@nauth-toolkit/core 0.1.0

package/dist/dto/logout-response.dto.d.ts

@@ -0,0 +1,4 @@
+export declare class LogoutResponseDTO {
+    success: boolean;
+}
+//# sourceMappingURL=logout-response.dto.d.ts.map

package/dist/dto/logout-response.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logout-response.dto.d.ts","sourceRoot":"","sources":["../../src/dto/logout-response.dto.ts"],"names":[],"mappings":"AAgBA,qBAAa,iBAAiB;IAO5B,OAAO,EAAG,OAAO,CAAC;CACnB"}

package/dist/dto/logout-response.dto.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LogoutResponseDTO = void 0;
+class LogoutResponseDTO {
+    success;
+}
+exports.LogoutResponseDTO = LogoutResponseDTO;
+//# sourceMappingURL=logout-response.dto.js.map

package/dist/dto/logout-response.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logout-response.dto.js","sourceRoot":"","sources":["../../src/dto/logout-response.dto.ts"],"names":[],"mappings":";;;AAgBA,MAAa,iBAAiB;IAO5B,OAAO,CAAW;CACnB;AARD,8CAQC"}

package/dist/dto/logout.dto.d.ts

@@ -0,0 +1,5 @@
+export declare class LogoutDTO {
+    sub?: string;
+    forgetMe?: boolean;
+}
+//# sourceMappingURL=logout.dto.d.ts.map

package/dist/dto/logout.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logout.dto.d.ts","sourceRoot":"","sources":["../../src/dto/logout.dto.ts"],"names":[],"mappings":"AAwBA,qBAAa,SAAS;IAyBpB,GAAG,CAAC,EAAE,MAAM,CAAC;IAab,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB"}

package/dist/dto/logout.dto.js

@@ -0,0 +1,36 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LogoutDTO = void 0;
+const class_validator_1 = require("class-validator");
+const class_transformer_1 = require("class-transformer");
+class LogoutDTO {
+    sub;
+    forgetMe;
+}
+exports.LogoutDTO = LogoutDTO;
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsUUID)('4', { message: 'User sub must be a valid UUID v4 format' }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            return value.trim().toLowerCase();
+        }
+        return value;
+    }),
+    __metadata("design:type", String)
+], LogoutDTO.prototype, "sub", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsBoolean)({ message: 'forgetMe must be a boolean' }),
+    __metadata("design:type", Boolean)
+], LogoutDTO.prototype, "forgetMe", void 0);
+//# sourceMappingURL=logout.dto.js.map

package/dist/dto/logout.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logout.dto.js","sourceRoot":"","sources":["../../src/dto/logout.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAkBA,qDAAgE;AAChE,yDAA8C;AAK9C,MAAa,SAAS;IAyBpB,GAAG,CAAU;IAab,QAAQ,CAAW;CACpB;AAvCD,8BAuCC;AAdC;IARC,IAAA,4BAAU,GAAE;IACZ,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;IACnE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;sCACW;AAab;IAFC,IAAA,4BAAU,GAAE;IACZ,IAAA,2BAAS,EAAC,EAAE,OAAO,EAAE,4BAA4B,EAAE,CAAC;;2CAClC"}

package/dist/dto/refresh-token.dto.d.ts

@@ -0,0 +1,4 @@
+export declare class RefreshTokenDTO {
+    refreshToken: string;
+}
+//# sourceMappingURL=refresh-token.dto.d.ts.map

package/dist/dto/refresh-token.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"refresh-token.dto.d.ts","sourceRoot":"","sources":["../../src/dto/refresh-token.dto.ts"],"names":[],"mappings":"AAoBA,qBAAa,eAAe;IAc1B,YAAY,EAAG,MAAM,CAAC;CACvB"}

package/dist/dto/refresh-token.dto.js

@@ -0,0 +1,24 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RefreshTokenDTO = void 0;
+const class_validator_1 = require("class-validator");
+class RefreshTokenDTO {
+    refreshToken;
+}
+exports.RefreshTokenDTO = RefreshTokenDTO;
+__decorate([
+    (0, class_validator_1.IsString)({ message: 'Refresh token must be a string' }),
+    (0, class_validator_1.MinLength)(10, { message: 'Refresh token is required' }),
+    (0, class_validator_1.MaxLength)(2048, { message: 'Refresh token must not exceed 2048 characters' }),
+    __metadata("design:type", String)
+], RefreshTokenDTO.prototype, "refreshToken", void 0);
+//# sourceMappingURL=refresh-token.dto.js.map

package/dist/dto/refresh-token.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"refresh-token.dto.js","sourceRoot":"","sources":["../../src/dto/refresh-token.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,qDAAiE;AAoBjE,MAAa,eAAe;IAc1B,YAAY,CAAU;CACvB;AAfD,0CAeC;AADC;IAHC,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,gCAAgC,EAAE,CAAC;IACvD,IAAA,2BAAS,EAAC,EAAE,EAAE,EAAE,OAAO,EAAE,2BAA2B,EAAE,CAAC;IACvD,IAAA,2BAAS,EAAC,IAAI,EAAE,EAAE,OAAO,EAAE,+CAA+C,EAAE,CAAC;;qDACxD"}

