@spinajs/rbac-http-user 2.0.187 → 2.0.189

package/lib/mjs/controllers/LoginController.js

@@ -0,0 +1,199 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+import { UserLoginDto } from '../dto/userLogin-dto.js';
+import { BaseController, BasePath, Post, Body, Ok, Get, Cookie, Unauthorized, Policy } from '@spinajs/http';
+import { AuthProvider, SessionProvider, auth, UserSession } from '@spinajs/rbac';
+import { Autoinject } from '@spinajs/di';
+import { AutoinjectService, Config, Configuration } from '@spinajs/configuration';
+import { LoggedPolicy, NotLoggedPolicy } from '@spinajs/rbac-http';
+let LoginController = class LoginController extends BaseController {
+    async login(credentials) {
+        try {
+            const user = await auth(credentials.Email, credentials.Password);
+            const session = new UserSession();
+            const dUser = user.dehydrate();
+            session.Data.set('User', dUser);
+            // TEMP
+            session.Data.set('Authorized', true);
+            await this.SessionProvider.save(session);
+            this._log.trace('User logged in', user);
+            return new Ok(user, {
+                Coockies: [
+                    {
+                        Name: 'ssid',
+                        Value: session.SessionId,
+                        Options: {
+                            httpOnly: true,
+                            maxAge: this.SessionExpirationTime,
+                        },
+                    },
+                ],
+            });
+        }
+        catch (err) {
+            this._log.error(err);
+            return new Unauthorized({
+                error: {
+                    code: 'E_AUTH_FAILED',
+                    message: 'login or password incorrect',
+                },
+            });
+        }
+    }
+    // @Post('new-password')
+    // @Policy(NotLoggedPolicy)
+    // public async setNewPassword(@Query() token: string, @Body() pwd: RestorePasswordDto) {
+    //   const user = await User.query()
+    //     .innerJoin(UserMetadata, function () {
+    //       this.where({
+    //         Key: 'password:reset:token',
+    //         Value: token,
+    //       });
+    //     })
+    //     .populate('Metadata')
+    //     .first();
+    //   if (!user) {
+    //     return new NotFound({
+    //       error: {
+    //         code: 'ERR_USER_NOT_FOUND',
+    //         message: 'No user found for this reset token',
+    //       },
+    //     });
+    //   }
+    //   const val = (await user.Metadata['password:reset:start']) as DateTime;
+    //   const now = DateTime.now().plus({ seconds: -this.PasswordResetTokenTTL });
+    //   if (val < now) {
+    //     return new BadRequest({
+    //       error: {
+    //         code: 'ERR_RESET_TOKEN_EXPIRED',
+    //         message: 'Password reset token expired',
+    //       },
+    //     });
+    //   }
+    //   if (!this.PasswordValidationService.check(pwd.Password)) {
+    //     return new BadRequest({
+    //       error: {
+    //         code: 'ERR_PASSWORD_RULE',
+    //         message: 'Invalid password, does not match password rules',
+    //       },
+    //     });
+    //   }
+    //   if (pwd.Password !== pwd.ConfirmPassword) {
+    //     return new BadRequest({
+    //       error: {
+    //         code: 'ERR_PASSWORD_NOT_MATCH',
+    //         message: 'Password and repeat password does not match',
+    //       },
+    //     });
+    //   }
