@nauth-toolkit/core 0.1.14 → 0.1.18

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (623) hide show
  1. package/dist/adapters/database-columns.d.ts +70 -0
  2. package/dist/adapters/database-columns.d.ts.map +1 -1
  3. package/dist/adapters/database-columns.js +76 -2
  4. package/dist/adapters/database-columns.js.map +1 -1
  5. package/dist/adapters/express.adapter.d.ts +66 -0
  6. package/dist/adapters/express.adapter.d.ts.map +1 -1
  7. package/dist/adapters/express.adapter.js +80 -0
  8. package/dist/adapters/express.adapter.js.map +1 -1
  9. package/dist/adapters/fastify.adapter.d.ts +42 -0
  10. package/dist/adapters/fastify.adapter.d.ts.map +1 -1
  11. package/dist/adapters/fastify.adapter.js +86 -0
  12. package/dist/adapters/fastify.adapter.js.map +1 -1
  13. package/dist/adapters/index.d.ts +5 -0
  14. package/dist/adapters/index.d.ts.map +1 -1
  15. package/dist/adapters/index.js +9 -0
  16. package/dist/adapters/index.js.map +1 -1
  17. package/dist/adapters/storage.factory.d.ts +107 -0
  18. package/dist/adapters/storage.factory.d.ts.map +1 -1
  19. package/dist/adapters/storage.factory.js +114 -0
  20. package/dist/adapters/storage.factory.js.map +1 -1
  21. package/dist/adapters.d.ts +8 -0
  22. package/dist/adapters.d.ts.map +1 -1
  23. package/dist/adapters.js +8 -0
  24. package/dist/adapters.js.map +1 -1
  25. package/dist/bootstrap.d.ts +82 -0
  26. package/dist/bootstrap.d.ts.map +1 -1
  27. package/dist/bootstrap.js +106 -0
  28. package/dist/bootstrap.js.map +1 -1
  29. package/dist/dto/admin-set-password.dto.d.ts +90 -0
  30. package/dist/dto/admin-set-password.dto.d.ts.map +1 -1
  31. package/dist/dto/admin-set-password.dto.js +91 -0
  32. package/dist/dto/admin-set-password.dto.js.map +1 -1
  33. package/dist/dto/auth-challenge.dto.d.ts +170 -0
  34. package/dist/dto/auth-challenge.dto.d.ts.map +1 -1
  35. package/dist/dto/auth-challenge.dto.js +170 -0
  36. package/dist/dto/auth-challenge.dto.js.map +1 -1
  37. package/dist/dto/auth-response.dto.d.ts +196 -0
  38. package/dist/dto/auth-response.dto.d.ts.map +1 -1
  39. package/dist/dto/auth-response.dto.js +149 -0
  40. package/dist/dto/auth-response.dto.js.map +1 -1
  41. package/dist/dto/challenge-response.dto.d.ts +155 -0
  42. package/dist/dto/challenge-response.dto.d.ts.map +1 -1
  43. package/dist/dto/challenge-response.dto.js +8 -0
  44. package/dist/dto/challenge-response.dto.js.map +1 -1
  45. package/dist/dto/change-password-request.dto.d.ts +35 -0
  46. package/dist/dto/change-password-request.dto.d.ts.map +1 -1
  47. package/dist/dto/change-password-request.dto.js +35 -0
  48. package/dist/dto/change-password-request.dto.js.map +1 -1
  49. package/dist/dto/change-password-response.dto.d.ts +25 -0
  50. package/dist/dto/change-password-response.dto.d.ts.map +1 -1
  51. package/dist/dto/change-password-response.dto.js +25 -0
  52. package/dist/dto/change-password-response.dto.js.map +1 -1
  53. package/dist/dto/change-password.dto.d.ts +45 -0
  54. package/dist/dto/change-password.dto.d.ts.map +1 -1
  55. package/dist/dto/change-password.dto.js +45 -0
  56. package/dist/dto/change-password.dto.js.map +1 -1
  57. package/dist/dto/confirm-forgot-password.dto.d.ts +59 -0
  58. package/dist/dto/confirm-forgot-password.dto.d.ts.map +1 -1
  59. package/dist/dto/confirm-forgot-password.dto.js +59 -0
  60. package/dist/dto/confirm-forgot-password.dto.js.map +1 -1
  61. package/dist/dto/error-response.dto.d.ts +103 -0
  62. package/dist/dto/error-response.dto.d.ts.map +1 -1
  63. package/dist/dto/error-response.dto.js +103 -0
  64. package/dist/dto/error-response.dto.js.map +1 -1
  65. package/dist/dto/forgot-password.dto.d.ts +58 -0
  66. package/dist/dto/forgot-password.dto.d.ts.map +1 -1
  67. package/dist/dto/forgot-password.dto.js +58 -0
  68. package/dist/dto/forgot-password.dto.js.map +1 -1
  69. package/dist/dto/get-available-methods.dto.d.ts +37 -0
  70. package/dist/dto/get-available-methods.dto.d.ts.map +1 -1
  71. package/dist/dto/get-available-methods.dto.js +37 -0
  72. package/dist/dto/get-available-methods.dto.js.map +1 -1
  73. package/dist/dto/get-challenge-data-response.dto.d.ts +24 -0
  74. package/dist/dto/get-challenge-data-response.dto.d.ts.map +1 -1
  75. package/dist/dto/get-challenge-data-response.dto.js +24 -0
  76. package/dist/dto/get-challenge-data-response.dto.js.map +1 -1
  77. package/dist/dto/get-challenge-data.dto.d.ts +46 -0
  78. package/dist/dto/get-challenge-data.dto.d.ts.map +1 -1
  79. package/dist/dto/get-challenge-data.dto.js +46 -0
  80. package/dist/dto/get-challenge-data.dto.js.map +1 -1
  81. package/dist/dto/get-client-info.dto.d.ts +74 -0
  82. package/dist/dto/get-client-info.dto.d.ts.map +1 -1
  83. package/dist/dto/get-client-info.dto.js +74 -0
  84. package/dist/dto/get-client-info.dto.js.map +1 -1
  85. package/dist/dto/get-device-token-response.dto.d.ts +21 -0
  86. package/dist/dto/get-device-token-response.dto.d.ts.map +1 -1
  87. package/dist/dto/get-device-token-response.dto.js +21 -0
  88. package/dist/dto/get-device-token-response.dto.js.map +1 -1
  89. package/dist/dto/get-events-by-type.dto.d.ts +50 -0
  90. package/dist/dto/get-events-by-type.dto.d.ts.map +1 -1
  91. package/dist/dto/get-events-by-type.dto.js +50 -0
  92. package/dist/dto/get-events-by-type.dto.js.map +1 -1
  93. package/dist/dto/get-ip-address-response.dto.d.ts +20 -0
  94. package/dist/dto/get-ip-address-response.dto.d.ts.map +1 -1
  95. package/dist/dto/get-ip-address-response.dto.js +20 -0
  96. package/dist/dto/get-ip-address-response.dto.js.map +1 -1
  97. package/dist/dto/get-mfa-status.dto.d.ts +59 -0
  98. package/dist/dto/get-mfa-status.dto.d.ts.map +1 -1
  99. package/dist/dto/get-mfa-status.dto.js +59 -0
  100. package/dist/dto/get-mfa-status.dto.js.map +1 -1
  101. package/dist/dto/get-risk-assessment-history.dto.d.ts +28 -0
  102. package/dist/dto/get-risk-assessment-history.dto.d.ts.map +1 -1
  103. package/dist/dto/get-risk-assessment-history.dto.js +28 -0
  104. package/dist/dto/get-risk-assessment-history.dto.js.map +1 -1
  105. package/dist/dto/get-session-id-response.dto.d.ts +21 -0
  106. package/dist/dto/get-session-id-response.dto.d.ts.map +1 -1
  107. package/dist/dto/get-session-id-response.dto.js +21 -0
  108. package/dist/dto/get-session-id-response.dto.js.map +1 -1
  109. package/dist/dto/get-setup-data-response.dto.d.ts +27 -0
  110. package/dist/dto/get-setup-data-response.dto.d.ts.map +1 -1
  111. package/dist/dto/get-setup-data-response.dto.js +27 -0
  112. package/dist/dto/get-setup-data-response.dto.js.map +1 -1
  113. package/dist/dto/get-setup-data.dto.d.ts +51 -0
  114. package/dist/dto/get-setup-data.dto.d.ts.map +1 -1
  115. package/dist/dto/get-setup-data.dto.js +51 -0
  116. package/dist/dto/get-setup-data.dto.js.map +1 -1
  117. package/dist/dto/get-suspicious-activity.dto.d.ts +31 -0
  118. package/dist/dto/get-suspicious-activity.dto.d.ts.map +1 -1
  119. package/dist/dto/get-suspicious-activity.dto.js +31 -0
  120. package/dist/dto/get-suspicious-activity.dto.js.map +1 -1
  121. package/dist/dto/get-user-agent-response.dto.d.ts +19 -0
  122. package/dist/dto/get-user-agent-response.dto.d.ts.map +1 -1
  123. package/dist/dto/get-user-agent-response.dto.js +19 -0
  124. package/dist/dto/get-user-agent-response.dto.js.map +1 -1
  125. package/dist/dto/get-user-auth-history.dto.d.ts +64 -0
  126. package/dist/dto/get-user-auth-history.dto.d.ts.map +1 -1
  127. package/dist/dto/get-user-auth-history.dto.js +64 -0
  128. package/dist/dto/get-user-auth-history.dto.js.map +1 -1
  129. package/dist/dto/get-user-by-email.dto.d.ts +42 -0
  130. package/dist/dto/get-user-by-email.dto.d.ts.map +1 -1
  131. package/dist/dto/get-user-by-email.dto.js +42 -0
  132. package/dist/dto/get-user-by-email.dto.js.map +1 -1
  133. package/dist/dto/get-user-by-id.dto.d.ts +32 -0
  134. package/dist/dto/get-user-by-id.dto.d.ts.map +1 -1
  135. package/dist/dto/get-user-by-id.dto.js +32 -0
