@solidxai/core 0.1.8-beta.1 → 0.1.8-beta.11

package/README.md

@@ -0,0 +1,197 @@
+# @solidxai/core
+
+> Turn your data models into production-grade enterprise applications — with auth, APIs, roles, and admin views — in minutes, not months.
+
+`@solidxai/core` is the backend engine that powers every [SolidX](https://solidxai.com) application. It is a global NestJS module that wires up a complete, production-ready backend infrastructure — authentication, security, metadata-driven CRUD APIs, notifications, queues, storage providers, dashboards, and more — so you can focus on your business logic rather than rebuilding the same plumbing from scratch.
+
+[![npm version](https://img.shields.io/npm/v/@solidxai/core)](https://www.npmjs.com/package/@solidxai/core)
+[![License: BSL](https://img.shields.io/badge/License-BSL-blue.svg)](https://opensource.org/licenses/BSL-1.1)
+[![Documentation](https://img.shields.io/badge/docs-solidxai.com-blue)](https://docs.solidxai.com/docs)
+
+
+## Why @solidxai/core?
+
+Enterprise applications share a large common surface area — auth flows, role management, CRUD endpoints, file uploads, email and SMS delivery, audit logs, and more. Most teams end up rebuilding these from scratch on every project, or stitching together a dozen separate libraries and hoping they play well together.
+
+`@solidxai/core` solves this by bundling all of that infrastructure into a single, cohesive NestJS module that is:
+
+- **Open-source and standards-based** — built on NestJS, TypeORM, and TypeScript. No black box, no proprietary runtime.
+- **Non-prescriptive** — The code it provides is yours to extend and modify, not locked behind a code generation layer. Use it as a foundation, not a constraint.
+- **Batteries included** — covers the full stack of enterprise concerns so you are not left hunting for a compatible queue library, a storage abstraction, or a permissions guard.
+
+
+## Core Capabilities
+
+### Identity & Access Management (IAM)
+
+A complete IAM system is registered automatically when you import the module.
+
+- **Users** — full user lifecycle management including registration, email verification, password reset and built-in protections such as password hashing, account lockout, and JWT-based access/refresh tokens.
+- **Roles & Permissions** — RBAC where every controller handler is automatically discoverable as a permission; assign permissions to roles and roles to users
+- **Row-Level Security Rules** — define role-aware record access policies automatically enforced at the repository layer.
+
+### Authentication
+
+Multiple authentication strategies available out of the box, all issuing standard JWT tokens:
+
+- **Password-based** — bcrypt hashing, forgot/reset password flows
+- **OTP / Passwordless** — one-time password login via SMS or email
+- **Google OAuth2** — full Google OAuth2 flow, with redirect handling and JWT issuance
+- **Token Management** — access/refresh token authentication with configurable expiry and Redis-backed refresh token storage (with in-memory fallback if Redis is not configured).
+
+### Metadata-driven CRUD Engine
+
+The heart of the platform. Define your data model in metadata (modules → models → fields) and get a fully functional REST API immediately.
+
+- **Generic CRUDService** — field-aware create, update, read, and delete that understands 20+ semantic field types (relations, media, computed fields, pseudo-foreign keys, and more)
+- **Filtering, sorting & pagination** — every list endpoint supports rich filter expressions, multi-column sorting, group by functionality and pagination
+- **Import & Export** — Excel (`.xlsx`) and CSV import/export for every resource, with async job tracking
+- **Audit trail** — automatic `created_by`, `updated_by`, and change history, configurable per model
+- **Soft delete** — configurable per model, with security-aware filter application
+- **Saved filters** — users can persist named query configurations against any resource
+- **Computed fields** — define fields whose values are derived at persistence time (concat, UUID external IDs, sequence numbers, and custom computation)
+
+### Notifications
+
+A unified notification layer with provider abstractions so you can swap providers without touching application code.
+
+- **Email** — SMTP support; Handlebars-based template management with attachment support
+- **SMS** — Twilio and MSG91
+- **WhatsApp** — MSG91 and 3Sixty
+- **Queue-backed delivery** — all notifications are dispatched asynchronously; choose between RabbitMQ, or a database-backed queue depending on your infrastructure
+
+### Storage
+
+- **Media management** — upload, store, retrieve, and serve files through a unified media entity
+- **Provider abstraction** — local disk and AWS S3 are supported; switch providers via configuration with no code changes
+- **AWS Textract** — built-in OCR service for document extraction use cases
+
+### Dashboards
+
+A SQL-driven dashboard builder that lets you compose analytical views without a separate BI tool.
+
+- **Dashboard → Questions → Variables** model for composing charts and data tables
+- **SQL dataset configs** — write raw SQL, bind dynamic variables at query time
+- **Security-aware aggregates** — `count`, `sum`, `avg`, `min`, `max` all respect the active user's security rules
+- **Chart types** — bar, line, pie, doughnut, data table, meter group
+
+### Chatter
+
+- Per-record messaging thread and activity feed
+- Useful for collaboration workflows, approval chains, and record-level audit commentary
+
+### Scheduler
+
+- Define and manage cron jobs at runtime via the admin API — no deployments required to add or modify scheduled tasks
+- Jobs are stored in the database and executed by the built-in scheduler service, which can be run in a separate process if desired
+
+### CLI Tooling
+
+The module ships a `solidctl` package that provides a suite of command-line tools for common development and maintenance tasks:
+
+```bash
+npx @solidxai/solidctl seed                  # Seed application metadata i.e system modules, roles, and permissions, user accounts, and more
+npx @solidxai/solidctl test-data             # Load test data fixtures
+npx @solidxai/solidctl run-tests             # Execute metadata-driven test scenarios
+npx @solidxai/solidctl generate module       # Create/Update boilerplate for a specific module
+npx @solidxai/solidctl generate model        # Create/Update boilerplate for a specific model
+npx @solidxai/solidctl fixtures-setup        # Set up test fixtures before a test run
+npx @solidxai/solidctl fixtures-tear-down    # Tear down test fixtures after a test run
+npx @solidxai/solidctl info                  # Display CLI and environment information
+```
+
+### Testing Framework
+
+A metadata-driven end-to-end testing system built directly into the module. Define test scenarios in your module metadata JSON, then run them via the CLI.
+
+- **API adapter** — executes scenarios against live REST endpoints using Axios
+- **UI adapter** — drives a Playwright browser for full end-to-end UI tests
+- **20+ built-in operations** — `api.request`, `ui.fill`, `assert.equals`, `assert.contains`, and more
+- **Custom spec escape hatch** — drop into raw TypeScript for scenarios that need custom logic
+
+
+## Installation
+
+```bash
+npm install @solidxai/core
+```
+
+### Peer dependencies
+
+```bash
+npm install \
+  @nestjs/common @nestjs/core @nestjs/platform-express \
+  @nestjs/typeorm @nestjs/config @nestjs/jwt @nestjs/passport \
+  @nestjs/swagger @nestjs/axios @nestjs/cache-manager \
+  @nestjs/event-emitter @nestjs/mongoose @nestjs/serve-static \
+  nest-commander nest-winston nestjs-cls \
+  typeorm typeorm-naming-strategies \
+  reflect-metadata winston
+```
+
+Playwright is optional and only required if you intend to use the UI test adapter:
+
+```bash
+npm install --save-optional playwright
+```
+
+
+## Quick Setup
+
+Import `SolidCoreModule` into your root application module. Because it is decorated with `@Global()`, all its exported services become available throughout your application without needing to re-import them.
+
+```typescript
+import { Module } from '@nestjs/common';
+import { TypeOrmModule } from '@nestjs/typeorm';
+import { SolidCoreModule } from '@solidxai/core';
+
+@Module({
+  imports: [
+    TypeOrmModule.forRoot({
+      type: 'postgres',
+      // ... your database config
+    }),
+    SolidCoreModule,
+  ],
+})
+export class AppModule {}
+```
+
+For full configuration options — environment variables, storage providers, queue setup, and OAuth credentials — see the [Developer Documentation](https://docs.solidxai.com/docs).
+
+
+## Technology Stack
+
+| Concern | Technology |
+|---|---|
+| Framework | NestJS 10 |
+| ORM | TypeORM (PostgreSQL, MS SQL) |
+| Authentication | Database Authentication supporting pasword and otp login, Google OAuth2 |
+| Queues | RabbitMQ · Database-backed |
+| Storage | AWS S3 · Local disk |
+| Email | SMTP (Nodemailer) |
+| SMS / WhatsApp | Twilio · MSG91 · 3Sixty |
+| Caching | Redis · In-memory (cache-manager) |
+| PDF generation | Puppeteer |
+| CLI | nest-commander |
+| Logging | Winston |
+
+---
+
+## Part of the SolidX Platform
+
+`@solidxai/core` is the backend foundation of the [SolidX](https://solidxai.com) low-code development platform. SolidX takes a metadata-first approach — you describe your application's data models, and the platform generates fully open-source, standards-based NestJS + React code that your team owns outright.
+
+The output is not locked into a proprietary runtime. It runs on the same stack your developers already know — NestJS, TypeORM, React — and can be extended, forked, and deployed independently.
+
+| | |
+|---|---|
+| Website | [solidxai.com](https://solidxai.com) |
+| Documentation | [docs.solidxai.com](https://docs.solidxai.com/docs) |
+| Support | support@solidxai.com |
+
+---
+
+## License
+
+BSL-1.1 © [Logicloop](https://logicloop.io)

