@payez/next-mvp 4.0.0 → 4.0.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/package.json +6 -16
- package/dist/api/auth-handler.d.ts +0 -66
- package/dist/api/auth-handler.js +0 -397
- package/dist/api/index.d.ts +0 -10
- package/dist/api/index.js +0 -19
- package/dist/api-handlers/account/change-password.d.ts +0 -9
- package/dist/api-handlers/account/change-password.js +0 -110
- package/dist/api-handlers/account/masked-info.d.ts +0 -2
- package/dist/api-handlers/account/masked-info.js +0 -41
- package/dist/api-handlers/account/profile.d.ts +0 -3
- package/dist/api-handlers/account/profile.js +0 -63
- package/dist/api-handlers/account/recovery/initiate.d.ts +0 -2
- package/dist/api-handlers/account/recovery/initiate.js +0 -26
- package/dist/api-handlers/account/recovery/send-code.d.ts +0 -2
- package/dist/api-handlers/account/recovery/send-code.js +0 -28
- package/dist/api-handlers/account/recovery/verify-code.d.ts +0 -2
- package/dist/api-handlers/account/recovery/verify-code.js +0 -28
- package/dist/api-handlers/account/reset-password.d.ts +0 -2
- package/dist/api-handlers/account/reset-password.js +0 -26
- package/dist/api-handlers/account/send-code.d.ts +0 -24
- package/dist/api-handlers/account/send-code.js +0 -60
- package/dist/api-handlers/account/update-phone.d.ts +0 -27
- package/dist/api-handlers/account/update-phone.js +0 -64
- package/dist/api-handlers/account/validate-password.d.ts +0 -17
- package/dist/api-handlers/account/validate-password.js +0 -81
- package/dist/api-handlers/account/verify-email.d.ts +0 -26
- package/dist/api-handlers/account/verify-email.js +0 -106
- package/dist/api-handlers/account/verify-sms.d.ts +0 -26
- package/dist/api-handlers/account/verify-sms.js +0 -106
- package/dist/api-handlers/admin/analytics.d.ts +0 -19
- package/dist/api-handlers/admin/analytics.js +0 -378
- package/dist/api-handlers/admin/audit.d.ts +0 -19
- package/dist/api-handlers/admin/audit.js +0 -213
- package/dist/api-handlers/admin/index.d.ts +0 -21
- package/dist/api-handlers/admin/index.js +0 -42
- package/dist/api-handlers/admin/redis-sessions.d.ts +0 -35
- package/dist/api-handlers/admin/redis-sessions.js +0 -203
- package/dist/api-handlers/admin/sessions.d.ts +0 -20
- package/dist/api-handlers/admin/sessions.js +0 -283
- package/dist/api-handlers/admin/site-logs.d.ts +0 -45
- package/dist/api-handlers/admin/site-logs.js +0 -317
- package/dist/api-handlers/admin/stats.d.ts +0 -20
- package/dist/api-handlers/admin/stats.js +0 -239
- package/dist/api-handlers/admin/users.d.ts +0 -19
- package/dist/api-handlers/admin/users.js +0 -221
- package/dist/api-handlers/admin/vibe-data.d.ts +0 -79
- package/dist/api-handlers/admin/vibe-data.js +0 -267
- package/dist/api-handlers/anon/preferences.d.ts +0 -37
- package/dist/api-handlers/anon/preferences.js +0 -96
- package/dist/api-handlers/auth/jwks.d.ts +0 -2
- package/dist/api-handlers/auth/jwks.js +0 -24
- package/dist/api-handlers/auth/login.d.ts +0 -42
- package/dist/api-handlers/auth/login.js +0 -178
- package/dist/api-handlers/auth/refresh.d.ts +0 -74
- package/dist/api-handlers/auth/refresh.js +0 -633
- package/dist/api-handlers/auth/signout.d.ts +0 -37
- package/dist/api-handlers/auth/signout.js +0 -186
- package/dist/api-handlers/auth/status.d.ts +0 -8
- package/dist/api-handlers/auth/status.js +0 -23
- package/dist/api-handlers/auth/update-session.d.ts +0 -37
- package/dist/api-handlers/auth/update-session.js +0 -93
- package/dist/api-handlers/auth/validate.d.ts +0 -6
- package/dist/api-handlers/auth/validate.js +0 -43
- package/dist/api-handlers/auth/verify-code.d.ts +0 -43
- package/dist/api-handlers/auth/verify-code.js +0 -90
- package/dist/api-handlers/session/refresh-viability.d.ts +0 -14
- package/dist/api-handlers/session/refresh-viability.js +0 -39
- package/dist/api-handlers/session/viability.d.ts +0 -13
- package/dist/api-handlers/session/viability.js +0 -114
- package/dist/api-handlers/test/force-expire.d.ts +0 -23
- package/dist/api-handlers/test/force-expire.js +0 -59
- package/dist/auth/auth-decision.d.ts +0 -39
- package/dist/auth/auth-decision.js +0 -182
- package/dist/auth/auth-options.d.ts +0 -57
- package/dist/auth/auth-options.js +0 -213
- package/dist/auth/better-auth.d.ts +0 -79
- package/dist/auth/better-auth.js +0 -119
- package/dist/auth/callbacks/index.d.ts +0 -6
- package/dist/auth/callbacks/index.js +0 -12
- package/dist/auth/callbacks/jwt.d.ts +0 -45
- package/dist/auth/callbacks/jwt.js +0 -305
- package/dist/auth/callbacks/session.d.ts +0 -60
- package/dist/auth/callbacks/session.js +0 -170
- package/dist/auth/callbacks/signin.d.ts +0 -23
- package/dist/auth/callbacks/signin.js +0 -44
- package/dist/auth/events/index.d.ts +0 -4
- package/dist/auth/events/index.js +0 -8
- package/dist/auth/events/signout.d.ts +0 -17
- package/dist/auth/events/signout.js +0 -32
- package/dist/auth/providers/credentials.d.ts +0 -32
- package/dist/auth/providers/credentials.js +0 -223
- package/dist/auth/providers/index.d.ts +0 -5
- package/dist/auth/providers/index.js +0 -21
- package/dist/auth/providers/oauth.d.ts +0 -26
- package/dist/auth/providers/oauth.js +0 -105
- package/dist/auth/route-config.d.ts +0 -66
- package/dist/auth/route-config.js +0 -190
- package/dist/auth/types/auth-types.d.ts +0 -417
- package/dist/auth/types/auth-types.js +0 -53
- package/dist/auth/types/index.d.ts +0 -6
- package/dist/auth/types/index.js +0 -22
- package/dist/auth/unauthenticated-routes.d.ts +0 -1
- package/dist/auth/unauthenticated-routes.js +0 -19
- package/dist/auth/utils/idp-client.d.ts +0 -94
- package/dist/auth/utils/idp-client.js +0 -384
- package/dist/auth/utils/index.d.ts +0 -5
- package/dist/auth/utils/index.js +0 -21
- package/dist/auth/utils/token-utils.d.ts +0 -83
- package/dist/auth/utils/token-utils.js +0 -218
- package/dist/client/AuthContext.d.ts +0 -19
- package/dist/client/AuthContext.js +0 -115
