@nauth-toolkit/core 0.1.28 → 0.1.30

package/dist/dto/social-redirect.dto.js

@@ -0,0 +1,464 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SocialCallbackFormDTO = exports.SocialCallbackQueryDTO = exports.StartSocialRedirectQueryDTO = void 0;
+const class_transformer_1 = require("class-transformer");
+const class_validator_1 = require("class-validator");
+/**
+ * DTO for starting the redirect-first social login flow
+ *
+ * Used when initiating a backend-first OAuth redirect flow where the provider
+ * redirects back to the backend callback endpoint.
+ *
+ * @example
+ * ```typescript
+ * // GET /auth/social/google/redirect?returnTo=/auth/callback&appState=12345&action=login
+ * ```
+ */
+class StartSocialRedirectQueryDTO {
+    /**
+     * Frontend path or absolute URL to redirect to after authentication completes
+     *
+     * Validation:
+     * - Optional field
+     * - Max 2048 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     *
+     * @example '/auth/callback'
+     * @example 'https://myapp.com/auth/callback'
+     */
+    returnTo;
+    /**
+     * Opaque, non-secret state to round-trip back to the frontend
+     *
+     * This value is stored during the OAuth flow and returned to the frontend
+     * after authentication completes. Use it to maintain UI state across the redirect.
+     *
+     * Validation:
+     * - Optional field
+     * - Max 2000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     *
+     * @example '12345'
+     * @example 'page=dashboard&mode=dark'
+     */
+    appState;
+    /**
+     * Redirect action type
+     *
+     * - `login`: Standard social login/signup (default)
+     * - `link`: Link social account to existing authenticated user
+     *
+     * Validation:
+     * - Optional field
+     * - Must be either 'login' or 'link'
+     *
+     * @example 'login'
+     * @example 'link'
+     */
+    action;
+}
+exports.StartSocialRedirectQueryDTO = StartSocialRedirectQueryDTO;
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(2048),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], StartSocialRedirectQueryDTO.prototype, "returnTo", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(2000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], StartSocialRedirectQueryDTO.prototype, "appState", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsIn)(['login', 'link']),
+    __metadata("design:type", String)
+], StartSocialRedirectQueryDTO.prototype, "action", void 0);
+/**
+ * DTO for OAuth callbacks via GET query parameters
+ *
+ * Used by providers that redirect with query params (Google, Facebook).
+ * This DTO handles both successful callbacks and error scenarios.
+ *
+ * @example
+ * ```typescript
+ * // Successful callback
+ * // GET /auth/social/google/callback?code=ABC123&state=xyz789
+ *
+ * // Error callback
+ * // GET /auth/social/google/callback?error=access_denied&error_description=User+cancelled
+ * ```
+ */
+class SocialCallbackQueryDTO {
+    /**
+     * OAuth authorization code from provider
+     *
+     * Validation:
+     * - Optional field
+     * - Max 2000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    code;
+    /**
+     * OAuth state parameter for CSRF protection
+     *
+     * Validation:
+     * - Optional field
+     * - Max 500 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    state;
+    /**
+     * Provider error code (if user cancels or error occurs)
+     *
+     * Validation:
+     * - Optional field
+     * - Max 2000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     *
+     * @example 'access_denied'
+     */
+    error;
+    /**
+     * Provider error description
+     *
+     * Validation:
+     * - Optional field
+     * - Max 4000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     *
+     * @example 'User cancelled the authentication request'
+     */
+    error_description;
+    /**
+     * Google-specific: OAuth scope parameter
+     *
+     * Google often includes this in the callback. Explicitly allowed to avoid
+     * validation errors when using whitelist + forbidNonWhitelisted validation.
+     *
+     * Validation:
+     * - Optional field
+     * - Max 4000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    scope;
+    /**
+     * Google-specific: Authenticated user index
+     *
+     * Validation:
+     * - Optional field
+     * - Max 50 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    authuser;
+    /**
+     * Google-specific: Hosted domain parameter
+     *
+     * Validation:
+     * - Optional field
+     * - Max 2000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    hd;
+    /**
+     * Google-specific: Prompt parameter
+     *
+     * Validation:
+     * - Optional field
+     * - Max 2000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    prompt;
+    /**
+     * Provider-specific: Session state parameter
+     *
+     * Some providers include this for session management.