package/dist/dto/remove-devices.dto.d.ts

@@ -0,0 +1,9 @@
+export declare class RemoveDevicesDTO {
+    userSub: string;
+    methodType: string;
+}
+export declare class RemoveDevicesResponseDTO {
+    deletedCount: number;
+    mfaDisabled: boolean;
+}
+//# sourceMappingURL=remove-devices.dto.d.ts.map

package/dist/dto/remove-devices.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"remove-devices.dto.d.ts","sourceRoot":"","sources":["../../src/dto/remove-devices.dto.ts"],"names":[],"mappings":"AAsBA,qBAAa,gBAAgB;IAqB3B,OAAO,EAAG,MAAM,CAAC;IAyBjB,UAAU,EAAG,MAAM,CAAC;CACrB;AAKD,qBAAa,wBAAwB;IAInC,YAAY,EAAG,MAAM,CAAC;IAKtB,WAAW,EAAG,OAAO,CAAC;CACvB"}

package/dist/dto/remove-devices.dto.js

@@ -0,0 +1,50 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RemoveDevicesResponseDTO = exports.RemoveDevicesDTO = void 0;
+const class_validator_1 = require("class-validator");
+const class_transformer_1 = require("class-transformer");
+const mfa_method_enum_1 = require("../enums/mfa-method.enum");
+class RemoveDevicesDTO {
+    userSub;
+    methodType;
+}
+exports.RemoveDevicesDTO = RemoveDevicesDTO;
+__decorate([
+    (0, class_validator_1.IsUUID)('4', { message: 'User sub must be a valid UUID v4 format' }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            return value.trim().toLowerCase();
+        }
+        return value;
+    }),
+    __metadata("design:type", String)
+], RemoveDevicesDTO.prototype, "userSub", void 0);
+__decorate([
+    (0, class_validator_1.IsString)({ message: 'Method type must be a string' }),
+    (0, class_validator_1.IsEnum)([mfa_method_enum_1.MFAMethod.TOTP, mfa_method_enum_1.MFAMethod.SMS, mfa_method_enum_1.MFAMethod.EMAIL, mfa_method_enum_1.MFAMethod.PASSKEY], {
+        message: 'Method type must be one of: totp, sms, email, passkey',
+    }),
+    (0, class_validator_1.MaxLength)(50, { message: 'Method type must not exceed 50 characters' }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            return value.trim().toLowerCase();
+        }
+        return value;
+    }),
+    __metadata("design:type", String)
+], RemoveDevicesDTO.prototype, "methodType", void 0);
+class RemoveDevicesResponseDTO {
+    deletedCount;
+    mfaDisabled;
+}
+exports.RemoveDevicesResponseDTO = RemoveDevicesResponseDTO;
+//# sourceMappingURL=remove-devices.dto.js.map

package/dist/dto/remove-devices.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"remove-devices.dto.js","sourceRoot":"","sources":["../../src/dto/remove-devices.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAeA,qDAAsE;AACtE,yDAA8C;AAC9C,8DAAqD;AAKrD,MAAa,gBAAgB;IAqB3B,OAAO,CAAU;IAyBjB,UAAU,CAAU;CACrB;AA/CD,4CA+CC;AA1BC;IAPC,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;IACnE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;iDACe;AAyBjB;IAXC,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,8BAA8B,EAAE,CAAC;IACrD,IAAA,wBAAM,EAAC,CAAC,2BAAS,CAAC,IAAI,EAAE,2BAAS,CAAC,GAAG,EAAE,2BAAS,CAAC,KAAK,EAAE,2BAAS,CAAC,OAAO,CAAC,EAAE;QAC3E,OAAO,EAAE,uDAAuD;KACjE,CAAC;IACD,IAAA,2BAAS,EAAC,EAAE,EAAE,EAAE,OAAO,EAAE,2CAA2C,EAAE,CAAC;IACvE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;oDACkB;AAMtB,MAAa,wBAAwB;IAInC,YAAY,CAAU;IAKtB,WAAW,CAAW;CACvB;AAVD,4DAUC"}

package/dist/dto/resend-code-response.dto.d.ts

@@ -0,0 +1,4 @@
+export declare class ResendCodeResponseDTO {
+    destination: string;
+}
+//# sourceMappingURL=resend-code-response.dto.d.ts.map

package/dist/dto/resend-code-response.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"resend-code-response.dto.d.ts","sourceRoot":"","sources":["../../src/dto/resend-code-response.dto.ts"],"names":[],"mappings":"AAoBA,qBAAa,qBAAqB;IAUhC,WAAW,EAAG,MAAM,CAAC;CACtB"}

package/dist/dto/resend-code-response.dto.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ResendCodeResponseDTO = void 0;
+class ResendCodeResponseDTO {
+    destination;
+}
+exports.ResendCodeResponseDTO = ResendCodeResponseDTO;
+//# sourceMappingURL=resend-code-response.dto.js.map

