@spinajs/rbac-http 2.0.132 → 2.0.133

package/lib/mjs/controllers/LoginController.js

@@ -1,304 +0,0 @@
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-import { InvalidOperation } from '@spinajs/exceptions';
-import { UserLoginDto } from '../dto/userLogin-dto.js';
-import { BaseController, BasePath, Post, Body, Ok, Get, Cookie, CookieResponse, Unauthorized, Header, Policy, Query, BadRequest, NotFound } from '@spinajs/http';
-import { AuthProvider, FederatedAuthProvider, PasswordProvider, PasswordValidationProvider, Session, SessionProvider, User, UserMetadata, UserPasswordChanged } from '@spinajs/rbac';
-import { Autoinject } from '@spinajs/di';
-import { AutoinjectService, Config, Configuration } from '@spinajs/configuration';
-import { FingerprintProvider, TwoFactorAuthProvider } from '../interfaces.js';
-import { QueueService } from '@spinajs/queue';
-import { NotLoggedPolicy } from '../policies/NotLoggedPolicy.js';
-import { LoggedPolicy } from '../policies/LoggedPolicy.js';
-import { UserPasswordRestore } from '../events/UserPassordRestore.js';
-import { RestorePasswordDto } from '../dto/restore-password-dto.js';
-import { v4 as uuidv4 } from 'uuid';
-import { DateTime } from 'luxon';
-import { UserAction } from '@spinajs/rbac';
-import { UserLoginSuccess } from '../events/UserLoginSuccess.js';
-let LoginController = class LoginController extends BaseController {
-    async loginFederated(credentials, caller) {
-        const strategy = this.FederatedLoginStrategies.find((x) => x.callerCheck(caller));
-        if (!strategy) {
-            throw new InvalidOperation(`No auth stragegy registered for caller ${caller}`);
-        }
-        const result = await strategy.authenticate(credentials);
-        if (!result.Error) {
-            // proceed with standard authentication
-            return await this.authenticate(result.User);
-        }
-        return new Unauthorized(result.Error);
-    }
-    /**
-     *
-     * Api call for listing avaible federated login strategies
-     *
-     * @returns response with avaible login strategies
-     */
-    async federatedLoginList() {
-        return new Ok(this.FederatedLoginStrategies.map((x) => x.Name));
-    }
-    async login(credentials) {
-        const result = await this.AuthProvider.authenticate(credentials.Email, credentials.Password);
-        if (!result.Error) {
-            // proceed with standard authentication
-            return await this.authenticate(result.User);
-        }
-        return new Unauthorized(result.Error);
-    }
-    async setNewPassword(token, pwd) {
-        const user = await User.query()
-            .innerJoin(UserMetadata, function () {
-            this.where({
-                Key: 'password:reset:token',
-                Value: token,
-            });
-        })
-            .populate('Metadata')
-            .first();
-        if (!user) {
-            return new NotFound({
-                error: {
-                    code: 'ERR_USER_NOT_FOUND',
-                    message: 'No user found for this reset token',
-                },
-            });
-        }
-        const val = (await user.Metadata['password:reset:start']);
-        const now = DateTime.now().plus({ seconds: -this.PasswordResetTokenTTL });
-        if (val < now) {
-            return new BadRequest({
-                error: {
-                    code: 'ERR_RESET_TOKEN_EXPIRED',
-                    message: 'Password reset token expired',
-                },
-            });
-        }
-        if (!this.PasswordValidationService.check(pwd.Password)) {
-            return new BadRequest({
-                error: {
-                    code: 'ERR_PASSWORD_RULE',
-                    message: 'Invalid password, does not match password rules',
-                },
-            });
-        }
-        if (pwd.Password !== pwd.ConfirmPassword) {
-            return new BadRequest({
-                error: {
-                    code: 'ERR_PASSWORD_NOT_MATCH',
-                    message: 'Password and repeat password does not match',
-                },
-            });
-        }
-        const hashedPassword = await this.PasswordProvider.hash(pwd.Password);
-        user.Password = hashedPassword;
-        await user.update();
-        /**
-         * Delete all reset related meta for user
-         */
-        await user.Metadata.delete(/password:reset.*/);
-        // add to action list
-        await user.Actions.add(new UserAction({
-            Persistent: true,
-            Action: 'password:reset',
-        }));
-        // inform others
-        await this.Queue.emit(new UserPasswordChanged(user.Uuid));
-    }
-    async forgotPassword(login) {
-        const user = await this.AuthProvider.getByEmail(login.Email);
-        if (!user.IsActive || user.IsBanned || user.DeletedAt !== null) {
-            return new InvalidOperation('User is inactive, banned or deleted. Contact system administrator');
-        }
-        const token = uuidv4();
-        // assign meta to user
-        await (user.Metadata['password:reset'] = true);
-        await (user.Metadata['password:reset:token'] = token);
-        await (user.Metadata['password:reset:start'] = DateTime.now());
-        await user.Actions.add(new UserAction({
-            Action: 'user:password:reset',
-            Data: DateTime.now().toISO(),
-            Persistent: true,
-        }));
-        await this.Queue.emit(new UserPasswordRestore(user.Uuid, token));
-        return new Ok({
-            reset_token: token,
-            ttl: this.PasswordResetTokenTTL,
-        });
-    }
-    async logout(ssid) {
-        if (!ssid) {
-            return new Ok();
-        }
-        await this.SessionProvider.delete(ssid);
-        // send empty cookie to confirm session deletion
-        return new CookieResponse('ssid', null, this.SessionExpirationTime);
-    }
-    async authenticate(user, federated) {
-        if (!user) {
-            return new Unauthorized({
-                error: {
-                    message: 'login or password incorrect',
-                },
-            });