+    //   const hashedPassword = await this.PasswordProvider.hash(pwd.Password);
+    //   user.Password = hashedPassword;
+    //   await user.update();
+    //   /**
+    //    * Delete all reset related meta for user
+    //    */
+    //   await user.Metadata.delete(/password:reset.*/);
+    //   // add to action list
+    //   await user.Actions.add(
+    //     new UserAction({
+    //       Persistent: true,
+    //       Action: 'password:reset',
+    //     }),
+    //   );
+    //   // inform others
+    //   await this.Queue.emit(new UserPasswordChanged(user.Uuid));
+    // }
+    // @Post('forgot-password')
+    // @Policy(NotLoggedPolicy)
+    // public async forgotPassword(@Body() login: UserLoginDto) {
+    //   const user = await this.AuthProvider.getByEmail(login.Email);
+    //   if (!user.IsActive || user.IsBanned || user.DeletedAt !== null) {
+    //     return new InvalidOperation('User is inactive, banned or deleted. Contact system administrator');
+    //   }
+    //   const token = uuidv4();
+    //   // assign meta to user
+    //   await (user.Metadata['password:reset'] = true);
+    //   await (user.Metadata['password:reset:token'] = token);
+    //   await (user.Metadata['password:reset:start'] = DateTime.now());
+    //   await user.Actions.add(
+    //     new UserAction({
+    //       Action: 'user:password:reset',
+    //       Data: DateTime.now().toISO(),
+    //       Persistent: true,
+    //     }),
+    //   );
+    //   await this.Queue.emit(new UserPasswordRestore(user.Uuid, token));
+    //   return new Ok({
+    //     reset_token: token,
+    //     ttl: this.PasswordResetTokenTTL,
+    //   });
+    // }
+    async logout(ssid) {
+        if (!ssid) {
+            return new Ok();
+        }
+        await this.SessionProvider.delete(ssid);
+        // send empty cookie to confirm session deletion
+        return new Ok(null, {
+            Coockies: [
+                {
+                    Name: 'ssid',
+                    Value: '',
+                    Options: {
+                        httpOnly: true,
+                        maxAge: 0,
+                    },
+                },
+            ],
+        });
+    }
+};
+__decorate([
+    Autoinject(),
+    __metadata("design:type", Configuration)
+], LoginController.prototype, "Configuration", void 0);
+__decorate([
+    AutoinjectService('rbac.auth'),
+    __metadata("design:type", AuthProvider)
+], LoginController.prototype, "AuthProvider", void 0);
+__decorate([
+    AutoinjectService('rbac.session'),
+    __metadata("design:type", SessionProvider)
+], LoginController.prototype, "SessionProvider", void 0);
+__decorate([
+    Config('rbac.session.expiration', {
+        defaultValue: 120,
+    }),
+    __metadata("design:type", Number)
+], LoginController.prototype, "SessionExpirationTime", void 0);
+__decorate([
+    Post(),
+    Policy(NotLoggedPolicy),
+    __param(0, Body()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [UserLoginDto]),
+    __metadata("design:returntype", Promise)
+], LoginController.prototype, "login", null);
+__decorate([
+    Get(),
+    Policy(LoggedPolicy),
+    __param(0, Cookie()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [String]),
+    __metadata("design:returntype", Promise)
+], LoginController.prototype, "logout", null);
+LoginController = __decorate([
+    BasePath('auth')
+], LoginController);
+export { LoginController };
+//# sourceMappingURL=LoginController.js.map

