npm - @nauth-toolkit/core - Versions diffs - 0.1.14 → 0.1.17 - Mend

@nauth-toolkit/core 0.1.14 → 0.1.17

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (623) hide show

package/dist/adapters/database-columns.d.ts +70 -0
package/dist/adapters/database-columns.d.ts.map +1 -1
package/dist/adapters/database-columns.js +76 -2
package/dist/adapters/database-columns.js.map +1 -1
package/dist/adapters/express.adapter.d.ts +66 -0
package/dist/adapters/express.adapter.d.ts.map +1 -1
package/dist/adapters/express.adapter.js +80 -0
package/dist/adapters/express.adapter.js.map +1 -1
package/dist/adapters/fastify.adapter.d.ts +42 -0
package/dist/adapters/fastify.adapter.d.ts.map +1 -1
package/dist/adapters/fastify.adapter.js +86 -0
package/dist/adapters/fastify.adapter.js.map +1 -1
package/dist/adapters/index.d.ts +5 -0
package/dist/adapters/index.d.ts.map +1 -1
package/dist/adapters/index.js +9 -0
package/dist/adapters/index.js.map +1 -1
package/dist/adapters/storage.factory.d.ts +107 -0
package/dist/adapters/storage.factory.d.ts.map +1 -1
package/dist/adapters/storage.factory.js +114 -0
package/dist/adapters/storage.factory.js.map +1 -1
package/dist/adapters.d.ts +8 -0
package/dist/adapters.d.ts.map +1 -1
package/dist/adapters.js +8 -0
package/dist/adapters.js.map +1 -1
package/dist/bootstrap.d.ts +82 -0
package/dist/bootstrap.d.ts.map +1 -1
package/dist/bootstrap.js +106 -0
package/dist/bootstrap.js.map +1 -1
package/dist/dto/admin-set-password.dto.d.ts +90 -0
package/dist/dto/admin-set-password.dto.d.ts.map +1 -1
package/dist/dto/admin-set-password.dto.js +91 -0
package/dist/dto/admin-set-password.dto.js.map +1 -1
package/dist/dto/auth-challenge.dto.d.ts +170 -0
package/dist/dto/auth-challenge.dto.d.ts.map +1 -1
package/dist/dto/auth-challenge.dto.js +170 -0
package/dist/dto/auth-challenge.dto.js.map +1 -1
package/dist/dto/auth-response.dto.d.ts +196 -0
package/dist/dto/auth-response.dto.d.ts.map +1 -1
package/dist/dto/auth-response.dto.js +149 -0
package/dist/dto/auth-response.dto.js.map +1 -1
package/dist/dto/challenge-response.dto.d.ts +155 -0
package/dist/dto/challenge-response.dto.d.ts.map +1 -1
package/dist/dto/challenge-response.dto.js +8 -0
package/dist/dto/challenge-response.dto.js.map +1 -1
package/dist/dto/change-password-request.dto.d.ts +35 -0
package/dist/dto/change-password-request.dto.d.ts.map +1 -1
package/dist/dto/change-password-request.dto.js +35 -0
package/dist/dto/change-password-request.dto.js.map +1 -1
package/dist/dto/change-password-response.dto.d.ts +25 -0
package/dist/dto/change-password-response.dto.d.ts.map +1 -1
package/dist/dto/change-password-response.dto.js +25 -0
package/dist/dto/change-password-response.dto.js.map +1 -1
package/dist/dto/change-password.dto.d.ts +45 -0
package/dist/dto/change-password.dto.d.ts.map +1 -1
package/dist/dto/change-password.dto.js +45 -0
package/dist/dto/change-password.dto.js.map +1 -1
package/dist/dto/confirm-forgot-password.dto.d.ts +59 -0
package/dist/dto/confirm-forgot-password.dto.d.ts.map +1 -1
package/dist/dto/confirm-forgot-password.dto.js +59 -0
package/dist/dto/confirm-forgot-password.dto.js.map +1 -1
package/dist/dto/error-response.dto.d.ts +103 -0
package/dist/dto/error-response.dto.d.ts.map +1 -1
package/dist/dto/error-response.dto.js +103 -0
package/dist/dto/error-response.dto.js.map +1 -1
package/dist/dto/forgot-password.dto.d.ts +58 -0
package/dist/dto/forgot-password.dto.d.ts.map +1 -1
package/dist/dto/forgot-password.dto.js +58 -0
package/dist/dto/forgot-password.dto.js.map +1 -1
package/dist/dto/get-available-methods.dto.d.ts +37 -0
package/dist/dto/get-available-methods.dto.d.ts.map +1 -1
package/dist/dto/get-available-methods.dto.js +37 -0
package/dist/dto/get-available-methods.dto.js.map +1 -1
package/dist/dto/get-challenge-data-response.dto.d.ts +24 -0
package/dist/dto/get-challenge-data-response.dto.d.ts.map +1 -1
package/dist/dto/get-challenge-data-response.dto.js +24 -0
package/dist/dto/get-challenge-data-response.dto.js.map +1 -1
package/dist/dto/get-challenge-data.dto.d.ts +46 -0
package/dist/dto/get-challenge-data.dto.d.ts.map +1 -1
package/dist/dto/get-challenge-data.dto.js +46 -0
package/dist/dto/get-challenge-data.dto.js.map +1 -1
package/dist/dto/get-client-info.dto.d.ts +74 -0
package/dist/dto/get-client-info.dto.d.ts.map +1 -1
package/dist/dto/get-client-info.dto.js +74 -0
package/dist/dto/get-client-info.dto.js.map +1 -1
package/dist/dto/get-device-token-response.dto.d.ts +21 -0
package/dist/dto/get-device-token-response.dto.d.ts.map +1 -1
package/dist/dto/get-device-token-response.dto.js +21 -0
package/dist/dto/get-device-token-response.dto.js.map +1 -1
package/dist/dto/get-events-by-type.dto.d.ts +50 -0
package/dist/dto/get-events-by-type.dto.d.ts.map +1 -1
package/dist/dto/get-events-by-type.dto.js +50 -0
package/dist/dto/get-events-by-type.dto.js.map +1 -1
package/dist/dto/get-ip-address-response.dto.d.ts +20 -0
package/dist/dto/get-ip-address-response.dto.d.ts.map +1 -1
package/dist/dto/get-ip-address-response.dto.js +20 -0
package/dist/dto/get-ip-address-response.dto.js.map +1 -1
package/dist/dto/get-mfa-status.dto.d.ts +59 -0
package/dist/dto/get-mfa-status.dto.d.ts.map +1 -1
package/dist/dto/get-mfa-status.dto.js +59 -0
package/dist/dto/get-mfa-status.dto.js.map +1 -1
package/dist/dto/get-risk-assessment-history.dto.d.ts +28 -0
package/dist/dto/get-risk-assessment-history.dto.d.ts.map +1 -1
package/dist/dto/get-risk-assessment-history.dto.js +28 -0
package/dist/dto/get-risk-assessment-history.dto.js.map +1 -1
package/dist/dto/get-session-id-response.dto.d.ts +21 -0
package/dist/dto/get-session-id-response.dto.d.ts.map +1 -1
package/dist/dto/get-session-id-response.dto.js +21 -0
package/dist/dto/get-session-id-response.dto.js.map +1 -1
package/dist/dto/get-setup-data-response.dto.d.ts +27 -0
package/dist/dto/get-setup-data-response.dto.d.ts.map +1 -1
package/dist/dto/get-setup-data-response.dto.js +27 -0
package/dist/dto/get-setup-data-response.dto.js.map +1 -1
package/dist/dto/get-setup-data.dto.d.ts +51 -0
package/dist/dto/get-setup-data.dto.d.ts.map +1 -1
package/dist/dto/get-setup-data.dto.js +51 -0
package/dist/dto/get-setup-data.dto.js.map +1 -1
package/dist/dto/get-suspicious-activity.dto.d.ts +31 -0
package/dist/dto/get-suspicious-activity.dto.d.ts.map +1 -1
package/dist/dto/get-suspicious-activity.dto.js +31 -0
package/dist/dto/get-suspicious-activity.dto.js.map +1 -1
package/dist/dto/get-user-agent-response.dto.d.ts +19 -0
package/dist/dto/get-user-agent-response.dto.d.ts.map +1 -1
package/dist/dto/get-user-agent-response.dto.js +19 -0