+     *
+     * Validation:
+     * - Optional field
+     * - Max 2000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    session_state;
+    /**
+     * Provider-specific: Error URI parameter
+     *
+     * Some providers include a URI with more error details.
+     *
+     * Validation:
+     * - Optional field
+     * - Max 4000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    error_uri;
+}
+exports.SocialCallbackQueryDTO = SocialCallbackQueryDTO;
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(2000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackQueryDTO.prototype, "code", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(500),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackQueryDTO.prototype, "state", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(2000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackQueryDTO.prototype, "error", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(4000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackQueryDTO.prototype, "error_description", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(4000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackQueryDTO.prototype, "scope", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(50),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackQueryDTO.prototype, "authuser", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(2000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackQueryDTO.prototype, "hd", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(2000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackQueryDTO.prototype, "prompt", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(2000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackQueryDTO.prototype, "session_state", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(4000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackQueryDTO.prototype, "error_uri", void 0);
+/**
+ * DTO for Apple form_post OAuth callbacks
+ *
+ * Apple uses POST form_post response mode instead of query parameters.
+ * This DTO handles the form data sent to the callback endpoint.
+ *
+ * @example
+ * ```typescript
+ * // POST /auth/social/apple/callback
+ * // Content-Type: application/x-www-form-urlencoded
+ * // code=ABC123&state=xyz789
+ * ```
+ */
+class SocialCallbackFormDTO {
+    /**
+     * OAuth authorization code from provider
+     *
+     * Validation:
+     * - Optional field
+     * - Max 2000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    code;
+    /**
+     * OAuth state parameter for CSRF protection
+     *
+     * Validation:
+     * - Optional field
+     * - Max 500 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    state;
+    /**
+     * Provider error code (if user cancels or error occurs)
+     *
+     * Validation:
+     * - Optional field
+     * - Max 2000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    error;
+    /**
+     * Provider error description
+     *
+     * Validation:
+     * - Optional field
+     * - Max 4000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    error_description;
+    /**
+     * Provider callback extras (for validation compatibility)
+     *
+     * Included for parity with GET callback DTO to avoid strict validation issues.
+     *
+     * Validation:
+     * - Optional field
+     * - Max 4000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    scope;