package/dist/dto/resend-code-response.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"resend-code-response.dto.js","sourceRoot":"","sources":["../../src/dto/resend-code-response.dto.ts"],"names":[],"mappings":";;;AAoBA,MAAa,qBAAqB;IAUhC,WAAW,CAAU;CACtB;AAXD,sDAWC"}

package/dist/dto/resend-code.dto.d.ts

@@ -0,0 +1,4 @@
+export declare class ResendCodeDTO {
+    session: string;
+}
+//# sourceMappingURL=resend-code.dto.d.ts.map

package/dist/dto/resend-code.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"resend-code.dto.d.ts","sourceRoot":"","sources":["../../src/dto/resend-code.dto.ts"],"names":[],"mappings":"AA2BA,qBAAa,aAAa;IAsBxB,OAAO,EAAG,MAAM,CAAC;CAClB"}

package/dist/dto/resend-code.dto.js

@@ -0,0 +1,29 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ResendCodeDTO = void 0;
+const class_validator_1 = require("class-validator");
+const class_transformer_1 = require("class-transformer");
+class ResendCodeDTO {
+    session;
+}
+exports.ResendCodeDTO = ResendCodeDTO;
+__decorate([
+    (0, class_validator_1.IsUUID)('4', { message: 'Session token must be a valid UUID v4 format' }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            return value.trim().toLowerCase();
+        }
+        return value;
+    }),
+    __metadata("design:type", String)
+], ResendCodeDTO.prototype, "session", void 0);
+//# sourceMappingURL=resend-code.dto.js.map

package/dist/dto/resend-code.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"resend-code.dto.js","sourceRoot":"","sources":["../../src/dto/resend-code.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAqBA,qDAAyC;AACzC,yDAA8C;AAK9C,MAAa,aAAa;IAsBxB,OAAO,CAAU;CAClB;AAvBD,sCAuBC;AADC;IAPC,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,8CAA8C,EAAE,CAAC;IACxE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;8CACe"}

package/dist/dto/reset-password.dto.d.ts

@@ -0,0 +1,8 @@
+export declare class ResetPasswordRequestDTO {
+    identifier: string;
+}
+export declare class ResetPasswordDTO {
+    token: string;
+    newPassword: string;
+}
+//# sourceMappingURL=reset-password.dto.d.ts.map

package/dist/dto/reset-password.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"reset-password.dto.d.ts","sourceRoot":"","sources":["../../src/dto/reset-password.dto.ts"],"names":[],"mappings":"AAoBA,qBAAa,uBAAuB;IA4BlC,UAAU,EAAG,MAAM,CAAC;CACrB;AAqBD,qBAAa,gBAAgB;IAwB3B,KAAK,EAAG,MAAM,CAAC;IAmBf,WAAW,EAAG,MAAM,CAAC;CACtB"}

package/dist/dto/reset-password.dto.js

@@ -0,0 +1,61 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ResetPasswordDTO = exports.ResetPasswordRequestDTO = void 0;
+const class_validator_1 = require("class-validator");
+const class_transformer_1 = require("class-transformer");
+class ResetPasswordRequestDTO {
+    identifier;
+}
+exports.ResetPasswordRequestDTO = ResetPasswordRequestDTO;
+__decorate([
+    (0, class_validator_1.IsString)({ message: 'Identifier must be a string' }),
+    (0, class_validator_1.IsNotEmpty)({ message: 'Identifier is required' }),
+    (0, class_validator_1.MinLength)(1, { message: 'Identifier is required' }),
+    (0, class_validator_1.MaxLength)(255, { message: 'Identifier must not exceed 255 characters' }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            const trimmed = value.trim();
+            if (trimmed.includes('@')) {
+                return trimmed.toLowerCase();
+            }
+            return trimmed;
+        }
+        return value;
+    }),
+    __metadata("design:type", String)
+], ResetPasswordRequestDTO.prototype, "identifier", void 0);
+class ResetPasswordDTO {
+    token;
+    newPassword;
+}
+exports.ResetPasswordDTO = ResetPasswordDTO;
+__decorate([
+    (0, class_validator_1.IsString)({ message: 'Token must be a string' }),
+    (0, class_validator_1.IsNotEmpty)({ message: 'Token is required' }),
+    (0, class_validator_1.MinLength)(1, { message: 'Token is required' }),
+    (0, class_validator_1.MaxLength)(255, { message: 'Token must not exceed 255 characters' }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            return value.trim();
+        }
+        return value;
+    }),
+    __metadata("design:type", String)
+], ResetPasswordDTO.prototype, "token", void 0);
+__decorate([
+    (0, class_validator_1.IsString)({ message: 'New password must be a string' }),
+    (0, class_validator_1.IsNotEmpty)({ message: 'New password is required' }),
+    (0, class_validator_1.MinLength)(8, { message: 'Password must be at least 8 characters' }),
+    (0, class_validator_1.MaxLength)(128, { message: 'Password must not exceed 128 characters' }),
+    __metadata("design:type", String)
+], ResetPasswordDTO.prototype, "newPassword", void 0);
+//# sourceMappingURL=reset-password.dto.js.map