package/dist/dto/get-user-agent-response.dto.js.map +1 -1
package/dist/dto/get-user-auth-history.dto.d.ts +64 -0
package/dist/dto/get-user-auth-history.dto.d.ts.map +1 -1
package/dist/dto/get-user-auth-history.dto.js +64 -0
package/dist/dto/get-user-auth-history.dto.js.map +1 -1
package/dist/dto/get-user-by-email.dto.d.ts +42 -0
package/dist/dto/get-user-by-email.dto.d.ts.map +1 -1
package/dist/dto/get-user-by-email.dto.js +42 -0
package/dist/dto/get-user-by-email.dto.js.map +1 -1
package/dist/dto/get-user-by-id.dto.d.ts +32 -0
package/dist/dto/get-user-by-id.dto.d.ts.map +1 -1
package/dist/dto/get-user-by-id.dto.js +32 -0
package/dist/dto/get-user-by-id.dto.js.map +1 -1
package/dist/dto/get-user-devices.dto.d.ts +34 -0
package/dist/dto/get-user-devices.dto.d.ts.map +1 -1
package/dist/dto/get-user-devices.dto.js +34 -0
package/dist/dto/get-user-devices.dto.js.map +1 -1
package/dist/dto/get-user-response.dto.d.ts +14 -0
package/dist/dto/get-user-response.dto.d.ts.map +1 -1
package/dist/dto/get-user-response.dto.js +15 -0
package/dist/dto/get-user-response.dto.js.map +1 -1
package/dist/dto/has-provider.dto.d.ts +33 -0
package/dist/dto/has-provider.dto.d.ts.map +1 -1
package/dist/dto/has-provider.dto.js +33 -0
package/dist/dto/has-provider.dto.js.map +1 -1
package/dist/dto/index.js +5 -0
package/dist/dto/index.js.map +1 -1
package/dist/dto/is-trusted-device-response.dto.d.ts +28 -0
package/dist/dto/is-trusted-device-response.dto.d.ts.map +1 -1
package/dist/dto/is-trusted-device-response.dto.js +28 -0
package/dist/dto/is-trusted-device-response.dto.js.map +1 -1
package/dist/dto/list-providers-response.dto.d.ts +19 -0
package/dist/dto/list-providers-response.dto.d.ts.map +1 -1
package/dist/dto/list-providers-response.dto.js +19 -0
package/dist/dto/list-providers-response.dto.js.map +1 -1
package/dist/dto/login.dto.d.ts +48 -0
package/dist/dto/login.dto.d.ts.map +1 -1
package/dist/dto/login.dto.js +50 -1
package/dist/dto/login.dto.js.map +1 -1
package/dist/dto/logout-all-response.dto.d.ts +20 -0
package/dist/dto/logout-all-response.dto.d.ts.map +1 -1
package/dist/dto/logout-all-response.dto.js +20 -0
package/dist/dto/logout-all-response.dto.js.map +1 -1
package/dist/dto/logout-all.dto.d.ts +42 -0
package/dist/dto/logout-all.dto.d.ts.map +1 -1
package/dist/dto/logout-all.dto.js +42 -0
package/dist/dto/logout-all.dto.js.map +1 -1
package/dist/dto/logout-response.dto.d.ts +21 -0
package/dist/dto/logout-response.dto.d.ts.map +1 -1
package/dist/dto/logout-response.dto.js +21 -0
package/dist/dto/logout-response.dto.js.map +1 -1
package/dist/dto/logout.dto.d.ts +45 -0
package/dist/dto/logout.dto.d.ts.map +1 -1
package/dist/dto/logout.dto.js +45 -0
package/dist/dto/logout.dto.js.map +1 -1
package/dist/dto/refresh-token.dto.d.ts +28 -0
package/dist/dto/refresh-token.dto.d.ts.map +1 -1
package/dist/dto/refresh-token.dto.js +28 -0
package/dist/dto/refresh-token.dto.js.map +1 -1
package/dist/dto/remove-devices.dto.d.ts +51 -0
package/dist/dto/remove-devices.dto.d.ts.map +1 -1
package/dist/dto/remove-devices.dto.js +51 -0
package/dist/dto/remove-devices.dto.js.map +1 -1
package/dist/dto/resend-code-response.dto.d.ts +28 -0
package/dist/dto/resend-code-response.dto.d.ts.map +1 -1
package/dist/dto/resend-code-response.dto.js +28 -0
package/dist/dto/resend-code-response.dto.js.map +1 -1
package/dist/dto/resend-code.dto.d.ts +37 -0
package/dist/dto/resend-code.dto.d.ts.map +1 -1
package/dist/dto/resend-code.dto.js +37 -0
package/dist/dto/resend-code.dto.js.map +1 -1
package/dist/dto/reset-password.dto.d.ts +74 -0
package/dist/dto/reset-password.dto.d.ts.map +1 -1
package/dist/dto/reset-password.dto.js +76 -1
package/dist/dto/reset-password.dto.js.map +1 -1
package/dist/dto/respond-challenge.dto.d.ts +147 -0
package/dist/dto/respond-challenge.dto.d.ts.map +1 -1
package/dist/dto/respond-challenge.dto.js +162 -0
package/dist/dto/respond-challenge.dto.js.map +1 -1
package/dist/dto/set-mfa-exemption.dto.d.ts +65 -0
package/dist/dto/set-mfa-exemption.dto.d.ts.map +1 -1
package/dist/dto/set-mfa-exemption.dto.js +65 -0
package/dist/dto/set-mfa-exemption.dto.js.map +1 -1
package/dist/dto/set-must-change-password-response.dto.d.ts +23 -0
package/dist/dto/set-must-change-password-response.dto.d.ts.map +1 -1
package/dist/dto/set-must-change-password-response.dto.js +23 -0
package/dist/dto/set-must-change-password-response.dto.js.map +1 -1
package/dist/dto/set-must-change-password.dto.d.ts +32 -0
package/dist/dto/set-must-change-password.dto.d.ts.map +1 -1
package/dist/dto/set-must-change-password.dto.js +32 -0
package/dist/dto/set-must-change-password.dto.js.map +1 -1
package/dist/dto/set-preferred-method.dto.d.ts +48 -0
package/dist/dto/set-preferred-method.dto.d.ts.map +1 -1
package/dist/dto/set-preferred-method.dto.js +48 -0
package/dist/dto/set-preferred-method.dto.js.map +1 -1
package/dist/dto/setup-mfa.dto.d.ts +62 -0
package/dist/dto/setup-mfa.dto.d.ts.map +1 -1
package/dist/dto/setup-mfa.dto.js +62 -0
package/dist/dto/setup-mfa.dto.js.map +1 -1
package/dist/dto/signup.dto.d.ts +92 -0
package/dist/dto/signup.dto.d.ts.map +1 -1
package/dist/dto/signup.dto.js +93 -0
package/dist/dto/signup.dto.js.map +1 -1
package/dist/dto/social-auth.dto.d.ts +234 -0
package/dist/dto/social-auth.dto.d.ts.map +1 -1
package/dist/dto/social-auth.dto.js +234 -0
package/dist/dto/social-auth.dto.js.map +1 -1
package/dist/dto/trust-device-response.dto.d.ts +26 -0
package/dist/dto/trust-device-response.dto.d.ts.map +1 -1
package/dist/dto/trust-device-response.dto.js +26 -0
package/dist/dto/trust-device-response.dto.js.map +1 -1
package/dist/dto/trust-device.dto.d.ts +9 -0
package/dist/dto/trust-device.dto.d.ts.map +1 -1
package/dist/dto/trust-device.dto.js +9 -0
package/dist/dto/trust-device.dto.js.map +1 -1
package/dist/dto/update-user-attributes-request.dto.d.ts +36 -0
package/dist/dto/update-user-attributes-request.dto.d.ts.map +1 -1
package/dist/dto/update-user-attributes-request.dto.js +36 -0
package/dist/dto/update-user-attributes-request.dto.js.map +1 -1
package/dist/dto/user-response.dto.d.ts +81 -0
package/dist/dto/user-response.dto.d.ts.map +1 -1
package/dist/dto/user-response.dto.js +84 -2
package/dist/dto/user-response.dto.js.map +1 -1
package/dist/dto/user-update.dto.d.ts +132 -0
package/dist/dto/user-update.dto.d.ts.map +1 -1
package/dist/dto/user-update.dto.js +133 -0
package/dist/dto/user-update.dto.js.map +1 -1
package/dist/dto/verify-email.dto.d.ts +171 -0
package/dist/dto/verify-email.dto.d.ts.map +1 -1
package/dist/dto/verify-email.dto.js +173 -1
package/dist/dto/verify-email.dto.js.map +1 -1
package/dist/dto/verify-mfa-code.dto.d.ts +65 -0
