npm - @nauth-toolkit/core - Versions diffs - 0.1.0 → 0.1.5 - Mend

@nauth-toolkit/core 0.1.0 → 0.1.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (184) hide show

package/LICENSE +90 -0
package/README.md +9 -0
package/package.json +8 -3
package/jest.config.js +0 -15
package/jest.setup.ts +0 -6
package/src/adapters/database-columns.ts +0 -165
package/src/adapters/express.adapter.ts +0 -385
package/src/adapters/fastify.adapter.ts +0 -416
package/src/adapters/index.ts +0 -16
package/src/adapters/storage.factory.ts +0 -143
package/src/bootstrap.ts +0 -374
package/src/dto/auth-challenge.dto.ts +0 -231
package/src/dto/auth-response.dto.ts +0 -253
package/src/dto/challenge-response.dto.ts +0 -234
package/src/dto/change-password-request.dto.ts +0 -50
package/src/dto/change-password-response.dto.ts +0 -29
package/src/dto/change-password.dto.ts +0 -57
package/src/dto/error-response.dto.ts +0 -136
package/src/dto/get-available-methods.dto.ts +0 -55
package/src/dto/get-challenge-data-response.dto.ts +0 -28
package/src/dto/get-challenge-data.dto.ts +0 -69
package/src/dto/get-client-info.dto.ts +0 -104
package/src/dto/get-device-token-response.dto.ts +0 -25
package/src/dto/get-events-by-type.dto.ts +0 -76
package/src/dto/get-ip-address-response.dto.ts +0 -24
package/src/dto/get-mfa-status.dto.ts +0 -94
package/src/dto/get-risk-assessment-history.dto.ts +0 -39
package/src/dto/get-session-id-response.dto.ts +0 -25
package/src/dto/get-setup-data-response.dto.ts +0 -31
package/src/dto/get-setup-data.dto.ts +0 -75
package/src/dto/get-suspicious-activity.dto.ts +0 -42
package/src/dto/get-user-agent-response.dto.ts +0 -23
package/src/dto/get-user-auth-history.dto.ts +0 -95
package/src/dto/get-user-by-email.dto.ts +0 -61
package/src/dto/get-user-by-id.dto.ts +0 -46
package/src/dto/get-user-devices.dto.ts +0 -53
package/src/dto/get-user-response.dto.ts +0 -17
package/src/dto/has-provider.dto.ts +0 -56
package/src/dto/index.ts +0 -57
package/src/dto/is-trusted-device-response.dto.ts +0 -34
package/src/dto/list-providers-response.dto.ts +0 -23
package/src/dto/login.dto.ts +0 -95
package/src/dto/logout-all-response.dto.ts +0 -24
package/src/dto/logout-all.dto.ts +0 -65
package/src/dto/logout-response.dto.ts +0 -25
package/src/dto/logout.dto.ts +0 -64
package/src/dto/refresh-token.dto.ts +0 -36
package/src/dto/remove-devices.dto.ts +0 -85
package/src/dto/resend-code-response.dto.ts +0 -32
package/src/dto/resend-code.dto.ts +0 -51
package/src/dto/reset-password.dto.ts +0 -115
package/src/dto/respond-challenge.dto.ts +0 -272
package/src/dto/set-mfa-exemption.dto.ts +0 -112
package/src/dto/set-must-change-password-response.dto.ts +0 -27
package/src/dto/set-must-change-password.dto.ts +0 -46
package/src/dto/set-preferred-method.dto.ts +0 -80
package/src/dto/setup-mfa.dto.ts +0 -98
package/src/dto/signup.dto.ts +0 -174
package/src/dto/social-auth.dto.ts +0 -422
package/src/dto/trust-device-response.dto.ts +0 -30
package/src/dto/trust-device.dto.ts +0 -9
package/src/dto/update-user-attributes-request.dto.ts +0 -51
package/src/dto/user-response.dto.ts +0 -138
