npm - @spinajs/rbac - Versions diffs - 2.0.180 → 2.0.182 - Mend

@spinajs/rbac 2.0.180 → 2.0.182

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (225) hide show

package/lib/cjs/auth.d.ts +15 -15
package/lib/cjs/auth.js +103 -103
package/lib/cjs/auth.js.map +1 -1
package/lib/cjs/cli/ActivateUser.d.ts +8 -8
package/lib/cjs/cli/ActivateUser.js +47 -47
package/lib/cjs/cli/ActivateUser.js.map +1 -1
package/lib/cjs/cli/BanUser.d.ts +8 -8
package/lib/cjs/cli/BanUser.js +63 -63
package/lib/cjs/cli/BanUser.js.map +1 -1
package/lib/cjs/cli/ChangeUserPassword.d.ts +11 -11
package/lib/cjs/cli/ChangeUserPassword.js +58 -58
package/lib/cjs/cli/ChangeUserPassword.js.map +1 -1
package/lib/cjs/cli/ClearUserTimelineSchedule.d.ts +8 -8
package/lib/cjs/cli/ClearUserTimelineSchedule.js +54 -54
package/lib/cjs/cli/ClearUserTimelineSchedule.js.map +1 -1
package/lib/cjs/cli/CreateUser.d.ts +17 -17
package/lib/cjs/cli/CreateUser.js +69 -69
package/lib/cjs/cli/CreateUser.js.map +1 -1
package/lib/cjs/cli/DeleteUser.d.ts +8 -8
package/lib/cjs/cli/DeleteUser.js +40 -40
package/lib/cjs/cli/DeleteUser.js.map +1 -1
package/lib/cjs/cli/FindUser.d.ts +12 -12
package/lib/cjs/cli/FindUser.js +44 -44
package/lib/cjs/cli/FindUser.js.map +1 -1
package/lib/cjs/cli/GrantUserRole.d.ts +8 -8
package/lib/cjs/cli/GrantUserRole.js +47 -47
package/lib/cjs/cli/GrantUserRole.js.map +1 -1
package/lib/cjs/cli/LatestUserEvents.d.ts +6 -6
package/lib/cjs/cli/LatestUserEvents.js +37 -37
package/lib/cjs/cli/LatestUserEvents.js.map +1 -1
package/lib/cjs/cli/RevokeUserRole.d.ts +8 -8
package/lib/cjs/cli/RevokeUserRole.js +46 -46
package/lib/cjs/cli/RevokeUserRole.js.map +1 -1
package/lib/cjs/cli/UnbanUserSchedule.d.ts +8 -8
package/lib/cjs/cli/UnbanUserSchedule.js +54 -54
package/lib/cjs/cli/UnbanUserSchedule.js.map +1 -1
package/lib/cjs/config/rbac.d.ts +115 -115
package/lib/cjs/config/rbac.js +120 -120
package/lib/cjs/decorators/Resource.d.ts +8 -8
package/lib/cjs/decorators/Resource.js +17 -17
package/lib/cjs/events/NewUser.d.ts +12 -12
package/lib/cjs/events/NewUser.js +16 -16
package/lib/cjs/events/NewUser.js.map +1 -1
package/lib/cjs/events/UserActivated.d.ts +5 -5
package/lib/cjs/events/UserActivated.js +24 -24
package/lib/cjs/events/UserActivated.js.map +1 -1
package/lib/cjs/events/UserBanned.d.ts +6 -6
package/lib/cjs/events/UserBanned.js +25 -25
package/lib/cjs/events/UserBanned.js.map +1 -1
package/lib/cjs/events/UserDeactivated.d.ts +5 -5
package/lib/cjs/events/UserDeactivated.js +24 -24
package/lib/cjs/events/UserDeactivated.js.map +1 -1
package/lib/cjs/events/UserDeleted.d.ts +5 -5
package/lib/cjs/events/UserDeleted.js +24 -24
package/lib/cjs/events/UserDeleted.js.map +1 -1
package/lib/cjs/events/UserMetadataAdded.d.ts +5 -5
package/lib/cjs/events/UserMetadataAdded.js +24 -24
package/lib/cjs/events/UserMetadataAdded.js.map +1 -1
package/lib/cjs/events/UserMetadataChanged.d.ts +5 -5
package/lib/cjs/events/UserMetadataChanged.js +24 -24
package/lib/cjs/events/UserMetadataChanged.js.map +1 -1
package/lib/cjs/events/UserMetadataDeleted.d.ts +5 -5
package/lib/cjs/events/UserMetadataDeleted.js +24 -24
package/lib/cjs/events/UserMetadataDeleted.js.map +1 -1
package/lib/cjs/events/UserPasswordChanged.d.ts +5 -5
package/lib/cjs/events/UserPasswordChanged.js +24 -24
package/lib/cjs/events/UserPasswordChanged.js.map +1 -1
package/lib/cjs/events/UserPropertyChanged.d.ts +7 -7
package/lib/cjs/events/UserPropertyChanged.js +16 -16
package/lib/cjs/events/UserPropertyChanged.js.map +1 -1
package/lib/cjs/events/UserRoleGranted.d.ts +6 -6
package/lib/cjs/events/UserRoleGranted.js +25 -25
package/lib/cjs/events/UserRoleGranted.js.map +1 -1
package/lib/cjs/events/UserRoleRevoked.d.ts +6 -6
package/lib/cjs/events/UserRoleRevoked.js +25 -25
package/lib/cjs/events/UserRoleRevoked.js.map +1 -1
package/lib/cjs/events/UserUnbanned.d.ts +5 -5