package/dist/dto/verify-mfa-code.dto.d.ts.map +1 -1
package/dist/dto/verify-mfa-code.dto.js +65 -0
package/dist/dto/verify-mfa-code.dto.js.map +1 -1
package/dist/dto/verify-phone-by-sub.dto.d.ts +49 -0
package/dist/dto/verify-phone-by-sub.dto.d.ts.map +1 -1
package/dist/dto/verify-phone-by-sub.dto.js +49 -0
package/dist/dto/verify-phone-by-sub.dto.js.map +1 -1
package/dist/dto/verify-phone.dto.d.ts +139 -0
package/dist/dto/verify-phone.dto.d.ts.map +1 -1
package/dist/dto/verify-phone.dto.js +142 -1
package/dist/dto/verify-phone.dto.js.map +1 -1
package/dist/dto.d.ts +10 -0
package/dist/dto.d.ts.map +1 -1
package/dist/dto.js +10 -0
package/dist/dto.js.map +1 -1
package/dist/entities/auth-audit.entity.d.ts +159 -0
package/dist/entities/auth-audit.entity.d.ts.map +1 -1
package/dist/entities/auth-audit.entity.js +166 -0
package/dist/entities/auth-audit.entity.js.map +1 -1
package/dist/entities/challenge-session.entity.d.ts +87 -0
package/dist/entities/challenge-session.entity.d.ts.map +1 -1
package/dist/entities/challenge-session.entity.js +87 -0
package/dist/entities/challenge-session.entity.js.map +1 -1
package/dist/entities/index.d.ts +18 -0
package/dist/entities/index.d.ts.map +1 -1
package/dist/entities/index.js +18 -0
package/dist/entities/index.js.map +1 -1
package/dist/entities/login-attempt.entity.d.ts +43 -0
package/dist/entities/login-attempt.entity.d.ts.map +1 -1
package/dist/entities/login-attempt.entity.js +43 -0
package/dist/entities/login-attempt.entity.js.map +1 -1
package/dist/entities/mfa-device.entity.d.ts +112 -0
package/dist/entities/mfa-device.entity.d.ts.map +1 -1
package/dist/entities/mfa-device.entity.js +112 -0
package/dist/entities/mfa-device.entity.js.map +1 -1
package/dist/entities/rate-limit.entity.d.ts +31 -0
package/dist/entities/rate-limit.entity.d.ts.map +1 -1
package/dist/entities/rate-limit.entity.js +31 -0
package/dist/entities/rate-limit.entity.js.map +1 -1
package/dist/entities/session.entity.d.ts +121 -0
package/dist/entities/session.entity.d.ts.map +1 -1
package/dist/entities/session.entity.js +121 -0
package/dist/entities/session.entity.js.map +1 -1
package/dist/entities/social-account.entity.d.ts +75 -0
package/dist/entities/social-account.entity.d.ts.map +1 -1
package/dist/entities/social-account.entity.js +75 -0
package/dist/entities/social-account.entity.js.map +1 -1
package/dist/entities/storage-lock.entity.d.ts +28 -0
package/dist/entities/storage-lock.entity.d.ts.map +1 -1
package/dist/entities/storage-lock.entity.js +28 -0
package/dist/entities/storage-lock.entity.js.map +1 -1
package/dist/entities/trusted-device.entity.d.ts +83 -0
package/dist/entities/trusted-device.entity.d.ts.map +1 -1
package/dist/entities/trusted-device.entity.js +83 -0
package/dist/entities/trusted-device.entity.js.map +1 -1
package/dist/entities/user.entity.d.ts +166 -0
package/dist/entities/user.entity.d.ts.map +1 -1
package/dist/entities/user.entity.js +166 -0
package/dist/entities/user.entity.js.map +1 -1
package/dist/entities/verification-token.entity.d.ts +102 -0
package/dist/entities/verification-token.entity.d.ts.map +1 -1
package/dist/entities/verification-token.entity.js +102 -0
package/dist/entities/verification-token.entity.js.map +1 -1
package/dist/entities.d.ts +8 -0
package/dist/entities.d.ts.map +1 -1
package/dist/entities.js +8 -0
package/dist/entities.js.map +1 -1
package/dist/enums/auth-audit-event-type.enum.d.ts +211 -0
package/dist/enums/auth-audit-event-type.enum.d.ts.map +1 -1
package/dist/enums/auth-audit-event-type.enum.js +244 -0
package/dist/enums/auth-audit-event-type.enum.js.map +1 -1
package/dist/enums/error-codes.enum.d.ts +296 -0
package/dist/enums/error-codes.enum.d.ts.map +1 -1
package/dist/enums/error-codes.enum.js +332 -0
package/dist/enums/error-codes.enum.js.map +1 -1
package/dist/enums/mfa-method.enum.d.ts +74 -0
package/dist/enums/mfa-method.enum.d.ts.map +1 -1
package/dist/enums/mfa-method.enum.js +64 -0
package/dist/enums/mfa-method.enum.js.map +1 -1
package/dist/enums/risk-factor.enum.d.ts +91 -0
package/dist/enums/risk-factor.enum.d.ts.map +1 -1
package/dist/enums/risk-factor.enum.js +97 -0
package/dist/enums/risk-factor.enum.js.map +1 -1
package/dist/exceptions/nauth.exception.d.ts +149 -0
package/dist/exceptions/nauth.exception.d.ts.map +1 -1
package/dist/exceptions/nauth.exception.js +159 -0
package/dist/exceptions/nauth.exception.js.map +1 -1
package/dist/handlers/auth.handler.d.ts +32 -0
package/dist/handlers/auth.handler.d.ts.map +1 -1
package/dist/handlers/auth.handler.js +47 -1
package/dist/handlers/auth.handler.js.map +1 -1
package/dist/handlers/client-info.handler.d.ts +25 -0
package/dist/handlers/client-info.handler.d.ts.map +1 -1
package/dist/handlers/client-info.handler.js +36 -2
package/dist/handlers/client-info.handler.js.map +1 -1
package/dist/handlers/csrf.handler.d.ts +32 -0
package/dist/handlers/csrf.handler.d.ts.map +1 -1
package/dist/handlers/csrf.handler.js +49 -1
package/dist/handlers/csrf.handler.js.map +1 -1
package/dist/handlers/token-delivery.handler.d.ts +16 -0
package/dist/handlers/token-delivery.handler.d.ts.map +1 -1
package/dist/handlers/token-delivery.handler.js +22 -1
package/dist/handlers/token-delivery.handler.js.map +1 -1
package/dist/index.d.ts +34 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +67 -0
package/dist/index.js.map +1 -1
package/dist/interfaces/client-info.interface.d.ts +58 -0
package/dist/interfaces/client-info.interface.d.ts.map +1 -1
package/dist/interfaces/config.interface.d.ts +1774 -0
package/dist/interfaces/config.interface.d.ts.map +1 -1
package/dist/interfaces/config.interface.js +16 -0
package/dist/interfaces/config.interface.js.map +1 -1
package/dist/interfaces/entities.interface.d.ts +48 -0
package/dist/interfaces/entities.interface.d.ts.map +1 -1
package/dist/interfaces/entities.interface.js +8 -0
package/dist/interfaces/entities.interface.js.map +1 -1
package/dist/interfaces/index.js +5 -0
package/dist/interfaces/index.js.map +1 -1
package/dist/interfaces/logger.interface.d.ts +213 -0
package/dist/interfaces/logger.interface.d.ts.map +1 -1
package/dist/interfaces/logger.interface.js +35 -0
package/dist/interfaces/logger.interface.js.map +1 -1
package/dist/interfaces/mfa-provider.interface.d.ts +134 -0
package/dist/interfaces/mfa-provider.interface.d.ts.map +1 -1
package/dist/interfaces/oauth.interface.d.ts +110 -0
package/dist/interfaces/oauth.interface.d.ts.map +1 -1
package/dist/interfaces/provider.interface.d.ts +83 -0
package/dist/interfaces/provider.interface.d.ts.map +1 -1
package/dist/interfaces/sms-template.interface.d.ts +246 -0
