npm - @node-c/domain-iam - Versions diffs - 1.0.0-alpha9 → 1.0.0-beta1 - Mend

@node-c/domain-iam 1.0.0-alpha9 → 1.0.0-beta1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (104) hide show

package/dist/services/userManager/iam.userManager.service.js ADDED Viewed

@@ -0,0 +1,332 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __rest = (this && this.__rest) || function (s, e) {
+    var t = {};
+    for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p) && e.indexOf(p) < 0)
+        t[p] = s[p];
+    if (s != null && typeof Object.getOwnPropertySymbols === "function")
+        for (var i = 0, p = Object.getOwnPropertySymbols(s); i < p.length; i++) {
+            if (e.indexOf(p[i]) < 0 && Object.prototype.propertyIsEnumerable.call(s, p[i]))
+                t[p[i]] = s[p[i]];
+        }
+    return t;
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.IAMUserManagerService = void 0;
+const core_1 = require("@node-c/core");
+const lodash_1 = __importDefault(require("lodash"));
+const iam_userManager_definitions_1 = require("./iam.userManager.definitions");
+const authentication_1 = require("../authentication");
+const tokenManager_1 = require("../tokenManager");
+class IAMUserManagerService {
+    constructor(authServices, configProvider, dataUsersAuthCacheService, domainUsersEntityService, logger, moduleName, tokenManager) {
+        this.authServices = authServices;
+        this.configProvider = configProvider;
+        this.dataUsersAuthCacheService = dataUsersAuthCacheService;
+        this.domainUsersEntityService = domainUsersEntityService;
+        this.logger = logger;
+        this.moduleName = moduleName;
+        this.tokenManager = tokenManager;
+    }
+    createAccessToken(options) {
+        return __awaiter(this, void 0, void 0, function* () {
+            var _a;
+            const { configProvider, logger, moduleName } = this;
+            const moduleConfig = configProvider.config.domain[moduleName];
+            const { accessTokenExpiryTimeInMinutes, defaultUserIdentifierField, refreshTokenExpiryTimeInMinutes } = moduleConfig;
+            const { auth: { type: authType }, rememberUser } = options;
+            logger.info(`[Domain.${moduleName}.UserManager]: Login attempt started${options.step ? ` for step ${options.step}` : ''}.`);
+            const authService = this.authServices[authType];
+            if (!authService) {
+                logger.info(`[Domain.${moduleName}.UserManager]: No authService ${authType} found.`);
+                throw new core_1.ApplicationError('Authentication failed.');
+            }
+            const authServiceBehaviorConfig = authService.getUserCreateAccessTokenConfig();
+            let externalAccessToken;
+            let externalRefreshToken;
+            let issueTokens = false;
+            let step;
+            let userFilterField;
+            let userFilterValue;
+            if (options.step === core_1.AppConfigDomainIAMAuthenticationStep.Complete) {
+                issueTokens = true;
+                step = core_1.AppConfigDomainIAMAuthenticationStep.Complete;
+            }
+            else {
+                step = core_1.AppConfigDomainIAMAuthenticationStep.Initiate;
+            }
+            let stepConfig = authServiceBehaviorConfig[step];
+            let _b = yield this.executeStep(options, {
+                authService,
+                name: step,
+                stepConfig
+            }), { stepResult, user } = _b, otherStepData = __rest(_b, ["stepResult", "user"]);
+            if (step === core_1.AppConfigDomainIAMAuthenticationStep.Initiate && !stepResult.mfaUsed) {
+                issueTokens = true;
+                step = core_1.AppConfigDomainIAMAuthenticationStep.Complete;
+                stepConfig = authServiceBehaviorConfig[step];
+                const finalStepData = yield this.executeStep(options, {
+                    authService,
+                    name: step,
+                    stepConfig: lodash_1.default.omit(stepConfig, 'cache')
+                });
+                stepResult = finalStepData.stepResult;
+                user = user !== null && user !== void 0 ? user : finalStepData.user;
+                userFilterField = finalStepData.userFilterField;
+                userFilterValue = finalStepData.userFilterValue;
+            }
+            const actualStepResult = stepResult;
+            if (!userFilterField && otherStepData.userFilterField) {
+                userFilterField = otherStepData.userFilterField;
+            }
+            if (!userFilterValue && otherStepData.userFilterValue) {
+                userFilterValue = otherStepData.userFilterValue;
+            }
+            if ('useReturnedTokens' in stepConfig && stepConfig.useReturnedTokens && stepConfig.authReturnsTokens) {
+                if (!actualStepResult.accessToken) {
+                    logger.info(`[Domain.${moduleName}.UserManager]: Login attempt failed for ${userFilterField} ${userFilterValue} - no accessToken returned from the authService and useReturnedTokens is set to true.`);
+                    throw new core_1.ApplicationError('Authentication failed.');
+                }
+                externalAccessToken = actualStepResult.accessToken;
+                if (actualStepResult.refreshToken) {
+                    externalRefreshToken = actualStepResult.refreshToken;
+                }
+            }
+            if (issueTokens) {
+                if (!user) {
+                    logger.info(`[Domain.${moduleName}.UserManager]: Login attempt failed at step ${step} - user is required when issueTokens is set to true.`);
+                    throw new core_1.ApplicationError('Authentication failed.');
+                }
+                let refreshToken;
+                const userIdentifierValue = user[defaultUserIdentifierField];
+                if (externalRefreshToken || !externalAccessToken) {
+                    const { result: { token: localRefreshToken } } = yield this.tokenManager.create(Object.assign({ type: tokenManager_1.TokenType.Refresh, [iam_userManager_definitions_1.IAMUserManagerUserTokenUserIdentifier.FieldName]: userIdentifierValue }, (externalRefreshToken
+                        ? {
+                            externalToken: externalRefreshToken,
+                            externalTokenAuthService: authType
+                        }
+                        : {})), {
+                        expiresInMinutes: (externalRefreshToken &&
+                            'refreshTokenExpiresIn' in actualStepResult &&
+                            actualStepResult.refreshTokenExpiresIn) ||
+                            (rememberUser ? undefined : refreshTokenExpiryTimeInMinutes),
+                        identifierDataField: iam_userManager_definitions_1.IAMUserManagerUserTokenUserIdentifier.FieldName,
+                        persist: true,
+                        purgeOldFromData: true,
+                        tokenContentOnlyFields: ['externalToken']
+                    });
+                    refreshToken = localRefreshToken;
+                }
+                const { result: { token: accessToken } } = yield this.tokenManager.create(Object.assign({ refreshToken, type: tokenManager_1.TokenType.Access, user, [iam_userManager_definitions_1.IAMUserManagerUserTokenUserIdentifier.FieldName]: userIdentifierValue }, (externalAccessToken
+                    ? {
+                        externalToken: externalAccessToken,
+                        externalTokenAuthService: authType
+                    }
+                    : {})), {
+                    expiresInMinutes: (externalAccessToken &&
+                        'accessTokenExpiresIn' in actualStepResult &&
+                        actualStepResult.accessTokenExpiresIn) ||
+                        accessTokenExpiryTimeInMinutes,
+                    identifierDataField: iam_userManager_definitions_1.IAMUserManagerUserTokenUserIdentifier.FieldName,
+                    persist: true,
+                    purgeOldFromData: true,
+                    tokenContentOnlyFields: ['externalToken', 'refreshToken', 'user']
+                });
+                logger.info(`[Domain.${moduleName}.UserManager]: Login attempt successful for ${userFilterField} ${userFilterValue}.`);
+                return { accessToken, refreshToken, user };
+            }
+            const returnData = { nextStepsRequired: true };
+            if ((_a = stepConfig.stepResultPublicFields) === null || _a === void 0 ? void 0 : _a.length) {
+                stepConfig.stepResultPublicFields.forEach(fieldName => {
+                    (0, core_1.setNested)(returnData, fieldName, (0, core_1.getNested)(stepResult, fieldName, { removeNestedFieldEscapeSign: true }).unifiedValue);
+                });
+            }
+            return returnData;
+        });
+    }
+    executeStep(data, options) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const { configProvider, domainUsersEntityService, logger, moduleName } = this;
+            const { defaultUserIdentifierField } = configProvider.config.domain[moduleName];
+            const _a = data.auth, { type: _authType } = _a, authData = __rest(_a, ["type"]), { filters: userFilters, mainFilterField } = data;
+            const { authService, stepConfig, name: stepName } = options;
