npm - @nauth-toolkit/client - Versions diffs - 0.1.59 → 0.1.60 - Mend

@nauth-toolkit/client 0.1.59 → 0.1.60

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -295,6 +295,21 @@ interface ConfirmForgotPasswordResponse {
     success: boolean;
     mustChangePassword: boolean;
 }
+/**
+ * Reset password with code/token request (generic for both admin-initiated and user-initiated resets).
+ */
+interface ResetPasswordWithCodeRequest {
+    identifier: string;
+    code?: string;
+    token?: string;
+    newPassword: string;
+}
+/**
+ * Reset password with code response.
+ */
+interface ResetPasswordWithCodeResponse {
+    success: boolean;
+}
 /**
  * Social provider identifiers.
@@ -545,6 +560,7 @@ interface NAuthEndpoints {
     requestPasswordChange: string;
     forgotPassword: string;
     confirmForgotPassword: string;
+    confirmAdminResetPassword: string;
     mfaStatus: string;
     mfaDevices: string;
     mfaSetupData: string;
@@ -1363,6 +1379,32 @@ declare class NAuthClient {
      * Confirm a password reset code and set a new password.
      */
     confirmForgotPassword(identifier: string, code: string, newPassword: string): Promise<ConfirmForgotPasswordResponse>;
+    /**
+     * Reset password with code or token (works for both admin-initiated and user-initiated resets).
+     *
+     * Accepts either:
+     * - code: Short numeric code from email/SMS (6-10 digits)
+     * - token: Long hex token from reset link (64 chars)
+     *
+     * WHY: Generic method that works for both admin-initiated (adminResetPassword) and
+     * user-initiated (forgotPassword) password resets. Uses same backend endpoint.
+     *
+     * @param identifier - User identifier (email, username, phone)
+     * @param codeOrToken - Verification code OR token from link (one required)
+     * @param newPassword - New password
+     * @returns Success response
+     * @throws {NAuthClientError} When reset fails
+     *
+     * @example
+     * ```typescript
+     * // With code from email
+     * await client.resetPasswordWithCode('user@example.com', '123456', 'NewPass123!');
+     *
+     * // With token from link
+     * await client.resetPasswordWithCode('user@example.com', '64-char-token', 'NewPass123!');
+     * ```
+     */
+    resetPasswordWithCode(identifier: string, codeOrToken: string, newPassword: string): Promise<ResetPasswordWithCodeResponse>;
     /**
      * Request password change (must change on next login).
      */
@@ -1803,4 +1845,4 @@ declare class FetchAdapter implements HttpAdapter {
     request<T>(config: HttpRequest): Promise<HttpResponse<T>>;
 }
-export { type AuditHistoryResponse, type AuthAuditEvent, type AuthAuditEventStatus, AuthAuditEventType, AuthChallenge, type AuthChallengeEvent, type AuthErrorEvent, type AuthEvent, type AuthEventListener, type AuthEventType, type AuthLoginEvent, type AuthLogoutEvent, type AuthRefreshEvent, type AuthResponse, type AuthResponseContext, type AuthSignupEvent, type AuthSuccessEvent, type AuthUser, type AuthUserSummary, type BackupCodesResponse, type BaseChallengeResponse, BrowserStorage, type ChallengeResponse, ChallengeRouter, type ChangePasswordRequest, type ConfirmForgotPasswordRequest, type ConfirmForgotPasswordResponse, EventEmitter, FetchAdapter, type ForceChangePasswordResponse, type ForgotPasswordRequest, type ForgotPasswordResponse, type GetChallengeDataRequest, type GetChallengeDataResponse, type GetSetupDataRequest, type GetSetupDataResponse, type HttpAdapter, type HttpRequest, type HttpResponse, InMemoryStorage, type LinkedAccountsResponse, type LoginRequest, type LogoutAllRequest, type LogoutRequest, type MFAChallengeMethod, type MFACodeResponse, type MFADevice, type MFADeviceMethod, type MFAMethod, type