@open-core/identity 1.2.3 → 1.2.5

package/dist/contracts.d.ts

@@ -33,10 +33,11 @@ export declare abstract class IdentityStore {
     /**
      * Persists a new identity account.
      *
-     * @param data - Initial account properties.
+     * @param data - Initial account properties (ID is optional as it's usually handled by the store).
      * @returns A promise resolving to the fully created account object.
      */
-    abstract create(data: Partial<IdentityAccount> & {
+    abstract create(data: Omit<IdentityAccount, "id"> & {
+        id?: string | number;
         passwordHash?: string;
     }): Promise<IdentityAccount>;
     /**
@@ -45,7 +46,7 @@ export declare abstract class IdentityStore {
      * @param id - The internal account ID.
      * @param data - Partial object containing fields to update.
      */
-    abstract update(id: string, data: Partial<IdentityAccount>): Promise<void>;
+    abstract update(id: string | number, data: Partial<Omit<IdentityAccount, "id">>): Promise<void>;
     /**
      * Prohibits or allows an account from connecting.
      *
@@ -54,7 +55,7 @@ export declare abstract class IdentityStore {
      * @param reason - Optional explanation for the ban.
      * @param expiresAt - Optional expiration timestamp.
      */
-    abstract setBan(id: string, banned: boolean, reason?: string, expiresAt?: Date | null): Promise<void>;
+    abstract setBan(id: string | number, banned: boolean, reason?: string, expiresAt?: Date | null): Promise<void>;
 }
 /**
  * Persistence contract for security roles.
@@ -66,12 +67,12 @@ export declare abstract class IdentityStore {
  */
 export declare abstract class RoleStore {
     /**
-     * Retrieves a role definition by its technical name.
+     * Retrieves a role definition by its technical identifier.
      *
-     * @param name - Technical name (e.g., 'admin').
+     * @param id - Technical identifier (e.g., 'admin' or 1).
      * @returns A promise resolving to the role or null if not found.
      */
-    abstract findByName(name: string): Promise<IdentityRole | null>;
+    abstract findById(id: string | number): Promise<IdentityRole | null>;
     /**
      * Resolves the default role for newly connected accounts.
      *
@@ -79,15 +80,25 @@ export declare abstract class RoleStore {
      */
     abstract getDefaultRole(): Promise<IdentityRole>;
     /**
-     * Creates or updates a role definition.
+     * Persists a new security role definition.
      *
-     * @param role - The complete role object.
+     * @param role - Initial role properties. ID can be provided or left to the store.
+     * @returns A promise resolving to the fully created role object.
      */
-    abstract save(role: IdentityRole): Promise<void>;
+    abstract create(role: Omit<IdentityRole, "id"> & {
+        id?: string | number;
+    }): Promise<IdentityRole>;
+    /**
+     * Updates an existing role definition.
+     *
+     * @param id - Technical identifier of the role to update.
+     * @param role - Partial role object containing the fields to modify.
+     */
+    abstract update(id: string | number, role: Partial<Omit<IdentityRole, "id">>): Promise<void>;
     /**
      * Removes a role from the system.
      *
-     * @param name - Technical name of the role to delete.
+     * @param id - Technical identifier of the role to delete.
      */
-    abstract delete(name: string): Promise<void>;
+    abstract delete(id: string | number): Promise<void>;
 }