  136. package/dist/dto/get-user-by-id.dto.js.map +1 -1
  137. package/dist/dto/get-user-devices.dto.d.ts +34 -0
  138. package/dist/dto/get-user-devices.dto.d.ts.map +1 -1
  139. package/dist/dto/get-user-devices.dto.js +34 -0
  140. package/dist/dto/get-user-devices.dto.js.map +1 -1
  141. package/dist/dto/get-user-response.dto.d.ts +14 -0
  142. package/dist/dto/get-user-response.dto.d.ts.map +1 -1
  143. package/dist/dto/get-user-response.dto.js +15 -0
  144. package/dist/dto/get-user-response.dto.js.map +1 -1
  145. package/dist/dto/has-provider.dto.d.ts +33 -0
  146. package/dist/dto/has-provider.dto.d.ts.map +1 -1
  147. package/dist/dto/has-provider.dto.js +33 -0
  148. package/dist/dto/has-provider.dto.js.map +1 -1
  149. package/dist/dto/index.js +5 -0
  150. package/dist/dto/index.js.map +1 -1
  151. package/dist/dto/is-trusted-device-response.dto.d.ts +28 -0
  152. package/dist/dto/is-trusted-device-response.dto.d.ts.map +1 -1
  153. package/dist/dto/is-trusted-device-response.dto.js +28 -0
  154. package/dist/dto/is-trusted-device-response.dto.js.map +1 -1
  155. package/dist/dto/list-providers-response.dto.d.ts +19 -0
  156. package/dist/dto/list-providers-response.dto.d.ts.map +1 -1
  157. package/dist/dto/list-providers-response.dto.js +19 -0
  158. package/dist/dto/list-providers-response.dto.js.map +1 -1
  159. package/dist/dto/login.dto.d.ts +48 -0
  160. package/dist/dto/login.dto.d.ts.map +1 -1
  161. package/dist/dto/login.dto.js +50 -1
  162. package/dist/dto/login.dto.js.map +1 -1
  163. package/dist/dto/logout-all-response.dto.d.ts +20 -0
  164. package/dist/dto/logout-all-response.dto.d.ts.map +1 -1
  165. package/dist/dto/logout-all-response.dto.js +20 -0
  166. package/dist/dto/logout-all-response.dto.js.map +1 -1
  167. package/dist/dto/logout-all.dto.d.ts +42 -0
  168. package/dist/dto/logout-all.dto.d.ts.map +1 -1
  169. package/dist/dto/logout-all.dto.js +42 -0
  170. package/dist/dto/logout-all.dto.js.map +1 -1
  171. package/dist/dto/logout-response.dto.d.ts +21 -0
  172. package/dist/dto/logout-response.dto.d.ts.map +1 -1
  173. package/dist/dto/logout-response.dto.js +21 -0
  174. package/dist/dto/logout-response.dto.js.map +1 -1
  175. package/dist/dto/logout.dto.d.ts +45 -0
  176. package/dist/dto/logout.dto.d.ts.map +1 -1
  177. package/dist/dto/logout.dto.js +45 -0
  178. package/dist/dto/logout.dto.js.map +1 -1
  179. package/dist/dto/refresh-token.dto.d.ts +28 -0
  180. package/dist/dto/refresh-token.dto.d.ts.map +1 -1
  181. package/dist/dto/refresh-token.dto.js +28 -0
  182. package/dist/dto/refresh-token.dto.js.map +1 -1
  183. package/dist/dto/remove-devices.dto.d.ts +51 -0
  184. package/dist/dto/remove-devices.dto.d.ts.map +1 -1
  185. package/dist/dto/remove-devices.dto.js +51 -0
  186. package/dist/dto/remove-devices.dto.js.map +1 -1
  187. package/dist/dto/resend-code-response.dto.d.ts +28 -0
  188. package/dist/dto/resend-code-response.dto.d.ts.map +1 -1
  189. package/dist/dto/resend-code-response.dto.js +28 -0
  190. package/dist/dto/resend-code-response.dto.js.map +1 -1
  191. package/dist/dto/resend-code.dto.d.ts +37 -0
  192. package/dist/dto/resend-code.dto.d.ts.map +1 -1
  193. package/dist/dto/resend-code.dto.js +37 -0
  194. package/dist/dto/resend-code.dto.js.map +1 -1
  195. package/dist/dto/reset-password.dto.d.ts +74 -0
  196. package/dist/dto/reset-password.dto.d.ts.map +1 -1
  197. package/dist/dto/reset-password.dto.js +76 -1
  198. package/dist/dto/reset-password.dto.js.map +1 -1
  199. package/dist/dto/respond-challenge.dto.d.ts +147 -0
  200. package/dist/dto/respond-challenge.dto.d.ts.map +1 -1
  201. package/dist/dto/respond-challenge.dto.js +162 -0
  202. package/dist/dto/respond-challenge.dto.js.map +1 -1
  203. package/dist/dto/set-mfa-exemption.dto.d.ts +65 -0
  204. package/dist/dto/set-mfa-exemption.dto.d.ts.map +1 -1
  205. package/dist/dto/set-mfa-exemption.dto.js +65 -0
  206. package/dist/dto/set-mfa-exemption.dto.js.map +1 -1
  207. package/dist/dto/set-must-change-password-response.dto.d.ts +23 -0
  208. package/dist/dto/set-must-change-password-response.dto.d.ts.map +1 -1
  209. package/dist/dto/set-must-change-password-response.dto.js +23 -0
  210. package/dist/dto/set-must-change-password-response.dto.js.map +1 -1
  211. package/dist/dto/set-must-change-password.dto.d.ts +32 -0
  212. package/dist/dto/set-must-change-password.dto.d.ts.map +1 -1
  213. package/dist/dto/set-must-change-password.dto.js +32 -0
  214. package/dist/dto/set-must-change-password.dto.js.map +1 -1
  215. package/dist/dto/set-preferred-method.dto.d.ts +48 -0
  216. package/dist/dto/set-preferred-method.dto.d.ts.map +1 -1
  217. package/dist/dto/set-preferred-method.dto.js +48 -0
  218. package/dist/dto/set-preferred-method.dto.js.map +1 -1
  219. package/dist/dto/setup-mfa.dto.d.ts +62 -0
  220. package/dist/dto/setup-mfa.dto.d.ts.map +1 -1
  221. package/dist/dto/setup-mfa.dto.js +62 -0
  222. package/dist/dto/setup-mfa.dto.js.map +1 -1
  223. package/dist/dto/signup.dto.d.ts +92 -0
  224. package/dist/dto/signup.dto.d.ts.map +1 -1
  225. package/dist/dto/signup.dto.js +93 -0
  226. package/dist/dto/signup.dto.js.map +1 -1
  227. package/dist/dto/social-auth.dto.d.ts +234 -0
  228. package/dist/dto/social-auth.dto.d.ts.map +1 -1
  229. package/dist/dto/social-auth.dto.js +234 -0
  230. package/dist/dto/social-auth.dto.js.map +1 -1
  231. package/dist/dto/trust-device-response.dto.d.ts +26 -0
  232. package/dist/dto/trust-device-response.dto.d.ts.map +1 -1
  233. package/dist/dto/trust-device-response.dto.js +26 -0
  234. package/dist/dto/trust-device-response.dto.js.map +1 -1
  235. package/dist/dto/trust-device.dto.d.ts +9 -0
  236. package/dist/dto/trust-device.dto.d.ts.map +1 -1
  237. package/dist/dto/trust-device.dto.js +9 -0
  238. package/dist/dto/trust-device.dto.js.map +1 -1
  239. package/dist/dto/update-user-attributes-request.dto.d.ts +36 -0
  240. package/dist/dto/update-user-attributes-request.dto.d.ts.map +1 -1
  241. package/dist/dto/update-user-attributes-request.dto.js +36 -0
  242. package/dist/dto/update-user-attributes-request.dto.js.map +1 -1
  243. package/dist/dto/user-response.dto.d.ts +81 -0
  244. package/dist/dto/user-response.dto.d.ts.map +1 -1
  245. package/dist/dto/user-response.dto.js +84 -2
  246. package/dist/dto/user-response.dto.js.map +1 -1
  247. package/dist/dto/user-update.dto.d.ts +132 -0
  248. package/dist/dto/user-update.dto.d.ts.map +1 -1
  249. package/dist/dto/user-update.dto.js +133 -0
  250. package/dist/dto/user-update.dto.js.map +1 -1
  251. package/dist/dto/verify-email.dto.d.ts +171 -0
  252. package/dist/dto/verify-email.dto.d.ts.map +1 -1
  253. package/dist/dto/verify-email.dto.js +173 -1
  254. package/dist/dto/verify-email.dto.js.map +1 -1
  255. package/dist/dto/verify-mfa-code.dto.d.ts +65 -0
  256. package/dist/dto/verify-mfa-code.dto.d.ts.map +1 -1
  257. package/dist/dto/verify-mfa-code.dto.js +65 -0
  258. package/dist/dto/verify-mfa-code.dto.js.map +1 -1
  259. package/dist/dto/verify-phone-by-sub.dto.d.ts +49 -0
  260. package/dist/dto/verify-phone-by-sub.dto.d.ts.map +1 -1
  261. package/dist/dto/verify-phone-by-sub.dto.js +49 -0
  262. package/dist/dto/verify-phone-by-sub.dto.js.map +1 -1
  263. package/dist/dto/verify-phone.dto.d.ts +139 -0
  264. package/dist/dto/verify-phone.dto.d.ts.map +1 -1
  265. package/dist/dto/verify-phone.dto.js +142 -1
  266. package/dist/dto/verify-phone.dto.js.map +1 -1
  267. package/dist/dto.d.ts +10 -0
  268. package/dist/dto.d.ts.map +1 -1
  269. package/dist/dto.js +10 -0
  270. package/dist/dto.js.map +1 -1
  271. package/dist/entities/auth-audit.entity.d.ts +159 -0
  272. package/dist/entities/auth-audit.entity.d.ts.map +1 -1
  273. package/dist/entities/auth-audit.entity.js +166 -0
  274. package/dist/entities/auth-audit.entity.js.map +1 -1
  275. package/dist/entities/challenge-session.entity.d.ts +87 -0
