npm - @nauth-toolkit/core - Versions diffs - 0.1.86 → 0.1.88 - Mend

@nauth-toolkit/core 0.1.86 → 0.1.88

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (166) hide show

package/dist/dto/admin-get-user-auth-history.dto.d.ts +62 -0
package/dist/dto/admin-get-user-auth-history.dto.d.ts.map +1 -0
package/dist/dto/admin-get-user-auth-history.dto.js +87 -0
package/dist/dto/admin-get-user-auth-history.dto.js.map +1 -0
package/dist/dto/admin-logout-all.dto.d.ts +48 -0
package/dist/dto/admin-logout-all.dto.d.ts.map +1 -0
package/dist/dto/{change-password-request.dto.js → admin-logout-all.dto.js} +36 -21
package/dist/dto/admin-logout-all.dto.js.map +1 -0
package/dist/dto/admin-remove-devices.dto.d.ts +25 -0
package/dist/dto/admin-remove-devices.dto.d.ts.map +1 -0
package/dist/dto/admin-remove-devices.dto.js +50 -0
package/dist/dto/admin-remove-devices.dto.js.map +1 -0
package/dist/dto/admin-reset-password.dto.d.ts +24 -49
package/dist/dto/admin-reset-password.dto.d.ts.map +1 -1
package/dist/dto/admin-reset-password.dto.js +30 -82
package/dist/dto/admin-reset-password.dto.js.map +1 -1
package/dist/dto/admin-revoke-session.dto.d.ts +22 -0
package/dist/dto/admin-revoke-session.dto.d.ts.map +1 -0
package/dist/dto/admin-revoke-session.dto.js +48 -0
package/dist/dto/admin-revoke-session.dto.js.map +1 -0
package/dist/dto/admin-set-password.dto.d.ts +8 -10
package/dist/dto/admin-set-password.dto.d.ts.map +1 -1
package/dist/dto/admin-set-password.dto.js +11 -21
package/dist/dto/admin-set-password.dto.js.map +1 -1
package/dist/dto/admin-set-preferred-method.dto.d.ts +25 -0
package/dist/dto/admin-set-preferred-method.dto.d.ts.map +1 -0
package/dist/dto/admin-set-preferred-method.dto.js +50 -0
package/dist/dto/admin-set-preferred-method.dto.js.map +1 -0
package/dist/dto/admin-update-user-attributes.dto.d.ts +41 -0
package/dist/dto/admin-update-user-attributes.dto.d.ts.map +1 -0
package/dist/dto/{update-user-attributes-request.dto.js → admin-update-user-attributes.dto.js} +12 -17
package/dist/dto/admin-update-user-attributes.dto.js.map +1 -0
package/dist/dto/auth-challenge.dto.d.ts +2 -2
package/dist/dto/auth-challenge.dto.d.ts.map +1 -1
package/dist/dto/auth-challenge.dto.js +3 -3
package/dist/dto/auth-challenge.dto.js.map +1 -1
package/dist/dto/auth-response.dto.d.ts +1 -1
package/dist/dto/auth-response.dto.d.ts.map +1 -1
package/dist/dto/auth-response.dto.js +1 -1
package/dist/dto/auth-response.dto.js.map +1 -1
package/dist/dto/get-mfa-status.dto.d.ts +8 -4
package/dist/dto/get-mfa-status.dto.d.ts.map +1 -1
package/dist/dto/get-mfa-status.dto.js +8 -4
package/dist/dto/get-mfa-status.dto.js.map +1 -1
package/dist/dto/get-risk-assessment-history.dto.d.ts +3 -3
package/dist/dto/get-risk-assessment-history.dto.d.ts.map +1 -1
package/dist/dto/get-risk-assessment-history.dto.js +5 -5
package/dist/dto/get-risk-assessment-history.dto.js.map +1 -1
package/dist/dto/get-suspicious-activity.dto.d.ts +3 -3
package/dist/dto/get-suspicious-activity.dto.d.ts.map +1 -1
package/dist/dto/get-suspicious-activity.dto.js +5 -5
package/dist/dto/get-suspicious-activity.dto.js.map +1 -1
package/dist/dto/get-user-auth-history.dto.d.ts +4 -39
package/dist/dto/get-user-auth-history.dto.d.ts.map +1 -1
package/dist/dto/get-user-auth-history.dto.js +53 -51
package/dist/dto/get-user-auth-history.dto.js.map +1 -1
package/dist/dto/get-user-devices.dto.d.ts +5 -18
package/dist/dto/get-user-devices.dto.d.ts.map +1 -1
package/dist/dto/get-user-devices.dto.js +5 -39
package/dist/dto/get-user-devices.dto.js.map +1 -1
package/dist/dto/get-user-sessions-response.dto.d.ts +1 -1
package/dist/dto/get-user-sessions-response.dto.js +1 -1
package/dist/dto/get-user-sessions.dto.d.ts +1 -1
package/dist/dto/get-user-sessions.dto.js +1 -1
package/dist/dto/index.d.ts +8 -2
package/dist/dto/index.d.ts.map +1 -1
package/dist/dto/index.js +8 -2
package/dist/dto/index.js.map +1 -1
package/dist/dto/logout-all-response.dto.d.ts +1 -1
package/dist/dto/logout-all-response.dto.js +1 -1
package/dist/dto/logout-all.dto.d.ts +1 -18