package/src/dto/user-update.dto.ts +0 -222
package/src/dto/verify-email.dto.ts +0 -313
package/src/dto/verify-mfa-code.dto.ts +0 -103
package/src/dto/verify-phone-by-sub.dto.ts +0 -78
package/src/dto/verify-phone.dto.ts +0 -245
package/src/entities/auth-audit.entity.ts +0 -232
package/src/entities/challenge-session.entity.ts +0 -116
package/src/entities/index.ts +0 -29
package/src/entities/login-attempt.entity.ts +0 -64
package/src/entities/mfa-device.entity.ts +0 -151
package/src/entities/rate-limit.entity.ts +0 -44
package/src/entities/session.entity.ts +0 -180
package/src/entities/social-account.entity.ts +0 -96
package/src/entities/storage-lock.entity.ts +0 -39
package/src/entities/trusted-device.entity.ts +0 -112
package/src/entities/user.entity.ts +0 -243
package/src/entities/verification-token.entity.ts +0 -141
package/src/enums/auth-audit-event-type.enum.ts +0 -360
package/src/enums/error-codes.enum.ts +0 -420
package/src/enums/mfa-method.enum.ts +0 -97
package/src/enums/risk-factor.enum.ts +0 -111
package/src/exceptions/nauth.exception.ts +0 -231
package/src/handlers/auth.handler.ts +0 -260
package/src/handlers/client-info.handler.ts +0 -101
package/src/handlers/csrf.handler.ts +0 -156
package/src/handlers/token-delivery.handler.ts +0 -118
package/src/index.ts +0 -118
package/src/interfaces/client-info.interface.ts +0 -85
package/src/interfaces/config.interface.ts +0 -2135
package/src/interfaces/entities.interface.ts +0 -226
package/src/interfaces/index.ts +0 -15
package/src/interfaces/logger.interface.ts +0 -283
package/src/interfaces/mfa-provider.interface.ts +0 -154
package/src/interfaces/oauth.interface.ts +0 -148
package/src/interfaces/provider.interface.ts +0 -47
package/src/interfaces/social-auth-provider.interface.ts +0 -131
package/src/interfaces/storage-adapter.interface.ts +0 -82
package/src/interfaces/template.interface.ts +0 -510
package/src/interfaces/token-verifier.interface.ts +0 -110
package/src/internal.ts +0 -178
package/src/platform/interfaces.ts +0 -299
package/src/schemas/auth-config.schema.ts +0 -646
package/src/services/adaptive-mfa-decision.service.spec.ts +0 -1058
package/src/services/adaptive-mfa-decision.service.ts +0 -457
package/src/services/auth-audit.service.spec.ts +0 -675
package/src/services/auth-audit.service.ts +0 -558
package/src/services/auth-challenge-helper.service.spec.ts +0 -3227
package/src/services/auth-challenge-helper.service.ts +0 -825
package/src/services/auth-flow-context-builder.service.ts +0 -520
package/src/services/auth-flow-rules.ts +0 -202
package/src/services/auth-flow-state-definitions.ts +0 -190
package/src/services/auth-flow-state-machine.service.ts +0 -207
package/src/services/auth-flow-state-machine.types.ts +0 -316
package/src/services/auth.service.spec.ts +0 -4195
package/src/services/auth.service.ts +0 -3727
package/src/services/challenge.service.spec.ts +0 -1363
package/src/services/challenge.service.ts +0 -696
package/src/services/client-info.service.spec.ts +0 -572
package/src/services/client-info.service.ts +0 -374
package/src/services/csrf.service.ts +0 -54
package/src/services/email-verification.service.spec.ts +0 -1229