  276. package/dist/entities/challenge-session.entity.d.ts.map +1 -1
  277. package/dist/entities/challenge-session.entity.js +87 -0
  278. package/dist/entities/challenge-session.entity.js.map +1 -1
  279. package/dist/entities/index.d.ts +18 -0
  280. package/dist/entities/index.d.ts.map +1 -1
  281. package/dist/entities/index.js +18 -0
  282. package/dist/entities/index.js.map +1 -1
  283. package/dist/entities/login-attempt.entity.d.ts +43 -0
  284. package/dist/entities/login-attempt.entity.d.ts.map +1 -1
  285. package/dist/entities/login-attempt.entity.js +43 -0
  286. package/dist/entities/login-attempt.entity.js.map +1 -1
  287. package/dist/entities/mfa-device.entity.d.ts +112 -0
  288. package/dist/entities/mfa-device.entity.d.ts.map +1 -1
  289. package/dist/entities/mfa-device.entity.js +112 -0
  290. package/dist/entities/mfa-device.entity.js.map +1 -1
  291. package/dist/entities/rate-limit.entity.d.ts +31 -0
  292. package/dist/entities/rate-limit.entity.d.ts.map +1 -1
  293. package/dist/entities/rate-limit.entity.js +31 -0
  294. package/dist/entities/rate-limit.entity.js.map +1 -1
  295. package/dist/entities/session.entity.d.ts +121 -0
  296. package/dist/entities/session.entity.d.ts.map +1 -1
  297. package/dist/entities/session.entity.js +121 -0
  298. package/dist/entities/session.entity.js.map +1 -1
  299. package/dist/entities/social-account.entity.d.ts +75 -0
  300. package/dist/entities/social-account.entity.d.ts.map +1 -1
  301. package/dist/entities/social-account.entity.js +75 -0
  302. package/dist/entities/social-account.entity.js.map +1 -1
  303. package/dist/entities/storage-lock.entity.d.ts +28 -0
  304. package/dist/entities/storage-lock.entity.d.ts.map +1 -1
  305. package/dist/entities/storage-lock.entity.js +28 -0
  306. package/dist/entities/storage-lock.entity.js.map +1 -1
  307. package/dist/entities/trusted-device.entity.d.ts +83 -0
  308. package/dist/entities/trusted-device.entity.d.ts.map +1 -1
  309. package/dist/entities/trusted-device.entity.js +83 -0
  310. package/dist/entities/trusted-device.entity.js.map +1 -1
  311. package/dist/entities/user.entity.d.ts +166 -0
  312. package/dist/entities/user.entity.d.ts.map +1 -1
  313. package/dist/entities/user.entity.js +166 -0
  314. package/dist/entities/user.entity.js.map +1 -1
  315. package/dist/entities/verification-token.entity.d.ts +102 -0
  316. package/dist/entities/verification-token.entity.d.ts.map +1 -1
  317. package/dist/entities/verification-token.entity.js +102 -0
  318. package/dist/entities/verification-token.entity.js.map +1 -1
  319. package/dist/entities.d.ts +8 -0
  320. package/dist/entities.d.ts.map +1 -1
  321. package/dist/entities.js +8 -0
  322. package/dist/entities.js.map +1 -1
  323. package/dist/enums/auth-audit-event-type.enum.d.ts +211 -0
  324. package/dist/enums/auth-audit-event-type.enum.d.ts.map +1 -1
  325. package/dist/enums/auth-audit-event-type.enum.js +244 -0
  326. package/dist/enums/auth-audit-event-type.enum.js.map +1 -1
  327. package/dist/enums/error-codes.enum.d.ts +296 -0
  328. package/dist/enums/error-codes.enum.d.ts.map +1 -1
  329. package/dist/enums/error-codes.enum.js +332 -0
  330. package/dist/enums/error-codes.enum.js.map +1 -1
  331. package/dist/enums/mfa-method.enum.d.ts +74 -0
  332. package/dist/enums/mfa-method.enum.d.ts.map +1 -1
  333. package/dist/enums/mfa-method.enum.js +64 -0
  334. package/dist/enums/mfa-method.enum.js.map +1 -1
  335. package/dist/enums/risk-factor.enum.d.ts +91 -0
  336. package/dist/enums/risk-factor.enum.d.ts.map +1 -1
  337. package/dist/enums/risk-factor.enum.js +97 -0
  338. package/dist/enums/risk-factor.enum.js.map +1 -1
  339. package/dist/exceptions/nauth.exception.d.ts +149 -0
  340. package/dist/exceptions/nauth.exception.d.ts.map +1 -1
  341. package/dist/exceptions/nauth.exception.js +159 -0
  342. package/dist/exceptions/nauth.exception.js.map +1 -1
  343. package/dist/handlers/auth.handler.d.ts +32 -0
  344. package/dist/handlers/auth.handler.d.ts.map +1 -1
  345. package/dist/handlers/auth.handler.js +47 -1
  346. package/dist/handlers/auth.handler.js.map +1 -1
  347. package/dist/handlers/client-info.handler.d.ts +25 -0
  348. package/dist/handlers/client-info.handler.d.ts.map +1 -1
  349. package/dist/handlers/client-info.handler.js +36 -2
  350. package/dist/handlers/client-info.handler.js.map +1 -1
  351. package/dist/handlers/csrf.handler.d.ts +32 -0
  352. package/dist/handlers/csrf.handler.d.ts.map +1 -1
  353. package/dist/handlers/csrf.handler.js +49 -1
  354. package/dist/handlers/csrf.handler.js.map +1 -1
  355. package/dist/handlers/token-delivery.handler.d.ts +16 -0
  356. package/dist/handlers/token-delivery.handler.d.ts.map +1 -1
  357. package/dist/handlers/token-delivery.handler.js +22 -1
  358. package/dist/handlers/token-delivery.handler.js.map +1 -1
  359. package/dist/index.d.ts +34 -0
  360. package/dist/index.d.ts.map +1 -1
  361. package/dist/index.js +67 -0
  362. package/dist/index.js.map +1 -1
  363. package/dist/interfaces/client-info.interface.d.ts +58 -0
  364. package/dist/interfaces/client-info.interface.d.ts.map +1 -1
  365. package/dist/interfaces/config.interface.d.ts +1780 -0
  366. package/dist/interfaces/config.interface.d.ts.map +1 -1
  367. package/dist/interfaces/config.interface.js +16 -0
  368. package/dist/interfaces/config.interface.js.map +1 -1
  369. package/dist/interfaces/entities.interface.d.ts +48 -0
  370. package/dist/interfaces/entities.interface.d.ts.map +1 -1
  371. package/dist/interfaces/entities.interface.js +8 -0
  372. package/dist/interfaces/entities.interface.js.map +1 -1
  373. package/dist/interfaces/index.js +5 -0
  374. package/dist/interfaces/index.js.map +1 -1
  375. package/dist/interfaces/logger.interface.d.ts +213 -0
  376. package/dist/interfaces/logger.interface.d.ts.map +1 -1
  377. package/dist/interfaces/logger.interface.js +35 -0
  378. package/dist/interfaces/logger.interface.js.map +1 -1
  379. package/dist/interfaces/mfa-provider.interface.d.ts +134 -0
  380. package/dist/interfaces/mfa-provider.interface.d.ts.map +1 -1
  381. package/dist/interfaces/oauth.interface.d.ts +110 -0
  382. package/dist/interfaces/oauth.interface.d.ts.map +1 -1
  383. package/dist/interfaces/provider.interface.d.ts +83 -0
  384. package/dist/interfaces/provider.interface.d.ts.map +1 -1
  385. package/dist/interfaces/sms-template.interface.d.ts +246 -0
  386. package/dist/interfaces/sms-template.interface.d.ts.map +1 -1
  387. package/dist/interfaces/sms-template.interface.js +26 -0
  388. package/dist/interfaces/sms-template.interface.js.map +1 -1
  389. package/dist/interfaces/social-auth-provider.interface.d.ts +115 -0
  390. package/dist/interfaces/social-auth-provider.interface.d.ts.map +1 -1
  391. package/dist/interfaces/storage-adapter.interface.d.ts +37 -0
  392. package/dist/interfaces/storage-adapter.interface.d.ts.map +1 -1
  393. package/dist/interfaces/template.interface.d.ts +351 -0
  394. package/dist/interfaces/template.interface.d.ts.map +1 -1
  395. package/dist/interfaces/template.interface.js +13 -0
  396. package/dist/interfaces/template.interface.js.map +1 -1
  397. package/dist/interfaces/token-verifier.interface.d.ts +101 -0
  398. package/dist/interfaces/token-verifier.interface.d.ts.map +1 -1
  399. package/dist/interfaces.d.ts +8 -0
  400. package/dist/interfaces.d.ts.map +1 -1
  401. package/dist/interfaces.js +8 -0
  402. package/dist/interfaces.js.map +1 -1
  403. package/dist/internal.d.ts +120 -0
  404. package/dist/internal.d.ts.map +1 -1
  405. package/dist/internal.js +138 -0
  406. package/dist/internal.js.map +1 -1
  407. package/dist/platform/interfaces.d.ts +187 -0
  408. package/dist/platform/interfaces.d.ts.map +1 -1
  409. package/dist/platform/interfaces.js +11 -0
  410. package/dist/platform/interfaces.js.map +1 -1
  411. package/dist/schemas/auth-config.schema.d.ts +62 -0