MFAPasskeyResponse, type MFASetupData, type MFASetupResponse, type MFAStatus, type MfaRoutesConfig, NAuthClient, type NAuthClientConfig, NAuthClientError, type NAuthEndpoints, type NAuthError, NAuthErrorCode, type NAuthRedirectsConfig, type NAuthStorageAdapter, type OAuthCallbackEvent, type OAuthCompletedEvent, type OAuthErrorEvent, type OAuthStartedEvent, type ResendCodeRequest, type ResolvedNAuthClientConfig, type SignupRequest, type SocialLoginOptions, type SocialProvider, type SocialVerifyRequest, type TokenDeliveryMode, type TokenResponse, type UpdateProfileRequest, type VerifyEmailResponse, type VerifyPhoneCodeResponse, type VerifyPhoneCollectResponse, defaultEndpoints, getChallengeInstructions, getMFAMethod, getMaskedDestination, isOTPChallenge, requiresPhoneCollection, resolveConfig };
+export { type AuditHistoryResponse, type AuthAuditEvent, type AuthAuditEventStatus, AuthAuditEventType, AuthChallenge, type AuthChallengeEvent, type AuthErrorEvent, type AuthEvent, type AuthEventListener, type AuthEventType, type AuthLoginEvent, type AuthLogoutEvent, type AuthRefreshEvent, type AuthResponse, type AuthResponseContext, type AuthSignupEvent, type AuthSuccessEvent, type AuthUser, type AuthUserSummary, type BackupCodesResponse, type BaseChallengeResponse, BrowserStorage, type ChallengeResponse, ChallengeRouter, type ChangePasswordRequest, type ConfirmForgotPasswordRequest, type ConfirmForgotPasswordResponse, EventEmitter, FetchAdapter, type ForceChangePasswordResponse, type ForgotPasswordRequest, type ForgotPasswordResponse, type GetChallengeDataRequest, type GetChallengeDataResponse, type GetSetupDataRequest, type GetSetupDataResponse, type HttpAdapter, type HttpRequest, type HttpResponse, InMemoryStorage, type LinkedAccountsResponse, type LoginRequest, type LogoutAllRequest, type LogoutRequest, type MFAChallengeMethod, type MFACodeResponse, type MFADevice, type MFADeviceMethod, type MFAMethod, type MFAPasskeyResponse, type MFASetupData, type MFASetupResponse, type MFAStatus, type MfaRoutesConfig, NAuthClient, type NAuthClientConfig, NAuthClientError, type NAuthEndpoints, type NAuthError, NAuthErrorCode, type NAuthRedirectsConfig, type NAuthStorageAdapter, type OAuthCallbackEvent, type OAuthCompletedEvent, type OAuthErrorEvent, type OAuthStartedEvent, type ResendCodeRequest, type ResetPasswordWithCodeRequest, type ResetPasswordWithCodeResponse, type ResolvedNAuthClientConfig, type SignupRequest, type SocialLoginOptions, type SocialProvider, type SocialVerifyRequest, type TokenDeliveryMode, type TokenResponse, type UpdateProfileRequest, type VerifyEmailResponse, type VerifyPhoneCodeResponse, type VerifyPhoneCollectResponse, defaultEndpoints, getChallengeInstructions, getMFAMethod, getMaskedDestination, isOTPChallenge, requiresPhoneCollection, resolveConfig };

package/dist/index.d.ts CHANGED Viewed

@@ -295,6 +295,21 @@ interface ConfirmForgotPasswordResponse {
     success: boolean;
     mustChangePassword: boolean;
 }
+/**
+ * Reset password with code/token request (generic for both admin-initiated and user-initiated resets).
+ */
+interface ResetPasswordWithCodeRequest {
+    identifier: string;
+    code?: string;
+    token?: string;
+    newPassword: string;
+}
+/**
+ * Reset password with code response.
+ */
+interface ResetPasswordWithCodeResponse {
+    success: boolean;
+}
 /**
  * Social provider identifiers.
@@ -545,6 +560,7 @@ interface NAuthEndpoints {
     requestPasswordChange: string;
     forgotPassword: string;
     confirmForgotPassword: string;
+    confirmAdminResetPassword: string;
     mfaStatus: string;
     mfaDevices: string;
     mfaSetupData: string;
@@ -1363,6 +1379,32 @@ declare class NAuthClient {
      * Confirm a password reset code and set a new password.