+    /**
+     * Provider-specific parameter
+     *
+     * Validation:
+     * - Optional field
+     * - Max 50 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    authuser;
+    /**
+     * Provider-specific parameter
+     *
+     * Validation:
+     * - Optional field
+     * - Max 2000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    hd;
+    /**
+     * Provider-specific parameter
+     *
+     * Validation:
+     * - Optional field
+     * - Max 2000 characters
+     *
+     * Sanitization:
+     * - Trimmed
+     */
+    prompt;
+}
+exports.SocialCallbackFormDTO = SocialCallbackFormDTO;
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(2000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackFormDTO.prototype, "code", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(500),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackFormDTO.prototype, "state", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(2000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackFormDTO.prototype, "error", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(4000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackFormDTO.prototype, "error_description", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(4000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackFormDTO.prototype, "scope", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(50),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackFormDTO.prototype, "authuser", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(2000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackFormDTO.prototype, "hd", void 0);
+__decorate([
+    (0, class_validator_1.IsOptional)(),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.MaxLength)(2000),
+    (0, class_transformer_1.Transform)(({ value }) => (typeof value === 'string' ? value.trim() : value)),
+    __metadata("design:type", String)
+], SocialCallbackFormDTO.prototype, "prompt", void 0);
+//# sourceMappingURL=social-redirect.dto.js.map

package/dist/dto/social-redirect.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"social-redirect.dto.js","sourceRoot":"","sources":["../../src/dto/social-redirect.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,yDAA8C;AAC9C,qDAAwE;AAExE;;;;;;;;;;GAUG;AACH,MAAa,2BAA2B;IACtC;;;;;;;;;;;;OAYG;IAKH,QAAQ,CAAU;IAElB;;;;;;;;;;;;;;;OAeG;IAKH,QAAQ,CAAU;IAElB;;;;;;;;;;;;OAYG;IAGH,MAAM,CAAoB;CAC3B;AA1DD,kEA0DC;AAxCC;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;6DAC3D;AAsBlB;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;6DAC3D;AAiBlB;IAFC,IAAA,4BAAU,GAAE;IACZ,IAAA,sBAAI,EAAC,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;;2DACE;AAG5B;;;;;;;;;;;;;;GAcG;AACH,MAAa,sBAAsB;IACjC;;;;;;;;;OASG;IAKH,IAAI,CAAU;IAEd;;;;;;;;;OASG;IAKH,KAAK,CAAU;IAEf;;;;;;;;;;;OAWG;IAKH,KAAK,CAAU;IAEf;;;;;;;;;;;OAWG;IAKH,iBAAiB,CAAU;IAE3B;;;;;;;;;;;;OAYG;IAKH,KAAK,CAAU;IAEf;;;;;;;;;OASG;IAKH,QAAQ,CAAU;IAElB;;;;;;;;;OASG;IAKH,EAAE,CAAU;IAEZ;;;;;;;;;OASG;IAKH,MAAM,CAAU;IAEhB;;;;;;;;;;;OAWG;IAKH,aAAa,CAAU;IAEvB;;;;;;;;;;;OAWG;IAKH,SAAS,CAAU;CACpB;AA3KD,wDA2KC;AA5JC;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;oDAC/D;AAgBd;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,GAAG,CAAC;IACd,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;qDAC9D;AAkBf;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;qDAC9D;AAkBf;