npm - @spfn/auth - Versions diffs - 0.1.0-alpha.0 → 0.1.0-alpha.86 - Mend

@spfn/auth 0.1.0-alpha.0 → 0.1.0-alpha.86

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (144) hide show

package/LICENSE +21 -0
package/README.md +320 -12
package/dist/adapters/nextjs/api.d.ts +446 -0
package/dist/adapters/nextjs/api.js +3279 -0
package/dist/adapters/nextjs/api.js.map +1 -0
package/dist/adapters/nextjs/server.d.ts +246 -0
package/dist/adapters/nextjs/server.js +3645 -0
package/dist/adapters/nextjs/server.js.map +1 -0
package/dist/client.d.ts +2 -0
package/dist/client.js +1 -0
package/dist/client.js.map +1 -0
package/dist/index.d.ts +14 -0
package/dist/index.js +9098 -0
package/dist/index.js.map +1 -0
package/dist/lib/api/auth-codes-verify.d.ts +37 -0
package/dist/lib/api/auth-codes-verify.js +2949 -0
package/dist/lib/api/auth-codes-verify.js.map +1 -0
package/dist/lib/api/auth-codes.d.ts +37 -0
package/dist/lib/api/auth-codes.js +2949 -0
package/dist/lib/api/auth-codes.js.map +1 -0
package/dist/lib/api/auth-exists.d.ts +38 -0
package/dist/lib/api/auth-exists.js +2949 -0
package/dist/lib/api/auth-exists.js.map +1 -0
package/dist/lib/api/auth-invitations-accept.d.ts +38 -0
package/dist/lib/api/auth-invitations-accept.js +2883 -0
package/dist/lib/api/auth-invitations-accept.js.map +1 -0
package/dist/lib/api/auth-invitations-cancel.d.ts +37 -0
package/dist/lib/api/auth-invitations-cancel.js +2883 -0
package/dist/lib/api/auth-invitations-cancel.js.map +1 -0
package/dist/lib/api/auth-invitations-delete.d.ts +36 -0
package/dist/lib/api/auth-invitations-delete.js +2883 -0
package/dist/lib/api/auth-invitations-delete.js.map +1 -0
package/dist/lib/api/auth-invitations-resend.d.ts +37 -0
package/dist/lib/api/auth-invitations-resend.js +2883 -0
package/dist/lib/api/auth-invitations-resend.js.map +1 -0
package/dist/lib/api/auth-invitations.d.ts +109 -0
package/dist/lib/api/auth-invitations.js +2887 -0
package/dist/lib/api/auth-invitations.js.map +1 -0
package/dist/lib/api/auth-keys-rotate.d.ts +37 -0
package/dist/lib/api/auth-keys-rotate.js +2949 -0
package/dist/lib/api/auth-keys-rotate.js.map +1 -0
package/dist/lib/api/auth-login.d.ts +39 -0
package/dist/lib/api/auth-login.js +2949 -0
package/dist/lib/api/auth-login.js.map +1 -0
package/dist/lib/api/auth-logout.d.ts +36 -0
package/dist/lib/api/auth-logout.js +2949 -0
package/dist/lib/api/auth-logout.js.map +1 -0
package/dist/lib/api/auth-me.d.ts +50 -0
package/dist/lib/api/auth-me.js +2949 -0
package/dist/lib/api/auth-me.js.map +1 -0
package/dist/lib/api/auth-password.d.ts +36 -0
package/dist/lib/api/auth-password.js +2949 -0
package/dist/lib/api/auth-password.js.map +1 -0
package/dist/lib/api/auth-register.d.ts +38 -0
package/dist/lib/api/auth-register.js +2949 -0
package/dist/lib/api/auth-register.js.map +1 -0
package/dist/lib/api/index.d.ts +356 -0
package/dist/lib/api/index.js +3261 -0
package/dist/lib/api/index.js.map +1 -0
package/dist/lib/config.d.ts +70 -0
package/dist/lib/config.js +64 -0
package/dist/lib/config.js.map +1 -0
package/dist/lib/contracts/auth.d.ts +302 -0
package/dist/lib/contracts/auth.js +2951 -0
package/dist/lib/contracts/auth.js.map +1 -0
package/dist/lib/contracts/index.d.ts +3 -0
package/dist/lib/contracts/index.js +3190 -0
package/dist/lib/contracts/index.js.map +1 -0
package/dist/lib/contracts/invitation.d.ts +243 -0
package/dist/lib/contracts/invitation.js +2883 -0
package/dist/lib/contracts/invitation.js.map +1 -0
package/dist/lib/crypto.d.ts +76 -0
package/dist/lib/crypto.js +127 -0
package/dist/lib/crypto.js.map +1 -0
package/dist/lib/index.d.ts +4 -0
package/dist/lib/index.js +313 -0
package/dist/lib/index.js.map +1 -0
package/dist/lib/session.d.ts +68 -0
package/dist/lib/session.js +126 -0
package/dist/lib/session.js.map +1 -0
package/dist/lib/types/api.d.ts +45 -0
package/dist/lib/types/api.js +1 -0
package/dist/lib/types/api.js.map +1 -0
package/dist/lib/types/index.d.ts +3 -0
package/dist/lib/types/index.js +2647 -0
package/dist/lib/types/index.js.map +1 -0
package/dist/lib/types/schemas.d.ts +45 -0
package/dist/lib/types/schemas.js +2647 -0
package/dist/lib/types/schemas.js.map +1 -0
package/dist/lib.d.ts +2 -0
package/dist/lib.js +1 -0
package/dist/lib.js.map +1 -0