package/dist/dto/reset-password.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"reset-password.dto.js","sourceRoot":"","sources":["../../src/dto/reset-password.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,qDAA6E;AAC7E,yDAA8C;AAmB9C,MAAa,uBAAuB;IA4BlC,UAAU,CAAU;CACrB;AA7BD,0DA6BC;AADC;IAfC,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,6BAA6B,EAAE,CAAC;IACpD,IAAA,4BAAU,EAAC,EAAE,OAAO,EAAE,wBAAwB,EAAE,CAAC;IACjD,IAAA,2BAAS,EAAC,CAAC,EAAE,EAAE,OAAO,EAAE,wBAAwB,EAAE,CAAC;IACnD,IAAA,2BAAS,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,2CAA2C,EAAE,CAAC;IACxE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;YAE7B,IAAI,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC1B,OAAO,OAAO,CAAC,WAAW,EAAE,CAAC;YAC/B,CAAC;YACD,OAAO,OAAO,CAAC;QACjB,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;2DACkB;AAsBtB,MAAa,gBAAgB;IAwB3B,KAAK,CAAU;IAmBf,WAAW,CAAU;CACtB;AA5CD,4CA4CC;AApBC;IAVC,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,wBAAwB,EAAE,CAAC;IAC/C,IAAA,4BAAU,EAAC,EAAE,OAAO,EAAE,mBAAmB,EAAE,CAAC;IAC5C,IAAA,2BAAS,EAAC,CAAC,EAAE,EAAE,OAAO,EAAE,mBAAmB,EAAE,CAAC;IAC9C,IAAA,2BAAS,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,sCAAsC,EAAE,CAAC;IACnE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC;QACtB,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;+CACa;AAmBf;IAJC,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,+BAA+B,EAAE,CAAC;IACtD,IAAA,4BAAU,EAAC,EAAE,OAAO,EAAE,0BAA0B,EAAE,CAAC;IACnD,IAAA,2BAAS,EAAC,CAAC,EAAE,EAAE,OAAO,EAAE,wCAAwC,EAAE,CAAC;IACnE,IAAA,2BAAS,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;;qDAClD"}

package/dist/dto/respond-challenge.dto.d.ts

@@ -0,0 +1,33 @@
+export declare enum ChallengeType {
+    VERIFY_EMAIL = "VERIFY_EMAIL",
+    VERIFY_PHONE = "VERIFY_PHONE",
+    MFA_REQUIRED = "MFA_REQUIRED",
+    FORCE_CHANGE_PASSWORD = "FORCE_CHANGE_PASSWORD",
+    MFA_SETUP_REQUIRED = "MFA_SETUP_REQUIRED"
+}
+export declare enum MFAMethodType {
+    SMS = "sms",
+    EMAIL = "email",
+    TOTP = "totp",
+    PASSKEY = "passkey",
+    BACKUP = "backup"
+}
+export declare class RespondChallengeDTO {
+    session: string;
+    type: ChallengeType;
+    code?: string;
+    phone?: string;
+    newPassword?: string;
+    method?: MFAMethodType;
+    credential?: Record<string, unknown>;
+    setupData?: Record<string, unknown>;
+}
+export declare namespace RespondChallengeValidation {
+    function isEmailVerification(dto: RespondChallengeDTO): boolean;
+    function isPhoneCollection(dto: RespondChallengeDTO): boolean;
+    function isPhoneVerification(dto: RespondChallengeDTO): boolean;
+    function isPasswordChange(dto: RespondChallengeDTO): boolean;
+    function isMFAVerification(dto: RespondChallengeDTO): boolean;
+    function isMFASetup(dto: RespondChallengeDTO): boolean;
+}
+//# sourceMappingURL=respond-challenge.dto.d.ts.map

package/dist/dto/respond-challenge.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"respond-challenge.dto.d.ts","sourceRoot":"","sources":["../../src/dto/respond-challenge.dto.ts"],"names":[],"mappings":"AAuBA,oBAAY,aAAa;IACvB,YAAY,iBAAiB;IAC7B,YAAY,iBAAiB;IAC7B,YAAY,iBAAiB;IAC7B,qBAAqB,0BAA0B;IAC/C,kBAAkB,uBAAuB;CAC1C;AAKD,oBAAY,aAAa;IACvB,GAAG,QAAQ;IACX,KAAK,UAAU;IACf,IAAI,SAAS;IACb,OAAO,YAAY;IACnB,MAAM,WAAW;CAClB;AA0BD,qBAAa,mBAAmB;IAuB9B,OAAO,EAAG,MAAM,CAAC;IAUjB,IAAI,EAAG,aAAa,CAAC;IA6BrB,IAAI,CAAC,EAAE,MAAM,CAAC;IAgCd,KAAK,CAAC,EAAE,MAAM,CAAC;IAqBf,WAAW,CAAC,EAAE,MAAM,CAAC;IAiBrB,MAAM,CAAC,EAAE,aAAa,CAAC;IAYvB,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAsBrC,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACrC;AAcD,yBAAiB,0BAA0B,CAAC;IAC1C,SAAgB,mBAAmB,CAAC,GAAG,EAAE,mBAAmB,GAAG,OAAO,CAErE;IAED,SAAgB,iBAAiB,CAAC,GAAG,EAAE,mBAAmB,GAAG,OAAO,CAEnE;IAED,SAAgB,mBAAmB,CAAC,GAAG,EAAE,mBAAmB,GAAG,OAAO,CAErE;IAED,SAAgB,gBAAgB,CAAC,GAAG,EAAE,mBAAmB,GAAG,OAAO,CAElE;IAED,SAAgB,iBAAiB,CAAC,GAAG,EAAE,mBAAmB,GAAG,OAAO,CAEnE;IAED,SAAgB,UAAU,CAAC,GAAG,EAAE,mBAAmB,GAAG,OAAO,CAE5D;CACF"}