package/dist/interfaces/sms-template.interface.d.ts.map +1 -1
package/dist/interfaces/sms-template.interface.js +26 -0
package/dist/interfaces/sms-template.interface.js.map +1 -1
package/dist/interfaces/social-auth-provider.interface.d.ts +115 -0
package/dist/interfaces/social-auth-provider.interface.d.ts.map +1 -1
package/dist/interfaces/storage-adapter.interface.d.ts +37 -0
package/dist/interfaces/storage-adapter.interface.d.ts.map +1 -1
package/dist/interfaces/template.interface.d.ts +351 -0
package/dist/interfaces/template.interface.d.ts.map +1 -1
package/dist/interfaces/template.interface.js +13 -0
package/dist/interfaces/template.interface.js.map +1 -1
package/dist/interfaces/token-verifier.interface.d.ts +101 -0
package/dist/interfaces/token-verifier.interface.d.ts.map +1 -1
package/dist/interfaces.d.ts +8 -0
package/dist/interfaces.d.ts.map +1 -1
package/dist/interfaces.js +8 -0
package/dist/interfaces.js.map +1 -1
package/dist/internal.d.ts +120 -0
package/dist/internal.d.ts.map +1 -1
package/dist/internal.js +138 -0
package/dist/internal.js.map +1 -1
package/dist/platform/interfaces.d.ts +187 -0
package/dist/platform/interfaces.d.ts.map +1 -1
package/dist/platform/interfaces.js +11 -0
package/dist/platform/interfaces.js.map +1 -1
package/dist/schemas/auth-config.schema.d.ts +48 -0
package/dist/schemas/auth-config.schema.d.ts.map +1 -1
package/dist/schemas/auth-config.schema.js +188 -9
package/dist/schemas/auth-config.schema.js.map +1 -1
package/dist/services/adaptive-mfa-decision.service.d.ts +144 -0
package/dist/services/adaptive-mfa-decision.service.d.ts.map +1 -1
package/dist/services/adaptive-mfa-decision.service.js +151 -5
package/dist/services/adaptive-mfa-decision.service.js.map +1 -1
package/dist/services/auth-audit.service.d.ts +195 -0
package/dist/services/auth-audit.service.d.ts.map +1 -1
package/dist/services/auth-audit.service.js +228 -1
package/dist/services/auth-audit.service.js.map +1 -1
package/dist/services/auth-challenge-helper.service.d.ts +144 -1
package/dist/services/auth-challenge-helper.service.d.ts.map +1 -1
package/dist/services/auth-challenge-helper.service.js +295 -16
package/dist/services/auth-challenge-helper.service.js.map +1 -1
package/dist/services/auth-flow-context-builder.service.d.ts +120 -1
package/dist/services/auth-flow-context-builder.service.d.ts.map +1 -1
package/dist/services/auth-flow-context-builder.service.js +184 -5
package/dist/services/auth-flow-context-builder.service.js.map +1 -1
package/dist/services/auth-flow-rules.d.ts +136 -0
package/dist/services/auth-flow-rules.d.ts.map +1 -1
package/dist/services/auth-flow-rules.js +137 -0
package/dist/services/auth-flow-rules.js.map +1 -1
package/dist/services/auth-flow-state-definitions.d.ts +40 -0
package/dist/services/auth-flow-state-definitions.d.ts.map +1 -1
package/dist/services/auth-flow-state-definitions.js +98 -0
package/dist/services/auth-flow-state-definitions.js.map +1 -1
package/dist/services/auth-flow-state-machine.service.d.ts +91 -0
package/dist/services/auth-flow-state-machine.service.d.ts.map +1 -1
package/dist/services/auth-flow-state-machine.service.js +102 -0
package/dist/services/auth-flow-state-machine.service.js.map +1 -1
package/dist/services/auth-flow-state-machine.types.d.ts +221 -0
package/dist/services/auth-flow-state-machine.types.d.ts.map +1 -1
package/dist/services/auth-flow-state-machine.types.js +47 -0
package/dist/services/auth-flow-state-machine.types.js.map +1 -1
package/dist/services/auth.service.d.ts +397 -1
package/dist/services/auth.service.d.ts.map +1 -1
package/dist/services/auth.service.js +943 -27
package/dist/services/auth.service.js.map +1 -1
package/dist/services/challenge.service.d.ts +255 -1
package/dist/services/challenge.service.d.ts.map +1 -1
package/dist/services/challenge.service.js +327 -3
package/dist/services/challenge.service.js.map +1 -1
package/dist/services/client-info.service.d.ts +143 -0
package/dist/services/client-info.service.d.ts.map +1 -1
package/dist/services/client-info.service.js +161 -0
package/dist/services/client-info.service.js.map +1 -1
package/dist/services/csrf.service.d.ts +15 -0
package/dist/services/csrf.service.d.ts.map +1 -1
package/dist/services/csrf.service.js +16 -0
package/dist/services/csrf.service.js.map +1 -1
package/dist/services/email-verification.service.d.ts +52 -0
package/dist/services/email-verification.service.d.ts.map +1 -1
package/dist/services/email-verification.service.js +149 -10
package/dist/services/email-verification.service.js.map +1 -1
package/dist/services/geo-location.service.d.ts +105 -0
package/dist/services/geo-location.service.d.ts.map +1 -1
package/dist/services/geo-location.service.js +188 -2
package/dist/services/geo-location.service.js.map +1 -1
package/dist/services/jwt.service.d.ts +257 -0
package/dist/services/jwt.service.d.ts.map +1 -1
package/dist/services/jwt.service.js +284 -1
package/dist/services/jwt.service.js.map +1 -1
package/dist/services/mfa-base.service.d.ts +179 -1
package/dist/services/mfa-base.service.d.ts.map +1 -1
package/dist/services/mfa-base.service.js +256 -2
package/dist/services/mfa-base.service.js.map +1 -1
package/dist/services/mfa.service.d.ts +304 -0
package/dist/services/mfa.service.d.ts.map +1 -1
package/dist/services/mfa.service.js +380 -0
package/dist/services/mfa.service.js.map +1 -1
package/dist/services/password-reset.service.d.ts +46 -0
package/dist/services/password-reset.service.d.ts.map +1 -1
package/dist/services/password-reset.service.js +79 -0
package/dist/services/password-reset.service.js.map +1 -1
package/dist/services/password.service.d.ts +139 -0
package/dist/services/password.service.d.ts.map +1 -1
package/dist/services/password.service.js +167 -9
package/dist/services/password.service.js.map +1 -1
package/dist/services/phone-verification.service.d.ts +75 -0
package/dist/services/phone-verification.service.d.ts.map +1 -1
package/dist/services/phone-verification.service.js +188 -6
package/dist/services/phone-verification.service.js.map +1 -1
package/dist/services/risk-detection.service.d.ts +198 -0
package/dist/services/risk-detection.service.d.ts.map +1 -1
package/dist/services/risk-detection.service.js +358 -11
package/dist/services/risk-detection.service.js.map +1 -1
package/dist/services/risk-scoring.service.d.ts +84 -0
package/dist/services/risk-scoring.service.d.ts.map +1 -1
package/dist/services/risk-scoring.service.js +87 -0
package/dist/services/risk-scoring.service.js.map +1 -1
package/dist/services/session.service.d.ts +204 -0
package/dist/services/session.service.d.ts.map +1 -1