  412. package/dist/schemas/auth-config.schema.d.ts.map +1 -1
  413. package/dist/schemas/auth-config.schema.js +189 -9
  414. package/dist/schemas/auth-config.schema.js.map +1 -1
  415. package/dist/services/adaptive-mfa-decision.service.d.ts +144 -0
  416. package/dist/services/adaptive-mfa-decision.service.d.ts.map +1 -1
  417. package/dist/services/adaptive-mfa-decision.service.js +151 -5
  418. package/dist/services/adaptive-mfa-decision.service.js.map +1 -1
  419. package/dist/services/auth-audit.service.d.ts +195 -0
  420. package/dist/services/auth-audit.service.d.ts.map +1 -1
  421. package/dist/services/auth-audit.service.js +228 -1
  422. package/dist/services/auth-audit.service.js.map +1 -1
  423. package/dist/services/auth-challenge-helper.service.d.ts +144 -1
  424. package/dist/services/auth-challenge-helper.service.d.ts.map +1 -1
  425. package/dist/services/auth-challenge-helper.service.js +295 -16
  426. package/dist/services/auth-challenge-helper.service.js.map +1 -1
  427. package/dist/services/auth-flow-context-builder.service.d.ts +120 -1
  428. package/dist/services/auth-flow-context-builder.service.d.ts.map +1 -1
  429. package/dist/services/auth-flow-context-builder.service.js +184 -5
  430. package/dist/services/auth-flow-context-builder.service.js.map +1 -1
  431. package/dist/services/auth-flow-rules.d.ts +136 -0
  432. package/dist/services/auth-flow-rules.d.ts.map +1 -1
  433. package/dist/services/auth-flow-rules.js +137 -0
  434. package/dist/services/auth-flow-rules.js.map +1 -1
  435. package/dist/services/auth-flow-state-definitions.d.ts +40 -0
  436. package/dist/services/auth-flow-state-definitions.d.ts.map +1 -1
  437. package/dist/services/auth-flow-state-definitions.js +98 -0
  438. package/dist/services/auth-flow-state-definitions.js.map +1 -1
  439. package/dist/services/auth-flow-state-machine.service.d.ts +91 -0
  440. package/dist/services/auth-flow-state-machine.service.d.ts.map +1 -1
  441. package/dist/services/auth-flow-state-machine.service.js +102 -0
  442. package/dist/services/auth-flow-state-machine.service.js.map +1 -1
  443. package/dist/services/auth-flow-state-machine.types.d.ts +221 -0
  444. package/dist/services/auth-flow-state-machine.types.d.ts.map +1 -1
  445. package/dist/services/auth-flow-state-machine.types.js +47 -0
  446. package/dist/services/auth-flow-state-machine.types.js.map +1 -1
  447. package/dist/services/auth.service.d.ts +397 -1
  448. package/dist/services/auth.service.d.ts.map +1 -1
  449. package/dist/services/auth.service.js +943 -27
  450. package/dist/services/auth.service.js.map +1 -1
  451. package/dist/services/challenge.service.d.ts +255 -1
  452. package/dist/services/challenge.service.d.ts.map +1 -1
  453. package/dist/services/challenge.service.js +327 -3
  454. package/dist/services/challenge.service.js.map +1 -1
  455. package/dist/services/client-info.service.d.ts +143 -0
  456. package/dist/services/client-info.service.d.ts.map +1 -1
  457. package/dist/services/client-info.service.js +161 -0
  458. package/dist/services/client-info.service.js.map +1 -1
  459. package/dist/services/csrf.service.d.ts +15 -0
  460. package/dist/services/csrf.service.d.ts.map +1 -1
  461. package/dist/services/csrf.service.js +16 -0
  462. package/dist/services/csrf.service.js.map +1 -1
  463. package/dist/services/email-verification.service.d.ts +52 -0
  464. package/dist/services/email-verification.service.d.ts.map +1 -1
  465. package/dist/services/email-verification.service.js +152 -12
  466. package/dist/services/email-verification.service.js.map +1 -1
  467. package/dist/services/geo-location.service.d.ts +105 -0
  468. package/dist/services/geo-location.service.d.ts.map +1 -1
  469. package/dist/services/geo-location.service.js +188 -2
  470. package/dist/services/geo-location.service.js.map +1 -1
  471. package/dist/services/jwt.service.d.ts +257 -0
  472. package/dist/services/jwt.service.d.ts.map +1 -1
  473. package/dist/services/jwt.service.js +284 -1
  474. package/dist/services/jwt.service.js.map +1 -1
  475. package/dist/services/mfa-base.service.d.ts +179 -1
  476. package/dist/services/mfa-base.service.d.ts.map +1 -1
  477. package/dist/services/mfa-base.service.js +256 -2
  478. package/dist/services/mfa-base.service.js.map +1 -1
  479. package/dist/services/mfa.service.d.ts +304 -0
  480. package/dist/services/mfa.service.d.ts.map +1 -1
  481. package/dist/services/mfa.service.js +380 -0
  482. package/dist/services/mfa.service.js.map +1 -1
  483. package/dist/services/password-reset.service.d.ts +46 -0
  484. package/dist/services/password-reset.service.d.ts.map +1 -1
  485. package/dist/services/password-reset.service.js +79 -0
  486. package/dist/services/password-reset.service.js.map +1 -1
  487. package/dist/services/password.service.d.ts +139 -0
  488. package/dist/services/password.service.d.ts.map +1 -1
  489. package/dist/services/password.service.js +167 -9
  490. package/dist/services/password.service.js.map +1 -1
  491. package/dist/services/phone-verification.service.d.ts +75 -0
  492. package/dist/services/phone-verification.service.d.ts.map +1 -1
  493. package/dist/services/phone-verification.service.js +188 -6
  494. package/dist/services/phone-verification.service.js.map +1 -1
  495. package/dist/services/risk-detection.service.d.ts +198 -0
  496. package/dist/services/risk-detection.service.d.ts.map +1 -1
  497. package/dist/services/risk-detection.service.js +358 -11
  498. package/dist/services/risk-detection.service.js.map +1 -1
  499. package/dist/services/risk-scoring.service.d.ts +84 -0
  500. package/dist/services/risk-scoring.service.d.ts.map +1 -1
  501. package/dist/services/risk-scoring.service.js +87 -0
  502. package/dist/services/risk-scoring.service.js.map +1 -1
  503. package/dist/services/session.service.d.ts +204 -0
  504. package/dist/services/session.service.d.ts.map +1 -1
  505. package/dist/services/session.service.js +289 -4
  506. package/dist/services/session.service.js.map +1 -1
  507. package/dist/services/social-auth-base.service.d.ts +123 -1
  508. package/dist/services/social-auth-base.service.d.ts.map +1 -1
  509. package/dist/services/social-auth-base.service.js +155 -2
  510. package/dist/services/social-auth-base.service.js.map +1 -1
  511. package/dist/services/social-auth.service.d.ts +191 -0
  512. package/dist/services/social-auth.service.d.ts.map +1 -1
  513. package/dist/services/social-auth.service.js +215 -2
  514. package/dist/services/social-auth.service.js.map +1 -1
  515. package/dist/services/social-provider-registry.service.d.ts +86 -0
  516. package/dist/services/social-provider-registry.service.d.ts.map +1 -1
  517. package/dist/services/social-provider-registry.service.js +86 -0
  518. package/dist/services/social-provider-registry.service.js.map +1 -1
  519. package/dist/services/trusted-device.service.d.ts +105 -0
  520. package/dist/services/trusted-device.service.d.ts.map +1 -1
  521. package/dist/services/trusted-device.service.js +133 -4
  522. package/dist/services/trusted-device.service.js.map +1 -1
  523. package/dist/storage/account-lockout-storage.service.d.ts +35 -0
  524. package/dist/storage/account-lockout-storage.service.d.ts.map +1 -1
  525. package/dist/storage/account-lockout-storage.service.js +35 -0
  526. package/dist/storage/account-lockout-storage.service.js.map +1 -1
  527. package/dist/storage/memory-storage.adapter.d.ts +148 -0
  528. package/dist/storage/memory-storage.adapter.d.ts.map +1 -1
  529. package/dist/storage/memory-storage.adapter.js +201 -6
  530. package/dist/storage/memory-storage.adapter.js.map +1 -1
  531. package/dist/storage/rate-limit-storage.service.d.ts +3 -0
  532. package/dist/storage/rate-limit-storage.service.d.ts.map +1 -1
  533. package/dist/storage/rate-limit-storage.service.js +4 -0
  534. package/dist/storage/rate-limit-storage.service.js.map +1 -1
  535. package/dist/storage.d.ts +8 -0