- package/dist/client/better-auth-client.d.ts +0 -1020
- package/dist/client/better-auth-client.js +0 -68
- package/dist/client/fetch-with-auth.d.ts +0 -11
- package/dist/client/fetch-with-auth.js +0 -44
- package/dist/client/fetchWithSession.d.ts +0 -3
- package/dist/client/fetchWithSession.js +0 -24
- package/dist/client/index.d.ts +0 -9
- package/dist/client/index.js +0 -20
- package/dist/client/useAnonSession.d.ts +0 -36
- package/dist/client/useAnonSession.js +0 -99
- package/dist/components/SessionSync.d.ts +0 -13
- package/dist/components/SessionSync.js +0 -121
- package/dist/components/SignalRHealthCheck.d.ts +0 -10
- package/dist/components/SignalRHealthCheck.js +0 -97
- package/dist/components/account/MobileNavDrawer.d.ts +0 -32
- package/dist/components/account/MobileNavDrawer.js +0 -81
- package/dist/components/account/UserAvatarMenu.d.ts +0 -20
- package/dist/components/account/UserAvatarMenu.js +0 -91
- package/dist/components/account/index.d.ts +0 -9
- package/dist/components/account/index.js +0 -13
- package/dist/components/admin/AlertSettingsTab.d.ts +0 -48
- package/dist/components/admin/AlertSettingsTab.js +0 -351
- package/dist/components/admin/AnalyticsTab.d.ts +0 -22
- package/dist/components/admin/AnalyticsTab.js +0 -167
- package/dist/components/admin/DataBrowserTab.d.ts +0 -19
- package/dist/components/admin/DataBrowserTab.js +0 -252
- package/dist/components/admin/LoggingSettingsTab.d.ts +0 -73
- package/dist/components/admin/LoggingSettingsTab.js +0 -339
- package/dist/components/admin/SessionsTab.d.ts +0 -37
- package/dist/components/admin/SessionsTab.js +0 -165
- package/dist/components/admin/StatsTab.d.ts +0 -53
- package/dist/components/admin/StatsTab.js +0 -161
- package/dist/components/admin/VibeAdminContext.d.ts +0 -32
- package/dist/components/admin/VibeAdminContext.js +0 -38
- package/dist/components/admin/VibeAdminLayout.d.ts +0 -11
- package/dist/components/admin/VibeAdminLayout.js +0 -71
- package/dist/components/admin/index.d.ts +0 -29
- package/dist/components/admin/index.js +0 -44
- package/dist/components/auth/FederatedAuthSection.d.ts +0 -8
- package/dist/components/auth/FederatedAuthSection.js +0 -45
- package/dist/components/auth/ModeAwareLoginPage.d.ts +0 -10
- package/dist/components/auth/ModeAwareLoginPage.js +0 -42
- package/dist/components/auth/ModeAwareSignupPage.d.ts +0 -9
- package/dist/components/auth/ModeAwareSignupPage.js +0 -78
- package/dist/components/auth/TraditionalAuthSection.d.ts +0 -14
- package/dist/components/auth/TraditionalAuthSection.js +0 -20
- package/dist/components/recovery/CompleteStep.d.ts +0 -5
- package/dist/components/recovery/CompleteStep.js +0 -8
- package/dist/components/recovery/InitiateRecoveryStep.d.ts +0 -8
- package/dist/components/recovery/InitiateRecoveryStep.js +0 -20
- package/dist/components/recovery/SelectMethodStep.d.ts +0 -8
- package/dist/components/recovery/SelectMethodStep.js +0 -8
- package/dist/components/recovery/SetPasswordStep.d.ts +0 -6
- package/dist/components/recovery/SetPasswordStep.js +0 -20
- package/dist/components/recovery/VerifyCodeStep.d.ts +0 -10
- package/dist/components/recovery/VerifyCodeStep.js +0 -24
- package/dist/components/reserved/ReservedRecoveryWarning.d.ts +0 -38
- package/dist/components/reserved/ReservedRecoveryWarning.js +0 -92
- package/dist/components/reserved/ReservedStatusBox.d.ts +0 -30
- package/dist/components/reserved/ReservedStatusBox.js +0 -71
- package/dist/components/ui/BetaBadge.d.ts +0 -29
- package/dist/components/ui/BetaBadge.js +0 -38
- package/dist/components/ui/Footer.d.ts +0 -37
- package/dist/components/ui/Footer.js +0 -41
- package/dist/config/env.d.ts +0 -66
- package/dist/config/env.js +0 -57
- package/dist/config/logger.d.ts +0 -57
- package/dist/config/logger.js +0 -73
- package/dist/config/logging-config.d.ts +0 -30
- package/dist/config/logging-config.js +0 -122
- package/dist/config/unauthenticated-routes.d.ts +0 -17
- package/dist/config/unauthenticated-routes.js +0 -24
- package/dist/config/vibe-log-transport.d.ts +0 -81
- package/dist/config/vibe-log-transport.js +0 -212
- package/dist/edge/internal-api-url.d.ts +0 -53
- package/dist/edge/internal-api-url.js +0 -63
- package/dist/edge/middleware.d.ts +0 -14
- package/dist/edge/middleware.js +0 -32
- package/dist/hooks/useAuth.d.ts +0 -23
- package/dist/hooks/useAuth.js +0 -83
- package/dist/hooks/useAuthSettings.d.ts +0 -59
- package/dist/hooks/useAuthSettings.js +0 -93
- package/dist/hooks/useAvailableProviders.d.ts +0 -43
- package/dist/hooks/useAvailableProviders.js +0 -112
- package/dist/hooks/usePasswordValidation.d.ts +0 -27
- package/dist/hooks/usePasswordValidation.js +0 -102
- package/dist/hooks/useProfile.d.ts +0 -15
- package/dist/hooks/useProfile.js +0 -59
- package/dist/hooks/usePublicAuthSettings.d.ts +0 -56
- package/dist/hooks/usePublicAuthSettings.js +0 -131
- package/dist/hooks/useSessionExpiration.d.ts +0 -56
- package/dist/hooks/useSessionExpiration.js +0 -72
- package/dist/hooks/useViabilitySession.d.ts +0 -75
- package/dist/hooks/useViabilitySession.js +0 -269
- package/dist/index.d.ts +0 -12
- package/dist/index.js +0 -53
- package/dist/lib/anon-session.d.ts +0 -74
- package/dist/lib/anon-session.js +0 -169
- package/dist/lib/api-handler.d.ts +0 -123
- package/dist/lib/api-handler.js +0 -478
- package/dist/lib/app-slug.d.ts +0 -95
- package/dist/lib/app-slug.js +0 -172
- package/dist/lib/demo-mode.d.ts +0 -6
- package/dist/lib/demo-mode.js +0 -16
- package/dist/lib/geolocation.d.ts +0 -64
- package/dist/lib/geolocation.js +0 -235
- package/dist/lib/idp-client-config.d.ts +0 -75
- package/dist/lib/idp-client-config.js +0 -425
- package/dist/lib/idp-fetch.d.ts +0 -14
- package/dist/lib/idp-fetch.js +0 -91
- package/dist/lib/internal-api.d.ts +0 -87
- package/dist/lib/internal-api.js +0 -122
- package/dist/lib/jwt-decode-client.d.ts +0 -10
