npm - @tinyrack/tinyauth-server - Versions diffs - 0.5.0 → 0.6.0 - Mend

@tinyrack/tinyauth-server 0.5.0 → 0.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (381) hide show

package/dist/lib/config/admin.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+import z from 'zod';
+export declare const ADMIN_CONFIG_DEFAULT: {
+    enabled: boolean;
+};
+export declare const AdminConfigSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+}, z.z.core.$strict>>;
+export type AdminConfig = z.infer<typeof AdminConfigSchema>;
+//# sourceMappingURL=admin.d.ts.map

package/dist/lib/config/admin.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"admin.d.ts","sourceRoot":"","sources":["../../../src/lib/config/admin.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAGpB,eAAO,MAAM,oBAAoB;;CAEhC,CAAC;AAEF,eAAO,MAAM,iBAAiB;;qBAMQ,CAAC;AAEvC,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC"}

package/dist/lib/config/admin.js ADDED Viewed

@@ -0,0 +1,13 @@
+import z from 'zod';
+import { zz } from "../../schemas/provider.js";
+export const ADMIN_CONFIG_DEFAULT = {
+    enabled: false,
+};
+export const AdminConfigSchema = z
+    .object({
+    enabled: zz.COERCE_BOOLEAN.default(ADMIN_CONFIG_DEFAULT.enabled),
+})
+    .strict()
+    .default(ADMIN_CONFIG_DEFAULT)
+    .describe('Admin console settings.');
+//# sourceMappingURL=admin.js.map

package/dist/lib/config/admin.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"admin.js","sourceRoot":"","sources":["../../../src/lib/config/admin.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;AAE/C,MAAM,CAAC,MAAM,oBAAoB,GAAG;IAClC,OAAO,EAAE,KAAK;CACf,CAAC;AAEF,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC;KAC/B,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAAC,oBAAoB,CAAC,OAAO,CAAC;CACjE,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,oBAAoB,CAAC;KAC7B,QAAQ,CAAC,yBAAyB,CAAC,CAAC"}

package/dist/lib/config/auth.d.ts CHANGED Viewed

@@ -60,6 +60,49 @@ export declare const PasskeyAuthConfigSchema: z.ZodDefault<z.ZodObject<{
     origins: z.ZodOptional<z.ZodArray<z.ZodURL>>;
 }, z.z.core.$strict>>;
 export type PasskeyAuthConfig = z.infer<typeof PasskeyAuthConfigSchema>;
+export declare const ACCOUNT_SELECTION_CONFIG_DEFAULT: {
+    readonly enabled: false;
+    readonly mode: "oidc_prompt";
+    readonly remember_accounts: {
+        enabled: boolean;
+        max_accounts: number;
+        ttl: string;
+    };
+    readonly allow_add_account: true;
+    readonly allow_remove_account: true;
+    readonly login_hint: {
+        readonly behavior: "prefer";
+    };
+    readonly prompt_none_error: "account_selection_required";
+};
+export declare const AccountSelectionConfigSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+    mode: z.ZodDefault<z.ZodEnum<{
+        always: "always";
+        oidc_prompt: "oidc_prompt";
+        disabled: "disabled";
+        smart: "smart";
+    }>>;
+    remember_accounts: z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+        max_accounts: z.ZodDefault<z.z.ZodCoercedNumber<unknown>>;
+        ttl: z.ZodDefault<z.ZodString>;
+    }, z.z.core.$strict>>;
+    allow_add_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+    allow_remove_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+    login_hint: z.ZodDefault<z.ZodObject<{
+        behavior: z.ZodDefault<z.ZodEnum<{
+            prefer: "prefer";
+            ignore: "ignore";
+            require_match: "require_match";
+        }>>;
+    }, z.z.core.$strict>>;
+    prompt_none_error: z.ZodDefault<z.ZodEnum<{
+        login_required: "login_required";
+        account_selection_required: "account_selection_required";
+    }>>;
+}, z.z.core.$strict>>;
+export type AccountSelectionConfig = z.infer<typeof AccountSelectionConfigSchema>;
 export declare const AUTH_CONFIG_DEFAULT: {
     password: {
         enabled: boolean;
@@ -78,6 +121,21 @@ export declare const AUTH_CONFIG_DEFAULT: {
     passkey: {
         enabled: boolean;
     };
+    account_selection: {
+        readonly enabled: false;
+        readonly mode: "oidc_prompt";
+        readonly remember_accounts: {
+            enabled: boolean;
+            max_accounts: number;
+            ttl: string;
+        };
+        readonly allow_add_account: true;
+        readonly allow_remove_account: true;
+        readonly login_hint: {
+            readonly behavior: "prefer";
+        };
+        readonly prompt_none_error: "account_selection_required";
+    };
 };
 /**
  * Authentication methods configuration (fixed structure).
@@ -103,6 +161,33 @@ export declare const AuthConfigSchema: z.ZodDefault<z.ZodObject<{
         rp_id: z.ZodOptional<z.ZodString>;
         origins: z.ZodOptional<z.ZodArray<z.ZodURL>>;
     }, z.z.core.$strict>>;
+    account_selection: z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+        mode: z.ZodDefault<z.ZodEnum<{
+            always: "always";
+            oidc_prompt: "oidc_prompt";
+            disabled: "disabled";
+            smart: "smart";
+        }>>;
+        remember_accounts: z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+            max_accounts: z.ZodDefault<z.z.ZodCoercedNumber<unknown>>;
+            ttl: z.ZodDefault<z.ZodString>;
+        }, z.z.core.$strict>>;
+        allow_add_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+        allow_remove_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+        login_hint: z.ZodDefault<z.ZodObject<{
+            behavior: z.ZodDefault<z.ZodEnum<{
+                prefer: "prefer";
+                ignore: "ignore";
+                require_match: "require_match";
+            }>>;
+        }, z.z.core.$strict>>;
+        prompt_none_error: z.ZodDefault<z.ZodEnum<{
+            login_required: "login_required";
+            account_selection_required: "account_selection_required";
+        }>>;
+    }, z.z.core.$strict>>;
 }, z.z.core.$strict>>;
 export type AuthConfig = z.infer<typeof AuthConfigSchema>;
 export {};