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;iEAClD;AAmB3B;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;qDAC9D;AAgBf;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,EAAE,CAAC;IACb,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;wDAC3D;AAgBlB;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;kDACjE;AAgBZ;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;sDAC7D;AAkBhB;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;6DACtD;AAkBvB;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;yDAC1D;AAGrB;;;;;;;;;;;;GAYG;AACH,MAAa,qBAAqB;IAChC;;;;;;;;;OASG;IAKH,IAAI,CAAU;IAEd;;;;;;;;;OASG;IAKH,KAAK,CAAU;IAEf;;;;;;;;;OASG;IAKH,KAAK,CAAU;IAEf;;;;;;;;;OASG;IAKH,iBAAiB,CAAU;IAE3B;;;;;;;;;;;OAWG;IAKH,KAAK,CAAU;IAEf;;;;;;;;;OASG;IAKH,QAAQ,CAAU;IAElB;;;;;;;;;OASG;IAKH,EAAE,CAAU;IAEZ;;;;;;;;;OASG;IAKH,MAAM,CAAU;CACjB;AAlID,sDAkIC;AAnHC;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;mDAC/D;AAgBd;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,GAAG,CAAC;IACd,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;oDAC9D;AAgBf;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;oDAC9D;AAgBf;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;gEAClD;AAkB3B;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;oDAC9D;AAgBf;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,EAAE,CAAC;IACb,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;uDAC3D;AAgBlB;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;iDACjE;AAgBZ;IAJC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;IACV,IAAA,2BAAS,EAAC,IAAI,CAAC;IACf,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;;qDAC7D"}

package/dist/dto/verify-mfa-code.dto.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"verify-mfa-code.dto.d.ts","sourceRoot":"","sources":["../../src/dto/verify-mfa-code.dto.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAMH;;GAEG;AACH,qBAAa,gBAAgB;IAC3B;;;;;;;;;;;;OAYG;IAQH,GAAG,EAAG,MAAM,CAAC;IAEb;;;;;;;;;;;OAWG;IAYH,UAAU,EAAG,MAAM,CAAC;IAEpB;;;;;;;;OAQG;IACH,IAAI,EAAG,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAExC;;;;;OAKG;IAGH,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,qBAAa,wBAAwB;IACnC;;OAEG;IACH,KAAK,EAAG,OAAO,CAAC;CACjB"}
+{"version":3,"file":"verify-mfa-code.dto.d.ts","sourceRoot":"","sources":["../../src/dto/verify-mfa-code.dto.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAMH;;GAEG;AACH,qBAAa,gBAAgB;IAC3B;;;;;;;;;;;;OAYG;IAQH,GAAG,EAAG,MAAM,CAAC;IAEb;;;;;;;;;;;OAWG;IAYH,UAAU,EAAG,MAAM,CAAC;IAEpB;;;;;;;;OAQG;IAaH,IAAI,EAAG,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAExC;;;;;OAKG;IAGH,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,qBAAa,wBAAwB;IACnC;;OAEG;IACH,KAAK,EAAG,OAAO,CAAC;CACjB"}

package/dist/dto/verify-mfa-code.dto.js

@@ -103,6 +103,21 @@ __decorate([
     }),
     __metadata("design:type", String)
 ], VerifyMFACodeDTO.prototype, "methodName", void 0);
+__decorate([
+    (0, class_validator_1.ValidateIf)((dto) => dto.methodName === mfa_method_enum_1.MFAMethod.PASSKEY),
+    (0, class_validator_1.IsObject)({ message: 'code must be a passkey credential object for passkey method' }),
+    (0, class_validator_1.ValidateIf)((dto) => dto.methodName !== mfa_method_enum_1.MFAMethod.PASSKEY),
+    (0, class_validator_1.IsString)({ message: 'code must be a string for this MFA method' }),
+    (0, class_validator_1.IsNotEmpty)({ message: 'code is required' }),