  536. package/dist/storage.d.ts.map +1 -1
  537. package/dist/storage.js +8 -0
  538. package/dist/storage.js.map +1 -1
  539. package/dist/templates/html-template.engine.d.ts +110 -0
  540. package/dist/templates/html-template.engine.d.ts.map +1 -1
  541. package/dist/templates/html-template.engine.js +147 -0
  542. package/dist/templates/html-template.engine.js.map +1 -1
  543. package/dist/templates/index.d.ts +5 -0
  544. package/dist/templates/index.d.ts.map +1 -1
  545. package/dist/templates/index.js +5 -0
  546. package/dist/templates/index.js.map +1 -1
  547. package/dist/templates/sms-template.engine.d.ts +151 -0
  548. package/dist/templates/sms-template.engine.d.ts.map +1 -1
  549. package/dist/templates/sms-template.engine.js +171 -0
  550. package/dist/templates/sms-template.engine.js.map +1 -1
  551. package/dist/templates.d.ts +8 -0
  552. package/dist/templates.d.ts.map +1 -1
  553. package/dist/templates.js +8 -0
  554. package/dist/templates.js.map +1 -1
  555. package/dist/utils/common-passwords.d.ts +42 -0
  556. package/dist/utils/common-passwords.d.ts.map +1 -1
  557. package/dist/utils/common-passwords.js +88 -0
  558. package/dist/utils/common-passwords.js.map +1 -1
  559. package/dist/utils/context-storage.d.ts +129 -0
  560. package/dist/utils/context-storage.d.ts.map +1 -1
  561. package/dist/utils/context-storage.js +129 -0
  562. package/dist/utils/context-storage.js.map +1 -1
  563. package/dist/utils/cookie-names.util.d.ts +35 -0
  564. package/dist/utils/cookie-names.util.d.ts.map +1 -1
  565. package/dist/utils/cookie-names.util.js +37 -0
  566. package/dist/utils/cookie-names.util.js.map +1 -1
  567. package/dist/utils/cookies.util.d.ts +19 -0
  568. package/dist/utils/cookies.util.d.ts.map +1 -1
  569. package/dist/utils/cookies.util.js +30 -3
  570. package/dist/utils/cookies.util.js.map +1 -1
  571. package/dist/utils/index.d.ts +3 -0
  572. package/dist/utils/index.d.ts.map +1 -1
  573. package/dist/utils/index.js +4 -0
  574. package/dist/utils/index.js.map +1 -1
  575. package/dist/utils/ip-extractor.d.ts +88 -0
  576. package/dist/utils/ip-extractor.d.ts.map +1 -1
  577. package/dist/utils/ip-extractor.js +109 -16
  578. package/dist/utils/ip-extractor.js.map +1 -1
  579. package/dist/utils/nauth-logger.d.ts +70 -0
  580. package/dist/utils/nauth-logger.d.ts.map +1 -1
  581. package/dist/utils/nauth-logger.js +82 -4
  582. package/dist/utils/nauth-logger.js.map +1 -1
  583. package/dist/utils/pii-redactor.d.ts +70 -0
  584. package/dist/utils/pii-redactor.d.ts.map +1 -1
  585. package/dist/utils/pii-redactor.js +102 -0
  586. package/dist/utils/pii-redactor.js.map +1 -1
  587. package/dist/utils/setup/get-repositories.d.ts +16 -0
  588. package/dist/utils/setup/get-repositories.d.ts.map +1 -1
  589. package/dist/utils/setup/get-repositories.js +21 -0
  590. package/dist/utils/setup/get-repositories.js.map +1 -1
  591. package/dist/utils/setup/init-services.d.ts +40 -1
  592. package/dist/utils/setup/init-services.d.ts.map +1 -1
  593. package/dist/utils/setup/init-services.js +98 -0
  594. package/dist/utils/setup/init-services.js.map +1 -1
  595. package/dist/utils/setup/init-social.d.ts +27 -0
  596. package/dist/utils/setup/init-social.d.ts.map +1 -1
  597. package/dist/utils/setup/init-social.js +49 -0
  598. package/dist/utils/setup/init-social.js.map +1 -1
  599. package/dist/utils/setup/init-storage.d.ts +22 -0
  600. package/dist/utils/setup/init-storage.d.ts.map +1 -1
  601. package/dist/utils/setup/init-storage.js +36 -0
  602. package/dist/utils/setup/init-storage.js.map +1 -1
  603. package/dist/utils/setup/register-mfa.d.ts +22 -0
  604. package/dist/utils/setup/register-mfa.d.ts.map +1 -1
  605. package/dist/utils/setup/register-mfa.js +41 -0
  606. package/dist/utils/setup/register-mfa.js.map +1 -1
  607. package/dist/utils/setup/run-nauth-migrations.d.ts +7 -0
  608. package/dist/utils/setup/run-nauth-migrations.d.ts.map +1 -1
  609. package/dist/utils/setup/run-nauth-migrations.js +8 -0
  610. package/dist/utils/setup/run-nauth-migrations.js.map +1 -1
  611. package/dist/utils/token-delivery-policy.d.ts +17 -0
  612. package/dist/utils/token-delivery-policy.d.ts.map +1 -1
  613. package/dist/utils/token-delivery-policy.js +17 -0
  614. package/dist/utils/token-delivery-policy.js.map +1 -1
  615. package/dist/utils.d.ts +8 -0
  616. package/dist/utils.d.ts.map +1 -1
  617. package/dist/utils.js +8 -0
  618. package/dist/utils.js.map +1 -1
  619. package/dist/validators/template.validator.d.ts +80 -0
  620. package/dist/validators/template.validator.d.ts.map +1 -1
  621. package/dist/validators/template.validator.js +94 -0
  622. package/dist/validators/template.validator.js.map +1 -1
  623. package/package.json +7 -2
package/dist/dto/logout.dto.d.ts CHANGED
@@ -1,5 +1,50 @@
1
+ /**
2
+ * Logout DTO
3
+ *
4
+ * Request DTO for logging out a user from the current authenticated session.
5
+ *
6
+ * Security:
7
+ * - Session ID is automatically extracted from JWT token context (via ClientInfoService)
8
+ * - User sub validated (UUID) - optional, for additional verification
9
+ * - Prevents unauthorized logout attempts
10
+ *
11
+ * @example
12
+ * ```typescript
13
+ * await authService.logout({
14
+ * forgetMe: false
15
+ * });
16
+ * ```
17
+ */
18
+ /**
19
+ * Request DTO for logout
20
+ */
1
21
  export declare class LogoutDTO {
22
+ /**
23
+ * User's unique identifier (UUID v4) - Optional
24
+ *
25
+ * If provided, validates that the authenticated user matches this sub.
26
+ * Session ID is automatically extracted from JWT token context.
27
+ *
28
+ * Validation:
29
+ * - Must be a valid UUID v4 format if provided
30
+ * - Matches DB constraint: char(36) or uuid
31
+ *
32
+ * Sanitization:
33
+ * - Trimmed
34
+ * - Lowercased for consistency
35
+ *
36
+ * @example "a21b654c-2746-4168-acee-c175083a65cd"
37
+ */
2
38
  sub?: string;
39
+ /**
40
+ * If true, also removes trusted device
41
+ *
42
+ * Validation:
43
+ * - Must be a boolean if present
44
+ * - Default: false
45
+ *
46
+ * @example false
47
+ */
3
48
  forgetMe?: boolean;
4
49
  }
5
50
  //# sourceMappingURL=logout.dto.d.ts.map
package/dist/dto/logout.dto.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"logout.dto.d.ts","sourceRoot":"","sources":["../../src/dto/logout.dto.ts"],"names":[],"mappings":"AAwBA,qBAAa,SAAS;IAyBpB,GAAG,CAAC,EAAE,MAAM,CAAC;IAab,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB"}
1
+ {"version":3,"file":"logout.dto.d.ts","sourceRoot":"","sources":["../../src/dto/logout.dto.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAKH;;GAEG;AACH,qBAAa,SAAS;IACpB;;;;;;;;;;;;;;;OAeG;IASH,GAAG,CAAC,EAAE,MAAM,CAAC;IAEb;;;;;;;;OAQG;IAGH,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB"}
package/dist/dto/logout.dto.js CHANGED
@@ -1,4 +1,21 @@
1
1
  "use strict";
2
+ /**
3
+ * Logout DTO
4
+ *
5
+ * Request DTO for logging out a user from the current authenticated session.
6
+ *
7
+ * Security:
8
+ * - Session ID is automatically extracted from JWT token context (via ClientInfoService)
9
+ * - User sub validated (UUID) - optional, for additional verification
10
+ * - Prevents unauthorized logout attempts
11
+ *
12
+ * @example
13
+ * ```typescript
14
+ * await authService.logout({
15
+ * forgetMe: false
16
+ * });
17
+ * ```
18
+ */
2
19
  var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
3
20
  var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
4
21
  if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
@@ -12,8 +29,36 @@ Object.defineProperty(exports, "__esModule", { value: true });
12
29
  exports.LogoutDTO = void 0;
13
30
  const class_validator_1 = require("class-validator");
14
31
  const class_transformer_1 = require("class-transformer");
32
+ /**
33
+ * Request DTO for logout
34
+ */
15
35
  class LogoutDTO {
36
+ /**
37
+ * User's unique identifier (UUID v4) - Optional
38
+ *
39
+ * If provided, validates that the authenticated user matches this sub.
