@passflow/core 0.0.1

package/dist/lib/services/tenant-service.d.ts

@@ -0,0 +1,200 @@
+import { PassflowAuthorizationResponse, PassflowGroupResponse, PassflowInvitationsResponse, PassflowRoleResponse, PassflowStatusResponse, PassflowTenantResponse, PassflowUserTenantMembershipResponse, TenantAPI } from '../api';
+import { Logger } from './logger';
+import { TenantUserMembership } from './tenant-user-membership';
+/**
+ * Service for managing tenants
+ */
+export declare class TenantService {
+    private tenantAPI;
+    private scopes;
+    private logger;
+    constructor(tenantAPI: TenantAPI, scopes: string[], logger?: Logger);
+    /**
+     * Handle Passflow API errors
+     * @param error The error object
+     * @param context Context information for logging
+     * @throws Formatted error with Passflow API error details
+     */
+    private handlePassflowError;
+    /**
+     * Join a tenant invitation
+     * @param token The invitation token
+     * @param scopes Optional scopes to request
+     * @returns Promise with invite response
+     */
+    joinInvitation(token: string, scopes?: string[]): Promise<PassflowAuthorizationResponse>;
+    /**
+     * Create a new tenant
+     * @param name The name of the tenant
+     * @returns Promise with tenant response
+     */
+    createTenant(name: string): Promise<PassflowTenantResponse>;
+    /**
+     * Get tenant details
+     * @param tenantId Tenant ID
+     * @returns Promise with tenant response
+     */
+    /**
+     * Get tenant details
+     * @param tenantId Tenant ID
+     * @returns Promise with tenant response
+     */
+    getTenantDetails(tenantId: string): Promise<PassflowTenantResponse>;
+    /**
+     * Get tenant details and transform into TenantUserMembership
+     * @param tenantId Tenant ID
+     * @returns Promise with TenantUserMembership instance
+     */
+    getTenantUserMembership(tenantId: string): Promise<TenantUserMembership>;
+    /**
+     * Update tenant name
+     * @param tenantId Tenant ID
+     * @param name New tenant name
+     * @returns Promise with status response
+     */
+    updateTenant(tenantId: string, name: string): Promise<PassflowStatusResponse>;
+    /**
+     * Delete a tenant
+     * @param tenantId Tenant ID
+     * @returns Promise with status response
+     */
+    deleteTenant(tenantId: string): Promise<PassflowStatusResponse>;
+    /**
+     * Get user's tenant memberships
+     * @returns Promise with user tenant membership response
+     */
+    getUserTenantMembership(): Promise<PassflowUserTenantMembershipResponse>;
+    /**
+     * Create a group in a tenant
+     * @param tenantId Tenant ID
+     * @param name Group name
+     * @returns Promise with group response
+     */
+    createGroup(tenantId: string, name: string): Promise<PassflowGroupResponse>;
+    /**
+     * Get group information
+     * @param tenantId Tenant ID
+     * @param groupId Group ID
+     * @returns Promise with group response
+     */
+    getGroupInfo(tenantId: string, groupId: string): Promise<PassflowGroupResponse>;
+    /**
+     * Update a group
+     * @param tenantId Tenant ID
+     * @param groupId Group ID
+     * @param name New group name
+     * @returns Promise with group response
+     */
+    updateGroup(tenantId: string, groupId: string, name: string): Promise<PassflowGroupResponse>;
+    /**
+     * Delete a group
+     * @param tenantId Tenant ID
+     * @param groupId Group ID
+     * @returns Promise with status response
+     */
+    deleteGroup(tenantId: string, groupId: string): Promise<PassflowStatusResponse>;
+    /**
+     * Add a user to a group
+     * @param tenantId Tenant ID
+     * @param groupId Group ID
+     * @param userId User ID
+     * @param role Role to assign
+     * @returns Promise with status response
+     */
+    addUserToGroup(tenantId: string, groupId: string, userId: string, role: string): Promise<PassflowStatusResponse>;
+    /**
+     * Remove user roles from a group
+     * @param tenantId Tenant ID
+     * @param groupId Group ID
+     * @param userId User ID
+     * @param roles Roles to remove
+     * @returns Promise with status response
+     */
+    removeUserRolesFromGroup(tenantId: string, groupId: string, userId: string, roles: string[]): Promise<PassflowStatusResponse>;
+    /**
+     * Change user roles in a group
+     * @param tenantId Tenant ID
+     * @param groupId Group ID
+     * @param userId User ID
+     * @param roles New roles to assign
+     * @returns Promise with status response
+     */
+    changeUserRoles(tenantId: string, groupId: string, userId: string, roles: string[]): Promise<PassflowStatusResponse>;
+    /**
+     * Delete a user from a group
+     * @param tenantId Tenant ID
+     * @param groupId Group ID
+     * @param userId User ID
+     * @returns Promise with status response
+     */
+    deleteUserFromGroup(tenantId: string, groupId: string, userId: string): Promise<PassflowStatusResponse>;
+    /**
+     * Get roles for a tenant
+     * @param tenantId Tenant ID
+     * @returns Promise with array of role responses
+     */
+    getRolesForTenant(tenantId: string): Promise<PassflowRoleResponse[]>;
+    /**
+     * Create a role for a tenant
+     * @param tenantId Tenant ID
+     * @param name Role name
+     * @returns Promise with role response
+     */
+    createRoleForTenant(tenantId: string, name: string): Promise<PassflowRoleResponse>;
+    /**
+     * Update a role
+     * @param tenantId Tenant ID
+     * @param roleId Role ID
+     * @param name New role name
+     * @returns Promise with role response
+     */
+    updateRole(tenantId: string, roleId: string, name: string): Promise<PassflowRoleResponse>;
+    /**
+     * Delete a role
+     * @param tenantId Tenant ID
+     * @param roleId Role ID
+     * @returns Promise with status response
+     */
+    deleteRole(tenantId: string, roleId: string): Promise<PassflowStatusResponse>;
+    /**
+     * Delete a user from a tenant
+     * @param tenantId Tenant ID
+     * @param userId User ID
+     * @returns Promise with status response
+     */
+    deleteUserFromTenant(tenantId: string, userId: string): Promise<PassflowStatusResponse>;
+    /**
+     * Get invitations to a group
+     * @param tenantId Tenant ID
+     * @param groupId Group ID
+     * @param limit Maximum number of invitations to return
+     * @param skip Number of invitations to skip
+     * @returns Promise with invitations response
+     */
+    getGroupInvitations(tenantId: string, groupId: string, limit: number, skip: number): Promise<PassflowInvitationsResponse>;
+    /**
+     * Get invitations to a tenant
+     * @param tenantId Tenant ID
+     * @param limit Maximum number of invitations to return
+     * @param skip Number of invitations to skip
+     * @returns Promise with invitations response
+     */
+    getTenantInvitations(tenantId: string, limit: number, skip: number): Promise<PassflowInvitationsResponse>;
+    /**
+     * Invalidate an invitation by ID
+     * @param tenantId Tenant ID
+     * @param groupId Group ID
+     * @param inviteId Invitation ID
+     * @returns Promise with empty record
+     */
+    invalidateInviteById(tenantId: string, groupId: string, inviteId: string): Promise<Record<string, never>>;
+    /**
+     * Invalidate an invitation by email
+     * @param tenantId Tenant ID
+     * @param groupId Group ID
+     * @param email Email address
+     * @returns Promise with empty record
+     */
+    invalidateInviteByEmail(tenantId: string, groupId: string, email: string): Promise<Record<string, never>>;
+}
+//# sourceMappingURL=tenant-service.d.ts.map