-        }
-        await user.Metadata.populate();
-        const session = new Session();
-        const dUser = user.dehydrate();
-        session.Data.set('User', dUser);
-        // we found user but we still dont know if is authorized
-        // eg. 2fa auth is not performed
-        // create session, but user is not yet authorized
-        session.Data.set('Authorized', false);
-        // if its federated login, skip 2fa - assume
-        // external login service provided it
-        if (this.TwoFactorConfig.enabled || !federated) {
-            await this.SessionProvider.save(session);
-            const enabledForUser = await this.TwoFactorAuthProvider.isEnabled(user);
-            /**
-             * if 2fa is enabled for user, proceed
-             */
-            if (enabledForUser) {
-                /**
-                 * check if 2fa system is initialized for user eg. private key is generated.
-                 */
-                const isInitialized = await this.TwoFactorAuthProvider.isInitialized(user);
-                if (!isInitialized) {
-                    const twoFaResult = await this.TwoFactorAuthProvider.initialize(user);
-                    return new CookieResponse('ssid', session.SessionId, this.SessionExpirationTime, true, {
-                        toFactorAuth: true,
-                        twoFactorAuthFirstTime: true,
-                        method: this.TwoFactorConfig.service,
-                        data: twoFaResult,
-                    }, { httpOnly: true });
-                }
-                // give chance to execute 2fa eg. send sms or email
-                await this.TwoFactorAuthProvider.execute(user);
-                // return session to identify user
-                // and only info that twoFactor auth is requested
-                return new CookieResponse('ssid', session.SessionId, this.SessionExpirationTime, true, {
-                    toFactorAuth: true,
-                }, { httpOnly: true });
-            }
-        }
-        // 2fa is not enabled, so we found user, it means it is logged
-        session.Data.set('Authorized', true);
-        await this.SessionProvider.save(session);
-        await this.Queue.emit(new UserLoginSuccess(user.Uuid));
-        user.LastLoginAt = DateTime.now();
-        await user.update();
-        // BEWARE: httpOnly coockie, only accesible via http method in browser
-        // return coockie session id with additional user data
-        return new CookieResponse('ssid', session.SessionId, this.SessionExpirationTime, true, dUser, { httpOnly: true });
-    }
-};
-__decorate([
-    Autoinject(),
-    __metadata("design:type", Configuration)
-], LoginController.prototype, "Configuration", void 0);
-__decorate([
-    AutoinjectService('rbac.auth'),
-    __metadata("design:type", AuthProvider)
-], LoginController.prototype, "AuthProvider", void 0);
-__decorate([
-    AutoinjectService('rbac.session'),
-    __metadata("design:type", SessionProvider)
-], LoginController.prototype, "SessionProvider", void 0);
-__decorate([
-    Config('rbac.session.expiration', {
-        defaultValue: 120,
-    }),
-    __metadata("design:type", Number)
-], LoginController.prototype, "SessionExpirationTime", void 0);
-__decorate([
-    Config('rbac.password_reset.ttl'),
-    __metadata("design:type", Number)
-], LoginController.prototype, "PasswordResetTokenTTL", void 0);
-__decorate([
-    AutoinjectService('rbac.twoFactorAuth'),
-    __metadata("design:type", TwoFactorAuthProvider)
-], LoginController.prototype, "TwoFactorAuthProvider", void 0);
-__decorate([
-    AutoinjectService('rbac.fingerprint'),
-    __metadata("design:type", FingerprintProvider)
-], LoginController.prototype, "FingerprintProvider", void 0);
-__decorate([
-    AutoinjectService('rbac.password.validation'),
-    __metadata("design:type", PasswordValidationProvider)
-], LoginController.prototype, "PasswordValidationService", void 0);
-__decorate([
-    Autoinject(FederatedAuthProvider),
-    __metadata("design:type", Array)
-], LoginController.prototype, "FederatedLoginStrategies", void 0);
-__decorate([
-    Autoinject(),
-    __metadata("design:type", PasswordProvider)
-], LoginController.prototype, "PasswordProvider", void 0);
-__decorate([
-    Autoinject(QueueService),
-    __metadata("design:type", QueueService)
-], LoginController.prototype, "Queue", void 0);
-__decorate([
-    Post('federated-login'),
-    Policy(NotLoggedPolicy),
-    __param(0, Body()),
-    __param(1, Header('Host')),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [Object, String]),
-    __metadata("design:returntype", Promise)
-], LoginController.prototype, "loginFederated", null);
-__decorate([
-    Get(),
-    Policy(NotLoggedPolicy),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", []),
-    __metadata("design:returntype", Promise)
-], LoginController.prototype, "federatedLoginList", null);
-__decorate([
-    Post(),
-    Policy(NotLoggedPolicy),
-    __param(0, Body()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [UserLoginDto]),
-    __metadata("design:returntype", Promise)
-], LoginController.prototype, "login", null);
-__decorate([
-    Post('new-password'),
-    Policy(NotLoggedPolicy),
-    __param(0, Query()),
-    __param(1, Body()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [String, RestorePasswordDto]),
-    __metadata("design:returntype", Promise)
-], LoginController.prototype, "setNewPassword", null);
-__decorate([
-    Post('forgot-password'),
-    Policy(NotLoggedPolicy),
-    __param(0, Body()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [UserLoginDto]),
-    __metadata("design:returntype", Promise)
-], LoginController.prototype, "forgotPassword", null);
-__decorate([
-    Get(),
-    Policy(LoggedPolicy),
-    __param(0, Cookie()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [String]),
-    __metadata("design:returntype", Promise)
-], LoginController.prototype, "logout", null);
-LoginController = __decorate([
-    BasePath('user/auth')
-], LoginController);
-export { LoginController };
-//# sourceMappingURL=LoginController.js.map