package/lib/cjs/events/UserUnbanned.js +24 -24
package/lib/cjs/events/UserUnbanned.js.map +1 -1
package/lib/cjs/events/index.d.ts +13 -13
package/lib/cjs/events/index.js +29 -29
package/lib/cjs/index.d.ts +20 -20
package/lib/cjs/index.js +85 -85
package/lib/cjs/index.js.map +1 -1
package/lib/cjs/interfaces.d.ts +259 -259
package/lib/cjs/interfaces.js +45 -45
package/lib/cjs/interfaces.js.map +1 -1
package/lib/cjs/jobs/UnbanUser.d.ts +9 -9
package/lib/cjs/jobs/UnbanUser.js +43 -43
package/lib/cjs/jobs/UnbanUser.js.map +1 -1
package/lib/cjs/middleware.d.ts +5 -5
package/lib/cjs/middleware.js +24 -24
package/lib/cjs/middleware.js.map +1 -1
package/lib/cjs/migrations/RBACInitial_2022_06_28_01_13_00.d.ts +5 -5
package/lib/cjs/migrations/RBACInitial_2022_06_28_01_13_00.js +56 -56
package/lib/cjs/migrations/RBACInitial_2022_06_28_01_13_00.js.map +1 -1
package/lib/cjs/models/User.d.ts +96 -96
package/lib/cjs/models/User.js +229 -229
package/lib/cjs/models/User.js.map +1 -1
package/lib/cjs/models/UserMetadata.d.ts +9 -9
package/lib/cjs/models/UserMetadata.js +32 -32
package/lib/cjs/models/UserMetadata.js.map +1 -1
package/lib/cjs/models/UserTimeline.d.ts +28 -28
package/lib/cjs/models/UserTimeline.js +46 -46
package/lib/cjs/models/UserTimeline.js.map +1 -1
package/lib/cjs/password.d.ts +25 -25
package/lib/cjs/password.js +91 -91
package/lib/cjs/password.js.map +1 -1
package/lib/cjs/session.d.ts +33 -33
package/lib/cjs/session.js +100 -100
package/lib/cjs/session.js.map +1 -1
package/lib/mjs/auth.d.ts +15 -15
package/lib/mjs/auth.js +100 -100
package/lib/mjs/auth.js.map +1 -1
package/lib/mjs/cli/ActivateUser.d.ts +8 -8
package/lib/mjs/cli/ActivateUser.js +44 -44
package/lib/mjs/cli/ActivateUser.js.map +1 -1
package/lib/mjs/cli/BanUser.d.ts +8 -8
package/lib/mjs/cli/BanUser.js +60 -60
package/lib/mjs/cli/BanUser.js.map +1 -1
package/lib/mjs/cli/ChangeUserPassword.d.ts +11 -11
package/lib/mjs/cli/ChangeUserPassword.js +55 -55
package/lib/mjs/cli/ChangeUserPassword.js.map +1 -1
package/lib/mjs/cli/ClearUserTimelineSchedule.d.ts +8 -8
package/lib/mjs/cli/ClearUserTimelineSchedule.js +51 -51
package/lib/mjs/cli/ClearUserTimelineSchedule.js.map +1 -1
package/lib/mjs/cli/CreateUser.d.ts +17 -17
package/lib/mjs/cli/CreateUser.js +66 -66
package/lib/mjs/cli/CreateUser.js.map +1 -1
package/lib/mjs/cli/DeleteUser.d.ts +8 -8
package/lib/mjs/cli/DeleteUser.js +37 -37
package/lib/mjs/cli/DeleteUser.js.map +1 -1
package/lib/mjs/cli/FindUser.d.ts +12 -12
package/lib/mjs/cli/FindUser.js +41 -41
package/lib/mjs/cli/FindUser.js.map +1 -1
package/lib/mjs/cli/GrantUserRole.d.ts +8 -8
package/lib/mjs/cli/GrantUserRole.js +41 -41
package/lib/mjs/cli/GrantUserRole.js.map +1 -1
package/lib/mjs/cli/LatestUserEvents.d.ts +6 -6
package/lib/mjs/cli/LatestUserEvents.js +34 -34
package/lib/mjs/cli/LatestUserEvents.js.map +1 -1
package/lib/mjs/cli/RevokeUserRole.d.ts +8 -8
package/lib/mjs/cli/RevokeUserRole.js +40 -40
package/lib/mjs/cli/RevokeUserRole.js.map +1 -1
package/lib/mjs/cli/UnbanUserSchedule.d.ts +8 -8
package/lib/mjs/cli/UnbanUserSchedule.js +51 -51
package/lib/mjs/cli/UnbanUserSchedule.js.map +1 -1
package/lib/mjs/config/rbac.d.ts +115 -115
package/lib/mjs/config/rbac.js +118 -118
package/lib/mjs/decorators/Resource.d.ts +8 -8
package/lib/mjs/decorators/Resource.js +13 -13
package/lib/mjs/events/NewUser.d.ts +12 -12
package/lib/mjs/events/NewUser.js +13 -13
package/lib/mjs/events/NewUser.js.map +1 -1
package/lib/mjs/events/UserActivated.d.ts +5 -5
package/lib/mjs/events/UserActivated.js +21 -21
package/lib/mjs/events/UserActivated.js.map +1 -1
package/lib/mjs/events/UserBanned.d.ts +6 -6
package/lib/mjs/events/UserBanned.js +22 -22
package/lib/mjs/events/UserBanned.js.map +1 -1
package/lib/mjs/events/UserDeactivated.d.ts +5 -5
package/lib/mjs/events/UserDeactivated.js +21 -21
package/lib/mjs/events/UserDeactivated.js.map +1 -1