      */
     confirmForgotPassword(identifier: string, code: string, newPassword: string): Promise<ConfirmForgotPasswordResponse>;
+    /**
+     * Reset password with code or token (works for both admin-initiated and user-initiated resets).
+     *
+     * Accepts either:
+     * - code: Short numeric code from email/SMS (6-10 digits)
+     * - token: Long hex token from reset link (64 chars)
+     *
+     * WHY: Generic method that works for both admin-initiated (adminResetPassword) and
+     * user-initiated (forgotPassword) password resets. Uses same backend endpoint.
+     *
+     * @param identifier - User identifier (email, username, phone)
+     * @param codeOrToken - Verification code OR token from link (one required)
+     * @param newPassword - New password
+     * @returns Success response
+     * @throws {NAuthClientError} When reset fails
+     *
+     * @example
+     * ```typescript
+     * // With code from email
+     * await client.resetPasswordWithCode('user@example.com', '123456', 'NewPass123!');
+     *
+     * // With token from link
+     * await client.resetPasswordWithCode('user@example.com', '64-char-token', 'NewPass123!');
+     * ```
+     */
+    resetPasswordWithCode(identifier: string, codeOrToken: string, newPassword: string): Promise<ResetPasswordWithCodeResponse>;
     /**
      * Request password change (must change on next login).
      */
@@ -1803,4 +1845,4 @@ declare class FetchAdapter implements HttpAdapter {
     request<T>(config: HttpRequest): Promise<HttpResponse<T>>;
 }
-export { type AuditHistoryResponse, type AuthAuditEvent, type AuthAuditEventStatus, AuthAuditEventType, AuthChallenge, type AuthChallengeEvent, type AuthErrorEvent, type AuthEvent, type AuthEventListener, type AuthEventType, type AuthLoginEvent, type AuthLogoutEvent, type AuthRefreshEvent, type AuthResponse, type AuthResponseContext, type AuthSignupEvent, type AuthSuccessEvent, type AuthUser, type AuthUserSummary, type BackupCodesResponse, type BaseChallengeResponse, BrowserStorage, type ChallengeResponse, ChallengeRouter, type ChangePasswordRequest, type ConfirmForgotPasswordRequest, type ConfirmForgotPasswordResponse, EventEmitter, FetchAdapter, type ForceChangePasswordResponse, type ForgotPasswordRequest, type ForgotPasswordResponse, type GetChallengeDataRequest, type GetChallengeDataResponse, type GetSetupDataRequest, type GetSetupDataResponse, type HttpAdapter, type HttpRequest, type HttpResponse, InMemoryStorage, type LinkedAccountsResponse, type LoginRequest, type LogoutAllRequest, type LogoutRequest, type MFAChallengeMethod, type MFACodeResponse, type MFADevice, type MFADeviceMethod, type MFAMethod, type MFAPasskeyResponse, type MFASetupData, type MFASetupResponse, type MFAStatus, type MfaRoutesConfig, NAuthClient, type NAuthClientConfig, NAuthClientError, type NAuthEndpoints, type NAuthError, NAuthErrorCode, type NAuthRedirectsConfig, type NAuthStorageAdapter, type OAuthCallbackEvent, type OAuthCompletedEvent, type OAuthErrorEvent, type OAuthStartedEvent, type ResendCodeRequest, type ResolvedNAuthClientConfig, type SignupRequest, type SocialLoginOptions, type SocialProvider, type SocialVerifyRequest, type TokenDeliveryMode, type TokenResponse, type UpdateProfileRequest, type VerifyEmailResponse, type VerifyPhoneCodeResponse, type VerifyPhoneCollectResponse, defaultEndpoints, getChallengeInstructions, getMFAMethod, getMaskedDestination, isOTPChallenge, requiresPhoneCollection, resolveConfig };