package/lib/mjs/controllers/LoginController.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"LoginController.js","sourceRoot":"","sources":["../../../src/controllers/LoginController.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAC;AACvD,OAAO,EAAE,cAAc,EAAE,QAAQ,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,MAAM,eAAe,CAAC;AAC5G,OAAO,EAAE,YAAY,EAAE,eAAe,EAAE,IAAI,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AACjF,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,iBAAiB,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,wBAAwB,CAAC;AAElF,OAAO,EAAE,YAAY,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAG5D,IAAM,eAAe,GAArB,MAAM,eAAgB,SAAQ,cAAc;IAiBpC,AAAN,KAAK,CAAC,KAAK,CAAS,WAAyB;QAClD,IAAI;YACF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,WAAW,CAAC,QAAQ,CAAC,CAAC;YACjE,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;YAClC,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;YAC/B,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;YAEhC,OAAO;YACP,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,YAAY,EAAE,IAAI,CAAC,CAAC;YAErC,MAAM,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAEzC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,gBAAgB,EAAE,IAAI,CAAC,CAAC;YAExC,OAAO,IAAI,EAAE,CAAC,IAAI,EAAE;gBAClB,QAAQ,EAAE;oBACR;wBACE,IAAI,EAAE,MAAM;wBACZ,KAAK,EAAE,OAAO,CAAC,SAAS;wBACxB,OAAO,EAAE;4BACP,QAAQ,EAAE,IAAI;4BACd,MAAM,EAAE,IAAI,CAAC,qBAAqB;yBACnC;qBACF;iBACF;aACF,CAAC,CAAC;SACJ;QAAC,OAAO,GAAG,EAAE;YACZ,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAErB,OAAO,IAAI,YAAY,CAAC;gBACtB,KAAK,EAAE;oBACL,IAAI,EAAE,eAAe;oBACrB,OAAO,EAAE,6BAA6B;iBACvC;aACF,CAAC,CAAC;SACJ;IACH,CAAC;IAED,wBAAwB;IACxB,2BAA2B;IAC3B,yFAAyF;IACzF,oCAAoC;IACpC,6CAA6C;IAC7C,qBAAqB;IACrB,uCAAuC;IACvC,wBAAwB;IACxB,YAAY;IACZ,SAAS;IACT,4BAA4B;IAC5B,gBAAgB;IAEhB,iBAAiB;IACjB,4BAA4B;IAC5B,iBAAiB;IACjB,sCAAsC;IACtC,yDAAyD;IACzD,WAAW;IACX,UAAU;IACV,MAAM;IAEN,2EAA2E;IAC3E,+EAA+E;IAE/E,qBAAqB;IACrB,8BAA8B;IAC9B,iBAAiB;IACjB,2CAA2C;IAC3C,mDAAmD;IACnD,WAAW;IACX,UAAU;IACV,MAAM;IAEN,+DAA+D;IAC/D,8BAA8B;IAC9B,iBAAiB;IACjB,qCAAqC;IACrC,sEAAsE;IACtE,WAAW;IACX,UAAU;IACV,MAAM;IAEN,gDAAgD;IAChD,8BAA8B;IAC9B,iBAAiB;IACjB,0CAA0C;IAC1C,kEAAkE;IAClE,WAAW;IACX,UAAU;IACV,MAAM;IAEN,2EAA2E;IAC3E,oCAAoC;IAEpC,yBAAyB;IAEzB,QAAQ;IACR,8CAA8C;IAC9C,QAAQ;IACR,oDAAoD;IAEpD,0BAA0B;IAC1B,4BAA4B;IAC5B,uBAAuB;IACvB,0BAA0B;IAC1B,kCAAkC;IAClC,UAAU;IACV,OAAO;IAEP,qBAAqB;IACrB,+DAA+D;IAC/D,IAAI;IAEJ,2BAA2B;IAC3B,2BAA2B;IAC3B,6DAA6D;IAC7D,kEAAkE;IAElE,sEAAsE;IACtE,wGAAwG;IACxG,MAAM;IAEN,4BAA4B;IAE5B,2BAA2B;IAC3B,oDAAoD;IACpD,2DAA2D;IAC3D,oEAAoE;IAEpE,4BAA4B;IAC5B,uBAAuB;IACvB,uCAAuC;IACvC,sCAAsC;IACtC,0BAA0B;IAC1B,UAAU;IACV,OAAO;IAEP,sEAAsE;IAEtE,oBAAoB;IACpB,0BAA0B;IAC1B,uCAAuC;IACvC,QAAQ;IACR,IAAI;IAIS,AAAN,KAAK,CAAC,MAAM,CAAW,IAAY;QACxC,IAAI,CAAC,IAAI,EAAE;YACT,OAAO,IAAI,EAAE,EAAE,CAAC;SACjB;QAED,MAAM,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAExC,gDAAgD;QAChD,OAAO,IAAI,EAAE,CAAC,IAAI,EAAE;YAClB,QAAQ,EAAE;gBACR;oBACE,IAAI,EAAE,MAAM;oBACZ,KAAK,EAAE,EAAE;oBACT,OAAO,EAAE;wBACP,QAAQ,EAAE,IAAI;wBACd,MAAM,EAAE,CAAC;qBACV;iBACF;aACF;SACF,CAAC,CAAC;IACL,CAAC;CAsFF,CAAA;AA3QW;IADT,UAAU,EAAE;8BACY,aAAa;sDAAC;AAG7B;IADT,iBAAiB,CAAC,WAAW,CAAC;8BACP,YAAY;qDAAC;AAG3B;IADT,iBAAiB,CAAC,cAAc,CAAC;8BACP,eAAe;wDAAC;AAKjC;IAHT,MAAM,CAAC,yBAAyB,EAAE;QACjC,YAAY,EAAE,GAAG;KAClB,CAAC;;8DACsC;AAI3B;IAFZ,IAAI,EAAE;IACN,MAAM,CAAC,eAAe,CAAC;IACJ,WAAA,IAAI,EAAE,CAAA;;qCAAc,YAAY;;4CAoCnD;AA8GY;IAFZ,GAAG,EAAE;IACL,MAAM,CAAC,YAAY,CAAC;IACA,WAAA,MAAM,EAAE,CAAA;;;;6CAoB5B;AAvLU,eAAe;IAD3B,QAAQ,CAAC,MAAM,CAAC;GACJ,eAAe,CA6Q3B"}