package/dist/lib/services/tenant-service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tenant-service.d.ts","sourceRoot":"","sources":["../../../lib/services/tenant-service.ts"],"names":[],"mappings":"AACA,OAAO,EACL,6BAA6B,EAC7B,qBAAqB,EACrB,2BAA2B,EAC3B,oBAAoB,EACpB,sBAAsB,EACtB,sBAAsB,EACtB,oCAAoC,EACpC,SAAS,EACV,MAAM,QAAQ,CAAC;AAChB,OAAO,EAAE,MAAM,EAAoB,MAAM,UAAU,CAAC;AACpD,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAEhE;;GAEG;AACH,qBAAa,aAAa;IAItB,OAAO,CAAC,SAAS;IACjB,OAAO,CAAC,MAAM;IAJhB,OAAO,CAAC,MAAM,CAAS;gBAGb,SAAS,EAAE,SAAS,EACpB,MAAM,EAAE,MAAM,EAAE,EACxB,MAAM,CAAC,EAAE,MAAM;IAKjB;;;;;OAKG;IACH,OAAO,CAAC,mBAAmB;IAqC3B;;;;;OAKG;IACG,cAAc,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,6BAA6B,CAAC;IAS9F;;;;OAIG;IACG,YAAY,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAUjE;;;;OAIG;IACH;;;;OAIG;IACG,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,CAAC;IASzE;;;;OAIG;IACG,uBAAuB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAS9E;;;;;OAKG;IACG,YAAY,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAQnF;;;;OAIG;IACG,YAAY,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAQrE;;;OAGG;IACG,uBAAuB,IAAI,OAAO,CAAC,oCAAoC,CAAC;IAU9E;;;;;OAKG;IACG,WAAW,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,qBAAqB,CAAC;IAQjF;;;;;OAKG;IACG,YAAY,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,qBAAqB,CAAC;IAQrF;;;;;;OAMG;IACG,WAAW,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,qBAAqB,CAAC;IAQlG;;;;;OAKG;IACG,WAAW,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAQrF;;;;;;;OAOG;IACG,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAWtH;;;;;;;OAOG;IACG,wBAAwB,CAC5B,QAAQ,EAAE,MAAM,EAChB,OAAO,EAAE,MAAM,EACf,MAAM,EAAE,MAAM,EACd,KAAK,EAAE,MAAM,EAAE,GACd,OAAO,CAAC,sBAAsB,CAAC;IAWlC;;;;;;;OAOG;IACG,eAAe,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAW1H;;;;;;OAMG;IACG,mBAAmB,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAa7G;;;;OAIG;IACG,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,oBAAoB,EAAE,CAAC;IAQ1E;;;;;OAKG;IACG,mBAAmB,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAQxF;;;;;;OAMG;IACG,UAAU,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAQ/F;;;;;OAKG;IACG,UAAU,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAUnF;;;;;OAKG;IACG,oBAAoB,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAU7F;;;;;;;OAOG;IACG,mBAAmB,CACvB,QAAQ,EAAE,MAAM,EAChB,OAAO,EAAE,MAAM,EACf,KAAK,EAAE,MAAM,EACb,IAAI,EAAE,MAAM,GACX,OAAO,CAAC,2BAA2B,CAAC;IAQvC;;;;;;OAMG;IACG,oBAAoB,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,2BAA2B,CAAC;IAQ/G;;;;;;OAMG;IACG,oBAAoB,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;IAW/G;;;;;;OAMG;IACG,uBAAuB,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;CAUhH"}