+    (0, class_validator_1.MaxLength)(2048, { message: 'code must not exceed 2048 characters' }),
+    (0, class_transformer_1.Transform)(({ value }) => {
+        if (typeof value === 'string') {
+            return value.trim();
+        }
+        return value;
+    }),
+    __metadata("design:type", Object)
+], VerifyMFACodeDTO.prototype, "code", void 0);
 __decorate([
     (0, class_validator_1.IsOptional)(),
     (0, class_validator_1.IsInt)({ message: 'Device ID must be a number' }),

package/dist/dto/verify-mfa-code.dto.js.map

@@ -1 +1 @@
-{"version":3,"file":"verify-mfa-code.dto.js","sourceRoot":"","sources":["../../src/dto/verify-mfa-code.dto.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;GAeG;;;;;;;;;;;;AAEH,qDAAyF;AACzF,yDAA8C;AAC9C,8DAAqD;AAErD;;GAEG;AACH,MAAa,gBAAgB;IAC3B;;;;;;;;;;;;OAYG;IAQH,GAAG,CAAU;IAEb;;;;;;;;;;;OAWG;IAYH,UAAU,CAAU;IAEpB;;;;;;;;OAQG;IACH,IAAI,CAAoC;IAExC;;;;;OAKG;IAGH,QAAQ,CAAU;CACnB;AApED,4CAoEC;AA/CC;IAPC,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;IACnE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;6CACW;AAyBb;IAXC,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,8BAA8B,EAAE,CAAC;IACrD,IAAA,wBAAM,EAAC,CAAC,2BAAS,CAAC,IAAI,EAAE,2BAAS,CAAC,GAAG,EAAE,2BAAS,CAAC,KAAK,EAAE,2BAAS,CAAC,OAAO,EAAE,2BAAS,CAAC,MAAM,CAAC,EAAE;QAC7F,OAAO,EAAE,+DAA+D;KACzE,CAAC;IACD,IAAA,2BAAS,EAAC,EAAE,EAAE,EAAE,OAAO,EAAE,2CAA2C,EAAE,CAAC;IACvE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;oDACkB;AAqBpB;IAFC,IAAA,4BAAU,GAAE;IACZ,IAAA,uBAAK,EAAC,EAAE,OAAO,EAAE,4BAA4B,EAAE,CAAC;;kDAC/B;AAGpB;;GAEG;AACH,MAAa,wBAAwB;IACnC;;OAEG;IACH,KAAK,CAAW;CACjB;AALD,4DAKC"}
+{"version":3,"file":"verify-mfa-code.dto.js","sourceRoot":"","sources":["../../src/dto/verify-mfa-code.dto.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;GAeG;;;;;;;;;;;;AAEH,qDAA2H;AAC3H,yDAA8C;AAC9C,8DAAqD;AAErD;;GAEG;AACH,MAAa,gBAAgB;IAC3B;;;;;;;;;;;;OAYG;IAQH,GAAG,CAAU;IAEb;;;;;;;;;;;OAWG;IAYH,UAAU,CAAU;IAEpB;;;;;;;;OAQG;IAaH,IAAI,CAAoC;IAExC;;;;;OAKG;IAGH,QAAQ,CAAU;CACnB;AAhFD,4CAgFC;AA3DC;IAPC,IAAA,wBAAM,EAAC,GAAG,EAAE,EAAE,OAAO,EAAE,yCAAyC,EAAE,CAAC;IACnE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;6CACW;AAyBb;IAXC,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,8BAA8B,EAAE,CAAC;IACrD,IAAA,wBAAM,EAAC,CAAC,2BAAS,CAAC,IAAI,EAAE,2BAAS,CAAC,GAAG,EAAE,2BAAS,CAAC,KAAK,EAAE,2BAAS,CAAC,OAAO,EAAE,2BAAS,CAAC,MAAM,CAAC,EAAE;QAC7F,OAAO,EAAE,+DAA+D;KACzE,CAAC;IACD,IAAA,2BAAS,EAAC,EAAE,EAAE,EAAE,OAAO,EAAE,2CAA2C,EAAE,CAAC;IACvE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;oDACkB;AAuBpB;IAZC,IAAA,4BAAU,EAAC,CAAC,GAAqB,EAAE,EAAE,CAAC,GAAG,CAAC,UAAU,KAAK,2BAAS,CAAC,OAAO,CAAC;IAC3E,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,6DAA6D,EAAE,CAAC;IACpF,IAAA,4BAAU,EAAC,CAAC,GAAqB,EAAE,EAAE,CAAC,GAAG,CAAC,UAAU,KAAK,2BAAS,CAAC,OAAO,CAAC;IAC3E,IAAA,0BAAQ,EAAC,EAAE,OAAO,EAAE,2CAA2C,EAAE,CAAC;IAClE,IAAA,4BAAU,EAAC,EAAE,OAAO,EAAE,kBAAkB,EAAE,CAAC;IAC3C,IAAA,2BAAS,EAAC,IAAI,EAAE,EAAE,OAAO,EAAE,sCAAsC,EAAE,CAAC;IACpE,IAAA,6BAAS,EAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;QACvB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC;QACtB,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC;;8CACsC;AAUxC;IAFC,IAAA,4BAAU,GAAE;IACZ,IAAA,uBAAK,EAAC,EAAE,OAAO,EAAE,4BAA4B,EAAE,CAAC;;kDAC/B;AAGpB;;GAEG;AACH,MAAa,wBAAwB;IACnC;;OAEG;IACH,KAAK,CAAW;CACjB;AALD,4DAKC"}