package/dist/lib/config/auth.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../src/lib/config/auth.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;~~AAWpB~~;;;GAGG;AACH,QAAA,MAAM,6BAA6B;;qBAa0B,CAAC;AAE9D,MAAM,MAAM,uBAAuB,GAAG,CAAC,CAAC,KAAK,CAC3C,OAAO,6BAA6B,CACrC,CAAC;AAEF,eAAO,MAAM,8BAA8B;;;CAG1C,CAAC;AAEF,eAAO,MAAM,0BAA0B;;;oBA0BnC,CAAC;AAEL,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAC;AAO9E,eAAO,MAAM,4BAA4B;;;;;;;;;;;;;CAKxC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,wBAAwB;;;;;;;;;;;;;qBA4BgB,CAAC;AAEtD,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,wBAAwB,CAAC,CAAC;AAc1E,eAAO,MAAM,2BAA2B;;CAEvC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,uBAAuB;;;;qBA6B2B,CAAC;AAEhE,MAAM,MAAM,iBAAiB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,uBAAuB,CAAC,CAAC;~~AAExE~~,eAAO,MAAM,mBAAmB~~;;;;;;;;;;;;;;;;;;CAG~~/B,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,gBAAgB~~;;;;;;;;;;;;;;;;;;;;qBAwBuB~~,CAAC;AAErD,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC"}
1	+ {"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../src/lib/config/auth.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAYpB;;;GAGG;AACH,QAAA,MAAM,6BAA6B;;qBAa0B,CAAC;AAE9D,MAAM,MAAM,uBAAuB,GAAG,CAAC,CAAC,KAAK,CAC3C,OAAO,6BAA6B,CACrC,CAAC;AAEF,eAAO,MAAM,8BAA8B;;;CAG1C,CAAC;AAEF,eAAO,MAAM,0BAA0B;;;oBA0BnC,CAAC;AAEL,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAC;AAO9E,eAAO,MAAM,4BAA4B;;;;;;;;;;;;;CAKxC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,wBAAwB;;;;;;;;;;;;;qBA4BgB,CAAC;AAEtD,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,wBAAwB,CAAC,CAAC;AAc1E,eAAO,MAAM,2BAA2B;;CAEvC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,uBAAuB;;;;qBA6B2B,CAAC;AAEhE,MAAM,MAAM,iBAAiB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,uBAAuB,CAAC,CAAC;AAQxE,eAAO,MAAM,gCAAgC;;;;;;;;;;;;;;CAUnC,CAAC;AA0BX,eAAO,MAAM,4BAA4B;;;;;;;;;;;;;;;;;;;;;;;;;;qBAsCW,CAAC;AAErD,MAAM,MAAM,sBAAsB,GAAG,CAAC,CAAC,KAAK,CAC1C,OAAO,4BAA4B,CACpC,CAAC;AAEF,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAI/B,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,gBAAgB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;qBA2BuB,CAAC;AAErD,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC"}