package/dist/dto/logout-all.dto.d.ts.map +1 -1
package/dist/dto/logout-all.dto.js +1 -30
package/dist/dto/logout-all.dto.js.map +1 -1
package/dist/dto/logout-session.dto.d.ts +0 -5
package/dist/dto/logout-session.dto.d.ts.map +1 -1
package/dist/dto/logout-session.dto.js +0 -12
package/dist/dto/logout-session.dto.js.map +1 -1
package/dist/dto/logout.dto.d.ts +1 -18
package/dist/dto/logout.dto.d.ts.map +1 -1
package/dist/dto/logout.dto.js +1 -30
package/dist/dto/logout.dto.js.map +1 -1
package/dist/dto/remove-devices.dto.d.ts +4 -16
package/dist/dto/remove-devices.dto.d.ts.map +1 -1
package/dist/dto/remove-devices.dto.js +4 -26
package/dist/dto/remove-devices.dto.js.map +1 -1
package/dist/dto/set-mfa-exemption.dto.d.ts +4 -2
package/dist/dto/set-mfa-exemption.dto.d.ts.map +1 -1
package/dist/dto/set-mfa-exemption.dto.js +5 -3
package/dist/dto/set-mfa-exemption.dto.js.map +1 -1
package/dist/dto/set-must-change-password.dto.d.ts +3 -3
package/dist/dto/set-must-change-password.dto.d.ts.map +1 -1
package/dist/dto/set-must-change-password.dto.js +5 -5
package/dist/dto/set-must-change-password.dto.js.map +1 -1
package/dist/dto/set-preferred-method.dto.d.ts +4 -16
package/dist/dto/set-preferred-method.dto.d.ts.map +1 -1
package/dist/dto/set-preferred-method.dto.js +4 -26
package/dist/dto/set-preferred-method.dto.js.map +1 -1
package/dist/dto/setup-mfa.dto.d.ts +3 -18
package/dist/dto/setup-mfa.dto.d.ts.map +1 -1
package/dist/dto/setup-mfa.dto.js +3 -30
package/dist/dto/setup-mfa.dto.js.map +1 -1
package/dist/dto/social-auth.dto.d.ts +4 -34
package/dist/dto/social-auth.dto.d.ts.map +1 -1
package/dist/dto/social-auth.dto.js +10 -68
package/dist/dto/social-auth.dto.js.map +1 -1
package/dist/dto/update-user-attributes.dto.d.ts +26 -0
package/dist/dto/update-user-attributes.dto.d.ts.map +1 -0
package/dist/dto/update-user-attributes.dto.js +30 -0
package/dist/dto/update-user-attributes.dto.js.map +1 -0
package/dist/index.d.ts +5 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +5 -0
package/dist/index.js.map +1 -1
package/dist/interfaces/hooks.interface.d.ts +2 -1
package/dist/interfaces/hooks.interface.d.ts.map +1 -1
package/dist/interfaces/provider.interface.d.ts +1 -1
package/dist/interfaces/provider.interface.d.ts.map +1 -1
package/dist/services/adaptive-mfa-decision.service.js +2 -2
package/dist/services/adaptive-mfa-decision.service.js.map +1 -1
package/dist/services/admin-auth.service.d.ts +307 -0
package/dist/services/admin-auth.service.d.ts.map +1 -0
package/dist/services/admin-auth.service.js +885 -0
package/dist/services/admin-auth.service.js.map +1 -0
package/dist/services/auth-audit.service.d.ts +16 -16
package/dist/services/auth-audit.service.d.ts.map +1 -1
package/dist/services/auth-audit.service.js +33 -33
package/dist/services/auth-audit.service.js.map +1 -1
package/dist/services/auth-challenge-helper.service.js +3 -3
package/dist/services/auth-challenge-helper.service.js.map +1 -1
package/dist/services/auth-service-internal-helpers.d.ts +2 -2
package/dist/services/auth-service-internal-helpers.d.ts.map +1 -1
package/dist/services/auth-service-internal-helpers.js.map +1 -1
package/dist/services/auth.service.d.ts +122 -446
package/dist/services/auth.service.d.ts.map +1 -1
package/dist/services/auth.service.js +424 -1274
package/dist/services/auth.service.js.map +1 -1
package/dist/services/mfa.service.d.ts +90 -12
package/dist/services/mfa.service.d.ts.map +1 -1
package/dist/services/mfa.service.js +395 -264
package/dist/services/mfa.service.js.map +1 -1
package/dist/services/password-reset.service.d.ts.map +1 -1
package/dist/services/password-reset.service.js +80 -29
package/dist/services/password-reset.service.js.map +1 -1
package/dist/services/social-auth.service.d.ts +7 -0
package/dist/services/social-auth.service.d.ts.map +1 -1
package/dist/services/social-auth.service.js +38 -26
package/dist/services/social-auth.service.js.map +1 -1
package/dist/services/user.service.d.ts +3 -3
package/dist/services/user.service.d.ts.map +1 -1