package/lib/mjs/controllers/TwoFactorAuthController.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=TwoFactorAuthController.d.ts.map

package/lib/mjs/controllers/TwoFactorAuthController.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"TwoFactorAuthController.d.ts","sourceRoot":"","sources":["../../../src/controllers/TwoFactorAuthController.ts"],"names":[],"mappings":""}

package/lib/mjs/controllers/TwoFactorAuthController.js

@@ -0,0 +1,58 @@
+// import { TokenDto } from './../dto/token-dto.js';
+// import { BaseController, BasePath, Cookie, Ok, Post, Unauthorized } from '@spinajs/http';
+// import { ISession, SessionProvider, User as UserModel, _user_ev, _user_update} from '@spinajs/rbac';
+// import { Session } from "@spinajs/rbac-http";
+// import { Body, Policy } from '@spinajs/http';
+// import _ from 'lodash';
+// import { User } from '../decorators.js';
+// import { TwoFacRouteEnabled } from '../policies/2FaPolicy.js';
+// import { AutoinjectService, _service } from '@spinajs/configuration';
+// import { TwoFactorAuthProvider } from '../interfaces.js';
+// import { DateTime } from 'luxon';
+// import { UserLoginSuccess } from '../events/UserLoginSuccess.js';
+// import { Autoinject } from '@spinajs/di';
+// import { QueueService } from '@spinajs/queue';
+// import { _chain, _check_arg, _non_empty, _non_null, _tap, _trim, _use } from '@spinajs/util';
+// import { User2FaPassed } from '../events/User2FaPassed.js';
+export {};
+// export async function auth2Fa(user: User, token: string) {
+//   user = _check_arg(_non_null())(user, 'user');
+//   token = _check_arg(_trim(), _non_empty)(token, 'token');
+//   return _chain(
+//     _use(_service<TwoFactorAuthProvider>('rbac.twoFactorAuth'), 'twoFa'),
+//     _tap(async ({ twoFa }: { twoFa: TwoFactorAuthProvider }) => {
+//       await twoFa.verifyToken(token, user);
+//     }),
+//     _user_update({
+//       LastLoginAt: DateTime.now()
+//     }),
+//     _user_ev(User2FaPassed)
+//   );
+// }
+// @BasePath('user/auth')
+// @Policy(TwoFacRouteEnabled)
+// export class TwoFactorAuthController extends BaseController {
+//   @Autoinject(QueueService)
+//   protected Queue: QueueService;
+//   @AutoinjectService('rbac.session')
+//   protected SessionProvider: SessionProvider;
+//   @AutoinjectService('rbac.twoFactorAuth')
+//   protected TwoFactorAuthProvider: TwoFactorAuthProvider;
+//   @Post('2fa/verify')
+//   public async verifyToken(@User() logged: UserModel, @Body() token: TokenDto, @Session() session : ISession) {
+//     const result = await this.TwoFactorAuthProvider.verifyToken(token.Token, logged);
+//     if (result) {
+//       return new Unauthorized(`invalid token`);
+//     }
+//     logged.LastLoginAt = DateTime.now();
+//     await logged.update();
+//     await this.Queue.emit(new UserLoginSuccess(logged.Uuid));
+//     await this.SessionProvider.save(ssid, {
+//       Authorized: true,
+//       TwoFactorAuth_check: true,
+//     });
+//     // return user data
+//     return new Ok(logged.dehydrate());
+//   }
+// }
+//# sourceMappingURL=TwoFactorAuthController.js.map

package/lib/mjs/controllers/TwoFactorAuthController.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"TwoFactorAuthController.js","sourceRoot":"","sources":["../../../src/controllers/TwoFactorAuthController.ts"],"names":[],"mappings":"AAAA,oDAAoD;AACpD,4FAA4F;AAC5F,uGAAuG;AACvG,gDAAgD;AAChD,gDAAgD;AAChD,0BAA0B;AAC1B,2CAA2C;AAC3C,iEAAiE;AACjE,wEAAwE;AACxE,4DAA4D;AAC5D,oCAAoC;AACpC,oEAAoE;AACpE,4CAA4C;AAC5C,iDAAiD;AACjD,gGAAgG;AAChG,8DAA8D;;AAE9D,6DAA6D;AAC7D,kDAAkD;AAClD,6DAA6D;AAE7D,mBAAmB;AACnB,4EAA4E;AAC5E,oEAAoE;AACpE,8CAA8C;AAC9C,UAAU;AACV,qBAAqB;AACrB,oCAAoC;AACpC,UAAU;AACV,8BAA8B;AAC9B,OAAO;AACP,IAAI;AAEJ,yBAAyB;AACzB,8BAA8B;AAC9B,gEAAgE;AAChE,8BAA8B;AAC9B,mCAAmC;AAEnC,uCAAuC;AACvC,gDAAgD;AAEhD,6CAA6C;AAC7C,4DAA4D;AAE5D,wBAAwB;AACxB,kHAAkH;AAClH,wFAAwF;AAExF,oBAAoB;AACpB,kDAAkD;AAClD,QAAQ;AAER,2CAA2C;AAC3C,6BAA6B;AAE7B,gEAAgE;AAEhE,8CAA8C;AAC9C,0BAA0B;AAC1B,mCAAmC;AACnC,UAAU;AAEV,0BAA0B;AAC1B,yCAAyC;AACzC,MAAM;AACN,IAAI"}

package/lib/mjs/controllers/UserController.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=UserController.d.ts.map

package/lib/mjs/controllers/UserController.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"UserController.d.ts","sourceRoot":"","sources":["../../../src/controllers/UserController.ts"],"names":[],"mappings":""}