package/dist/controllers/authentication.controller.d.ts

@@ -1,18 +1,24 @@
 import { Response } from 'express';
 import { ChangePasswordDto } from "../dtos/change-password.dto";
 import { ConfirmForgotPasswordDto } from '../dtos/confirm-forgot-password.dto';
+import { CreateApiKeyDto } from '../dtos/create-api-key.dto';
+import { UpdateApiKeyDto } from '../dtos/update-api-key.dto';
 import { InitiateForgotPasswordDto } from '../dtos/initiate-forgot-password.dto';
 import { RefreshTokenDto } from '../dtos/refresh-token.dto';
+import { SsoExchangeDto } from '../dtos/sso-exchange.dto';
 import { SignInDto } from '../dtos/sign-in.dto';
+import { RegisterPrivateDto } from '../dtos/register-private.dto';
 import { SignUpDto } from '../dtos/sign-up.dto';
 import { ActiveUserData } from "../interfaces/active-user-data.interface";
+import { ApiKeyService } from '../services/api-key.service';
 import { AuthenticationService } from '../services/authentication.service';
 export declare class AuthenticationController {
     private readonly authService;
+    private readonly apiKeyService;
     private readonly logger;
-    constructor(authService: AuthenticationService);
+    constructor(authService: AuthenticationService, apiKeyService: ApiKeyService);
     signUp(signUpDto: SignUpDto): Promise<import("..").User>;
-    signUpPrivate(signUpDto: SignUpDto, activeUser: ActiveUserData): Promise<import("..").User>;
+    signUpPrivate(signUpDto: RegisterPrivateDto, activeUser: ActiveUserData): Promise<import("..").User>;
     signIn(response: Response, signInDto: SignInDto): Promise<{
         accessToken: string;
         refreshToken: string;
@@ -61,5 +67,29 @@ export declare class AuthenticationController {
     logout(refreshToken: string): Promise<{
         message: string;
     }>;
+    generateApiKey(dto: CreateApiKeyDto, activeUser: ActiveUserData): Promise<{
+        apiKey: string;
+        record: import("..").UserApiKey;
+    }>;
+    generateApiKeyForUser(userId: number, dto: CreateApiKeyDto): Promise<{
+        apiKey: string;
+        record: import("..").UserApiKey;
+    }>;
+    updateApiKey(id: number, dto: UpdateApiKeyDto, activeUser: ActiveUserData): Promise<void>;
+    generateSsoCode(activeUser: ActiveUserData, authorization: string): Promise<{
+        ssoCode: string;
+    }>;
+    exchangeSsoCode(ssoExchangeDto: SsoExchangeDto): Promise<{
+        accessToken: string;
+        refreshToken: string;
+        user: {
+            id: number;
+            username: string;
+            email: string;
+            mobile: string;
+            lastLoginProvider: string;
+            roles: string[];
+        };
+    }>;
 }
 //# sourceMappingURL=authentication.controller.d.ts.map

package/dist/controllers/authentication.controller.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"authentication.controller.d.ts","sourceRoot":"","sources":["../../src/controllers/authentication.controller.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAGnC,OAAO,EAAE,iBAAiB,EAAE,MAAM,6BAA6B,CAAC;AAChE,OAAO,EAAE,wBAAwB,EAAE,MAAM,qCAAqC,CAAC;AAC/E,OAAO,EAAE,yBAAyB,EAAE,MAAM,sCAAsC,CAAC;AACjF,OAAO,EAAE,eAAe,EAAE,MAAM,2BAA2B,CAAC;AAC5D,OAAO,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAC;AAChD,OAAO,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAC;AAChD,OAAO,EAAE,cAAc,EAAE,MAAM,0CAA0C,CAAC;AAC1E,OAAO,EAAE,qBAAqB,EAAE,MAAM,oCAAoC,CAAC;AAI3E,qBAIa,wBAAwB;IAGrB,OAAO,CAAC,QAAQ,CAAC,WAAW;IAFxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAA6C;gBAEvC,WAAW,EAAE,qBAAqB;IAK/D,MAAM,CAAS,SAAS,EAAE,SAAS;IAMnC,aAAa,CAAS,SAAS,EAAE,SAAS,EAAgB,UAAU,EAAE,cAAc;IAQ9E,MAAM,CACoB,QAAQ,EAAE,QAAQ,EACtC,SAAS,EAAE,SAAS;;;;;;;;;;;;IAqBhC,aAAa,CAAS,eAAe,EAAE,eAAe;;;;IAOtD,sBAAsB,CAAS,yBAAyB,EAAE,yBAAyB;;;;;;;;;;;IAOnF,qBAAqB,CAAS,wBAAwB,EAAE,wBAAwB;;;;;;;IAMhF,cAAc,CAAS,iBAAiB,EAAE,iBAAiB,EAAgB,UAAU,EAAE,cAAc;IAMrG,EAAE,CACgB,UAAU,EAAE,cAAc;;;;;;;;;;IAStC,MAAM,CAAuB,YAAY,EAAE,MAAM;;;CAG1D"}
+{"version":3,"file":"authentication.controller.d.ts","sourceRoot":"","sources":["../../src/controllers/authentication.controller.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAGnC,OAAO,EAAE,iBAAiB,EAAE,MAAM,6BAA6B,CAAC;AAChE,OAAO,EAAE,wBAAwB,EAAE,MAAM,qCAAqC,CAAC;AAC/E,OAAO,EAAE,eAAe,EAAE,MAAM,4BAA4B,CAAC;AAC7D,OAAO,EAAE,eAAe,EAAE,MAAM,4BAA4B,CAAC;AAC7D,OAAO,EAAE,yBAAyB,EAAE,MAAM,sCAAsC,CAAC;AACjF,OAAO,EAAE,eAAe,EAAE,MAAM,2BAA2B,CAAC;AAC5D,OAAO,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAC;AAC1D,OAAO,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAC;AAChD,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAClE,OAAO,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAC;AAChD,OAAO,EAAE,cAAc,EAAE,MAAM,0CAA0C,CAAC;AAC1E,OAAO,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAC5D,OAAO,EAAE,qBAAqB,EAAE,MAAM,oCAAoC,CAAC;AAI3E,qBAIa,wBAAwB;IAI7B,OAAO,CAAC,QAAQ,CAAC,WAAW;IAC5B,OAAO,CAAC,QAAQ,CAAC,aAAa;IAJlC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAA6C;gBAG/C,WAAW,EAAE,qBAAqB,EAClC,aAAa,EAAE,aAAa;IAMjD,MAAM,CAAS,SAAS,EAAE,SAAS;IAMnC,aAAa,CAAS,SAAS,EAAE,kBAAkB,EAAgB,UAAU,EAAE,cAAc;IAQvF,MAAM,CACoB,QAAQ,EAAE,QAAQ,EACtC,SAAS,EAAE,SAAS;;;;;;;;;;;;IAqBhC,aAAa,CAAS,eAAe,EAAE,eAAe;;;;IAOtD,sBAAsB,CAAS,yBAAyB,EAAE,yBAAyB;;;;;;;;;;;IAOnF,qBAAqB,CAAS,wBAAwB,EAAE,wBAAwB;;;;;;;IAMhF,cAAc,CAAS,iBAAiB,EAAE,iBAAiB,EAAgB,UAAU,EAAE,cAAc;IAMrG,EAAE,CACgB,UAAU,EAAE,cAAc;;;;;;;;;;IAStC,MAAM,CAAuB,YAAY,EAAE,MAAM;;;IAOvD,cAAc,CACF,GAAG,EAAE,eAAe,EACd,UAAU,EAAE,cAAc;;;;IAQ5C,qBAAqB,CACc,MAAM,EAAE,MAAM,EACrC,GAAG,EAAE,eAAe;;;;IAQhC,YAAY,CACmB,EAAE,EAAE,MAAM,EAC7B,GAAG,EAAE,eAAe,EACd,UAAU,EAAE,cAAc;IAO5C,eAAe,CACG,UAAU,EAAE,cAAc,EACd,aAAa,EAAE,MAAM;;;IASnD,eAAe,CAAS,cAAc,EAAE,cAAc;;;;;;;;;;;;CAGzD"}