package/dist/services/session.service.js +289 -4
package/dist/services/session.service.js.map +1 -1
package/dist/services/social-auth-base.service.d.ts +123 -1
package/dist/services/social-auth-base.service.d.ts.map +1 -1
package/dist/services/social-auth-base.service.js +155 -2
package/dist/services/social-auth-base.service.js.map +1 -1
package/dist/services/social-auth.service.d.ts +191 -0
package/dist/services/social-auth.service.d.ts.map +1 -1
package/dist/services/social-auth.service.js +215 -2
package/dist/services/social-auth.service.js.map +1 -1
package/dist/services/social-provider-registry.service.d.ts +86 -0
package/dist/services/social-provider-registry.service.d.ts.map +1 -1
package/dist/services/social-provider-registry.service.js +86 -0
package/dist/services/social-provider-registry.service.js.map +1 -1
package/dist/services/trusted-device.service.d.ts +105 -0
package/dist/services/trusted-device.service.d.ts.map +1 -1
package/dist/services/trusted-device.service.js +133 -4
package/dist/services/trusted-device.service.js.map +1 -1
package/dist/storage/account-lockout-storage.service.d.ts +35 -0
package/dist/storage/account-lockout-storage.service.d.ts.map +1 -1
package/dist/storage/account-lockout-storage.service.js +35 -0
package/dist/storage/account-lockout-storage.service.js.map +1 -1
package/dist/storage/memory-storage.adapter.d.ts +148 -0
package/dist/storage/memory-storage.adapter.d.ts.map +1 -1
package/dist/storage/memory-storage.adapter.js +201 -6
package/dist/storage/memory-storage.adapter.js.map +1 -1
package/dist/storage/rate-limit-storage.service.d.ts +3 -0
package/dist/storage/rate-limit-storage.service.d.ts.map +1 -1
package/dist/storage/rate-limit-storage.service.js +4 -0
package/dist/storage/rate-limit-storage.service.js.map +1 -1
package/dist/storage.d.ts +8 -0
package/dist/storage.d.ts.map +1 -1
package/dist/storage.js +8 -0
package/dist/storage.js.map +1 -1
package/dist/templates/html-template.engine.d.ts +110 -0
package/dist/templates/html-template.engine.d.ts.map +1 -1
package/dist/templates/html-template.engine.js +147 -0
package/dist/templates/html-template.engine.js.map +1 -1
package/dist/templates/index.d.ts +5 -0
package/dist/templates/index.d.ts.map +1 -1
package/dist/templates/index.js +5 -0
package/dist/templates/index.js.map +1 -1
package/dist/templates/sms-template.engine.d.ts +151 -0
package/dist/templates/sms-template.engine.d.ts.map +1 -1
package/dist/templates/sms-template.engine.js +171 -0
package/dist/templates/sms-template.engine.js.map +1 -1
package/dist/templates.d.ts +8 -0
package/dist/templates.d.ts.map +1 -1
package/dist/templates.js +8 -0
package/dist/templates.js.map +1 -1
package/dist/utils/common-passwords.d.ts +42 -0
package/dist/utils/common-passwords.d.ts.map +1 -1
package/dist/utils/common-passwords.js +88 -0
package/dist/utils/common-passwords.js.map +1 -1
package/dist/utils/context-storage.d.ts +129 -0
package/dist/utils/context-storage.d.ts.map +1 -1
package/dist/utils/context-storage.js +129 -0
package/dist/utils/context-storage.js.map +1 -1
package/dist/utils/cookie-names.util.d.ts +35 -0
package/dist/utils/cookie-names.util.d.ts.map +1 -1
package/dist/utils/cookie-names.util.js +37 -0
package/dist/utils/cookie-names.util.js.map +1 -1
package/dist/utils/cookies.util.d.ts +19 -0
package/dist/utils/cookies.util.d.ts.map +1 -1
package/dist/utils/cookies.util.js +30 -3
package/dist/utils/cookies.util.js.map +1 -1
package/dist/utils/index.d.ts +3 -0
package/dist/utils/index.d.ts.map +1 -1
package/dist/utils/index.js +4 -0
package/dist/utils/index.js.map +1 -1
package/dist/utils/ip-extractor.d.ts +88 -0
package/dist/utils/ip-extractor.d.ts.map +1 -1
package/dist/utils/ip-extractor.js +109 -16
package/dist/utils/ip-extractor.js.map +1 -1
package/dist/utils/nauth-logger.d.ts +70 -0
package/dist/utils/nauth-logger.d.ts.map +1 -1
package/dist/utils/nauth-logger.js +82 -4
package/dist/utils/nauth-logger.js.map +1 -1
package/dist/utils/pii-redactor.d.ts +70 -0
package/dist/utils/pii-redactor.d.ts.map +1 -1
package/dist/utils/pii-redactor.js +102 -0
package/dist/utils/pii-redactor.js.map +1 -1
package/dist/utils/setup/get-repositories.d.ts +16 -0
package/dist/utils/setup/get-repositories.d.ts.map +1 -1
package/dist/utils/setup/get-repositories.js +21 -0
package/dist/utils/setup/get-repositories.js.map +1 -1
package/dist/utils/setup/init-services.d.ts +40 -1
package/dist/utils/setup/init-services.d.ts.map +1 -1
package/dist/utils/setup/init-services.js +98 -0
package/dist/utils/setup/init-services.js.map +1 -1
package/dist/utils/setup/init-social.d.ts +27 -0
package/dist/utils/setup/init-social.d.ts.map +1 -1
package/dist/utils/setup/init-social.js +49 -0
package/dist/utils/setup/init-social.js.map +1 -1
package/dist/utils/setup/init-storage.d.ts +22 -0
package/dist/utils/setup/init-storage.d.ts.map +1 -1
package/dist/utils/setup/init-storage.js +36 -0
package/dist/utils/setup/init-storage.js.map +1 -1
package/dist/utils/setup/register-mfa.d.ts +22 -0
package/dist/utils/setup/register-mfa.d.ts.map +1 -1
package/dist/utils/setup/register-mfa.js +41 -0
package/dist/utils/setup/register-mfa.js.map +1 -1
package/dist/utils/setup/run-nauth-migrations.d.ts +7 -0
package/dist/utils/setup/run-nauth-migrations.d.ts.map +1 -1
package/dist/utils/setup/run-nauth-migrations.js +8 -0
package/dist/utils/setup/run-nauth-migrations.js.map +1 -1
package/dist/utils/token-delivery-policy.d.ts +17 -0
package/dist/utils/token-delivery-policy.d.ts.map +1 -1
package/dist/utils/token-delivery-policy.js +17 -0
package/dist/utils/token-delivery-policy.js.map +1 -1
package/dist/utils.d.ts +8 -0
package/dist/utils.d.ts.map +1 -1
package/dist/utils.js +8 -0
package/dist/utils.js.map +1 -1
package/dist/validators/template.validator.d.ts +80 -0
package/dist/validators/template.validator.d.ts.map +1 -1
package/dist/validators/template.validator.js +94 -0
package/dist/validators/template.validator.js.map +1 -1
package/package.json +7 -2

package/dist/services/mfa.service.d.ts CHANGED Viewed

@@ -7,6 +7,35 @@ import { NAuthLogger } from '../utils/nauth-logger';
 import { InternalAuthAuditService as AuthAuditService } from './auth-audit.service';
 import { ClientInfoService } from './client-info.service';
 import { GetAvailableMethodsDTO, GetAvailableMethodsResponseDTO, GetChallengeDataDTO, GetChallengeDataResponseDTO, GetMFAStatusDTO, GetMFAStatusResponseDTO, GetSetupDataDTO, GetSetupDataResponseDTO, GetUserDevicesDTO, GetUserDevicesResponseDTO, HasProviderDTO, HasProviderResponseDTO, ListProvidersResponseDTO, RemoveDevicesDTO, RemoveDevicesResponseDTO, SetMFAExemptionDTO, SetMFAExemptionResponseDTO, SetPreferredMethodDTO, SetPreferredMethodResponseDTO, SetupMFADTO, SetupMFAResponseDTO, VerifyMFACodeDTO, VerifyMFACodeResponseDTO } from '../dto';