package/dist/lib/services/tenant-user-membership.d.ts

@@ -0,0 +1,76 @@
+import type { PassflowTenantResponse } from '../api/model';
+/**
+ * Flat user representation
+ */
+export interface User {
+    id: string;
+    name: string | null;
+    email: string | null;
+    phone: string | null;
+}
+/**
+ * Flat group representation
+ */
+export interface Group {
+    id: string;
+    name: string;
+    default: boolean;
+    updated_at: string;
+    created_at: string;
+}
+/**
+ * Flat role representation
+ */
+export interface Role {
+    id: string;
+    tenant_id: string;
+    name: string;
+}
+/**
+ * Maps a user to a group with specific roles
+ */
+export interface Membership {
+    userId: string;
+    groupId: string;
+    roleIds: string[];
+}
+/**
+ * Full tenant view with lookup maps
+ */
+export interface TenantData {
+    tenant_id: string;
+    tenant_name: string;
+    users: User[];
+    groups: Group[];
+    roles: Role[];
+    memberships: Membership[];
+    usersById: Map<string, User>;
+    groupsById: Map<string, Group>;
+    rolesById: Map<string, Role>;
+}
+/**
+ * Utility for transforming raw PassflowTenantResponse
+ * into a flattened TenantData model with quick lookup methods.
+ */
+export declare class TenantUserMembership {
+    private data;
+    constructor(raw: PassflowTenantResponse);
+    private normalize;
+    /**
+     * Returns all users in the specified group.
+     */
+    getUsersInGroup(groupId: string): User[];
+    /**
+     * Returns all groups to which the specified user belongs.
+     */
+    getGroupsForUser(userId: string): Group[];
+    /**
+     * Returns all roles that the specified user has in the specified group.
+     */
+    getUserRolesInGroup(userId: string, groupId: string): Role[];
+    /**
+     * Returns the full TenantData object.
+     */
+    getData(): TenantData;
+}
+//# sourceMappingURL=tenant-user-membership.d.ts.map

package/dist/lib/services/tenant-user-membership.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tenant-user-membership.d.ts","sourceRoot":"","sources":["../../../lib/services/tenant-user-membership.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAA+B,sBAAsB,EAAuB,MAAM,cAAc,CAAC;AAE7G;;GAEG;AACH,MAAM,WAAW,IAAI;IACnB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;IACpB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,KAAK;IACpB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,OAAO,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,IAAI;IACnB,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;CACd;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,EAAE,IAAI,EAAE,CAAC;IACd,MAAM,EAAE,KAAK,EAAE,CAAC;IAChB,KAAK,EAAE,IAAI,EAAE,CAAC;IACd,WAAW,EAAE,UAAU,EAAE,CAAC;IAC1B,SAAS,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;IAC7B,UAAU,EAAE,GAAG,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;IAC/B,SAAS,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;CAC9B;AAED;;;GAGG;AACH,qBAAa,oBAAoB;IAC/B,OAAO,CAAC,IAAI,CAAa;gBAEb,GAAG,EAAE,sBAAsB;IAIvC,OAAO,CAAC,SAAS;IA2DjB;;OAEG;IACH,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,EAAE;IAOxC;;OAEG;IACH,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,KAAK,EAAE;IAOzC;;OAEG;IACH,mBAAmB,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,IAAI,EAAE;IAQ5D;;OAEG;IACH,OAAO,IAAI,UAAU;CAGtB"}

