,
+                tokenURL: tokenUrl,
+                userInfoURL: userInfoUrl,
+                clientID: clientId,
+                clientSecret: secret,
+                callbackURL: `${this.configuration.host}/auth/signin/oidc/callback`,
+                scope: 'profile email',
+            }, this.validateOidc));
+            this.logger.info(`Configured ${OIDC_SIGNIN} authentication strategy`);
+        }
+    }
+    beginAuthenticateGoogle() {
+        const options = {
+            scope: ['profile', 'email'],
+        };
+        return passport.authenticate(GOOGLE_SIGNIN, options);
+    }
+    completeAuthenticateGoogle() {
+        return passport.authenticate(GOOGLE_SIGNIN, {
+            failureRedirect: this.configuration.auth.google.failureRedirect || DEFAULT_FAILURE_REDIRECT,
+        });
+    }
+    beginAuthenticateSaml() {
+        return passport.authenticate(SAML_SIGNIN, {
+            failureRedirect: this.configuration.auth.saml.failureRedirect || DEFAULT_FAILURE_REDIRECT,
+        });
+    }
+    completeAuthenticateSaml() {
+        return passport.authenticate(SAML_SIGNIN, {
+            failureRedirect: this.configuration.auth.saml.failureRedirect || DEFAULT_FAILURE_REDIRECT,
+        });
+    }
+    beginAuthenticateOidc() {
+        return passport.authenticate(OIDC_SIGNIN, {
+            scope: ['openid', 'profile', 'email'],
+        });
+    }
+    completeAuthenticateOidc() {
+        return passport.authenticate(OIDC_SIGNIN, {
+            failureRedirect: this.configuration.auth.oidc.failureRedirect || DEFAULT_FAILURE_REDIRECT,
+        });
+    }
+    beginAuthenticateAuth0(req) {
+        const defaultOptions = {
+            scope: ['openid', 'email', 'profile'],
+        };
+        let options;
+        if (this.authCallbacks && this.authCallbacks.buildAuthenticationOptions) {
+            options = this.authCallbacks.buildAuthenticationOptions(AUTH0_SIGNIN, req, defaultOptions);
+        }
+        return passport.authenticate(AUTH0_SIGNIN, options || defaultOptions);
+    }
+    completeAuthenticateAuth0(req) {
+        const defaultOptions = {
+            failureRedirect: this.configuration.auth.auth0.failureRedirect || DEFAULT_FAILURE_REDIRECT,
+        };
+        let options;
+        if (this.authCallbacks && this.authCallbacks.buildAuthenticationOptions) {
+            options = this.authCallbacks.buildAuthenticationOptions(AUTH0_SIGNIN, req, defaultOptions);
+        }
+        return passport.authenticate(AUTH0_SIGNIN, options || defaultOptions);
+    }
+    getSignoutUrlAuth0() {
+        const clientId = this.configuration.auth.auth0.clientId;
+        const domain = this.configuration.auth.auth0.domain;
+        const host = this.configuration.host;
+        return `https://${domain}/v2/logout?client_id=${clientId}&returnTo=${host}`;
+    }
+    authenticateLocal() {
+        return passport.authenticate(LOCAL_SIGNIN, {});
+    }
+    authenticateFake() {
+        return passport.authenticate(FAKE_SIGNIN, {});
+    }
+};
+exports.AuthConfigurer = AuthConfigurer;