package/lib/mjs/controllers/LoginController.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"LoginController.js","sourceRoot":"","sources":["../../../src/controllers/LoginController.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AACvD,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAC;AACvD,OAAO,EAAE,cAAc,EAAE,QAAQ,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,EAAE,MAAM,EAAE,cAAc,EAAE,YAAY,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AACjK,OAAO,EAAE,YAAY,EAAE,qBAAqB,EAAE,gBAAgB,EAAE,0BAA0B,EAAE,OAAO,EAAE,eAAe,EAAE,IAAI,EAAqB,YAAY,EAAE,mBAAmB,EAAE,MAAM,eAAe,CAAC;AACxM,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,iBAAiB,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,wBAAwB,CAAC;AAElF,OAAO,EAAE,mBAAmB,EAAE,qBAAqB,EAAE,MAAM,kBAAkB,CAAC;AAC9E,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAE9C,OAAO,EAAE,eAAe,EAAE,MAAM,gCAAgC,CAAC;AACjE,OAAO,EAAE,YAAY,EAAE,MAAM,6BAA6B,CAAC;AAC3D,OAAO,EAAE,mBAAmB,EAAE,MAAM,iCAAiC,CAAC;AACtE,OAAO,EAAE,kBAAkB,EAAE,MAAM,gCAAgC,CAAC;AAEpE,OAAO,EAAE,EAAE,IAAI,MAAM,EAAE,MAAM,MAAM,CAAC;AACpC,OAAO,EAAE,QAAQ,EAAE,MAAM,OAAO,CAAC;AACjC,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAC3C,OAAO,EAAE,gBAAgB,EAAE,MAAM,+BAA+B,CAAC;AAG1D,IAAM,eAAe,GAArB,MAAM,eAAgB,SAAQ,cAAc;IAsCpC,AAAN,KAAK,CAAC,cAAc,CAAS,WAAoB,EAAkB,MAAc;QACtF,MAAM,QAAQ,GAAG,IAAI,CAAC,wBAAwB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC;QAClF,IAAI,CAAC,QAAQ,EAAE;YACb,MAAM,IAAI,gBAAgB,CAAC,0CAA0C,MAAM,EAAE,CAAC,CAAC;SAChF;QAED,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,YAAY,CAAC,WAAW,CAAC,CAAC;QACxD,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE;YACjB,uCAAuC;YACvC,OAAO,MAAM,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;SAC7C;QAED,OAAO,IAAI,YAAY,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACxC,CAAC;IAED;;;;;OAKG;IAGU,AAAN,KAAK,CAAC,kBAAkB;QAC7B,OAAO,IAAI,EAAE,CAAC,IAAI,CAAC,wBAAwB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IAClE,CAAC;IAIY,AAAN,KAAK,CAAC,KAAK,CAAS,WAAyB;QAClD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,YAAY,CAAC,WAAW,CAAC,KAAK,EAAE,WAAW,CAAC,QAAQ,CAAC,CAAC;QAE7F,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE;YACjB,uCAAuC;YACvC,OAAO,MAAM,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;SAC7C;QAED,OAAO,IAAI,YAAY,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACxC,CAAC;IAIY,AAAN,KAAK,CAAC,cAAc,CAAU,KAAa,EAAU,GAAuB;QACjF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,KAAK,EAAE;aAC5B,SAAS,CAAC,YAAY,EAAE;YACvB,IAAI,CAAC,KAAK,CAAC;gBACT,GAAG,EAAE,sBAAsB;gBAC3B,KAAK,EAAE,KAAK;aACb,CAAC,CAAC;QACL,CAAC,CAAC;aACD,QAAQ,CAAC,UAAU,CAAC;aACpB,KAAK,EAAE,CAAC;QAEX,IAAI,CAAC,IAAI,EAAE;YACT,OAAO,IAAI,QAAQ,CAAC;gBAClB,KAAK,EAAE;oBACL,IAAI,EAAE,oBAAoB;oBAC1B,OAAO,EAAE,oCAAoC;iBAC9C;aACF,CAAC,CAAC;SACJ;QAED,MAAM,GAAG,GAAG,CAAC,MAAM,IAAI,CAAC,QAAQ,CAAC,sBAAsB,CAAC,CAAa,CAAC;QACtE,MAAM,GAAG,GAAG,QAAQ,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,CAAC,IAAI,CAAC,qBAAqB,EAAE,CAAC,CAAC;QAE1E,IAAI,GAAG,GAAG,GAAG,EAAE;YACb,OAAO,IAAI,UAAU,CAAC;gBACpB,KAAK,EAAE;oBACL,IAAI,EAAE,yBAAyB;oBAC/B,OAAO,EAAE,8BAA8B;iBACxC;aACF,CAAC,CAAC;SACJ;QAED,IAAI,CAAC,IAAI,CAAC,yBAAyB,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE;YACvD,OAAO,IAAI,UAAU,CAAC;gBACpB,KAAK,EAAE;oBACL,IAAI,EAAE,mBAAmB;oBACzB,OAAO,EAAE,iDAAiD;iBAC3D;aACF,CAAC,CAAC;SACJ;QAED,IAAI,GAAG,CAAC,QAAQ,KAAK,GAAG,CAAC,eAAe,EAAE;YACxC,OAAO,IAAI,UAAU,CAAC;gBACpB,KAAK,EAAE;oBACL,IAAI,EAAE,wBAAwB;oBAC9B,OAAO,EAAE,6CAA6C;iBACvD;aACF,CAAC,CAAC;SACJ;QAED,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QACtE,IAAI,CAAC,QAAQ,GAAG,cAAc,CAAC;QAE/B,MAAM,IAAI,CAAC,MAAM,EAAE,CAAC;QAEpB;;WAEG;QACH,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAC;QAE/C,qBAAqB;QACrB,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,CACpB,IAAI,UAAU,CAAC;YACb,UAAU,EAAE,IAAI;YAChB,MAAM,EAAE,gBAAgB;SACzB,CAAC,CACH,CAAC;QAEF,gBAAgB;QAChB,MAAM,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,mBAAmB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IAC5D,CAAC;IAIY,AAAN,KAAK,CAAC,cAAc,CAAS,KAAmB;QACrD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,UAAU,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QAE7D,IAAI,CAAC,IAAI,CAAC,QAAQ,IAAI,IAAI,CAAC,QAAQ,IAAI,IAAI,CAAC,SAAS,KAAK,IAAI,EAAE;YAC9D,OAAO,IAAI,gBAAgB,CAAC,mEAAmE,CAAC,CAAC;SAClG;QAED,MAAM,KAAK,GAAG,MAAM,EAAE,CAAC;QAEvB,sBAAsB;QACtB,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC;QAC/C,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,sBAAsB,CAAC,GAAG,KAAK,CAAC,CAAC;QACtD,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,sBAAsB,CAAC,GAAG,QAAQ,CAAC,GAAG,EAAE,CAAC,CAAC;QAE/D,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,CACpB,IAAI,UAAU,CAAC;YACb,MAAM,EAAE,qBAAqB;YAC7B,IAAI,EAAE,QAAQ,CAAC,GAAG,EAAE,CAAC,KAAK,EAAE;YAC5B,UAAU,EAAE,IAAI;SACjB,CAAC,CACH,CAAC;QAEF,MAAM,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,mBAAmB,CAAC,IAAI,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC,CAAC;QAEjE,OAAO,IAAI,EAAE,CAAC;YACZ,WAAW,EAAE,KAAK;YAClB,GAAG,EAAE,IAAI,CAAC,qBAAqB;SAChC,CAAC,CAAC;IACL,CAAC;IAIY,AAAN,KAAK,CAAC,MAAM,CAAW,IAAY;QACxC,IAAI,CAAC,IAAI,EAAE;YACT,OAAO,IAAI,EAAE,EAAE,CAAC;SACjB;QAED,MAAM,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAExC,gDAAgD;QAChD,OAAO,IAAI,cAAc,CAAC,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,qBAAqB,CAAC,CAAC;IACtE,CAAC;IAES,KAAK,CAAC,YAAY,CAAC,IAAe,EAAE,SAAmB;QAC/D,IAAI,CAAC,IAAI,EAAE;YACT,OAAO,IAAI,YAAY,CAAC;gBACtB,KAAK,EAAE;oBACL,OAAO,EAAE,6BAA6B;iBACvC;aACF,CAAC,CAAC;SACJ;QAED,MAAM,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC;QAE/B,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE,CAAC;QAC9B,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;QAEhC,wDAAwD;QACxD,gCAAgC;QAChC,iDAAiD;QACjD,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;QAEtC,4CAA4C;QAC5C,qCAAqC;QACrC,IAAI,IAAI,CAAC,eAAe,CAAC,OAAO,IAAI,CAAC,SAAS,EAAE;YAC9C,MAAM,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAEzC,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;YAExE;;eAEG;YACH,IAAI,cAAc,EAAE;gBAClB;;mBAEG;gBACH,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC;gBAC3E,IAAI,CAAC,aAAa,EAAE;oBAClB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;oBAEtE,OAAO,IAAI,cAAc,CACvB,MAAM,EACN,OAAO,CAAC,SAAS,EACjB,IAAI,CAAC,qBAAqB,EAC1B,IAAI,EACJ;wBACE,YAAY,EAAE,IAAI;wBAClB,sBAAsB,EAAE,IAAI;wBAC5B,MAAM,EAAE,IAAI,CAAC,eAAe,CAAC,OAAO;wBACpC,IAAI,EAAE,WAAW;qBAClB,EACD,EAAE,QAAQ,EAAE,IAAI,EAAE,CACnB,CAAC;iBACH;gBAED,mDAAmD;gBACnD,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;gBAE/C,kCAAkC;gBAClC,iDAAiD;gBACjD,OAAO,IAAI,cAAc,CACvB,MAAM,EACN,OAAO,CAAC,SAAS,EACjB,IAAI,CAAC,qBAAqB,EAC1B,IAAI,EACJ;oBACE,YAAY,EAAE,IAAI;iBACnB,EACD,EAAE,QAAQ,EAAE,IAAI,EAAE,CACnB,CAAC;aACH;SACF;QAED,8DAA8D;QAC9D,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,YAAY,EAAE,IAAI,CAAC,CAAC;QACrC,MAAM,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAEzC,MAAM,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAEvD,IAAI,CAAC,WAAW,GAAG,QAAQ,CAAC,GAAG,EAAE,CAAC;QAClC,MAAM,IAAI,CAAC,MAAM,EAAE,CAAC;QAEpB,sEAAsE;QACtE,sDAAsD;QACtD,OAAO,IAAI,cAAc,CAAC,MAAM,EAAE,OAAO,CAAC,SAAS,EAAE,IAAI,CAAC,qBAAqB,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;IACpH,CAAC;CACF,CAAA;AAxRC;IAAC,UAAU,EAAE;8BACY,aAAa;sDAAC;AAEvC;IAAC,iBAAiB,CAAC,WAAW,CAAC;8BACP,YAAY;qDAAC;AAErC;IAAC,iBAAiB,CAAC,cAAc,CAAC;8BACP,eAAe;wDAAC;AAE3C;IAAC,MAAM,CAAC,yBAAyB,EAAE;QACjC,YAAY,EAAE,GAAG;KAClB,CAAC;;8DACsC;AAExC;IAAC,MAAM,CAAC,yBAAyB,CAAC;;8DACM;AAExC;IAAC,iBAAiB,CAAC,oBAAoB,CAAC;8BACP,qBAAqB;8DAAC;AAEvD;IAAC,iBAAiB,CAAC,kBAAkB,CAAC;8BACP,mBAAmB;4DAAC;AAEnD;IAAC,iBAAiB,CAAC,0BAA0B,CAAC;8BACT,0BAA0B;kEAAC;AAEhE;IAAC,UAAU,CAAC,qBAAqB,CAAC;;iEAC+B;AAEjE;IAAC,UAAU,EAAE;8BACe,gBAAgB;yDAAC;AAE7C;IAAC,UAAU,CAAC,YAAY,CAAC;8BACR,YAAY;8CAAC;AAIjB;IAFZ,IAAI,CAAC,iBAAiB,CAAC;IACvB,MAAM,CAAC,eAAe,CAAC;IACK,WAAA,IAAI,EAAE,CAAA;IAAwB,WAAA,MAAM,CAAC,MAAM,CAAC,CAAA;;;;qDAaxE;AAUY;IAFZ,GAAG,EAAE;IACL,MAAM,CAAC,eAAe,CAAC;;;;yDAGvB;AAIY;IAFZ,IAAI,EAAE;IACN,MAAM,CAAC,eAAe,CAAC;IACJ,WAAA,IAAI,EAAE,CAAA;;qCAAc,YAAY;;4CASnD;AAIY;IAFZ,IAAI,CAAC,cAAc,CAAC;IACpB,MAAM,CAAC,eAAe,CAAC;IACK,WAAA,KAAK,EAAE,CAAA;IAAiB,WAAA,IAAI,EAAE,CAAA;;6CAAM,kBAAkB;;qDAsElF;AAIY;IAFZ,IAAI,CAAC,iBAAiB,CAAC;IACvB,MAAM,CAAC,eAAe,CAAC;IACK,WAAA,IAAI,EAAE,CAAA;;qCAAQ,YAAY;;qDA4BtD;AAIY;IAFZ,GAAG,EAAE;IACL,MAAM,CAAC,YAAY,CAAC;IACA,WAAA,MAAM,EAAE,CAAA;;;;6CAS5B;AAnMU,eAAe;IAD3B,QAAQ,CAAC,WAAW,CAAC;GACT,eAAe,CAyR3B;SAzRY,eAAe"}