package/lib/mjs/events/UserDeleted.d.ts +5 -5
package/lib/mjs/events/UserDeleted.js +21 -21
package/lib/mjs/events/UserDeleted.js.map +1 -1
package/lib/mjs/events/UserMetadataAdded.d.ts +5 -5
package/lib/mjs/events/UserMetadataAdded.js +21 -21
package/lib/mjs/events/UserMetadataAdded.js.map +1 -1
package/lib/mjs/events/UserMetadataChanged.d.ts +5 -5
package/lib/mjs/events/UserMetadataChanged.js +21 -21
package/lib/mjs/events/UserMetadataChanged.js.map +1 -1
package/lib/mjs/events/UserMetadataDeleted.d.ts +5 -5
package/lib/mjs/events/UserMetadataDeleted.js +21 -21
package/lib/mjs/events/UserMetadataDeleted.js.map +1 -1
package/lib/mjs/events/UserPasswordChanged.d.ts +5 -5
package/lib/mjs/events/UserPasswordChanged.js +21 -21
package/lib/mjs/events/UserPasswordChanged.js.map +1 -1
package/lib/mjs/events/UserPropertyChanged.d.ts +7 -7
package/lib/mjs/events/UserPropertyChanged.js +13 -13
package/lib/mjs/events/UserPropertyChanged.js.map +1 -1
package/lib/mjs/events/UserRoleGranted.d.ts +6 -6
package/lib/mjs/events/UserRoleGranted.js +22 -22
package/lib/mjs/events/UserRoleGranted.js.map +1 -1
package/lib/mjs/events/UserRoleRevoked.d.ts +6 -6
package/lib/mjs/events/UserRoleRevoked.js +22 -22
package/lib/mjs/events/UserRoleRevoked.js.map +1 -1
package/lib/mjs/events/UserUnbanned.d.ts +5 -5
package/lib/mjs/events/UserUnbanned.js +21 -21
package/lib/mjs/events/UserUnbanned.js.map +1 -1
package/lib/mjs/events/index.d.ts +13 -13
package/lib/mjs/events/index.js +13 -13
package/lib/mjs/index.d.ts +20 -20
package/lib/mjs/index.js +64 -64
package/lib/mjs/index.js.map +1 -1
package/lib/mjs/interfaces.d.ts +259 -259
package/lib/mjs/interfaces.js +37 -37
package/lib/mjs/interfaces.js.map +1 -1
package/lib/mjs/jobs/UnbanUser.d.ts +9 -9
package/lib/mjs/jobs/UnbanUser.js +40 -40
package/lib/mjs/jobs/UnbanUser.js.map +1 -1
package/lib/mjs/middleware.d.ts +5 -5
package/lib/mjs/middleware.js +21 -21
package/lib/mjs/middleware.js.map +1 -1
package/lib/mjs/migrations/RBACInitial_2022_06_28_01_13_00.d.ts +5 -5
package/lib/mjs/migrations/RBACInitial_2022_06_28_01_13_00.js +53 -53
package/lib/mjs/migrations/RBACInitial_2022_06_28_01_13_00.js.map +1 -1
package/lib/mjs/models/User.d.ts +96 -96
package/lib/mjs/models/User.js +225 -225
package/lib/mjs/models/User.js.map +1 -1
package/lib/mjs/models/UserMetadata.d.ts +9 -9
package/lib/mjs/models/UserMetadata.js +29 -29
package/lib/mjs/models/UserMetadata.js.map +1 -1
package/lib/mjs/models/UserTimeline.d.ts +28 -28
package/lib/mjs/models/UserTimeline.js +43 -43
package/lib/mjs/models/UserTimeline.js.map +1 -1
package/lib/mjs/password.d.ts +25 -25
package/lib/mjs/password.js +65 -65
package/lib/mjs/password.js.map +1 -1
package/lib/mjs/session.d.ts +33 -33
package/lib/mjs/session.js +94 -94
package/lib/mjs/session.js.map +1 -1
package/lib/tsconfig.cjs.tsbuildinfo +1 -1
package/lib/tsconfig.mjs.tsbuildinfo +1 -1
package/package.json +10 -10

package/lib/cjs/interfaces.d.ts CHANGED Viewed

@@ -1,260 +1,260 @@
-import { User } from './models/User.js';
-import { AsyncService } from '@spinajs/di';
-import { IDeleteQueryBuilder, IModelDescriptor, IQueryBuilder, ISelectQueryBuilder, IUpdateQueryBuilder, ModelBase } from '@spinajs/orm';
-import { DateTime } from 'luxon';
-declare module '@spinajs/orm' {
-    interface IModelStatic {
-        /**
-         *
-         * Alters query to check ownership of queried resource. Ensures that query returns/modify/delete only owned user data
-         *
-         * @param query query to alter
-         * @param user user to check againts ownership
-         * @param modelDescriptor resource model descriptor
-         */
-        ensureOwnership(query: ISelectQueryBuilder<any> | IUpdateQueryBuilder<any> | IDeleteQueryBuilder<any>, user: User): IQueryBuilder;
-        /**
-         * Checks ownership of retrieved model by user
-         * @param model model