- package/dist/lib/jwt-decode-client.js +0 -46
- package/dist/lib/jwt-decode.d.ts +0 -48
- package/dist/lib/jwt-decode.js +0 -57
- package/dist/lib/nextauth-secret.d.ts +0 -10
- package/dist/lib/nextauth-secret.js +0 -100
- package/dist/lib/rate-limit-service.d.ts +0 -23
- package/dist/lib/rate-limit-service.js +0 -6
- package/dist/lib/redis.d.ts +0 -5
- package/dist/lib/redis.js +0 -28
- package/dist/lib/refresh-token-validator.d.ts +0 -13
- package/dist/lib/refresh-token-validator.js +0 -117
- package/dist/lib/roles.d.ts +0 -145
- package/dist/lib/roles.js +0 -168
- package/dist/lib/secret-validation.d.ts +0 -4
- package/dist/lib/secret-validation.js +0 -14
- package/dist/lib/session-store.d.ts +0 -170
- package/dist/lib/session-store.js +0 -545
- package/dist/lib/session.d.ts +0 -21
- package/dist/lib/session.js +0 -26
- package/dist/lib/site-logger.d.ts +0 -214
- package/dist/lib/site-logger.js +0 -210
- package/dist/lib/standardized-client-api.d.ts +0 -161
- package/dist/lib/standardized-client-api.js +0 -791
- package/dist/lib/startup-init.d.ts +0 -40
- package/dist/lib/startup-init.js +0 -257
- package/dist/lib/test-aware-get-token.d.ts +0 -2
- package/dist/lib/test-aware-get-token.js +0 -86
- package/dist/lib/token-expiry.d.ts +0 -14
- package/dist/lib/token-expiry.js +0 -39
- package/dist/lib/token-lifecycle.d.ts +0 -78
- package/dist/lib/token-lifecycle.js +0 -360
- package/dist/lib/types/api-responses.d.ts +0 -128
- package/dist/lib/types/api-responses.js +0 -171
- package/dist/lib/user-agent-parser.d.ts +0 -50
- package/dist/lib/user-agent-parser.js +0 -220
- package/dist/logging/api/admin-analytics.d.ts +0 -3
- package/dist/logging/api/admin-analytics.js +0 -45
- package/dist/logging/api/audit-log.d.ts +0 -3
- package/dist/logging/api/audit-log.js +0 -52
- package/dist/logging/components/AdminAnalyticsLayout.d.ts +0 -10
- package/dist/logging/components/AdminAnalyticsLayout.js +0 -11
- package/dist/logging/components/AuditLogViewer.d.ts +0 -7
- package/dist/logging/components/AuditLogViewer.js +0 -51
- package/dist/logging/components/ErrorMetricsCard.d.ts +0 -7
- package/dist/logging/components/ErrorMetricsCard.js +0 -16
- package/dist/logging/components/HealthMetricsCard.d.ts +0 -7
- package/dist/logging/components/HealthMetricsCard.js +0 -19
- package/dist/logging/hooks/useAdminAnalytics.d.ts +0 -24
- package/dist/logging/hooks/useAdminAnalytics.js +0 -22
- package/dist/logging/hooks/useAuditLog.d.ts +0 -6
- package/dist/logging/hooks/useAuditLog.js +0 -25
- package/dist/logging/hooks/useErrorMetrics.d.ts +0 -6
- package/dist/logging/hooks/useErrorMetrics.js +0 -38
- package/dist/logging/hooks/useHealthMetrics.d.ts +0 -6
- package/dist/logging/hooks/useHealthMetrics.js +0 -41
- package/dist/logging/index.d.ts +0 -11
- package/dist/logging/index.js +0 -40
- package/dist/logging/types/analytics.d.ts +0 -68
- package/dist/logging/types/analytics.js +0 -3
- package/dist/logging/types/audit.d.ts +0 -29
- package/dist/logging/types/audit.js +0 -2
- package/dist/logging/types/index.d.ts +0 -2
- package/dist/logging/types/index.js +0 -19
- package/dist/middleware/auth-decision.d.ts +0 -33
- package/dist/middleware/auth-decision.js +0 -65
- package/dist/middleware/create-middleware.d.ts +0 -102
- package/dist/middleware/create-middleware.js +0 -469
- package/dist/middleware/rbac-check.d.ts +0 -51
- package/dist/middleware/rbac-check.js +0 -219
- package/dist/middleware/twofa-presets.d.ts +0 -134
- package/dist/middleware/twofa-presets.js +0 -175
- package/dist/models/DecodedAccessToken.d.ts +0 -17
- package/dist/models/DecodedAccessToken.js +0 -2
- package/dist/models/SessionModel.d.ts +0 -122
- package/dist/models/SessionModel.js +0 -136
- package/dist/pages/admin-login/page.d.ts +0 -31
- package/dist/pages/admin-login/page.js +0 -73
- package/dist/pages/admin-page-permissions/PagePermissionsAdminPage.d.ts +0 -18
- package/dist/pages/admin-page-permissions/PagePermissionsAdminPage.js +0 -276
- package/dist/pages/admin-page-permissions/index.d.ts +0 -6
- package/dist/pages/admin-page-permissions/index.js +0 -13
- package/dist/pages/admin-roles/RolesAdminPage.d.ts +0 -16
- package/dist/pages/admin-roles/RolesAdminPage.js +0 -261
- package/dist/pages/admin-roles/index.d.ts +0 -8
- package/dist/pages/admin-roles/index.js +0 -15
- package/dist/pages/admin-roles/modals.d.ts +0 -72
- package/dist/pages/admin-roles/modals.js +0 -154
- package/dist/pages/client-admin/ClientSiteAdminPage.d.ts +0 -79
- package/dist/pages/client-admin/ClientSiteAdminPage.js +0 -179
- package/dist/pages/client-admin/index.d.ts +0 -32
- package/dist/pages/client-admin/index.js +0 -37
- package/dist/pages/coming-soon/page.d.ts +0 -8
- package/dist/pages/coming-soon/page.js +0 -28
- package/dist/pages/login/page.d.ts +0 -22
- package/dist/pages/login/page.js +0 -230
- package/dist/pages/profile/EnhancedProfilePage.d.ts +0 -13
- package/dist/pages/profile/EnhancedProfilePage.js +0 -150
- package/dist/pages/profile/index.d.ts +0 -8
- package/dist/pages/profile/index.js +0 -16
- package/dist/pages/profile/page.d.ts +0 -19
- package/dist/pages/profile/page.js +0 -47
- package/dist/pages/profile/profile-patch.d.ts +0 -1
- package/dist/pages/profile/profile-patch.js +0 -281
- package/dist/pages/recovery/page.d.ts +0 -1
- package/dist/pages/recovery/page.js +0 -142
- package/dist/pages/roles/MyRolesPage.d.ts +0 -24
- package/dist/pages/roles/MyRolesPage.js +0 -71
- package/dist/pages/roles/components.d.ts +0 -63
- package/dist/pages/roles/components.js +0 -108
- package/dist/pages/roles/index.d.ts +0 -8
- package/dist/pages/roles/index.js +0 -19
- package/dist/pages/security/EnhancedSecurityPage.d.ts +0 -14
- package/dist/pages/security/EnhancedSecurityPage.js +0 -248
- package/dist/pages/security/index.d.ts +0 -8
- package/dist/pages/security/index.js +0 -16
- package/dist/pages/security/page.d.ts +0 -21