package/lib/mjs/controllers/TwoFactorAuthController.d.ts

@@ -1,12 +0,0 @@
-import { TokenDto } from './../dto/token-dto.js';
-import { BaseController, Ok, Unauthorized } from '@spinajs/http';
-import { SessionProvider, User as UserModel } from '@spinajs/rbac';
-import { TwoFactorAuthProvider } from '../interfaces.js';
-import { QueueService } from '@spinajs/queue';
-export declare class TwoFactorAuthController extends BaseController {
-    protected Queue: QueueService;
-    protected SessionProvider: SessionProvider;
-    protected TwoFactorAuthProvider: TwoFactorAuthProvider;
-    verifyToken(logged: UserModel, token: TokenDto, ssid: string): Promise<Unauthorized | Ok>;
-}
-//# sourceMappingURL=TwoFactorAuthController.d.ts.map

package/lib/mjs/controllers/TwoFactorAuthController.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"TwoFactorAuthController.d.ts","sourceRoot":"","sources":["../../../src/controllers/TwoFactorAuthController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAC;AACjD,OAAO,EAAE,cAAc,EAAoB,EAAE,EAAQ,YAAY,EAAE,MAAM,eAAe,CAAC;AACzF,OAAO,EAAE,eAAe,EAAE,IAAI,IAAI,SAAS,EAAE,MAAM,eAAe,CAAC;AAMnE,OAAO,EAAE,qBAAqB,EAAE,MAAM,kBAAkB,CAAC;AAIzD,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAE9C,qBAEa,uBAAwB,SAAQ,cAAc;IAEzD,SAAS,CAAC,KAAK,EAAE,YAAY,CAAC;IAG9B,SAAS,CAAC,eAAe,EAAE,eAAe,CAAC;IAG3C,SAAS,CAAC,qBAAqB,EAAE,qBAAqB,CAAC;IAG1C,WAAW,CAAS,MAAM,EAAE,SAAS,EAAU,KAAK,EAAE,QAAQ,EAAY,IAAI,EAAE,MAAM;CAoBpG"}

package/lib/mjs/controllers/TwoFactorAuthController.js

@@ -1,68 +0,0 @@
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-import { TokenDto } from './../dto/token-dto.js';
-import { BaseController, BasePath, Cookie, Ok, Post, Unauthorized } from '@spinajs/http';
-import { SessionProvider, User as UserModel } from '@spinajs/rbac';
-import { Body, Policy } from '@spinajs/http';
-import { User } from '../decorators.js';
-import { TwoFacRouteEnabled } from '../policies/2FaPolicy.js';
-import { AutoinjectService } from '@spinajs/configuration';
-import { TwoFactorAuthProvider } from '../interfaces.js';
-import { DateTime } from 'luxon';
-import { UserLoginSuccess } from '../events/UserLoginSuccess.js';
-import { Autoinject } from '@spinajs/di';
-import { QueueService } from '@spinajs/queue';
-let TwoFactorAuthController = class TwoFactorAuthController extends BaseController {
-    async verifyToken(logged, token, ssid) {
-        const result = await this.TwoFactorAuthProvider.verifyToken(token.Token, logged);
-        if (result) {
-            return new Unauthorized(`invalid token`);
-        }
-        logged.LastLoginAt = DateTime.now();
-        await logged.update();
-        await this.Queue.emit(new UserLoginSuccess(logged.Uuid));
-        await this.SessionProvider.save(ssid, {
-            Authorized: true,
-            TwoFactorAuth_check: true,
-        });
-        // return user data
-        return new Ok(logged.dehydrate());
-    }
-};
-__decorate([
-    Autoinject(QueueService),
-    __metadata("design:type", QueueService)
-], TwoFactorAuthController.prototype, "Queue", void 0);
-__decorate([
-    AutoinjectService('rbac.session'),
-    __metadata("design:type", SessionProvider)
-], TwoFactorAuthController.prototype, "SessionProvider", void 0);
-__decorate([
-    AutoinjectService('rbac.twoFactorAuth'),
-    __metadata("design:type", TwoFactorAuthProvider)
-], TwoFactorAuthController.prototype, "TwoFactorAuthProvider", void 0);
-__decorate([
-    Post('2fa/verify'),
-    __param(0, User()),
-    __param(1, Body()),
-    __param(2, Cookie()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [UserModel, TokenDto, String]),
-    __metadata("design:returntype", Promise)
-], TwoFactorAuthController.prototype, "verifyToken", null);
-TwoFactorAuthController = __decorate([
-    BasePath('user/auth'),
-    Policy(TwoFacRouteEnabled)
-], TwoFactorAuthController);
-export { TwoFactorAuthController };
-//# sourceMappingURL=TwoFactorAuthController.js.map