package/dist/services/user.service.js +7 -7
package/dist/services/user.service.js.map +1 -1
package/dist/utils/dto-validator.d.ts.map +1 -1
package/dist/utils/dto-validator.js +50 -4
package/dist/utils/dto-validator.js.map +1 -1
package/dist/utils/setup/init-services.d.ts +2 -1
package/dist/utils/setup/init-services.d.ts.map +1 -1
package/dist/utils/setup/init-services.js +2 -0
package/dist/utils/setup/init-services.js.map +1 -1
package/package.json +1 -1
package/dist/dto/change-password-request.dto.d.ts +0 -43
package/dist/dto/change-password-request.dto.d.ts.map +0 -1
package/dist/dto/change-password-request.dto.js.map +0 -1
package/dist/dto/update-user-attributes-request.dto.d.ts +0 -44
package/dist/dto/update-user-attributes-request.dto.d.ts.map +0 -1
package/dist/dto/update-user-attributes-request.dto.js.map +0 -1

package/dist/services/admin-auth.service.d.ts ADDED Viewed

@@ -0,0 +1,307 @@
+import { Repository } from 'typeorm';
+import { BaseUser, BaseLoginAttempt, BaseMFADevice, BaseChallengeSession, BaseVerificationToken, BaseSocialAccount, BaseAuthAudit, BaseTrustedDevice, BaseSession } from '../entities';
+import { PasswordService } from './password.service';
+import { SessionService } from './session.service';
+import { EmailVerificationService } from './email-verification.service';
+import { PhoneVerificationService } from './phone-verification.service';
+import { ClientInfoService } from './client-info.service';
+import { ChallengeService } from './challenge.service';
+import { AuthChallengeHelperService } from './auth-challenge-helper.service';
+import { AccountLockoutStorageService } from '../storage/account-lockout-storage.service';
+import { InternalAuthAuditService as AuthAuditService } from './auth-audit.service';
+import { TrustedDeviceService } from './trusted-device.service';
+import { AdminSignupDTO, AdminSignupResponseDTO } from '../dto/admin-signup.dto';
+import { AdminSignupSocialDTO, AdminSignupSocialResponseDTO } from '../dto/admin-signup-social.dto';
+import { DeleteUserDTO, DeleteUserResponseDTO } from '../dto/delete-user.dto';
+import { GetUsersDTO, GetUsersResponseDTO } from '../dto/get-users.dto';
+import { DisableUserDTO, DisableUserResponseDTO } from '../dto/disable-user.dto';
+import { EnableUserDTO, EnableUserResponseDTO } from '../dto/enable-user.dto';
+import { GetUserByEmailDTO } from '../dto/get-user-by-email.dto';
+import { GetUserByIdDTO } from '../dto/get-user-by-id.dto';
+import { UserResponseDto } from '../dto/user-response.dto';
+import { GetUserSessionsDTO } from '../dto/get-user-sessions.dto';
+import { GetUserSessionsResponseDTO } from '../dto/get-user-sessions-response.dto';
+import { LogoutAllResponseDTO } from '../dto/logout-all-response.dto';
+import { AdminLogoutAllDTO } from '../dto/admin-logout-all.dto';
+import { AdminRevokeSessionDTO } from '../dto/admin-revoke-session.dto';
+import { LogoutSessionResponseDTO } from '../dto/logout-session-response.dto';
+import { SetMustChangePasswordDTO } from '../dto/set-must-change-password.dto';
+import { SetMustChangePasswordResponseDTO } from '../dto/set-must-change-password-response.dto';
+import { AdminSetPasswordDTO, AdminSetPasswordResponseDTO } from '../dto/admin-set-password.dto';
+import { AdminResetPasswordDTO, AdminResetPasswordResponseDTO, ConfirmAdminResetPasswordDTO, ConfirmAdminResetPasswordResponseDTO } from '../dto/admin-reset-password.dto';
+import { UpdateVerifiedStatusRequestDTO } from '../dto/update-verified-status-request.dto';
+import { NAuthConfig } from '../interfaces/config.interface';
+import { NAuthLogger } from '../utils/nauth-logger';
+import { HookRegistryService } from './hook-registry.service';
+import { PasswordResetService } from './password-reset.service';
+import { SocialAuthService } from './social-auth.service';
+import { AdminUpdateUserAttributesDTO } from '../dto/admin-update-user-attributes.dto';
+/**
+ * Administrative authentication service
+ *
+ * Provides admin-only operations for managing users, sessions, and password workflows.
