npm - @things-factory/auth-base - Versions diffs - 8.0.0-beta.1 → 8.0.0-beta.4 - Mend

@things-factory/auth-base 8.0.0-beta.1 → 8.0.0-beta.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (142) hide show

package/package.json +6 -6
package/client/actions/auth.ts +0 -24
package/client/auth.ts +0 -272
package/client/bootstrap.ts +0 -47
package/client/directive/privileged.ts +0 -28
package/client/index.ts +0 -4
package/client/profiled.ts +0 -83
package/client/reducers/auth.ts +0 -31
package/client/verify-webauthn.ts +0 -86
package/server/constants/error-code.ts +0 -22
package/server/constants/error-message.ts +0 -0
package/server/constants/max-age.ts +0 -1
package/server/controllers/auth.ts +0 -5
package/server/controllers/change-pwd.ts +0 -100
package/server/controllers/checkin.ts +0 -21
package/server/controllers/delete-user.ts +0 -71
package/server/controllers/invitation.ts +0 -163
package/server/controllers/profile.ts +0 -55
package/server/controllers/reset-password.ts +0 -126
package/server/controllers/signin.ts +0 -98
package/server/controllers/signup.ts +0 -72
package/server/controllers/unlock-user.ts +0 -62
package/server/controllers/utils/make-invitation-token.ts +0 -5
package/server/controllers/utils/make-verification-token.ts +0 -4
package/server/controllers/utils/password-rule.ts +0 -120
package/server/controllers/utils/save-invitation-token.ts +0 -10
package/server/controllers/utils/save-verification-token.ts +0 -12
package/server/controllers/verification.ts +0 -84
package/server/errors/auth-error.ts +0 -24
package/server/errors/index.ts +0 -2
package/server/errors/user-domain-not-match-error.ts +0 -29
package/server/index.ts +0 -37
package/server/middlewares/authenticate-401-middleware.ts +0 -114
package/server/middlewares/domain-authenticate-middleware.ts +0 -78
package/server/middlewares/graphql-authenticate-middleware.ts +0 -13
package/server/middlewares/index.ts +0 -67
package/server/middlewares/jwt-authenticate-middleware.ts +0 -84
package/server/middlewares/signin-middleware.ts +0 -55
package/server/middlewares/webauthn-middleware.ts +0 -126
package/server/migrations/1548206416130-SeedUser.ts +0 -60
package/server/migrations/1566805283882-SeedPrivilege.ts +0 -28
package/server/migrations/index.ts +0 -9
package/server/router/auth-checkin-router.ts +0 -113
package/server/router/auth-private-process-router.ts +0 -114
package/server/router/auth-public-process-router.ts +0 -314
package/server/router/auth-signin-router.ts +0 -55
package/server/router/auth-signup-router.ts +0 -95
package/server/router/index.ts +0 -9
package/server/router/oauth2/index.ts +0 -2
package/server/router/oauth2/oauth2-authorize-router.ts +0 -81
package/server/router/oauth2/oauth2-router.ts +0 -165
package/server/router/oauth2/oauth2-server.ts +0 -262
package/server/router/oauth2/passport-oauth2-client-password.ts +0 -87
package/server/router/oauth2/passport-refresh-token.ts +0 -87
package/server/router/path-base-domain-router.ts +0 -8
package/server/router/site-root-router.ts +0 -48
package/server/router/webauthn-router.ts +0 -149
package/server/routes.ts +0 -80
package/server/service/app-binding/app-binding-mutation.ts +0 -22
package/server/service/app-binding/app-binding-query.ts +0 -92
package/server/service/app-binding/app-binding-types.ts +0 -11
package/server/service/app-binding/app-binding.ts +0 -17
package/server/service/app-binding/index.ts +0 -4
package/server/service/appliance/appliance-mutation.ts +0 -113
package/server/service/appliance/appliance-query.ts +0 -76
package/server/service/appliance/appliance-types.ts +0 -56
package/server/service/appliance/appliance.ts +0 -133
package/server/service/appliance/index.ts +0 -6
package/server/service/application/application-mutation.ts +0 -104
package/server/service/application/application-query.ts +0 -98
package/server/service/application/application-types.ts +0 -76
package/server/service/application/application.ts +0 -216