40
+ * Session ID is automatically extracted from JWT token context.
41
+ *
42
+ * Validation:
43
+ * - Must be a valid UUID v4 format if provided
44
+ * - Matches DB constraint: char(36) or uuid
45
+ *
46
+ * Sanitization:
47
+ * - Trimmed
48
+ * - Lowercased for consistency
49
+ *
50
+ * @example "a21b654c-2746-4168-acee-c175083a65cd"
51
+ */
16
52
  sub;
53
+ /**
54
+ * If true, also removes trusted device
55
+ *
56
+ * Validation:
57
+ * - Must be a boolean if present
58
+ * - Default: false
59
+ *
60
+ * @example false
61
+ */
17
62
  forgetMe;
18
63
  }
19
64
  exports.LogoutDTO = LogoutDTO;
package/dist/dto/logout.dto.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"logout.dto.js","sourceRoot":"","sources":["../../src/dto/logout.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAkBA,qDAAgE;AAChE,yDAA8C;AAK9C,MAAa,SAAS;IAyBpB,GAAG,CAAU;IAab,QAAQ,CAAW;CACpB;AAvCD,8BAuCC;AAdC;IARC,IAAA,4BAAU,GAAE;IACZ,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;IACnE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;sCACW;AAab;IAFC,IAAA,4BAAU,GAAE;IACZ,IAAA,2BAAS,EAAC,EAAE,OAAO,EAAE,4BAA4B,EAAE,CAAC;;2CAClC"}
1
+ {"version":3,"file":"logout.dto.js","sourceRoot":"","sources":["../../src/dto/logout.dto.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;GAgBG;;;;;;;;;;;;AAEH,qDAAgE;AAChE,yDAA8C;AAE9C;;GAEG;AACH,MAAa,SAAS;IACpB;;;;;;;;;;;;;;;OAeG;IASH,GAAG,CAAU;IAEb;;;;;;;;OAQG;IAGH,QAAQ,CAAW;CACpB;AAvCD,8BAuCC;AAdC;IARC,IAAA,4BAAU,GAAE;IACZ,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;IACnE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;sCACW;AAab;IAFC,IAAA,4BAAU,GAAE;IACZ,IAAA,2BAAS,EAAC,EAAE,OAAO,EAAE,4BAA4B,EAAE,CAAC;;2CAClC"}
package/dist/dto/refresh-token.dto.d.ts CHANGED
@@ -1,4 +1,32 @@
1
+ /**
2
+ * Refresh Token DTO
3
+ *
4
+ * Used for refreshing access tokens with a valid refresh token.
5
+ *
6
+ * Security:
7
+ * - Token length validated (prevents DoS)
8
+ * - JWT tokens can be long, but we validate input length
9
+ * - Token is validated in service layer for format and signature
10
+ *
11
+ * @example
12
+ * ```typescript
13
+ * POST /auth/refresh
14
+ * {
15
+ * "refreshToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."
16
+ * }
17
+ * ```
18
+ */
1
19
  export declare class RefreshTokenDTO {
20
+ /**
21
+ * JWT refresh token
22
+ *
23
+ * Validation:
24
+ * - Must be a string
25
+ * - Min 10 characters (minimum valid JWT length)
26
+ * - Max 2048 characters (prevents DoS, typical JWT is 200-500 chars)
27
+ *
28
+ * Note: Token format and signature validated in service layer
29
+ */
2
30
  refreshToken: string;
3
31
  }
4
32
  //# sourceMappingURL=refresh-token.dto.d.ts.map
package/dist/dto/refresh-token.dto.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"refresh-token.dto.d.ts","sourceRoot":"","sources":["../../src/dto/refresh-token.dto.ts"],"names":[],"mappings":"AAoBA,qBAAa,eAAe;IAc1B,YAAY,EAAG,MAAM,CAAC;CACvB"}
1
+ {"version":3,"file":"refresh-token.dto.d.ts","sourceRoot":"","sources":["../../src/dto/refresh-token.dto.ts"],"names":[],"mappings":"AAEA;;;;;;;;;;;;;;;;;GAiBG;AACH,qBAAa,eAAe;IAC1B;;;;;;;;;OASG;IAIH,YAAY,EAAG,MAAM,CAAC;CACvB"}
package/dist/dto/refresh-token.dto.js CHANGED
@@ -11,7 +11,35 @@ var __metadata = (this && this.__metadata) || function (k, v) {
11
11
  Object.defineProperty(exports, "__esModule", { value: true });
12
12
  exports.RefreshTokenDTO = void 0;
13
13
  const class_validator_1 = require("class-validator");
14
+ /**
15
+ * Refresh Token DTO
16
+ *
17
+ * Used for refreshing access tokens with a valid refresh token.
18
+ *
19
+ * Security:
20
+ * - Token length validated (prevents DoS)
21
+ * - JWT tokens can be long, but we validate input length
22
+ * - Token is validated in service layer for format and signature
23
+ *
24
+ * @example
25
+ * ```typescript
26
+ * POST /auth/refresh
27
+ * {
28
+ * "refreshToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."
29
+ * }
30
+ * ```
31
+ */
14
32
  class RefreshTokenDTO {
33
+ /**
34
+ * JWT refresh token
35
+ *
36
+ * Validation:
37
+ * - Must be a string
38
+ * - Min 10 characters (minimum valid JWT length)
39
+ * - Max 2048 characters (prevents DoS, typical JWT is 200-500 chars)
40
+ *
41
+ * Note: Token format and signature validated in service layer
42
+ */
15
43
  refreshToken;
16
44
  }
17
45
  exports.RefreshTokenDTO = RefreshTokenDTO;
package/dist/dto/refresh-token.dto.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"refresh-token.dto.js","sourceRoot":"","sources":["../../src/dto/refresh-token.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,qDAAiE;AAoBjE,MAAa,eAAe;IAc1B,YAAY,CAAU;CACvB;AAfD,0CAeC;AADC;IAHC,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,gCAAgC,EAAE,CAAC;IACvD,IAAA,2BAAS,EAAC,EAAE,EAAE,EAAE,OAAO,EAAE,2BAA2B,EAAE,CAAC;IACvD,IAAA,2BAAS,EAAC,IAAI,EAAE,EAAE,OAAO,EAAE,+CAA+C,EAAE,CAAC;;qDACxD"}
1
+ {"version":3,"file":"refresh-token.dto.js","sourceRoot":"","sources":["../../src/dto/refresh-token.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,qDAAiE;AAEjE;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAa,eAAe;IAC1B;;;;;;;;;OASG;IAIH,YAAY,CAAU;CACvB;AAfD,0CAeC;AADC;IAHC,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,gCAAgC,EAAE,CAAC;IACvD,IAAA,2BAAS,EAAC,EAAE,EAAE,EAAE,OAAO,EAAE,2BAA2B,EAAE,CAAC;IACvD,IAAA,2BAAS,EAAC,IAAI,EAAE,EAAE,OAAO,EAAE,+CAA+C,EAAE,CAAC;;qDACxD"}
package/dist/dto/remove-devices.dto.d.ts CHANGED
@@ -1,9 +1,60 @@
1
+ /**
2
+ * DTO for removing MFA devices
3
+ *
4
+ * Used to remove all MFA devices of a specific method type for a user.
5
+ * Automatically disables MFA if this was the last device.
6
+ *
7
+ * @example
8
+ * ```typescript
9
+ * const result = await mfaService.removeDevices({
10
+ * userSub: 'user-uuid',
11
+ * methodType: 'totp'
12
+ * });
13
+ * ```
14
+ */
15
+ /**
16
+ * DTO for removing MFA devices
17
+ */
1
18
  export declare class RemoveDevicesDTO {
19
+ /**
20
+ * User's unique identifier (UUID v4)
21
+ *
22
+ * Validation:
23
+ * - Must be a valid UUID v4 format
24
+ * - Matches DB constraint: char(36) or uuid
25
+ *
26
+ * Sanitization:
27
+ * - Trimmed
28
+ * - Lowercased for consistency
29
+ *
30
+ * @example "a21b654c-2746-4168-acee-c175083a65cd"
31
+ */
2
32
  userSub: string;
33
+ /**
34
+ * MFA method type to remove
35
+ *
36
+ * Validation:
37
+ * - Must be one of: totp, sms, email, passkey
38
+ * - Max 50 characters
39
+ *
40
+ * Sanitization:
41
+ * - Trimmed and lowercased
42
+ *
43
+ * @example "totp"
44
+ */
3
45
  methodType: string;
4
46
  }
47
+ /**
48
+ * Response DTO for removing devices
49
+ */
5
50
  export declare class RemoveDevicesResponseDTO {
51
+ /**
52
+ * Number of devices deleted
53
+ */
6
54
  deletedCount: number;
55
+ /**
56
+ * Whether MFA was disabled (if this was the last device)
57
+ */
7
58
  mfaDisabled: boolean;
8
59
  }
9
60
  //# sourceMappingURL=remove-devices.dto.d.ts.map
package/dist/dto/remove-devices.dto.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"remove-devices.dto.d.ts","sourceRoot":"","sources":["../../src/dto/remove-devices.dto.ts"],"names":[],"mappings":"AAsBA,qBAAa,gBAAgB;IAqB3B,OAAO,EAAG,MAAM,CAAC;IAyBjB,UAAU,EAAG,MAAM,CAAC;CACrB;AAKD,qBAAa,wBAAwB;IAInC,YAAY,EAAG,MAAM,CAAC;IAKtB,WAAW,EAAG,OAAO,CAAC;CACvB"}
1
+ {"version":3,"file":"remove-devices.dto.d.ts","sourceRoot":"","sources":["../../src/dto/remove-devices.dto.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAMH;;GAEG;AACH,qBAAa,gBAAgB;IAC3B;;;;;;;;;;;;OAYG;IAQH,OAAO,EAAG,MAAM,CAAC;IAEjB;;;;;;;;;;;OAWG;IAYH,UAAU,EAAG,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,qBAAa,wBAAwB;IACnC;;OAEG;IACH,YAAY,EAAG,MAAM,CAAC;IAEtB;;OAEG;IACH,WAAW,EAAG,OAAO,CAAC;CACvB"}
package/dist/dto/remove-devices.dto.js CHANGED
@@ -1,4 +1,18 @@
1
1
  "use strict";
2
+ /**
3
+ * DTO for removing MFA devices
4
+ *
5
+ * Used to remove all MFA devices of a specific method type for a user.