+exports.AuthConfigurer = AuthConfigurer = tslib_1.__decorate([
+    (0, common_1.Injectable)(),
+    tslib_1.__param(1, (0, common_1.Inject)('Configuration')),
+    tslib_1.__param(3, (0, common_1.Optional)()),
+    tslib_1.__param(3, (0, common_1.Inject)(auth_callbacks_1.AUTH_CALLBACKS)),
+    tslib_1.__metadata("design:paramtypes", [datastore_provider_1.DatastoreProvider, Object, auth_service_1.AuthService, Object])
+], AuthConfigurer);
+//# sourceMappingURL=auth.configurer.js.map

package/dist/auth/auth.configurer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.configurer.js","sourceRoot":"","sources":["../../src/auth/auth.configurer.ts"],"names":[],"mappings":";;;;AACA,2CAAqF;AACrF,4DAAoE;AAEpE,+CAAsC;AACtC,mCAA6B;AAC7B,qCAAqC;AACrC,mDAAoE;AACpE,qEAAqE;AACrE,mDAA2E;AAC3E,mEAAkE;AAElE,kDAAyD;AACzD,wEAAoE;AACpE,wCAAkD;AAClD,qDAAiE;AACjE,iDAA4E;AAC5E,iDAAgD;AAEhD,MAAM,aAAa,GAAG,QAAQ,CAAC;AAC/B,MAAM,WAAW,GAAG,MAAM,CAAC;AAC3B,MAAM,YAAY,GAAG,OAAO,CAAC;AAC7B,MAAM,WAAW,GAAG,MAAM,CAAC;AAC3B,MAAM,YAAY,GAAG,cAAc,CAAC;AACpC,MAAM,WAAW,GAAG,aAAa,CAAC;AAElC,MAAM,wBAAwB,GAAG,GAAG,CAAC;AAG9B,IAAM,cAAc,GAApB,MAAM,cAAc;IAIzB,YACE,iBAAoC,EACX,aAA6C,EACrD,WAAwB,EACL,aAA6C;QAFvC,kBAAa,GAAb,aAAa,CAAe;QACrD,gBAAW,GAAX,WAAW,CAAa;QACY,kBAAa,GAAb,aAAa,CAAe;QA8KnF,aAAQ,GAAG,KAAK,EAAE,QAAgB,EAAE,QAAgB,EAAE,IAAwD,EAAE,EAAE,CAChH,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,YAAY,CAAC,IAAA,oBAAU,EAAC,IAAI,CAAC,SAAS,CAAC,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC;QAE/G,sBAAiB,GAAG,KAAK,EACvB,GAAY,EACZ,QAAgB,EAChB,QAAgB,EAChB,IAAwD,EACxD,EAAE,CACF,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,GAAG,EAAE,CAC3B,IAAI,CAAC,WAAW,CAAC,iBAAiB,CAChC,IAAA,oBAAU,EAAC,IAAI,CAAC,SAAS,CAAC,EAC1B,GAAG,CAAC,OAAO,CAAC,eAAe,CAAC,EAC5B,QAAQ,EACR,IAAA,YAAG,EAAC,GAAG,EAAE,WAAW,EAAE,EAAE,CAAC,EACzB,IAAA,YAAG,EAAC,GAAG,EAAE,YAAY,EAAE,EAAE,CAAC,EAC1B,IAAA,YAAG,EAAC,GAAG,EAAE,YAAY,EAAE,EAAE,CAAC,EAC1B,IAAA,YAAG,EAAC,GAAG,EAAE,YAAY,EAAE,EAAE,CAAC,CAC3B,CACF,CAAC;QAEJ,kBAAa,GAAG,KAAK,EACnB,WAAmB,EACnB,YAAoB,EACpB,OAAe,EACf,IAAwD,EACxD,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,kBAAkB,CAAC,IAAA,oBAAU,EAAC,IAAI,CAAC,SAAS,CAAC,EAAE,OAAO,CAAC,CAAC,CAAC;QAE7G,iBAAY,GAAG,CAAC,OAAY,EAAE,IAAS,EAAE,EAAE,CACzC,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAAC,IAAA,oBAAU,EAAC,IAAI,CAAC,SAAS,CAAC,EAAE,OAAO,CAAC,CAAC,CAAC;QAExG,iBAAY,GAAG,CACb,OAAY,EACZ,IAAS,EACT,OAAY,EACZ,YAAiB,EACjB,aAAkB,EAClB,IAAwD,EACxD,EAAE,CACF,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,GAAG,EAAE,CAC3B,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAC/B,IAAA,oBAAU,EAAC,IAAI,CAAC,SAAS,CAAC,EAC1B,OAAO,EACP,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAK,CAAC,WAAW,EAC3C,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAK,CAAC,YAAY,CAC3C,CACF,CAAC;QAEJ,kBAAa,GAAG,CACd,WAAmB,EACnB,YAAoB,EACpB,WAAgB,EAChB,OAAgB,EAChB,IAAwD,EACxD,EAAE,CACF,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,GAAG,EAAE;YAC3B,MAAM,OAAO,GAAQ,IAAA,qBAAM,EAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;YAClD,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC;YAChC,MAAM,eAAe,GAAG,IAAA,6BAAc,EAAC,KAAK,CAAC,CAAC;YAC9C,MAAM,SAAS,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAM,CAAC,SAAS,CAAC;YAC3D,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,SAAS,OAAO,CAAC,CAAC;YAC3C,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,SAAS,OAAO,CAAC,CAAC;YAE3C,IAAI,EAAE,GAAG,eAAe,CAAC;YACzB,IAAI,IAAI,CAAC,aAAa,IAAI,IAAI,CAAC,aAAa,CAAC,kBAAkB,EAAE,CAAC;gBAChE,EAAE,GAAG,IAAI,CAAC,aAAa,CAAC,kBAAkB,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC;YACpE,CAAC;YAED,IAAI,KAAK,GAAG,OAAO,CAAC,GAAG,SAAS,OAAO,CAAC,CAAC;YACzC,IAAI,IAAI,CAAC,aAAa,IAAI,IAAI,CAAC,aAAa,CAAC,yBAAyB,EAAE,CAAC;gBACvE,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,yBAAyB,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC;YAC9E,CAAC;YAED,IAAI,CAAC,KAAK,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;gBAC5B,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,uCAAuC,eAAe,EAAE,CAAC,CAAC;YAC7E,CAAC;YAED,OAAO,IAAI,CAAC,WAAW,CAAC,iBAAiB,CACvC,IAAA,oBAAU,EAAC,IAAI,CAAC,SAAS,CAAC,EAC1B,EAAE,EACF,eAAe,EACf,IAAI,EACJ,KAAK,EACL,KAAK,EACL,KAAK,CACN,CAAC;QACJ,CAAC,CAAC,CAAC;QAEL,iBAAY,GAAG,KAAK,EAClB,IAAkF,EAClF,IAA0B,EAC1B,EAAE;YACF,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,MAAM,IAAI,EAAE,CAAC;gBAC1B,IAAI,CAAC,IAAI,EAAE,CAAC;oBACV,OAAO,IAAI,CAAC,IAAI,EAAE,KAAK,EAAE,IAAI,8BAAqB,EAAE,CAAC,CAAC;gBACxD,CAAC;gBACD,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;YACnB,CAAC;YAAC,OAAO,EAAE,EAAE,CAAC;gBACZ,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;gBACtB,IAAI,EAAE,YAAY,4CAA6B,EAAE,CAAC;oBAChD,IAAI,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC,CAAC;gBACxB,CAAC;qBAAM,CAAC;oBACN,IAAI,CAAC,IAAI,8BAAqB,CAAC,EAAE,EAAE,gBAAgB,CAAC,EAAE,KAAK,CAAC,CAAC;gBAC/D,CAAC;YACH,CAAC;QACH,CAAC,CAAC;QAtRA,IAAI,CAAC,SAAS,GAAG,iBAAiB,CAAC,SAAS,CAAC;QAC7C,IAAI,CAAC,MAAM,GAAG,IAAA,sBAAY,EAAC,MAAM,CAAC,CAAC;QACnC,IAAI,CAAC,IAAI,EAAE,CAAC;IACd,CAAC;IAEO,IAAI;QACV,QAAQ,CAAC,aAAa,CAAC,CAAC,IAAI,EAAE,IAAI,EAAE,EAAE;YACpC,IAAI,CAAC,IAAI,EAAE,EAAE,EAAE,EAAG,IAAuB,CAAC,EAAE,EAAE,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,QAAQ,CAAC,eAAe,CAAC,KAAK,EAAE,IAAoB,EAAE,IAAI,EAAE,EAAE;YAC5D,IAAI,CAAC,IAAI,EAAE,EAAE,EAAE,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;QAC9B,CAAC,CAAC,CAAC;QAEH,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;YAC3E,QAAQ,CAAC,GAAG,CAAC,YAAY,EAAE,IAAI,yBAAa,CAAC,EAAE,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC;QACnE,CAAC;QAED,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YACzE,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,aAAa,EAAE,EAAE,CAAC;gBACxC,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;oBACzC,MAAM,IAAI,KAAK,CAAC,wEAAwE,CAAC,CAAC;gBAC5F,CAAC;gBACD,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;YAC5C,CAAC;YACD,QAAQ,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,yBAAa,CAAC,EAAE,iBAAiB,EAAE,IAAI,EAAE,EAAE,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC;QACpG,CAAC;QAED,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YAC7E,QAAQ,CAAC,GAAG,CACV,IAAI,kCAAc,CAChB;gBACE,QAAQ,