package/src/services/email-verification.service.ts +0 -578
package/src/services/geo-location.service.spec.ts +0 -603
package/src/services/geo-location.service.ts +0 -599
package/src/services/index.ts +0 -13
package/src/services/jwt.service.spec.ts +0 -882
package/src/services/jwt.service.ts +0 -621
package/src/services/mfa-base.service.spec.ts +0 -246
package/src/services/mfa-base.service.ts +0 -611
package/src/services/mfa.service.spec.ts +0 -693
package/src/services/mfa.service.ts +0 -960
package/src/services/password.service.spec.ts +0 -166
package/src/services/password.service.ts +0 -309
package/src/services/phone-verification.service.spec.ts +0 -1120
package/src/services/phone-verification.service.ts +0 -751
package/src/services/risk-detection.service.spec.ts +0 -1292
package/src/services/risk-detection.service.ts +0 -1012
package/src/services/risk-scoring.service.spec.ts +0 -204
package/src/services/risk-scoring.service.ts +0 -131
package/src/services/session.service.spec.ts +0 -1293
package/src/services/session.service.ts +0 -803
package/src/services/social-account.service.spec.ts +0 -725
package/src/services/social-auth-base.service.spec.ts +0 -418
package/src/services/social-auth-base.service.ts +0 -581
package/src/services/social-auth.service.spec.ts +0 -238
package/src/services/social-auth.service.ts +0 -436
package/src/services/social-provider-registry.service.spec.ts +0 -238
package/src/services/social-provider-registry.service.ts +0 -122
package/src/services/trusted-device.service.spec.ts +0 -505
package/src/services/trusted-device.service.ts +0 -339
package/src/storage/account-lockout-storage.service.spec.ts +0 -310
package/src/storage/account-lockout-storage.service.ts +0 -89
package/src/storage/index.ts +0 -3
package/src/storage/memory-storage.adapter.ts +0 -443
package/src/storage/rate-limit-storage.service.spec.ts +0 -247
package/src/storage/rate-limit-storage.service.ts +0 -38
package/src/templates/html-template.engine.spec.ts +0 -161
package/src/templates/html-template.engine.ts +0 -688
package/src/templates/index.ts +0 -7
package/src/utils/common-passwords.spec.ts +0 -230
package/src/utils/common-passwords.ts +0 -170
package/src/utils/context-storage.ts +0 -188
package/src/utils/cookie-names.util.ts +0 -67
package/src/utils/cookies.util.ts +0 -94
package/src/utils/index.ts +0 -12
package/src/utils/ip-extractor.spec.ts +0 -330
package/src/utils/ip-extractor.ts +0 -220
package/src/utils/nauth-logger.spec.ts +0 -388
package/src/utils/nauth-logger.ts +0 -215
package/src/utils/pii-redactor.spec.ts +0 -130
package/src/utils/pii-redactor.ts +0 -288
package/src/utils/setup/get-repositories.ts +0 -140
package/src/utils/setup/init-services.ts +0 -422
package/src/utils/setup/init-social.ts +0 -189
package/src/utils/setup/init-storage.ts +0 -94
package/src/utils/setup/register-mfa.ts +0 -165
package/src/utils/setup/run-nauth-migrations.ts +0 -61
package/src/utils/token-delivery-policy.ts +0 -38
package/src/validators/template.validator.ts +0 -219
package/tsconfig.json +0 -37
package/tsconfig.lint.json +0 -6