package/dist/lib/services/token-cache-service.d.ts

@@ -0,0 +1,26 @@
+import { AuthAPI } from '../api';
+import { StorageManager } from '../storage-manager';
+import { PassflowStore } from '../store';
+import type { ParsedTokens, Tokens } from '../types';
+export declare class TokenCacheService {
+    private storageManager;
+    private authApi;
+    private subscribeStore;
+    tokensCache: Tokens | undefined;
+    parsedTokensCache: ParsedTokens | undefined;
+    private checkInterval;
+    private readonly CHECK_INTERVAL;
+    isRefreshing: boolean;
+    isExpired: boolean;
+    constructor(storageManager: StorageManager, authApi: AuthAPI, subscribeStore: PassflowStore);
+    initialize(): void;
+    private refreshTokensCache;
+    startTokenCheck(): void;
+    private stopTokenCheck;
+    setTokensCache(tokens: Tokens | undefined): void;
+    getTokensCache(): Tokens | undefined;
+    getTokensCacheWithRefresh(): Promise<Tokens | undefined>;
+    getParsedTokenCache(): ParsedTokens | undefined;
+    tokensCacheIsExpired(): boolean;
+}
+//# sourceMappingURL=token-cache-service.d.ts.map

package/dist/lib/services/token-cache-service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-cache-service.d.ts","sourceRoot":"","sources":["../../../lib/services/token-cache-service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,QAAQ,CAAC;AACjC,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AACpD,OAAO,EAA+B,aAAa,EAAE,MAAM,UAAU,CAAC;AAEtE,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AAErD,qBAAa,iBAAiB;IAU1B,OAAO,CAAC,cAAc;IACtB,OAAO,CAAC,OAAO;IACf,OAAO,CAAC,cAAc;IAXxB,WAAW,EAAE,MAAM,GAAG,SAAS,CAAC;IAChC,iBAAiB,EAAE,YAAY,GAAG,SAAS,CAAC;IAE5C,OAAO,CAAC,aAAa,CAA+B;IACpD,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAM;IACrC,YAAY,UAAS;IACrB,SAAS,UAAS;gBAGR,cAAc,EAAE,cAAc,EAC9B,OAAO,EAAE,OAAO,EAChB,cAAc,EAAE,aAAa;IAMvC,UAAU;YA4BI,kBAAkB;IA0BhC,eAAe;IAkBf,OAAO,CAAC,cAAc;IAOtB,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,GAAG,IAAI;IAchD,cAAc;IAIR,yBAAyB;IAsB/B,mBAAmB;IAInB,oBAAoB;CAKrB"}

package/dist/lib/services/user-service.d.ts

@@ -0,0 +1,39 @@
+import { PassflowSuccessResponse, UserAPI } from '../api';
+/**
+ * Service for managing user profile and passkeys
+ */
+export declare class UserService {
+    private userAPI;
+    private deviceService;
+    constructor(userAPI: UserAPI, deviceService: DeviceService);
+    /**
+     * Get user's registered passkeys
+     * @returns Promise with passkeys array
+     */
+    getUserPasskeys(): Promise<import("..").PassflowUserPasskey[]>;
+    /**
+     * Rename a user passkey
+     * @param name The new name for the passkey
+     * @param passkeyId The ID of the passkey to rename
+     * @returns Promise with success response
+     */
+    renameUserPasskey(name: string, passkeyId: string): Promise<PassflowSuccessResponse>;
+    /**
+     * Delete a user passkey
+     * @param passkeyId The ID of the passkey to delete
+     * @returns Promise with success response
+     */
+    deleteUserPasskey(passkeyId: string): Promise<PassflowSuccessResponse>;
+    /**
+     * Add a new passkey for the current user
+     * @param options Optional parameters for the passkey
+     * @returns Promise that resolves when the passkey is added
+     */
+    addUserPasskey({ relyingPartyId, passkeyUsername, passkeyDisplayName, }?: {
+        relyingPartyId?: string;
+        passkeyUsername?: string;
+        passkeyDisplayName?: string;
+    }): Promise<void>;
+}
+import { DeviceService } from '../device-service';
+//# sourceMappingURL=user-service.d.ts.map

package/dist/lib/services/user-service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-service.d.ts","sourceRoot":"","sources":["../../../lib/services/user-service.ts"],"names":[],"mappings":"AACA,OAAO,EAAM,uBAAuB,EAAE,OAAO,EAAE,MAAM,QAAQ,CAAC;AAE9D;;GAEG;AACH,qBAAa,WAAW;IAEpB,OAAO,CAAC,OAAO;IACf,OAAO,CAAC,aAAa;gBADb,OAAO,EAAE,OAAO,EAChB,aAAa,EAAE,aAAa;IAGtC;;;OAGG;IACH,eAAe;IAIf;;;;;OAKG;IACH,iBAAiB,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,uBAAuB,CAAC;IAIpF;;;;OAIG;IACH,iBAAiB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,uBAAuB,CAAC;IAItE;;;;OAIG;IACG,cAAc,CAAC,EACnB,cAAc,EACd,eAAe,EACf,kBAAkB,GACnB,GAAE;QACD,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,eAAe,CAAC,EAAE,MAAM,CAAC;QACzB,kBAAkB,CAAC,EAAE,MAAM,CAAC;KACxB,GAAG,OAAO,CAAC,IAAI,CAAC;CAevB;AAGD,OAAO,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC"}