package/dist/controllers/authentication.controller.js

@@ -21,14 +21,20 @@ const active_user_decorator_1 = require("../decorators/active-user.decorator");
 const public_decorator_1 = require("../decorators/public.decorator");
 const change_password_dto_1 = require("../dtos/change-password.dto");
 const confirm_forgot_password_dto_1 = require("../dtos/confirm-forgot-password.dto");
+const create_api_key_dto_1 = require("../dtos/create-api-key.dto");
+const update_api_key_dto_1 = require("../dtos/update-api-key.dto");
 const initiate_forgot_password_dto_1 = require("../dtos/initiate-forgot-password.dto");
 const refresh_token_dto_1 = require("../dtos/refresh-token.dto");
+const sso_exchange_dto_1 = require("../dtos/sso-exchange.dto");
 const sign_in_dto_1 = require("../dtos/sign-in.dto");
+const register_private_dto_1 = require("../dtos/register-private.dto");
 const sign_up_dto_1 = require("../dtos/sign-up.dto");
+const api_key_service_1 = require("../services/api-key.service");
 const authentication_service_1 = require("../services/authentication.service");
 let AuthenticationController = AuthenticationController_1 = class AuthenticationController {
-    constructor(authService) {
+    constructor(authService, apiKeyService) {
         this.authService = authService;
+        this.apiKeyService = apiKeyService;
         this.logger = new common_1.Logger(AuthenticationController_1.name);
     }
     signUp(signUpDto) {
@@ -58,6 +64,22 @@ let AuthenticationController = AuthenticationController_1 = class Authentication
     async logout(refreshToken) {
         return this.authService.logout(refreshToken);
     }
+    generateApiKey(dto, activeUser) {
+        return this.apiKeyService.generate(activeUser.sub, dto);
+    }
+    generateApiKeyForUser(userId, dto) {
+        return this.apiKeyService.generate(userId, dto);
+    }
+    updateApiKey(id, dto, activeUser) {
+        return this.apiKeyService.updateKey(id, activeUser.sub, dto);
+    }
+    generateSsoCode(activeUser, authorization) {
+        const rawAccessToken = authorization?.replace(/^Bearer\s+/i, '');
+        return this.authService.generateSsoCode(activeUser, rawAccessToken);
+    }
+    exchangeSsoCode(ssoExchangeDto) {
+        return this.authService.exchangeSsoCode(ssoExchangeDto.code);
+    }
 };
 exports.AuthenticationController = AuthenticationController;
 __decorate([
@@ -76,7 +98,7 @@ __decorate([
     __param(0, (0, common_1.Body)()),
     __param(1, (0, active_user_decorator_1.ActiveUser)()),
     __metadata("design:type", Function),
-    __metadata("design:paramtypes", [sign_up_dto_1.SignUpDto, Object]),
+    __metadata("design:paramtypes", [register_private_dto_1.RegisterPrivateDto, Object]),
     __metadata("design:returntype", void 0)
 ], AuthenticationController.prototype, "signUpPrivate", null);
 __decorate([
@@ -148,9 +170,64 @@ __decorate([
     __metadata("design:paramtypes", [String]),
     __metadata("design:returntype", Promise)
 ], AuthenticationController.prototype, "logout", null);
+__decorate([
+    (0, swagger_1.ApiBearerAuth)("jwt"),
+    (0, common_1.Post)('api-keys'),
+    (0, common_1.HttpCode)(common_1.HttpStatus.CREATED),
+    openapi.ApiResponse({ status: common_1.HttpStatus.CREATED }),
+    __param(0, (0, common_1.Body)()),
+    __param(1, (0, active_user_decorator_1.ActiveUser)()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [create_api_key_dto_1.CreateApiKeyDto, Object]),
+    __metadata("design:returntype", void 0)
+], AuthenticationController.prototype, "generateApiKey", null);
+__decorate([
+    (0, swagger_1.ApiBearerAuth)("jwt"),
+    (0, common_1.Post)('api-keys/users/:userId'),
+    (0, common_1.HttpCode)(common_1.HttpStatus.CREATED),
+    openapi.ApiResponse({ status: common_1.HttpStatus.CREATED }),
+    __param(0, (0, common_1.Param)('userId', common_1.ParseIntPipe)),
+    __param(1, (0, common_1.Body)()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Number, create_api_key_dto_1.CreateApiKeyDto]),
+    __metadata("design:returntype", void 0)
+], AuthenticationController.prototype, "generateApiKeyForUser", null);
+__decorate([
+    (0, swagger_1.ApiBearerAuth)("jwt"),
+    (0, common_1.Patch)('api-keys/:id'),
+    (0, common_1.HttpCode)(common_1.HttpStatus.OK),
+    openapi.ApiResponse({ status: common_1.HttpStatus.OK }),
+    __param(0, (0, common_1.Param)('id', common_1.ParseIntPipe)),
+    __param(1, (0, common_1.Body)()),
+    __param(2, (0, active_user_decorator_1.ActiveUser)()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Number, update_api_key_dto_1.UpdateApiKeyDto, Object]),
+    __metadata("design:returntype", void 0)
+], AuthenticationController.prototype, "updateApiKey", null);
+__decorate([
+    (0, common_1.Post)('sso/code'),
+    (0, common_1.HttpCode)(common_1.HttpStatus.OK),
+    openapi.ApiResponse({ status: common_1.HttpStatus.OK }),
+    __param(0, (0, active_user_decorator_1.ActiveUser)()),
+    __param(1, (0, common_1.Headers)('authorization')),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object, String]),
+    __metadata("design:returntype", void 0)
+], AuthenticationController.prototype, "generateSsoCode", null);
+__decorate([
+    (0, public_decorator_1.Public)(),
+    (0, common_1.Post)('sso/exchange'),
+    (0, common_1.HttpCode)(common_1.HttpStatus.OK),
+    openapi.ApiResponse({ status: common_1.HttpStatus.OK }),
+    __param(0, (0, common_1.Body)()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [sso_exchange_dto_1.SsoExchangeDto]),
+    __metadata("design:returntype", void 0)
+], AuthenticationController.prototype, "exchangeSsoCode", null);
 exports.AuthenticationController = AuthenticationController = AuthenticationController_1 = __decorate([
     (0, common_1.Controller)('iam'),
     (0, swagger_1.ApiTags)("Solid Core"),
-    __metadata("design:paramtypes", [authentication_service_1.AuthenticationService])
+    __metadata("design:paramtypes", [authentication_service_1.AuthenticationService,
+        api_key_service_1.ApiKeyService])
 ], AuthenticationController);
 //# sourceMappingURL=authentication.controller.js.map