+/**
+ * MFA Service Registry
+ *
+ * Central registry for managing MFA provider services.
+ * Routes requests to the appropriate provider based on method name.
+ *
+ * Provider services (TOTP, SMS, Passkey) automatically register themselves
+ * when their modules are imported via OnModuleInit.
+ *
+ * **Key Features:**
+ * - Provider registration and lookup
+ * - Unified interface for MFA operations
+ * - Routing verification requests to correct provider
+ * - Device management operations
+ *
+ * @example
+ * ```typescript
+ * @Controller('auth')
+ * export class AuthController {
+ *   constructor(private readonly mfaService: MFAService) {}
+ *
+ *   @Post('mfa/verify')
+ *   async verifyMFA(@Body() dto: { method: string; code: string }) {
+ *     const provider = this.mfaService.getProvider(dto.method);
+ *     return await provider.verify(user, dto.code);
+ *   }
+ * }
+ * ```
+ */
 export declare class MFAService {
     private readonly mfaDeviceRepository;
     private readonly userRepository;
@@ -17,19 +46,294 @@ export declare class MFAService {
     private readonly clientInfoService?;
     private readonly providers;
     constructor(mfaDeviceRepository: Repository<BaseMFADevice>, userRepository: Repository<BaseUser>, challengeService?: ChallengeService | undefined, config?: NAuthConfig | undefined, logger?: NAuthLogger | undefined, auditService?: AuthAuditService | undefined, clientInfoService?: ClientInfoService | undefined);
+    /**
+     * Register an MFA provider
+     *
+     * Called automatically by provider modules during initialization.
+     * Provider method names must be unique.
+     *
+     * @param provider - Provider service instance (must have methodName property)
+     * @throws {NAuthException} If provider is already registered
+     *
+     * @example
+     * ```typescript
+     * // In provider module's OnModuleInit
+     * this.mfaService.registerProvider(this.totpProvider);
+     * ```
+     */
     registerProvider(provider: IMFAProviderService): void;
+    /**
+     * Get a provider by method name
+     *
+     * @param methodName - Method name (e.g., 'totp', 'sms', 'passkey')
+     * @returns Provider service instance
+     * @throws {NAuthException} If provider is not registered
+     *
+     * @example
+     * ```typescript
+     * const totpProvider = this.mfaService.getProvider('totp');
+     * const setupData = await totpProvider.setup(user);
+     * ```
+     */
     getProvider(methodName: string): IMFAProviderService;
+    /**
+     * Check if a provider is registered
+     *
+     * @param dto - Request DTO with method name
+     * @returns Response DTO with hasProvider flag
+     *
+     * @example
+     * ```typescript
+     * const result = await this.mfaService.hasProvider({ methodName: 'totp' });
+     * if (result.hasProvider) {
+     *   // TOTP is available
+     * }
+     * ```
+     */
     hasProvider(dto: HasProviderDTO): HasProviderResponseDTO;
+    /**
+     * Get all registered provider method names
+     *
+     * @returns Response DTO with array of method names
+     *
+     * @example
+     * ```typescript
+     * const result = this.mfaService.listProviders(); // { providers: ['totp', 'sms', 'passkey'] }
+     * ```
+     */
     listProviders(): ListProvidersResponseDTO;
+    /**
+     * Get available MFA methods for a user
+     *
+     * Returns list of methods that are:
+     * - Registered as providers
+     * - Allowed by configuration
+     *
+     * This returns ALL methods that can be set up, not just ones the user has configured.
+     * Use getUserDevices() to check which methods the user has actually set up.
+     *
+     * @param dto - Request DTO with user sub
+     * @returns Response DTO with array of available method names
+     *
+     * @example
+     * ```typescript
+     * const result = await this.mfaService.getAvailableMethods({ sub: user.sub });
+     * // Returns: { availableMethods: ['totp', 'sms', 'passkey'] }
+     * ```
+     */
     getAvailableMethods(dto: GetAvailableMethodsDTO): Promise<GetAvailableMethodsResponseDTO>;
+    /**
+     * Verify MFA code using appropriate provider
+     *
+     * Routes the verification request to the correct provider based on method name.
+     *
+     * @param dto - Request DTO with user sub, method name, code, and optional device ID
+     * @returns Response DTO with verification result
+     * @throws {NAuthException} If method is not available or verification fails
+     *
+     * @example
+     * ```typescript
+     * // Verify TOTP code
+     * const result = await this.mfaService.verifyCode({
+     *   sub: user.sub,
+     *   methodName: 'totp',
+     *   code: '123456'
+     * });
+     *
+     * // Verify backup code
+     * const result = await this.mfaService.verifyCode({
+     *   sub: user.sub,
+     *   methodName: 'backup',
+     *   code: 'ABC12345'
+     * });
+     * ```
+     */
     verifyCode(dto: VerifyMFACodeDTO): Promise<VerifyMFACodeResponseDTO>;
+    /**
+     * Setup MFA device using appropriate provider
+     *
+     * @param dto - Request DTO with user sub, method name, and optional setup data
+     * @returns Response DTO with provider-specific setup data
+     *
+     * @example
+     * ```typescript
+     * const result = await this.mfaService.setup({
+     *   sub: user.sub,
+     *   methodName: 'totp'
+     * });
+     * // Returns: { setupData: { secret, qrCode, manualEntryKey } }
+     * ```
+     */
     setup(dto: SetupMFADTO): Promise<SetupMFAResponseDTO>;
+    /**
+     * Get user's MFA devices
+     *
+     * @param dto - Request DTO with user sub
+     * @returns Response DTO with array of MFA devices
+     *
+     * @example
+     * ```typescript
+     * const result = await this.mfaService.getUserDevices({ sub: user.sub });
+     * // Returns: { devices: [...] }
+     * ```
+     */
     getUserDevices(dto: GetUserDevicesDTO): Promise<GetUserDevicesResponseDTO>;
+    /**
+     * Get comprehensive MFA status for a user
+     *
+     * Returns complete MFA configuration status including:
+     * - Whether MFA is enabled/required
+     * - Configured and available methods
+     * - Preferred method
+     * - Backup codes status
+     * - MFA exemption information
+     *
+     * This method encapsulates all business logic for MFA status,
+     * ensuring consumer apps don't need to query databases or build responses manually.