+            const { cache: cacheSettings, findUser, findUserBeforeAuth, validWithoutUser } = stepConfig;
+            const hasFilters = userFilters && Object.keys(userFilters).length;
+            const stepInputData = { data: lodash_1.default.cloneDeep(authData) };
+            let user = null;
+            let userFilterField;
+            let userFilterValue;
+            if (findUser && findUserBeforeAuth) {
+                if (!hasFilters) {
+                    logger.info(`[Domain.${moduleName}.UserManager]: No filters provided for findUserBeforeToken=true.`);
+                    throw new core_1.ApplicationError('Authentication failed.');
+                }
+                userFilterField = mainFilterField;
+                userFilterValue = userFilters[userFilterField];
+                user = yield this.getUserForStepExecution({ filters: userFilters, mainFilterField: userFilterField });
+                if (!user) {
+                    logger.info(`[Domain.${moduleName}.UserManager]: Login attempt failed for ${userFilterField} ${userFilterValue} - user not found.`);
+                    throw new core_1.ApplicationError('Authentication failed.');
+                }
+            }
+            stepInputData.options = {
+                context: user || {},
+                contextIdentifierField: defaultUserIdentifierField
+            };
+            if (cacheSettings && 'use' in cacheSettings && cacheSettings.use) {
+                const cacheInput = {
+                    data: stepInputData.data,
+                    options: stepInputData.options
+                };
+                const cacheResult = yield this.dataUsersAuthCacheService.findOne({
+                    filters: {
+                        [cacheSettings.settings.cacheFieldName]: (0, core_1.getNested)(cacheInput, cacheSettings.settings.inputFieldName)
+                            .unifiedValue
+                    }
+                });
+                if (cacheResult) {
+                    for (const inputName in cacheSettings.use) {
+                        const { overwrite, use } = cacheSettings.use[inputName];
+                        if (!use) {
+                            continue;
+                        }
+                        const valueFromCache = (0, core_1.getNested)(cacheResult, inputName, { removeNestedFieldEscapeSign: true }).unifiedValue || {};
+                        const inputNameKey = inputName;
+                        if (overwrite) {
+                            stepInputData[inputNameKey] = lodash_1.default.merge(stepInputData[inputNameKey], valueFromCache);
+                            continue;
+                        }
+                        stepInputData[inputNameKey] = lodash_1.default.merge(valueFromCache, stepInputData[inputNameKey]);
+                    }
+                }
+            }
+            let stepResult = yield authService[stepName](stepInputData.data, stepInputData.options);
+            if (!stepResult.valid || (stepResult.mfaUsed && !stepResult.mfaValid)) {
+                logger.info(`[Domain.${moduleName}.UserManager]: Bad step result:`, stepResult);
+                throw new core_1.ApplicationError('Authentication failed.');
+            }
+            if ('decodeReturnedTokens' in stepConfig && stepConfig.decodeReturnedTokens) {
+                const tokensForDecoding = {};
+                const tokenKeys = ['accessToken', 'idToken', 'refreshToken'];
+                tokenKeys.forEach(tokenKey => {
+                    const resultForKey = stepResult[tokenKey];
+                    if (!resultForKey) {
+                        return;
+                    }
+                    tokensForDecoding[tokenKey] = resultForKey;
+                });
+                const externalTokenPayloads = yield authService.getPayloadsFromExternalTokens(tokensForDecoding);
+                stepResult = Object.assign(Object.assign({}, stepResult), externalTokenPayloads);
+            }
+            if (findUser && !findUserBeforeAuth) {
+                if ('findUserInAuthResultBy' in stepConfig && stepConfig.findUserInAuthResultBy) {
+                    const { userFieldName, resultFieldName } = stepConfig.findUserInAuthResultBy;
+                    const payloadFilterValue = (0, core_1.getNested)(stepResult, resultFieldName, {
+                        removeNestedFieldEscapeSign: true
+                    }).unifiedValue;
+                    userFilterField = userFieldName;
+                    if (typeof payloadFilterValue !== 'undefined') {
+                        userFilterValue = payloadFilterValue;
+                    }
+                    if (typeof userFilterValue !== 'undefined') {
+                        user = yield this.getUserForStepExecution({
+                            filters: { [userFieldName]: userFilterValue },
+                            mainFilterField: userFieldName
+                        });
+                    }
+                }
+                else if (hasFilters) {
+                    userFilterField = mainFilterField;
+                    userFilterValue = userFilters[userFilterField];
+                    user = yield this.getUserForStepExecution({
+                        filters: userFilters,
+                        mainFilterField: userFilterField
+                    });
+                }
+            }
+            if (!user && 'createUser' in stepConfig && stepConfig.createUser) {
+                const userData = yield authService.getUserDataFromExternalTokenPayloads(stepResult);
+                if (userData) {
+                    const { result: createdUser } = yield domainUsersEntityService.create(userData);
+                    user = yield this.getUserWithPermissionsData({
+                        filters: {
+                            [defaultUserIdentifierField]: createdUser[defaultUserIdentifierField]
+                        }
+                    }, { keepPassword: false });
+                }
+            }
+            if (validWithoutUser !== true && !user) {
+                logger.info(`[Domain.${moduleName}.UserManager]: Login attempt failed ${userFilterField && userFilterValue ? `for ${userFilterField} ${userFilterValue} ` : ''}- user not found.`);
+                throw new core_1.ApplicationError('Authentication failed.');
+            }
+            if (user && 'password' in user) {
+                delete user.password;
+            }
+            if (stepResult.mfaUsed && cacheSettings && 'populate' in cacheSettings && cacheSettings.populate) {
+                const cacheInput = {
+                    data: stepInputData.data,
+                    options: stepInputData.options,
+                    result: stepResult
+                };
+                const cacheData = {};
+                for (const inputName in cacheSettings.populate) {
+                    const inputSettings = cacheSettings.populate[inputName];
+                    if (inputSettings instanceof Array) {
+                        const innerInputItem = {};
+                        inputSettings.forEach(inputItemSettings => {
+                            const { cacheFieldName, inputFieldName } = inputItemSettings;
+                            (0, core_1.setNested)(innerInputItem, cacheFieldName, (0, core_1.getNested)(cacheInput, inputFieldName, { removeNestedFieldEscapeSign: true }).unifiedValue);
+                        });
+                        cacheData[inputName] = innerInputItem;
+                        continue;
+                    }
+                    cacheData[inputName] = cacheInput[inputName];
+                }
+                yield this.dataUsersAuthCacheService.create(Object.assign(Object.assign({}, cacheData), { [cacheSettings.settings.cacheFieldName]: (0, core_1.getNested)(cacheInput, cacheSettings.settings.inputFieldName)
+                        .unifiedValue }));
+            }
+            return { stepResult, user, userFilterField, userFilterValue };
+        });
+    }
+    getUserForStepExecution(options) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const { configProvider, moduleName } = this;
+            const { defaultUserIdentifierField } = configProvider.config.domain[moduleName];
+            const { mainFilterField } = options;
+            let filters = options.filters;
+            let user = null;
+            if (mainFilterField !== defaultUserIdentifierField) {
+                const mainFilterFieldResult = yield this.domainUsersEntityService.findOne({ filters });
+                if (!mainFilterFieldResult.result) {
+                    return null;
+                }
+                filters = {
+                    [defaultUserIdentifierField]: mainFilterFieldResult.result[defaultUserIdentifierField]
+                };
+            }
+            else {
+                filters = options.filters;
+            }
+            user = yield this.getUserWithPermissionsData({ filters }, { keepPassword: true });
+            return user;
+        });
+    }
+    getUserWithPermissionsData(_options, _privateOptions) {
+        return __awaiter(this, void 0, void 0, function* () {
+            throw new core_1.ApplicationError(`Method ${this.moduleName}.IAMUserManagerService.getUserWithPermissionsData not implemented.`);
+        });
+    }
+}
+exports.IAMUserManagerService = IAMUserManagerService;
+//# sourceMappingURL=iam.userManager.service.js.map