package/dist/lib/config/auth.js CHANGED Viewed

@@ -1,5 +1,6 @@
 import z from 'zod';
 import { zz } from "../../schemas/provider.js";
+import { DurationString } from "../duration.js";
 import { PASSWORD_POLICY_MAX_LENGTH, PASSWORD_POLICY_MIN_LENGTH, } from "../password-policy.js";
 const PASSWORD_TWO_FACTOR_CONFIG_DEFAULT = {
     enrollment_required: false,
@@ -126,9 +127,68 @@ export const PasskeyAuthConfigSchema = z
     .strict()
     .default(PASSKEY_AUTH_CONFIG_DEFAULT)
     .describe('Passkey (WebAuthn) authentication configuration.');
+const ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT = {
+    enabled: true,
+    max_accounts: 5,
+    ttl: '30d',
+};
+export const ACCOUNT_SELECTION_CONFIG_DEFAULT = {
+    enabled: false,
+    mode: 'oidc_prompt',
+    remember_accounts: ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT,
+    allow_add_account: true,
+    allow_remove_account: true,
+    login_hint: {
+        behavior: 'prefer',
+    },
+    prompt_none_error: 'account_selection_required',
+};
+const AccountSelectionRememberAccountsConfigSchema = z
+    .object({
+    enabled: zz.COERCE_BOOLEAN.default(ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT.enabled).describe('Whether previously authenticated accounts are remembered in the browser session.'),
+    max_accounts: z.coerce
+        .number()
+        .int()
+        .min(1)
+        .max(10)
+        .default(ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT.max_accounts)
+        .describe('Maximum remembered accounts to keep in the encrypted session cookie.'),
+    ttl: DurationString.default(ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT.ttl).describe('How long remembered accounts remain selectable, e.g. 30d.'),
+})
+    .strict()
+    .default(ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT)
+    .describe('Remembered account roster configuration.');
+export const AccountSelectionConfigSchema = z
+    .object({
+    enabled: zz.COERCE_BOOLEAN.default(ACCOUNT_SELECTION_CONFIG_DEFAULT.enabled).describe('Whether OIDC account selection is enabled.'),
+    mode: z
+        .enum(['disabled', 'oidc_prompt', 'smart', 'always'])
+        .default(ACCOUNT_SELECTION_CONFIG_DEFAULT.mode)
+        .describe('When to show the account selection screen.'),
+    remember_accounts: AccountSelectionRememberAccountsConfigSchema,
+    allow_add_account: zz.COERCE_BOOLEAN.default(ACCOUNT_SELECTION_CONFIG_DEFAULT.allow_add_account).describe('Whether the account chooser allows signing in with another account.'),
+    allow_remove_account: zz.COERCE_BOOLEAN.default(ACCOUNT_SELECTION_CONFIG_DEFAULT.allow_remove_account).describe('Whether the account chooser allows removing remembered accounts.'),
+    login_hint: z
+        .object({
+        behavior: z
+            .enum(['ignore', 'prefer', 'require_match'])
+            .default(ACCOUNT_SELECTION_CONFIG_DEFAULT.login_hint.behavior)
+            .describe('How login_hint influences remembered account selection.'),
+    })
+        .strict()
+        .default(ACCOUNT_SELECTION_CONFIG_DEFAULT.login_hint),
+    prompt_none_error: z
+        .enum(['account_selection_required', 'login_required'])
+        .default(ACCOUNT_SELECTION_CONFIG_DEFAULT.prompt_none_error)
+        .describe('OAuth error returned when prompt=none forbids required account-selection UI.'),
+})
+    .strict()
+    .default(ACCOUNT_SELECTION_CONFIG_DEFAULT)
+    .describe('OIDC account selection configuration.');
 export const AUTH_CONFIG_DEFAULT = {
     password: PASSWORD_AUTH_CONFIG_DEFAULT,
     passkey: PASSKEY_AUTH_CONFIG_DEFAULT,
+    account_selection: ACCOUNT_SELECTION_CONFIG_DEFAULT,
 };
 /**
  * Authentication methods configuration (fixed structure).
@@ -138,6 +198,7 @@ export const AuthConfigSchema = z
     .object({
     password: PasswordAuthConfigSchema.describe('Password authentication settings.'),
     passkey: PasskeyAuthConfigSchema.describe('Passkey (WebAuthn) authentication settings.'),
+    account_selection: AccountSelectionConfigSchema.describe('OIDC account selection settings.'),
 })
     .strict()
     .superRefine((val, ctx) => {