- package/dist/pages/security/page.js +0 -212
- package/dist/pages/security/security-patch.d.ts +0 -1
- package/dist/pages/security/security-patch.js +0 -302
- package/dist/pages/settings/EnhancedSettingsPage.d.ts +0 -46
- package/dist/pages/settings/EnhancedSettingsPage.js +0 -231
- package/dist/pages/settings/index.d.ts +0 -8
- package/dist/pages/settings/index.js +0 -16
- package/dist/pages/settings/page.d.ts +0 -7
- package/dist/pages/settings/page.js +0 -26
- package/dist/pages/showcase/ShowcasePage.d.ts +0 -13
- package/dist/pages/showcase/ShowcasePage.js +0 -142
- package/dist/pages/showcase/index.d.ts +0 -12
- package/dist/pages/showcase/index.js +0 -17
- package/dist/pages/test-env/EmergencyLogoutPage.d.ts +0 -14
- package/dist/pages/test-env/EmergencyLogoutPage.js +0 -99
- package/dist/pages/test-env/JwtInspectPage.d.ts +0 -14
- package/dist/pages/test-env/JwtInspectPage.js +0 -116
- package/dist/pages/test-env/RefreshTokenPage.d.ts +0 -15
- package/dist/pages/test-env/RefreshTokenPage.js +0 -93
- package/dist/pages/test-env/TestEnvPage.d.ts +0 -13
- package/dist/pages/test-env/TestEnvPage.js +0 -51
- package/dist/pages/test-env/index.d.ts +0 -24
- package/dist/pages/test-env/index.js +0 -32
- package/dist/pages/verify-code/page.d.ts +0 -30
- package/dist/pages/verify-code/page.js +0 -412
- package/dist/routes/account/index.d.ts +0 -28
- package/dist/routes/account/index.js +0 -71
- package/dist/routes/account/masked-info.d.ts +0 -33
- package/dist/routes/account/masked-info.js +0 -39
- package/dist/routes/account/send-code.d.ts +0 -37
- package/dist/routes/account/send-code.js +0 -42
- package/dist/routes/account/update-phone.d.ts +0 -13
- package/dist/routes/account/update-phone.js +0 -17
- package/dist/routes/account/verify-email.d.ts +0 -38
- package/dist/routes/account/verify-email.js +0 -43
- package/dist/routes/account/verify-sms.d.ts +0 -38
- package/dist/routes/account/verify-sms.js +0 -43
- package/dist/routes/auth/index.d.ts +0 -19
- package/dist/routes/auth/index.js +0 -64
- package/dist/routes/auth/logout.d.ts +0 -31
- package/dist/routes/auth/logout.js +0 -98
- package/dist/routes/auth/nextauth.d.ts +0 -22
- package/dist/routes/auth/nextauth.js +0 -40
- package/dist/routes/auth/refresh.d.ts +0 -30
- package/dist/routes/auth/refresh.js +0 -51
- package/dist/routes/auth/session.d.ts +0 -43
- package/dist/routes/auth/session.js +0 -157
- package/dist/routes/auth/settings.d.ts +0 -25
- package/dist/routes/auth/settings.js +0 -55
- package/dist/routes/auth/viability.d.ts +0 -52
- package/dist/routes/auth/viability.js +0 -190
- package/dist/routes/index.d.ts +0 -12
- package/dist/routes/index.js +0 -54
- package/dist/routes/session/index.d.ts +0 -6
- package/dist/routes/session/index.js +0 -10
- package/dist/routes/session/refresh-viability.d.ts +0 -16
- package/dist/routes/session/refresh-viability.js +0 -20
- package/dist/server/auth-guard.d.ts +0 -46
- package/dist/server/auth-guard.js +0 -128
- package/dist/server/auth.d.ts +0 -50
- package/dist/server/auth.js +0 -62
- package/dist/server/decode-session.d.ts +0 -30
- package/dist/server/decode-session.js +0 -78
- package/dist/server/slim-middleware.d.ts +0 -23
- package/dist/server/slim-middleware.js +0 -89
- package/dist/server/with-auth.d.ts +0 -33
- package/dist/server/with-auth.js +0 -59
- package/dist/services/signalrActivityService.d.ts +0 -44
- package/dist/services/signalrActivityService.js +0 -257
- package/dist/stores/authStore.d.ts +0 -154
- package/dist/stores/authStore.js +0 -1527
- package/dist/theme/ThemeProvider.d.ts +0 -14
- package/dist/theme/ThemeProvider.js +0 -28
- package/dist/theme/default.d.ts +0 -8
- package/dist/theme/default.js +0 -33
- package/dist/theme/index.d.ts +0 -15
- package/dist/theme/index.js +0 -25
- package/dist/theme/types.d.ts +0 -56
- package/dist/theme/types.js +0 -8
- package/dist/theme/useTheme.d.ts +0 -60
- package/dist/theme/useTheme.js +0 -63
- package/dist/theme/utils.d.ts +0 -13
- package/dist/theme/utils.js +0 -39
- package/dist/types/api.d.ts +0 -134
- package/dist/types/api.js +0 -44
- package/dist/types/auth.d.ts +0 -19
- package/dist/types/auth.js +0 -2
- package/dist/types/logging.d.ts +0 -42
- package/dist/types/logging.js +0 -2
- package/dist/types/recovery.d.ts +0 -48
- package/dist/types/recovery.js +0 -2
- package/dist/types/security.d.ts +0 -1
- package/dist/types/security.js +0 -2
- package/dist/utils/api.d.ts +0 -85
- package/dist/utils/api.js +0 -287
- package/dist/utils/circuitBreaker.d.ts +0 -43
- package/dist/utils/circuitBreaker.js +0 -91
- package/dist/utils/error-message.d.ts +0 -1
- package/dist/utils/error-message.js +0 -103
- package/dist/utils/layout/reservedSpace.d.ts +0 -59
- package/dist/utils/layout/reservedSpace.js +0 -102
- package/dist/utils/logout.d.ts +0 -14
- package/dist/utils/logout.js +0 -32
- package/dist/vibe/client.d.ts +0 -261
- package/dist/vibe/client.js +0 -445
- package/dist/vibe/enterprise-auth.d.ts +0 -106
- package/dist/vibe/enterprise-auth.js +0 -173
- package/dist/vibe/errors.d.ts +0 -83
- package/dist/vibe/errors.js +0 -146
- package/dist/vibe/generic.d.ts +0 -234
- package/dist/vibe/generic.js +0 -369
- package/dist/vibe/hooks/index.d.ts +0 -169
- package/dist/vibe/hooks/index.js +0 -252
- package/dist/vibe/index.d.ts +0 -25
- package/dist/vibe/index.js +0 -72
- package/dist/vibe/sessions.d.ts +0 -161
- package/dist/vibe/sessions.js +0 -391
- package/dist/vibe/types.d.ts +0 -353
- package/dist/vibe/types.js +0 -315
package/dist/lib/roles.d.ts
DELETED
|
@@ -1,145 +0,0 @@
|
|
|
1
|
-
/**
|
|
2
|
-
* Vibe Role Constants and Utilities
|
|
3
|
-
*
|
|
4
|
-
* Centralized role definitions for consistent authorization across the stack.
|
|
5
|
-
*
|
|
6
|
-
* @version 1.0
|
|
7
|
-
*/
|
|
8
|
-
/**
|
|
9
|
-
* Global platform roles (IDP-level)
|
|
10
|
-
* These roles are managed at the IDP and grant cross-client access.