package/dist/providers/auth/credentials-auth.provider.js

@@ -12,7 +12,6 @@ var __param = (this && this.__param) || function (paramIndex, decorator) {
 };
 import { injectable, inject } from "tsyringe";
 import { Server } from "@open-core/framework";
-import { v4 as uuidv4 } from "uuid";
 import { IDENTITY_OPTIONS } from "../../tokens";
 import { IdentityStore } from "../../contracts";
 import bcrypt from "bcryptjs";
@@ -68,8 +67,9 @@ let CredentialsAuthProvider = class CredentialsAuthProvider extends Server.AuthP
         if (this.isBanned(account)) {
             return { success: false, error: account.banReason ?? "Account is banned" };
         }
-        player.linkAccount(account.linkedId);
-        return { success: true, accountID: account.linkedId };
+        const accountIdStr = String(account.id);
+        player.linkAccount(accountIdStr);
+        return { success: true, accountID: accountIdStr };
     }
     /**
      * Registers a new account with a username and password.
@@ -95,11 +95,13 @@ let CredentialsAuthProvider = class CredentialsAuthProvider extends Server.AuthP
             username,
             passwordHash,
             identifier: primaryIdentifier,
-            linkedId: uuidv4(),
-            roleName: this.options.principal.defaultRole || "user",
+            roleId: this.options.principal.defaultRole || "user",
+            customPermissions: [],
+            isBanned: false,
         });
-        player.linkAccount(account.linkedId);
-        return { success: true, accountID: account.linkedId, isNewAccount: true };
+        const accountIdStr = String(account.id);
+        player.linkAccount(accountIdStr);
+        return { success: true, accountID: accountIdStr, isNewAccount: true };
     }
     /**
      * Validates if the player's current linked account session is still active.
@@ -115,7 +117,7 @@ let CredentialsAuthProvider = class CredentialsAuthProvider extends Server.AuthP
         if (!account || this.isBanned(account)) {
             return { success: false, error: "Session invalid or account banned" };
         }
-        return { success: true, accountID: account.linkedId };
+        return { success: true, accountID: String(account.id) };
     }
     /**
      * Performs logout logic for the player.

package/dist/providers/auth/local-auth.provider.js

@@ -12,7 +12,6 @@ var __param = (this && this.__param) || function (paramIndex, decorator) {
 };
 import { injectable, inject } from "tsyringe";
 import { Server } from "@open-core/framework";
-import { v4 as uuidv4 } from "uuid";
 import { IDENTITY_OPTIONS } from "../../tokens";
 import { IdentityStore } from "../../contracts";
 /**
@@ -85,7 +84,7 @@ let LocalAuthProvider = class LocalAuthProvider extends Server.AuthProviderContr
         if (account.isBanned && (!account.banExpiresAt || account.banExpiresAt > new Date())) {
             return { success: false, error: account.banReason ?? "Account is banned" };
         }
-        return { success: true, accountID: account.linkedId };
+        return { success: true, accountID: String(account.id) };
     }
     /**
      * Clears the authentication state for a player.
@@ -115,8 +114,9 @@ let LocalAuthProvider = class LocalAuthProvider extends Server.AuthProviderContr
             }
             account = await this.store.create({
                 identifier: identifierValue,
-                linkedId: uuidv4(),
-                roleName: "user",
+                roleId: "user",
+                customPermissions: [],
+                isBanned: false,
             });
             isNew = true;
         }
@@ -131,8 +131,9 @@ let LocalAuthProvider = class LocalAuthProvider extends Server.AuthProviderContr
                 };
             }
         }
-        player.linkAccount(account.linkedId);
-        return { success: true, accountID: account.linkedId, isNewAccount: isNew };
+        const accountIdStr = String(account.id);
+        player.linkAccount(accountIdStr);
+        return { success: true, accountID: accountIdStr, isNewAccount: isNew };
     }
     /**
      * Internal implementation for API-based authentication strategy.

package/dist/providers/principal/local-principal.provider.js

@@ -102,29 +102,37 @@ let IdentityPrincipalProvider = class IdentityPrincipalProvider extends Server.P
         if (!account)
             return null;
         let role;
-        if (this.options.principal.mode === "roles") {
-            role = this.options.principal.roles?.[account.roleName];
-        }
-        else if (this.roleStore) {
-            const dbRole = await this.roleStore.findByName(account.roleName);
-            if (dbRole)
-                role = dbRole;
+        const roleId = account.roleId;
+        if (roleId !== undefined && roleId !== null && roleId !== "") {
+            if (this.options.principal.mode === "roles") {
+                role = this.options.principal.roles?.[roleId];
+            }
+            else if (this.roleStore) {
+                const dbRole = await this.roleStore.findById(roleId);
+                if (dbRole)
+                    role = dbRole;
+            }
         }
         if (!role) {
-            const defaultName = this.options.principal.defaultRole || "user";
-            role = this.options.principal.roles?.[defaultName];
+            const defaultRoleId = this.options.principal.defaultRole;
+            if (defaultRoleId !== undefined && defaultRoleId !== null && defaultRoleId !== "") {
+                role = this.options.principal.roles?.[defaultRoleId];
+                if (!role && this.roleStore && this.options.principal.mode === "db") {
+                    role = await this.roleStore.getDefaultRole();
+                }
+            }
         }
         if (!role)
             return null;
         const effectivePermissions = this.mergePermissions(role.permissions, account.customPermissions);
         return {
-            id: account.linkedId,
-            name: role.displayName || role.name,
+            id: linkedId,
+            name: role.displayName || String(role.id),
             rank: role.rank,
             permissions: effectivePermissions,
             meta: {
                 accountId: account.id,
-                roleName: role.name,
+                roleId: role.id,
             },
         };
     }