package/server/service/application/index.ts +0 -6
package/server/service/auth-provider/auth-provider-mutation.ts +0 -159
package/server/service/auth-provider/auth-provider-parameter-spec.ts +0 -24
package/server/service/auth-provider/auth-provider-query.ts +0 -88
package/server/service/auth-provider/auth-provider-type.ts +0 -67
package/server/service/auth-provider/auth-provider.ts +0 -155
package/server/service/auth-provider/index.ts +0 -7
package/server/service/domain-generator/domain-generator-mutation.ts +0 -117
package/server/service/domain-generator/domain-generator-types.ts +0 -46
package/server/service/domain-generator/index.ts +0 -3
package/server/service/granted-role/granted-role-mutation.ts +0 -156
package/server/service/granted-role/granted-role-query.ts +0 -60
package/server/service/granted-role/granted-role.ts +0 -27
package/server/service/granted-role/index.ts +0 -6
package/server/service/index.ts +0 -90
package/server/service/invitation/index.ts +0 -6
package/server/service/invitation/invitation-mutation.ts +0 -78
package/server/service/invitation/invitation-query.ts +0 -33
package/server/service/invitation/invitation-types.ts +0 -11
package/server/service/invitation/invitation.ts +0 -63
package/server/service/login-history/index.ts +0 -5
package/server/service/login-history/login-history-query.ts +0 -51
package/server/service/login-history/login-history-type.ts +0 -12
package/server/service/login-history/login-history.ts +0 -45
package/server/service/partner/index.ts +0 -6
package/server/service/partner/partner-mutation.ts +0 -61
package/server/service/partner/partner-query.ts +0 -102
package/server/service/partner/partner-types.ts +0 -11
package/server/service/partner/partner.ts +0 -57
package/server/service/password-history/index.ts +0 -3
package/server/service/password-history/password-history.ts +0 -16
package/server/service/privilege/index.ts +0 -6
package/server/service/privilege/privilege-directive.ts +0 -77
package/server/service/privilege/privilege-mutation.ts +0 -92
package/server/service/privilege/privilege-query.ts +0 -94
package/server/service/privilege/privilege-types.ts +0 -60
package/server/service/privilege/privilege.ts +0 -102
package/server/service/role/index.ts +0 -6
package/server/service/role/role-mutation.ts +0 -109
package/server/service/role/role-query.ts +0 -155
package/server/service/role/role-types.ts +0 -81
package/server/service/role/role.ts +0 -72
package/server/service/user/domain-query.ts +0 -24
package/server/service/user/index.ts +0 -7
package/server/service/user/user-mutation.ts +0 -482
package/server/service/user/user-query.ts +0 -145
package/server/service/user/user-types.ts +0 -100
package/server/service/user/user.ts +0 -381
package/server/service/users-auth-providers/index.ts +0 -5
package/server/service/users-auth-providers/users-auth-providers.ts +0 -71
package/server/service/verification-token/index.ts +0 -3
package/server/service/verification-token/verification-token.ts +0 -60
package/server/service/web-auth-credential/index.ts +0 -3
package/server/service/web-auth-credential/web-auth-credential.ts +0 -67
package/server/templates/account-unlock-email.ts +0 -65
package/server/templates/invitation-email.ts +0 -66
package/server/templates/reset-password-email.ts +0 -65
package/server/templates/verification-email.ts +0 -66
package/server/types.ts +0 -21
package/server/utils/accepts.ts +0 -11
package/server/utils/access-token-cookie.ts +0 -61
package/server/utils/check-permission.ts +0 -52
package/server/utils/check-user-belongs-domain.ts +0 -19
package/server/utils/check-user-has-role.ts +0 -29
package/server/utils/encrypt-state.ts +0 -22
package/server/utils/get-aes-256-key.ts +0 -13
package/server/utils/get-domain-from-hostname.ts +0 -7
package/server/utils/get-domain-users.ts +0 -38
package/server/utils/get-secret.ts +0 -13
package/server/utils/get-user-domains.ts +0 -112