package/dist/lib/config/auth.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../src/lib/config/auth.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;AAC/C,OAAO,EACL,0BAA0B,EAC1B,0BAA0B,GAC3B,MAAM,uBAAuB,CAAC;AAE/B,MAAM,kCAAkC,GAAG;IACzC,mBAAmB,EAAE,KAAK;CAC3B,CAAC;AAEF;;;GAGG;AACH,MAAM,6BAA6B,GAAG,CAAC;KACpC,MAAM,CAAC;IACN;;OAEG;IACH,mBAAmB,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAC5C,kCAAkC,CAAC,mBAAmB,CACvD,CAAC,QAAQ,CACR,wEAAwE,CACzE;CACF,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,kCAAkC,CAAC;KAC3C,QAAQ,CAAC,gDAAgD,CAAC,CAAC;AAM9D,MAAM,CAAC,MAAM,8BAA8B,GAAG;IAC5C,UAAU,EAAE,0BAA0B;IACtC,UAAU,EAAE,0BAA0B;CACvC,CAAC;AAEF,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC;KACxC,MAAM,CAAC;IACN,UAAU,EAAE,CAAC,CAAC,MAAM;SACjB,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,0BAA0B,CAAC;SAC/B,OAAO,CAAC,8BAA8B,CAAC,UAAU,CAAC;SAClD,QAAQ,CAAC,0BAA0B,CAAC;IACvC,UAAU,EAAE,CAAC,CAAC,MAAM;SACjB,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,0BAA0B,CAAC;SAC/B,OAAO,CAAC,8BAA8B,CAAC,UAAU,CAAC;SAClD,QAAQ,CAAC,0BAA0B,CAAC;CACxC,CAAC;KACD,OAAO,CAAC,8BAA8B,CAAC;KACvC,QAAQ,CAAC,2BAA2B,CAAC;KACrC,WAAW,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;IAC1B,IAAI,KAAK,CAAC,UAAU,GAAG,KAAK,CAAC,UAAU,EAAE,CAAC;QACxC,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,YAAY,CAAC;YACpB,OAAO,EAAE,wDAAwD;SAClE,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC,CAAC;AAIL,MAAM,iCAAiC,GAAG;IACxC,OAAO,EAAE,KAAK;IACd,MAAM,EAAE,UAAU;CACnB,CAAC;AAEF,MAAM,CAAC,MAAM,4BAA4B,GAAG;IAC1C,OAAO,EAAE,IAAI;IACb,UAAU,EAAE,kCAAkC;IAC9C,IAAI,EAAE,iCAAiC;IACvC,MAAM,EAAE,8BAA8B;CACvC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,wBAAwB,GAAG,CAAC;KACtC,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,4BAA4B,CAAC,OAAO,CACrC,CAAC,QAAQ,CAAC,mDAAmD,CAAC;IAC/D;;OAEG;IACH,UAAU,EAAE,6BAA6B;IACzC,IAAI,EAAE,CAAC;SACJ,MAAM,CAAC;QACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,iCAAiC,CAAC,OAAO,CAC1C,CAAC,QAAQ,CAAC,0DAA0D,CAAC;QACtE,MAAM,EAAE,CAAC;aACN,MAAM,EAAE;aACR,OAAO,CAAC,iCAAiC,CAAC,MAAM,CAAC;aACjD,QAAQ,CACP,kEAAkE,CACnE;KACJ,CAAC;SACD,MAAM,EAAE;SACR,OAAO,CAAC,iCAAiC,CAAC;SAC1C,QAAQ,CAAC,oDAAoD,CAAC;IACjE,MAAM,EAAE,0BAA0B;CACnC,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,4BAA4B,CAAC;KACrC,QAAQ,CAAC,wCAAwC,CAAC,CAAC;AAItD;;;;;;;;GAQG;AACH,MAAM,eAAe,GACnB,qHAAqH,CAAC;AAExH,MAAM,CAAC,MAAM,2BAA2B,GAAG;IACzC,OAAO,EAAE,KAAK;CACf,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAG,CAAC;KACrC,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,2BAA2B,CAAC,OAAO,CACpC,CAAC,QAAQ,CAAC,uDAAuD,CAAC;IACnE;;;;;;OAMG;IACH,KAAK,EAAE,CAAC;SACL,MAAM,EAAE;SACR,KAAK,CACJ,eAAe,EACf,wDAAwD;QACtD,sCAAsC,CACzC;SACA,QAAQ,EAAE;IACb;;;;OAIG;IACH,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,QAAQ,EAAE;CACrC,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,2BAA2B,CAAC;KACpC,QAAQ,CAAC,kDAAkD,CAAC,CAAC;AAIhE,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,QAAQ,EAAE,4BAA4B;IACtC,OAAO,EAAE,2BAA2B;~~CACrC~~,CAAC;AAEF;;;GAGG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC;KAC9B,MAAM,CAAC;IACN,QAAQ,EAAE,wBAAwB,CAAC,QAAQ,CACzC,mCAAmC,CACpC;IACD,OAAO,EAAE,uBAAuB,CAAC,QAAQ,CACvC,6CAA6C,CAC9C;CACF,CAAC;KACD,MAAM,EAAE;KACR,WAAW,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;IACxB,IACE,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,mBAAmB;QAC3C,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO;QAC1B,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,EACpB,CAAC;QACD,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,OAAO,EACL,uFAAuF;SAC1F,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC;KACD,OAAO,CAAC,mBAAmB,CAAC;KAC5B,QAAQ,CAAC,uCAAuC,CAAC,CAAC"}
1	+ {"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../src/lib/config/auth.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;AAC/C,OAAO,EAAE,cAAc,EAAE,MAAM,gBAAgB,CAAC;AAChD,OAAO,EACL,0BAA0B,EAC1B,0BAA0B,GAC3B,MAAM,uBAAuB,CAAC;AAE/B,MAAM,kCAAkC,GAAG;IACzC,mBAAmB,EAAE,KAAK;CAC3B,CAAC;AAEF;;;GAGG;AACH,MAAM,6BAA6B,GAAG,CAAC;KACpC,MAAM,CAAC;IACN;;OAEG;IACH,mBAAmB,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAC5C,kCAAkC,CAAC,mBAAmB,CACvD,CAAC,QAAQ,CACR,wEAAwE,CACzE;CACF,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,kCAAkC,CAAC;KAC3C,QAAQ,CAAC,gDAAgD,CAAC,CAAC;AAM9D,MAAM,CAAC,MAAM,8BAA8B,GAAG;IAC5C,UAAU,EAAE,0BAA0B;IACtC,UAAU,EAAE,0BAA0B;CACvC,CAAC;AAEF,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC;KACxC,MAAM,CAAC;IACN,UAAU,EAAE,CAAC,CAAC,MAAM;SACjB,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,0BAA0B,CAAC;SAC/B,OAAO,CAAC,8BAA8B,CAAC,UAAU,CAAC;SAClD,QAAQ,CAAC,0BAA0B,CAAC;IACvC,UAAU,EAAE,CAAC,CAAC,MAAM;SACjB,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,0BAA0B,CAAC;SAC/B,OAAO,CAAC,8BAA8B,CAAC,UAAU,CAAC;SAClD,QAAQ,CAAC,0BAA0B,CAAC;CACxC,CAAC;KACD,OAAO,CAAC,8BAA8B,CAAC;KACvC,QAAQ,CAAC,2BAA2B,CAAC;KACrC,WAAW,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;IAC1B,IAAI,KAAK,CAAC,UAAU,GAAG,KAAK,CAAC,UAAU,EAAE,CAAC;QACxC,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,YAAY,CAAC;YACpB,OAAO,EAAE,wDAAwD;SAClE,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC,CAAC;AAIL,MAAM,iCAAiC,GAAG;IACxC,OAAO,EAAE,KAAK;IACd,MAAM,EAAE,UAAU;CACnB,CAAC;AAEF,MAAM,CAAC,MAAM,4BAA4B,GAAG;IAC1C,OAAO,EAAE,IAAI;IACb,UAAU,EAAE,kCAAkC;IAC9C,IAAI,EAAE,iCAAiC;IACvC,MAAM,EAAE,8BAA8B;CACvC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,wBAAwB,GAAG,CAAC;KACtC,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,4BAA4B,CAAC,OAAO,CACrC,CAAC,QAAQ,CAAC,mDAAmD,CAAC;IAC/D;;OAEG;IACH,UAAU,EAAE,6BAA6B;IACzC,IAAI,EAAE,CAAC;SACJ,MAAM,CAAC;QACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,iCAAiC,CAAC,OAAO,CAC1C,CAAC,QAAQ,CAAC,0DAA0D,CAAC;QACtE,MAAM,EAAE,CAAC;aACN,MAAM,EAAE;aACR,OAAO,CAAC,iCAAiC,CAAC,MAAM,CAAC;aACjD,QAAQ,CACP,kEAAkE,CACnE;KACJ,CAAC;SACD,MAAM,EAAE;SACR,OAAO,CAAC,iCAAiC,CAAC;SAC1C,QAAQ,CAAC,oDAAoD,CAAC;IACjE,MAAM,EAAE,0BAA0B;CACnC,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,4BAA4B,CAAC;KACrC,QAAQ,CAAC,wCAAwC,CAAC,CAAC;AAItD;;;;;;;;GAQG;AACH,MAAM,eAAe,GACnB,qHAAqH,CAAC;AAExH,MAAM,CAAC,MAAM,2BAA2B,GAAG;IACzC,OAAO,EAAE,KAAK;CACf,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAG,CAAC;KACrC,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,2BAA2B,CAAC,OAAO