package/src/dto/get-setup-data-response.dto.ts DELETED Viewed

@@ -1,31 +0,0 @@
-/**
- * Response DTO for getting MFA setup data
- *
- * Used to return method-specific setup data during MFA enrollment.
- * Structure varies by method (TOTP returns QR code, Passkey returns options, etc.).
- *
- * @example
- * ```typescript
- * const setupData = await mfaService.getSetupData({
- *   session: 'challenge-session-token',
- *   method: 'totp'
- * });
- * // Returns: { secret: '...', qrCode: '...', manualEntryKey: '...' }
- * ```
- */
-/**
- * Response DTO for setup data
- */
-export class GetSetupDataResponseDTO {
-  /**
-   * Provider-specific setup data
-   *
-   * Structure varies by method:
-   * - TOTP: { secret: string, qrCode: string, manualEntryKey: string }
-   * - SMS: { maskedPhone: string }
-   * - Email: { maskedEmail: string }
-   * - Passkey: WebAuthn registration options
-   */
-  setupData!: Record<string, unknown>;
-}

package/src/dto/get-setup-data.dto.ts DELETED Viewed

@@ -1,75 +0,0 @@
-/**
- * DTO for requesting MFA setup data
- *
- * Used to get method-specific setup information during MFA enrollment.
- * For example, TOTP setup returns QR code and secret.
- *
- * Security:
- * - Session token length limited (prevents DoS)
- * - Method validated against enum (prevents injection)
- *
- * @example
- * ```typescript
- * const setupData = await authService.getSetupData({
- *   session: 'challenge-session-token',
- *   method: 'totp'
- * });
- * // Returns: { secret: '...', qrCode: '...' }
- * ```
- */
-import { IsEnum, IsUUID, IsOptional, IsObject } from 'class-validator';
-import { Transform } from 'class-transformer';
-import { MFAMethod } from '../enums/mfa-method.enum';
-/**
- * DTO for getting MFA setup data
- */
-export class GetSetupDataDTO {
-  /**
-   * Challenge session token (UUID v4)
-   *
-   * Validation:
-   * - Must be a valid UUID v4 format
-   * - Generated using randomUUID() in challenge service
-   * - Matches DB constraint: varchar(255) but UUID format enforced
-   *
-   * Sanitization:
-   * - Trimmed
-   * - Lowercased for consistency
-   *
-   * @example "a21b654c-2746-4168-acee-c175083a65cd"
-   */
-  @IsUUID('4', { message: 'Session token must be a valid UUID v4 format' })
-  @Transform(({ value }) => {
-    if (typeof value === 'string') {
-      return value.trim().toLowerCase();
-    }
-    return value;
-  })
-  session!: string;
-  /**
-   * MFA method to set up
-   *
-   * Validation:
-   * - Must be one of: sms, email, totp, passkey
-   */
-  @IsEnum([MFAMethod.SMS, MFAMethod.EMAIL, MFAMethod.TOTP, MFAMethod.PASSKEY], {
-    message: 'Method must be one of: sms, email, totp, passkey',
-  })
-  method!: MFAMethod;
-  /**
-   * Optional provider-specific setup data
-   *
-   * Validation:
-   * - Must be an object if provided
-   * - Structure validated by MFA provider services
-   *
-   * @example { phoneNumber: '+1234567890' } for SMS
-   */
-  @IsOptional()
-  @IsObject({ message: 'Setup data must be an object' })
-  setupData?: Record<string, unknown>;
-}

package/src/dto/get-suspicious-activity.dto.ts DELETED Viewed

@@ -1,42 +0,0 @@
-import { IAuthAudit } from '../interfaces/entities.interface';
-/**
- * Request DTO for getting suspicious activity
- *
- * @example
- * ```typescript
- * // Get all suspicious activity
- * const result = await auditService.getSuspiciousActivity({});
- *
- * // Get suspicious activity for specific user
- * const result = await auditService.getSuspiciousActivity({
- *   userSub: 'user-uuid',
- *   limit: 50,
- * });
- * ```
- */
-export class GetSuspiciousActivityDTO {
-  /**
-   * Optional user identifier to filter by specific user
-   *
-   * If not provided, returns suspicious activity for all users.
-   */
-  userSub?: string;
-  /**
-   * Maximum number of records to return
-   *
-   * @default 100
-   */
-  limit?: number;
-}
-/**
- * Response DTO for suspicious activity
- */
-export class GetSuspiciousActivityResponseDTO {
-  /**
-   * Array of suspicious audit events
-   */
-  data!: IAuthAudit[];
-}

package/src/dto/get-user-agent-response.dto.ts DELETED Viewed

@@ -1,23 +0,0 @@
-/**
- * Response DTO for getting user agent
- *
- * Used to return just the user agent string from the current request context.
- *
- * @example
- * ```typescript
- * const result = await clientInfoService.getUserAgent();
- * // Returns: { userAgent: 'Mozilla/5.0 (Windows NT 10.0; Win64; x64)...' }
- * ```
- */
-/**
- * Response DTO for user agent
- */
-export class GetUserAgentResponseDTO {
-  /**
-   * User agent string from the request
-   *
-   * Returns 'unknown' if called outside request context.
-   */
-  userAgent!: string;
-}