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@things-factory/auth-base",
-  "version": "8.0.0-beta.1",
+  "version": "8.0.0-beta.4",
   "main": "dist-server/index.js",
   "browser": "dist-client/index.js",
   "things-factory": true,
@@ -32,10 +32,10 @@
   "dependencies": {
     "@simplewebauthn/browser": "^10.0.0",
     "@simplewebauthn/server": "^10.0.0",
-    "@things-factory/email-base": "^8.0.0-beta.1",
-    "@things-factory/env": "^8.0.0-beta.1",
-    "@things-factory/shell": "^8.0.0-beta.1",
-    "@things-factory/utils": "^8.0.0-beta.1",
+    "@things-factory/email-base": "^8.0.0-beta.4",
+    "@things-factory/env": "^8.0.0-beta.4",
+    "@things-factory/shell": "^8.0.0-beta.4",
+    "@things-factory/utils": "^8.0.0-beta.4",
     "@types/webappsec-credential-management": "^0.6.8",
     "jsonwebtoken": "^9.0.0",
     "koa-passport": "^6.0.0",
@@ -46,5 +46,5 @@
     "passport-jwt": "^4.0.0",
     "passport-local": "^1.0.0"
   },
-  "gitHead": "36c494e587640c1490318ef7b95adab02606e0c2"
+  "gitHead": "d83d12ed4ba07177dff1dac26e37be347d156b43"
 }

package/client/actions/auth.ts DELETED Viewed

@@ -1,24 +0,0 @@
-import { Action, ThunkAction } from '@reduxjs/toolkit'
-export const SET_PROFILE = 'SET-PROFILE'
-export const SET_AUTH = 'SET-AUTH'
-type RootState = any
-export const updateUser =
-  (user: any): ThunkAction<void, RootState, unknown, Action<any>> =>
-  (dispatch, getState) => {
-    dispatch({
-      type: SET_PROFILE,
-      user
-    })
-  }
-export const updateAuthenticated =
-  (auth: { authenticated: boolean }): ThunkAction<void, RootState, unknown, Action<any>> =>
-  (dispatch, getState) => {
-    dispatch({
-      type: SET_AUTH,
-      auth
-    })
-  }