,CACpC,CAAC,QAAQ,CAAC,uDAAuD,CAAC;IACnE;;;;;;OAMG;IACH,KAAK,EAAE,CAAC;SACL,MAAM,EAAE;SACR,KAAK,CACJ,eAAe,EACf,wDAAwD;QACtD,sCAAsC,CACzC;SACA,QAAQ,EAAE;IACb;;;;OAIG;IACH,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,QAAQ,EAAE;CACrC,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,2BAA2B,CAAC;KACpC,QAAQ,CAAC,kDAAkD,CAAC,CAAC;AAIhE,MAAM,kDAAkD,GAAG;IACzD,OAAO,EAAE,IAAI;IACb,YAAY,EAAE,CAAC;IACf,GAAG,EAAE,KAAK;CACX,CAAC;AAEF,MAAM,CAAC,MAAM,gCAAgC,GAAG;IAC9C,OAAO,EAAE,KAAK;IACd,IAAI,EAAE,aAAa;IACnB,iBAAiB,EAAE,kDAAkD;IACrE,iBAAiB,EAAE,IAAI;IACvB,oBAAoB,EAAE,IAAI;IAC1B,UAAU,EAAE;QACV,QAAQ,EAAE,QAAQ;KACnB;IACD,iBAAiB,EAAE,4BAA4B;CACvC,CAAC;AAEX,MAAM,4CAA4C,GAAG,CAAC;KACnD,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,kDAAkD,CAAC,OAAO,CAC3D,CAAC,QAAQ,CACR,kFAAkF,CACnF;IACD,YAAY,EAAE,CAAC,CAAC,MAAM;SACnB,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,EAAE,CAAC;SACP,OAAO,CAAC,kDAAkD,CAAC,YAAY,CAAC;SACxE,QAAQ,CACP,sEAAsE,CACvE;IACH,GAAG,EAAE,cAAc,CAAC,OAAO,CACzB,kDAAkD,CAAC,GAAG,CACvD,CAAC,QAAQ,CAAC,2DAA2D,CAAC;CACxE,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,kDAAkD,CAAC;KAC3D,QAAQ,CAAC,0CAA0C,CAAC,CAAC;AAExD,MAAM,CAAC,MAAM,4BAA4B,GAAG,CAAC;KAC1C,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,gCAAgC,CAAC,OAAO,CACzC,CAAC,QAAQ,CAAC,4CAA4C,CAAC;IACxD,IAAI,EAAE,CAAC;SACJ,IAAI,CAAC,CAAC,UAAU,EAAE,aAAa,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC;SACpD,OAAO,CAAC,gCAAgC,CAAC,IAAI,CAAC;SAC9C,QAAQ,CAAC,4CAA4C,CAAC;IACzD,iBAAiB,EAAE,4CAA4C;IAC/D,iBAAiB,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAC1C,gCAAgC,CAAC,iBAAiB,CACnD,CAAC,QAAQ,CACR,qEAAqE,CACtE;IACD,oBAAoB,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAC7C,gCAAgC,CAAC,oBAAoB,CACtD,CAAC,QAAQ,CACR,kEAAkE,CACnE;IACD,UAAU,EAAE,CAAC;SACV,MAAM,CAAC;QACN,QAAQ,EAAE,CAAC;aACR,IAAI,CAAC,CAAC,QAAQ,EAAE,QAAQ,EAAE,eAAe,CAAC,CAAC;aAC3C,OAAO,CAAC,gCAAgC,CAAC,UAAU,CAAC,QAAQ,CAAC;aAC7D,QAAQ,CAAC,yDAAyD,CAAC;KACvE,CAAC;SACD,MAAM,EAAE;SACR,OAAO,CAAC,gCAAgC,CAAC,UAAU,CAAC;IACvD,iBAAiB,EAAE,CAAC;SACjB,IAAI,CAAC,CAAC,4BAA4B,EAAE,gBAAgB,CAAC,CAAC;SACtD,OAAO,CAAC,gCAAgC,CAAC,iBAAiB,CAAC;SAC3D,QAAQ,CACP,8EAA8E,CAC/E;CACJ,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,gCAAgC,CAAC;KACzC,QAAQ,CAAC,uCAAuC,CAAC,CAAC;AAMrD,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,QAAQ,EAAE,4BAA4B;IACtC,OAAO,EAAE,2BAA2B;IACpC,iBAAiB,EAAE,gCAAgC;CACpD,CAAC;AAEF;;;GAGG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC;KAC9B,MAAM,CAAC;IACN,QAAQ,EAAE,wBAAwB,CAAC,QAAQ,CACzC,mCAAmC,CACpC;IACD,OAAO,EAAE,uBAAuB,CAAC,QAAQ,CACvC,6CAA6C,CAC9C;IACD,iBAAiB,EAAE,4BAA4B,CAAC,QAAQ,CACtD,kCAAkC,CACnC;CACF,CAAC;KACD,MAAM,EAAE;KACR,WAAW,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;IACxB,IACE,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,mBAAmB;QAC3C,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO;QAC1B,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,EACpB,CAAC;QACD,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,OAAO,EACL,uFAAuF;SAC1F,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC;KACD,OAAO,CAAC,mBAAmB,CAAC;KAC5B,QAAQ,CAAC,uCAAuC,CAAC,CAAC"}

