@progressive-development/pd-provider-firebase-functions 0.3.1 → 0.3.3

package/dist/auth-trash.d.ts

@@ -0,0 +1,51 @@
+import { TrashItem } from './trash';
+export interface AuthTrashOptions {
+    /**
+     * How to determine the Auth UID from the document.
+     * - 'documentId': Use the document ID as Auth UID (default)
+     * - string: Use this field name from the document data
+     */
+    authUidSource?: "documentId" | string;
+    /** Optional named database */
+    databaseId?: string;
+}
+/**
+ * Move document to trash AND disable the associated Auth user.
+ *
+ * Order of operations:
+ * 1. Disable Auth user (if user doesn't exist, continue anyway)
+ * 2. Move document to trash
+ *
+ * @param collection - The collection path
+ * @param documentId - The document ID to trash
+ * @param deletedBy - UID of the user performing the deletion
+ * @param objectType - Type identifier for filtering
+ * @param options - Auth and database options
+ * @returns The created trash item
+ */
+export declare function moveToTrashWithAuth<T = unknown>(collection: string, documentId: string, deletedBy: string, objectType: string, options?: AuthTrashOptions): Promise<TrashItem<T>>;
+/**
+ * Restore document from trash AND re-enable the Auth user.
+ *
+ * Order of operations:
+ * 1. Get trash item to find Auth UID
+ * 2. Restore document from trash
+ * 3. Re-enable Auth user (if user doesn't exist, log warning)
+ *
+ * @param trashItemId - The trash document ID
+ * @param options - Auth and database options
+ */
+export declare function restoreFromTrashWithAuth(trashItemId: string, options?: AuthTrashOptions): Promise<void>;
+/**
+ * Permanently delete from trash AND delete the Auth user.
+ *
+ * Order of operations:
+ * 1. Get trash item to find Auth UID
+ * 2. Delete from trash
+ * 3. Delete Auth user (ignore if user doesn't exist)
+ *
+ * @param trashItemId - The trash document ID
+ * @param options - Auth and database options
+ */
+export declare function permanentDeleteWithAuth(trashItemId: string, options?: AuthTrashOptions): Promise<void>;
+//# sourceMappingURL=auth-trash.d.ts.map

package/dist/auth-trash.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-trash.d.ts","sourceRoot":"","sources":["../src/auth-trash.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,EAAgE,KAAK,SAAS,EAAE,MAAM,SAAS,CAAC;AAQvG,MAAM,WAAW,gBAAgB;IAC/B;;;;OAIG;IACH,aAAa,CAAC,EAAE,YAAY,GAAG,MAAM,CAAC;IAEtC,8BAA8B;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAkCD;;;;;;;;;;;;;GAaG;AACH,wBAAsB,mBAAmB,CAAC,CAAC,GAAG,OAAO,EACnD,UAAU,EAAE,MAAM,EAClB,UAAU,EAAE,MAAM,EAClB,SAAS,EAAE,MAAM,EACjB,UAAU,EAAE,MAAM,EAClB,OAAO,CAAC,EAAE,gBAAgB,GACzB,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAmCvB;AAED;;;;;;;;;;GAUG;AACH,wBAAsB,wBAAwB,CAC5C,WAAW,EAAE,MAAM,EACnB,OAAO,CAAC,EAAE,gBAAgB,GACzB,OAAO,CAAC,IAAI,CAAC,CAiCf;AAED;;;;;;;;;;GAUG;AACH,wBAAsB,uBAAuB,CAC3C,WAAW,EAAE,MAAM,EACnB,OAAO,CAAC,EAAE,gBAAgB,GACzB,OAAO,CAAC,IAAI,CAAC,CA6Bf"}

package/dist/auth-trash.js

@@ -0,0 +1,96 @@
+import { getAuth } from 'firebase-admin/auth';
+import { moveToTrash, getTrashItem, restoreFromTrash, permanentDelete } from './trash.js';
+import { NotFoundError } from './errors.js';
+import { logger } from './logger.js';
+
+function getAuthUidFromTrashItem(trashItem, options) {
+  const source = options?.authUidSource ?? "documentId";
+  if (source === "documentId") {
+    return trashItem.originalId;
+  }
+  const data = trashItem.data;
+  const uid = data[source];
+  if (typeof uid !== "string" || !uid) {
+    throw new Error(`Auth UID field '${source}' not found or empty in trash item data`);
+  }
+  return uid;
+}
+async function moveToTrashWithAuth(collection, documentId, deletedBy, objectType, options) {
+  const authUid = options?.authUidSource === "documentId" || !options?.authUidSource ? documentId : documentId;
+  logger.info("Disabling Auth user before trash", { authUid, collection, documentId });
+  try {
+    await getAuth().updateUser(authUid, { disabled: true });
+    logger.info("Auth user disabled", { authUid });
+  } catch (error) {
+    const authError = error;
+    if (authError.code === "auth/user-not-found") {
+      logger.info("Auth user not found, continuing with trash operation", { authUid });
+    } else {
+      throw error;
+    }
+  }
+  const trashItem = await moveToTrash(
+    collection,
+    documentId,
+    deletedBy,
+    objectType,
+    options?.databaseId
+  );
+  logger.info("Document moved to trash with Auth disabled", {
+    trashItemId: trashItem.id,
+    authUid
+  });
+  return trashItem;
+}
+async function restoreFromTrashWithAuth(trashItemId, options) {
+  const trashItem = await getTrashItem(trashItemId, options?.databaseId);
+  if (!trashItem) {
+    throw new NotFoundError(`Trash item ${trashItemId} not found`);
+  }
+  const authUid = getAuthUidFromTrashItem(trashItem, options);
+  logger.info("Restoring from trash with Auth re-enable", {
+    trashItemId,
+    authUid,
+    originalCollection: trashItem.originalCollection
+  });
+  await restoreFromTrash(trashItemId, options?.databaseId);
+  try {
+    await getAuth().updateUser(authUid, { disabled: false });
+    logger.info("Document restored and Auth user re-enabled", { trashItemId, authUid });
+  } catch (error) {
+    const authError = error;
+    if (authError.code === "auth/user-not-found") {
+      logger.warn("Document restored but Auth user not found - manual Auth user creation required", {
+        trashItemId,
+        authUid
+      });
+    } else {
+      throw error;
+    }
+  }
+}
+async function permanentDeleteWithAuth(trashItemId, options) {
+  const trashItem = await getTrashItem(trashItemId, options?.databaseId);
+  if (!trashItem) {
+    throw new NotFoundError(`Trash item ${trashItemId} not found`);
+  }
+  const authUid = getAuthUidFromTrashItem(trashItem, options);
+  logger.info("Permanently deleting with Auth user deletion", {
+    trashItemId,
+    authUid
+  });
+  await permanentDelete(trashItemId, options?.databaseId);
+  try {
+    await getAuth().deleteUser(authUid);
+    logger.info("Trash item and Auth user permanently deleted", { trashItemId, authUid });
+  } catch (error) {
+    const authError = error;
+    if (authError.code === "auth/user-not-found") {
+      logger.info("Auth user not found, trash item deleted", { trashItemId, authUid });
+    } else {
+      throw error;
+    }
+  }
+}
+
+export { moveToTrashWithAuth, permanentDeleteWithAuth, restoreFromTrashWithAuth };