package/dist/plugin.d.ts +12 -0
package/dist/plugin.js +9081 -0
package/dist/plugin.js.map +1 -0
package/dist/server/entities/index.d.ts +11 -0
package/dist/server/entities/index.js +395 -0
package/dist/server/entities/index.js.map +1 -0
package/dist/server/entities/invitations.d.ts +241 -0
package/dist/server/entities/invitations.js +184 -0
package/dist/server/entities/invitations.js.map +1 -0
package/dist/server/entities/permissions.d.ts +196 -0
package/dist/server/entities/permissions.js +49 -0
package/dist/server/entities/permissions.js.map +1 -0
package/dist/server/entities/role-permissions.d.ts +107 -0
package/dist/server/entities/role-permissions.js +115 -0
package/dist/server/entities/role-permissions.js.map +1 -0
package/dist/server/entities/roles.d.ts +196 -0
package/dist/server/entities/roles.js +50 -0
package/dist/server/entities/roles.js.map +1 -0
package/dist/server/entities/schema.d.ts +14 -0
package/dist/server/entities/schema.js +7 -0
package/dist/server/entities/schema.js.map +1 -0
package/dist/server/entities/user-permissions.d.ts +163 -0
package/dist/server/entities/user-permissions.js +193 -0
package/dist/server/entities/user-permissions.js.map +1 -0
package/dist/server/entities/user-public-keys.d.ts +227 -0
package/dist/server/entities/user-public-keys.js +156 -0
package/dist/server/entities/user-public-keys.js.map +1 -0
package/dist/server/entities/user-social-accounts.d.ts +189 -0
package/dist/server/entities/user-social-accounts.js +149 -0
package/dist/server/entities/user-social-accounts.js.map +1 -0
package/dist/server/entities/users.d.ts +235 -0
package/dist/server/entities/users.js +117 -0
package/dist/server/entities/users.js.map +1 -0
package/dist/server/entities/verification-codes.d.ts +191 -0
package/dist/server/entities/verification-codes.js +49 -0
package/dist/server/entities/verification-codes.js.map +1 -0
package/dist/server/routes/auth/index.d.ts +10 -0
package/dist/server/routes/auth/index.js +4458 -0
package/dist/server/routes/auth/index.js.map +1 -0
package/dist/server/routes/index.d.ts +6 -0
package/dist/server/routes/index.js +6582 -0
package/dist/server/routes/index.js.map +1 -0
package/dist/server/routes/invitations/index.d.ts +10 -0
package/dist/server/routes/invitations/index.js +4395 -0
package/dist/server/routes/invitations/index.js.map +1 -0
package/dist/server.d.ts +1272 -0
package/dist/server.js +2274 -0
package/dist/server.js.map +1 -0
package/migrations/0000_complex_swordsman.sql +167 -0
package/migrations/meta/0000_snapshot.json +1397 -0
package/migrations/meta/_journal.json +13 -0
package/package.json +59 -24

package/dist/lib/contracts/invitation.d.ts ADDED Viewed

@@ -0,0 +1,243 @@
+import * as _sinclair_typebox from '@sinclair/typebox';
+/**
+ * @spfn/auth - Invitation API Contracts
+ *
+ * Type-safe API contracts for user invitation operations
+ */
+/**
+ * GET /_auth/invitations/:token - Get invitation details (public)
+ *
+ * Retrieves invitation information for acceptance page
+ */
+declare const getInvitationContract: {
+    readonly method: "GET";
+    readonly path: "/_auth/invitations/:token";
+    readonly params: _sinclair_typebox.TObject<{
+        token: _sinclair_typebox.TString;
+    }>;
+    readonly response: _sinclair_typebox.TUnion<[_sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<true>;
+        data: _sinclair_typebox.TObject<{
+            email: _sinclair_typebox.TString;
+            role: _sinclair_typebox.TString;
+            roleDisplayName: _sinclair_typebox.TString;
+            invitedBy: _sinclair_typebox.TString;
+            expiresAt: _sinclair_typebox.TString;
+            metadata: _sinclair_typebox.TOptional<_sinclair_typebox.TAny>;
+        }>;
+        message: _sinclair_typebox.TOptional<_sinclair_typebox.TString>;
+    }>, _sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<false>;
+        error: _sinclair_typebox.TObject<{
+            code: _sinclair_typebox.TString;
+            message: _sinclair_typebox.TString;
+            details: _sinclair_typebox.TOptional<_sinclair_typebox.TAny>;
+        }>;
+    }>]>;
+};
+/**
+ * POST /_auth/invitations/accept - Accept invitation (public)
+ *
+ * Accepts invitation and creates user account with provided credentials