package/dist/dto/respond-challenge.dto.js

@@ -0,0 +1,131 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RespondChallengeValidation = exports.RespondChallengeDTO = exports.MFAMethodType = exports.ChallengeType = void 0;
+const class_validator_1 = require("class-validator");
+const class_transformer_1 = require("class-transformer");
+var ChallengeType;
+(function (ChallengeType) {
+    ChallengeType["VERIFY_EMAIL"] = "VERIFY_EMAIL";
+    ChallengeType["VERIFY_PHONE"] = "VERIFY_PHONE";
+    ChallengeType["MFA_REQUIRED"] = "MFA_REQUIRED";
+    ChallengeType["FORCE_CHANGE_PASSWORD"] = "FORCE_CHANGE_PASSWORD";
+    ChallengeType["MFA_SETUP_REQUIRED"] = "MFA_SETUP_REQUIRED";
+})(ChallengeType || (exports.ChallengeType = ChallengeType = {}));
+var MFAMethodType;
+(function (MFAMethodType) {
+    MFAMethodType["SMS"] = "sms";
+    MFAMethodType["EMAIL"] = "email";
+    MFAMethodType["TOTP"] = "totp";
+    MFAMethodType["PASSKEY"] = "passkey";
+    MFAMethodType["BACKUP"] = "backup";
+})(MFAMethodType || (exports.MFAMethodType = MFAMethodType = {}));
+class RespondChallengeDTO {
+    session;
+    type;
+    code;
+    phone;
+    newPassword;
+    method;
+    credential;
+    setupData;
+}
+exports.RespondChallengeDTO = RespondChallengeDTO;
+__decorate([
+    (0, class_validator_1.IsUUID)('4', { message: 'Session token must be a valid UUID v4 format' }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            return value.trim().toLowerCase();
+        }
+        return value;
+    }),
+    __metadata("design:type", String)
+], RespondChallengeDTO.prototype, "session", void 0);
+__decorate([
+    (0, class_validator_1.IsEnum)(ChallengeType, {
+        message: 'Challenge type must be one of: VERIFY_EMAIL, VERIFY_PHONE, MFA_REQUIRED, FORCE_CHANGE_PASSWORD, MFA_SETUP_REQUIRED',
+    }),
+    __metadata("design:type", String)
+], RespondChallengeDTO.prototype, "type", void 0);
+__decorate([
+    (0, class_validator_1.ValidateIf)((o) => o.type === ChallengeType.VERIFY_EMAIL ||
+        (o.type === ChallengeType.VERIFY_PHONE && !o.phone) ||
+        (o.type === ChallengeType.MFA_REQUIRED && o.method !== MFAMethodType.PASSKEY)),
+    (0, class_validator_1.IsString)({ message: 'Code must be a string' }),
+    (0, class_validator_1.Length)(4, 10, { message: 'Code must be between 4 and 10 characters' }),
+    (0, class_validator_1.Matches)(/^[A-Za-z0-9]+$/, { message: 'Code can only contain letters and numbers' }),
+    __metadata("design:type", String)
+], RespondChallengeDTO.prototype, "code", void 0);
+__decorate([
+    (0, class_validator_1.ValidateIf)((o) => o.type === ChallengeType.VERIFY_PHONE && !o.code),
+    (0, class_validator_1.IsString)({ message: 'Phone must be a string' }),
+    (0, class_validator_1.MaxLength)(20, { message: 'Phone number must not exceed 20 characters' }),
+    (0, class_validator_1.Matches)(/^\+[1-9]\d{1,14}$/, {
+        message: 'Phone must be in E.164 format (e.g., +14155552671)',
+    }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            return value.trim();