-         * @param user user to check against ownership
-         */
-        checkOwnership<M>(model: ModelBase<M>, user: User): Promise<boolean>;
-        /**
-         * Checks ownership of model by its primary key
-         * @param model primary key to check
-         * @param user user to check against ownership
-         */
-        checkOwnership<M>(primaryKey: string | number, user: User): Promise<boolean>;
-        /**
-         * Checks ownership of retrieved model by user
-         * @param model model / primary key to check
-         * @param user user to check against ownership
-         */
-        checkOwnership<M>(modelOrPrimaryKey: ModelBase<M> | string | number, user: User): Promise<boolean>;
-    }
-}
-export interface ISession {
-    /**
-     * Session identifier
-     */
-    SessionId: string;
-    /**
-     * Expiration date. After that date session is invalid
-     */
-    Expiration?: DateTime;
-    /**
-     * Session creation date. After that date session is invalid
-     */
-    Creation: DateTime;
-    /**
-     * Data holds by session
-     */
-    Data: Map<string, unknown>;
-    /**
-     *
-     * Extends session lifetime
-     *
-     * @param seconds  - how mutch to extend, if value not provided, default value from config is used
-     */
-    extend(seconds?: number): void;
-}
-/**
- * Service used for generating random password & for hash raw string
- */
-export declare abstract class PasswordProvider {
-    /**
-     *
-     * Checks if hash is valid for given password
-     *
-     * @param hash - hasth to validate
-     * @param password - password to validate
-     */
-    abstract verify(hash: string, password: string): Promise<boolean>;
-    /**
-     *
-     * Generate hashed string from user password
-     *
-     * @param input - string to hash
-     */
-    abstract hash(input: string): Promise<string>;
-    /**
-     * Generates random user password
-     */
-    abstract generate(): string;
-}
-/**
- * Provides standard authentication based on login & password
- *
- * Unlike federated auth providers, it check local db for user,
- * or some kind of other source
- */
-export declare abstract class AuthProvider<U = User> {
-    /**
-     *
-     * Checks if user is already exists with given email
-     *
-     * @param emailOrUser - email or user object
-     */
-    abstract exists(emailOrUser: U | string): Promise<boolean>;
-    /**
-     *
-     * Authenticate user with login and pass, if succeded auth result contains user object
-     *
-     * @param login - user login
-     * @param password  - user password
-     */
-    abstract authenticate(login: string, password: string): Promise<IAuthenticationResult<U>>;
-    /**
-     *
-     * Checks if user is banned
-     *
-     * @param login - user login
-     */
-    abstract isBanned(login: string): Promise<boolean>;
-    /**
-     * Checks if user is active
-     *
-     * @param login - user login
-     */
-    abstract isActive(login: string): Promise<boolean>;
-    /**
-     *
-     * Cheks if user is deleted
-     *
-     * @param login - user login
-     */
-    abstract isDeleted(login: string): Promise<boolean>;
-    /**
-     *
-     * Gets user from auth store
-     *
-     * @param login - user login
-     */
-    abstract getByLogin(login: string): Promise<U>;
-    /**
-     *
-     * Gets user from auth store
-     *
-     * @param email - user email
-     */
-    abstract getByEmail(email: string): Promise<U>;
-    /**
-     *
-     * Gets user from auth store
-     *
-     * @param uuid - user uuid
-     */
-    abstract getByUUID(uuid: string): Promise<U>;
-}
-/**
- * Used for implementign authentication with external services
- * eg. slack or facebook that uses openid or similar auth
- *
- * NOTE: it should only authorize user, it should not register new one if
- * not exists in use DB.