6
+ * Automatically disables MFA if this was the last device.
7
+ *
8
+ * @example
9
+ * ```typescript
10
+ * const result = await mfaService.removeDevices({
11
+ * userSub: 'user-uuid',
12
+ * methodType: 'totp'
13
+ * });
14
+ * ```
15
+ */
2
16
  var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
3
17
  var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
4
18
  if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
@@ -13,8 +27,36 @@ exports.RemoveDevicesResponseDTO = exports.RemoveDevicesDTO = void 0;
13
27
  const class_validator_1 = require("class-validator");
14
28
  const class_transformer_1 = require("class-transformer");
15
29
  const mfa_method_enum_1 = require("../enums/mfa-method.enum");
30
+ /**
31
+ * DTO for removing MFA devices
32
+ */
16
33
  class RemoveDevicesDTO {
34
+ /**
35
+ * User's unique identifier (UUID v4)
36
+ *
37
+ * Validation:
38
+ * - Must be a valid UUID v4 format
39
+ * - Matches DB constraint: char(36) or uuid
40
+ *
41
+ * Sanitization:
42
+ * - Trimmed
43
+ * - Lowercased for consistency
44
+ *
45
+ * @example "a21b654c-2746-4168-acee-c175083a65cd"
46
+ */
17
47
  userSub;
48
+ /**
49
+ * MFA method type to remove
50
+ *
51
+ * Validation:
52
+ * - Must be one of: totp, sms, email, passkey
53
+ * - Max 50 characters
54
+ *
55
+ * Sanitization:
56
+ * - Trimmed and lowercased
57
+ *
58
+ * @example "totp"
59
+ */
18
60
  methodType;
19
61
  }
20
62
  exports.RemoveDevicesDTO = RemoveDevicesDTO;
@@ -42,8 +84,17 @@ __decorate([
42
84
  }),
43
85
  __metadata("design:type", String)
44
86
  ], RemoveDevicesDTO.prototype, "methodType", void 0);
87
+ /**
88
+ * Response DTO for removing devices
89
+ */
45
90
  class RemoveDevicesResponseDTO {
91
+ /**
92
+ * Number of devices deleted
93
+ */
46
94
  deletedCount;
95
+ /**
96
+ * Whether MFA was disabled (if this was the last device)
97
+ */
47
98
  mfaDisabled;
48
99
  }
49
100
  exports.RemoveDevicesResponseDTO = RemoveDevicesResponseDTO;
package/dist/dto/remove-devices.dto.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"remove-devices.dto.js","sourceRoot":"","sources":["../../src/dto/remove-devices.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAeA,qDAAsE;AACtE,yDAA8C;AAC9C,8DAAqD;AAKrD,MAAa,gBAAgB;IAqB3B,OAAO,CAAU;IAyBjB,UAAU,CAAU;CACrB;AA/CD,4CA+CC;AA1BC;IAPC,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;IACnE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;iDACe;AAyBjB;IAXC,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,8BAA8B,EAAE,CAAC;IACrD,IAAA,wBAAM,EAAC,CAAC,2BAAS,CAAC,IAAI,EAAE,2BAAS,CAAC,GAAG,EAAE,2BAAS,CAAC,KAAK,EAAE,2BAAS,CAAC,OAAO,CAAC,EAAE;QAC3E,OAAO,EAAE,uDAAuD;KACjE,CAAC;IACD,IAAA,2BAAS,EAAC,EAAE,EAAE,EAAE,OAAO,EAAE,2CAA2C,EAAE,CAAC;IACvE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;oDACkB;AAMtB,MAAa,wBAAwB;IAInC,YAAY,CAAU;IAKtB,WAAW,CAAW;CACvB;AAVD,4DAUC"}
1
+ {"version":3,"file":"remove-devices.dto.js","sourceRoot":"","sources":["../../src/dto/remove-devices.dto.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;GAaG;;;;;;;;;;;;AAEH,qDAAsE;AACtE,yDAA8C;AAC9C,8DAAqD;AAErD;;GAEG;AACH,MAAa,gBAAgB;IAC3B;;;;;;;;;;;;OAYG;IAQH,OAAO,CAAU;IAEjB;;;;;;;;;;;OAWG;IAYH,UAAU,CAAU;CACrB;AA/CD,4CA+CC;AA1BC;IAPC,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;IACnE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;iDACe;AAyBjB;IAXC,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,8BAA8B,EAAE,CAAC;IACrD,IAAA,wBAAM,EAAC,CAAC,2BAAS,CAAC,IAAI,EAAE,2BAAS,CAAC,GAAG,EAAE,2BAAS,CAAC,KAAK,EAAE,2BAAS,CAAC,OAAO,CAAC,EAAE;QAC3E,OAAO,EAAE,uDAAuD;KACjE,CAAC;IACD,IAAA,2BAAS,EAAC,EAAE,EAAE,EAAE,OAAO,EAAE,2CAA2C,EAAE,CAAC;IACvE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;oDACkB;AAGtB;;GAEG;AACH,MAAa,wBAAwB;IACnC;;OAEG;IACH,YAAY,CAAU;IAEtB;;OAEG;IACH,WAAW,CAAW;CACvB;AAVD,4DAUC"}
package/dist/dto/resend-code-response.dto.d.ts CHANGED
@@ -1,4 +1,32 @@
1
+ /**
2
+ * Resend Code Response DTO
3
+ *
4
+ * Response DTO for resending verification codes.
5
+ * No validators needed - this is generated internally by the library.
6
+ *
7
+ * Security:
8
+ * - Email/phone masked for privacy
9
+ * - Only shows destination, not full details
10
+ *
11
+ * @example
12
+ * ```typescript
13
+ * const result = await authService.resendCode({ session: 'session-uuid' });
14
+ * // Returns: { destination: 'u***r@example.com' }
15
+ * ```
16
+ */
17
+ /**
18
+ * Response DTO for resend code
19
+ */
1
20
  export declare class ResendCodeResponseDTO {
21
+ /**
22
+ * Masked destination where code was sent
23
+ *
24
+ * Format:
25
+ * - Email: "u***r@example.com"
26
+ * - Phone: "+1***5678"
27
+ *
28
+ * @example "u***r@example.com"
29
+ */
2
30
  destination: string;
3
31
  }
4
32
  //# sourceMappingURL=resend-code-response.dto.d.ts.map
package/dist/dto/resend-code-response.dto.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"resend-code-response.dto.d.ts","sourceRoot":"","sources":["../../src/dto/resend-code-response.dto.ts"],"names":[],"mappings":"AAoBA,qBAAa,qBAAqB;IAUhC,WAAW,EAAG,MAAM,CAAC;CACtB"}
1
+ {"version":3,"file":"resend-code-response.dto.d.ts","sourceRoot":"","sources":["../../src/dto/resend-code-response.dto.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH;;GAEG;AACH,qBAAa,qBAAqB;IAChC;;;;;;;;OAQG;IACH,WAAW,EAAG,MAAM,CAAC;CACtB"}
package/dist/dto/resend-code-response.dto.js CHANGED
@@ -1,7 +1,35 @@
1
1
  "use strict";
2
+ /**
3
+ * Resend Code Response DTO
4
+ *
5
+ * Response DTO for resending verification codes.
6
+ * No validators needed - this is generated internally by the library.