|
|
11
|
-
*/
|
|
12
|
-
export declare const GlobalRoles: {
|
|
13
|
-
/** Platform super admin - full access to everything */
|
|
14
|
-
readonly PAYEZ_ADMIN: "payez_admin";
|
|
15
|
-
/** IDP client admin - manages IDP client configuration */
|
|
16
|
-
readonly IDP_CLIENT_ADMIN: "idp_client_admin";
|
|
17
|
-
/** Vibe platform admin - manages Vibe infrastructure globally */
|
|
18
|
-
readonly VIBE_APP_ADMIN: "vibe_app_admin";
|
|
19
|
-
/** Vibe client admin - manages Vibe for a specific tenant */
|
|
20
|
-
readonly VIBE_CLIENT_ADMIN: "vibe_client_admin";
|
|
21
|
-
/** Vibe agents user - AI agents operating via CLI/automation */
|
|
22
|
-
readonly VIBE_AGENTS_USER: "vibe_agents_user";
|
|
23
|
-
};
|
|
24
|
-
/**
|
|
25
|
-
* Application-level roles (per-client)
|
|
26
|
-
* These roles are scoped to a specific client/tenant.
|
|
27
|
-
*/
|
|
28
|
-
export declare const AppRoles: {
|
|
29
|
-
/** Standard authenticated user */
|
|
30
|
-
readonly VIBE_APP_USER: "vibe_app_user";
|
|
31
|
-
};
|
|
32
|
-
/**
|
|
33
|
-
* All Vibe roles combined
|
|
34
|
-
*/
|
|
35
|
-
export declare const VibeRoles: {
|
|
36
|
-
/** Standard authenticated user */
|
|
37
|
-
readonly VIBE_APP_USER: "vibe_app_user";
|
|
38
|
-
/** Platform super admin - full access to everything */
|
|
39
|
-
readonly PAYEZ_ADMIN: "payez_admin";
|
|
40
|
-
/** IDP client admin - manages IDP client configuration */
|
|
41
|
-
readonly IDP_CLIENT_ADMIN: "idp_client_admin";
|
|
42
|
-
/** Vibe platform admin - manages Vibe infrastructure globally */
|
|
43
|
-
readonly VIBE_APP_ADMIN: "vibe_app_admin";
|
|
44
|
-
/** Vibe client admin - manages Vibe for a specific tenant */
|
|
45
|
-
readonly VIBE_CLIENT_ADMIN: "vibe_client_admin";
|
|
46
|
-
/** Vibe agents user - AI agents operating via CLI/automation */
|
|
47
|
-
readonly VIBE_AGENTS_USER: "vibe_agents_user";
|
|
48
|
-
};
|
|
49
|
-
/**
|
|
50
|
-
* Roles that grant admin access to the /admin section.
|
|
51
|
-
* Any of these roles allows access to admin pages.
|
|
52
|
-
*/
|
|
53
|
-
export declare const ADMIN_ROLES: readonly string[];
|
|
54
|
-
/**
|
|
55
|
-
* Roles that grant platform-wide admin access (not client-scoped).
|
|
56
|
-
* These can access/modify any client's data.
|
|
57
|
-
*/
|
|
58
|
-
export declare const PLATFORM_ADMIN_ROLES: readonly string[];
|
|
59
|
-
/**
|
|
60
|
-
* Roles that grant client-scoped admin access.
|
|
61
|
-
* These can only access their own client's data.
|
|
62
|
-
*/
|
|
63
|
-
export declare const CLIENT_ADMIN_ROLES: readonly string[];
|
|
64
|
-
/**
|
|
65
|
-
* Check if user has a specific role
|
|
66
|
-
*/
|
|
67
|
-
export declare function hasRole(userRoles: string[] | undefined, role: string): boolean;
|
|
68
|
-
/**
|
|
69
|
-
* Check if user has any of the specified roles
|
|
70
|
-
*/
|
|
71
|
-
export declare function hasAnyRole(userRoles: string[] | undefined, roles: readonly string[]): boolean;
|
|
72
|
-
/**
|
|
73
|
-
* Check if user has all of the specified roles
|
|
74
|
-
*/
|
|
75
|
-
export declare function hasAllRoles(userRoles: string[] | undefined, roles: readonly string[]): boolean;
|
|
76
|
-
/**
|
|
77
|
-
* Check if user has admin access (any admin role)
|
|
78
|
-
*/
|
|
79
|
-
export declare function isAdmin(userRoles: string[] | undefined): boolean;
|
|
80
|
-
/**
|
|
81
|
-
* Check if user has platform-wide admin access
|
|
82
|
-
*/
|
|
83
|
-
export declare function isPlatformAdmin(userRoles: string[] | undefined): boolean;
|
|
84
|
-
/**
|
|
85
|
-
* Check if user is a client-scoped admin (not platform admin)
|
|
86
|
-
*/
|
|
87
|
-
export declare function isClientAdmin(userRoles: string[] | undefined): boolean;
|
|
88
|
-
/**
|
|
89
|
-
* Role hierarchy (higher index = more access)
|
|
90
|
-
*
|
|
91
|
-
* payez_admin (4) - IDP super admin, can do anything
|
|
92
|
-
* vibe_app_admin (3) - Platform admin, manages Vibe globally
|
|
93
|
-
* vibe_client_admin (2) - Client admin, manages their own tenant
|
|
94
|
-
* idp_client_admin (2) - IDP client admin, manages IDP config
|
|
95
|
-
* vibe_app_user (1) - Regular authenticated user
|
|
96
|
-
* (anonymous) (0) - No authentication
|
|
97
|
-
*/
|
|
98
|
-
export declare const ROLE_HIERARCHY: Record<string, number>;
|
|
99
|
-
/**
|
|
100
|
-
* Get the highest role level for a user
|
|
101
|
-
*/
|
|
102
|
-
export declare function getHighestRoleLevel(userRoles: string[] | undefined): number;
|
|
103
|
-
declare const _default: {
|
|
104
|
-
VibeRoles: {
|
|
105
|
-
/** Standard authenticated user */
|
|
106
|
-
readonly VIBE_APP_USER: "vibe_app_user";
|
|
107
|
-
/** Platform super admin - full access to everything */
|
|
108
|
-
readonly PAYEZ_ADMIN: "payez_admin";
|
|
109
|
-
/** IDP client admin - manages IDP client configuration */
|
|
110
|
-
readonly IDP_CLIENT_ADMIN: "idp_client_admin";
|
|
111
|
-
/** Vibe platform admin - manages Vibe infrastructure globally */
|
|
112
|
-
readonly VIBE_APP_ADMIN: "vibe_app_admin";
|
|
113
|
-
/** Vibe client admin - manages Vibe for a specific tenant */
|
|
114
|
-
readonly VIBE_CLIENT_ADMIN: "vibe_client_admin";
|
|
115
|
-
/** Vibe agents user - AI agents operating via CLI/automation */
|
|
116
|
-
readonly VIBE_AGENTS_USER: "vibe_agents_user";
|
|
117
|
-
};
|
|
118
|
-
GlobalRoles: {
|
|
119
|
-
/** Platform super admin - full access to everything */
|
|
120
|
-
readonly PAYEZ_ADMIN: "payez_admin";
|
|
121
|
-
/** IDP client admin - manages IDP client configuration */
|
|
122
|
-
readonly IDP_CLIENT_ADMIN: "idp_client_admin";
|
|
123
|
-
/** Vibe platform admin - manages Vibe infrastructure globally */
|
|
124
|
-
readonly VIBE_APP_ADMIN: "vibe_app_admin";
|
|
125
|
-
/** Vibe client admin - manages Vibe for a specific tenant */
|
|
126
|
-
readonly VIBE_CLIENT_ADMIN: "vibe_client_admin";
|
|
127
|
-
/** Vibe agents user - AI agents operating via CLI/automation */
|
|
128
|
-
readonly VIBE_AGENTS_USER: "vibe_agents_user";
|
|
129
|
-
};
|
|
130
|
-
AppRoles: {
|
|
131
|
-
/** Standard authenticated user */
|
|
132
|
-
readonly VIBE_APP_USER: "vibe_app_user";
|
|
133
|
-
};
|
|
134
|
-
ADMIN_ROLES: readonly string[];
|
|
135
|
-
PLATFORM_ADMIN_ROLES: readonly string[];
|
|
136
|
-
CLIENT_ADMIN_ROLES: readonly string[];
|
|
137
|
-
hasRole: typeof hasRole;
|
|
138
|
-
hasAnyRole: typeof hasAnyRole;
|
|
139
|
-
hasAllRoles: typeof hasAllRoles;
|
|
140
|
-
isAdmin: typeof isAdmin;
|
|
141
|
-
isPlatformAdmin: typeof isPlatformAdmin;
|
|
142
|
-
isClientAdmin: typeof isClientAdmin;
|
|
143
|
-
getHighestRoleLevel: typeof getHighestRoleLevel;
|
|
144
|
-
};
|
|
145
|
-
export default _default;
|
package/dist/lib/roles.js
DELETED
|
@@ -1,168 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
/**
|
|
3
|
-
* Vibe Role Constants and Utilities
|
|
4
|
-
*
|
|
5
|
-
* Centralized role definitions for consistent authorization across the stack.