package/dist/services/account.service.d.ts

@@ -1,5 +1,5 @@
 import { IdentityStore } from "../contracts";
-import type { IdentityAccount, IdentityOptions } from "../types";
+import type { IdentityAccount } from "../types";
 /**
  * High-level service for managing identity accounts and security policies.
  *
@@ -11,8 +11,7 @@ import type { IdentityAccount, IdentityOptions } from "../types";
  */
 export declare class AccountService {
     private readonly store;
-    private readonly options;
-    constructor(store: IdentityStore, options: IdentityOptions);
+    constructor(store: IdentityStore);
     /**
      * Retrieves an account by its unique numeric or internal ID.
      *
@@ -27,13 +26,31 @@ export declare class AccountService {
      * @returns A promise resolving to the account or null if not found.
      */
     findByLinkedId(linkedId: string): Promise<IdentityAccount | null>;
+    /**
+     * Persists a new identity account.
+     *
+     * @param data - Initial account properties. ID can be provided or left to the store.
+     * @returns A promise resolving to the fully created account object.
+     */
+    create(data: Omit<IdentityAccount, "id"> & {
+        id?: string | number;
+        passwordHash?: string;
+    }): Promise<IdentityAccount>;
+    /**
+     * Updates an existing account's metadata or status.
+     *
+     * @param id - The internal account ID.
+     * @param data - Partial object containing fields to update.
+     * @returns A promise that resolves when the update is complete.
+     */
+    update(id: string | number, data: Partial<Omit<IdentityAccount, "id">>): Promise<void>;
     /**
      * Assigns a security role to an account.
      *
-     * @param accountId - The linked ID of the account.
-     * @param roleName - Technical name of the role to assign.
+     * @param accountId - The unique ID of the account.
+     * @param roleId - Technical identifier of the role to assign.
      */
-    assignRole(accountId: string, roleName: string): Promise<void>;
+    assignRole(accountId: string | number, roleId: string | number): Promise<void>;
     /**
      * Grants a custom permission override to an account.
      *

package/dist/services/account.service.js

@@ -7,11 +7,7 @@ var __decorate = (this && this.__decorate) || function (decorators, target, key,
 var __metadata = (this && this.__metadata) || function (k, v) {
     if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
 };
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-import { injectable, inject } from "tsyringe";
-import { IDENTITY_OPTIONS } from "../tokens";
+import { injectable } from "tsyringe";
 import { IdentityStore } from "../contracts";
 /**
  * High-level service for managing identity accounts and security policies.
@@ -23,9 +19,8 @@ import { IdentityStore } from "../contracts";
  * @injectable
  */
 let AccountService = class AccountService {
-    constructor(store, options) {
+    constructor(store) {
         this.store = store;
-        this.options = options;
     }
     /**
      * Retrieves an account by its unique numeric or internal ID.
@@ -45,14 +40,33 @@ let AccountService = class AccountService {
     async findByLinkedId(linkedId) {
         return this.store.findByLinkedId(linkedId);
     }
+    /**
+     * Persists a new identity account.
+     *
+     * @param data - Initial account properties. ID can be provided or left to the store.
+     * @returns A promise resolving to the fully created account object.
+     */
+    async create(data) {
+        return this.store.create(data);
+    }
+    /**
+     * Updates an existing account's metadata or status.
+     *
+     * @param id - The internal account ID.
+     * @param data - Partial object containing fields to update.
+     * @returns A promise that resolves when the update is complete.
+     */
+    async update(id, data) {
+        await this.store.update(id, data);
+    }
     /**
      * Assigns a security role to an account.
      *
-     * @param accountId - The linked ID of the account.
-     * @param roleName - Technical name of the role to assign.
+     * @param accountId - The unique ID of the account.
+     * @param roleId - Technical identifier of the role to assign.
      */
-    async assignRole(accountId, roleName) {
-        await this.store.update(accountId, { roleName });
+    async assignRole(accountId, roleId) {
+        await this.update(accountId, { roleId });
     }
     /**
      * Grants a custom permission override to an account.
@@ -115,7 +129,6 @@ let AccountService = class AccountService {
 };
 AccountService = __decorate([
     injectable(),
-    __param(1, inject(IDENTITY_OPTIONS)),
-    __metadata("design:paramtypes", [IdentityStore, Object])
+    __metadata("design:paramtypes", [IdentityStore])
 ], AccountService);
 export { AccountService };