package/dist/services/userManager/iam.userManager.service.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"iam.userManager.service.js","sourceRoot":"","sources":["../../../src/services/userManager/iam.userManager.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,uCAcsB;AAEtB,oDAAwB;AAExB,+EAUuC;AAEvC,sDAM2B;AAM3B,kDAAoE;AAMpE,MAAa,qBAAqB;IAKhC,YAEY,YAG6D,EAE7D,cAAqC,EAErC,yBAA2D,EAE3D,wBAKT,EAES,MAAqB,EAErB,UAAkB,EAElB,YAAwE;QApBxE,iBAAY,GAAZ,YAAY,CAGiD;QAE7D,mBAAc,GAAd,cAAc,CAAuB;QAErC,8BAAyB,GAAzB,yBAAyB,CAAkC;QAE3D,6BAAwB,GAAxB,wBAAwB,CAKjC;QAES,WAAM,GAAN,MAAM,CAAe;QAErB,eAAU,GAAV,UAAU,CAAQ;QAElB,iBAAY,GAAZ,YAAY,CAA4D;IACjF,CAAC;IAIE,iBAAiB,CACrB,OAAyD;;;YAEzD,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,UAAU,EAAE,GAAG,IAAI,CAAC;YACpD,MAAM,YAAY,GAAG,cAAc,CAAC,MAAM,CAAC,MAAM,CAAC,UAAU,CAAuB,CAAC;YACpF,MAAM,EAAE,8BAA8B,EAAE,0BAA0B,EAAE,+BAA+B,EAAE,GACnG,YAAY,CAAC;YACf,MAAM,EACJ,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,EACxB,YAAY,EACb,GAAG,OAAO,CAAC;YACZ,MAAM,CAAC,IAAI,CACT,WAAW,UAAU,uCAAuC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,aAAa,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,GAAG,CAC/G,CAAC;YAEF,MAAM,WAAW,GAAG,IAAI,CAAC,YAAY,CAAC,QAAQ,CAA6C,CAAC;YAC5F,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjB,MAAM,CAAC,IAAI,CAAC,WAAW,UAAU,iCAAiC,QAAQ,SAAS,CAAC,CAAC;gBACrF,MAAM,IAAI,uBAAgB,CAAC,wBAAwB,CAAC,CAAC;YACvD,CAAC;YAED,MAAM,yBAAyB,GAAG,WAAW,CAAC,8BAA8B,EAAE,CAAC;YAC/E,IAAI,mBAAuC,CAAC;YAC5C,IAAI,oBAAwC,CAAC;YAC7C,IAAI,WAAW,GAAG,KAAK,CAAC;YACxB,IAAI,IAA0C,CAAC;YAC/C,IAAI,eAAmC,CAAC;YACxC,IAAI,eAAoC,CAAC;YAGzC,IAAI,OAAO,CAAC,IAAI,KAAK,2CAAoC,CAAC,QAAQ,EAAE,CAAC;gBACnE,WAAW,GAAG,IAAI,CAAC;gBACnB,IAAI,GAAG,2CAAoC,CAAC,QAAQ,CAAC;YACvD,CAAC;iBAEI,CAAC;gBACJ,IAAI,GAAG,2CAAoC,CAAC,QAAQ,CAAC;YACvD,CAAC;YACD,IAAI,UAAU,GAAG,yBAAyB,CAAC,IAAI,CAAC,CAAC;YAGjD,IAAI,KAAyC,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE;gBAC3E,WAAW;gBACX,IAAI,EAAE,IAAI;gBACV,UAAU;aACX,CAAC,EAJE,EAAE,UAAU,EAAE,IAAI,OAIpB,EAJyB,aAAa,cAApC,sBAAsC,CAIxC,CAAC;YAEH,IAAI,IAAI,KAAK,2CAAoC,CAAC,QAAQ,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,CAAC;gBAClF,WAAW,GAAG,IAAI,CAAC;gBACnB,IAAI,GAAG,2CAAoC,CAAC,QAAQ,CAAC;gBACrD,UAAU,GAAG,yBAAyB,CAAC,IAAI,CAAC,CAAC;gBAC7C,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE;oBACpD,WAAW;oBACX,IAAI,EAAE,IAAI;oBACV,UAAU,EAAE,gBAAE,CAAC,IAAI,CAAC,UAAU,EAAE,OAAO,CAAC;iBACzC,CAAC,CAAC;gBACH,UAAU,GAAG,aAAa,CAAC,UAAU,CAAC;gBACtC,IAAI,GAAG,IAAI,aAAJ,IAAI,cAAJ,IAAI,GAAI,aAAa,CAAC,IAAI,CAAC;gBAClC,eAAe,GAAG,aAAa,CAAC,eAAe,CAAC;gBAChD,eAAe,GAAG,aAAa,CAAC,eAAe,CAAC;YAClD,CAAC;YAED,MAAM,gBAAgB,GAAG,UAEmB,CAAC;YAC7C,IAAI,CAAC,eAAe,IAAI,aAAa,CAAC,eAAe,EAAE,CAAC;gBACtD,eAAe,GAAG,aAAa,CAAC,eAAe,CAAC;YAClD,CAAC;YACD,IAAI,CAAC,eAAe,IAAI,aAAa,CAAC,eAAe,EAAE,CAAC;gBACtD,eAAe,GAAG,aAAa,CAAC,eAAe,CAAC;YAClD,CAAC;YACD,IAAI,mBAAmB,IAAI,UAAU,IAAI,UAAU,CAAC,iBAAiB,IAAI,UAAU,CAAC,iBAAiB,EAAE,CAAC;gBAEtG,IAAI,CAAC,gBAAgB,CAAC,WAAW,EAAE,CAAC;oBAClC,MAAM,CAAC,IAAI,CACT,WAAW,UAAU,2CAA2C,eAAe,IAAI,eAAe,uFAAuF,CAC1L,CAAC;oBACF,MAAM,IAAI,uBAAgB,CAAC,wBAAwB,CAAC,CAAC;gBACvD,CAAC;gBACD,mBAAmB,GAAG,gBAAgB,CAAC,WAAW,CAAC;gBACnD,IAAI,gBAAgB,CAAC,YAAY,EAAE,CAAC;oBAClC,oBAAoB,GAAG,gBAAgB,CAAC,YAAY,CAAC;gBACvD,CAAC;YACH,CAAC;YAED,IAAI,WAAW,EAAE,CAAC;gBAChB,IAAI,CAAC,IAAI,EAAE,CAAC;oBACV,MAAM,CAAC,IAAI,CACT,WAAW,UAAU,+CAA+C,IAAI,sDAAsD,CAC/H,CAAC;oBACF,MAAM,IAAI,uBAAgB,CAAC,wBAAwB,CAAC,CAAC;gBACvD,CAAC;gBACD,IAAI,YAAgC,CAAC;gBAErC,MAAM,mBAAmB,GAAG,IAAI,CAAC,0BAAwC,CAAC,CAAC;gBAC3E,IAAI,oBAAoB,IAAI,CAAC,mBAAmB,EAAE,CAAC;oBACjD,MAAM,EACJ,MAAM,EAAE,EAAE,KAAK,EAAE,iBAAiB,EAAE,EACrC,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,MAAM,iBAE9B,IAAI,EAAE,wBAAS,CAAC,OAAO,EACvB,CAAC,mEAAqC,CAAC,SAAS,CAAC,EAAE,mBAAmB,IACnE,CAAC,oBAAoB;wBACtB,CAAC,CAAC;4BACE,aAAa,EAAE,oBAAoB;4BACnC,wBAAwB,EAAE,QAAiC;yBAC5D;wBACH,CAAC,CAAC,EAAE,CAAC,GAET;wBACE,gBAAgB,EACd,CAAC,oBAAoB;4BACnB,uBAAuB,IAAI,gBAAgB;4BAC3C,gBAAgB,CAAC,qBAAqB,CAAC;4BACzC,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,+BAA+B,CAAC;wBAC9D,mBAAmB,EAAE,mEAAqC,CAAC,SAAS;wBACpE,OAAO,EAAE,IAAI;wBACb,gBAAgB,EAAE,IAAI;wBACtB,sBAAsB,EAAE,CAAC,eAAe,CAAC;qBAC1C,CACF,CAAC;oBACF,YAAY,GAAG,iBAAiB,CAAC;gBACnC,CAAC;gBAED,MAAM,EACJ,MAAM,EAAE,EAAE,KAAK,EAAE,WAAW,EAAE,EAC/B,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,MAAM,iBAE9B,YAAY,EACZ,IAAI,EAAE,wBAAS,CAAC,MAAM,EACtB,IAAI,EACJ,CAAC,mEAAqC,CAAC,SAAS,CAAC,EAAE,mBAAmB,IACnE,CAAC,mBAAmB;oBACrB,CAAC,CAAC;wBACE,aAAa,EAAE,mBAAmB;wBAClC,wBAAwB,EAAE,QAAiC;qBAC5D;oBACH,CAAC,CAAC,EAAE,CAAC,GAET;oBACE,gBAAgB,EACd,CAAC,mBAAmB;wBAClB,sBAAsB,IAAI,gBAAgB;wBAC1C,gBAAgB,CAAC,oBAAoB,CAAC;wBACxC,8BAA8B;oBAChC,mBAAmB,EAAE,mEAAqC,CAAC,SAAS;oBACpE,OAAO,EAAE,IAAI;oBACb,gBAAgB,EAAE,IAAI;oBACtB,sBAAsB,EAAE,CAAC,eAAe,EAAE,cAAc,EAAE,MAAM,CAAC;iBAClE,CACF,CAAC;gBACF,MAAM,CAAC,IAAI,CACT,WAAW,UAAU,+CAA+C,eAAe,IAAI,eAAe,GAAG,CAC1G,CAAC;gBACF,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC;YAC7C,CAAC;YACD,MAAM,UAAU,GAAoD,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAC;YAChG,IAAI,MAAA,UAAU,CAAC,sBAAsB,0CAAE,MAAM,EAAE,CAAC;gBAC9C,UAAU,CAAC,sBAAsB,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE;oBACpD,IAAA,gBAAS,EACP,UAAU,EACV,SAAS,EACT,IAAA,gBAAS,EAAC,UAAU,EAAE,SAAS,EAAE,EAAE,2BAA2B,EAAE,IAAI,EAAE,CAAC,CAAC,YAAY,CACrF,CAAC;gBACJ,CAAC,CAAC,CAAC;YACL,CAAC;YACD,OAAO,UAAU,CAAC;QACpB,CAAC;KAAA;IAEa,WAAW,CACvB,IAA6C,EAC7C,OAA+C;;YAE/C,MAAM,EAAE,cAAc,EAAE,wBAAwB,EAAE,MAAM,EAAE,UAAU,EAAE,GAAG,IAAI,CAAC;YAC9E,MAAM,EAAE,0BAA0B,EAAE,GAAG,cAAc,CAAC,MAAM,CAAC,MAAM,CAAC,UAAU,CAAuB,CAAC;YACtG,MAEE,KAGE,IAAI,KAHgC,EAAtC,EAAQ,IAAI,EAAE,SAAS,OAAe,EAAV,QAAQ,cAA9B,QAAgC,CAAF,EAFhC,EAGJ,OAAO,EAAE,WAAW,EACpB,eAAe,KACb,IAAI,CAAC;YACT,MAAM,EAAE,WAAW,EAAE,UAAU,EAAE,IAAI,EAAE,QAAQ,EAAE,GAAG,OAAO,CAAC;YAC5D,MAAM,EAAE,KAAK,EAAE,aAAa,EAAE,QAAQ,EAAE,kBAAkB,EAAE,gBAAgB,EAAE,GAAG,UAAU,CAAC;YAC5F,MAAM,UAAU,GAAG,WAAW,IAAI,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,MAAM,CAAC;YAClE,MAAM,aAAa,GAAyC,EAAE,IAAI,EAAE,gBAAE,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC7F,IAAI,IAAI,GAAgE,IAAI,CAAC;YAC7E,IAAI,eAAmC,CAAC;YACxC,IAAI,eAAoC,CAAC;YAEzC,IAAI,QAAQ,IAAI,kBAAkB,EAAE,CAAC;gBACnC,IAAI,CAAC,UAAU,EAAE,CAAC;oBAChB,MAAM,CAAC,IAAI,CAAC,WAAW,UAAU,kEAAkE,CAAC,CAAC;oBACrG,MAAM,IAAI,uBAAgB,CAAC,wBAAwB,CAAC,CAAC;gBACvD,CAAC;gBACD,eAAe,GAAG,eAAe,CAAC;gBAClC,eAAe,GAAG,WAAW,CAAC,eAAe,CAAC,CAAC;gBAC/C,IAAI,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,EAAE,OAAO,EAAE,WAAW,EAAE,eAAe,EAAE,eAAe,EAAE,CAAC,CAAC;gBACtG,IAAI,CAAC,IAAI,EAAE,CAAC;oBACV,MAAM,CAAC,IAAI,CACT,WAAW,UAAU,2CAA2C,eAAe,IAAI,eAAe,oBAAoB,CACvH,CAAC;oBACF,MAAM,IAAI,uBAAgB,CAAC,wBAAwB,CAAC,CAAC;gBACvD,CAAC;YACH,CAAC;YACD,aAAa,CAAC,OAAO,GAAG;gBACtB,OAAO,EAAE,IAAI,IAAK,EAA2D;gBAC7E,sBAAsB,EAAE,0BAA0B;aACnD,CAAC;YAEF,IAAI,aAAa,IAAI,KAAK,IAAI,aAAa,IAAI,aAAa,CAAC,GAAG,EAAE,CAAC;gBACjE,MAAM,UAAU,GAAwC;oBACtD,IAAI,EAAE,aAAa,CAAC,IAAI;oBACxB,OAAO,EAAE,aAAa,CAAC,OAAO;iBAC/B,CAAC;gBACF,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,yBAAyB,CAAC,OAAO,CAAC;oBAC/D,OAAO,EAAE;wBACP,CAAC,aAAa,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,IAAA,gBAAS,EAAC,UAAU,EAAE,aAAa,CAAC,QAAQ,CAAC,cAAc,CAAC;6BAClG,YAAY;qBAChB;iBACF,CAAC,CAAC;gBACH,IAAI,WAAW,EAAE,CAAC;oBAChB,KAAK,MAAM,SAAS,IAAI,aAAa,CAAC,GAAG,EAAE,CAAC;wBAC1C,MAAM,EAAE,SAAS,EAAE,GAAG,EAAE,GAAG,aAAa,CAAC,GAAG,CAAC,SAA2C,CAAE,CAAC;wBAC3F,IAAI,CAAC,GAAG,EAAE,CAAC;4BACT,SAAS;wBACX,CAAC;wBACD,MAAM,cAAc,GAClB,IAAA,gBAAS,EAAC,WAAW,EAAE,SAAS,EAAE,EAAE,2BAA2B,EAAE,IAAI,EAAE,CAAC,CAAC,YAAY,IAAI,EAAE,CAAC;wBAC9F,MAAM,YAAY,GAAG,SAAuC,CAAC;wBAC7D,IAAI,SAAS,EAAE,CAAC;4BACd,aAAa,CAAC,YAAY,CAAC,GAAG,gBAAE,CAAC,KAAK,CAAC,aAAa,CAAC,YAAY,CAAC,EAAE,cAAc,CAAC,CAAC;4BACpF,SAAS;wBACX,CAAC;wBACD,aAAa,CAAC,YAAY,CAAC,GAAG,gBAAE,CAAC,KAAK,CAAC,cAAc,EAAE,aAAa,CAAC,YAAY,CAAC,CAAC,CAAC;oBACtF,CAAC;gBACH,CAAC;YACH,CAAC;YAED,IAAI,UAAU,GAAG,MAAM,WAAW,CAAC,QAAmC,CAAC,CACrE,aAAa,CAAC,IAAqC,EACnD,aAAa,CAAC,OAAiD,CAChE,CAAC;YAEF,IAAI,CAAC,UAAU,CAAC,KAAK,IAAI,CAAC,UAAU,CAAC,OAAO,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACtE,MAAM,CAAC,IAAI,CAAC,WAAW,UAAU,iCAAiC,EAAE,UAAU,CAAC,CAAC;gBAChF,MAAM,IAAI,uBAAgB,CAAC,wBAAwB,CAAC,CAAC;YACvD,CAAC;YAED,IAAI,sBAAsB,IAAI,UAAU,IAAI,UAAU,CAAC,oBAAoB,EAAE,CAAC;gBAC5E,MAAM,iBAAiB,GAA2B,EAAE,CAAC;gBACrD,MAAM,SAAS,GAAG,CAAC,aAAa,EAAE,SAAS,EAAE,cAAc,CAAC,CAAC;gBAC7D,SAAS,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE;oBAC3B,MAAM,YAAY,GAAG,UAAU,CAAC,QAAmC,CAAsB,CAAC;oBAC1F,IAAI,CAAC,YAAY,EAAE,CAAC;wBAClB,OAAO;oBACT,CAAC;oBACD,iBAAiB,CAAC,QAAQ,CAAC,GAAG,YAAY,CAAC;gBAC7C,CAAC,CAAC,CAAC;gBACH,MAAM,qBAAqB,GAAG,MAAM,WAAW,CAAC,6BAA6B,CAAC,iBAAiB,CAAC,CAAC;gBACjG,UAAU,mCAAQ,UAAU,GAAK,qBAAqB,CAAE,CAAC;YAC3D,CAAC;YAED,IAAI,QAAQ,IAAI,CAAC,kBAAkB,EAAE,CAAC;gBACpC,IAAI,wBAAwB,IAAI,UAAU,IAAI,UAAU,CAAC,sBAAsB,EAAE,CAAC;oBAChF,MAAM,EAAE,aAAa,EAAE,eAAe,EAAE,GAAG,UAAU,CAAC,sBAAsB,CAAC;oBAC7E,MAAM,kBAAkB,GAAG,IAAA,gBAAS,EAAC,UAAU,EAAE,eAAe,EAAE;wBAChE,2BAA2B,EAAE,IAAI;qBAClC,CAAC,CAAC,YAAY,CAAC;oBAChB,eAAe,GAAG,aAAa,CAAC;oBAChC,IAAI,OAAO,kBAAkB,KAAK,WAAW,EAAE,CAAC;wBAC9C,eAAe,GAAG,kBAAkB,CAAC;oBACvC,CAAC;oBACD,IAAI,OAAO,eAAe,KAAK,WAAW,EAAE,CAAC;wBAC3C,IAAI,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC;4BACxC,OAAO,EAAE,EAAE,CAAC,aAAa,CAAC,EAAE,eAAe,EAAE;4BAC7C,eAAe,EAAE,aAAa;yBAC/B,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC;qBAAM,IAAI,UAAU,EAAE,CAAC;oBACtB,eAAe,GAAG,eAAe,CAAC;oBAClC,