|
|
6
|
-
*
|
|
7
|
-
* @version 1.0
|
|
8
|
-
*/
|
|
9
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
10
|
-
exports.ROLE_HIERARCHY = exports.CLIENT_ADMIN_ROLES = exports.PLATFORM_ADMIN_ROLES = exports.ADMIN_ROLES = exports.VibeRoles = exports.AppRoles = exports.GlobalRoles = void 0;
|
|
11
|
-
exports.hasRole = hasRole;
|
|
12
|
-
exports.hasAnyRole = hasAnyRole;
|
|
13
|
-
exports.hasAllRoles = hasAllRoles;
|
|
14
|
-
exports.isAdmin = isAdmin;
|
|
15
|
-
exports.isPlatformAdmin = isPlatformAdmin;
|
|
16
|
-
exports.isClientAdmin = isClientAdmin;
|
|
17
|
-
exports.getHighestRoleLevel = getHighestRoleLevel;
|
|
18
|
-
// =============================================================================
|
|
19
|
-
// Role Constants
|
|
20
|
-
// =============================================================================
|
|
21
|
-
/**
|
|
22
|
-
* Global platform roles (IDP-level)
|
|
23
|
-
* These roles are managed at the IDP and grant cross-client access.
|
|
24
|
-
*/
|
|
25
|
-
exports.GlobalRoles = {
|
|
26
|
-
/** Platform super admin - full access to everything */
|
|
27
|
-
PAYEZ_ADMIN: 'payez_admin',
|
|
28
|
-
/** IDP client admin - manages IDP client configuration */
|
|
29
|
-
IDP_CLIENT_ADMIN: 'idp_client_admin',
|
|
30
|
-
/** Vibe platform admin - manages Vibe infrastructure globally */
|
|
31
|
-
VIBE_APP_ADMIN: 'vibe_app_admin',
|
|
32
|
-
/** Vibe client admin - manages Vibe for a specific tenant */
|
|
33
|
-
VIBE_CLIENT_ADMIN: 'vibe_client_admin',
|
|
34
|
-
/** Vibe agents user - AI agents operating via CLI/automation */
|
|
35
|
-
VIBE_AGENTS_USER: 'vibe_agents_user',
|
|
36
|
-
};
|
|
37
|
-
/**
|
|
38
|
-
* Application-level roles (per-client)
|
|
39
|
-
* These roles are scoped to a specific client/tenant.
|
|
40
|
-
*/
|
|
41
|
-
exports.AppRoles = {
|
|
42
|
-
/** Standard authenticated user */
|
|
43
|
-
VIBE_APP_USER: 'vibe_app_user',
|
|
44
|
-
};
|
|
45
|
-
/**
|
|
46
|
-
* All Vibe roles combined
|
|
47
|
-
*/
|
|
48
|
-
exports.VibeRoles = {
|
|
49
|
-
...exports.GlobalRoles,
|
|
50
|
-
...exports.AppRoles,
|
|
51
|
-
};
|
|
52
|
-
// =============================================================================
|
|
53
|
-
// Role Groups
|
|
54
|
-
// =============================================================================
|
|
55
|
-
/**
|
|
56
|
-
* Roles that grant admin access to the /admin section.
|
|
57
|
-
* Any of these roles allows access to admin pages.
|
|
58
|
-
*/
|
|
59
|
-
exports.ADMIN_ROLES = [
|
|
60
|
-
exports.GlobalRoles.PAYEZ_ADMIN,
|
|
61
|
-
exports.GlobalRoles.VIBE_APP_ADMIN,
|
|
62
|
-
exports.GlobalRoles.VIBE_CLIENT_ADMIN,
|
|
63
|
-
exports.GlobalRoles.IDP_CLIENT_ADMIN,
|
|
64
|
-
];
|
|
65
|
-
/**
|
|
66
|
-
* Roles that grant platform-wide admin access (not client-scoped).
|
|
67
|
-
* These can access/modify any client's data.
|
|
68
|
-
*/
|
|
69
|
-
exports.PLATFORM_ADMIN_ROLES = [
|
|
70
|
-
exports.GlobalRoles.PAYEZ_ADMIN,
|
|
71
|
-
exports.GlobalRoles.VIBE_APP_ADMIN,
|
|
72
|
-
];
|
|
73
|
-
/**
|
|
74
|
-
* Roles that grant client-scoped admin access.
|
|
75
|
-
* These can only access their own client's data.
