@plyaz/types 1.27.5 → 1.27.7

package/dist/auth/auth-events.d.ts

@@ -0,0 +1,107 @@
+/**
+ * @fileoverview Authentication event constants for @plyaz/auth
+ * @module @plyaz/auth/constants/auth-events
+ *
+ * @description
+ * Defines standardized event names for authentication system events.
+ * These events are published via @plyaz/events for audit logging and
+ * cross-component communication. Used by repositories, services, and
+ * frontend stores for reactive state management.
+ *
+ * @example
+ * ```typescript
+ * import { AUTH_EVENTS } from '@plyaz/auth';
+ *
+ * // Publish event
+ * eventManager.publish(AUTH_EVENTS.USER_AUTHENTICATED, { userId, provider });
+ *
+ * // Subscribe to event
+ * eventManager.subscribe(AUTH_EVENTS.SESSION_EXPIRED, handleSessionExpiry);
+ * ```
+ */
+/**
+ * Authentication event type constants
+ * Used for event publishing and subscription throughout the auth system
+ */
+export declare const AUTH_EVENTS: {
+    /** User successfully authenticated */
+    readonly USER_AUTHENTICATED: "auth.user.authenticated";
+    /** User signed up (new account created) */
+    readonly USER_SIGNED_UP: "auth.user.signed_up";
+    /** User logged out */
+    readonly USER_LOGGED_OUT: "auth.user.logged_out";
+    /** Authentication attempt failed */
+    readonly AUTHENTICATION_FAILED: "auth.authentication.failed";
+    /** Session created */
+    readonly SESSION_CREATED: "auth.session.created";
+    /** Session expired */
+    readonly SESSION_EXPIRED: "auth.session.expired";
+    /** Session refreshed */
+    readonly SESSION_REFRESHED: "auth.session.refreshed";
+    /** Session invalidated (logout) */
+    readonly SESSION_INVALIDATED: "auth.session.invalidated";
+    /** Account linked to user */
+    readonly ACCOUNT_LINKED: "auth.account.linked";
+    /** Account unlinked from user */
+    readonly ACCOUNT_UNLINKED: "auth.account.unlinked";
+    /** Role assigned to user */
+    readonly ROLE_ASSIGNED: "auth.rbac.role_assigned";
+    /** Role revoked from user */
+    readonly ROLE_REVOKED: "auth.rbac.role_revoked";
+    /** Suspicious login attempt detected */
+    readonly SUSPICIOUS_LOGIN_ATTEMPT: "auth.security.suspicious_login";
+    /** Password changed */
+    readonly PASSWORD_CHANGED: "auth.password.changed";
+    /** Password reset requested */
+    readonly PASSWORD_RESET_REQUESTED: "auth.password.reset_requested";
+};
+/**
+ * Type for authentication event names
+ */
+export type AuthEventTypes = typeof AUTH_EVENTS[keyof typeof AUTH_EVENTS];
+/**
+ * Authentication event payload interfaces
+ */
+export interface AuthEventPayload {
+    /** Base event data */
+    timestamp: Date;
+    /** IP address of the request */
+    ipAddress?: string;
+    /** User agent string */
+    userAgent?: string;
+    /** Additional metadata */
+    metadata?: Record<string, unknown>;
+}
+export interface UserAuthenticatedPayload extends AuthEventPayload {
+    userId: string;
+    provider: string;
+    sessionId: string;
+}
+export interface UserSignedUpPayload extends AuthEventPayload {
+    userId: string;
+    provider: string;
+    email: string;
+}
+export interface UserLoggedOutPayload extends AuthEventPayload {
+    userId: string;
+    sessionId: string;
+}
+export interface AuthenticationFailedPayload extends AuthEventPayload {
+    provider: string;
+    reason: string;
+    email?: string;
+}
+export interface SessionEventPayload extends AuthEventPayload {
+    userId: string;
+    sessionId: string;
+}
+export interface AccountLinkedPayload extends AuthEventPayload {
+    userId: string;
+    provider: string;
+    accountId: string;
+}
+export interface RoleEventPayload extends AuthEventPayload {
+    userId: string;
+    role: string;
+    assignedBy?: string;
+}