- */
-export declare abstract class FederatedAuthProvider<C, U = User> {
-    /**
-     * Name of strategy
-     */
-    abstract get Name(): string;
-    /**
-     *
-     * login service provides Host header for check
-     * whitch service is trying to authenticate
-     *
-     * Base on host adress we choose auth provider
-     *
-     * @param caller - caller url
-     */
-    abstract callerCheck(caller: string): boolean;
-    /**
-     *
-     * Authenticates user based on response from external auth service
-     *
-     * @param credentials - provided credentials eg. data with token
-     */
-    abstract authenticate(credentials: C): Promise<IAuthenticationResult<U>>;
-}
-export declare abstract class SessionProvider<T = ISession> extends AsyncService {
-    /**
-     *
-     * Load session from store. If not exists or expired returns null
-     *
-     * @param sessionId - session identifier
-     */
-    abstract restore(sessionId: string): Promise<T>;
-    /**
-     *
-     * Deletes session from store
-     *
-     * @param sessionId - session to delete
-     */
-    abstract delete(sessionId: string): Promise<void>;
-    /**
-     *
-     * Adds or updates session in store
-     *
-     * @param session - session to update / insert
-     */
-    abstract save(session: ISession): Promise<void>;
-    /**
-     *
-     * Updates session data for given id
-     *
-     * @param id - session id
-     * @param data  - key - value pair of data
-     */
-    abstract save(id: string, data: object): Promise<void>;
-    /**
-     *
-     * Updates only EXPIRATION TIME of session, not changing other data
-     *
-     * @param session - session to update
-     */
-    abstract touch(session: ISession): Promise<void>;
-    /**
-     *
-     * Deletes all session table data
-     *
-     */
-    abstract truncate(): Promise<void>;
-}
-export declare enum AthenticationErrorCodes {
-    E_USER_BANNED = "E_USER_BANNED",
-    E_USER_NOT_ACTIVE = "E_USER_NOT_ACTIVE",
-    E_INVALID_CREDENTIALS = "E_INVALID_CREDENTIALS",
-    E_LOGIN_ATTEMPTS_EXCEEDED = "E_LOGIN_ATTEMPTS_EXCEEDED"
-}
-export interface IRbacModelDescriptor extends IModelDescriptor {
-    RbacResource: string;
-}
-/**
- * Authentication result
- */
-export interface IAuthenticationResult<U = User> {
-    /**
-     * If auth is succeded, user field is not null
-     */
-    User?: U;
-    /**
-     * If result failed, Error field is not null
-     */
-    Error?: {
-        /**
-         * Error code eg E_IS_BANNED
-         */
-        Code: string | AthenticationErrorCodes;
-        /**
-         * Optional message
-         */
-        Message?: string;
-    };
-}
-/**
- * Interface to provide implementation of password rule validation
- */
-export declare abstract class PasswordValidationProvider {
-    abstract check(password: string): boolean;
-}
+import { User } from './models/User.js';
+import { AsyncService } from '@spinajs/di';
+import { IDeleteQueryBuilder, IModelDescriptor, IQueryBuilder, ISelectQueryBuilder, IUpdateQueryBuilder, ModelBase } from '@spinajs/orm';
+import { DateTime } from 'luxon';
+declare module '@spinajs/orm' {
+    interface IModelStatic {
+        /**
+         *
+         * Alters query to check ownership of queried resource. Ensures that query returns/modify/delete only owned user data
+         *
+         * @param query query to alter
+         * @param user user to check againts ownership
+         * @param modelDescriptor resource model descriptor
+         */
+        ensureOwnership(query: ISelectQueryBuilder<any> | IUpdateQueryBuilder<any> | IDeleteQueryBuilder<any>, user: User): IQueryBuilder;
+        /**
+         * Checks ownership of retrieved model by user
+         * @param model model
+         * @param user user to check against ownership