eAAe,GAAG,WAAW,CAAC,eAAe,CAAC,CAAC;oBAC/C,IAAI,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC;wBACxC,OAAO,EAAE,WAAW;wBACpB,eAAe,EAAE,eAAe;qBACjC,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,IAAI,CAAC,IAAI,IAAI,YAAY,IAAI,UAAU,IAAI,UAAU,CAAC,UAAU,EAAE,CAAC;gBACjE,MAAM,QAAQ,GAAG,MAAM,WAAW,CAAC,oCAAoC,CACrE,UAAuE,CACxE,CAAC;gBACF,IAAI,QAAQ,EAAE,CAAC;oBACb,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,GAAG,MAAM,wBAAwB,CAAC,MAAM,CAAC,QAAqC,CAAC,CAAC;oBAC7G,IAAI,GAAG,MAAM,IAAI,CAAC,0BAA0B,CAC1C;wBACE,OAAO,EAAE;4BACP,CAAC,0BAA0B,CAAC,EAAE,WAAW,CAAC,0BAAsD,CAAC;yBAClG;qBACF,EACD,EAAE,YAAY,EAAE,KAAK,EAAE,CACxB,CAAC;gBACJ,CAAC;YACH,CAAC;YACD,IAAI,gBAAgB,KAAK,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;gBACvC,MAAM,CAAC,IAAI,CACT,WAAW,UAAU,uCAAuC,eAAe,IAAI,eAAe,CAAC,CAAC,CAAC,OAAO,eAAe,IAAI,eAAe,GAAG,CAAC,CAAC,CAAC,EAAE,mBAAmB,CACtK,CAAC;gBACF,MAAM,IAAI,uBAAgB,CAAC,wBAAwB,CAAC,CAAC;YACvD,CAAC;YACD,IAAI,IAAI,IAAI,UAAU,IAAI,IAAI,EAAE,CAAC;gBAC/B,OAAO,IAAI,CAAC,QAAQ,CAAC;YACvB,CAAC;YAED,IAAI,UAAU,CAAC,OAAO,IAAI,aAAa,IAAI,UAAU,IAAI,aAAa,IAAI,aAAa,CAAC,QAAQ,EAAE,CAAC;gBACjG,MAAM,UAAU,GAAkB;oBAChC,IAAI,EAAE,aAAa,CAAC,IAAI;oBACxB,OAAO,EAAE,aAAa,CAAC,OAAO;oBAC9B,MAAM,EAAE,UAAU;iBACnB,CAAC;gBACF,MAAM,SAAS,GAAkB,EAAE,CAAC;gBACpC,KAAK,MAAM,SAAS,IAAI,aAAa,CAAC,QAAQ,EAAE,CAAC;oBAC/C,MAAM,aAAa,GAAG,aAAa,CAAC,QAAQ,CAAC,SAAgD,CAAC,CAAC;oBAC/F,IAAI,aAAa,YAAY,KAAK,EAAE,CAAC;wBACnC,MAAM,cAAc,GAAkB,EAAE,CAAC;wBACzC,aAAa,CAAC,OAAO,CAAC,iBAAiB,CAAC,EAAE;4BACxC,MAAM,EAAE,cAAc,EAAE,cAAc,EAAE,GAAG,iBAAiB,CAAC;4BAC7D,IAAA,gBAAS,EACP,cAAc,EACd,cAAc,EACd,IAAA,gBAAS,EAAC,UAAU,EAAE,cAAc,EAAE,EAAE,2BAA2B,EAAE,IAAI,EAAE,CAAC,CAAC,YAAY,CAC1F,CAAC;wBACJ,CAAC,CAAC,CAAC;wBACH,SAAS,CAAC,SAAS,CAAC,GAAG,cAAc,CAAC;wBACtC,SAAS;oBACX,CAAC;oBACD,SAAS,CAAC,SAAS,CAAC,GAAG,UAAU,CAAC,SAAS,CAAC,CAAC;gBAC/C,CAAC;gBACD,MAAM,IAAI,CAAC,yBAAyB,CAAC,MAAM,iCACtC,SAAS,KACZ,CAAC,aAAa,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,IAAA,gBAAS,EAAC,UAAU,EAAE,aAAa,CAAC,QAAQ,CAAC,cAAc,CAAC;yBAClG,YAAY,IACf,CAAC;YACL,CAAC;YACD,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,eAAe,EAAE,eAAe,EAAE,CAAC;QAChE,CAAC;KAAA;IAEe,uBAAuB,CAAC,OAGvC;;YACC,MAAM,EAAE,cAAc,EAAE,UAAU,EAAE,GAAG,IAAI,CAAC;YAC5C,MAAM,EAAE,0BAA0B,EAAE,GAAG,cAAc,CAAC,MAAM,CAAC,MAAM,CAAC,UAAU,CAAuB,CAAC;YACtG,MAAM,EAAE,eAAe,EAAE,GAAG,OAAO,CAAC;YACpC,IAAI,OAAO,GAAkB,OAAO,CAAC,OAAO,CAAC;YAC7C,IAAI,IAAI,GAAgE,IAAI,CAAC;YAC7E,IAAI,eAAe,KAAK,0BAA0B,EAAE,CAAC;gBACnD,MAAM,qBAAqB,GAAG,MAAM,IAAI,CAAC,wBAAwB,CAAC,OAAO,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC;gBACvF,IAAI,CAAC,qBAAqB,CAAC,MAAM,EAAE,CAAC;oBAClC,OAAO,IAAI,CAAC;gBACd,CAAC;gBACD,OAAO,GAAG;oBACR,CAAC,0BAA0B,CAAC,EAC1B,qBAAqB,CAAC,MAAM,CAAC,0BAAuE,CAAC;iBACxG,CAAC;YACJ,CAAC;iBAAM,CAAC;gBACN,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;YAC5B,CAAC;YACD,IAAI,GAAG,MAAM,IAAI,CAAC,0BAA0B,CAAC,EAAE,OAAO,EAAE,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC,CAAC;YAClF,OAAO,IAAI,CAAC;QACd,CAAC;KAAA;IAEK,0BAA0B,CAE9B,QAA4B,EAE5B,eAAiE;;YAEjE,MAAM,IAAI,uBAAgB,CACxB,UAAU,IAAI,CAAC,UAAU,oEAAoE,CAC9F,CAAC;QACJ,CAAC;KAAA;CACF;AA9ZD,sDA8ZC"}