+ * This service is intentionally separate from AuthService to keep user self-service
+ * APIs isolated from admin actions.
+ *
+ * @example
+ * ```typescript
+ * const result = await adminAuthService.disableUser({ sub: 'user-uuid' });
+ * ```
+ */
+export declare class AdminAuthService {
+    private readonly userRepository;
+    private readonly loginAttemptRepository;
+    private readonly passwordService;
+    private readonly sessionService;
+    private readonly challengeService;
+    private readonly challengeHelper;
+    private readonly emailVerificationService;
+    private readonly clientInfoService;
+    private readonly accountLockoutStorage;
+    private readonly config;
+    private readonly logger;
+    private readonly hookRegistry;
+    private readonly auditService?;
+    private readonly phoneVerificationService?;
+    private readonly mfaDeviceRepository?;
+    private readonly trustedDeviceService?;
+    private readonly passwordResetService?;
+    private readonly socialAuthService?;
+    private readonly sessionRepository?;
+    private readonly verificationTokenRepository?;
+    private readonly socialAccountRepository?;
+    private readonly challengeSessionRepository?;
+    private readonly authAuditRepository?;
+    private readonly trustedDeviceRepository?;
+    private readonly helpers;
+    private readonly userService;
+    constructor(userRepository: Repository<BaseUser>, loginAttemptRepository: Repository<BaseLoginAttempt>, passwordService: PasswordService, sessionService: SessionService, challengeService: ChallengeService, challengeHelper: AuthChallengeHelperService, emailVerificationService: EmailVerificationService, clientInfoService: ClientInfoService, accountLockoutStorage: AccountLockoutStorageService, config: NAuthConfig, logger: NAuthLogger, hookRegistry: HookRegistryService, auditService?: AuthAuditService | undefined, phoneVerificationService?: PhoneVerificationService | undefined, mfaDeviceRepository?: Repository<BaseMFADevice> | undefined, trustedDeviceService?: TrustedDeviceService | undefined, passwordResetService?: PasswordResetService | undefined, socialAuthService?: SocialAuthService | undefined, sessionRepository?: Repository<BaseSession> | undefined, verificationTokenRepository?: Repository<BaseVerificationToken> | undefined, socialAccountRepository?: Repository<BaseSocialAccount> | undefined, challengeSessionRepository?: Repository<BaseChallengeSession> | undefined, authAuditRepository?: Repository<BaseAuthAudit> | undefined, trustedDeviceRepository?: Repository<BaseTrustedDevice> | undefined);
+    /**
+     * Administrative user deletion with complete cascade cleanup
+     *
+     * @param dto - User sub to delete
+     * @returns Deletion confirmation with cascade counts
+     * @throws {NAuthException} USER_NOT_FOUND
+     *
+     * @example
+     * ```typescript
+     * const result = await adminAuthService.deleteUser({ sub: 'user-uuid-123' });
+     * ```
+     */
+    deleteUser(dto: DeleteUserDTO): Promise<DeleteUserResponseDTO>;
+    /**
+     * Get paginated list of users with advanced filtering
+     *
+     * @param dto - Filters, pagination, sorting
+     * @returns Paginated user list with metadata
+     * @throws {NAuthException} When validation fails
+     *
+     * @example
+     * ```typescript
+     * const result = await adminAuthService.getUsers({ page: 1, limit: 20 });
+     * ```
+     */
+    getUsers(dto: GetUsersDTO): Promise<GetUsersResponseDTO>;
+    /**
+     * Administrative permanent account locking
+     *
+     * @param dto - User sub and optional reason
+     * @returns User object with updated lock status and revoked session count
+     * @throws {NAuthException} USER_NOT_FOUND
+     *
+     * @example
+     * ```typescript
+     * const result = await adminAuthService.disableUser({ sub: 'user-uuid-123' });
+     * ```
+     */
+    disableUser(dto: DisableUserDTO): Promise<DisableUserResponseDTO>;
+    /**
+     * Enable (unlock) user account
+     *
+     * @param dto - User sub to enable
+     * @returns User object with updated lock status
+     * @throws {NAuthException} USER_NOT_FOUND
+     *
+     * @example
+     * ```typescript
+     * const result = await adminAuthService.enableUser({ sub: 'user-uuid-123' });
+     * ```
+     */
+    enableUser(dto: EnableUserDTO): Promise<EnableUserResponseDTO>;
+    /**
+     * Get user by ID (sub)
+     *
+     * @param dto - GetUserByIdDTO containing sub
+     * @returns User response DTO or null if not found
+     * @throws {NAuthException} When validation fails
+     *
+     * @example
+     * ```typescript
+     * const user = await adminAuthService.getUserById({ sub: 'user-uuid' });
+     * ```
+     */
+    getUserById(dto: GetUserByIdDTO): Promise<UserResponseDto | null>;
+    /**
+     * Get user by email address.