+     *
+     * @param dto - Request DTO with user sub
+     * @returns Response DTO with complete MFA status
+     *
+     * @example
+     * ```typescript
+     * @Get('mfa/status')
+     * async getMFAStatus(@CurrentUser() user: IUser) {
+     *   return await this.mfaService.getMFAStatus({ sub: user.sub });
+     * }
+     * ```
+     */
     getMFAStatus(dto: GetMFAStatusDTO): Promise<GetMFAStatusResponseDTO>;
+    /**
+     * Remove MFA devices by method type
+     *
+     * Comprehensive method that handles all aspects of MFA device removal:
+     * - Looks up user by sub (consumer apps should pass user.sub from @CurrentUser())
+     * - Validates method type
+     * - Removes all active devices of the specified method type
+     * - Updates user's preferred method if the removed method was preferred
+     * - Updates device primary flags
+     * - Disables MFA if this was the last device
+     * - Creates MFA_SETUP_REQUIRED challenge if MFA enforcement requires it
+     *
+     * This method encapsulates all database operations related to MFA device removal,
+     * ensuring the consumer app doesn't need to directly manipulate nauth_* tables.
+     *
+     * @param dto - Request DTO with user sub and method type
+     * @returns Response DTO with deletedCount and whether MFA was disabled
+     * @throws {NAuthException} If user not found, invalid method type, or no devices found
+     *
+     * @example
+     * ```typescript
+     * // Consumer app controller
+     * @Delete('mfa/devices/:method')
+     * async removeMFAMethod(@CurrentUser() user: IUser, @Param('method') method: string) {
+     *   const result = await this.mfaService.removeDevices({ userSub: user.sub, methodType: method });
+     *   return { message: 'MFA method removed successfully', ...result };
+     * }
+     * ```
+     */
     removeDevices(dto: RemoveDevicesDTO): Promise<RemoveDevicesResponseDTO>;
+    /**
+     * Set preferred MFA method for a user
+     *
+     * Updates the user's preferred MFA method and device primary flags.
+     * Validates that the method is configured for the user before setting it as preferred.
+     *
+     * This method encapsulates all database operations related to preferred method updates,
+     * ensuring the consumer app doesn't need to directly manipulate nauth_* tables.
+     *
+     * @param dto - Request DTO with user sub and method type
+     * @returns Response DTO with success message
+     * @throws {NAuthException} If user not found, invalid method type, or method not configured
+     *
+     * @example
+     * ```typescript
+     * // Consumer app controller
+     * @Put('mfa/preferred')
+     * async setPreferredMFAMethod(@CurrentUser() user: IUser, @Body() body: { method: string }) {
+     *   return await this.mfaService.setPreferredMethod({ userSub: user.sub, methodType: body.method });
+     * }
+     * ```
+     */
     setPreferredMethod(dto: SetPreferredMethodDTO): Promise<SetPreferredMethodResponseDTO>;
+    /**
+     * Grant or revoke a user's exemption from multi-factor authentication (MFA) requirements.
+     *
+     * SECURITY: This admin-only operation updates the user's MFA exemption status, logs the action,
+     * and records an audit event. MFA exemption bypasses MFA at login, but all other security controls remain enforced.
+     *
+     * @param dto - Request DTO with user sub, exempt flag, reason, and grantedBy
+     * @returns Response DTO with updated exemption fields
+     * @throws {NAuthException} If the user is not found
+     *
+     * @example
+     * ```typescript
+     * // Grant MFA exemption
+     * await mfaService.setMFAExemption({
+     *   userSub: 'user-uuid',
+     *   exempt: true,
+     *   reason: 'Business partner requires MFA bypass',
+     *   grantedBy: 'admin@example.com'
+     * });
+     *
+     * // Revoke MFA exemption
+     * await mfaService.setMFAExemption({
+     *   userSub: 'user-uuid',
+     *   exempt: false,
+     *   reason: 'MFA now mandatory for this user',
+     *   grantedBy: 'admin@example.com'
+     * });
+     * ```
+     */
     setMFAExemption(dto: SetMFAExemptionDTO): Promise<SetMFAExemptionResponseDTO>;
+    /**
+     * Get MFA setup data during MFA_SETUP_REQUIRED challenge
+     *
+     * Returns provider-specific setup data:
+     * - TOTP: { secret, qrCode, manualEntryKey }
+     * - SMS: { maskedPhone } or error if phone required
+     * - Passkey: WebAuthn registration options
+     *
+     * @param dto - Request DTO with session token, method, and optional setup data
+     * @returns Response DTO with provider-specific setup data
+     * @throws {NAuthException} INVALID_CHALLENGE_SESSION | VALIDATION_FAILED | PHONE_REQUIRED
+     *
+     * @example
+     * ```typescript
+     * const result = await mfaService.getSetupData({
+     *   session: 'session-token',
+     *   method: 'totp'
+     * });
+     * // Returns: { setupData: { secret: '...', qrCode: '...', manualEntryKey: '...' } }
+     *
+     * const result = await mfaService.getSetupData({
+     *   session: 'session-token',
+     *   method: 'sms',
+     *   setupData: { phoneNumber: '+1234567890' }
+     * });
+     * // Returns: { setupData: { maskedPhone: '***-***-7890' } }
+     * ```
+     */
     getSetupData(dto: GetSetupDataDTO): Promise<GetSetupDataResponseDTO>;
+    /**
+     * Get MFA challenge data during MFA_REQUIRED challenge
+     *
+     * Currently only used for passkey authentication to get WebAuthn options.
+     * SMS/TOTP codes are sent automatically when the challenge is created.