package/dist/schemas/auth-config.schema.d.ts

@@ -2930,6 +2930,9 @@ export declare const authConfigSchema: z.ZodEffects<z.ZodObject<{
         disallowMultipleSessions?: boolean | undefined;
         maxLifetime?: string | number | undefined;
     } | undefined;
+    login?: {
+        identifierType?: "email" | "phone" | "username" | "email_or_username" | undefined;
+    } | undefined;
     social?: {
         google?: {
             clientSecret?: string | undefined;
@@ -2966,9 +2969,6 @@ export declare const authConfigSchema: z.ZodEffects<z.ZodObject<{
             allowedReturnToOrigins?: string[] | undefined;
         } | undefined;
     } | undefined;
-    login?: {
-        identifierType?: "email" | "phone" | "username" | "email_or_username" | undefined;
-    } | undefined;
     tablePrefix?: string | undefined;
     signup?: {
         enabled?: boolean | undefined;
@@ -3198,6 +3198,9 @@ export declare const authConfigSchema: z.ZodEffects<z.ZodObject<{
         disallowMultipleSessions?: boolean | undefined;
         maxLifetime?: string | number | undefined;
     } | undefined;
+    login?: {
+        identifierType?: "email" | "phone" | "username" | "email_or_username" | undefined;
+    } | undefined;
     social?: {
         google?: {
             clientSecret?: string | undefined;
@@ -3234,9 +3237,6 @@ export declare const authConfigSchema: z.ZodEffects<z.ZodObject<{
             allowedReturnToOrigins?: string[] | undefined;
         } | undefined;
     } | undefined;
-    login?: {
-        identifierType?: "email" | "phone" | "username" | "email_or_username" | undefined;
-    } | undefined;
     tablePrefix?: string | undefined;
     signup?: {
         enabled?: boolean | undefined;
@@ -3466,6 +3466,9 @@ export declare const authConfigSchema: z.ZodEffects<z.ZodObject<{
         disallowMultipleSessions?: boolean | undefined;
         maxLifetime?: string | number | undefined;
     } | undefined;
+    login?: {
+        identifierType?: "email" | "phone" | "username" | "email_or_username" | undefined;
+    } | undefined;
     social?: {
         google?: {
             clientSecret?: string | undefined;
@@ -3502,9 +3505,6 @@ export declare const authConfigSchema: z.ZodEffects<z.ZodObject<{
             allowedReturnToOrigins?: string[] | undefined;
         } | undefined;
     } | undefined;
-    login?: {
-        identifierType?: "email" | "phone" | "username" | "email_or_username" | undefined;
-    } | undefined;
     tablePrefix?: string | undefined;
     signup?: {
         enabled?: boolean | undefined;
@@ -3734,6 +3734,9 @@ export declare const authConfigSchema: z.ZodEffects<z.ZodObject<{
         disallowMultipleSessions?: boolean | undefined;
         maxLifetime?: string | number | undefined;
     } | undefined;
+    login?: {
+        identifierType?: "email" | "phone" | "username" | "email_or_username" | undefined;
+    } | undefined;
     social?: {
         google?: {
             clientSecret?: string | undefined;
@@ -3770,9 +3773,6 @@ export declare const authConfigSchema: z.ZodEffects<z.ZodObject<{
             allowedReturnToOrigins?: string[] | undefined;
         } | undefined;
     } | undefined;
-    login?: {
-        identifierType?: "email" | "phone" | "username" | "email_or_username" | undefined;
-    } | undefined;
     tablePrefix?: string | undefined;
     signup?: {