+     *
+     * @param dto - GetUserByEmailDTO containing email and optional requireEmailVerified
+     * @returns User response DTO or null if not found
+     * @throws {NAuthException} When validation fails
+     *
+     * @example
+     * ```typescript
+     * const user = await adminAuthService.getUserByEmail({ email: 'user@example.com' });
+     * ```
+     */
+    getUserByEmail(dto: GetUserByEmailDTO): Promise<UserResponseDto | null>;
+    /**
+     * Require user to change password at next login.
+     *
+     * @param dto - SetMustChangePasswordDTO containing sub
+     * @returns Success response
+     * @throws {NAuthException} If user is not found or cannot change password
+     *
+     * @example
+     * ```typescript
+     * await adminAuthService.setMustChangePassword({ sub: 'user-uuid-123' });
+     * ```
+     */
+    setMustChangePassword(dto: SetMustChangePasswordDTO): Promise<SetMustChangePasswordResponseDTO>;
+    /**
+     * Update email and/or phone verification status.
+     *
+     * @param dto - Request DTO containing sub and verification status flags
+     * @returns Updated user object
+     * @throws {NAuthException} If user not found or trying to verify non-existent email/phone
+     *
+     * @example
+     * ```typescript
+     * await adminAuthService.updateVerifiedStatus({ sub: 'user-uuid', isEmailVerified: true });
+     * ```
+     */
+    updateVerifiedStatus(dto: UpdateVerifiedStatusRequestDTO): Promise<UserResponseDto>;
+    /**
+     * Administrative user creation with override capabilities
+     *
+     * @param dto - Admin signup DTO with override flags
+     * @returns User object and optionally generated password
+     * @throws {NAuthException} EMAIL_EXISTS | USERNAME_EXISTS | PHONE_EXISTS | WEAK_PASSWORD
+     *
+     * @example
+     * ```typescript
+     * const result = await adminAuthService.signup({ email: 'user@example.com', generatePassword: true });
+     * ```
+     */
+    signup(dto: AdminSignupDTO): Promise<AdminSignupResponseDTO>;
+    /**
+     * Administrative social user import with override capabilities
+     *
+     * @param dto - Admin social signup DTO with social account details
+     * @returns User object and social account confirmation
+     * @throws {NAuthException} EMAIL_EXISTS | USERNAME_EXISTS | PHONE_EXISTS | SOCIAL_ACCOUNT_EXISTS | WEAK_PASSWORD
+     *
+     * @example
+     * ```typescript
+     * const result = await adminAuthService.signupSocial({
+     *   email: 'user@example.com',
+     *   provider: 'google',
+     *   providerId: 'google_12345',
+     * });
+     * ```
+     */
+    signupSocial(dto: AdminSignupSocialDTO): Promise<AdminSignupSocialResponseDTO>;
+    /**
+     * Global signout (admin-initiated)
+     *
+     * @param dto - Target user sub and optional forgetDevices flag
+     * @returns Number of sessions revoked
+     * @throws {NAuthException} NOT_FOUND if user not found
+     *
+     * @example
+     * ```typescript
+     * const result = await adminAuthService.logoutAll({ sub: 'user-uuid', forgetDevices: true });
+     * ```
+     */