package/src/dto/get-user-auth-history.dto.ts DELETED Viewed

@@ -1,95 +0,0 @@
-import { AuthAuditEventType } from '../enums/auth-audit-event-type.enum';
-import { AuthAuditEventStatus } from '../entities/auth-audit.entity';
-import { IAuthAudit } from '../interfaces/entities.interface';
-/**
- * Request DTO for getting user authentication history
- *
- * @example
- * ```typescript
- * const result = await auditService.getUserAuthHistory({
- *   userSub: 'user-uuid',
- *   page: 1,
- *   limit: 50,
- *   eventTypes: [AuthAuditEventType.LOGIN_SUCCESS],
- *   startDate: new Date('2025-01-01'),
- * });
- * ```
- */
-export class GetUserAuthHistoryDTO {
-  /**
-   * External user identifier (UUID)
-   *
-   * The service will automatically resolve this to the internal userId
-   * for efficient database queries.
-   */
-  userSub!: string;
-  /**
-   * Page number (1-indexed)
-   *
-   * @default 1
-   */
-  page?: number;
-  /**
-   * Number of records per page
-   *
-   * @default 50
-   */
-  limit?: number;
-  /**
-   * Filter events from this date onwards
-   */
-  startDate?: Date;
-  /**
-   * Filter events up to this date
-   */
-  endDate?: Date;
-  /**
-   * Filter by specific event types
-   *
-   * If provided, only events matching these types will be returned.
-   */
-  eventTypes?: AuthAuditEventType[];
-  /**
-   * Filter by event status
-   *
-   * If provided, only events matching these statuses will be returned.
-   */
-  eventStatus?: AuthAuditEventStatus[];
-}
-/**
- * Response DTO for paginated user authentication history
- */
-export class GetUserAuthHistoryResponseDTO {
-  /**
-   * Array of audit records
-   */
-  data!: IAuthAudit[];
-  /**
-   * Total number of records matching the query
-   */
-  total!: number;
-  /**
-   * Current page number
-   */
-  page!: number;
-  /**
-   * Number of records per page
-   */
-  limit!: number;
-  /**
-   * Total number of pages
-   */
-  totalPages!: number;
-}

package/src/dto/get-user-by-email.dto.ts DELETED Viewed

@@ -1,61 +0,0 @@
-/**
- * Get User By Email DTO
- *
- * Request DTO for retrieving a user by email address.
- *
- * Security:
- * - Email format validated
- * - Max length enforced
- *
- * @example
- * ```typescript
- * const user = await authService.getUserByEmail({
- *   email: 'user@example.com',
- *   requireEmailVerified: true
- * });
- * ```
- */
-import { IsEmail, IsOptional, IsBoolean, MaxLength } from 'class-validator';
-import { Transform } from 'class-transformer';
-/**
- * Request DTO for getting user by email
- */
-export class GetUserByEmailDTO {
-  /**
-   * Email address to search for
-   *
-   * Validation:
-   * - Must be a valid email format
-   * - Max 255 characters (matches DB constraint)
-   *
-   * Sanitization:
-   * - Trimmed
-   * - Lowercased for consistency
-   *
-   * @example "user@example.com"
-   */
-  @IsEmail({}, { message: 'Email must be a valid email format' })
-  @MaxLength(255, { message: 'Email must not exceed 255 characters' })
-  @Transform(({ value }) => {
-    if (typeof value === 'string') {
-      return value.trim().toLowerCase();
-    }
-    return value;
-  })
-  email!: string;
-  /**
-   * Only return user if email is verified
-   *
-   * Validation:
-   * - Must be a boolean if present
-   * - Default: false
-   *
-   * @example true
-   */
-  @IsOptional()
-  @IsBoolean({ message: 'requireEmailVerified must be a boolean' })
-  requireEmailVerified?: boolean;
-}

package/src/dto/get-user-by-id.dto.ts DELETED Viewed

@@ -1,46 +0,0 @@
-/**
- * Get User By ID DTO
- *
- * Request DTO for retrieving a user by their unique identifier (sub).
- *
- * Security:
- * - UUID format validated
- * - Prevents injection attacks
- *
- * @example
- * ```typescript
- * const user = await authService.getUserById({
- *   sub: 'a21b654c-2746-4168-acee-c175083a65cd'
- * });
- * ```
- */
-import { IsUUID } from 'class-validator';
-import { Transform } from 'class-transformer';
-/**
- * Request DTO for getting user by ID
- */
-export class GetUserByIdDTO {
-  /**
-   * User's unique identifier (UUID v4)
-   *
-   * Validation:
-   * - Must be a valid UUID v4 format
-   * - Matches DB constraint: char(36) or uuid
-   *
-   * Sanitization:
-   * - Trimmed
-   * - Lowercased for consistency
-   *
-   * @example "a21b654c-2746-4168-acee-c175083a65cd"
-   */
-  @IsUUID('4', { message: 'User sub must be a valid UUID v4 format' })
-  @Transform(({ value }) => {
-    if (typeof value === 'string') {
-      return value.trim().toLowerCase();
-    }
-    return value;
-  })
-  sub!: string;
-}