package/client/auth.ts DELETED Viewed

@@ -1,272 +0,0 @@
-/* [ AUTH PATH ]
-  signinPath = '/auth/signin'
-  signoutPath = '/auth/signout'
-  profilePath = '/auth/profile'
-  updateProfilePath = '/auth/update-profile'
-  changepassPath = '/auth/change-pass'
-  deleteUserPath = '/auth/delete-user'
-*/
-const HEADER_JSON = {
-  'Content-Type': 'application/json',
-  Accept: 'application/json'
-}
-type AuthEventName = 'profile' | 'signin' | 'signout' | 'presignout' | 'passwordchange' | 'error'
-type AuthEventHandler = (e?: {
-  accessToken?: string
-  credential?: string
-  domains: any[]
-  domain: any
-  languages?: { code: string; display: string }[]
-}) => void
-type AuthErrorHandler = (err: any) => void
-class ClientAuth {
-  private listeners: {
-    profile: AuthEventHandler[]
-    signout: AuthEventHandler[]
-    signin: AuthEventHandler[]
-    presignout: AuthEventHandler[]
-    passwordchange: AuthEventHandler[]
-    error: AuthErrorHandler[]
-  } = {
-    profile: [],
-    signout: [],
-    signin: [],
-    presignout: [],
-    passwordchange: [],
-    error: []
-  }
-  private authRequiredEventListener = this.onAuthRequired.bind(this)
-  private activateRequiredEventListener = this.onActivateRequired.bind(this)
-  private _credential: any
-  private accessToken?: string
-  private domains: any[] = []
-  private domain: any
-  private languages: { code: string; display: string }[] = []
-  constructor() {
-    document.addEventListener('auth-required', this.authRequiredEventListener)
-    document.addEventListener('activate-required', this.activateRequiredEventListener)
-  }
-  on(event: AuthEventName, handler: AuthEventHandler | AuthErrorHandler) {
-    var listeners = this.listeners[event]
-    if (listeners) {
-      listeners.push(handler)
-    } else {
-      console.log('unknown event', event)
-    }
-    if (event == 'profile' && this._credential) {
-      /*
-        특별히 event 가 profile 인 경우에는 이미 fetch된 credential이 있다면, 콜백을 해준다.
-        시스템 bootstrap에서 profile 이벤트가 사용되는 경우가 많은데, profile도 매우 초기에 fetch 되므로 레이스컨디션이 발생할 수 있기 때문에, 확실하게 event 콜백을 보장하기 위해서이다.
-      */
-      handler({ credential: this._credential, domains: this.domains, domain: this.domain, languages: this.languages })
-    }
-  }
-  off(event: AuthEventName, handler: AuthEventHandler | AuthErrorHandler) {
-    var listeners = this.listeners[event]
-    if (listeners) {
-      let idx = listeners.indexOf(handler)
-      idx >= 0 && listeners.splice(idx, 1)
-    } else {
-      console.log('unknown event', event)
-    }
-  }
-  dispose() {
-    document.removeEventListener('auth-required', this.authRequiredEventListener)
-    document.removeEventListener('activate-required', this.activateRequiredEventListener)
-    this.listeners = {
-      profile: [],
-      signin: [],
-      signout: [],
-      presignout: [],
-      passwordchange: [],
-      error: []
-    }
-  }
-  private onProfileFetched({ credential, accessToken, domains, domain, languages }) {
-    this._credential = credential
-    this.domains = domains
-    this.domain = domain
-    this.languages = languages
-    if (accessToken && !this.accessToken) {
-      /*
-      기존에 세션을 가지거나, 액세스토큰으로 인증된 경우,
-      이 경우는 signin 이벤트리스너들을 호출해서 authenticated 상태로 되도록 유도한다.
-      */
-      this.accessToken = accessToken
-      this.listeners.signin.forEach(handler => handler({ accessToken, domains, domain, languages }))
-    }
-    accessToken && (this.accessToken = accessToken)
-    this.listeners.profile.forEach(handler => handler({ credential, domains, domain, languages }))
-  }
-  private async onPreSignout() {
-    for (let onpresignout of this.listeners.presignout) {
-      await onpresignout()
-    }
-  }
-  private onAuthError(error) {
-    /* signin, signup 과정에서 에러가 발생한 경우 */
-    this.listeners?.error.forEach(handler => handler(error))
-  }
-  private onPasswordChanged(result) {
-    //event is passwordchange, handler is result
-    this.listeners?.passwordchange.forEach(handler => handler(result))
-  }
-  private onAuthRequired(e) {
-    console.warn('authentication required')
-    let url = new URL(window.location.href)
-    url.pathname = '/auth/signin'
-    url.searchParams.append('redirect_to', window.location.href)
-    window.location.href = url.href
-  }
-  private onActivateRequired(e) {
-    console.warn('activate required')
-    var params = new URLSearchParams()
-    params.append('email', e.email)
-    window.location.replace(`/auth/activate?${params}`)
-  }
-  get credential() {
-    return this._credential
-  }
-  route(path, redirected) {
-    /* history에 남긴다. redirected된 상태임을 남긴다. */
-    const location = window.location
-    const origin = location.origin || location.protocol + '//' + location.host
-    const href = `${origin}${path}`
-    if (location.pathname === path) return
-    // popstate 이벤트가 history.back() 에서만 발생하므로
-    // 히스토리에 두번을 넣고 back()을 호출하는 편법을 사용함.
-    // forward history가 한번 남는 문제가 있으나 signin 프로세스 중에만 발생하므로 큰 문제는 아님.
-    // 이 로직은 login process가 어플리케이션 구조에 종속되는 것을 최소화하기 위함임.
-    // 예를 들면, redux 구조에 들어가지 않아도 로그인 프로세스가 동작하도록 한 것임.
-    window.history.pushState({ redirected }, '', href)
-    window.history.pushState({}, '', href)
-    window.history.back()
-  }
-  async updateProfile(formProps) {
-    const response = await fetch('/auth/update-profile', {
-      method: 'POST',
-      credentials: 'include',
-      headers: HEADER_JSON,
-      body: JSON.stringify(formProps)
-    })
-    const message = await response.text()
-    if (response.ok) {
-      return message
-    }
-    throw new Error(message)
-  }
-  async changePassword(formProps) {
-    try {
-      const response = await fetch('/auth/change-pass', {
-        method: 'POST',
-        credentials: 'include',
-        headers: HEADER_JSON,
-        body: JSON.stringify(formProps)
-      })
-      const message = await response.text()
-      if (response.ok) {
-        this.onPasswordChanged({ message })
-      } else {
-        this.onAuthError({ message })
-      }
-    } catch (e) {
-      this.onAuthError(e)
-    }
-  }
-  async deleteUser(params) {
-    const response = await fetch('/auth/delete-user', {
-      method: 'POST',
-      credentials: 'include',
-      headers: HEADER_JSON,
-      body: JSON.stringify(params)
-    })
-    const message = await response.text()
-    if (response.ok) {
-      return message
-    } else {
-      throw new Error(message)
-    }
-  }
-  async profile() {
-    if (sessionStorage.getItem('ThingsFactory-UseExternServer')) {
-      return
-    }
-    try {
-      var searchParams = new URLSearchParams(location.search)
-      var token = searchParams.get('token')
-      var headers = JSON.parse(JSON.stringify(HEADER_JSON))
-      if (token) {
-        headers.authorization = `Bearer ${token}`
-      }
-      const response = await fetch('/auth/profile', {
-        method: 'GET',
-        credentials: 'include',
-        headers
-      })
-      if (response.ok) {
-        if (response.redirected) {
-          location.href = response.url
-          return
-        }
-        const data = await response.json()
-        this.onProfileFetched({
-          credential: data.user,
-          accessToken: data.token,
-          domains: data.domains,
-          domain: data.domain,
-          languages: data.languages
-        })
-        return
-      }
-    } catch (e) {
-      this.onAuthError(e)
-    }
-  }
-  async signout() {
-    await this.onPreSignout()
-    window.location.href = '/auth/signout'
-  }
-}
-export const auth = new ClientAuth()