package/lib/mjs/controllers/UserController.js

@@ -0,0 +1,51 @@
+// import { PasswordDto } from '../dto/password-dto.js';
+// import { User as UserModel, PasswordProvider, SessionProvider } from '@spinajs/rbac';
+// import { BaseController, BasePath, Get, Ok, Body, Patch, Cookie } from '@spinajs/http';
+// import { InvalidArgument, Forbidden } from '@spinajs/exceptions';
+// import { Autoinject } from '@spinajs/di';
+// import { Permission, User, Resource } from '../decorators.js';
+// import { Config } from '@spinajs/configuration';
+// import * as cs from 'cookie-signature';
+// import _ from 'lodash';
+export {};
+// @BasePath('user')
+// @Resource('user')
+// export class UserController extends BaseController {
+//   @Autoinject()
+//   protected PasswordProvider: PasswordProvider;
+//   @Config('http.cookie.secret')
+//   protected CoockieSecret: string;
+//   @Autoinject()
+//   protected SessionProvider: SessionProvider;
+//   @Get()
+//   @Permission('readOwn')
+//   public async refresh(@User() user: UserModel, @Cookie() ssid: string) {
+//     // get user data from db
+//     await user.refresh();
+//     await user.Metadata.populate();
+//     // refresh session data from DB
+//     const sId: string | false = cs.unsign(ssid, this.CoockieSecret);
+//     if (sId) {
+//       const session = await this.SessionProvider.restore(sId);
+//       if (session) {
+//         session.Data.set('User', user.dehydrate());
+//       }
+//     }
+//     return new Ok(user.dehydrate());
+//   }
+//   @Patch('/password')
+//   public async newPassword(@User() user: UserModel, @Body() pwd: PasswordDto) {
+//     if (pwd.Password !== pwd.ConfirmPassword) {
+//       throw new InvalidArgument('password does not match');
+//     }
+//     const isValid = await this.PasswordProvider.verify(user.Password, pwd.OldPassword);
+//     if (!isValid) {
+//       throw new Forbidden('old password do not match');
+//     }
+//     const hashedPassword = await this.PasswordProvider.hash(pwd.Password);
+//     user.Password = hashedPassword;
+//     await user.update();
+//     return new Ok();
+//   }
+// }
+//# sourceMappingURL=UserController.js.map

package/lib/mjs/controllers/UserController.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"UserController.js","sourceRoot":"","sources":["../../../src/controllers/UserController.ts"],"names":[],"mappings":"AAAA,wDAAwD;AACxD,wFAAwF;AACxF,0FAA0F;AAC1F,oEAAoE;AACpE,4CAA4C;AAC5C,iEAAiE;AACjE,mDAAmD;AACnD,0CAA0C;AAC1C,0BAA0B;;AAE1B,oBAAoB;AACpB,oBAAoB;AACpB,uDAAuD;AACvD,kBAAkB;AAClB,kDAAkD;AAElD,kCAAkC;AAClC,qCAAqC;AAErC,kBAAkB;AAClB,gDAAgD;AAEhD,WAAW;AACX,2BAA2B;AAC3B,4EAA4E;AAC5E,+BAA+B;AAC/B,4BAA4B;AAC5B,sCAAsC;AAEtC,sCAAsC;AACtC,uEAAuE;AACvE,iBAAiB;AACjB,iEAAiE;AACjE,uBAAuB;AACvB,sDAAsD;AACtD,UAAU;AACV,QAAQ;AAER,uCAAuC;AACvC,MAAM;AAEN,wBAAwB;AACxB,kFAAkF;AAClF,kDAAkD;AAClD,8DAA8D;AAC9D,QAAQ;AAER,0FAA0F;AAE1F,sBAAsB;AACtB,0DAA0D;AAC1D,QAAQ;AAER,6EAA6E;AAC7E,sCAAsC;AACtC,2BAA2B;AAC3B,uBAAuB;AACvB,MAAM;AACN,IAAI"}

package/lib/mjs/controllers/UserMetadata.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=UserMetadata.d.ts.map

package/lib/mjs/controllers/UserMetadata.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"UserMetadata.d.ts","sourceRoot":"","sources":["../../../src/controllers/UserMetadata.ts"],"names":[],"mappings":""}