package/dist/lib/storage-manager/index.d.ts

@@ -0,0 +1,37 @@
+import { TokenType } from '../token-service';
+import { Tokens } from '../types';
+export type Storage = {
+    setItem: (key: string, value: string) => void;
+    getItem: (key: string) => string | null;
+    removeItem: (key: string) => void;
+};
+export interface StorageManagerParams {
+    storage?: Storage;
+    prefix?: string;
+}
+export declare class StorageManager {
+    private keyStoragePrefix;
+    readonly scopes: string;
+    readonly deviceId: string;
+    readonly invitationToken: string;
+    readonly previousRedirectUrl: string;
+    private storage;
+    constructor({ storage, prefix }?: StorageManagerParams);
+    saveTokens(tokens: Tokens): void;
+    getToken(tokenType: TokenType): string | undefined;
+    getTokens(): Tokens | undefined;
+    getScopes(): string[] | undefined;
+    deleteToken(tokenType: TokenType): void;
+    deleteTokens(): void;
+    getDeviceId(): string | undefined;
+    setDeviceId(deviceId: string): void;
+    deleteDeviceId(): void;
+    setInvitationToken(token: string): void;
+    getInvitationToken(): string | undefined;
+    deleteInvitationToken(): void;
+    setPreviousRedirectUrl(url: string): void;
+    getPreviousRedirectUrl(): string | undefined;
+    deletePreviousRedirectUrl(): void;
+    private getKeyForTokenType;
+}
+//# sourceMappingURL=index.d.ts.map

package/dist/lib/storage-manager/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../lib/storage-manager/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,kBAAkB,CAAC;AAC7C,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AAElC,MAAM,MAAM,OAAO,GAAG;IACpB,OAAO,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,KAAK,IAAI,CAAC;IAC9C,OAAO,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,MAAM,GAAG,IAAI,CAAC;IACxC,UAAU,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,IAAI,CAAC;CACnC,CAAC;AAEF,MAAM,WAAW,oBAAoB;IACnC,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,qBAAa,cAAc;IACzB,OAAO,CAAC,gBAAgB,CAAM;IAC9B,QAAQ,CAAC,MAAM,SAA2C;IAC1D,QAAQ,CAAC,QAAQ,SAA8C;IAC/D,QAAQ,CAAC,eAAe,SAAqD;IAC7E,QAAQ,CAAC,mBAAmB,SAAyD;IAErF,OAAO,CAAC,OAAO,CAAU;gBAEb,EAAE,OAAO,EAAE,MAAM,EAAE,GAAE,oBAAyB;IAK1D,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAQhC,QAAQ,CAAC,SAAS,EAAE,SAAS,GAAG,MAAM,GAAG,SAAS;IAKlD,SAAS,IAAI,MAAM,GAAG,SAAS;IAW/B,SAAS,IAAI,MAAM,EAAE,GAAG,SAAS;IAIjC,WAAW,CAAC,SAAS,EAAE,SAAS,GAAG,IAAI;IAKvC,YAAY,IAAI,IAAI;IAOpB,WAAW,IAAI,MAAM,GAAG,SAAS;IAIjC,WAAW,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI;IAInC,cAAc,IAAI,IAAI;IAItB,kBAAkB,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI;IAIvC,kBAAkB,IAAI,MAAM,GAAG,SAAS;IAIxC,qBAAqB,IAAI,IAAI;IAI7B,sBAAsB,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;IAIzC,sBAAsB,IAAI,MAAM,GAAG,SAAS;IAI5C,yBAAyB,IAAI,IAAI;IAIjC,OAAO,CAAC,kBAAkB;CAG3B"}