package/lib/mjs/controllers/TwoFactorAuthController.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"TwoFactorAuthController.js","sourceRoot":"","sources":["../../../src/controllers/TwoFactorAuthController.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAC;AACjD,OAAO,EAAE,cAAc,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AACzF,OAAO,EAAE,eAAe,EAAE,IAAI,IAAI,SAAS,EAAE,MAAM,eAAe,CAAC;AACnE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,eAAe,CAAC;AAE7C,OAAO,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAC;AACxC,OAAO,EAAE,kBAAkB,EAAE,MAAM,0BAA0B,CAAC;AAC9D,OAAO,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAC3D,OAAO,EAAE,qBAAqB,EAAE,MAAM,kBAAkB,CAAC;AACzD,OAAO,EAAE,QAAQ,EAAE,MAAM,OAAO,CAAC;AACjC,OAAO,EAAE,gBAAgB,EAAE,MAAM,+BAA+B,CAAC;AACjE,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAIvC,IAAM,uBAAuB,GAA7B,MAAM,uBAAwB,SAAQ,cAAc;IAW5C,AAAN,KAAK,CAAC,WAAW,CAAS,MAAiB,EAAU,KAAe,EAAY,IAAY;QACjG,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAAC,WAAW,CAAC,KAAK,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;QAEjF,IAAI,MAAM,EAAE;YACV,OAAO,IAAI,YAAY,CAAC,eAAe,CAAC,CAAC;SAC1C;QAED,MAAM,CAAC,WAAW,GAAG,QAAQ,CAAC,GAAG,EAAE,CAAC;QACpC,MAAM,MAAM,CAAC,MAAM,EAAE,CAAC;QAEtB,MAAM,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,gBAAgB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC;QAEzD,MAAM,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,IAAI,EAAE;YACpC,UAAU,EAAE,IAAI;YAChB,mBAAmB,EAAE,IAAI;SAC1B,CAAC,CAAC;QAEH,mBAAmB;QACnB,OAAO,IAAI,EAAE,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC,CAAC;IACpC,CAAC;CACF,CAAA;AA9BC;IAAC,UAAU,CAAC,YAAY,CAAC;8BACR,YAAY;sDAAC;AAE9B;IAAC,iBAAiB,CAAC,cAAc,CAAC;8BACP,eAAe;gEAAC;AAE3C;IAAC,iBAAiB,CAAC,oBAAoB,CAAC;8BACP,qBAAqB;sEAAC;AAG1C;IADZ,IAAI,CAAC,YAAY,CAAC;IACO,WAAA,IAAI,EAAE,CAAA;IAAqB,WAAA,IAAI,EAAE,CAAA;IAAmB,WAAA,MAAM,EAAE,CAAA;;qCAA7C,SAAS,EAAiB,QAAQ;;0DAmB1E;AA9BU,uBAAuB;IAFnC,QAAQ,CAAC,WAAW,CAAC;IACrB,MAAM,CAAC,kBAAkB,CAAC;GACd,uBAAuB,CA+BnC;SA/BY,uBAAuB"}

package/lib/mjs/controllers/UserAdminController.d.ts

@@ -1,4 +0,0 @@
-import { BaseController } from '@spinajs/http';
-export declare class UsersController extends BaseController {
-}
-//# sourceMappingURL=UserAdminController.d.ts.map

package/lib/mjs/controllers/UserAdminController.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"UserAdminController.d.ts","sourceRoot":"","sources":["../../../src/controllers/UserAdminController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAY,MAAM,eAAe,CAAC;AAGzD,qBAEa,eAAgB,SAAQ,cAAc;CAuElD"}

package/lib/mjs/controllers/UserAdminController.js

@@ -1,16 +0,0 @@
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-import { BaseController, BasePath } from '@spinajs/http';
-import { Resource } from './../decorators.js';
-let UsersController = class UsersController extends BaseController {
-};
-UsersController = __decorate([
-    Resource('user'),
-    BasePath('user')
-], UsersController);
-export { UsersController };
-//# sourceMappingURL=UserAdminController.js.map

package/lib/mjs/controllers/UserAdminController.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"UserAdminController.js","sourceRoot":"","sources":["../../../src/controllers/UserAdminController.ts"],"names":[],"mappings":";;;;;;AAAA,OAAO,EAAE,cAAc,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AACzD,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAIvC,IAAM,eAAe,GAArB,MAAM,eAAgB,SAAQ,cAAc;CAuElD,CAAA;AAvEY,eAAe;IAF3B,QAAQ,CAAC,MAAM,CAAC;IAChB,QAAQ,CAAC,MAAM,CAAC;GACJ,eAAe,CAuE3B;SAvEY,eAAe"}

package/lib/mjs/controllers/UserController.d.ts

@@ -1,11 +0,0 @@
-import { PasswordDto } from '../dto/password-dto.js';
-import { User as UserModel, PasswordProvider, SessionProvider } from '@spinajs/rbac';
-import { BaseController, Ok } from '@spinajs/http';
-export declare class UserController extends BaseController {
-    protected PasswordProvider: PasswordProvider;
-    protected CoockieSecret: string;
-    protected SessionProvider: SessionProvider;
-    refresh(user: UserModel, ssid: string): Promise<Ok>;
-    newPassword(user: UserModel, pwd: PasswordDto): Promise<Ok>;
-}
-//# sourceMappingURL=UserController.d.ts.map

package/lib/mjs/controllers/UserController.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"UserController.d.ts","sourceRoot":"","sources":["../../../src/controllers/UserController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AACrD,OAAO,EAAE,IAAI,IAAI,SAAS,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AACrF,OAAO,EAAE,cAAc,EAAiB,EAAE,EAAuB,MAAM,eAAe,CAAC;AAQvF,qBAEa,cAAe,SAAQ,cAAc;IAEhD,SAAS,CAAC,gBAAgB,EAAE,gBAAgB,CAAC;IAG7C,SAAS,CAAC,aAAa,EAAE,MAAM,CAAC;IAGhC,SAAS,CAAC,eAAe,EAAE,eAAe,CAAC;IAI9B,OAAO,CAAS,IAAI,EAAE,SAAS,EAAY,IAAI,EAAE,MAAM;IAkBvD,WAAW,CAAS,IAAI,EAAE,SAAS,EAAU,GAAG,EAAE,WAAW;CAgB3E"}