package/dist/lib/config/client.d.ts CHANGED Viewed

@@ -24,6 +24,17 @@ export declare const ClientConfigSchema: z.ZodObject<{
         "urn:ietf:params:oauth:grant-type:device_code": "urn:ietf:params:oauth:grant-type:device_code";
     }>>>;
     scope: z.ZodPipe<z.ZodPipe<z.ZodString, z.ZodTransform<string, string>>, z.ZodString>;
+    skip_consent: z.ZodDefault<z.ZodBoolean>;
+    account_selection: z.ZodOptional<z.ZodObject<{
+        mode: z.ZodDefault<z.ZodEnum<{
+            inherit: "inherit";
+            never: "never";
+            always: "always";
+            oidc_prompt: "oidc_prompt";
+            smart: "smart";
+        }>>;
+        allow_add_account: z.ZodOptional<z.ZodBoolean>;
+    }, z.z.core.$strict>>;
 }, z.z.core.$strict>;
 export type ClientConfig = z.infer<typeof ClientConfigSchema>;
 export declare const CLIENT_CONFIGS_DEFAULT: ClientConfig[];
@@ -48,5 +59,16 @@ export declare const ClientConfigsSchema: z.ZodDefault<z.ZodArray<z.ZodObject<{
         "urn:ietf:params:oauth:grant-type:device_code": "urn:ietf:params:oauth:grant-type:device_code";
     }>>>;
     scope: z.ZodPipe<z.ZodPipe<z.ZodString, z.ZodTransform<string, string>>, z.ZodString>;
+    skip_consent: z.ZodDefault<z.ZodBoolean>;
+    account_selection: z.ZodOptional<z.ZodObject<{
+        mode: z.ZodDefault<z.ZodEnum<{
+            inherit: "inherit";
+            never: "never";
+            always: "always";
+            oidc_prompt: "oidc_prompt";
+            smart: "smart";
+        }>>;
+        allow_add_account: z.ZodOptional<z.ZodBoolean>;
+    }, z.z.core.$strict>>;
 }, z.z.core.$strict>>>;
 //# sourceMappingURL=client.d.ts.map

package/dist/lib/config/client.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../../src/lib/config/client.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AA+~~DpB~~;;;GAGG;AACH,eAAO,MAAM,kBAAkB~~;;;;;;;;;;;;;;;;;;;;;oBAkH4B~~,CAAC;AAE5D,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAE9D,eAAO,MAAM,sBAAsB,EAAE,YAAY,EAAO,CAAC;AAEzD,eAAO,MAAM,mBAAmB~~;;;;;;;;;;;;;;;;;;;;;~~sBA+BiC,CAAC"}
1	+ {"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../../src/lib/config/client.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AA+EpB;;;GAGG;AACH,eAAO,MAAM,kBAAkB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;oBAyH4B,CAAC;AAE5D,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAE9D,eAAO,MAAM,sBAAsB,EAAE,YAAY,EAAO,CAAC;AAEzD,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;sBA+BiC,CAAC"}