+        }
+        return value;
+    }),
+    __metadata("design:type", String)
+], RespondChallengeDTO.prototype, "phone", void 0);
+__decorate([
+    (0, class_validator_1.ValidateIf)((o) => o.type === ChallengeType.FORCE_CHANGE_PASSWORD),
+    (0, class_validator_1.IsString)({ message: 'New password must be a string' }),
+    (0, class_validator_1.MinLength)(8, { message: 'Password must be at least 8 characters' }),
+    (0, class_validator_1.MaxLength)(128, { message: 'Password must not exceed 128 characters' }),
+    __metadata("design:type", String)
+], RespondChallengeDTO.prototype, "newPassword", void 0);
+__decorate([
+    (0, class_validator_1.ValidateIf)((o) => o.type === ChallengeType.MFA_REQUIRED || o.type === ChallengeType.MFA_SETUP_REQUIRED),
+    (0, class_validator_1.IsEnum)(MFAMethodType, { message: 'MFA method must be one of: sms, email, totp, passkey, backup' }),
+    __metadata("design:type", String)
+], RespondChallengeDTO.prototype, "method", void 0);
+__decorate([
+    (0, class_validator_1.ValidateIf)((o) => o.type === ChallengeType.MFA_REQUIRED && o.method === MFAMethodType.PASSKEY),
+    (0, class_validator_1.IsObject)({ message: 'Credential must be an object' }),
+    __metadata("design:type", Object)
+], RespondChallengeDTO.prototype, "credential", void 0);
+__decorate([
+    (0, class_validator_1.ValidateIf)((o) => o.type === ChallengeType.MFA_SETUP_REQUIRED),
+    (0, class_validator_1.IsObject)({ message: 'Setup data must be an object' }),
+    __metadata("design:type", Object)
+], RespondChallengeDTO.prototype, "setupData", void 0);
+var RespondChallengeValidation;
+(function (RespondChallengeValidation) {
+    function isEmailVerification(dto) {
+        return dto.type === ChallengeType.VERIFY_EMAIL && !!dto.code;
+    }
+    RespondChallengeValidation.isEmailVerification = isEmailVerification;
+    function isPhoneCollection(dto) {
+        return dto.type === ChallengeType.VERIFY_PHONE && !!dto.phone;
+    }
+    RespondChallengeValidation.isPhoneCollection = isPhoneCollection;
+    function isPhoneVerification(dto) {
+        return dto.type === ChallengeType.VERIFY_PHONE && !!dto.code;
+    }
+    RespondChallengeValidation.isPhoneVerification = isPhoneVerification;
+    function isPasswordChange(dto) {
+        return dto.type === ChallengeType.FORCE_CHANGE_PASSWORD && !!dto.newPassword;
+    }
+    RespondChallengeValidation.isPasswordChange = isPasswordChange;
+    function isMFAVerification(dto) {
+        return dto.type === ChallengeType.MFA_REQUIRED && !!dto.method;
+    }
+    RespondChallengeValidation.isMFAVerification = isMFAVerification;
+    function isMFASetup(dto) {
+        return dto.type === ChallengeType.MFA_SETUP_REQUIRED && !!dto.method && !!dto.setupData;
+    }
+    RespondChallengeValidation.isMFASetup = isMFASetup;
+})(RespondChallengeValidation || (exports.RespondChallengeValidation = RespondChallengeValidation = {}));
+//# sourceMappingURL=respond-challenge.dto.js.map