+    logoutAll(dto: AdminLogoutAllDTO): Promise<LogoutAllResponseDTO>;
+    /**
+     * Get all active sessions for a user (admin)
+     *
+     * @param dto - Contains target user sub
+     * @returns Array of sessions with device info, auth method, and isCurrent flag
+     * @throws {NAuthException} NOT_FOUND if user not found
+     *
+     * @example
+     * ```typescript
+     * const result = await adminAuthService.getUserSessions({ sub: 'user-uuid' });
+     * ```
+     */
+    getUserSessions(dto: GetUserSessionsDTO): Promise<GetUserSessionsResponseDTO>;
+    /**
+     * Revoke a specific user session by ID (admin)
+     *
+     * @param dto - Contains sessionId and user sub
+     * @returns Success status and whether it was the current session
+     * @throws {NAuthException} NOT_FOUND if user not found
+     * @throws {NAuthException} SESSION_NOT_FOUND if session not found
+     * @throws {NAuthException} FORBIDDEN if session doesn't belong to user
+     *
+     * @example
+     * ```typescript
+     * await adminAuthService.revokeUserSession({ sub: 'user-uuid', sessionId: '123' });
+     * ```
+     */
+    revokeUserSession(dto: AdminRevokeSessionDTO): Promise<LogoutSessionResponseDTO>;
+    /**
+     * Update user profile attributes (admin)
+     *
+     * @param dto - AdminUpdateUserAttributesDTO containing sub and fields to update
+     * @returns Updated user object
+     * @throws {NAuthException} If user not found or unique constraint violated
+     *
+     * @example
+     * ```typescript
+     * const user = await adminAuthService.updateUserAttributes({ sub: 'user-uuid', email: 'new@example.com' });
+     * ```
+     */
+    updateUserAttributes(dto: AdminUpdateUserAttributesDTO): Promise<UserResponseDto>;
+    /**
+     * Admin-only: Initiate a code-based password reset workflow.
+     *
+     * @param dto - Admin reset password request
+     * @returns Response with masked destination, expiry, and sessions revoked count
+     * @throws {NAuthException} NOT_FOUND when user not found
+     *
+     * @example
+     * ```typescript
+     * const result = await adminAuthService.resetPassword({ sub: 'user-uuid', deliveryMethod: 'email' });
+     * ```
+     */
+    resetPassword(dto: AdminResetPasswordDTO): Promise<AdminResetPasswordResponseDTO>;
+    /**
+     * Complete admin-initiated password reset with a verification code.
+     *
+     * @param dto - Confirm admin reset password request
+     * @returns Success response
+     * @throws {NAuthException} NOT_FOUND | PASSWORD_RESET_CODE_INVALID | PASSWORD_RESET_CODE_EXPIRED | PASSWORD_RESET_MAX_ATTEMPTS | WEAK_PASSWORD | PASSWORD_REUSED | INVALID_CREDENTIALS
+     *
+     * @example
+     * ```typescript
+     * await adminAuthService.confirmResetPassword({ sub: 'user-uuid', code: '123456', newPassword: 'NewPass123!' });
+     * ```
+     */
+    confirmResetPassword(dto: ConfirmAdminResetPasswordDTO): Promise<ConfirmAdminResetPasswordResponseDTO>;
+    /**
+     * Admin-only: Reset a user's password by sub.
+     *
+     * @param dto - Admin reset password request