package/dist/lib/store.d.ts

@@ -0,0 +1,89 @@
+import { ParsedTokens, Tokens } from './types';
+/**
+ * Passflow event types
+ */
+export declare enum PassflowEvent {
+    SignIn = "signin",
+    SignInStart = "signin:start",
+    Register = "register",
+    RegisterStart = "register:start",
+    SignOut = "signout",
+    Error = "error",
+    Refresh = "refresh",
+    RefreshStart = "refresh:start",
+    TokenCacheExpired = "token-cache-expired"
+}
+/**
+ * Error payload interface for structured error information
+ */
+export interface ErrorPayload {
+    message: string;
+    code?: string | number;
+    details?: unknown;
+    originalError?: unknown;
+}
+/**
+ * Event-specific payload types
+ */
+export type PassflowEventPayload = {
+    [PassflowEvent.SignIn]: {
+        tokens?: Tokens;
+        parsedTokens?: ParsedTokens;
+    };
+    [PassflowEvent.SignInStart]: {
+        email?: string;
+        provider?: string;
+    };
+    [PassflowEvent.Register]: {
+        tokens?: Tokens;
+        parsedTokens?: ParsedTokens;
+    };
+    [PassflowEvent.RegisterStart]: {
+        email?: string;
+    };
+    [PassflowEvent.SignOut]: {
+        userId?: string;
+    };
+    [PassflowEvent.Error]: ErrorPayload;
+    [PassflowEvent.Refresh]: {
+        tokens?: Tokens;
+        parsedTokens?: ParsedTokens;
+    };
+    [PassflowEvent.RefreshStart]: {
+        tokenId?: string;
+    };
+    [PassflowEvent.TokenCacheExpired]: {
+        isExpired: boolean;
+    };
+};
+/**
+ * Passflow subscriber interface
+ */
+export interface PassflowSubscriber {
+    onAuthChange<E extends PassflowEvent>(eventType: E, payload?: PassflowEventPayload[E]): void;
+}
+/**
+ * Store for managing Passflow event subscriptions
+ */
+export declare class PassflowStore {
+    private subscribers;
+    /**
+     * Subscribe to authentication events
+     * @param subscriber The subscriber to register
+     * @param events Optional specific events to subscribe to
+     */
+    subscribe(subscriber: PassflowSubscriber, events?: PassflowEvent[]): void;
+    /**
+     * Unsubscribe from authentication events
+     * @param subscriber The subscriber to unregister
+     * @param events Optional specific events to unsubscribe from
+     */
+    unsubscribe(subscriber: PassflowSubscriber, events?: PassflowEvent[]): void;
+    /**
+     * Notify subscribers of an event
+     * @param eventType The type of event that occurred
+     * @param payload Event-specific payload data
+     */
+    notify<E extends PassflowEvent>(eventType: E, payload?: PassflowEventPayload[E]): void;
+}
+//# sourceMappingURL=store.d.ts.map

package/dist/lib/store.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"store.d.ts","sourceRoot":"","sources":["../../lib/store.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAE/C;;GAEG;AACH,oBAAY,aAAa;IACvB,MAAM,WAAW;IACjB,WAAW,iBAAiB;IAC5B,QAAQ,aAAa;IACrB,aAAa,mBAAmB;IAChC,OAAO,YAAY;IACnB,KAAK,UAAU;IACf,OAAO,YAAY;IACnB,YAAY,kBAAkB;IAC9B,iBAAiB,wBAAwB;CAC1C;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACvB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,MAAM,oBAAoB,GAAG;IACjC,CAAC,aAAa,CAAC,MAAM,CAAC,EAAE;QAAE,MAAM,CAAC,EAAE,MAAM,CAAC;QAAC,YAAY,CAAC,EAAE,YAAY,CAAA;KAAE,CAAC;IACzE,CAAC,aAAa,CAAC,WAAW,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IACnE,CAAC,aAAa,CAAC,QAAQ,CAAC,EAAE;QAAE,MAAM,CAAC,EAAE,MAAM,CAAC;QAAC,YAAY,CAAC,EAAE,YAAY,CAAA;KAAE,CAAC;IAC3E,CAAC,aAAa,CAAC,aAAa,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAClD,CAAC,aAAa,CAAC,OAAO,CAAC,EAAE;QAAE,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAC7C,CAAC,aAAa,CAAC,KAAK,CAAC,EAAE,YAAY,CAAC;IACpC,CAAC,aAAa,CAAC,OAAO,CAAC,EAAE;QAAE,MAAM,CAAC,EAAE,MAAM,CAAC;QAAC,YAAY,CAAC,EAAE,YAAY,CAAA;KAAE,CAAC;IAC1E,CAAC,aAAa,CAAC,YAAY,CAAC,EAAE;QAAE,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IACnD,CAAC,aAAa,CAAC,iBAAiB,CAAC,EAAE;QAAE,SAAS,EAAE,OAAO,CAAA;KAAE,CAAC;CAC3D,CAAC;AAEF;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,YAAY,CAAC,CAAC,SAAS,aAAa,EAAE,SAAS,EAAE,CAAC,EAAE,OAAO,CAAC,EAAE,oBAAoB,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;CAC9F;AAED;;GAEG;AACH,qBAAa,aAAa;IACxB,OAAO,CAAC,WAAW,CAAiE;IAEpF;;;;OAIG;IACH,SAAS,CAAC,UAAU,EAAE,kBAAkB,EAAE,MAAM,CAAC,EAAE,aAAa,EAAE,GAAG,IAAI;IASzE;;;;OAIG;IACH,WAAW,CAAC,UAAU,EAAE,kBAAkB,EAAE,MAAM,CAAC,EAAE,aAAa,EAAE,GAAG,IAAI;IAiB3E;;;;OAIG;IACH,MAAM,CAAC,CAAC,SAAS,aAAa,EAAE,SAAS,EAAE,CAAC,EAAE,OAAO,CAAC,EAAE,oBAAoB,CAAC,CAAC,CAAC,GAAG,IAAI;CAOvF"}