package/dist/index.d.ts

@@ -7,5 +7,7 @@ export { getDb } from './firestore';
 export { getNextCounter } from './counter';
 export type { TrashItem } from './trash';
 export { moveToTrash, restoreFromTrash, permanentDelete, listTrash, getTrashItem } from './trash';
+export type { AuthTrashOptions } from './auth-trash';
+export { moveToTrashWithAuth, restoreFromTrashWithAuth, permanentDeleteWithAuth } from './auth-trash';
 export { logger } from './logger';
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,YAAY,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AACxD,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAGrC,OAAO,EAAE,QAAQ,EAAE,eAAe,EAAE,iBAAiB,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAGvG,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,gBAAgB,EAAE,MAAM,QAAQ,CAAC;AAGtE,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAG3D,OAAO,EAAE,KAAK,EAAE,MAAM,aAAa,CAAC;AAGpC,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAG3C,YAAY,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AACzC,OAAO,EAAE,WAAW,EAAE,gBAAgB,EAAE,eAAe,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAGlG,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,YAAY,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AACxD,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAGrC,OAAO,EAAE,QAAQ,EAAE,eAAe,EAAE,iBAAiB,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAGvG,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,gBAAgB,EAAE,MAAM,QAAQ,CAAC;AAGtE,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAG3D,OAAO,EAAE,KAAK,EAAE,MAAM,aAAa,CAAC;AAGpC,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAG3C,YAAY,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AACzC,OAAO,EAAE,WAAW,EAAE,gBAAgB,EAAE,eAAe,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAGlG,YAAY,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AACrD,OAAO,EAAE,mBAAmB,EAAE,wBAAwB,EAAE,uBAAuB,EAAE,MAAM,cAAc,CAAC;AAGtG,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC"}

package/dist/index.js

@@ -5,4 +5,5 @@ export { created, handleError, success } from './response.js';
 export { getDb } from './firestore.js';
 export { getNextCounter } from './counter.js';
 export { getTrashItem, listTrash, moveToTrash, permanentDelete, restoreFromTrash } from './trash.js';
+export { moveToTrashWithAuth, permanentDeleteWithAuth, restoreFromTrashWithAuth } from './auth-trash.js';
 export { logger } from './logger.js';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@progressive-development/pd-provider-firebase-functions",
-  "version": "0.3.1",
+  "version": "0.3.3",
   "description": "Firebase Functions v2 utilities for pd-spa-helper backend",
   "author": "PD Progressive Development",
   "license": "SEE LICENSE IN LICENSE",
@@ -17,15 +17,6 @@
     "README.md",
     "LICENSE"
   ],
-  "scripts": {
-    "build": "vite build",
-    "clean": "rm -rf dist",
-    "clean:all": "rm -rf dist node_modules pnpm-lock.yaml",
-    "lint": "eslint --ext .ts src --ignore-path ../../.eslintignore && prettier \"**/*.ts\" --check --ignore-path ../../.eslintignore",
-    "format": "eslint --ext .ts src --fix --ignore-path ../../.eslintignore && prettier \"**/*.ts\" --write --ignore-path ../../.eslintignore",
-    "check": "pnpm run lint && pnpm run build",
-    "prepublishOnly": "pnpm run clean && pnpm run build"
-  },
   "dependencies": {
     "firebase-admin": "^12.6.0",
     "firebase-functions": "^6.0.0"
@@ -41,5 +32,13 @@
     "firebase",
     "functions",
     "backend"
-  ]
-}
+  ],
+  "scripts": {
+    "build": "vite build",
+    "clean": "rm -rf dist",
+    "clean:all": "rm -rf dist node_modules pnpm-lock.yaml",
+    "lint": "eslint --ext .ts src --ignore-path ../../.eslintignore && prettier \"**/*.ts\" --check --ignore-path ../../.eslintignore",
+    "format": "eslint --ext .ts src --fix --ignore-path ../../.eslintignore && prettier \"**/*.ts\" --write --ignore-path ../../.eslintignore",
+    "check": "pnpm run lint && pnpm run build"
+  }
+}