+     *
+     * @param dto - Request DTO with session token and method
+     * @returns Response DTO with provider-specific challenge data
+     * @throws {NAuthException} INVALID_CHALLENGE_SESSION | VALIDATION_FAILED
+     *
+     * @example
+     * ```typescript
+     * const result = await mfaService.getChallengeData({
+     *   session: 'session-token',
+     *   method: 'passkey'
+     * });
+     * // Returns: { challengeData: { challenge: '...', allowCredentials: [...], ... } }
+     * ```
+     */
     getChallengeData(dto: GetChallengeDataDTO): Promise<GetChallengeDataResponseDTO>;
 }
 //# sourceMappingURL=mfa.service.d.ts.map

package/dist/services/mfa.service.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"mfa.service.d.ts","sourceRoot":"","sources":["../../src/services/mfa.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAEtD,OAAO,EAAE,mBAAmB,EAAE,MAAM,sCAAsC,CAAC;AAI3E,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAEvD,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAC7D,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AACpD,OAAO,EAAE,wBAAwB,IAAI,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAEpF,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAC1D,OAAO,EACL,sBAAsB,EACtB,8BAA8B,EAC9B,mBAAmB,EACnB,2BAA2B,EAC3B,eAAe,EACf,uBAAuB,EACvB,eAAe,EACf,uBAAuB,EACvB,iBAAiB,EACjB,yBAAyB,EACzB,cAAc,EACd,sBAAsB,EACtB,wBAAwB,EACxB,gBAAgB,EAChB,wBAAwB,EACxB,kBAAkB,EAClB,0BAA0B,EAC1B,qBAAqB,EACrB,6BAA6B,EAC7B,WAAW,EACX,mBAAmB,EACnB,gBAAgB,EAChB,wBAAwB,EACzB,MAAM,QAAQ,CAAC;~~AA+BhB~~,qBAAa,UAAU;IAInB,OAAO,CAAC,QAAQ,CAAC,mBAAmB;IACpC,OAAO,CAAC,QAAQ,CAAC,cAAc;IAC/B,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAC;IAClC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC;IACxB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC;IACxB,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC;IAC9B,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC;IATrC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAA0C;gBAGjD,mBAAmB,EAAE,UAAU,CAAC,aAAa,CAAC,EAC9C,cAAc,EAAE,UAAU,CAAC,QAAQ,CAAC,EACpC,gBAAgB,CAAC,EAAE,gBAAgB,YAAA,EACnC,MAAM,CAAC,EAAE,WAAW,YAAA,EACpB,MAAM,CAAC,EAAE,WAAW,YAAA,EACpB,YAAY,CAAC,EAAE,gBAAgB,YAAA,EAC/B,iBAAiB,CAAC,EAAE,iBAAiB,YAAA;~~IAkBxD~~,gBAAgB,CAAC,QAAQ,EAAE,mBAAmB,GAAG,IAAI;~~IAqBrD~~,WAAW,CAAC,UAAU,EAAE,MAAM,GAAG,mBAAmB;~~IAyBpD~~,WAAW,CAAC,GAAG,EAAE,cAAc,GAAG,sBAAsB;~~IAgBxD~~,aAAa,IAAI,wBAAwB;~~IAyBnC~~,mBAAmB,CAAC,GAAG,EAAE,sBAAsB,GAAG,OAAO,CAAC,8BAA8B,CAAC;~~IAkDzF~~,UAAU,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,wBAAwB,CAAC;~~IA4CpE~~,KAAK,CAAC,GAAG,EAAE,WAAW,GAAG,OAAO,CAAC,mBAAmB,CAAC;~~IA2BrD~~,cAAc,CAAC,GAAG,EAAE,iBAAiB,GAAG,OAAO,CAAC,yBAAyB,CAAC;~~IA0C1E~~,YAAY,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,CAAC,uBAAuB,CAAC;~~IAuFpE~~,aAAa,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,wBAAwB,CAAC;~~IA+LvE~~,kBAAkB,CAAC,GAAG,EAAE,qBAAqB,GAAG,OAAO,CAAC,6BAA6B,CAAC;~~IAmHtF~~,eAAe,CAAC,GAAG,EAAE,kBAAkB,GAAG,OAAO,CAAC,0BAA0B,CAAC;~~IA2G7E~~,YAAY,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,CAAC,uBAAuB,CAAC;~~IA2DpE~~,gBAAgB,CAAC,GAAG,EAAE,mBAAmB,GAAG,OAAO,CAAC,2BAA2B,CAAC;CAqDvF"}
1	+ {"version":3,"file":"mfa.service.d.ts","sourceRoot":"","sources":["../../src/services/mfa.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAEtD,OAAO,EAAE,mBAAmB,EAAE,MAAM,sCAAsC,CAAC;AAI3E,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAEvD,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAC7D,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AACpD,OAAO,EAAE,wBAAwB,IAAI,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAEpF,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAC1D,OAAO,EACL,sBAAsB,EACtB,8BAA8B,EAC9B,mBAAmB,EACnB,2BAA2B,EAC3B,eAAe,EACf,uBAAuB,EACvB,eAAe,EACf,uBAAuB,EACvB,iBAAiB,EACjB,yBAAyB,EACzB,cAAc,EACd,sBAAsB,EACtB,wBAAwB,EACxB,gBAAgB,EAChB,wBAAwB,EACxB,kBAAkB,EAClB,0BAA0B,EAC1B,qBAAqB,EACrB,6BAA6B,EAC7B,WAAW,EACX,mBAAmB,EACnB,gBAAgB,EAChB,wBAAwB,EACzB,MAAM,QAAQ,CAAC;AAEhB;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AACH,qBAAa,UAAU;IAInB,OAAO,CAAC,QAAQ,CAAC,mBAAmB;IACpC,OAAO,CAAC,QAAQ,CAAC,cAAc;IAC/B,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAC;IAClC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC;IACxB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC;IACxB,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC;IAC9B,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC;IATrC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAA0C;gBAGjD,mBAAmB,EAAE,UAAU,CAAC,aAAa,CAAC,EAC9C,cAAc,EAAE,UAAU,CAAC,QAAQ,CAAC,EACpC,gBAAgB,CAAC,EAAE,gBAAgB,YAAA,EACnC,MAAM,CAAC,EAAE,WAAW,YAAA,EACpB,MAAM,CAAC,EAAE,WAAW,YAAA,EACpB,YAAY,CAAC,EAAE,gBAAgB,YAAA,EAC/B,iBAAiB,CAAC,EAAE,iBAAiB,YAAA;IAGxD;;;;;;;;;;;;;;OAcG;IACH,gBAAgB,CAAC,QAAQ,EAAE,mBAAmB,GAAG,IAAI;IAQrD;;;;;;;;;;;;OAYG;IACH,WAAW,CAAC,UAAU,EAAE,MAAM,GAAG,mBAAmB;IAWpD;;;;;;;;;;;;;OAaG;IACH,WAAW,CAAC,GAAG,EAAE,cAAc,GAAG,sBAAsB;IAMxD;;;;;;;;;OASG;IACH,aAAa,IAAI,wBAAwB;IAMzC;;;;;;;;;;;;;;;;;;OAkBG;IACG,mBAAmB,CAAC,GAAG,EAAE,sBAAsB,GAAG,OAAO,CAAC,8BAA8B,CAAC;IAwB/F;;;;;;;;;;;;;;;;;;;;;;;;;OAyBG;IACG,UAAU,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,wBAAwB,CAAC;IA6B1E;;;;;;;;;;;;;;OAcG;IACG,KAAK,CAAC,GAAG,EAAE,WAAW,GAAG,OAAO,CAAC,mBAAmB,CAAC;IAe3D;;;;;;;;;;;OAWG;IACG,cAAc,CAAC,GAAG,EAAE,iBAAiB,GAAG,OAAO,CAAC,yBAAyB,CAAC;IAkBhF;;;;;;;;;;;;;;;;;;;;;;;OAuBG;IACG,YAAY,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,CAAC,uBAAuB,CAAC;IA0D1E;;;;;;;;;;;;;;;;;;;;;;;;;;;;OA4BG;IACG,aAAa,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,wBAAwB,CAAC;IAyK7E;;;;;;;;;;;;;;;;;;;;;OAqBG;IACG,kBAAkB,CAAC,GAAG,EAAE,qBAAqB,GAAG,OAAO,CAAC,6BAA6B,CAAC;IAsF5F;;;;;;;;;;;;;;;;;;;;;;;;;;;;OA4BG;IACG,eAAe,CAAC,GAAG,EAAE,kBAAkB,GAAG,OAAO,CAAC,0BAA0B,CAAC;IA+EnF;;;;;;;;;;;;;;;;;;;;;;;;;;;OA2BG;IACG,YAAY,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,CAAC,uBAAuB,CAAC;IAwC1E;;;;;;;;;;;;;;;;;;OAkBG;IACG,gBAAgB,CAAC,GAAG,EAAE,mBAAmB,GAAG,OAAO,CAAC,2BAA2B,CAAC;CAqDvF"}