+         */
+        checkOwnership<M>(model: ModelBase<M>, user: User): Promise<boolean>;
+        /**
+         * Checks ownership of model by its primary key
+         * @param model primary key to check
+         * @param user user to check against ownership
+         */
+        checkOwnership<M>(primaryKey: string | number, user: User): Promise<boolean>;
+        /**
+         * Checks ownership of retrieved model by user
+         * @param model model / primary key to check
+         * @param user user to check against ownership
+         */
+        checkOwnership<M>(modelOrPrimaryKey: ModelBase<M> | string | number, user: User): Promise<boolean>;
+    }
+}
+export interface ISession {
+    /**
+     * Session identifier
+     */
+    SessionId: string;
+    /**
+     * Expiration date. After that date session is invalid
+     */
+    Expiration?: DateTime;
+    /**
+     * Session creation date. After that date session is invalid
+     */
+    Creation: DateTime;
+    /**
+     * Data holds by session
+     */
+    Data: Map<string, unknown>;
+    /**
+     *
+     * Extends session lifetime
+     *
+     * @param seconds  - how mutch to extend, if value not provided, default value from config is used
+     */
+    extend(seconds?: number): void;
+}
+/**
+ * Service used for generating random password & for hash raw string
+ */
+export declare abstract class PasswordProvider {
+    /**
+     *
+     * Checks if hash is valid for given password
+     *
+     * @param hash - hasth to validate
+     * @param password - password to validate
+     */
+    abstract verify(hash: string, password: string): Promise<boolean>;
+    /**
+     *
+     * Generate hashed string from user password
+     *
+     * @param input - string to hash
+     */
+    abstract hash(input: string): Promise<string>;
+    /**
+     * Generates random user password
+     */
+    abstract generate(): string;
+}
+/**
+ * Provides standard authentication based on login & password
+ *
+ * Unlike federated auth providers, it check local db for user,
+ * or some kind of other source
+ */
+export declare abstract class AuthProvider<U = User> {
+    /**
+     *
+     * Checks if user is already exists with given email
+     *
+     * @param emailOrUser - email or user object
+     */
+    abstract exists(emailOrUser: U | string): Promise<boolean>;
+    /**
+     *
+     * Authenticate user with login and pass, if succeded auth result contains user object
+     *
+     * @param login - user login
+     * @param password  - user password
+     */
+    abstract authenticate(login: string, password: string): Promise<IAuthenticationResult<U>>;
+    /**
+     *
+     * Checks if user is banned
+     *
+     * @param login - user login
+     */
+    abstract isBanned(login: string): Promise<boolean>;
+    /**
+     * Checks if user is active
+     *
+     * @param login - user login
+     */
+    abstract isActive(login: string): Promise<boolean>;
+    /**
+     *
+     * Cheks if user is deleted
+     *
+     * @param login - user login
+     */
+    abstract isDeleted(login: string): Promise<boolean>;
+    /**
+     *
+     * Gets user from auth store
+     *
+     * @param login - user login
+     */
+    abstract getByLogin(login: string): Promise<U>;
+    /**
+     *
+     * Gets user from auth store
+     *
+     * @param email - user email
+     */
+    abstract getByEmail(email: string): Promise<U>;
+    /**
+     *
+     * Gets user from auth store
+     *
+     * @param uuid - user uuid
+     */
+    abstract getByUUID(uuid: string): Promise<U>;
+}
+/**
+ * Used for implementign authentication with external services
+ * eg. slack or facebook that uses openid or similar auth
+ *
+ * NOTE: it should only authorize user, it should not register new one if
+ * not exists in use DB.