|
|
76
|
-
*/
|
|
77
|
-
exports.CLIENT_ADMIN_ROLES = [
|
|
78
|
-
exports.GlobalRoles.VIBE_CLIENT_ADMIN,
|
|
79
|
-
exports.GlobalRoles.IDP_CLIENT_ADMIN,
|
|
80
|
-
];
|
|
81
|
-
// =============================================================================
|
|
82
|
-
// Role Checking Utilities
|
|
83
|
-
// =============================================================================
|
|
84
|
-
/**
|
|
85
|
-
* Check if user has a specific role
|
|
86
|
-
*/
|
|
87
|
-
function hasRole(userRoles, role) {
|
|
88
|
-
if (!userRoles || !Array.isArray(userRoles))
|
|
89
|
-
return false;
|
|
90
|
-
return userRoles.includes(role);
|
|
91
|
-
}
|
|
92
|
-
/**
|
|
93
|
-
* Check if user has any of the specified roles
|
|
94
|
-
*/
|
|
95
|
-
function hasAnyRole(userRoles, roles) {
|
|
96
|
-
if (!userRoles || !Array.isArray(userRoles))
|
|
97
|
-
return false;
|
|
98
|
-
return roles.some(role => userRoles.includes(role));
|
|
99
|
-
}
|
|
100
|
-
/**
|
|
101
|
-
* Check if user has all of the specified roles
|
|
102
|
-
*/
|
|
103
|
-
function hasAllRoles(userRoles, roles) {
|
|
104
|
-
if (!userRoles || !Array.isArray(userRoles))
|
|
105
|
-
return false;
|
|
106
|
-
return roles.every(role => userRoles.includes(role));
|
|
107
|
-
}
|
|
108
|
-
/**
|
|
109
|
-
* Check if user has admin access (any admin role)
|
|
110
|
-
*/
|
|
111
|
-
function isAdmin(userRoles) {
|
|
112
|
-
return hasAnyRole(userRoles, exports.ADMIN_ROLES);
|
|
113
|
-
}
|
|
114
|
-
/**
|
|
115
|
-
* Check if user has platform-wide admin access
|
|
116
|
-
*/
|
|
117
|
-
function isPlatformAdmin(userRoles) {
|
|
118
|
-
return hasAnyRole(userRoles, exports.PLATFORM_ADMIN_ROLES);
|
|
119
|
-
}
|
|
120
|
-
/**
|
|
121
|
-
* Check if user is a client-scoped admin (not platform admin)
|
|
122
|
-
*/
|
|
123
|
-
function isClientAdmin(userRoles) {
|
|
124
|
-
return hasAnyRole(userRoles, exports.CLIENT_ADMIN_ROLES) && !isPlatformAdmin(userRoles);
|
|
125
|
-
}
|
|
126
|
-
// =============================================================================
|
|
127
|
-
// Role Hierarchy
|
|
128
|
-
// =============================================================================
|
|
129
|
-
/**
|
|
130
|
-
* Role hierarchy (higher index = more access)
|
|
131
|
-
*
|
|
132
|
-
* payez_admin (4) - IDP super admin, can do anything
|
|
133
|
-
* vibe_app_admin (3) - Platform admin, manages Vibe globally
|
|
134
|
-
* vibe_client_admin (2) - Client admin, manages their own tenant
|
|
135
|
-
* idp_client_admin (2) - IDP client admin, manages IDP config
|
|
136
|
-
* vibe_app_user (1) - Regular authenticated user
|
|
137
|
-
* (anonymous) (0) - No authentication
|
|
138
|
-
*/
|
|
139
|
-
exports.ROLE_HIERARCHY = {
|
|
140
|
-
[exports.GlobalRoles.PAYEZ_ADMIN]: 4,
|
|
141
|
-
[exports.GlobalRoles.VIBE_APP_ADMIN]: 3,
|
|
142
|
-
[exports.GlobalRoles.VIBE_CLIENT_ADMIN]: 2,
|
|
143
|
-
[exports.GlobalRoles.IDP_CLIENT_ADMIN]: 2,
|
|
144
|
-
[exports.AppRoles.VIBE_APP_USER]: 1,
|
|
145
|
-
};
|
|
146
|
-
/**
|
|
147
|
-
* Get the highest role level for a user
|
|
148
|
-
*/
|
|
149
|
-
function getHighestRoleLevel(userRoles) {
|
|
150
|
-
if (!userRoles || !Array.isArray(userRoles))
|
|
151
|
-
return 0;
|
|
152
|
-
return Math.max(0, ...userRoles.map(role => exports.ROLE_HIERARCHY[role] || 0));
|
|
153
|
-
}
|
|
154
|
-
exports.default = {
|
|
155
|
-
VibeRoles: exports.VibeRoles,
|
|
156
|
-
GlobalRoles: exports.GlobalRoles,
|
|
157
|
-
AppRoles: exports.AppRoles,
|
|
158
|
-
ADMIN_ROLES: exports.ADMIN_ROLES,
|
|
159
|
-
PLATFORM_ADMIN_ROLES: exports.PLATFORM_ADMIN_ROLES,
|
|
160
|
-
CLIENT_ADMIN_ROLES: exports.CLIENT_ADMIN_ROLES,
|
|
161
|
-
hasRole,
|
|
162
|
-
hasAnyRole,
|
|
163
|
-
hasAllRoles,
|
|
164
|
-
isAdmin,
|
|
165
|
-
isPlatformAdmin,
|
|
166
|
-
isClientAdmin,
|
|
167
|
-
getHighestRoleLevel,
|
|
168
|
-
};
|
|
@@ -1,14 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.validateNextAuthSecret = validateNextAuthSecret;
|
|
4
|
-
function validateNextAuthSecret(secret) {
|
|
5
|
-
if (!secret || typeof secret !== 'string')
|
|
6
|
-
return { valid: false, reason: 'missing' };
|
|
7
|
-
if (secret.length < 32)
|
|
8
|
-
return { valid: false, reason: 'too_short' };
|
|
9
|
-
const classes = [/[a-z]/, /[A-Z]/, /[0-9]/, /[^a-zA-Z0-9]/];
|
|
10
|
-
const score = classes.reduce((acc, re) => acc + (re.test(secret) ? 1 : 0), 0);
|
|
11
|
-
if (score < 3)
|
|
12
|
-
return { valid: false, reason: 'weak' };
|
|
13
|
-
return { valid: true };
|
|
14
|
-
}
|
|
@@ -1,170 +0,0 @@
|
|
|
1
|
-
/**
|
|
2
|
-
* Session Store for `@payez/next-mvp` using ioredis
|
|
3
|
-
*
|
|
4
|
-
* This module provides a Redis-backed session store that is compatible with the
|
|
5
|
-
* `ioredis` client. It handles the creation, retrieval, and deletion of
|
|
6
|
-
* session data, which is the single source of truth for authentication.
|
|
7
|
-
*
|
|
8
|
-
* Includes advanced distributed refresh coordination with version control.
|
|
9
|
-
*/
|
|
10
|
-
import { SessionData } from '../models/SessionModel';
|
|
11
|
-
export type { SessionData } from '../models/SessionModel';
|
|
12
|
-
export interface RefreshLockInfo {
|
|
13
|
-
sessionToken: string;
|
|
14
|
-
acquiredAt: number;
|
|
15
|
-
acquiredBy: string;
|
|
16
|
-
lockVersion: number;
|
|
17
|
-
}
|
|
18
|
-
/**
|
|
19
|
-
* Generates a new session token.
|
|
20
|
-
* @returns A new session token string.
|
|
21
|
-
*/
|
|
22
|
-
export declare function generateSessionToken(): string;
|
|
23
|
-
/**
|
|
24
|
-
* Creates a new session in Redis.
|
|
25
|
-
*
|
|
26
|
-
* @param data The session data to store.
|
|
27
|
-
* @returns The generated session token (redisSessionId).
|
|
28
|
-
*/
|
|
29
|
-
export declare function createSession(data: SessionData): Promise<string>;
|
|
30
|
-
/**
|
|
31
|
-
* Retrieves a session from Redis.
|
|
32
|
-
*
|
|
33
|
-
* @param sessionToken The session token (redisSessionId) to look up.
|
|
34
|
-
* @returns The session data, or null if not found.
|
|
35
|
-
*/
|
|
36
|
-
export declare function getSession(sessionToken: string): Promise<SessionData | null>;
|
|
37
|
-
/**
|
|
38
|
-
* Refresh session TTL without reading/writing data (sliding window expiry).
|
|
39
|
-
*/
|
|
40
|
-
export declare function touchSession(token: string): Promise<void>;
|
|
41
|
-
/**
|
|
42
|
-
* Retrieves a session along with a version identifier for optimistic locking.
|
|
43
|
-
* @param sessionToken The session token to look up.
|
|
44
|
-
* @returns An object with session and version, or null if not found.
|
|
45
|
-
*/
|
|
46
|
-
export declare function getSessionWithVersion(sessionToken: string): Promise<{
|
|
47
|
-
session: SessionData;
|
|
48
|
-
version: string;
|
|
49
|
-
} | null>;
|
|
50
|
-
/**
|
|
51
|
-
* Checks if the access token in a session is still fresh (not expired).