package/dist/lib/token-service/index.d.ts

@@ -0,0 +1,4 @@
+export * from './service';
+export * from './membership';
+export * from './token';
+//# sourceMappingURL=index.d.ts.map

package/dist/lib/token-service/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../lib/token-service/index.ts"],"names":[],"mappings":"AAAA,cAAc,WAAW,CAAC;AAC1B,cAAc,cAAc,CAAC;AAC7B,cAAc,SAAS,CAAC"}

package/dist/lib/token-service/membership.d.ts

@@ -0,0 +1,37 @@
+export type Tenant = {
+    id: string;
+    name: string;
+};
+export type TenantMembership = {
+    tenant: Tenant;
+    tenantRoles?: GroupMembership;
+    groups?: GroupMembership[];
+};
+export type Group = {
+    id: string;
+    name: string;
+};
+export type GroupMembership = {
+    group: Group;
+    roles: string[];
+};
+export type RawUserMembership = {
+    [key: string]: {
+        tenant_id: string;
+        tenant_name: string;
+        tenant_roles?: string[];
+        root_group_id: string;
+        groups: {
+            [key: string]: string[];
+        };
+        group_names: {
+            [key: string]: string;
+        };
+    };
+};
+export type UserMembership = {
+    raw: RawUserMembership;
+    tenants: TenantMembership[];
+};
+export declare const parseMembership: (raw: RawUserMembership) => UserMembership;
+//# sourceMappingURL=membership.d.ts.map

package/dist/lib/token-service/membership.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"membership.d.ts","sourceRoot":"","sources":["../../../lib/token-service/membership.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,MAAM,GAAG;IACnB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;CACd,CAAC;AAEF,MAAM,MAAM,gBAAgB,GAAG;IAC7B,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,CAAC,EAAE,eAAe,CAAC;IAC9B,MAAM,CAAC,EAAE,eAAe,EAAE,CAAC;CAC5B,CAAC;AAEF,MAAM,MAAM,KAAK,GAAG;IAClB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;CACd,CAAC;AAEF,MAAM,MAAM,eAAe,GAAG;IAC5B,KAAK,EAAE,KAAK,CAAC;IACb,KAAK,EAAE,MAAM,EAAE,CAAC;CACjB,CAAC;AAEF,MAAM,MAAM,iBAAiB,GAAG;IAC9B,CAAC,GAAG,EAAE,MAAM,GAAG;QACb,SAAS,EAAE,MAAM,CAAC;QAClB,WAAW,EAAE,MAAM,CAAC;QACpB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;QACxB,aAAa,EAAE,MAAM,CAAC;QACtB,MAAM,EAAE;YACN,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;SACzB,CAAC;QACF,WAAW,EAAE;YAAE,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAA;SAAE,CAAC;KACxC,CAAC;CACH,CAAC;AAEF,MAAM,MAAM,cAAc,GAAG;IAC3B,GAAG,EAAE,iBAAiB,CAAC;IACvB,OAAO,EAAE,gBAAgB,EAAE,CAAC;CAC7B,CAAC;AAEF,eAAO,MAAM,eAAe,GAAI,KAAK,iBAAiB,KAAG,cAmBxD,CAAC"}

package/dist/lib/token-service/service.d.ts

@@ -0,0 +1,35 @@
+import { StorageManager } from '../storage-manager';
+import { Token, TokenType } from './token';
+export declare class TokenService {
+    protected storageManager: StorageManager;
+    /**
+     * Checks if a token is not exists or expired.
+     *
+     * @param {TokenType} ttype - The token type to check.
+     * @returns {boolean} Returns true if the token is expired or not exists, false otherwise.
+     */
+    isTokenTypeExpired(ttype: TokenType): boolean;
+    /**
+     * Parse token from storage by type.
+     * Please be aware that this method does not check if the token signature and if the token is valid.
+     *
+     * @param {TokenType} tokenType - The token type to check.
+     * @returns {Token | undefined} Returns token with parsed user membership or undefined.
+     */
+    parseTokenType(tokenType: TokenType): Token | undefined;
+}
+/**
+ * Checks if a token is expired.
+ *
+ * @param {Token} token - The token to check.
+ * @returns {boolean} Returns true if the token is expired, false otherwise.
+ */
+export declare function isTokenExpired(token: Token): boolean;
+/**
+ * Parse token from string. Please be aware that this method does not check if the token signature and if the token is valid.
+ *
+ * @param {string} tokenString - The token string representation.
+ * @returns {Token } Returns token with parsed user membership or undefined.
+ */
+export declare function parseToken(tokenString: string): Token;
+//# sourceMappingURL=service.d.ts.map