+ */
+export declare abstract class FederatedAuthProvider<C, U = User> {
+    /**
+     * Name of strategy
+     */
+    abstract get Name(): string;
+    /**
+     *
+     * login service provides Host header for check
+     * whitch service is trying to authenticate
+     *
+     * Base on host adress we choose auth provider
+     *
+     * @param caller - caller url
+     */
+    abstract callerCheck(caller: string): boolean;
+    /**
+     *
+     * Authenticates user based on response from external auth service
+     *
+     * @param credentials - provided credentials eg. data with token
+     */
+    abstract authenticate(credentials: C): Promise<IAuthenticationResult<U>>;
+}
+export declare abstract class SessionProvider<T = ISession> extends AsyncService {
+    /**
+     *
+     * Load session from store. If not exists or expired returns null
+     *
+     * @param sessionId - session identifier
+     */
+    abstract restore(sessionId: string): Promise<T>;
+    /**
+     *
+     * Deletes session from store
+     *
+     * @param sessionId - session to delete
+     */
+    abstract delete(sessionId: string): Promise<void>;
+    /**
+     *
+     * Adds or updates session in store
+     *
+     * @param session - session to update / insert
+     */
+    abstract save(session: ISession): Promise<void>;
+    /**
+     *
+     * Updates session data for given id
+     *
+     * @param id - session id
+     * @param data  - key - value pair of data
+     */
+    abstract save(id: string, data: object): Promise<void>;
+    /**
+     *
+     * Updates only EXPIRATION TIME of session, not changing other data
+     *
+     * @param session - session to update
+     */
+    abstract touch(session: ISession): Promise<void>;
+    /**
+     *
+     * Deletes all session table data
+     *
+     */
+    abstract truncate(): Promise<void>;
+}
+export declare enum AthenticationErrorCodes {
+    E_USER_BANNED = "E_USER_BANNED",
+    E_USER_NOT_ACTIVE = "E_USER_NOT_ACTIVE",
+    E_INVALID_CREDENTIALS = "E_INVALID_CREDENTIALS",
+    E_LOGIN_ATTEMPTS_EXCEEDED = "E_LOGIN_ATTEMPTS_EXCEEDED"
+}
+export interface IRbacModelDescriptor extends IModelDescriptor {
+    RbacResource: string;
+}
+/**
+ * Authentication result
+ */
+export interface IAuthenticationResult<U = User> {
+    /**
+     * If auth is succeded, user field is not null
+     */
+    User?: U;
+    /**
+     * If result failed, Error field is not null
+     */
+    Error?: {
+        /**
+         * Error code eg E_IS_BANNED
+         */
+        Code: string | AthenticationErrorCodes;
+        /**
+         * Optional message
+         */
+        Message?: string;
+    };
+}
+/**
+ * Interface to provide implementation of password rule validation
+ */
+export declare abstract class PasswordValidationProvider {
+    abstract check(password: string): boolean;
+}
 //# sourceMappingURL=interfaces.d.ts.map

package/lib/cjs/interfaces.js CHANGED Viewed

@@ -1,46 +1,46 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.PasswordValidationProvider = exports.AthenticationErrorCodes = exports.SessionProvider = exports.FederatedAuthProvider = exports.AuthProvider = exports.PasswordProvider = void 0;
-const di_1 = require("@spinajs/di");
-/**
- * Service used for generating random password & for hash raw string
- */
-class PasswordProvider {
-}
-exports.PasswordProvider = PasswordProvider;
-/**
- * Provides standard authentication based on login & password
- *
- * Unlike federated auth providers, it check local db for user,
- * or some kind of other source
- */
-class AuthProvider {
-}
-exports.AuthProvider = AuthProvider;
-/**
- * Used for implementign authentication with external services
- * eg. slack or facebook that uses openid or similar auth
- *
- * NOTE: it should only authorize user, it should not register new one if
- * not exists in use DB.
- */
-class FederatedAuthProvider {
-}
-exports.FederatedAuthProvider = FederatedAuthProvider;
-class SessionProvider extends di_1.AsyncService {
-}
-exports.SessionProvider = SessionProvider;
-var AthenticationErrorCodes;
-(function (AthenticationErrorCodes) {
-    AthenticationErrorCodes["E_USER_BANNED"] = "E_USER_BANNED";
-    AthenticationErrorCodes["E_USER_NOT_ACTIVE"] = "E_USER_NOT_ACTIVE";
-    AthenticationErrorCodes["E_INVALID_CREDENTIALS"] = "E_INVALID_CREDENTIALS";
-    AthenticationErrorCodes["E_LOGIN_ATTEMPTS_EXCEEDED"] = "E_LOGIN_ATTEMPTS_EXCEEDED";
-})(AthenticationErrorCodes = exports.AthenticationErrorCodes || (exports.AthenticationErrorCodes = {}));
-/**
- * Interface to provide implementation of password rule validation
- */
-class PasswordValidationProvider {
-}
-exports.PasswordValidationProvider = PasswordValidationProvider;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PasswordValidationProvider = exports.AthenticationErrorCodes = exports.SessionProvider = exports.FederatedAuthProvider = exports.AuthProvider = exports.PasswordProvider = void 0;
+const di_1 = require("@spinajs/di");
+/**
+ * Service used for generating random password & for hash raw string
+ */
+class PasswordProvider {
+}
+exports.PasswordProvider = PasswordProvider;
+/**
+ * Provides standard authentication based on login & password
+ *
+ * Unlike federated auth providers, it check local db for user,
+ * or some kind of other source
+ */
+class AuthProvider {
+}
+exports.AuthProvider = AuthProvider;
+/**
+ * Used for implementign authentication with external services
+ * eg. slack or facebook that uses openid or similar auth
+ *
+ * NOTE: it should only authorize user, it should not register new one if
+ * not exists in use DB.