         enabled?: boolean | undefined;

package/dist/services/auth-audit.service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth-audit.service.d.ts","sourceRoot":"","sources":["../../src/services/auth-audit.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACtD,OAAO,EAAE,UAAU,EAAS,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,kBAAkB,EAAE,MAAM,qCAAqC,CAAC;AACzE,OAAO,EAAE,oBAAoB,EAAE,MAAM,+BAA+B,CAAC;AACrE,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAGpD,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAC1D,OAAO,EAAE,UAAU,EAAE,MAAM,2BAA2B,CAAC;AACvD,OAAO,EAAE,qBAAqB,EAAE,6BAA6B,EAAE,MAAM,kCAAkC,CAAC;AACxG,OAAO,EAAE,kBAAkB,EAAE,0BAA0B,EAAE,MAAM,+BAA+B,CAAC;AAC/F,OAAO,EAAE,wBAAwB,EAAE,gCAAgC,EAAE,MAAM,oCAAoC,CAAC;AAChH,OAAO,EACL,2BAA2B,EAC3B,mCAAmC,EACpC,MAAM,wCAAwC,CAAC;AAEhD;;;;;;GAMG;AACH,MAAM,WAAW,uBAAuB;IACtC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,kBAAkB,CAAC;IAC9B,WAAW,EAAE,oBAAoB,CAAC;IAClC,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,WAAW,CAAC,EAAE,UAAU,EAAE,GAAG,IAAI,CAAC;IAClC,oBAAoB,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAItC,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,kBAAkB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACnC,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;CAC3C;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AACH,qBAAa,gBAAgB;IAEzB,SAAS,CAAC,QAAQ,CAAC,eAAe,EAAE,UAAU,CAAC,aAAa,CAAC;IAC7D,SAAS,CAAC,QAAQ,CAAC,cAAc,EAAE,UAAU,CAAC,QAAQ,CAAC;IACvD,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,WAAW;IACtC,SAAS,CAAC,QAAQ,CAAC,iBAAiB,CAAC,EAAE,iBAAiB;gBAHrC,eAAe,EAAE,UAAU,CAAC,aAAa,CAAC,EAC1C,cAAc,EAAE,UAAU,CAAC,QAAQ,CAAC,EACpC,MAAM,EAAE,WAAW,EACnB,iBAAiB,CAAC,EAAE,iBAAiB,YAAA;IAO1D;;;;;;;;;;;;;;;;;;;;OAoBG;IACG,kBAAkB,CAAC,OAAO,EAAE,qBAAqB,GAAG,OAAO,CAAC,6BAA6B,CAAC;IAoDhG;;;;;;;;;;;;;;OAcG;IACG,eAAe,CAAC,OAAO,EAAE,kBAAkB,GAAG,OAAO,CAAC,0BAA0B,CAAC;IA+BvF;;;;;;;;;;;;;;;;;;;OAmBG;IACG,qBAAqB,CAAC,OAAO,EAAE,wBAAwB,GAAG,OAAO,CAAC,gCAAgC,CAAC;IA6BzG;;;;;;;;;;;;;;;;;OAiBG;IACG,wBAAwB,CAAC,OAAO,EAAE,2BAA2B,GAAG,OAAO,CAAC,mCAAmC,CAAC;CA6BnH;AAMD;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AACH,qBAAa,wBAAyB,SAAQ,gBAAgB;IAC5D;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAuDG;IACG,WAAW,CAAC,IAAI,EAAE,uBAAuB,GAAG,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;CAmK7E"}
+{"version":3,"file":"auth-audit.service.d.ts","sourceRoot":"","sources":["../../src/services/auth-audit.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACtD,OAAO,EAAE,UAAU,EAAS,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,kBAAkB,EAAE,MAAM,qCAAqC,CAAC;AACzE,OAAO,EAAE,oBAAoB,EAAE,MAAM,+BAA+B,CAAC;AACrE,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAGpD,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAE1D,OAAO,EAAE,UAAU,EAAE,MAAM,2BAA2B,CAAC;AACvD,OAAO,EAAE,qBAAqB,EAAE,6BAA6B,EAAE,MAAM,kCAAkC,CAAC;AACxG,OAAO,EAAE,kBAAkB,EAAE,0BAA0B,EAAE,MAAM,+BAA+B,CAAC;AAC/F,OAAO,EAAE,wBAAwB,EAAE,gCAAgC,EAAE,MAAM,oCAAoC,CAAC;AAChH,OAAO,EACL,2BAA2B,EAC3B,mCAAmC,EACpC,MAAM,wCAAwC,CAAC;AAEhD;;;;;;GAMG;AACH,MAAM,WAAW,uBAAuB;IACtC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,kBAAkB,CAAC;IAC9B,WAAW,EAAE,oBAAoB,CAAC;IAClC,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,WAAW,CAAC,EAAE,UAAU,EAAE,GAAG,IAAI,CAAC;IAClC,oBAAoB,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAItC,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