|
|
52
|
-
* @param sessionToken The session token to check.
|
|
53
|
-
* @param currentAccessToken The current access token to compare.
|
|
54
|
-
* @param currentVersion Optional version to check for changes.
|
|
55
|
-
* @returns Object with freshness status and latest token info.
|
|
56
|
-
*/
|
|
57
|
-
export declare function isAccessTokenFresh(sessionToken: string, currentAccessToken: string, currentVersion?: string): Promise<{
|
|
58
|
-
isFresh: boolean;
|
|
59
|
-
latestAccessToken?: string;
|
|
60
|
-
latestVersion?: string;
|
|
61
|
-
versionChanged: boolean;
|
|
62
|
-
}>;
|
|
63
|
-
/**
|
|
64
|
-
* Deletes a session from Redis.
|
|
65
|
-
* @param sessionToken The session token to delete.
|
|
66
|
-
*/
|
|
67
|
-
export declare function deleteSession(sessionToken: string): Promise<void>;
|
|
68
|
-
/**
|
|
69
|
-
* Sets a session directly (for testing or migrations).
|
|
70
|
-
* @param sessionToken The session token.
|
|
71
|
-
* @param data The session data.
|
|
72
|
-
*/
|
|
73
|
-
export declare function setSession(sessionToken: string, data: SessionData): Promise<void>;
|
|
74
|
-
/**
|
|
75
|
-
* Updates tokens within an existing session.
|
|
76
|
-
* @param sessionToken The session token to update.
|
|
77
|
-
* @param updates Partial session data to update.
|
|
78
|
-
* @returns The updated session data, or null if the session was not found.
|
|
79
|
-
*/
|
|
80
|
-
export declare function updateSession(sessionToken: string, updates: Partial<SessionData>): Promise<SessionData | null>;
|
|
81
|
-
/**
|
|
82
|
-
* Transitions a session to a MFA-completed state.
|
|
83
|
-
* @param sessionToken The session token to update.
|
|
84
|
-
* @param tokens The new tokens received after MFA completion.
|
|
85
|
-
* @param mfaMethod The MFA method used (email, sms, totp) - required for token refresh.
|
|
86
|
-
* @returns The updated session data.
|
|
87
|
-
*/
|
|
88
|
-
export declare function transitionTo2FASession(sessionToken: string, tokens: {
|
|
89
|
-
accessToken?: string;
|
|
90
|
-
refreshToken?: string;
|
|
91
|
-
accessTokenExpires?: number;
|
|
92
|
-
refreshTokenExpires?: number;
|
|
93
|
-
idpAccessToken?: string;
|
|
94
|
-
idpRefreshToken?: string;
|
|
95
|
-
idpAccessTokenExpires?: number;
|
|
96
|
-
idpRefreshTokenExpires?: number;
|
|
97
|
-
}, mfaMethod?: 'email' | 'sms' | 'totp'): Promise<SessionData | null>;
|
|
98
|
-
/**
|
|
99
|
-
* Updates IDP tokens and their expiries in an existing session.
|
|
100
|
-
* @param sessionToken The session token to update.
|
|
101
|
-
* @param idpAccessToken The new IDP access token.
|
|
102
|
-
* @param idpRefreshToken The new IDP refresh token.
|
|
103
|
-
* @param idpAccessTokenExpires The access token expiry timestamp.
|
|
104
|
-
* @param idpRefreshTokenExpires The refresh token expiry timestamp (optional).
|
|
105
|
-
* @returns The updated session data.
|
|
106
|
-
*/
|
|
107
|
-
export declare function updateTokens(sessionToken: string, idpAccessToken: string, idpRefreshToken: string, idpAccessTokenExpires: number, idpRefreshTokenExpires?: number): Promise<SessionData | null>;
|
|
108
|
-
/**
|
|
109
|
-
* Marks a session as having completed MFA.
|
|
110
|
-
* @param sessionToken The session token to update.
|
|
111
|
-
* @returns The updated session data.
|
|
112
|
-
*/
|
|
113
|
-
export declare function mark2FAComplete(sessionToken: string): Promise<SessionData | null>;
|
|
114
|
-
/**
|
|
115
|
-
* Checks if MFA is complete for a session.
|
|
116
|
-
* @param sessionToken The session token.
|
|
117
|
-
* @returns True if MFA is complete.
|
|
118
|
-
*/
|
|
119
|
-
export declare function is2FAComplete(sessionToken: string): Promise<boolean>;
|
|
120
|
-
/**
|
|
121
|
-
* Gets IDP tokens from a session.
|
|
122
|
-
* @param sessionToken The session token.
|
|
123
|
-
* @returns The tokens or null if session not found.
|
|
124
|
-
*/
|
|
125
|
-
export declare function getTokens(sessionToken: string): Promise<{
|
|
126
|
-
accessToken: string;
|
|
127
|
-
refreshToken: string;
|
|
128
|
-
idpAccessToken: string;
|
|
129
|
-
idpRefreshToken: string;
|
|
130
|
-
} | null>;
|
|
131
|
-
/**
|
|
132
|
-
* Refreshes a JWT session (placeholder for compatibility).
|
|
133
|
-
* @param sessionToken The session token.
|
|
134
|
-
* @returns The session data or null.
|
|
135
|
-
*/
|
|
136
|
-
export declare function refreshJWTSession(sessionToken: string): Promise<SessionData | null>;
|
|
137
|
-
/**
|
|
138
|
-
* Clears all sessions (for testing only).
|
|
139
|
-
*/
|
|
140
|
-
export declare function clearAllSessions(): Promise<void>;
|
|
141
|
-
/**
|
|
142
|
-
* Lists all sessions (for testing/debugging only).
|
|
143
|
-
* @returns An empty array (placeholder).
|
|
144
|
-
*/
|
|
145
|
-
export declare function listAllSessions(): Promise<string[]>;
|
|
146
|
-
/**
|
|
147
|
-
* Attempt to acquire a refresh lock for a session
|
|
148
|
-
* Uses Redis SET with NX (Not eXists) for atomic lock acquisition
|
|
149
|
-
*/
|
|
150
|
-
export declare function acquireRefreshLock(sessionToken: string, requestId: string, maxWaitMs?: number): Promise<{
|
|
151
|
-
acquired: boolean;
|
|
152
|
-
lockInfo?: RefreshLockInfo;
|
|
153
|
-
}>;
|
|
154
|
-
/**
|
|
155
|
-
* Release a refresh lock
|
|
156
|
-
* Uses Lua script to ensure atomic validation and release
|
|
157
|
-
*/
|
|
158
|
-
export declare function releaseRefreshLock(sessionToken: string, requestId: string, lockVersion?: number): Promise<boolean>;
|
|
159
|
-
/**
|
|
160
|
-
* Check if a refresh lock exists for a session
|
|
161
|
-
*/
|
|
162
|
-
export declare function checkRefreshLock(sessionToken: string): Promise<RefreshLockInfo | null>;
|
|
163
|
-
/**
|
|
164
|
-
* Simple check if a refresh is currently in progress for a session
|
|
165
|
-
*/
|
|
166
|
-
export declare function isRefreshInProgress(sessionToken: string): Promise<boolean>;
|
|
167
|
-
/**
|
|
168
|
-
* Force cleanup of expired or orphaned refresh locks
|
|
169
|
-
*/
|
|
170
|
-
export declare function cleanupRefreshLocks(): Promise<number>;
|