package/dist/controllers/authentication.controller.js.map

@@ -1 +1 @@
-{"version":3,"file":"authentication.controller.js","sourceRoot":"","sources":["../../src/controllers/authentication.controller.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;AAAA,2CAAgG;AAChG,6CAAyD;AAEzD,+EAAiE;AACjE,qEAAwD;AACxD,qEAAgE;AAChE,qFAA+E;AAC/E,uFAAiF;AACjF,iEAA4D;AAC5D,qDAAgD;AAChD,qDAAgD;AAEhD,+EAA2E;AAQpE,IAAM,wBAAwB,gCAA9B,MAAM,wBAAwB;IAGjC,YAA6B,WAAkC;QAAlC,gBAAW,GAAX,WAAW,CAAuB;QAF9C,WAAM,GAAG,IAAI,eAAM,CAAC,0BAAwB,CAAC,IAAI,CAAC,CAAC;IAED,CAAC;IAKpE,MAAM,CAAS,SAAoB;QAC/B,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IAC9C,CAAC;IAID,aAAa,CAAS,SAAoB,EAAgB,UAA0B;QAChF,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;IAC1D,CAAC;IAMK,AAAN,KAAK,CAAC,MAAM,CACoB,QAAkB,EACtC,SAAoB;QAM5B,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IAS9C,CAAC;IAMD,aAAa,CAAS,eAAgC;QAClD,OAAO,IAAI,CAAC,WAAW,CAAC,aAAa,CAAC,eAAe,CAAC,CAAC;IAC3D,CAAC;IAKD,sBAAsB,CAAS,yBAAoD;QAC/E,OAAO,IAAI,CAAC,WAAW,CAAC,sBAAsB,CAAC,yBAAyB,CAAC,CAAC;IAC9E,CAAC;IAKD,qBAAqB,CAAS,wBAAkD;QAC5E,OAAO,IAAI,CAAC,WAAW,CAAC,qBAAqB,CAAC,wBAAwB,CAAC,CAAC;IAC5E,CAAC;IAID,cAAc,CAAS,iBAAoC,EAAgB,UAA0B;QACjG,OAAO,IAAI,CAAC,WAAW,CAAC,cAAc,CAAC,iBAAiB,EAAE,UAAU,CAAC,CAAC;IAC1E,CAAC;IAID,EAAE,CACgB,UAA0B;QAExC,OAAO,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC,UAAU,CAAC,CAAC;IAC3C,CAAC;IAMK,AAAN,KAAK,CAAC,MAAM,CAAuB,YAAoB;QACnD,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;IACjD,CAAC;CACJ,CAAA;AApFY,4DAAwB;AAQjC;IAHC,IAAA,yBAAM,GAAE;IAER,IAAA,aAAI,EAAC,UAAU,CAAC;;IACT,WAAA,IAAA,aAAI,GAAE,CAAA;;qCAAY,uBAAS;;sDAElC;AAID;IAFC,IAAA,uBAAa,EAAC,KAAK,CAAC;IACpB,IAAA,aAAI,EAAC,kBAAkB,CAAC;;IACV,WAAA,IAAA,aAAI,GAAE,CAAA;IAAwB,WAAA,IAAA,kCAAU,GAAE,CAAA;;qCAAxB,uBAAS;;6DAEzC;AAMK;IAJL,IAAA,yBAAM,GAAE;IAER,IAAA,iBAAQ,EAAC,mBAAU,CAAC,EAAE,CAAC;IACvB,IAAA,aAAI,EAAC,cAAc,CAAC;kCADX,mBAAU,CAAC,EAAE;IAGlB,WAAA,IAAA,YAAG,EAAC,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,CAAA;IAC1B,WAAA,IAAA,aAAI,GAAE,CAAA;;6CAAY,uBAAS;;sDAe/B;AAMD;IAJC,IAAA,yBAAM,GAAE;IAER,IAAA,iBAAQ,EAAC,mBAAU,CAAC,EAAE,CAAC;IACvB,IAAA,aAAI,EAAC,gBAAgB,CAAC;kCADb,mBAAU,CAAC,EAAE;IAER,WAAA,IAAA,aAAI,GAAE,CAAA;;qCAAkB,mCAAe;;6DAErD;AAKD;IAHC,IAAA,yBAAM,GAAE;IAER,IAAA,aAAI,EAAC,0BAA0B,CAAC;;IACT,WAAA,IAAA,aAAI,GAAE,CAAA;;qCAA4B,wDAAyB;;sEAElF;AAKD;IAHC,IAAA,yBAAM,GAAE;IAER,IAAA,aAAI,EAAC,yBAAyB,CAAC;;IACT,WAAA,IAAA,aAAI,GAAE,CAAA;;qCAA2B,sDAAwB;;qEAE/E;AAID;IAFC,IAAA,uBAAa,EAAC,KAAK,CAAC;IACpB,IAAA,aAAI,EAAC,iBAAiB,CAAC;;IACR,WAAA,IAAA,aAAI,GAAE,CAAA;IAAwC,WAAA,IAAA,kCAAU,GAAE,CAAA;;qCAAhC,uCAAiB;;8DAE1D;AAID;IAFC,IAAA,uBAAa,EAAC,KAAK,CAAC;IACpB,IAAA,YAAG,EAAC,IAAI,CAAC;;IAEL,WAAA,IAAA,kCAAU,GAAE,CAAA;;;;kDAGhB;AAMK;IAJL,IAAA,uBAAa,EAAC,KAAK,CAAC;IACpB,IAAA,aAAI,EAAC,QAAQ,CAAC;IACd,IAAA,yBAAM,GAAE;IACR,IAAA,iBAAQ,EAAC,mBAAU,CAAC,EAAE,CAAC;kCAAd,mBAAU,CAAC,EAAE;IACT,WAAA,IAAA,aAAI,EAAC,cAAc,CAAC,CAAA;;;;sDAEjC;mCAnFQ,wBAAwB;IAJpC,IAAA,mBAAU,EAAC,KAAK,CAAC;IACjB,IAAA,iBAAO,EAAC,YAAY,CAAC;qCAMwB,8CAAqB;GAHtD,wBAAwB,CAoFpC","sourcesContent":["import { Body, Controller, Get, HttpCode, HttpStatus, Logger, Post, Res } from '@nestjs/common';\nimport { ApiBearerAuth, ApiTags } from '@nestjs/swagger';\nimport { Response } from 'express';\nimport { ActiveUser } from \"../decorators/active-user.decorator\";\nimport { Public } from '../decorators/public.decorator';\nimport { ChangePasswordDto } from \"../dtos/change-password.dto\";\nimport { ConfirmForgotPasswordDto } from '../dtos/confirm-forgot-password.dto';\nimport { InitiateForgotPasswordDto } from '../dtos/initiate-forgot-password.dto';\nimport { RefreshTokenDto } from '../dtos/refresh-token.dto';\nimport { SignInDto } from '../dtos/sign-in.dto';\nimport { SignUpDto } from '../dtos/sign-up.dto';\nimport { ActiveUserData } from \"../interfaces/active-user-data.interface\";\nimport { AuthenticationService } from '../services/authentication.service';\n\n\n// @Auth(AuthType.None)\n@Controller('iam')\n@ApiTags(\"Solid Core\")\n// @UseGuards(ThrottlerGuard)\n// @SkipThrottle({login: true, short: true, burst: true, sustained: true}) // disable all sets by default for this controller\nexport class AuthenticationController {\n    private readonly logger = new Logger(AuthenticationController.name);\n\n    constructor(private readonly authService: AuthenticationService) { }\n\n    @Public()\n    // @SkipThrottle({ login: false, short: true, burst: true, sustained: true }) //Enable the login throttle only\n    @Post('register')\n    signUp(@Body() signUpDto: SignUpDto) {\n        return this.authService.signUp(signUpDto);\n    }\n\n    @ApiBearerAuth(\"jwt\")\n    @Post('register-private')\n    signUpPrivate(@Body() signUpDto: SignUpDto, @ActiveUser() activeUser: ActiveUserData) {\n        return this.authService.signUp(signUpDto, activeUser);\n    }\n\n    @Public()\n    // @SkipThrottle({ login: false, short: true, burst: true, sustained: true }) //Enable the login throttle only\n    @HttpCode(HttpStatus.OK) // by default @Post does 201, we wanted 200 - hence using @HttpCode(HttpStatus.OK)\n    @Post('authenticate')\n    async signIn(\n        @Res({ passthrough: true }) response: Response,\n        @Body() signInDto: SignInDto\n    ) {\n        // This means that we are passing the token back in plain text. \n        // This is less secure. \n        // console.log(\"signInDto in Signin Controller\", signInDto);\n\n        return this.authService.signIn(signInDto);\n\n        // This means we are setting the token as a http only cookie.