package/lib/mjs/controllers/UserController.js

@@ -1,84 +0,0 @@
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-import { PasswordDto } from '../dto/password-dto.js';
-import { User as UserModel, PasswordProvider, SessionProvider } from '@spinajs/rbac';
-import { BaseController, BasePath, Get, Ok, Body, Patch, Cookie } from '@spinajs/http';
-import { InvalidArgument, Forbidden } from '@spinajs/exceptions';
-import { Autoinject } from '@spinajs/di';
-import { Permission, User, Resource } from '../decorators.js';
-import { Config } from '@spinajs/configuration';
-import * as cs from 'cookie-signature';
-let UserController = class UserController extends BaseController {
-    async refresh(user, ssid) {
-        // get user data from db
-        await user.refresh();
-        await user.Metadata.populate();
-        // refresh session data from DB
-        const sId = cs.unsign(ssid, this.CoockieSecret);
-        if (sId) {
-            const session = await this.SessionProvider.restore(sId);
-            if (session) {
-                session.Data.set('User', user.dehydrate());
-            }
-        }
-        return new Ok(user.dehydrate());
-    }
-    async newPassword(user, pwd) {
-        if (pwd.Password !== pwd.ConfirmPassword) {
-            throw new InvalidArgument('password does not match');
-        }
-        const isValid = await this.PasswordProvider.verify(user.Password, pwd.OldPassword);
-        if (!isValid) {
-            throw new Forbidden('old password do not match');
-        }
-        const hashedPassword = await this.PasswordProvider.hash(pwd.Password);
-        user.Password = hashedPassword;
-        await user.update();
-        return new Ok();
-    }
-};
-__decorate([
-    Autoinject(),
-    __metadata("design:type", PasswordProvider)
-], UserController.prototype, "PasswordProvider", void 0);
-__decorate([
-    Config('http.cookie.secret'),
-    __metadata("design:type", String)
-], UserController.prototype, "CoockieSecret", void 0);
-__decorate([
-    Autoinject(),
-    __metadata("design:type", SessionProvider)
-], UserController.prototype, "SessionProvider", void 0);
-__decorate([
-    Get(),
-    Permission('readOwn'),
-    __param(0, User()),
-    __param(1, Cookie()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [UserModel, String]),
-    __metadata("design:returntype", Promise)
-], UserController.prototype, "refresh", null);
-__decorate([
-    Patch('/password'),
-    __param(0, User()),
-    __param(1, Body()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [UserModel, PasswordDto]),
-    __metadata("design:returntype", Promise)
-], UserController.prototype, "newPassword", null);
-UserController = __decorate([
-    BasePath('user'),
-    Resource('user')
-], UserController);
-export { UserController };
-//# sourceMappingURL=UserController.js.map

package/lib/mjs/controllers/UserController.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"UserController.js","sourceRoot":"","sources":["../../../src/controllers/UserController.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AACrD,OAAO,EAAE,IAAI,IAAI,SAAS,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AACrF,OAAO,EAAE,cAAc,EAAE,QAAQ,EAAE,GAAG,EAAE,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,eAAe,CAAC;AACvF,OAAO,EAAE,eAAe,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAC;AACjE,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC9D,OAAO,EAAE,MAAM,EAAE,MAAM,wBAAwB,CAAC;AAChD,OAAO,KAAK,EAAE,MAAM,kBAAkB,CAAC;AAKhC,IAAM,cAAc,GAApB,MAAM,cAAe,SAAQ,cAAc;IAYnC,AAAN,KAAK,CAAC,OAAO,CAAS,IAAe,EAAY,IAAY;QAClE,wBAAwB;QACxB,MAAM,IAAI,CAAC,OAAO,EAAE,CAAC;QACrB,MAAM,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC;QAE/B,+BAA+B;QAC/B,MAAM,GAAG,GAAmB,EAAE,CAAC,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,aAAa,CAAC,CAAC;QAChE,IAAI,GAAG,EAAE;YACP,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;YACxD,IAAI,OAAO,EAAE;gBACX,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC;aAC5C;SACF;QAED,OAAO,IAAI,EAAE,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC;IAClC,CAAC;IAGY,AAAN,KAAK,CAAC,WAAW,CAAS,IAAe,EAAU,GAAgB;QACxE,IAAI,GAAG,CAAC,QAAQ,KAAK,GAAG,CAAC,eAAe,EAAE;YACxC,MAAM,IAAI,eAAe,CAAC,yBAAyB,CAAC,CAAC;SACtD;QAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,GAAG,CAAC,WAAW,CAAC,CAAC;QAEnF,IAAI,CAAC,OAAO,EAAE;YACZ,MAAM,IAAI,SAAS,CAAC,2BAA2B,CAAC,CAAC;SAClD;QAED,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QACtE,IAAI,CAAC,QAAQ,GAAG,cAAc,CAAC;QAC/B,MAAM,IAAI,CAAC,MAAM,EAAE,CAAC;QACpB,OAAO,IAAI,EAAE,EAAE,CAAC;IAClB,CAAC;CACF,CAAA;AA7CC;IAAC,UAAU,EAAE;8BACe,gBAAgB;wDAAC;AAE7C;IAAC,MAAM,CAAC,oBAAoB,CAAC;;qDACG;AAEhC;IAAC,UAAU,EAAE;8BACc,eAAe;uDAAC;AAI9B;IAFZ,GAAG,EAAE;IACL,UAAU,CAAC,SAAS,CAAC;IACA,WAAA,IAAI,EAAE,CAAA;IAAmB,WAAA,MAAM,EAAE,CAAA;;qCAApB,SAAS;;6CAe3C;AAGY;IADZ,KAAK,CAAC,WAAW,CAAC;IACO,WAAA,IAAI,EAAE,CAAA;IAAmB,WAAA,IAAI,EAAE,CAAA;;qCAAlB,SAAS,EAAe,WAAW;;iDAezE;AA7CU,cAAc;IAF1B,QAAQ,CAAC,MAAM,CAAC;IAChB,QAAQ,CAAC,MAAM,CAAC;GACJ,cAAc,CA8C1B;SA9CY,cAAc"}

package/lib/mjs/controllers/UserMetadata.d.ts

@@ -1,7 +0,0 @@
-import { Ok } from '@spinajs/http';
-import { User as UserModel, UserMetadata } from '@spinajs/rbac';
-export declare class UserMetaController {
-    addMetadata(logged: UserModel, user: UserModel, meta: UserMetadata): Promise<Ok>;
-    updateMetadata(logged: UserModel, user: UserModel, meta: UserMetadata): Promise<Ok>;
-}
-//# sourceMappingURL=UserMetadata.d.ts.map