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ;gBACjD,YAAY,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM;gBACnD,WAAW,EAAE,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,8BAA8B;gBACrE,cAAc,EAAE,+CAA+C;aAChE,EACD,IAAI,CAAC,aAAa,CACnB,CACF,CAAC;QACJ,CAAC;QAED,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YACzE,QAAQ,CAAC,GAAG,CACV,WAAW,EACX,IAAI,wBAAY,CACd;gBACE,UAAU,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,mBAAmB;gBAC5D,WAAW,EAAE,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,uBAAuB;gBAC9D,MAAM,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI;gBAC/B,QAAQ,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI;gBACjC,mBAAmB,EAAE,IAAI;gBACzB,OAAO,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI;gBAC1C,uBAAuB,EAAE,KAAK;aAC/B,EACD,IAAI,CAAC,YAAY,EACjB,GAAG,EAAE,CAAC,SAAS,CAChB,CACF,CAAC;QACJ,CAAC;QAED,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;YAC3E,QAAQ,CAAC,GAAG,CACV,YAAY,EACZ,IAAI,yBAAa,CACf;gBACE,MAAM,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM;gBAC5C,QAAQ,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ;gBAChD,YAAY,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM;gBAClD,WAAW,EAAE,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,6BAA6B;aACrE,EACD,IAAI,CAAC,aAAa,CACnB,CACF,CAAC;QACJ,CAAC;QAED,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YACzE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,WAAW,EAAE,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC;YAC3G,QAAQ,CAAC,GAAG,CACV,WAAW,EACX,IAAI,iCAAY,CACd;gBACE,MAAM;gBACN,gBAAgB,EAAE,OAAO;gBACzB,QAAQ,EAAE,QAAQ;gBAClB,WAAW,EAAE,WAAW;gBACxB,QAAQ,EAAE,QAAQ;gBAClB,YAAY,EAAE,MAAM;gBACpB,WAAW,EAAE,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,4BAA4B;gBACnE,KAAK,EAAE,eAAe;aACvB,EACD,IAAI,CAAC,YAAY,CAClB,CACF,CAAC;YACF,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,cAAc,WAAW,0BAA0B,CAAC,CAAC;QACxE,CAAC;IACH,CAAC;IAED,uBAAuB;QACrB,MAAM,OAAO,GAAG;YACd,KAAK,EAAE,CAAC,SAAS,EAAE,OAAO,CAAC;SAC5B,CAAC;QACF,OAAO,QAAQ,CAAC,YAAY,CAAC,aAAa,EAAE,OAAO,CAAC,CAAC;IACvD,CAAC;IAED,0BAA0B;QACxB,OAAO,QAAQ,CAAC,YAAY,CAAC,aAAa,EAAE;YAC1C,eAAe,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,MAAO,CAAC,eAAe,IAAI,wBAAwB;SAC7F,CAAC,CAAC;IACL,CAAC;IAED,qBAAqB;QACnB,OAAO,QAAQ,CAAC,YAAY,CAAC,WAAW,EAAE;YACxC,eAAe,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAK,CAAC,eAAe,IAAI,wBAAwB;SAC3F,CAAC,CAAC;IACL,CAAC;IAED,wBAAwB;QACtB,OAAO,QAAQ,CAAC,YAAY,CAAC,WAAW,EAAE;YACxC,eAAe,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAK,CAAC,eAAe,IAAI,wBAAwB;SAC3F,CAAC,CAAC;IACL,CAAC;IAED,qBAAqB;QACnB,OAAO,QAAQ,CAAC,YAAY,CAAC,WAAW,EAAE;YACxC,KAAK,EAAE,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC;SACtC,CAAC,CAAC;IACL,CAAC;IAED,wBAAwB;QACtB,OAAO,QAAQ,CAAC,YAAY,CAAC,WAAW,EAAE;YACxC,eAAe,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAK,CAAC,eAAe,IAAI,wBAAwB;SAC3F,CAAC,CAAC;IACL,CAAC;IAED,sBAAsB,CAAC,GAAY;QACjC,MAAM,cAAc,GAAG;YACrB,KAAK,EAAE,CAAC,QAAQ,EAAE,OAAO,EAAE,SAAS,CAAC;SACtC,CAAC;QACF,IAAI,OAAY,CAAC;QACjB,IAAI,IAAI,CAAC,aAAa,IAAI,IAAI,CAAC,aAAa,CAAC,0BAA0B,EAAE,CAAC;YACxE,