+ */
+declare const acceptInvitationContract: {
+    readonly method: "POST";
+    readonly path: "/_auth/invitations/accept";
+    readonly body: _sinclair_typebox.TObject<{
+        token: _sinclair_typebox.TString;
+        password: _sinclair_typebox.TString;
+        publicKey: _sinclair_typebox.TString;
+        keyId: _sinclair_typebox.TString;
+        fingerprint: _sinclair_typebox.TString;
+        algorithm: _sinclair_typebox.TUnion<[_sinclair_typebox.TLiteral<"ES256">, _sinclair_typebox.TLiteral<"RS256">]>;
+    }>;
+    readonly response: _sinclair_typebox.TUnion<[_sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<true>;
+        data: _sinclair_typebox.TObject<{
+            userId: _sinclair_typebox.TNumber;
+            email: _sinclair_typebox.TString;
+            role: _sinclair_typebox.TString;
+        }>;
+        message: _sinclair_typebox.TOptional<_sinclair_typebox.TString>;
+    }>, _sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<false>;
+        error: _sinclair_typebox.TObject<{
+            code: _sinclair_typebox.TString;
+            message: _sinclair_typebox.TString;
+            details: _sinclair_typebox.TOptional<_sinclair_typebox.TAny>;
+        }>;
+    }>]>;
+};
+/**
+ * POST /_auth/invitations - Create new invitation (admin)
+ *
+ * Creates and sends invitation to new user
+ * Requires: admin role or user:invite permission
+ */
+declare const createInvitationContract: {
+    readonly method: "POST";
+    readonly path: "/_auth/invitations";
+    readonly body: _sinclair_typebox.TObject<{
+        email: _sinclair_typebox.TString;
+        roleId: _sinclair_typebox.TNumber;
+        expiresInDays: _sinclair_typebox.TOptional<_sinclair_typebox.TNumber>;
+        metadata: _sinclair_typebox.TOptional<_sinclair_typebox.TAny>;
+    }>;
+    readonly response: _sinclair_typebox.TUnion<[_sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<true>;
+        data: _sinclair_typebox.TObject<{
+            id: _sinclair_typebox.TNumber;
+            email: _sinclair_typebox.TString;
+            token: _sinclair_typebox.TString;
+            roleId: _sinclair_typebox.TNumber;
+            expiresAt: _sinclair_typebox.TString;
+            invitationUrl: _sinclair_typebox.TString;
+        }>;
+        message: _sinclair_typebox.TOptional<_sinclair_typebox.TString>;
+    }>, _sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<false>;
+        error: _sinclair_typebox.TObject<{
+            code: _sinclair_typebox.TString;
+            message: _sinclair_typebox.TString;
+            details: _sinclair_typebox.TOptional<_sinclair_typebox.TAny>;
+        }>;
+    }>]>;
+};
+/**
+ * GET /_auth/invitations - List invitations (admin)
+ *
+ * Retrieves paginated list of invitations with filtering
+ * Requires: admin role
+ */
+declare const listInvitationsContract: {
+    readonly method: "GET";
+    readonly path: "/_auth/invitations";
+    readonly query: _sinclair_typebox.TObject<{
+        status: _sinclair_typebox.TOptional<_sinclair_typebox.TUnion<[_sinclair_typebox.TLiteral<"pending">, _sinclair_typebox.TLiteral<"accepted">, _sinclair_typebox.TLiteral<"expired">, _sinclair_typebox.TLiteral<"cancelled">]>>;
+        page: _sinclair_typebox.TOptional<_sinclair_typebox.TNumber>;
+        limit: _sinclair_typebox.TOptional<_sinclair_typebox.TNumber>;
+    }>;
+    readonly response: _sinclair_typebox.TUnion<[_sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<true>;
+        data: _sinclair_typebox.TObject<{
+            invitations: _sinclair_typebox.TArray<_sinclair_typebox.TObject<{
+                id: _sinclair_typebox.TNumber;
+                email: _sinclair_typebox.TString;
+                status: _sinclair_typebox.TString;
+                role: _sinclair_typebox.TObject<{
+                    id: _sinclair_typebox.TNumber;
+                    name: _sinclair_typebox.TString;
+                    displayName: _sinclair_typebox.TString;
+                }>;
+                inviter: _sinclair_typebox.TObject<{
+                    id: _sinclair_typebox.TNumber;
+                    email: _sinclair_typebox.TString;
+                }>;
+                createdAt: _sinclair_typebox.TString;