+     * @returns Response with success status and session revocation count
+     * @throws {NAuthException} If user not found, user has no password (social-only), or password validation fails
+     *
+     * @example
+     * ```typescript
+     * const result = await adminAuthService.setPassword({ sub: 'user-uuid', newPassword: 'NewPass123!' });
+     * ```
+     */
+    setPassword(dto: AdminSetPasswordDTO): Promise<AdminSetPasswordResponseDTO>;
+}
+//# sourceMappingURL=admin-auth.service.d.ts.map

package/dist/services/admin-auth.service.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"admin-auth.service.d.ts","sourceRoot":"","sources":["../../src/services/admin-auth.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAErC,OAAO,EACL,QAAQ,EACR,gBAAgB,EAChB,aAAa,EACb,oBAAoB,EACpB,qBAAqB,EACrB,iBAAiB,EACjB,aAAa,EACb,iBAAiB,EACjB,WAAW,EACZ,MAAM,aAAa,CAAC;AACrB,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AACrD,OAAO,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AACnD,OAAO,EAAE,wBAAwB,EAAE,MAAM,8BAA8B,CAAC;AACxE,OAAO,EAAE,wBAAwB,EAAE,MAAM,8BAA8B,CAAC;AACxE,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAC1D,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AACvD,OAAO,EAAE,0BAA0B,EAAE,MAAM,iCAAiC,CAAC;AAC7E,OAAO,EAAE,4BAA4B,EAAE,MAAM,4CAA4C,CAAC;AAC1F,OAAO,EAAE,wBAAwB,IAAI,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AACpF,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAEhE,OAAO,EAAE,cAAc,EAAE,sBAAsB,EAAE,MAAM,yBAAyB,CAAC;AACjF,OAAO,EAAE,oBAAoB,EAAE,4BAA4B,EAAE,MAAM,gCAAgC,CAAC;AACpG,OAAO,EAAE,aAAa,EAAE,qBAAqB,EAAE,MAAM,wBAAwB,CAAC;AAC9E,OAAO,EAAE,WAAW,EAAE,mBAAmB,EAAE,MAAM,sBAAsB,CAAC;AACxE,OAAO,EAAE,cAAc,EAAE,sBAAsB,EAAE,MAAM,yBAAyB,CAAC;AACjF,OAAO,EAAE,aAAa,EAAE,qBAAqB,EAAE,MAAM,wBAAwB,CAAC;AAC9E,OAAO,EAAE,iBAAiB,EAAE,MAAM,8BAA8B,CAAC;AACjE,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAC;AAC3D,OAAO,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAC;AAC3D,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAClE,OAAO,EAAE,0BAA0B,EAAmB,MAAM,uCAAuC,CAAC;AACpG,OAAO,EAAE,oBAAoB,EAAE,MAAM,gCAAgC,CAAC;AACtE,OAAO,EAAE,iBAAiB,EAAE,MAAM,6BAA6B,CAAC;AAChE,OAAO,EAAE,qBAAqB,EAAE,MAAM,iCAAiC,CAAC;AACxE,OAAO,EAAE,wBAAwB,EAAE,MAAM,oCAAoC,CAAC;AAC9E,OAAO,EAAE,wBAAwB,EAAE,MAAM,qCAAqC,CAAC;AAC/E,OAAO,EAAE,gCAAgC,EAAE,MAAM,8CAA8C,CAAC;AAChG,OAAO,EAAE,mBAAmB,EAAE,2BAA2B,EAAE,MAAM,+BAA+B,CAAC;AACjG,OAAO,EACL,qBAAqB,EACrB,6BAA6B,EAC7B,4BAA4B,EAC5B,oCAAoC,EACrC,MAAM,iCAAiC,CAAC;AACzC,OAAO,EAAE,8BAA8B,EAAE,MAAM,2CAA2C,CAAC;AAC3F,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAC7D,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAKpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,yBAAyB,CAAC;AAC9D,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAChE,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAG1D,OAAO,EAAE,4BAA4B,EAAE,MAAM,yCAAyC,CAAC;AAEvF;;;;;;;;;;;GAWG;AACH,qBAAa,gBAAgB;IAKzB,OAAO,CAAC,QAAQ,CAAC,cAAc;IAC/B,OAAO,CAAC,QAAQ,CAAC,sBAAsB;IACvC,OAAO,CAAC,QAAQ,CAAC,eAAe;IAChC,OAAO,CAAC,QAAQ,CAAC,cAAc;IAC/B,OAAO,CAAC,QAAQ,CAAC,gBAAgB;IACjC,OAAO,CAAC,QAAQ,CAAC,eAAe;IAChC,OAAO,CAAC,QAAQ,CAAC,wBAAwB;IACzC,OAAO,CAAC,QAAQ,CAAC,iBAAiB;