package/client/bootstrap.ts DELETED Viewed

@@ -1,47 +0,0 @@
-import { store, updateDomains } from '@operato/shell'
-import { updateAuthenticated, updateUser } from './actions/auth'
-import { auth } from './auth'
-import reducerAuth from './reducers/auth'
-import './directive/privileged' /* directive 초기화를 보장하기 위해서 호출함. */
-export default function bootstrap() {
-  store.addReducers({
-    auth: reducerAuth
-  })
-  auth.on('profile', ({ credential, domains, domain, languages }) => {
-    store.dispatch(
-      updateAuthenticated({
-        authenticated: true
-      }) as any
-    )
-    store.dispatch(updateUser(credential) as any)
-    store.dispatch(updateDomains(domains, domain) as any)
-  })
-  auth.on('passwordchange', result => {
-    let message = result.message
-    document.dispatchEvent(
-      new CustomEvent('notify', {
-        detail: {
-          level: result.error ? 'error' : 'info',
-          message
-        }
-      })
-    )
-  })
-  auth.on('error', ex => {
-    document.dispatchEvent(
-      new CustomEvent('notify', {
-        detail: {
-          level: 'error',
-          message: ex.message
-        }
-      })
-    )
-  })
-}

package/client/directive/privileged.ts DELETED Viewed

@@ -1,28 +0,0 @@
-import { nothing } from 'lit'
-import { directive, AsyncDirective } from 'lit/async-directive.js'
-import { hasPrivilege } from '../profiled'
-class PrivilegedDirective extends AsyncDirective {
-  render(
-    privilege: {
-      privilege?: string
-      category?: string
-      domainOwnerGranted?: boolean
-      superUserGranted?: boolean
-    },
-    trueResult: any,
-    falseResult: any = nothing
-  ) {
-    this.setValue(nothing)
-    hasPrivilege(privilege).then(result => {
-      if (result) {
-        this.setValue(trueResult)
-      } else {
-        this.setValue(falseResult)
-      }
-    })
-  }
-}
-export const privileged = directive(PrivilegedDirective)