package/dist/services/role.service.d.ts

@@ -1,5 +1,5 @@
 import { RoleStore } from "../contracts";
-import type { IdentityOptions, IdentityRole } from "../types";
+import type { IdentityRole } from "../types";
 /**
  * High-level service for managing security roles and their associated permissions.
  *
@@ -12,41 +12,36 @@ import type { IdentityOptions, IdentityRole } from "../types";
  */
 export declare class RoleService {
     private readonly store;
-    private readonly options;
-    /**
-     * Initializes a new instance of the RoleService.
-     *
-     * @param store - Persistence layer for role definitions.
-     * @param options - Identity system configuration options.
-     */
-    constructor(store: RoleStore, options: IdentityOptions);
+    constructor(store: RoleStore);
     /**
      * Persists a new security role definition.
      *
-     * @param role - The complete role definition to create.
-     * @returns A promise that resolves when the role is saved.
+     * @param role - The initial role properties (ID is optional).
+     * @returns A promise resolving to the created role.
      */
-    create(role: IdentityRole): Promise<void>;
+    create(role: Omit<IdentityRole, "id"> & {
+        id?: string | number;
+    }): Promise<IdentityRole>;
     /**
      * Updates an existing role's rank or permissions.
      *
-     * @param name - The unique technical name of the role to update.
+     * @param id - The unique technical identifier of the role to update.
      * @param data - Partial object containing the fields to modify.
      * @returns A promise that resolves when the update is complete.
      */
-    update(name: string, data: Partial<Omit<IdentityRole, "name">>): Promise<void>;
+    update(id: string | number, data: Partial<Omit<IdentityRole, "id">>): Promise<void>;
     /**
      * Permanently removes a role definition from the system.
      *
-     * @param name - The technical name of the role to delete.
+     * @param id - The technical identifier of the role to delete.
      * @returns A promise that resolves when the role is deleted.
      */
-    delete(name: string): Promise<void>;
+    delete(id: string | number): Promise<void>;
     /**
      * Retrieves the full list of permissions granted to a specific role.
      *
-     * @param name - The technical name of the role.
+     * @param id - The technical identifier of the role.
      * @returns A promise resolving to an array of permission strings.
      */
-    getPermissions(name: string): Promise<string[]>;
+    getPermissions(id: string | number): Promise<string[]>;
 }