7
+ *
8
+ * Security:
9
+ * - Email/phone masked for privacy
10
+ * - Only shows destination, not full details
11
+ *
12
+ * @example
13
+ * ```typescript
14
+ * const result = await authService.resendCode({ session: 'session-uuid' });
15
+ * // Returns: { destination: 'u***r@example.com' }
16
+ * ```
17
+ */
2
18
  Object.defineProperty(exports, "__esModule", { value: true });
3
19
  exports.ResendCodeResponseDTO = void 0;
20
+ /**
21
+ * Response DTO for resend code
22
+ */
4
23
  class ResendCodeResponseDTO {
24
+ /**
25
+ * Masked destination where code was sent
26
+ *
27
+ * Format:
28
+ * - Email: "u***r@example.com"
29
+ * - Phone: "+1***5678"
30
+ *
31
+ * @example "u***r@example.com"
32
+ */
5
33
  destination;
6
34
  }
7
35
  exports.ResendCodeResponseDTO = ResendCodeResponseDTO;
package/dist/dto/resend-code-response.dto.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"resend-code-response.dto.js","sourceRoot":"","sources":["../../src/dto/resend-code-response.dto.ts"],"names":[],"mappings":";;;AAoBA,MAAa,qBAAqB;IAUhC,WAAW,CAAU;CACtB;AAXD,sDAWC"}
1
+ {"version":3,"file":"resend-code-response.dto.js","sourceRoot":"","sources":["../../src/dto/resend-code-response.dto.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;GAeG;;;AAEH;;GAEG;AACH,MAAa,qBAAqB;IAChC;;;;;;;;OAQG;IACH,WAAW,CAAU;CACtB;AAXD,sDAWC"}
package/dist/dto/resend-code.dto.d.ts CHANGED
@@ -1,4 +1,41 @@
1
+ /**
2
+ * DTO for resending verification code
3
+ *
4
+ * Used to resend email/SMS verification codes during challenges:
5
+ * - Email verification (VERIFY_EMAIL)
6
+ * - Phone verification (VERIFY_PHONE)
7
+ * - MFA verification (MFA_REQUIRED with SMS/Email method)
8
+ *
9
+ * Security:
10
+ * - Session token length limited (prevents DoS)
11
+ * - Rate limiting enforced in service layer
12
+ *
13
+ * @example
14
+ * ```typescript
15
+ * const result = await authService.resendCode({
16
+ * session: 'challenge-session-token'
17
+ * });
18
+ * // Returns: { destination: 'u***r@example.com' }
19
+ * ```
20
+ */
21
+ /**
22
+ * DTO for resending verification code
23
+ */
1
24
  export declare class ResendCodeDTO {
25
+ /**
26
+ * Challenge session token (UUID v4)
27
+ *
28
+ * Validation:
29
+ * - Must be a valid UUID v4 format
30
+ * - Generated using randomUUID() in challenge service
31
+ * - Matches DB constraint: varchar(255) but UUID format enforced
32
+ *
33
+ * Sanitization:
34
+ * - Trimmed
35
+ * - Lowercased for consistency
36
+ *
37
+ * @example "a21b654c-2746-4168-acee-c175083a65cd"
38
+ */
2
39
  session: string;
3
40
  }
4
41
  //# sourceMappingURL=resend-code.dto.d.ts.map
package/dist/dto/resend-code.dto.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"resend-code.dto.d.ts","sourceRoot":"","sources":["../../src/dto/resend-code.dto.ts"],"names":[],"mappings":"AA2BA,qBAAa,aAAa;IAsBxB,OAAO,EAAG,MAAM,CAAC;CAClB"}
1
+ {"version":3,"file":"resend-code.dto.d.ts","sourceRoot":"","sources":["../../src/dto/resend-code.dto.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;GAmBG;AAKH;;GAEG;AACH,qBAAa,aAAa;IACxB;;;;;;;;;;;;;OAaG;IAQH,OAAO,EAAG,MAAM,CAAC;CAClB"}
package/dist/dto/resend-code.dto.js CHANGED
@@ -1,4 +1,24 @@
1
1
  "use strict";
2
+ /**
3
+ * DTO for resending verification code
4
+ *
5
+ * Used to resend email/SMS verification codes during challenges:
6
+ * - Email verification (VERIFY_EMAIL)
7
+ * - Phone verification (VERIFY_PHONE)
8
+ * - MFA verification (MFA_REQUIRED with SMS/Email method)
9
+ *
10
+ * Security:
11
+ * - Session token length limited (prevents DoS)
12
+ * - Rate limiting enforced in service layer
13
+ *
14
+ * @example
15
+ * ```typescript
16
+ * const result = await authService.resendCode({
17
+ * session: 'challenge-session-token'
18
+ * });
19
+ * // Returns: { destination: 'u***r@example.com' }
20
+ * ```
21
+ */
2
22
  var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
3
23
  var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
4
24
  if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
@@ -12,7 +32,24 @@ Object.defineProperty(exports, "__esModule", { value: true });
12
32
  exports.ResendCodeDTO = void 0;
13
33
  const class_validator_1 = require("class-validator");
14
34
  const class_transformer_1 = require("class-transformer");
35
+ /**
36
+ * DTO for resending verification code
37
+ */
15
38
  class ResendCodeDTO {
39
+ /**
40
+ * Challenge session token (UUID v4)
41
+ *
42
+ * Validation:
43
+ * - Must be a valid UUID v4 format
44
+ * - Generated using randomUUID() in challenge service
45
+ * - Matches DB constraint: varchar(255) but UUID format enforced
46
+ *
47
+ * Sanitization:
48
+ * - Trimmed
49
+ * - Lowercased for consistency
50
+ *
51
+ * @example "a21b654c-2746-4168-acee-c175083a65cd"
52
+ */
16
53
  session;
17
54
  }
18
55
  exports.ResendCodeDTO = ResendCodeDTO;
package/dist/dto/resend-code.dto.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"resend-code.dto.js","sourceRoot":"","sources":["../../src/dto/resend-code.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAqBA,qDAAyC;AACzC,yDAA8C;AAK9C,MAAa,aAAa;IAsBxB,OAAO,CAAU;CAClB;AAvBD,sCAuBC;AADC;IAPC,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,8CAA8C,EAAE,CAAC;IACxE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;8CACe"}
1
+ {"version":3,"file":"resend-code.dto.js","sourceRoot":"","sources":["../../src/dto/resend-code.dto.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;GAmBG;;;;;;;;;;;;AAEH,qDAAyC;AACzC,yDAA8C;AAE9C;;GAEG;AACH,MAAa,aAAa;IACxB;;;;;;;;;;;;;OAaG;IAQH,OAAO,CAAU;CAClB;AAvBD,sCAuBC;AADC;IAPC,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,8CAA8C,EAAE,CAAC;IACxE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;8CACe"}
package/dist/dto/reset-password.dto.d.ts CHANGED
@@ -1,8 +1,82 @@
1
+ /**
2
+ * Reset Password Request DTO
3
+ *
4
+ * Used to request a password reset token via email or phone.
5
+ *
6
+ * Security:
7
+ * - Identifier validated (email or phone)
8
+ * - Input sanitization applied
9
+ *
10
+ * @example
11
+ * ```typescript
12
+ * POST /auth/reset-password/request
13
+ * {
14
+ * "identifier": "user@example.com"
15
+ * }
16
+ * ```
17
+ */
1
18
  export declare class ResetPasswordRequestDTO {
19
+ /**
20
+ * User identifier (email or phone)
21
+ *
22
+ * Validation:
23
+ * - Must be a string
24
+ * - Min 1 character
25
+ * - Max 255 characters (matches DB constraint for email)
26
+ *
27
+ * Sanitization:
28
+ * - Trimmed
29
+ * - Lowercased if email format detected
30
+ */
2
31
  identifier: string;
3
32
  }
33
+ /**
34
+ * Reset Password DTO
35
+ *
36
+ * Used to reset password with a valid reset token.
37
+ *
38
+ * Security:
39
+ * - Token length validated (matches DB constraint: varchar(255))
40
+ * - Password strength enforced (8-128 chars)
41
+ * - Token format validated in service layer
42
+ *
43
+ * @example
44
+ * ```typescript
45
+ * POST /auth/reset-password
46
+ * {
47
+ * "token": "reset-token-from-email",
48
+ * "newPassword": "NewSecurePassword123!"
49
+ * }
50
+ * ```
51
+ */
4
52
  export declare class ResetPasswordDTO {
53
+ /**
54
+ * Password reset token from email
55
+ *
56
+ * Validation:
57
+ * - Must be a string
58
+ * - Min 1 character (prevents empty strings)
59
+ * - Max 255 characters (matches DB constraint: varchar(255))
60
+ *
61
+ * Sanitization:
62
+ * - Trimmed
63
+ *
64
+ * Note: Token format and validity validated in service layer
65
+ */
5
66
  token: string;
67
+ /**
68
+ * New password
69
+ *
70
+ * Validation:
71
+ * - Must be a string
72
+ * - Min 8 characters (security requirement)
73
+ * - Max 128 characters (prevents DoS via bcrypt)
74
+ *
75
+ * Note: NOT trimmed (passwords can have leading/trailing spaces)
76
+ * Additional checks in service layer:
77
+ * - Password strength (if configured)
78
+ * - Password history (prevent reuse)
79
+ */
6
80
  newPassword: string;
7
81
  }
8
82
  //# sourceMappingURL=reset-password.dto.d.ts.map
package/dist/dto/reset-password.dto.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"reset-password.dto.d.ts","sourceRoot":"","sources":["../../src/dto/reset-password.dto.ts"],"names":[],"mappings":"AAoBA,qBAAa,uBAAuB;IA4BlC,UAAU,EAAG,MAAM,CAAC;CACrB;AAqBD,qBAAa,gBAAgB;IAwB3B,KAAK,EAAG,MAAM,CAAC;IAmBf,WAAW,EAAG,MAAM,CAAC;CACtB"}
1
+ {"version":3,"file":"reset-password.dto.d.ts","sourceRoot":"","sources":["../../src/dto/reset-password.dto.ts"],"names":[],"mappings":"AAGA;;;;;;;;;;;;;;;;GAgBG;AACH,qBAAa,uBAAuB;IAClC;;;;;;;;;;;OAWG;IAgBH,UAAU,EAAG,MAAM,CAAC;CACrB;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACH,qBAAa,gBAAgB;IAC3B;;;;;;;;;;;;OAYG;IAWH,KAAK,EAAG,MAAM,CAAC;IAEf;;;;;;;;;;;;OAYG;IAKH,WAAW,EAAG,MAAM,CAAC;CACtB"}