\n        // const accessToken = await this.authService.signIn(signInDto);\n        // response.cookie('accessToken', accessToken, {\n        //     secure: true,\n        //     httpOnly: true,\n        //     sameSite: true,\n        //   });\n    }\n\n    @Public()\n    // @SkipThrottle({ login: false, short: true, burst: true, sustained: true }) //Enable the login throttle only\n    @HttpCode(HttpStatus.OK) // changed since the default is 201\n    @Post('refresh-tokens')\n    refreshTokens(@Body() refreshTokenDto: RefreshTokenDto) {\n        return this.authService.refreshTokens(refreshTokenDto);\n    }\n\n    @Public()\n    // @SkipThrottle({ login: false, short: true, burst: true, sustained: true }) //Enable the login throttle only\n    @Post('initiate/forgot-password')\n    initiateForgotPassword(@Body() initiateForgotPasswordDto: InitiateForgotPasswordDto) {\n        return this.authService.initiateForgotPassword(initiateForgotPasswordDto);\n    }\n\n    @Public()\n    // @SkipThrottle({ login: false, short: true, burst: true, sustained: true }) //Enable the login throttle only\n    @Post('confirm/forgot-password')\n    confirmForgotPassword(@Body() confirmForgotPasswordDto: ConfirmForgotPasswordDto) {\n        return this.authService.confirmForgotPassword(confirmForgotPasswordDto);\n    }\n\n    @ApiBearerAuth(\"jwt\")\n    @Post('change-password')\n    changePassword(@Body() changePasswordDto: ChangePasswordDto, @ActiveUser() activeUser: ActiveUserData) {\n        return this.authService.changePassword(changePasswordDto, activeUser);\n    }\n\n    @ApiBearerAuth(\"jwt\")\n    @Get('me')\n    me(\n        @ActiveUser() activeUser: ActiveUserData\n    ) {\n        return this.authService.me(activeUser);\n    }\n\n    @ApiBearerAuth(\"jwt\")\n    @Post('logout')\n    @Public()\n    @HttpCode(HttpStatus.OK)\n    async logout(@Body('refreshToken') refreshToken: string) {\n        return this.authService.logout(refreshToken);\n    }\n}\n"]}
+{"version":3,"file":"authentication.controller.js","sourceRoot":"","sources":["../../src/controllers/authentication.controller.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;AAAA,2CAAqI;AACrI,6CAAyD;AAEzD,+EAAiE;AACjE,qEAAwD;AACxD,qEAAgE;AAChE,qFAA+E;AAC/E,mEAA6D;AAC7D,mEAA6D;AAC7D,uFAAiF;AACjF,iEAA4D;AAC5D,+DAA0D;AAC1D,qDAAgD;AAChD,uEAAkE;AAClE,qDAAgD;AAEhD,iEAA4D;AAC5D,+EAA2E;AAQpE,IAAM,wBAAwB,gCAA9B,MAAM,wBAAwB;IAGjC,YACqB,WAAkC,EAClC,aAA4B;QAD5B,gBAAW,GAAX,WAAW,CAAuB;QAClC,kBAAa,GAAb,aAAa,CAAe;QAJhC,WAAM,GAAG,IAAI,eAAM,CAAC,0BAAwB,CAAC,IAAI,CAAC,CAAC;IAKhE,CAAC;IAKL,MAAM,CAAS,SAAoB;QAC/B,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IAC9C,CAAC;IAID,aAAa,CAAS,SAA6B,EAAgB,UAA0B;QACzF,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;IAC1D,CAAC;IAMK,AAAN,KAAK,CAAC,MAAM,CACoB,QAAkB,EACtC,SAAoB;QAM5B,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IAS9C,CAAC;IAMD,aAAa,CAAS,eAAgC;QAClD,OAAO,IAAI,CAAC,WAAW,CAAC,aAAa,CAAC,eAAe,CAAC,CAAC;IAC3D,CAAC;IAKD,sBAAsB,CAAS,yBAAoD;QAC/E,OAAO,IAAI,CAAC,WAAW,CAAC,sBAAsB,CAAC,yBAAyB,CAAC,CAAC;IAC9E,CAAC;IAKD,qBAAqB,CAAS,wBAAkD;QAC5E,OAAO,IAAI,CAAC,WAAW,CAAC,qBAAqB,CAAC,wBAAwB,CAAC,CAAC;IAC5E,CAAC;IAID,cAAc,CAAS,iBAAoC,EAAgB,UAA0B;QACjG,OAAO,IAAI,CAAC,WAAW,CAAC,cAAc,CAAC,iBAAiB,EAAE,UAAU,CAAC,CAAC;IAC1E,CAAC;IAID,EAAE,CACgB,UAA0B;QAExC,OAAO,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC,UAAU,CAAC,CAAC;IAC3C,CAAC;IAMK,AAAN,KAAK,CAAC,MAAM,CAAuB,YAAoB;QACnD,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;IACjD,CAAC;IAKD,cAAc,CACF,GAAoB,EACd,UAA0B;QAExC,OAAO,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,UAAU,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;IAC5D,CAAC;IAKD,qBAAqB,CACc,MAAc,EACrC,GAAoB;QAE5B,OAAO,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IACpD,CAAC;IAKD,YAAY,CACmB,EAAU,EAC7B,GAAoB,EACd,UAA0B;QAExC,OAAO,IAAI,CAAC,aAAa,CAAC,SAAS,CAAC,EAAE,EAAE,UAAU,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;IACjE,CAAC;IAID,eAAe,CACG,UAA0B,EACd,aAAqB;QAE/C,MAAM,cAAc,GAAG,aAAa,EAAE,OAAO,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC;QACjE,OAAO,IAAI,CAAC,WAAW,CAAC,eAAe,CAAC,UAAU,EAAE,cAAc,CAAC,CAAC;IACxE,CAAC;IAKD,eAAe,CAAS,cAA8B;QAClD,OAAO,IAAI,CAAC,WAAW,CAAC,eAAe,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;IACjE,CAAC;CACJ,CAAA;AAvIY,4DAAwB;AAWjC;IAHC,IAAA,yBAAM,GAAE;IAER,IAAA,aAAI,EAAC,UAAU,CAAC;;IACT,WAAA,IAAA,aAAI,GAAE,CAAA;;qCAAY,uBAAS;;sDAElC;AAID;IAFC,IAAA,uBAAa,EAAC,KAAK,CAAC;IACpB,IAAA,aAAI,EAAC,kBAAkB,CAAC;;IACV,WAAA,IAAA,aAAI,GAAE,CAAA;IAAiC,WAAA,IAAA,kCAAU,GAAE,CAAA;;qCAAjC,yCAAkB;;6DAElD;AAMK;IAJL,IAAA,yBAAM,GAAE;IAER,IAAA,iBAAQ,EAAC,mBAAU,CAAC,EAAE,CAAC;IACvB,IAAA,aAAI,EAAC,cAAc,CAAC;kCADX,mBAAU,CAAC,EAAE;IAGlB,WAAA,IAAA,YAAG,EAAC,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,CAAA;IAC1B,WAAA,IAAA,aAAI,GAAE,CAAA;;6CAAY,uBAAS;;sDAe/B;AAMD;IAJC,IAAA,yBAAM,GAAE;IAER,IAAA,iBAAQ,EAAC,mBAAU,CAAC,EAAE,CAAC;IACvB,IAAA,aAAI,EAAC,gBAAgB,CAAC;kCADb,mBAAU,CAAC,EAAE;IAER,WAAA,IAAA,aAAI,GAAE,CAAA;;qCAAkB,mCAAe;;6DAErD;AAKD;IAHC,IAAA,yBAAM,GAAE;IAER,IAAA,aAAI,EAAC,0BAA0B,CAAC;;IACT,WAAA,IAAA,aAAI,GAAE,CAAA;;qCAA4B,wDAAyB;;sEAElF;AAKD;IAHC,IAAA,yBAAM,GAAE;IAER,IAAA,aAAI,EAAC,yBAAyB,CAAC;;IACT,WAAA,IAAA,aAAI,GAAE,CAAA;;qCAA2B,sDAAwB;;qEAE/E;AAID;IAFC,IAAA,uBAAa,EAAC,KAAK,CAAC;IACpB,IAAA,aAAI,EAAC,iBAAiB,CAAC;;IACR,WAAA,IAAA,aAAI,GAAE,CAAA;IAAwC,WAAA,IAAA,kCAAU,GAAE,CAAA;;qCAAhC,uCAAiB;;8DAE1D;AAID;IAFC,IAAA,uBAAa,EAAC,KAAK,CAAC;IACpB,IAAA,YAAG,EAAC,IAAI,CAAC;;IAEL,WAAA,IAAA,kCAAU,GAAE,CAAA;;;;kDAGhB;AAMK;IAJL,IAAA,uBAAa,EAAC,KAAK,CAAC;IACpB,IAAA,aAAI,EAAC,QAAQ,CAAC;IACd,IAAA,yBAAM,GAAE;IACR,IAAA,iBAAQ,EAAC,mBAAU,CAAC,EAAE,CAAC;kCAAd,mBAAU,CAAC,EAAE;IACT,WAAA,IAAA,aAAI,EAAC,cAAc,CAAC,CAAA;;;;sDAEjC;AAKD;IAHC,IAAA,uBAAa,EAAC,KAAK,CAAC;IACpB,IAAA,aAAI,EAAC,UAAU,CAAC;IAChB,IAAA,iBAAQ,EAAC,mBAAU,CAAC,OAAO,CAAC;kCAAnB,mBAAU,CAAC,OAAO;IAEvB,WAAA,IAAA,aAAI,GAAE,CAAA;IACN,WAAA,IAAA,kCAAU,GAAE,CAAA;;qCADA,oCAAe;;8DAI/B;AAKD;IAHC,IAAA,uBAAa,EAAC,KAAK,CAAC;IACpB,IAAA,aAAI,EAAC,wBAAwB,CAAC;IAC9B,IAAA,iBAAQ,EAAC,mBAAU,CAAC,OAAO,CAAC;kCAAnB,mBAAU,CAAC,OAAO;IAEvB,WAAA,IAAA,cAAK,EAAC,QAAQ,EAAE,qBAAY,CAAC,CAAA;IAC7B,WAAA,IAAA,aAAI,GAAE,CAAA;;6CAAM,oCAAe;;qEAG/B;AAKD;IAHC,IAAA,uBAAa,EAAC,KAAK,CAAC;IACpB,IAAA,cAAK,EAAC,cAAc,CAAC;IACrB,IAAA,iBAAQ,EAAC,mBAAU,CAAC,EAAE,CAAC;kCAAd,mBAAU,CAAC,EAAE;IAElB,WAAA,IAAA,cAAK,EAAC,IAAI,EAAE,qBAAY,CAAC,CAAA;IACzB,WAAA,IAAA,aAAI,GAAE,CAAA;IACN,WAAA,IAAA,kCAAU,GAAE,CAAA;;6CADA,oCAAe;;4DAI/B;AAID;IAFC,IAAA,aAAI,EAAC,UAAU,CAAC;IAChB,IAAA,iBAAQ,EAAC,mBAAU,CAAC,EAAE,CAAC;kCAAd,mBAAU,CAAC,EAAE;IAElB,WAAA,IAAA,kCAAU,GAAE,CAAA;IACZ,WAAA,IAAA,gBAAO,EAAC,eAAe,CAAC,CAAA;;;;+DAI5B;AAKD;IAHC,IAAA,yBAAM,GAAE;IACR,IAAA,aAAI,EAAC,cAAc,CAAC;IACpB,IAAA,iBAAQ,EAAC,mBAAU,CAAC,EAAE,CAAC;kCAAd,mBAAU,CAAC,EAAE;IACN,WAAA,IAAA,aAAI,GAAE,CAAA;;qCAAiB,iCAAc;;+DAErD;mCAtIQ,wBAAwB;IAJpC,IAAA,mBAAU,EAAC,KAAK,CAAC;IACjB,IAAA,iBAAO,EAAC,YAAY,CAAC;qCAOgB,8CAAqB;QACnB,+BAAa;GALxC,wBAAwB,CAuIpC","sourcesContent":["import { Body, Controller, Get, HttpCode, HttpStatus, Logger, Param, ParseIntPipe, Patch, Post, Res, Headers } from '@nestjs/common';\nimport { ApiBearerAuth, ApiTags } from '@nestjs/swagger';\nimport { Response } from 'express';\nimport { ActiveUser } from \"../decorators/active-user.decorator\";\nimport { Public } from '../decorators/public.decorator';\nimport { ChangePasswordDto } from \"../dtos/change-password.dto\";\nimport { ConfirmForgotPasswordDto } from '../dtos/confirm-forgot-password.dto';\nimport { CreateApiKeyDto } from '../dtos/create-api-key.dto';\nimport { UpdateApiKeyDto } from '../dtos/update-api-key.dto';\nimport { InitiateForgotPasswordDto } from '../dtos/initiate-forgot-password.dto';\nimport { RefreshTokenDto } from '../dtos/refresh-token.dto';\nimport { SsoExchangeDto } from '../dtos/sso-exchange.dto';\nimport { SignInDto } from '../dtos/sign-in.dto';\nimport { RegisterPrivateDto } from '../dtos/register-private.dto';\nimport { SignUpDto } from '../dtos/sign-up.dto';\nimport { ActiveUserData } from \"../interfaces/active-user-data.interface\";\nimport { ApiKeyService } from '../services/api-key.service';\nimport { AuthenticationService } from '../services/authentication.service';\n\n\n// @Auth(AuthType.None)\n@Controller('iam')\n@ApiTags(\"Solid Core\")\n// @UseGuards(ThrottlerGuard)\n// @SkipThrottle({login: true, short: true, burst: true, sustained: true}) // disable all sets by default for this controller\nexport class AuthenticationController {\n    private readonly logger = new Logger(AuthenticationController.name);\n\n    constructor(\n        private readonly authService: AuthenticationService,\n        private readonly apiKeyService: ApiKeyService,\n    ) { }\n\n    @Public()\n    // @SkipThrottle({ login: false, short: true, burst: true, sustained: true }) //Enable the login throttle only\n    @Post('register')\n    signUp(@Body() signUpDto: SignUpDto) {\n        return this.authService.signUp(signUpDto);\n    }\n\n    @ApiBearerAuth(\"jwt\")\n    @Post('register-private')\n    signUpPrivate(@Body() signUpDto: RegisterPrivateDto, @ActiveUser() activeUser: ActiveUserData) {\n        return this.authService.signUp(signUpDto, activeUser);\n    }\n\n    @Public()\n    // @SkipThrottle({ login: false, short: true, burst: true, sustained: true }) //Enable the login throttle only\n    @HttpCode(HttpStatus.OK) // by default @Post does 201, we wanted 200 - hence using @HttpCode(HttpStatus.OK)\n    @Post('authenticate')\n    async signIn(\n        @Res({ passthrough: true }) response: Response,\n        @Body() signInDto: SignInDto\n    ) {\n        // This means that we are passing the token back in plain text. \n        // This is less secure. \n        // console.log(\"signInDto in Signin Controller\", signInDto);\n\n        return this.authService.signIn(signInDto);\n\n        // This means we are setting the token as a http only cookie.\n        // const accessToken = await this.authService.signIn(signInDto);\n        // response.cookie('accessToken', accessToken, {\n        //     secure: true,\n        //     httpOnly: true,\n        //     sameSite: true,\n        //   });\n    }\n\n    @Public()\n    // @SkipThrottle({ login: false, short: true, burst: true, sustained: true }) //Enable the login throttle only\n    @HttpCode(HttpStatus.OK) // changed since the default is 201\n    @Post('refresh-tokens')\n    refreshTokens(@Body() refreshTokenDto: RefreshTokenDto) {\n        return this.authService.refreshTokens(refreshTokenDto);\n    }\n\n    @Public()\n    // @SkipThrottle({ login: false, short: true, burst: true, sustained: true }) //Enable the login throttle only\n    @Post('initiate/forgot-password')\n    initiateForgotPassword(@Body() initiateForgotPasswordDto: InitiateForgotPasswordDto) {\n        return this.authService.initiateForgotPassword(initiateForgotPasswordDto);\n    }\n\n    @Public()\n    // @SkipThrottle({ login: false, short: true, burst: true, sustained: true }) //Enable the login throttle only\n    @Post('confirm/forgot-password')\n    confirmForgotPassword(@Body() confirmForgotPasswordDto: ConfirmForgotPasswordDto) {\n        return this.authService.confirmForgotPassword(confirmForgotPasswordDto);\n    }\n\n    @ApiBearerAuth(\"jwt\")\n    @Post('change-password')\n    changePassword(@Body() changePasswordDto: ChangePasswordDto, @ActiveUser() activeUser: ActiveUserData) {\n        return this.authService.changePassword(changePasswordDto, activeUser);\n    }\n\n    @ApiBearerAuth(\"jwt\")\n    @Get('me')\n    me(\n        @ActiveUser() activeUser: ActiveUserData\n    ) {\n        return this.authService.me(activeUser);\n    }\n\n    @ApiBearerAuth(\"jwt\")\n    @Post('logout')\n    @Public()\n    @HttpCode(HttpStatus.OK)\n    async logout(@Body('refreshToken') refreshToken: string) {\n        return this.authService.logout(refreshToken);\n    }\n\n    @ApiBearerAuth(\"jwt\")\n    @Post('api-keys')\n    @HttpCode(HttpStatus.CREATED)\n    generateApiKey(\n        @Body() dto: CreateApiKeyDto,\n        @ActiveUser() activeUser: ActiveUserData,\n    ) {\n        return this.apiKeyService.generate(activeUser.sub, dto);\n    }\n\n    @ApiBearerAuth(\"jwt\")\n    @Post('api-keys/users/:userId')\n    @HttpCode(HttpStatus.CREATED)\n    generateApiKeyForUser(\n        @Param('userId', ParseIntPipe) userId: number,\n        @Body() dto: CreateApiKeyDto,\n    ) {\n        return this.apiKeyService.generate(userId, dto);\n    }\n\n    @ApiBearerAuth(\"jwt\")\n    @Patch('api-keys/:id')\n    @HttpCode(HttpStatus.OK)\n    updateApiKey(\n        @Param('id', ParseIntPipe) id: number,\n        @Body() dto: UpdateApiKeyDto,\n        @ActiveUser() activeUser: ActiveUserData,\n    ) {\n        return this.apiKeyService.updateKey(id, activeUser.sub, dto);\n    }\n\n    @Post('sso/code')\n    @HttpCode(HttpStatus.OK)\n    generateSsoCode(\n        @ActiveUser() activeUser: ActiveUserData,   \n        @Headers('authorization') authorization: string,\n    ) {\n        const rawAccessToken = authorization?.replace(/^Bearer\\s+/i, '');\n        return this.authService.generateSsoCode(activeUser, rawAccessToken);\n    }\n\n    @Public()\n    @Post('sso/exchange')\n    @HttpCode(HttpStatus.OK)\n    exchangeSsoCode(@Body() ssoExchangeDto: SsoExchangeDto) {\n        return this.authService.exchangeSsoCode(ssoExchangeDto.code);\n    }\n}\n"]}