package/lib/mjs/controllers/UserMetadata.js

@@ -0,0 +1,36 @@
+// import { Put, Post, BasePath, Ok, Forbidden } from '@spinajs/http';
+// import { User as UserModel, UserMetadata } from '@spinajs/rbac';
+// import { Permission, User, Resource } from '../decorators.js';
+// import { FromModel, AsModel } from '@spinajs/orm-http';
+export {};
+// @BasePath('user/:user/metadata')
+// @Resource('user.metadata')
+// export class UserMetaController {
+//   @Post()
+//   @Permission('updateOwn')
+//   public async addMetadata(@User() logged: UserModel, @FromModel() user: UserModel, @AsModel() meta: UserMetadata) {
+//     if (logged.Id !== user.Id) {
+//       throw new Forbidden('cannot add metadata to another user');
+//     }
+//     await user.Metadata.add(meta);
+//     return new Ok(meta);
+//   }
+//   @Put('user/:user/metadata/:meta')
+//   @Permission('updateOwn')
+//   public async updateMetadata(@User() logged: UserModel, @FromModel() user: UserModel, @FromModel() meta: UserMetadata) {
+//     if (logged.Id !== user.Id) {
+//       throw new Forbidden('cannot add metadata to another user');
+//     }
+//     await meta.User.populate();
+//     if (meta.User.Value.Id !== logged.Id) {
+//       throw new Forbidden('cannot edit metadata that is not own by user');
+//     }
+//     await meta.update();
+//     return new Ok();
+//   }
+// }
+// // function userOwnerPermissionStrategy(){
+// //    // 1. obtain current logged user
+// //    // 2. find
+// // }
+//# sourceMappingURL=UserMetadata.js.map

package/lib/mjs/controllers/UserMetadata.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"UserMetadata.js","sourceRoot":"","sources":["../../../src/controllers/UserMetadata.ts"],"names":[],"mappings":"AAAA,sEAAsE;AACtE,mEAAmE;AACnE,iEAAiE;AACjE,0DAA0D;;AAE1D,mCAAmC;AACnC,6BAA6B;AAC7B,oCAAoC;AAEpC,YAAY;AACZ,6BAA6B;AAC7B,uHAAuH;AACvH,mCAAmC;AACnC,oEAAoE;AACpE,QAAQ;AAER,qCAAqC;AACrC,2BAA2B;AAC3B,MAAM;AAEN,sCAAsC;AACtC,6BAA6B;AAC7B,4HAA4H;AAC5H,mCAAmC;AACnC,oEAAoE;AACpE,QAAQ;AAER,kCAAkC;AAClC,8CAA8C;AAC9C,6EAA6E;AAC7E,QAAQ;AAER,2BAA2B;AAE3B,uBAAuB;AACvB,MAAM;AACN,IAAI;AAEJ,6CAA6C;AAE7C,yCAAyC;AACzC,mBAAmB;AAEnB,OAAO"}

package/lib/mjs/dto/login-dto.d.ts

@@ -0,0 +1,17 @@
+export declare const LoginDtoSchema: {
+    $schema: string;
+    title: string;
+    type: string;
+    properties: {
+        Login: {
+            type: string;
+            format: string;
+        };
+    };
+    required: string[];
+};
+export declare class UserLoginDto {
+    Email: string;
+    constructor(data: any);
+}
+//# sourceMappingURL=login-dto.d.ts.map

package/lib/mjs/dto/login-dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"login-dto.d.ts","sourceRoot":"","sources":["../../../src/dto/login-dto.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,cAAc;;;;;;;;;;;CAQ1B,CAAC;AAEF,qBACa,YAAY;IAChB,KAAK,EAAE,MAAM,CAAC;gBAET,IAAI,EAAE,GAAG;CAGtB"}

package/lib/mjs/dto/login-dto.js

@@ -0,0 +1,30 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+import { Schema } from '@spinajs/validation';
+export const LoginDtoSchema = {
+    $schema: 'http://json-schema.org/draft-07/schema#',
+    title: 'login DTO',
+    type: 'object',
+    properties: {
+        Login: { type: 'string', format: 'email' },
+    },
+    required: ['Email'],
+};
+let UserLoginDto = class UserLoginDto {
+    constructor(data) {
+        Object.assign(this, data);
+    }
+};
+UserLoginDto = __decorate([
+    Schema(LoginDtoSchema),
+    __metadata("design:paramtypes", [Object])
+], UserLoginDto);
+export { UserLoginDto };
+//# sourceMappingURL=login-dto.js.map

package/lib/mjs/dto/login-dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"login-dto.js","sourceRoot":"","sources":["../../../src/dto/login-dto.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAC;AAE7C,MAAM,CAAC,MAAM,cAAc,GAAG;IAC5B,OAAO,EAAE,yCAAyC;IAClD,KAAK,EAAE,WAAW;IAClB,IAAI,EAAE,QAAQ;IACd,UAAU,EAAE;QACV,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE;KAC3C;IACD,QAAQ,EAAE,CAAC,OAAO,CAAC;CACpB,CAAC;AAGK,IAAM,YAAY,GAAlB,MAAM,YAAY;IAGvB,YAAY,IAAS;QACnB,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;IAC5B,CAAC;CACF,CAAA;AANY,YAAY;IADxB,MAAM,CAAC,cAAc,CAAC;;GACV,YAAY,CAMxB"}