package/client/index.ts DELETED Viewed

@@ -1,4 +0,0 @@
-export * from './auth'
-export * from './profiled'
-export * from './directive/privileged'
-export * from './verify-webauthn'

package/client/profiled.ts DELETED Viewed

@@ -1,83 +0,0 @@
-import { auth } from './auth'
-var profileResolved = false
-var user
-var languages
-var domain
-var domains
-const profileReady = new Promise<void>(resolve => {
-  auth.on('profile', (data: { credential; domains; domain; languages }) => {
-    profileResolved = true
-    user = data.credential
-    languages = data.languages
-    domain = data.domain
-    domains = data.domains
-    resolve()
-  })
-})
-export async function hasPrivilege({
-  privilege,
-  category,
-  domainOwnerGranted,
-  superUserGranted
-}: {
-  privilege?: string
-  category?: string
-  domainOwnerGranted?: boolean
-  superUserGranted?: boolean
-}) {
-  if (!profileResolved) {
-    await profileReady
-  }
-  const { privileges, owner, super: superUser, unsafeIP } = user
-  if (unsafeIP) {
-    if (privilege && category) {
-      // unsafeIP 상황에서는 ownership granted는 적용되지 않는다.
-      return (privileges || []).find(p => p.privilege == privilege && p.category == category)
-    }
-    // privileage, category가 설정되지 않은 경우에는 ownership granted가 설정되었다면 허가하지 않는다.
-    return !domainOwnerGranted && !superUserGranted
-  } else {
-    if (!privilege || !category) {
-      // privileage, category가 설정되지 않은 경우에는 ownership granted만을 적용한다.
-      return (domainOwnerGranted && owner) || (superUserGranted && superUser)
-    }
-    if ((domainOwnerGranted && owner) || (superUserGranted && superUser)) {
-      return true
-    }
-    return (privileges || []).find(p => p.privilege == privilege && p.category == category)
-  }
-}
-export async function getLanguages() {
-  if (!profileResolved) {
-    await profileReady
-  }
-  return languages
-}
-export async function getDomain() {
-  if (!profileResolved) {
-    await profileReady
-  }
-  return domain
-}
-export async function getDomains() {
-  if (!profileResolved) {
-    await profileReady
-  }
-  return domains
-}

package/client/reducers/auth.ts DELETED Viewed

@@ -1,31 +0,0 @@
-import { SET_AUTH, SET_PROFILE } from '../actions/auth'
-const INITIAL_STATE = {
-  authenticated: false,
-  accessToken: '',
-  user: null
-}
-const auth = (state = INITIAL_STATE, action) => {
-  switch (action.type) {
-    case SET_AUTH:
-      let auth = action.auth
-      return {
-        ...state,
-        authenticated: auth.authenticated,
-        accessToken: auth.accessToken
-      }
-    case SET_PROFILE:
-      return {
-        ...state,
-        user: action.user
-      }
-    default:
-      return state
-  }
-}
-export default auth