package/src/dto/get-user-devices.dto.ts DELETED Viewed

@@ -1,53 +0,0 @@
-/**
- * DTO for getting user MFA devices
- *
- * Used to retrieve all MFA devices configured for a user.
- *
- * @example
- * ```typescript
- * const devices = await mfaService.getUserDevices({
- *   sub: 'user-uuid'
- * });
- * ```
- */
-import { IsUUID } from 'class-validator';
-import { Transform } from 'class-transformer';
-import { IMFADevice } from '../interfaces/entities.interface';
-/**
- * DTO for getting user MFA devices
- */
-export class GetUserDevicesDTO {
-  /**
-   * User's unique identifier (UUID v4)
-   *
-   * Validation:
-   * - Must be a valid UUID v4 format
-   * - Matches DB constraint: char(36) or uuid
-   *
-   * Sanitization:
-   * - Trimmed
-   * - Lowercased for consistency
-   *
-   * @example "a21b654c-2746-4168-acee-c175083a65cd"
-   */
-  @IsUUID('4', { message: 'User sub must be a valid UUID v4 format' })
-  @Transform(({ value }) => {
-    if (typeof value === 'string') {
-      return value.trim().toLowerCase();
-    }
-    return value;
-  })
-  sub!: string;
-}
-/**
- * Response DTO for user MFA devices
- */
-export class GetUserDevicesResponseDTO {
-  /**
-   * Array of user's MFA devices
-   */
-  devices!: IMFADevice[];
-}

package/src/dto/get-user-response.dto.ts DELETED Viewed

@@ -1,17 +0,0 @@
-/**
- * Get User Response DTO
- *
- * Response DTO for user retrieval operations.
- *
- * Note: Methods like getUserById and getUserByEmail return UserResponseDto | null directly.
- * This file exists for type consistency but UserResponseDto is used directly.
- *
- * @example
- * ```typescript
- * const user = await authService.getUserById({ sub: 'user-uuid' });
- * // Returns: UserResponseDto | null
- * ```
- */
-// Re-export UserResponseDto for consistency
-export { UserResponseDto as GetUserResponseDTO } from './user-response.dto';

package/src/dto/has-provider.dto.ts DELETED Viewed

@@ -1,56 +0,0 @@
-/**
- * DTO for checking if MFA provider is registered
- *
- * Used to check if a specific MFA provider is registered and available.
- *
- * @example
- * ```typescript
- * const hasTotp = await mfaService.hasProvider({
- *   methodName: 'totp'
- * });
- * ```
- */
-import { IsEnum, IsString, MaxLength } from 'class-validator';
-import { Transform } from 'class-transformer';
-import { MFAMethod } from '../enums/mfa-method.enum';
-/**
- * DTO for checking if MFA provider is registered
- */
-export class HasProviderDTO {
-  /**
-   * Provider method name
-   *
-   * Validation:
-   * - Must be one of: totp, sms, email, passkey
-   * - Max 50 characters
-   *
-   * Sanitization:
-   * - Trimmed and lowercased
-   *
-   * @example "totp"
-   */
-  @IsString({ message: 'Method name must be a string' })
-  @IsEnum(MFAMethod, {
-    message: 'Method name must be one of: totp, sms, email, passkey',
-  })
-  @MaxLength(50, { message: 'Method name must not exceed 50 characters' })
-  @Transform(({ value }) => {
-    if (typeof value === 'string') {
-      return value.trim().toLowerCase();
-    }
-    return value;
-  })
-  methodName!: string;
-}
-/**
- * Response DTO for has provider check
- */
-export class HasProviderResponseDTO {
-  /**
-   * Whether provider is registered
-   */
-  hasProvider!: boolean;
-}