package/dist/lib/token-service/service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"service.d.ts","sourceRoot":"","sources":["../../../lib/token-service/service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAGpD,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AAE3C,qBAAa,YAAY;IACvB,SAAS,CAAC,cAAc,iBAAwB;IAEhD;;;;;OAKG;IACH,kBAAkB,CAAC,KAAK,EAAE,SAAS,GAAG,OAAO;IAQ7C;;;;;;OAMG;IACH,cAAc,CAAC,SAAS,EAAE,SAAS,GAAG,KAAK,GAAG,SAAS;CAKxD;AAED;;;;;GAKG;AACH,wBAAgB,cAAc,CAAC,KAAK,EAAE,KAAK,GAAG,OAAO,CAGpD;AAED;;;;;GAKG;AACH,wBAAgB,UAAU,CAAC,WAAW,EAAE,MAAM,GAAG,KAAK,CAiBrD"}

package/dist/lib/token-service/token.d.ts

@@ -0,0 +1,34 @@
+import { RawUserMembership, UserMembership } from '../token-service/membership';
+export type Token = {
+    aud: string[];
+    exp: number;
+    iat: number;
+    iss: string;
+    jti: string;
+    sub: string;
+    type: string;
+    email?: string;
+    phonenumber?: string;
+    passflow_tm?: RawUserMembership;
+    payload?: unknown;
+    membership?: UserMembership;
+};
+export type InvitationToken = Token & {
+    email: string;
+    inviter_id: string;
+    inviter_name: string;
+    redirect_url: string;
+    tenant_name: string;
+};
+export declare enum TokenType {
+    id_token = "id_token",
+    access_token = "access",
+    refresh_token = "refresh",
+    invite_token = "invite",
+    reset_token = "reset",
+    web_cookie = "web-cookie",
+    management = "management",
+    signin = "signin",
+    actor = "actor"
+}
+//# sourceMappingURL=token.d.ts.map

package/dist/lib/token-service/token.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token.d.ts","sourceRoot":"","sources":["../../../lib/token-service/token.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,iBAAiB,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAEhF,MAAM,MAAM,KAAK,GAAG;IAClB,GAAG,EAAE,MAAM,EAAE,CAAC;IACd,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,iBAAiB,CAAC;IAChC,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,UAAU,CAAC,EAAE,cAAc,CAAC;CAC7B,CAAC;AAEF,MAAM,MAAM,eAAe,GAAG,KAAK,GAAG;IACpC,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF,oBAAY,SAAS;IACnB,QAAQ,aAAa;IACrB,YAAY,WAAW;IACvB,aAAa,YAAY;IACzB,YAAY,WAAW;IACvB,WAAW,UAAU;IACrB,UAAU,eAAe;IACzB,UAAU,eAAe;IACzB,MAAM,WAAW;IACjB,KAAK,UAAU;CAChB"}

package/dist/lib/types/index.d.ts

@@ -0,0 +1,22 @@
+import { Token } from '../token-service';
+export type Tokens = {
+    access_token: string;
+    id_token?: string;
+    refresh_token?: string;
+    scopes?: string[];
+};
+export type ParsedTokens = {
+    access_token: Token;
+    id_token?: Token;
+    refresh_token?: Token;
+    scopes?: string[];
+};
+export type SessionParams = {
+    createSession?: ({ tokens, parsedTokens }: {
+        tokens?: Tokens;
+        parsedTokens?: ParsedTokens;
+    }) => Promise<void>;
+    expiredSession?: () => Promise<void>;
+    doRefresh?: boolean;
+};
+//# sourceMappingURL=index.d.ts.map

package/dist/lib/types/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../lib/types/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,kBAAkB,CAAC;AAEzC,MAAM,MAAM,MAAM,GAAG;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;CACnB,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG;IACzB,YAAY,EAAE,KAAK,CAAC;IACpB,QAAQ,CAAC,EAAE,KAAK,CAAC;IACjB,aAAa,CAAC,EAAE,KAAK,CAAC;IACtB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;CACnB,CAAC;AAEF,MAAM,MAAM,aAAa,GAAG;IAC1B,aAAa,CAAC,EAAE,CAAC,EAAE,MAAM,EAAE,YAAY,EAAE,EAAE;QAAE,MAAM,CAAC,EAAE,MAAM,CAAC;QAAC,YAAY,CAAC,EAAE,YAAY,CAAA;KAAE,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IAC9G,cAAc,CAAC,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IACrC,SAAS,CAAC,EAAE,OAAO,CAAC;CACrB,CAAC"}