,kBAAkB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACnC,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;CAC3C;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AACH,qBAAa,gBAAgB;IAEzB,SAAS,CAAC,QAAQ,CAAC,eAAe,EAAE,UAAU,CAAC,aAAa,CAAC;IAC7D,SAAS,CAAC,QAAQ,CAAC,cAAc,EAAE,UAAU,CAAC,QAAQ,CAAC;IACvD,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,WAAW;IACtC,SAAS,CAAC,QAAQ,CAAC,iBAAiB,CAAC,EAAE,iBAAiB;gBAHrC,eAAe,EAAE,UAAU,CAAC,aAAa,CAAC,EAC1C,cAAc,EAAE,UAAU,CAAC,QAAQ,CAAC,EACpC,MAAM,EAAE,WAAW,EACnB,iBAAiB,CAAC,EAAE,iBAAiB,YAAA;IAO1D;;;;;;;;;;;;;;;;;;;;OAoBG;IACG,kBAAkB,CAAC,OAAO,EAAE,qBAAqB,GAAG,OAAO,CAAC,6BAA6B,CAAC;IAqDhG;;;;;;;;;;;;;;OAcG;IACG,eAAe,CAAC,OAAO,EAAE,kBAAkB,GAAG,OAAO,CAAC,0BAA0B,CAAC;IAgCvF;;;;;;;;;;;;;;;;;;;OAmBG;IACG,qBAAqB,CAAC,OAAO,EAAE,wBAAwB,GAAG,OAAO,CAAC,gCAAgC,CAAC;IA8BzG;;;;;;;;;;;;;;;;;OAiBG;IACG,wBAAwB,CAAC,OAAO,EAAE,2BAA2B,GAAG,OAAO,CAAC,mCAAmC,CAAC;CA8BnH;AAMD;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AACH,qBAAa,wBAAyB,SAAQ,gBAAgB;IAC5D;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAuDG;IACG,WAAW,CAAC,IAAI,EAAE,uBAAuB,GAAG,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;CAmK7E"}

package/dist/services/auth-audit.service.js

@@ -4,6 +4,7 @@ exports.InternalAuthAuditService = exports.AuthAuditService = void 0;
 const auth_audit_event_type_enum_1 = require("../enums/auth-audit-event-type.enum");
 const nauth_exception_1 = require("../exceptions/nauth.exception");
 const error_codes_enum_1 = require("../enums/error-codes.enum");
+const dto_validator_1 = require("../utils/dto-validator");
 const get_user_auth_history_dto_1 = require("../dto/get-user-auth-history.dto");
 const get_events_by_type_dto_1 = require("../dto/get-events-by-type.dto");
 const get_suspicious_activity_dto_1 = require("../dto/get-suspicious-activity.dto");
@@ -75,6 +76,7 @@ class AuthAuditService {
      * ```
      */
     async getUserAuthHistory(request) {
+        request = await (0, dto_validator_1.ensureValidatedDto)(get_user_auth_history_dto_1.GetUserAuthHistoryDTO, request);
         // Resolve userSub to userId
         const user = (await this.userRepository.findOne({ where: { sub: request.userSub } }));
         if (!user) {
@@ -131,6 +133,7 @@ class AuthAuditService {
      * ```
      */
     async getEventsByType(request) {
+        request = await (0, dto_validator_1.ensureValidatedDto)(get_events_by_type_dto_1.GetEventsByTypeDTO, request);
         const page = request.page || 1;
         const limit = request.limit || 50;
         const skip = (page - 1) * limit;
@@ -175,6 +178,7 @@ class AuthAuditService {
      * ```
      */
     async getSuspiciousActivity(request) {
+        request = await (0, dto_validator_1.ensureValidatedDto)(get_suspicious_activity_dto_1.GetSuspiciousActivityDTO, request);
         const limit = request.limit || 100;
         const queryBuilder = this.auditRepository
             .createQueryBuilder('audit')
@@ -215,6 +219,7 @@ class AuthAuditService {
      * ```
      */
     async getRiskAssessmentHistory(request) {
+        request = await (0, dto_validator_1.ensureValidatedDto)(get_risk_assessment_history_dto_1.GetRiskAssessmentHistoryDTO, request);
         const limit = request.limit || 100;
         // Resolve userSub to userId
         const user = (await this.userRepository.findOne({ where: { sub: request.userSub } }));