package/src/dto/index.ts DELETED Viewed

@@ -1,57 +0,0 @@
-// Core Auth DTOs
-export * from './signup.dto';
-export * from './login.dto';
-export * from './change-password.dto';
-export * from './change-password-request.dto';
-export * from './change-password-response.dto';
-export * from './user-response.dto';
-export * from './user-update.dto';
-export * from './update-user-attributes-request.dto';
-export * from './verify-email.dto';
-export * from './verify-phone.dto';
-export * from './verify-phone-by-sub.dto';
-export * from './reset-password.dto';
-export * from './refresh-token.dto';
-export * from './auth-response.dto';
-export * from './auth-challenge.dto';
-export * from './challenge-response.dto';
-export * from './respond-challenge.dto';
-export * from './get-setup-data.dto';
-export * from './get-setup-data-response.dto';
-export * from './get-challenge-data.dto';
-export * from './get-challenge-data-response.dto';
-export * from './get-available-methods.dto';
-export * from './get-mfa-status.dto';
-export * from './get-user-devices.dto';
-export * from './has-provider.dto';
-export * from './list-providers-response.dto';
-export * from './remove-devices.dto';
-export * from './set-mfa-exemption.dto';
-export * from './set-preferred-method.dto';
-export * from './setup-mfa.dto';
-export * from './verify-mfa-code.dto';
-export * from './get-client-info.dto';
-export * from './get-ip-address-response.dto';
-export * from './get-user-agent-response.dto';
-export * from './get-device-token-response.dto';
-export * from './get-session-id-response.dto';
-export * from './resend-code.dto';
-export * from './resend-code-response.dto';
-export * from './get-user-by-email.dto';
-export * from './get-user-by-id.dto';
-export * from './get-user-response.dto';
-export * from './logout.dto';
-export * from './logout-response.dto';
-export * from './logout-all.dto';
-export * from './logout-all-response.dto';
-export * from './set-must-change-password.dto';
-export * from './set-must-change-password-response.dto';
-// Note: trust-device.dto.ts removed - trustDevice() no longer takes parameters
-export * from './trust-device-response.dto';
-export * from './is-trusted-device-response.dto';
-export * from './social-auth.dto';
-// Note: Social and MFA DTOs moved to their respective packages
-// - social-login.dto → @nauth-toolkit/social-*
-// - mfa.dto → @nauth-toolkit/mfa-*

package/src/dto/is-trusted-device-response.dto.ts DELETED Viewed

@@ -1,34 +0,0 @@
-/**
- * Is Trusted Device Response DTO
- *
- * Response DTO for checking if the current device is trusted.
- * No validators needed - this is generated internally by the library.
- *
- * Security:
- * - Works in both cookies mode (reads from httpOnly cookie) and JSON mode (reads from X-Device-Token header)
- * - Returns server-validated trusted status
- * - Does not expose device token value for security
- *
- * @example
- * ```typescript
- * const result = await authService.isTrustedDevice();
- * // Returns: { trusted: true }
- * ```
- */
-/**
- * Response DTO for checking trusted device status
- */
-export class IsTrustedDeviceResponseDTO {
-  /**
-   * Whether the current device is trusted
-   *
-   * True if the device has a valid trusted device token and trust has not expired.
-   * False if no device token exists, device token is invalid, or trust has expired.
-   *
-   * @example true
-   */
-  trusted!: boolean;
-}

package/src/dto/list-providers-response.dto.ts DELETED Viewed

@@ -1,23 +0,0 @@
-/**
- * Response DTO for listing MFA providers
- *
- * Used to return all registered MFA provider method names.
- *
- * @example
- * ```typescript
- * const providers = await mfaService.listProviders();
- * // Returns: { providers: ['totp', 'sms', 'passkey'] }
- * ```
- */
-/**
- * Response DTO for listing providers
- */
-export class ListProvidersResponseDTO {
-  /**
-   * Array of registered provider method names
-   *
-   * @example ['totp', 'sms', 'passkey']
-   */
-  providers!: string[];
-}