package/dist/auth/index.cjs

@@ -248,12 +248,81 @@ var AUTH_ERROR_CODES = {
   ACCOUNT_LOCKED: "AUTH_ACCOUNT_LOCKED",
   ACCOUNT_SUSPENDED: "AUTH_ACCOUNT_SUSPENDED"
 };
+var ERROR_CODE_TO_HTTP_STATUS = {
+  [AUTH_ERROR_CODES.INVALID_CREDENTIALS]: 401,
+  [AUTH_ERROR_CODES.TOKEN_EXPIRED]: 401,
+  [AUTH_ERROR_CODES.TOKEN_INVALID]: 401,
+  [AUTH_ERROR_CODES.TOKEN_REVOKED]: 401,
+  [AUTH_ERROR_CODES.SESSION_EXPIRED]: 401,
+  [AUTH_ERROR_CODES.MFA_REQUIRED]: 401,
+  [AUTH_ERROR_CODES.MFA_INVALID]: 401,
+  [AUTH_ERROR_CODES.INSUFFICIENT_PERMISSIONS]: 403,
+  [AUTH_ERROR_CODES.ROLE_REQUIRED]: 403,
+  [AUTH_ERROR_CODES.WALLET_SIGNATURE_INVALID]: 401,
+  [AUTH_ERROR_CODES.NONCE_EXPIRED]: 401,
+  [AUTH_ERROR_CODES.NONCE_ALREADY_USED]: 401,
+  [AUTH_ERROR_CODES.ACCOUNT_LOCKED]: 423,
+  [AUTH_ERROR_CODES.ACCOUNT_SUSPENDED]: 423
+};
+var ERROR_CODE_DESCRIPTIONS = {
+  [AUTH_ERROR_CODES.INVALID_CREDENTIALS]: "errors.auth.invalid_credentials",
+  [AUTH_ERROR_CODES.TOKEN_EXPIRED]: "errors.auth.token_expired",
+  [AUTH_ERROR_CODES.TOKEN_INVALID]: "errors.auth.token_invalid",
+  [AUTH_ERROR_CODES.TOKEN_REVOKED]: "errors.auth.token_revoked",
+  [AUTH_ERROR_CODES.SESSION_EXPIRED]: "errors.auth.session_expired",
+  [AUTH_ERROR_CODES.MFA_REQUIRED]: "errors.auth.mfa_required",
+  [AUTH_ERROR_CODES.MFA_INVALID]: "errors.auth.mfa_invalid",
+  [AUTH_ERROR_CODES.INSUFFICIENT_PERMISSIONS]: "errors.auth.insufficient_permissions",
+  [AUTH_ERROR_CODES.ROLE_REQUIRED]: "errors.auth.role_required",
+  [AUTH_ERROR_CODES.WALLET_SIGNATURE_INVALID]: "errors.auth.wallet_signature_invalid",
+  [AUTH_ERROR_CODES.NONCE_EXPIRED]: "errors.auth.nonce_expired",
+  [AUTH_ERROR_CODES.NONCE_ALREADY_USED]: "errors.auth.nonce_already_used",
+  [AUTH_ERROR_CODES.ACCOUNT_LOCKED]: "errors.auth.account_locked",
+  [AUTH_ERROR_CODES.ACCOUNT_SUSPENDED]: "errors.auth.account_suspended"
+};
+
+// src/auth/auth-events.ts
+var AUTH_EVENTS = {
+  /** User successfully authenticated */
+  USER_AUTHENTICATED: "auth.user.authenticated",
+  /** User signed up (new account created) */
+  USER_SIGNED_UP: "auth.user.signed_up",
+  /** User logged out */
+  USER_LOGGED_OUT: "auth.user.logged_out",
+  /** Authentication attempt failed */
+  AUTHENTICATION_FAILED: "auth.authentication.failed",
+  /** Session created */
+  SESSION_CREATED: "auth.session.created",
+  /** Session expired */
+  SESSION_EXPIRED: "auth.session.expired",
+  /** Session refreshed */
+  SESSION_REFRESHED: "auth.session.refreshed",
+  /** Session invalidated (logout) */
+  SESSION_INVALIDATED: "auth.session.invalidated",
+  /** Account linked to user */
+  ACCOUNT_LINKED: "auth.account.linked",
+  /** Account unlinked from user */
+  ACCOUNT_UNLINKED: "auth.account.unlinked",
+  /** Role assigned to user */
+  ROLE_ASSIGNED: "auth.rbac.role_assigned",
+  /** Role revoked from user */
+  ROLE_REVOKED: "auth.rbac.role_revoked",
+  /** Suspicious login attempt detected */
+  SUSPICIOUS_LOGIN_ATTEMPT: "auth.security.suspicious_login",
+  /** Password changed */
+  PASSWORD_CHANGED: "auth.password.changed",
+  /** Password reset requested */
+  PASSWORD_RESET_REQUESTED: "auth.password.reset_requested"
+};
 
 exports.AUTH_ERROR_CODES = AUTH_ERROR_CODES;
 exports.AUTH_ERROR_DEFINITIONS = AUTH_ERROR_DEFINITIONS;
+exports.AUTH_EVENTS = AUTH_EVENTS;
 exports.AUTH_PROVIDER = AUTH_PROVIDER;
 exports.AUTH_PROVIDER_TYPE = AUTH_PROVIDER_TYPE;
 exports.ContactUsFormSchema = ContactUsFormSchema;
+exports.ERROR_CODE_DESCRIPTIONS = ERROR_CODE_DESCRIPTIONS;
+exports.ERROR_CODE_TO_HTTP_STATUS = ERROR_CODE_TO_HTTP_STATUS;
 exports.SignupFormSchema = SignupFormSchema;
 exports.TOKEN_TYPE = TOKEN_TYPE;
 exports.USER_ROLE = USER_ROLE;