+export { type AuditHistoryResponse, type AuthAuditEvent, type AuthAuditEventStatus, AuthAuditEventType, AuthChallenge, type AuthChallengeEvent, type AuthErrorEvent, type AuthEvent, type AuthEventListener, type AuthEventType, type AuthLoginEvent, type AuthLogoutEvent, type AuthRefreshEvent, type AuthResponse, type AuthResponseContext, type AuthSignupEvent, type AuthSuccessEvent, type AuthUser, type AuthUserSummary, type BackupCodesResponse, type BaseChallengeResponse, BrowserStorage, type ChallengeResponse, ChallengeRouter, type ChangePasswordRequest, type ConfirmForgotPasswordRequest, type ConfirmForgotPasswordResponse, EventEmitter, FetchAdapter, type ForceChangePasswordResponse, type ForgotPasswordRequest, type ForgotPasswordResponse, type GetChallengeDataRequest, type GetChallengeDataResponse, type GetSetupDataRequest, type GetSetupDataResponse, type HttpAdapter, type HttpRequest, type HttpResponse, InMemoryStorage, type LinkedAccountsResponse, type LoginRequest, type LogoutAllRequest, type LogoutRequest, type MFAChallengeMethod, type MFACodeResponse, type MFADevice, type MFADeviceMethod, type MFAMethod, type MFAPasskeyResponse, type MFASetupData, type MFASetupResponse, type MFAStatus, type MfaRoutesConfig, NAuthClient, type NAuthClientConfig, NAuthClientError, type NAuthEndpoints, type NAuthError, NAuthErrorCode, type NAuthRedirectsConfig, type NAuthStorageAdapter, type OAuthCallbackEvent, type OAuthCompletedEvent, type OAuthErrorEvent, type OAuthStartedEvent, type ResendCodeRequest, type ResetPasswordWithCodeRequest, type ResetPasswordWithCodeResponse, type ResolvedNAuthClientConfig, type SignupRequest, type SocialLoginOptions, type SocialProvider, type SocialVerifyRequest, type TokenDeliveryMode, type TokenResponse, type UpdateProfileRequest, type VerifyEmailResponse, type VerifyPhoneCodeResponse, type VerifyPhoneCollectResponse, defaultEndpoints, getChallengeInstructions, getMFAMethod, getMaskedDestination, isOTPChallenge, requiresPhoneCollection, resolveConfig };

package/dist/index.mjs CHANGED Viewed

@@ -118,6 +118,7 @@ var defaultEndpoints = {
   requestPasswordChange: "/request-password-change",
   forgotPassword: "/forgot-password",
   confirmForgotPassword: "/forgot-password/confirm",
+  confirmAdminResetPassword: "/admin/reset-password/confirm",
   mfaStatus: "/mfa/status",
   mfaDevices: "/mfa/devices",
   mfaSetupData: "/mfa/setup-data",
@@ -981,6 +982,45 @@ var NAuthClient = class {
     await this.clearAuthState(false);
     return result;
   }
+  /**
+   * Reset password with code or token (works for both admin-initiated and user-initiated resets).
+   *
+   * Accepts either:
+   * - code: Short numeric code from email/SMS (6-10 digits)
+   * - token: Long hex token from reset link (64 chars)
+   *
+   * WHY: Generic method that works for both admin-initiated (adminResetPassword) and
+   * user-initiated (forgotPassword) password resets. Uses same backend endpoint.
+   *
+   * @param identifier - User identifier (email, username, phone)
+   * @param codeOrToken - Verification code OR token from link (one required)
+   * @param newPassword - New password
+   * @returns Success response
+   * @throws {NAuthClientError} When reset fails
+   *
+   * @example
+   * ```typescript
+   * // With code from email
+   * await client.resetPasswordWithCode('user@example.com', '123456', 'NewPass123!');
+   *
+   * // With token from link
+   * await client.resetPasswordWithCode('user@example.com', '64-char-token', 'NewPass123!');
+   * ```
+   */
+  async resetPasswordWithCode(identifier, codeOrToken, newPassword) {
+    const isToken = codeOrToken.length > 10;
+    const payload = {
+      identifier,
+      ...isToken ? { token: codeOrToken } : { code: codeOrToken },
+      newPassword
+    };
+    const result = await this.post(
+      this.config.endpoints.confirmAdminResetPassword,
+      payload
+    );
+    await this.clearAuthState(false);
+    return result;
+  }
   /**
    * Request password change (must change on next login).
    */