package/lib/mjs/dto/password-dto.d.ts

@@ -0,0 +1,30 @@
+export declare const PasswordDtoSchema: {
+    $schema: string;
+    title: string;
+    type: string;
+    properties: {
+        OldPassword: {
+            type: string;
+            maxLength: number;
+            minLength: number;
+        };
+        Password: {
+            type: string;
+            maxLength: number;
+            minLength: number;
+        };
+        ConfirmPassword: {
+            type: string;
+            maxLength: number;
+            minLength: number;
+        };
+    };
+    required: string[];
+};
+export declare class PasswordDto {
+    OldPassword: string;
+    Password: string;
+    ConfirmPassword: string;
+    constructor(data: any);
+}
+//# sourceMappingURL=password-dto.d.ts.map

package/lib/mjs/dto/password-dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"password-dto.d.ts","sourceRoot":"","sources":["../../../src/dto/password-dto.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;;CAU7B,CAAC;AAEF,qBACa,WAAW;IACf,WAAW,EAAE,MAAM,CAAC;IAEpB,QAAQ,EAAE,MAAM,CAAC;IAEjB,eAAe,EAAE,MAAM,CAAC;gBAEnB,IAAI,EAAE,GAAG;CAGtB"}

package/lib/mjs/dto/password-dto.js

@@ -0,0 +1,32 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+import { Schema } from '@spinajs/validation';
+export const PasswordDtoSchema = {
+    $schema: 'http://json-schema.org/draft-07/schema#',
+    title: 'User password DTO',
+    type: 'object',
+    properties: {
+        OldPassword: { type: 'string', maxLength: 32, minLength: 6 },
+        Password: { type: 'string', maxLength: 32, minLength: 6 },
+        ConfirmPassword: { type: 'string', maxLength: 32, minLength: 6 },
+    },
+    required: ['OldPassword', 'Password', 'ConfirmPassword'],
+};
+let PasswordDto = class PasswordDto {
+    constructor(data) {
+        Object.assign(this, data);
+    }
+};
+PasswordDto = __decorate([
+    Schema(PasswordDtoSchema),
+    __metadata("design:paramtypes", [Object])
+], PasswordDto);
+export { PasswordDto };
+//# sourceMappingURL=password-dto.js.map

package/lib/mjs/dto/password-dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"password-dto.js","sourceRoot":"","sources":["../../../src/dto/password-dto.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAC;AAE7C,MAAM,CAAC,MAAM,iBAAiB,GAAG;IAC/B,OAAO,EAAE,yCAAyC;IAClD,KAAK,EAAE,mBAAmB;IAC1B,IAAI,EAAE,QAAQ;IACd,UAAU,EAAE;QACV,WAAW,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,SAAS,EAAE,EAAE,EAAE,SAAS,EAAE,CAAC,EAAE;QAC5D,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,SAAS,EAAE,EAAE,EAAE,SAAS,EAAE,CAAC,EAAE;QACzD,eAAe,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,SAAS,EAAE,EAAE,EAAE,SAAS,EAAE,CAAC,EAAE;KACjE;IACD,QAAQ,EAAE,CAAC,aAAa,EAAE,UAAU,EAAE,iBAAiB,CAAC;CACzD,CAAC;AAGK,IAAM,WAAW,GAAjB,MAAM,WAAW;IAOtB,YAAY,IAAS;QACnB,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;IAC5B,CAAC;CACF,CAAA;AAVY,WAAW;IADvB,MAAM,CAAC,iBAAiB,CAAC;;GACb,WAAW,CAUvB"}

package/lib/mjs/dto/restore-password-dto.d.ts

@@ -0,0 +1,24 @@
+export declare const RestorePasswordDtoSchema: {
+    $schema: string;
+    title: string;
+    type: string;
+    properties: {
+        Password: {
+            type: string;
+            maxLength: number;
+            minLength: number;
+        };
+        ConfirmPassword: {
+            type: string;
+            maxLength: number;
+            minLength: number;
+        };
+    };
+    required: string[];
+};
+export declare class RestorePasswordDto {
+    Password: string;
+    ConfirmPassword: string;
+    constructor(data: any);
+}
+//# sourceMappingURL=restore-password-dto.d.ts.map

package/lib/mjs/dto/restore-password-dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"restore-password-dto.d.ts","sourceRoot":"","sources":["../../../src/dto/restore-password-dto.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,wBAAwB;;;;;;;;;;;;;;;;;CASpC,CAAC;AAEF,qBACa,kBAAkB;IACtB,QAAQ,EAAE,MAAM,CAAC;IAEjB,eAAe,EAAE,MAAM,CAAC;gBAEnB,IAAI,EAAE,GAAG;CAGtB"}