package/client/verify-webauthn.ts DELETED Viewed

@@ -1,86 +0,0 @@
-/*
-// Usage example
-async function performSensitiveAction() {
-  try {
-    const result = await verifyBiometric()
-    if (result.verified) {
-      console.log('Verification successful. Proceeding with sensitive action.')
-      // Perform the sensitive action here
-    } else if (result.needsRegistration) {
-      console.log('Biometric registration needed:', result.message)
-      // Redirect user to biometric registration page or show registration prompt
-    } else {
-      console.log('Verification failed:', result.message)
-      // Handle the failure (e.g., show an error message to the user)
-    }
-  } catch (error) {
-    console.error('Error during biometric verification:', error)
-    // Handle any unexpected errors
-  }
-}
-*/
-import { startAuthentication } from '@simplewebauthn/browser'
-interface BiometricVerificationResult {
-  verified: boolean
-  message: string
-  needsRegistration?: boolean
-}
-/**
- * Performs biometric verification for the current user.
- * @param challengeUrl The URL to fetch the authentication challenge.
- * @param verifyUrl The URL to send the authentication assertion for verification.
- * @returns A promise that resolves to a BiometricVerificationResult.
- */
-export async function verifyBiometric(
-  challengeUrl: string = '/auth/verify-webauthn/challenge',
-  verifyUrl: string = '/auth/verify-webauthn'
-): Promise<BiometricVerificationResult> {
-  try {
-    // 1. Get the challenge from the server
-    const challengeResponse = await fetch(challengeUrl)
-    if (!challengeResponse.ok) {
-      const errorData = await challengeResponse.json()
-      if (challengeResponse.status === 400 && errorData.error === 'No biometric credentials registered for this user') {
-        return {
-          verified: false,
-          message: 'Biometric authentication is not set up for this account. Please register first.',
-          needsRegistration: true
-        }
-      }
-      throw new Error(`Failed to get challenge: ${errorData.error || challengeResponse.statusText}`)
-    }
-    const options = await challengeResponse.json()
-    // 2. Start the authentication process
-    const assertion = await startAuthentication(options)
-    // 3. Send the assertion to the server for verification
-    const verificationResponse = await fetch(verifyUrl, {
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/json'
-      },
-      body: JSON.stringify(assertion)
-    })
-    if (!verificationResponse.ok) {
-      throw new Error(`Verification failed: ${verificationResponse.statusText}`)
-    }
-    const verificationResult = await verificationResponse.json()
-    return {
-      verified: verificationResult.verified,
-      message: verificationResult.message || 'Biometric verification successful!'
-    }
-  } catch (error: any) {
-    console.error('Biometric verification error:', error)
-    return {
-      verified: false,
-      message: `Error: ${error.message}`
-    }
-  }
-}

package/server/constants/error-code.ts DELETED Viewed

@@ -1,22 +0,0 @@
-export const USER_NOT_FOUND = 'user not found'
-export const PASSWORD_NOT_MATCHED = 'password-not-matched'
-export const USER_NOT_ACTIVATED = 'user not activated'
-export const USER_LOCKED = 'user-locked'
-export const USER_DELETED = 'user-deleted'
-export const NO_AVAILABLE_DOMAIN = 'no-available-domain'
-export const UNAVAILABLE_DOMAIN = 'unavailable-domain'
-export const NO_SELECTED_DOMAIN = 'no-selected-domain'
-export const REDIRECT_TO_DEFAULT_DOMAIN = 'redirect-to-default-domain'
-export const TOKEN_INVALID = 'token-invalid'
-export const AUTH_INVALID = 'auth-invalid'
-export const SUBDOMAIN_NOTFOUND = 'subdomain not found'
-export const CONFIRM_PASSWORD_NOT_MATCHED = 'confirm password not matched'
-export const PASSWORD_PATTERN_NOT_MATCHED = 'password should match the rule'
-export const USER_DUPLICATED = 'user duplicated'
-export const PASSWORD_USED_PAST = 'password used in the past'
-export const VERIFICATION_ERROR = 'user or verification token not found'
-export const AUTHN_VERIFICATION_FAILED = 'authn verification failed'
-export const USER_CREDENTIAL_NOT_FOUND = 'user credential not found'
-export const EMAIL_ALREADY_EXISTS = 'email already exists'
-export const USERNAME_ALREADY_EXISTS = 'email already exists'
-export const AUTH_ERROR = 'auth error'

package/server/constants/error-message.ts DELETED Viewed

File without changes

package/server/constants/max-age.ts DELETED Viewed

	@@ -1 +0,0 @@
1	- export const MAX_AGE = 7 * 24 * 3600 * 1000

package/server/controllers/auth.ts DELETED Viewed

@@ -1,5 +0,0 @@
-export * from './change-pwd'
-export * from './signin'
-export * from './signup'
-export * from './verification'
-export * from './invitation'