package/dist/dto/respond-challenge.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"respond-challenge.dto.js","sourceRoot":"","sources":["../../src/dto/respond-challenge.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAiBA,qDAAwH;AACxH,yDAA8C;AAK9C,IAAY,aAMX;AAND,WAAY,aAAa;IACvB,8CAA6B,CAAA;IAC7B,8CAA6B,CAAA;IAC7B,8CAA6B,CAAA;IAC7B,gEAA+C,CAAA;IAC/C,0DAAyC,CAAA;AAC3C,CAAC,EANW,aAAa,6BAAb,aAAa,QAMxB;AAKD,IAAY,aAMX;AAND,WAAY,aAAa;IACvB,4BAAW,CAAA;IACX,gCAAe,CAAA;IACf,8BAAa,CAAA;IACb,oCAAmB,CAAA;IACnB,kCAAiB,CAAA;AACnB,CAAC,EANW,aAAa,6BAAb,aAAa,QAMxB;AA0BD,MAAa,mBAAmB;IAuB9B,OAAO,CAAU;IAUjB,IAAI,CAAiB;IA6BrB,IAAI,CAAU;IAgCd,KAAK,CAAU;IAqBf,WAAW,CAAU;IAiBrB,MAAM,CAAiB;IAYvB,UAAU,CAA2B;IAsBrC,SAAS,CAA2B;CACrC;AAvKD,kDAuKC;AAhJC;IAPC,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,8CAA8C,EAAE,CAAC;IACxE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;oDACe;AAUjB;IAJC,IAAA,wBAAM,EAAC,aAAa,EAAE;QACrB,OAAO,EACL,oHAAoH;KACvH,CAAC;;iDACmB;AA6BrB;IATC,IAAA,4BAAU,EACT,CAAC,CAAC,EAAE,EAAE,CACJ,CAAC,CAAC,IAAI,KAAK,aAAa,CAAC,YAAY;QACrC,CAAC,CAAC,CAAC,IAAI,KAAK,aAAa,CAAC,YAAY,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC;QACnD,CAAC,CAAC,CAAC,IAAI,KAAK,aAAa,CAAC,YAAY,IAAI,CAAC,CAAC,MAAM,KAAK,aAAa,CAAC,OAAO,CAAC,CAChF;IACA,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,uBAAuB,EAAE,CAAC;IAC9C,IAAA,wBAAM,EAAC,CAAC,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,0CAA0C,EAAE,CAAC;IACtE,IAAA,yBAAO,EAAC,gBAAgB,EAAE,EAAE,OAAO,EAAE,2CAA2C,EAAE,CAAC;;iDACtE;AAgCd;IAZC,IAAA,4BAAU,EAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,aAAa,CAAC,YAAY,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC;IACnE,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,wBAAwB,EAAE,CAAC;IAC/C,IAAA,2BAAS,EAAC,EAAE,EAAE,EAAE,OAAO,EAAE,4CAA4C,EAAE,CAAC;IACxE,IAAA,yBAAO,EAAC,mBAAmB,EAAE;QAC5B,OAAO,EAAE,oDAAoD;KAC9D,CAAC;IACD,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC;QACtB,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;kDACa;AAqBf;IAJC,IAAA,4BAAU,EAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,aAAa,CAAC,qBAAqB,CAAC;IACjE,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,+BAA+B,EAAE,CAAC;IACtD,IAAA,2BAAS,EAAC,CAAC,EAAE,EAAE,OAAO,EAAE,wCAAwC,EAAE,CAAC;IACnE,IAAA,2BAAS,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;;wDAClD;AAiBrB;IAFC,IAAA,4BAAU,EAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,aAAa,CAAC,YAAY,IAAI,CAAC,CAAC,IAAI,KAAK,aAAa,CAAC,kBAAkB,CAAC;IACvG,IAAA,wBAAM,EAAC,aAAa,EAAE,EAAE,OAAO,EAAE,8DAA8D,EAAE,CAAC;;mDAC5E;AAYvB;IAFC,IAAA,4BAAU,EAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,aAAa,CAAC,YAAY,IAAI,CAAC,CAAC,MAAM,KAAK,aAAa,CAAC,OAAO,CAAC;IAC9F,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,8BAA8B,EAAE,CAAC;;uDACjB;AAsBrC;IAFC,IAAA,4BAAU,EAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,aAAa,CAAC,kBAAkB,CAAC;IAC9D,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,8BAA8B,EAAE,CAAC;;sDAClB;AAetC,IAAiB,0BAA0B,CAwB1C;AAxBD,WAAiB,0BAA0B;IACzC,SAAgB,mBAAmB,CAAC,GAAwB;QAC1D,OAAO,GAAG,CAAC,IAAI,KAAK,aAAa,CAAC,YAAY,IAAI,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC;IAC/D,CAAC;IAFe,8CAAmB,sBAElC,CAAA;IAED,SAAgB,iBAAiB,CAAC,GAAwB;QACxD,OAAO,GAAG,CAAC,IAAI,KAAK,aAAa,CAAC,YAAY,IAAI,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC;IAChE,CAAC;IAFe,4CAAiB,oBAEhC,CAAA;IAED,SAAgB,mBAAmB,CAAC,GAAwB;QAC1D,OAAO,GAAG,CAAC,IAAI,KAAK,aAAa,CAAC,YAAY,IAAI,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC;IAC/D,CAAC;IAFe,8CAAmB,sBAElC,CAAA;IAED,SAAgB,gBAAgB,CAAC,GAAwB;QACvD,OAAO,GAAG,CAAC,IAAI,KAAK,aAAa,CAAC,qBAAqB,IAAI,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC;IAC/E,CAAC;IAFe,2CAAgB,mBAE/B,CAAA;IAED,SAAgB,iBAAiB,CAAC,GAAwB;QACxD,OAAO,GAAG,CAAC,IAAI,KAAK,aAAa,CAAC,YAAY,IAAI,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC;IACjE,CAAC;IAFe,4CAAiB,oBAEhC,CAAA;IAED,SAAgB,UAAU,CAAC,GAAwB;QACjD,OAAO,GAAG,CAAC,IAAI,KAAK,aAAa,CAAC,kBAAkB,IAAI,CAAC,CAAC,GAAG,CAAC,MAAM,IAAI,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC;IAC1F,CAAC;IAFe,qCAAU,aAEzB,CAAA;AACH,CAAC,EAxBgB,0BAA0B,0CAA1B,0BAA0B,QAwB1C"}