package/dist/services/role.service.js

@@ -7,11 +7,7 @@ var __decorate = (this && this.__decorate) || function (decorators, target, key,
 var __metadata = (this && this.__metadata) || function (k, v) {
     if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
 };
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-import { injectable, inject } from "tsyringe";
-import { IDENTITY_OPTIONS } from "../tokens";
+import { injectable } from "tsyringe";
 import { RoleStore } from "../contracts";
 /**
  * High-level service for managing security roles and their associated permissions.
@@ -24,64 +20,50 @@ import { RoleStore } from "../contracts";
  * @injectable
  */
 let RoleService = class RoleService {
-    /**
-     * Initializes a new instance of the RoleService.
-     *
-     * @param store - Persistence layer for role definitions.
-     * @param options - Identity system configuration options.
-     */
-    constructor(store, options) {
+    constructor(store) {
         this.store = store;
-        this.options = options;
     }
     /**
      * Persists a new security role definition.
      *
-     * @param role - The complete role definition to create.
-     * @returns A promise that resolves when the role is saved.
+     * @param role - The initial role properties (ID is optional).
+     * @returns A promise resolving to the created role.
      */
     async create(role) {
-        await this.store.save(role);
+        return this.store.create(role);
     }
     /**
      * Updates an existing role's rank or permissions.
      *
-     * @param name - The unique technical name of the role to update.
+     * @param id - The unique technical identifier of the role to update.
      * @param data - Partial object containing the fields to modify.
      * @returns A promise that resolves when the update is complete.
      */
-    async update(name, data) {
-        const existing = await this.store.findByName(name);
-        if (!existing)
-            return;
-        await this.store.save({
-            ...existing,
-            ...data,
-        });
+    async update(id, data) {
+        await this.store.update(id, data);
     }
     /**
      * Permanently removes a role definition from the system.
      *
-     * @param name - The technical name of the role to delete.
+     * @param id - The technical identifier of the role to delete.
      * @returns A promise that resolves when the role is deleted.
      */
-    async delete(name) {
-        await this.store.delete(name);
+    async delete(id) {
+        await this.store.delete(id);
     }
     /**
      * Retrieves the full list of permissions granted to a specific role.
      *
-     * @param name - The technical name of the role.
+     * @param id - The technical identifier of the role.
      * @returns A promise resolving to an array of permission strings.
      */
-    async getPermissions(name) {
-        const role = await this.store.findByName(name);
+    async getPermissions(id) {
+        const role = await this.store.findById(id);
         return role?.permissions || [];
     }
 };
 RoleService = __decorate([
     injectable(),
-    __param(1, inject(IDENTITY_OPTIONS)),
-    __metadata("design:paramtypes", [RoleStore, Object])
+    __metadata("design:paramtypes", [RoleStore])
 ], RoleService);
 export { RoleService };

package/dist/types.d.ts

@@ -31,9 +31,9 @@ export type PrincipalMode = "roles" | "db" | "api";
  */
 export interface IdentityRole {
     /**
-     * Technical identifier for the role (e.g., 'admin', 'moderator', 'user').
+     * Technical identifier for the role (e.g., 'admin', 1, 'uuid').
      */
-    name: string;
+    id: string | number;
     /**
      * Hierarchical weight.
      *
@@ -93,12 +93,12 @@ export interface IdentityOptions {
          *
          * Required when mode is 'roles'.
          */
-        roles?: Record<string, IdentityRole>;
+        roles?: Record<string | number, IdentityRole>;
         /**
-         * The name of the role assigned to newly created accounts.
+         * The ID of the role assigned to newly created accounts.
          * @defaultValue 'user'
          */
-        defaultRole?: string;
+        defaultRole?: string | number;
         /**
          * Time-to-live in milliseconds for cached principal data.
          *
@@ -121,21 +121,15 @@ export interface IdentityAccount {
     /**
      * Internal unique database/store ID.
      */
-    id: string;
-    /**
-     * External stable ID used by the framework (linkedID).
-     *
-     * Usually a UUID or an external system ID.
-     */
-    linkedId: string;
+    id: string | number;
     /**
      * Primary connection identifier (e.g., 'license:123...').
      */
     identifier: string;
     /**
-     * Current technical role name assigned to this account.
+     * Current technical role ID assigned to this account.
      */
-    roleName: string;
+    roleId?: string | number;
     /**
      * Optional technical username for credentials-based authentication.
      */

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@open-core/identity",
-  "version": "1.2.3",
+  "version": "1.2.5",
   "description": "Enterprise-grade identity, authentication, and authorization plugin for OpenCore Framework",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -14,6 +14,7 @@
   },
   "scripts": {
     "build": "tsc -p tsconfig.json",
+    "prepack": "npm run build",
     "clean": "rimraf dist",
     "lint": "eslint . --ext .ts",
     "lint:fix": "eslint . --ext .ts --fix",