+ */
+class FederatedAuthProvider {
+}
+exports.FederatedAuthProvider = FederatedAuthProvider;
+class SessionProvider extends di_1.AsyncService {
+}
+exports.SessionProvider = SessionProvider;
+var AthenticationErrorCodes;
+(function (AthenticationErrorCodes) {
+    AthenticationErrorCodes["E_USER_BANNED"] = "E_USER_BANNED";
+    AthenticationErrorCodes["E_USER_NOT_ACTIVE"] = "E_USER_NOT_ACTIVE";
+    AthenticationErrorCodes["E_INVALID_CREDENTIALS"] = "E_INVALID_CREDENTIALS";
+    AthenticationErrorCodes["E_LOGIN_ATTEMPTS_EXCEEDED"] = "E_LOGIN_ATTEMPTS_EXCEEDED";
+})(AthenticationErrorCodes || (exports.AthenticationErrorCodes = AthenticationErrorCodes = {}));
+/**
+ * Interface to provide implementation of password rule validation
+ */
+class PasswordValidationProvider {
+}
+exports.PasswordValidationProvider = PasswordValidationProvider;
 //# sourceMappingURL=interfaces.js.map

package/lib/cjs/interfaces.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"interfaces.js","sourceRoot":"","sources":["../../src/interfaces.ts"],"names":[],"mappings":";;;AACA,oCAA2C;AAqE3C;;GAEG;AACH,MAAsB,gBAAgB;CAsBrC;AAtBD,4CAsBC;AAED;;;;;GAKG;AACH,MAAsB,YAAY;CAgEjC;AAhED,oCAgEC;AAED;;;;;;GAMG;AACH,MAAsB,qBAAqB;CAwB1C;AAxBD,sDAwBC;AAED,MAAsB,eAA8B,SAAQ,iBAAY;CAgDvE;AAhDD,0CAgDC;AAED,IAAY,uBAKX;AALD,WAAY,uBAAuB;IACjC,0DAA+B,CAAA;IAC/B,kEAAuC,CAAA;IACvC,0EAA+C,CAAA;IAC/C,kFAAuD,CAAA;AACzD,CAAC,EALW,uBAAuB,~~GAAvB,+BAAuB~~,~~KAAvB,+BAAuB~~,QAKlC;AA+BD;;GAEG;AACH,MAAsB,0BAA0B;CAE/C;AAFD,gEAEC"}
1	+ {"version":3,"file":"interfaces.js","sourceRoot":"","sources":["../../src/interfaces.ts"],"names":[],"mappings":";;;AACA,oCAA2C;AAqE3C;;GAEG;AACH,MAAsB,gBAAgB;CAsBrC;AAtBD,4CAsBC;AAED;;;;;GAKG;AACH,MAAsB,YAAY;CAgEjC;AAhED,oCAgEC;AAED;;;;;;GAMG;AACH,MAAsB,qBAAqB;CAwB1C;AAxBD,sDAwBC;AAED,MAAsB,eAA8B,SAAQ,iBAAY;CAgDvE;AAhDD,0CAgDC;AAED,IAAY,uBAKX;AALD,WAAY,uBAAuB;IACjC,0DAA+B,CAAA;IAC/B,kEAAuC,CAAA;IACvC,0EAA+C,CAAA;IAC/C,kFAAuD,CAAA;AACzD,CAAC,EALW,uBAAuB,uCAAvB,uBAAuB,QAKlC;AA+BD;;GAEG;AACH,MAAsB,0BAA0B;CAE/C;AAFD,gEAEC"}

package/lib/cjs/jobs/UnbanUser.d.ts CHANGED Viewed

@@ -1,10 +1,10 @@
-import { Log } from '@spinajs/log';
-import { QueueService, QueueJob } from '@spinajs/queue';
-export declare class UnbanUser extends QueueJob {
-    UserUUID: string;
-    protected Log: Log;
-    protected Queue: QueueService;
-    constructor(UserUUID: string);
-    execute(): Promise<void>;
-}
+import { Log } from '@spinajs/log';
+import { QueueService, QueueJob } from '@spinajs/queue';
+export declare class UnbanUser extends QueueJob {
+    UserUUID: string;
+    protected Log: Log;
+    protected Queue: QueueService;
+    constructor(UserUUID: string);
+    execute(): Promise<void>;
+}
 //# sourceMappingURL=UnbanUser.d.ts.map