package/dist/services/userManager/index.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export * from './iam.userManager.definitions';
2	+ export * from './iam.userManager.service';

package/dist/services/userManager/index.js ADDED Viewed

@@ -0,0 +1,19 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./iam.userManager.definitions"), exports);
+__exportStar(require("./iam.userManager.service"), exports);
+//# sourceMappingURL=index.js.map

package/dist/services/userManager/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/services/userManager/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,gEAA8C;AAC9C,4DAA0C"}

package/package.json CHANGED Viewed

@@ -1,25 +1,27 @@
 {
   "name": "@node-c/domain-iam",
-  "version": "1.0.0-alpha9",
+  "version": "1.0.0-beta1",
   "license": "MIT",
   "main": "dist/index.js",
   "scripts": {
     "build": "tsc -p tsconfig.build.json",
+    "build:clean": "rm -rf dist/* && rm -f *.tsbuildinfo && npm run build",
     "check-types": "tsc -p tsconfig.build.json --noEmit",
     "dev": "tsc -p tsconfig.build.json --watch",
-    "publish-package": "rm -rf dist/* && rm -f *.tsbuildinfo && npm run build && npm publish --access public",
+    "lint": "eslint src",
+    "lint:fix": "eslint src --fix",
+    "publish-package": "npm run build:clean && npm publish --access public",
     "test": "vitest --config src/vitest.config.ts",
     "test:coverage": "vitest --config src/vitest.config.ts --coverage"
   },
   "dependencies": {
-    "@nestjs/common": "^10.4.12",
-    "@node-c/core": "^1.0.0-alpha9",
-    "@ramster/general-tools": "^2.3.0",
-    "immutable": "^5.0.3",
+    "@nestjs/common": "^11.1.16",
+    "@node-c/core": "^1.0.0-beta1",
     "jsonwebtoken": "^9.0.2",
-    "ramda": "^0.30.1"
+    "lodash": "^4.17.21"
   },
   "devDependencies": {
-    "@types/jsonwebtoken": "^9.0.8"
+    "@types/jsonwebtoken": "^9.0.8",
+    "@types/lodash": "^4.17.19"
   }
 }