package/lib/mjs/dto/restore-password-dto.js

@@ -0,0 +1,31 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+import { Schema } from '@spinajs/validation';
+export const RestorePasswordDtoSchema = {
+    $schema: 'http://json-schema.org/draft-07/schema#',
+    title: 'User password DTO',
+    type: 'object',
+    properties: {
+        Password: { type: 'string', maxLength: 32, minLength: 6 },
+        ConfirmPassword: { type: 'string', maxLength: 32, minLength: 6 },
+    },
+    required: ['Password', 'ConfirmPassword'],
+};
+let RestorePasswordDto = class RestorePasswordDto {
+    constructor(data) {
+        Object.assign(this, data);
+    }
+};
+RestorePasswordDto = __decorate([
+    Schema(RestorePasswordDtoSchema),
+    __metadata("design:paramtypes", [Object])
+], RestorePasswordDto);
+export { RestorePasswordDto };
+//# sourceMappingURL=restore-password-dto.js.map

package/lib/mjs/dto/restore-password-dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"restore-password-dto.js","sourceRoot":"","sources":["../../../src/dto/restore-password-dto.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAC;AAE7C,MAAM,CAAC,MAAM,wBAAwB,GAAG;IACtC,OAAO,EAAE,yCAAyC;IAClD,KAAK,EAAE,mBAAmB;IAC1B,IAAI,EAAE,QAAQ;IACd,UAAU,EAAE;QACV,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,SAAS,EAAE,EAAE,EAAE,SAAS,EAAE,CAAC,EAAE;QACzD,eAAe,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,SAAS,EAAE,EAAE,EAAE,SAAS,EAAE,CAAC,EAAE;KACjE;IACD,QAAQ,EAAE,CAAC,UAAU,EAAE,iBAAiB,CAAC;CAC1C,CAAC;AAGK,IAAM,kBAAkB,GAAxB,MAAM,kBAAkB;IAK7B,YAAY,IAAS;QACnB,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;IAC5B,CAAC;CACF,CAAA;AARY,kBAAkB;IAD9B,MAAM,CAAC,wBAAwB,CAAC;;GACpB,kBAAkB,CAQ9B"}

package/lib/mjs/dto/token-dto.d.ts

@@ -0,0 +1,16 @@
+export declare const TokenDtoSchema: {
+    $schema: string;
+    title: string;
+    type: string;
+    properties: {
+        Token: {
+            type: string;
+            maxLength: number;
+        };
+    };
+};
+export declare class TokenDto {
+    Token: string;
+    constructor(data: any);
+}
+//# sourceMappingURL=token-dto.d.ts.map

package/lib/mjs/dto/token-dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-dto.d.ts","sourceRoot":"","sources":["../../../src/dto/token-dto.ts"],"names":[],"mappings":"AACA,eAAO,MAAM,cAAc;;;;;;;;;;CAO1B,CAAC;AAEF,qBACa,QAAQ;IACZ,KAAK,EAAE,MAAM,CAAC;gBAET,IAAI,EAAE,GAAG;CAGtB"}

package/lib/mjs/dto/token-dto.js

@@ -0,0 +1,29 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+import { Schema } from '@spinajs/validation';
+export const TokenDtoSchema = {
+    $schema: 'http://json-schema.org/draft-07/schema#',
+    title: 'Token DTO',
+    type: 'object',
+    properties: {
+        Token: { type: 'string', maxLength: 64 },
+    },
+};
+let TokenDto = class TokenDto {
+    constructor(data) {
+        Object.assign(this, data);
+    }
+};
+TokenDto = __decorate([
+    Schema(TokenDtoSchema),
+    __metadata("design:paramtypes", [Object])
+], TokenDto);
+export { TokenDto };
+//# sourceMappingURL=token-dto.js.map

package/lib/mjs/dto/token-dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-dto.js","sourceRoot":"","sources":["../../../src/dto/token-dto.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAC;AAC7C,MAAM,CAAC,MAAM,cAAc,GAAG;IAC5B,OAAO,EAAE,yCAAyC;IAClD,KAAK,EAAE,WAAW;IAClB,IAAI,EAAE,QAAQ;IACd,UAAU,EAAE;QACV,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,SAAS,EAAE,EAAE,EAAE;KACzC;CACF,CAAC;AAGK,IAAM,QAAQ,GAAd,MAAM,QAAQ;IAGnB,YAAY,IAAS;QACnB,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;IAC5B,CAAC;CACF,CAAA;AANY,QAAQ;IADpB,MAAM,CAAC,cAAc,CAAC;;GACV,QAAQ,CAMpB"}