package/dist/dto/set-mfa-exemption.dto.d.ts

@@ -0,0 +1,12 @@
+export declare class SetMFAExemptionDTO {
+    userSub: string;
+    exempt: boolean;
+    reason?: string | null;
+    grantedBy?: string | null;
+}
+export declare class SetMFAExemptionResponseDTO {
+    mfaExempt: boolean;
+    mfaExemptReason: string | null;
+    mfaExemptGrantedAt: Date | null;
+}
+//# sourceMappingURL=set-mfa-exemption.dto.d.ts.map

package/dist/dto/set-mfa-exemption.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"set-mfa-exemption.dto.d.ts","sourceRoot":"","sources":["../../src/dto/set-mfa-exemption.dto.ts"],"names":[],"mappings":"AAuBA,qBAAa,kBAAkB;IAqB7B,OAAO,EAAG,MAAM,CAAC;IAMjB,MAAM,EAAG,OAAO,CAAC;IAoBjB,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAoBvB,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAC3B;AAKD,qBAAa,0BAA0B;IAIrC,SAAS,EAAG,OAAO,CAAC;IAKpB,eAAe,EAAG,MAAM,GAAG,IAAI,CAAC;IAKhC,kBAAkB,EAAG,IAAI,GAAG,IAAI,CAAC;CAClC"}

package/dist/dto/set-mfa-exemption.dto.js

@@ -0,0 +1,66 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SetMFAExemptionResponseDTO = exports.SetMFAExemptionDTO = void 0;
+const class_validator_1 = require("class-validator");
+const class_transformer_1 = require("class-transformer");
+class SetMFAExemptionDTO {
+    userSub;
+    exempt;
+    reason;
+    grantedBy;
+}
+exports.SetMFAExemptionDTO = SetMFAExemptionDTO;
+__decorate([
+    (0, class_validator_1.IsUUID)('4', { message: 'User sub must be a valid UUID v4 format' }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            return value.trim().toLowerCase();
+        }
+        return value;
+    }),
+    __metadata("design:type", String)
+], SetMFAExemptionDTO.prototype, "userSub", void 0);
+__decorate([
+    (0, class_validator_1.IsBoolean)({ message: 'Exempt must be a boolean' }),
+    __metadata("design:type", Boolean)
+], SetMFAExemptionDTO.prototype, "exempt", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)({ message: 'Reason must be a string' }),
+    (0, class_validator_1.MaxLength)(500, { message: 'Reason must not exceed 500 characters' }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            return value.trim();
+        }
+        return value;
+    }),
+    __metadata("design:type", Object)
+], SetMFAExemptionDTO.prototype, "reason", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)({ message: 'Granted by must be a string' }),
+    (0, class_validator_1.MaxLength)(255, { message: 'Granted by must not exceed 255 characters' }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            return value.trim();
+        }
+        return value;
+    }),
+    __metadata("design:type", Object)
+], SetMFAExemptionDTO.prototype, "grantedBy", void 0);
+class SetMFAExemptionResponseDTO {
+    mfaExempt;
+    mfaExemptReason;
+    mfaExemptGrantedAt;
+}
+exports.SetMFAExemptionResponseDTO = SetMFAExemptionResponseDTO;
+//# sourceMappingURL=set-mfa-exemption.dto.js.map

package/dist/dto/set-mfa-exemption.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"set-mfa-exemption.dto.js","sourceRoot":"","sources":["../../src/dto/set-mfa-exemption.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAiBA,qDAAqF;AACrF,yDAA8C;AAK9C,MAAa,kBAAkB;IAqB7B,OAAO,CAAU;IAMjB,MAAM,CAAW;IAoBjB,MAAM,CAAiB;IAoBvB,SAAS,CAAiB;CAC3B;AApED,gDAoEC;AA/CC;IAPC,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;IACnE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;mDACe;AAMjB;IADC,IAAA,2BAAS,EAAC,EAAE,OAAO,EAAE,0BAA0B,EAAE,CAAC;;kDAClC;AAoBjB;IATC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,yBAAyB,EAAE,CAAC;IAChD,IAAA,2BAAS,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,uCAAuC,EAAE,CAAC;IACpE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC;QACtB,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;kDACqB;AAoBvB;IATC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,6BAA6B,EAAE,CAAC;IACpD,IAAA,2BAAS,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,2CAA2C,EAAE,CAAC;IACxE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC;QACtB,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;qDACwB;AAM5B,MAAa,0BAA0B;IAIrC,SAAS,CAAW;IAKpB,eAAe,CAAiB;IAKhC,kBAAkB,CAAe;CAClC;AAfD,gEAeC"}

package/dist/dto/set-must-change-password-response.dto.d.ts

@@ -0,0 +1,4 @@
+export declare class SetMustChangePasswordResponseDTO {
+    success: boolean;
+}
+//# sourceMappingURL=set-must-change-password-response.dto.d.ts.map

package/dist/dto/set-must-change-password-response.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"set-must-change-password-response.dto.d.ts","sourceRoot":"","sources":["../../src/dto/set-must-change-password-response.dto.ts"],"names":[],"mappings":"AAkBA,qBAAa,gCAAgC;IAO3C,OAAO,EAAG,OAAO,CAAC;CACnB"}

package/dist/dto/set-must-change-password-response.dto.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SetMustChangePasswordResponseDTO = void 0;
+class SetMustChangePasswordResponseDTO {
+    success;
+}
+exports.SetMustChangePasswordResponseDTO = SetMustChangePasswordResponseDTO;
+//# sourceMappingURL=set-must-change-password-response.dto.js.map

package/dist/dto/set-must-change-password-response.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"set-must-change-password-response.dto.js","sourceRoot":"","sources":["../../src/dto/set-must-change-password-response.dto.ts"],"names":[],"mappings":";;;AAkBA,MAAa,gCAAgC;IAO3C,OAAO,CAAW;CACnB;AARD,4EAQC"}