package/dist/dtos/create-api-key.dto.d.ts

@@ -0,0 +1,5 @@
+export declare class CreateApiKeyDto {
+    name: string;
+    expiresAt?: string;
+}
+//# sourceMappingURL=create-api-key.dto.d.ts.map

package/dist/dtos/create-api-key.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"create-api-key.dto.d.ts","sourceRoot":"","sources":["../../src/dtos/create-api-key.dto.ts"],"names":[],"mappings":"AAGA,qBAAa,eAAe;IAIxB,IAAI,EAAE,MAAM,CAAC;IAKb,SAAS,CAAC,EAAE,MAAM,CAAC;CACtB"}

package/dist/dtos/create-api-key.dto.js

@@ -0,0 +1,34 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CreateApiKeyDto = void 0;
+const openapi = require("@nestjs/swagger");
+const swagger_1 = require("@nestjs/swagger");
+const class_validator_1 = require("class-validator");
+class CreateApiKeyDto {
+    static _OPENAPI_METADATA_FACTORY() {
+        return { name: { required: true, type: () => String }, expiresAt: { required: false, type: () => String } };
+    }
+}
+exports.CreateApiKeyDto = CreateApiKeyDto;
+__decorate([
+    (0, swagger_1.ApiProperty)({ example: 'Production Server' }),
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.IsNotEmpty)(),
+    __metadata("design:type", String)
+], CreateApiKeyDto.prototype, "name", void 0);
+__decorate([
+    (0, swagger_1.ApiPropertyOptional)({ example: '2027-01-01T00:00:00.000Z' }),
+    (0, class_validator_1.IsDateString)(),
+    (0, class_validator_1.IsOptional)(),
+    __metadata("design:type", String)
+], CreateApiKeyDto.prototype, "expiresAt", void 0);
+//# sourceMappingURL=create-api-key.dto.js.map

package/dist/dtos/create-api-key.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"create-api-key.dto.js","sourceRoot":"","sources":["../../src/dtos/create-api-key.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;;AAAA,6CAAmE;AACnE,qDAAiF;AAEjF,MAAa,eAAe;;;;CAU3B;AAVD,0CAUC;AANG;IAHC,IAAA,qBAAW,EAAC,EAAE,OAAO,EAAE,mBAAmB,EAAE,CAAC;IAC7C,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;6CACA;AAKb;IAHC,IAAA,6BAAmB,EAAC,EAAE,OAAO,EAAE,0BAA0B,EAAE,CAAC;IAC5D,IAAA,8BAAY,GAAE;IACd,IAAA,4BAAU,GAAE;;kDACM","sourcesContent":["import { ApiProperty, ApiPropertyOptional } from '@nestjs/swagger';\nimport { IsDateString, IsNotEmpty, IsOptional, IsString } from 'class-validator';\n\nexport class CreateApiKeyDto {\n    @ApiProperty({ example: 'Production Server' })\n    @IsString()\n    @IsNotEmpty()\n    name: string;\n\n    @ApiPropertyOptional({ example: '2027-01-01T00:00:00.000Z' })\n    @IsDateString()\n    @IsOptional()\n    expiresAt?: string;\n}\n"]}

package/dist/dtos/post-chatter-message.dto.d.ts

@@ -3,5 +3,6 @@ export declare class PostChatterMessageDto {
     coModelName: string;
     messageBody: string;
     messageSubType?: string;
+    modelUserKey?: string;
 }
 //# sourceMappingURL=post-chatter-message.dto.d.ts.map

package/dist/dtos/post-chatter-message.dto.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"post-chatter-message.dto.d.ts","sourceRoot":"","sources":["../../src/dtos/post-chatter-message.dto.ts"],"names":[],"mappings":"AAEA,qBAAa,qBAAqB;IAG9B,eAAe,EAAE,MAAM,CAAC;IAIxB,WAAW,EAAE,MAAM,CAAC;IAIpB,WAAW,EAAE,MAAM,CAAC;IAIpB,cAAc,CAAC,EAAE,MAAM,CAAC;CAC3B"}
+{"version":3,"file":"post-chatter-message.dto.d.ts","sourceRoot":"","sources":["../../src/dtos/post-chatter-message.dto.ts"],"names":[],"mappings":"AAEA,qBAAa,qBAAqB;IAG9B,eAAe,EAAE,MAAM,CAAC;IAIxB,WAAW,EAAE,MAAM,CAAC;IAIpB,WAAW,EAAE,MAAM,CAAC;IAIpB,cAAc,CAAC,EAAE,MAAM,CAAC;IAIxB,YAAY,CAAC,EAAE,MAAM,CAAC;CACzB"}

package/dist/dtos/post-chatter-message.dto.js

@@ -14,7 +14,7 @@ const openapi = require("@nestjs/swagger");
 const class_validator_1 = require("class-validator");
 class PostChatterMessageDto {
     static _OPENAPI_METADATA_FACTORY() {
-        return { coModelEntityId: { required: true, type: () => Number }, coModelName: { required: true, type: () => String }, messageBody: { required: true, type: () => String }, messageSubType: { required: false, type: () => String } };
+        return { coModelEntityId: { required: true, type: () => Number }, coModelName: { required: true, type: () => String }, messageBody: { required: true, type: () => String }, messageSubType: { required: false, type: () => String }, modelUserKey: { required: false, type: () => String } };
     }
 }
 exports.PostChatterMessageDto = PostChatterMessageDto;
@@ -38,4 +38,9 @@ __decorate([
     (0, class_validator_1.IsOptional)(),
     __metadata("design:type", String)
 ], PostChatterMessageDto.prototype, "messageSubType", void 0);
+__decorate([
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.IsOptional)(),
+    __metadata("design:type", String)
+], PostChatterMessageDto.prototype, "modelUserKey", void 0);
 //# sourceMappingURL=post-chatter-message.dto.js.map

package/dist/dtos/post-chatter-message.dto.js.map

@@ -1 +1 @@
-{"version":3,"file":"post-chatter-message.dto.js","sourceRoot":"","sources":["../../src/dtos/post-chatter-message.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;;AAAA,qDAA6E;AAE7E,MAAa,qBAAqB;;;;CAgBjC;AAhBD,sDAgBC;AAbG;IAFC,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;8DACW;AAIxB;IAFC,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;0DACO;AAIpB;IAFC,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;0DACO;AAIpB;IAFC,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;6DACW","sourcesContent":["import { IsNotEmpty, IsNumber, IsString, IsOptional } from 'class-validator';\n\nexport class PostChatterMessageDto {\n    @IsNumber()\n    @IsNotEmpty()\n    coModelEntityId: number;\n\n    @IsString()\n    @IsNotEmpty()\n    coModelName: string;\n\n    @IsString()\n    @IsNotEmpty()\n    messageBody: string;\n\n    @IsString()\n    @IsOptional()\n    messageSubType?: string;\n}"]}
+{"version":3,"file":"post-chatter-message.dto.js","sourceRoot":"","sources":["../../src/dtos/post-chatter-message.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;;AAAA,qDAA6E;AAE7E,MAAa,qBAAqB;;;;CAoBjC;AApBD,sDAoBC;AAjBG;IAFC,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;8DACW;AAIxB;IAFC,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;0DACO;AAIpB;IAFC,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;0DACO;AAIpB;IAFC,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;6DACW;AAIxB;IAFC,IAAA,0BAAQ,GAAE;IACV,IAAA,4BAAU,GAAE;;2DACS","sourcesContent":["import { IsNotEmpty, IsNumber, IsString, IsOptional } from 'class-validator';\n\nexport class PostChatterMessageDto {\n    @IsNumber()\n    @IsNotEmpty()\n    coModelEntityId: number;\n\n    @IsString()\n    @IsNotEmpty()\n    coModelName: string;\n\n    @IsString()\n    @IsNotEmpty()\n    messageBody: string;\n\n    @IsString()\n    @IsOptional()\n    messageSubType?: string;\n\n    @IsString()\n    @IsOptional()\n    modelUserKey?: string;\n}"]}