package/lib/mjs/controllers/UserMetadata.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"UserMetadata.d.ts","sourceRoot":"","sources":["../../../src/controllers/UserMetadata.ts"],"names":[],"mappings":"AAAA,OAAO,EAAuB,EAAE,EAAa,MAAM,eAAe,CAAC;AACnE,OAAO,EAAE,IAAI,IAAI,SAAS,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAIhE,qBAEa,kBAAkB;IAIhB,WAAW,CAAS,MAAM,EAAE,SAAS,EAAe,IAAI,EAAE,SAAS,EAAa,IAAI,EAAE,YAAY;IAWlG,cAAc,CAAS,MAAM,EAAE,SAAS,EAAe,IAAI,EAAE,SAAS,EAAe,IAAI,EAAE,YAAY;CAcrH"}

package/lib/mjs/controllers/UserMetadata.js

@@ -1,66 +0,0 @@
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-import { Put, Post, BasePath, Ok, Forbidden } from '@spinajs/http';
-import { User as UserModel, UserMetadata } from '@spinajs/rbac';
-import { Permission, User, Resource } from '../decorators.js';
-import { FromModel, AsModel } from '@spinajs/orm-http';
-let UserMetaController = class UserMetaController {
-    async addMetadata(logged, user, meta) {
-        if (logged.Id !== user.Id) {
-            throw new Forbidden('cannot add metadata to another user');
-        }
-        await user.Metadata.add(meta);
-        return new Ok(meta);
-    }
-    async updateMetadata(logged, user, meta) {
-        if (logged.Id !== user.Id) {
-            throw new Forbidden('cannot add metadata to another user');
-        }
-        await meta.User.populate();
-        if (meta.User.Value.Id !== logged.Id) {
-            throw new Forbidden('cannot edit metadata that is not own by user');
-        }
-        await meta.update();
-        return new Ok();
-    }
-};
-__decorate([
-    Post(),
-    Permission('updateOwn'),
-    __param(0, User()),
-    __param(1, FromModel()),
-    __param(2, AsModel()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [UserModel, UserModel, UserMetadata]),
-    __metadata("design:returntype", Promise)
-], UserMetaController.prototype, "addMetadata", null);
-__decorate([
-    Put('user/:user/metadata/:meta'),
-    Permission('updateOwn'),
-    __param(0, User()),
-    __param(1, FromModel()),
-    __param(2, FromModel()),
-    __metadata("design:type", Function),
-    __metadata("design:paramtypes", [UserModel, UserModel, UserMetadata]),
-    __metadata("design:returntype", Promise)
-], UserMetaController.prototype, "updateMetadata", null);
-UserMetaController = __decorate([
-    BasePath('user/:user/metadata'),
-    Resource('user.metadata')
-], UserMetaController);
-export { UserMetaController };
-// function userOwnerPermissionStrategy(){
-//    // 1. obtain current logged user
-//    // 2. find
-// }
-//# sourceMappingURL=UserMetadata.js.map

package/lib/mjs/controllers/UserMetadata.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"UserMetadata.js","sourceRoot":"","sources":["../../../src/controllers/UserMetadata.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,OAAO,EAAE,GAAG,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AACnE,OAAO,EAAE,IAAI,IAAI,SAAS,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAChE,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC9D,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,MAAM,mBAAmB,CAAC;AAIhD,IAAM,kBAAkB,GAAxB,MAAM,kBAAkB;IAIhB,AAAN,KAAK,CAAC,WAAW,CAAS,MAAiB,EAAe,IAAe,EAAa,IAAkB;QAC7G,IAAI,MAAM,CAAC,EAAE,KAAK,IAAI,CAAC,EAAE,EAAE;YACzB,MAAM,IAAI,SAAS,CAAC,qCAAqC,CAAC,CAAC;SAC5D;QAED,MAAM,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC9B,OAAO,IAAI,EAAE,CAAC,IAAI,CAAC,CAAC;IACtB,CAAC;IAIY,AAAN,KAAK,CAAC,cAAc,CAAS,MAAiB,EAAe,IAAe,EAAe,IAAkB;QAClH,IAAI,MAAM,CAAC,EAAE,KAAK,IAAI,CAAC,EAAE,EAAE;YACzB,MAAM,IAAI,SAAS,CAAC,qCAAqC,CAAC,CAAC;SAC5D;QAED,MAAM,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC3B,IAAI,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,KAAK,MAAM,CAAC,EAAE,EAAE;YACpC,MAAM,IAAI,SAAS,CAAC,8CAA8C,CAAC,CAAC;SACrE;QAED,MAAM,IAAI,CAAC,MAAM,EAAE,CAAC;QAEpB,OAAO,IAAI,EAAE,EAAE,CAAC;IAClB,CAAC;CACF,CAAA;AAzBc;IAFZ,IAAI,EAAE;IACN,UAAU,CAAC,WAAW,CAAC;IACE,WAAA,IAAI,EAAE,CAAA;IAAqB,WAAA,SAAS,EAAE,CAAA;IAAmB,WAAA,OAAO,EAAE,CAAA;;qCAAnD,SAAS,EAAqB,SAAS,EAAmB,YAAY;;qDAO9G;AAIY;IAFZ,GAAG,CAAC,2BAA2B,CAAC;IAChC,UAAU,CAAC,WAAW,CAAC;IACK,WAAA,IAAI,EAAE,CAAA;IAAqB,WAAA,SAAS,EAAE,CAAA;IAAmB,WAAA,SAAS,EAAE,CAAA;;qCAArD,SAAS,EAAqB,SAAS,EAAqB,YAAY;;wDAanH;AA5BU,kBAAkB;IAF9B,QAAQ,CAAC,qBAAqB,CAAC;IAC/B,QAAQ,CAAC,eAAe,CAAC;GACb,kBAAkB,CA6B9B;SA7BY,kBAAkB;AA+B/B,0CAA0C;AAE1C,sCAAsC;AACtC,gBAAgB;AAEhB,IAAI"}