IAClC,OAAO,CAAC,QAAQ,CAAC,qBAAqB;IACtC,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,OAAO,CAAC,QAAQ,CAAC,YAAY;IAC7B,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC;IAC9B,OAAO,CAAC,QAAQ,CAAC,wBAAwB,CAAC;IAC1C,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAC;IACrC,OAAO,CAAC,QAAQ,CAAC,oBAAoB,CAAC;IACtC,OAAO,CAAC,QAAQ,CAAC,oBAAoB,CAAC;IACtC,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC;IACnC,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC;IACnC,OAAO,CAAC,QAAQ,CAAC,2BAA2B,CAAC;IAC7C,OAAO,CAAC,QAAQ,CAAC,uBAAuB,CAAC;IACzC,OAAO,CAAC,QAAQ,CAAC,0BAA0B,CAAC;IAC5C,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAC;IACrC,OAAO,CAAC,QAAQ,CAAC,uBAAuB,CAAC;IA3B3C,OAAO,CAAC,QAAQ,CAAC,OAAO,CAA6B;IACrD,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAc;gBAGvB,cAAc,EAAE,UAAU,CAAC,QAAQ,CAAC,EACpC,sBAAsB,EAAE,UAAU,CAAC,gBAAgB,CAAC,EACpD,eAAe,EAAE,eAAe,EAChC,cAAc,EAAE,cAAc,EAC9B,gBAAgB,EAAE,gBAAgB,EAClC,eAAe,EAAE,0BAA0B,EAC3C,wBAAwB,EAAE,wBAAwB,EAClD,iBAAiB,EAAE,iBAAiB,EACpC,qBAAqB,EAAE,4BAA4B,EACnD,MAAM,EAAE,WAAW,EACnB,MAAM,EAAE,WAAW,EACnB,YAAY,EAAE,mBAAmB,EACjC,YAAY,CAAC,EAAE,gBAAgB,YAAA,EAC/B,wBAAwB,CAAC,EAAE,wBAAwB,YAAA,EACnD,mBAAmB,CAAC,EAAE,UAAU,CAAC,aAAa,CAAC,YAAA,EAC/C,oBAAoB,CAAC,EAAE,oBAAoB,YAAA,EAC3C,oBAAoB,CAAC,EAAE,oBAAoB,YAAA,EAC3C,iBAAiB,CAAC,EAAE,iBAAiB,YAAA,EACrC,iBAAiB,CAAC,EAAE,UAAU,CAAC,WAAW,CAAC,YAAA,EAC3C,2BAA2B,CAAC,EAAE,UAAU,CAAC,qBAAqB,CAAC,YAAA,EAC/D,uBAAuB,CAAC,EAAE,UAAU,CAAC,iBAAiB,CAAC,YAAA,EACvD,0BAA0B,CAAC,EAAE,UAAU,CAAC,oBAAoB,CAAC,YAAA,EAC7D,mBAAmB,CAAC,EAAE,UAAU,CAAC,aAAa,CAAC,YAAA,EAC/C,uBAAuB,CAAC,EAAE,UAAU,CAAC,iBAAiB,CAAC,YAAA;IAuC1E;;;;;;;;;;;OAWG;IACG,UAAU,CAAC,GAAG,EAAE,aAAa,GAAG,OAAO,CAAC,qBAAqB,CAAC;IAIpE;;;;;;;;;;;OAWG;IACG,QAAQ,CAAC,GAAG,EAAE,WAAW,GAAG,OAAO,CAAC,mBAAmB,CAAC;IAI9D;;;;;;;;;;;OAWG;IACG,WAAW,CAAC,GAAG,EAAE,cAAc,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAIvE;;;;;;;;;;;OAWG;IACG,UAAU,CAAC,GAAG,EAAE,aAAa,GAAG,OAAO,CAAC,qBAAqB,CAAC;IAIpE;;;;;;;;;;;OAWG;IACG,WAAW,CAAC,GAAG,EAAE,cAAc,GAAG,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC;IAIvE;;;;;;;;;;;OAWG;IACG,cAAc,CAAC,GAAG,EAAE,iBAAiB,GAAG,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC;IAI7E;;;;;;;;;;;OAWG;IACG,qBAAqB,CAAC,GAAG,EAAE,wBAAwB,GAAG,OAAO,CAAC,gCAAgC,CAAC;IAIrG;;;;;;;;;;;OAWG;IACG,oBAAoB,CAAC,GAAG,EAAE,8BAA8B,GAAG,OAAO,CAAC,eAAe,CAAC;IAIzF;;;;;;;;;;;OAWG;IACG,MAAM,CAAC,GAAG,EAAE,cAAc,GAAG,OAAO,CAAC,sBAAsB,CAAC;IA8JlE;;;;;;;;;;;;;;;OAeG;IACG,YAAY,CAAC,GAAG,EAAE,oBAAoB,GAAG,OAAO,CAAC,4BAA4B,CAAC;IAoLpF;;;;;;;;;;;OAWG;IACG,SAAS,CAAC,GAAG,EAAE,iBAAiB,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAsEtE;;;;;;;;;;;OAWG;IACG,eAAe,CAAC,GAAG,EAAE,kBAAkB,GAAG,OAAO,CAAC,0BAA0B,CAAC;IAoDnF;;;;;;;;;;;;;OAaG;IACG,iBAAiB,CAAC,GAAG,EAAE,qBAAqB,GAAG,OAAO,CAAC,wBAAwB,CAAC;IA+DtF;;;;;;;;;;;OAWG;IACG,oBAAoB,CAAC,GAAG,EAAE,4BAA4B,GAAG,OAAO,CAAC,eAAe,CAAC;IAIvF;;;;;;;;;;;OAWG;IACG,aAAa,CAAC,GAAG,EAAE,qBAAqB,GAAG,OAAO,CAAC,6BAA6B,CAAC;IA+DvF;;;;;;;;;;;OAWG;IACG,oBAAoB,CAAC,GAAG,EAAE,4BAA4B,GAAG,OAAO,CAAC,oCAAoC,CAAC;IA+C5G;;;;;;;;;;;OAWG;IACG,WAAW,CAAC,GAAG,EAAE,mBAAmB,GAAG,OAAO,CAAC,2BAA2B,CAAC;CA+ClF"}