package/src/common/definitions/common.constants.ts ADDED Viewed

@@ -0,0 +1,16 @@
+export enum Constants {
+  // eslint-disable-next-line no-unused-vars
+  ACCESS_CONTROL_MODULE_NAME = 'ACCESS_CONTROL_MODULE_NAME',
+  // eslint-disable-next-line no-unused-vars
+  DOMAIN_MODULE_NAME = 'DOMAIN_MODULE_NAME',
+  // eslint-disable-next-line no-unused-vars
+  OAUTH2_CODE_VERIFIER_LENGTH = '128',
+  // eslint-disable-next-line no-unused-vars
+  OAUTH2_PKCE_CHALLENGE_HASH_METHOD = 'SHA-256',
+  // eslint-disable-next-line no-unused-vars
+  TOKEN_EXPIRED_ERROR = 'Token expired',
+  // eslint-disable-next-line no-unused-vars
+  TOKEN_MISMATCHED_AUDIENCES_ERROR = 'Mismatched audiences',
+  // eslint-disable-next-line no-unused-vars
+  TOKEN_MISMATCHED_ISSUER_ERROR = 'Mismatched issuer'
+}

package/src/common/definitions/index.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export * from './common.constants';

package/src/index.ts ADDED Viewed

@@ -0,0 +1,3 @@
+export * from './common/definitions';
+export * from './module';
+export * from './services';

package/src/module/iam.definitions.ts ADDED Viewed

@@ -0,0 +1,15 @@
+import { ModuleMetadata } from '@nestjs/common';
+import { GenericObject } from '@node-c/core';
+export interface DomainIAMModuleOptions {
+  exports?: ModuleMetadata['exports'];
+  folderData: GenericObject<unknown>;
+  imports?: {
+    atEnd?: ModuleMetadata['imports'];
+    atStart?: ModuleMetadata['imports'];
+  };
+  moduleClass: unknown;
+  moduleName: string;
+  providers?: ModuleMetadata['providers'];
+}

package/src/module/iam.module.ts ADDED Viewed

@@ -0,0 +1,29 @@
+import { DynamicModule } from '@nestjs/common';
+import { loadDynamicModules } from '@node-c/core';
+import { DomainIAMModuleOptions } from './iam.definitions';
+import { Constants } from '../common/definitions';
+export class DomainIAMModule {
+  static register(options: DomainIAMModuleOptions): DynamicModule {
+    const { folderData, imports: additionalImports, moduleClass } = options;
+    const { atEnd: importsAtEnd, atStart: importsAtStart } = additionalImports || {};
+    const { services } = loadDynamicModules(folderData);
+    return {
+      global: true,
+      module: moduleClass as DynamicModule['module'],
+      imports: [...(importsAtStart || []), ...(importsAtEnd || [])],
+      providers: [
+        {
+          provide: Constants.DOMAIN_MODULE_NAME as string,
+          useValue: options.moduleName
+        },
+        ...(options.providers || []),
+        ...(services || [])
+      ],
+      exports: [...(services || []), ...(options.exports || [])]
+    };
+  }
+}

package/src/module/index.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export * from './iam.definitions';
2	+ export * from './iam.module';

package/src/services/authentication/iam.authentication.definitions.ts ADDED Viewed

@@ -0,0 +1,100 @@
+import { AppConfigCommonDomainIAMAuthServiceConfigStepSettings, GenericObject } from '@node-c/core';
+import { IAMMFAType } from '../mfa';
+export interface IAMAuthenticationCompleteData {
+  mfaData?: unknown;
+  mfaType?: IAMMFAType;
+}
+export interface IAMAuthenticationCompleteOptions<Context> {
+  context: Context;
+  contextIdentifierField?: string;
+  mfaOptions?: unknown;
+}
+export enum IAMAuthenticationType {
+  // eslint-disable-next-line no-unused-vars
+  OAuth2 = 'ouath2',
+  // eslint-disable-next-line no-unused-vars
+  UserLocal = 'userLocal'
+}
+export interface IAMAuthenticationCompleteResult {
+  accessToken?: string;
+  accessTokenExpiresIn?: number;
+  idToken?: string;
+  mfaUsed?: boolean;
+  mfaValid?: boolean;
+  refreshToken?: string;
+  refreshTokenExpiresIn?: number;
+  valid: boolean;
+}
+export type IAMAuthenticationGetUserCreateAccessTokenConfigResult =
+  AppConfigCommonDomainIAMAuthServiceConfigStepSettings;
+export interface IAMAuthenticationGetPayloadsFromExternalTokensData {
+  accessToken?: string;
+  idToken?: string;
+  refreshToken?: string;
+}
+export interface IAMAuthenticationGetPayloadsFromExternalTokensResult {
+  accessTokenPayload?: unknown;
+  idTokenPayload?: unknown;
+  refreshTokenPayload?: unknown;
+}
+export interface IAMAuthenticationGetUserDataFromExternalTokenPayloadsData {
+  accessTokenPayload?: GenericObject;
+  idTokenPayload?: { email: string; name: string } & GenericObject;
+  refreshTokenPayload?: GenericObject;
+}
+export interface IAMAuthenticationGetUserDataFromExternalTokenPayloadsResult {
+  email: string;
+  firstName: string;
+  lastName: string;
+}
+export interface IAMAuthenticationInitiateData {
+  mfaData?: unknown;
+  mfaType?: IAMMFAType;
+}
+export interface IAMAuthenticationInitiateOptions<Context> {
+  context: Context;
+  contextIdentifierField?: string;
+  mfaOptions?: unknown;
+}
+export interface IAMAuthenticationInitiateResult {
+  mfaUsed?: boolean;
+  mfaValid?: boolean;
+  valid: boolean;
+}
+export interface IAMAuthenticationRefreshExternalAccessTokenData {
+  accessToken: string;
+  refreshToken: string;
+}
+export interface IAMAuthenticationRefreshExternalAccessTokenResult {
+  error?: string;
+  newAccessToken?: string;
+  newRefreshToken?: string;
+}
+export interface IAMAuthenticationVerifyExternalAccessTokenData {
+  accessToken: string;
+  refreshToken?: string;
+}
+export interface IAMAuthenticationVerifyExternalAccessTokenResult {
+  accessTokenPayload?: unknown;
+  error?: unknown;
+  newAccessToken?: string;
+  newRefreshToken?: string;
+  refreshTokenPayload?: unknown;
+}