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC,0BAA0B,CAAC,YAAY,EAAE,GAAG,EAAE,cAAc,CAAC,CAAC;QAC7F,CAAC;QACD,OAAO,QAAQ,CAAC,YAAY,CAAC,YAAY,EAAE,OAAO,IAAI,cAAc,CAAC,CAAC;IACxE,CAAC;IAED,yBAAyB,CAAC,GAAY;QACpC,MAAM,cAAc,GAAG;YACrB,eAAe,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAM,CAAC,eAAe,IAAI,wBAAwB;SAC5F,CAAC;QACF,IAAI,OAAY,CAAC;QACjB,IAAI,IAAI,CAAC,aAAa,IAAI,IAAI,CAAC,aAAa,CAAC,0BAA0B,EAAE,CAAC;YACxE,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC,0BAA0B,CAAC,YAAY,EAAE,GAAG,EAAE,cAAc,CAAC,CAAC;QAC7F,CAAC;QACD,OAAO,QAAQ,CAAC,YAAY,CAAC,YAAY,EAAE,OAAO,IAAI,cAAc,CAAC,CAAC;IACxE,CAAC;IAED,kBAAkB;QAChB,MAAM,QAAQ,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAM,CAAC,QAAQ,CAAC;QACzD,MAAM,MAAM,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,KAAM,CAAC,MAAM,CAAC;QACrD,MAAM,IAAI,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC;QACrC,OAAO,WAAW,MAAM,wBAAwB,QAAQ,aAAa,IAAI,EAAE,CAAC;IAC9E,CAAC;IAED,iBAAiB;QACf,OAAO,QAAQ,CAAC,YAAY,CAAC,YAAY,EAAE,EAAE,CAAC,CAAC;IACjD,CAAC;IAED,gBAAgB;QACd,OAAO,QAAQ,CAAC,YAAY,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;IAChD,CAAC;CA6GF,CAAA;AAjSY,wCAAc;yBAAd,cAAc;IAD1B,IAAA,mBAAU,GAAE;IAOR,mBAAA,IAAA,eAAM,EAAC,eAAe,CAAC,CAAA;IAEvB,mBAAA,IAAA,iBAAQ,GAAE,CAAA;IAAE,mBAAA,IAAA,eAAM,EAAC,+BAAc,CAAC,CAAA;6CAHhB,sCAAiB,UAEN,0BAAW;GAPhC,cAAc,CAiS1B"}

package/dist/auth/auth.controller.d.ts

@@ -0,0 +1,27 @@
+import { Request, Response } from 'express';
+import { Configuration, Context, InviteUserService } from '..';
+import { AuthConfigurer } from './auth.configurer';
+import { AuthListener } from './auth.listener';
+export declare class AuthController {
+    private readonly authConfigurer;
+    private readonly inviteUserService;
+    private readonly configuration;
+    private readonly authListener;
+    private logger;
+    constructor(authConfigurer: AuthConfigurer, inviteUserService: InviteUserService, configuration: Configuration, authListener: AuthListener);
+    signIn(req: Request, res: Response, next: (err: Error) => void): void;
+    signInFake(req: Request, res: Response, next: (err: Error) => void): void;
+    activate(req: Request, res: Response, next: (err: Error) => void, context: Context): Promise<void>;
+    reInviteUser(req: Request, res: Response, next: (err: Error) => void, context: Context): Promise<void>;
+    signOutLocal(req: Request, res: Response, next: (err: Error) => void): void;
+    signOut(req: Request, res: Response, next: (err: Error) => void): void;
+    signInGoogle(req: Request, res: Response, next: () => void): void;
+    completeSignInGoogle(req: Request, res: Response): void;
+    signInSaml(req: Request, res: Response, next: () => void): void;
+    completeSignInSaml(req: Request, res: Response): void;
+    signInAuth0(req: Request, res: Response, next: () => void): void;
+    signOutAuth0(req: Request, res: Response): void;
+    completeSignInAuth0(req: Request, res: Response): void;
+    signInOidc(req: Request, res: Response, next: () => void): void;
+    completeSignInOidc(req: Request, res: Response): void;
+}