+                expiresAt: _sinclair_typebox.TString;
+                acceptedAt: _sinclair_typebox.TOptional<_sinclair_typebox.TString>;
+                cancelledAt: _sinclair_typebox.TOptional<_sinclair_typebox.TString>;
+            }>>;
+            total: _sinclair_typebox.TNumber;
+            page: _sinclair_typebox.TNumber;
+            limit: _sinclair_typebox.TNumber;
+            totalPages: _sinclair_typebox.TNumber;
+        }>;
+        message: _sinclair_typebox.TOptional<_sinclair_typebox.TString>;
+    }>, _sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<false>;
+        error: _sinclair_typebox.TObject<{
+            code: _sinclair_typebox.TString;
+            message: _sinclair_typebox.TString;
+            details: _sinclair_typebox.TOptional<_sinclair_typebox.TAny>;
+        }>;
+    }>]>;
+};
+/**
+ * POST /_auth/invitations/cancel - Cancel invitation (admin)
+ *
+ * Cancels pending invitation
+ * Requires: admin role or invitation owner
+ */
+declare const cancelInvitationContract: {
+    readonly method: "POST";
+    readonly path: "/_auth/invitations/cancel";
+    readonly body: _sinclair_typebox.TObject<{
+        id: _sinclair_typebox.TNumber;
+        reason: _sinclair_typebox.TOptional<_sinclair_typebox.TString>;
+    }>;
+    readonly response: _sinclair_typebox.TUnion<[_sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<true>;
+        data: _sinclair_typebox.TObject<{
+            success: _sinclair_typebox.TBoolean;
+            cancelledAt: _sinclair_typebox.TString;
+        }>;
+        message: _sinclair_typebox.TOptional<_sinclair_typebox.TString>;
+    }>, _sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<false>;
+        error: _sinclair_typebox.TObject<{
+            code: _sinclair_typebox.TString;
+            message: _sinclair_typebox.TString;
+            details: _sinclair_typebox.TOptional<_sinclair_typebox.TAny>;
+        }>;
+    }>]>;
+};
+/**
+ * POST /_auth/invitations/resend - Resend invitation (admin)
+ *
+ * Resends invitation email and extends expiration
+ * Requires: admin role
+ */
+declare const resendInvitationContract: {
+    readonly method: "POST";
+    readonly path: "/_auth/invitations/resend";
+    readonly body: _sinclair_typebox.TObject<{
+        id: _sinclair_typebox.TNumber;
+        expiresInDays: _sinclair_typebox.TOptional<_sinclair_typebox.TNumber>;
+    }>;
+    readonly response: _sinclair_typebox.TUnion<[_sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<true>;
+        data: _sinclair_typebox.TObject<{
+            success: _sinclair_typebox.TBoolean;
+            expiresAt: _sinclair_typebox.TString;
+        }>;
+        message: _sinclair_typebox.TOptional<_sinclair_typebox.TString>;
+    }>, _sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<false>;
+        error: _sinclair_typebox.TObject<{
+            code: _sinclair_typebox.TString;
+            message: _sinclair_typebox.TString;
+            details: _sinclair_typebox.TOptional<_sinclair_typebox.TAny>;
+        }>;
+    }>]>;
+};
+/**
+ * DELETE /_auth/invitations/delete - Delete invitation (superadmin)
+ *
+ * Permanently deletes invitation record
+ * Requires: superadmin role
+ */
+declare const deleteInvitationContract: {
+    readonly method: "POST";
+    readonly path: "/_auth/invitations/delete";
+    readonly body: _sinclair_typebox.TObject<{
+        id: _sinclair_typebox.TNumber;
+    }>;
+    readonly response: _sinclair_typebox.TUnion<[_sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<true>;
+        data: _sinclair_typebox.TObject<{
+            success: _sinclair_typebox.TBoolean;
+        }>;
+        message: _sinclair_typebox.TOptional<_sinclair_typebox.TString>;
+    }>, _sinclair_typebox.TObject<{
+        success: _sinclair_typebox.TLiteral<false>;
+        error: _sinclair_typebox.TObject<{
+            code: _sinclair_typebox.TString;
+            message: _sinclair_typebox.TString;
+            details: _sinclair_typebox.TOptional<_sinclair_typebox.TAny>;
+        }>;
+    }>]>;
+};
+export { acceptInvitationContract, cancelInvitationContract, createInvitationContract, deleteInvitationContract, getInvitationContract, listInvitationsContract, resendInvitationContract };