package/dist/dtos/register-private.dto.d.ts

@@ -1,7 +1,5 @@
-export declare class RegisterPrivateDto {
-    username: string;
-    email: string;
-    mobile?: string;
-    password?: string;
+import { SignUpDto } from './sign-up.dto';
+export declare class RegisterPrivateDto extends SignUpDto {
+    isAllowedToGenerateApiKeys?: boolean;
 }
 //# sourceMappingURL=register-private.dto.d.ts.map

package/dist/dtos/register-private.dto.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"register-private.dto.d.ts","sourceRoot":"","sources":["../../src/dtos/register-private.dto.ts"],"names":[],"mappings":"AAEA,qBAAa,kBAAkB;IAE3B,QAAQ,EAAE,MAAM,CAAC;IAIjB,KAAK,EAAE,MAAM,CAAC;IAGd,MAAM,CAAC,EAAE,MAAM,CAAC;IAIhB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACrB"}
+{"version":3,"file":"register-private.dto.d.ts","sourceRoot":"","sources":["../../src/dtos/register-private.dto.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAE1C,qBAAa,kBAAmB,SAAQ,SAAS;IAG7C,0BAA0B,CAAC,EAAE,OAAO,CAAC;CACxC"}

package/dist/dtos/register-private.dto.js

@@ -12,28 +12,16 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.RegisterPrivateDto = void 0;
 const openapi = require("@nestjs/swagger");
 const class_validator_1 = require("class-validator");
-class RegisterPrivateDto {
+const sign_up_dto_1 = require("./sign-up.dto");
+class RegisterPrivateDto extends sign_up_dto_1.SignUpDto {
     static _OPENAPI_METADATA_FACTORY() {
-        return { username: { required: true, type: () => String }, email: { required: true, type: () => String }, mobile: { required: false, type: () => String }, password: { required: false, type: () => String, minLength: 10 } };
+        return { isAllowedToGenerateApiKeys: { required: false, type: () => Boolean } };
     }
 }
 exports.RegisterPrivateDto = RegisterPrivateDto;
 __decorate([
-    (0, class_validator_1.IsNotEmpty)(),
-    __metadata("design:type", String)
-], RegisterPrivateDto.prototype, "username", void 0);
-__decorate([
-    (0, class_validator_1.IsEmail)(),
-    (0, class_validator_1.IsNotEmpty)(),
-    __metadata("design:type", String)
-], RegisterPrivateDto.prototype, "email", void 0);
-__decorate([
-    (0, class_validator_1.IsOptional)(),
-    __metadata("design:type", String)
-], RegisterPrivateDto.prototype, "mobile", void 0);
-__decorate([
+    (0, class_validator_1.IsBoolean)(),
     (0, class_validator_1.IsOptional)(),
-    (0, class_validator_1.MinLength)(10),
-    __metadata("design:type", String)
-], RegisterPrivateDto.prototype, "password", void 0);
+    __metadata("design:type", Boolean)
+], RegisterPrivateDto.prototype, "isAllowedToGenerateApiKeys", void 0);
 //# sourceMappingURL=register-private.dto.js.map

package/dist/dtos/register-private.dto.js.map

@@ -1 +1 @@
-{"version":3,"file":"register-private.dto.js","sourceRoot":"","sources":["../../src/dtos/register-private.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;;AAAA,qDAA6E;AAE7E,MAAa,kBAAkB;;;;CAc9B;AAdD,gDAcC;AAZG;IADC,IAAA,4BAAU,GAAE;;oDACI;AAIjB;IAFC,IAAA,yBAAO,GAAE;IACT,IAAA,4BAAU,GAAE;;iDACC;AAGd;IADC,IAAA,4BAAU,GAAE;;kDACG;AAIhB;IAFC,IAAA,4BAAU,GAAE;IACZ,IAAA,2BAAS,EAAC,EAAE,CAAC;;oDACI","sourcesContent":["import { IsEmail, IsNotEmpty, IsOptional, MinLength } from 'class-validator';\n\nexport class RegisterPrivateDto {\n    @IsNotEmpty()\n    username: string;\n\n    @IsEmail()\n    @IsNotEmpty()\n    email: string;\n\n    @IsOptional()\n    mobile?: string;\n\n    @IsOptional()\n    @MinLength(10)\n    password?: string;\n}\n"]}
+{"version":3,"file":"register-private.dto.js","sourceRoot":"","sources":["../../src/dtos/register-private.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;;AAAA,qDAAwD;AACxD,+CAA0C;AAE1C,MAAa,kBAAmB,SAAQ,uBAAS;;;;CAIhD;AAJD,gDAIC;AADG;IAFC,IAAA,2BAAS,GAAE;IACX,IAAA,4BAAU,GAAE;;sEACwB","sourcesContent":["import { IsBoolean, IsOptional } from 'class-validator';\nimport { SignUpDto } from './sign-up.dto';\n\nexport class RegisterPrivateDto extends SignUpDto {\n    @IsBoolean()\n    @IsOptional()\n    isAllowedToGenerateApiKeys?: boolean;\n}\n"]}

package/dist/dtos/sso-exchange.dto.d.ts

@@ -0,0 +1,4 @@
+export declare class SsoExchangeDto {
+    code: string;
+}
+//# sourceMappingURL=sso-exchange.dto.d.ts.map

package/dist/dtos/sso-exchange.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-exchange.dto.d.ts","sourceRoot":"","sources":["../../src/dtos/sso-exchange.dto.ts"],"names":[],"mappings":"AAEA,qBAAa,cAAc;IAGvB,IAAI,EAAE,MAAM,CAAC;CAChB"}

package/dist/dtos/sso-exchange.dto.js

@@ -0,0 +1,26 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SsoExchangeDto = void 0;
+const openapi = require("@nestjs/swagger");
+const class_validator_1 = require("class-validator");
+class SsoExchangeDto {
+    static _OPENAPI_METADATA_FACTORY() {
+        return { code: { required: true, type: () => String } };
+    }
+}
+exports.SsoExchangeDto = SsoExchangeDto;
+__decorate([
+    (0, class_validator_1.IsNotEmpty)(),
+    (0, class_validator_1.IsString)(),
+    __metadata("design:type", String)
+], SsoExchangeDto.prototype, "code", void 0);
+//# sourceMappingURL=sso-exchange.dto.js.map

package/dist/dtos/sso-exchange.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-exchange.dto.js","sourceRoot":"","sources":["../../src/dtos/sso-exchange.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;;AAAA,qDAAuD;AAEvD,MAAa,cAAc;;;;CAI1B;AAJD,wCAIC;AADG;IAFC,IAAA,4BAAU,GAAE;IACZ,IAAA,0BAAQ,GAAE;;4CACE","sourcesContent":["import { IsNotEmpty, IsString } from 'class-validator';\n\nexport class SsoExchangeDto {\n    @IsNotEmpty()\n    @IsString()\n    code: string;\n}\n"]}

package/dist/dtos/update-api-key.dto.d.ts

@@ -0,0 +1,4 @@
+export declare class UpdateApiKeyDto {
+    isActive: boolean;
+}
+//# sourceMappingURL=update-api-key.dto.d.ts.map

package/dist/dtos/update-api-key.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"update-api-key.dto.d.ts","sourceRoot":"","sources":["../../src/dtos/update-api-key.dto.ts"],"names":[],"mappings":"AAGA,qBAAa,eAAe;IAIxB,QAAQ,EAAE,OAAO,CAAC;CACrB"}