package/dist/lib/config/client.js CHANGED Viewed

@@ -24,6 +24,19 @@ const OAuthGrantTypeSchema = z
     'client_credentials',
     'urn:ietf:params:oauth:grant-type:device_code',
 ]));
+const ClientAccountSelectionConfigSchema = z
+    .object({
+    mode: z
+        .enum(['inherit', 'never', 'oidc_prompt', 'smart', 'always'])
+        .default('inherit')
+        .describe('Client-level account selection policy override.'),
+    allow_add_account: z
+        .boolean()
+        .optional()
+        .describe('Client-level override for whether users can add another account.'),
+})
+    .strict()
+    .describe('Client-specific account selection overrides.');
 function normalizeScopeList(scope) {
     const trimmed = scope.trim();
     if (/[\t\n\r\f\v]/.test(trimmed)) {
@@ -91,6 +104,11 @@ export const ClientConfigSchema = z
         .nonempty()
         .describe('Allowed OAuth grant types (e.g., "authorization_code", "implicit", "refresh_token").'),
     scope: ScopeSchema.describe('Space-separated list of allowed OAuth scope-token values for this client.'),
+    skip_consent: z
+        .boolean()
+        .default(false)
+        .describe('Skip the OAuth consent screen for this client unless prompt=consent is requested.'),
+    account_selection: ClientAccountSelectionConfigSchema.optional(),
 })
     .strict()
     .superRefine((client, ctx) => {

package/dist/lib/config/client.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"client.js","sourceRoot":"","sources":["../../../src/lib/config/client.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAC;AAEtD,MAAM,iBAAiB,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CAAC,mBAAmB,EAAE;IAC/D,OAAO,EACL,wFAAwF;CAC3F,CAAC,CAAC;AAEH,MAAM,eAAe,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CACvC,CAAC,KAAK,EAAE,EAAE;IACR,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC;QAC3B,OAAO,GAAG,CAAC,MAAM,KAAK,KAAK,IAAI,mBAAmB,CAAC,KAAK,CAAC,CAAC;IAC5D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC,EACD;IACE,OAAO,EACL,gJAAgJ;CACnJ,CACF,CAAC;AAEF,MAAM,uBAAuB,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,CAAC,CAAC;AAC9E,MAAM,oBAAoB,GAAG,CAAC;KAC3B,MAAM,EAAE;KACR,IAAI,CACH,CAAC,CAAC,IAAI,CAAC;IACL,oBAAoB;IACpB,UAAU;IACV,eAAe;IACf,oBAAoB;IACpB,8CAA8C;CAC/C,CAAC,CACH,CAAC;AAEJ,SAAS,kBAAkB,CAAC,KAAa;IACvC,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IAC7B,IAAI,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACjC,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AACvC,CAAC;AAED,MAAM,WAAW,GAAG,CAAC;KAClB,MAAM,EAAE;KACR,SAAS,CAAC,kBAAkB,CAAC;KAC7B,IAAI,CACH,CAAC;KACE,MAAM,EAAE;KACR,GAAG,CAAC,CAAC,CAAC;KACN,MAAM,CACL,CAAC,KAAK,EAAE,EAAE,CACR,KAAK;KACF,KAAK,CAAC,GAAG,CAAC;KACV,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,6BAA6B,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAChE;IACE,OAAO,EACL,yEAAyE;CAC5E,CACF,CACJ,CAAC;AAEJ;;;GAGG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC;KAChC,MAAM,CAAC;IACN,EAAE,EAAE,CAAC;SACF,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,GAAG,CAAC;SACR,QAAQ,CAAC,qCAAqC,CAAC;IAClD,IAAI,EAAE,CAAC;SACJ,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,QAAQ,CAAC,iDAAiD,CAAC;IAC9D,QAAQ,EAAE,CAAC;SACR,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,qCAAqC,CAAC;IAClD,SAAS,EAAE,CAAC;SACT,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,QAAQ,CAAC,iDAAiD,CAAC;IAC9D,aAAa,EAAE,CAAC;SACb,MAAM,EAAE;SACR,GAAG,CAAC,EAAE,CAAC;SACP,QAAQ,EAAE;SACV,QAAQ,CACP,wEAAwE,CACzE;IACH,aAAa,EAAE,CAAC;SACb,KAAK,CAAC,iBAAiB,CAAC;SACxB,QAAQ,EAAE;SACV,QAAQ,CAAC,4CAA4C,CAAC;IACzD,yBAAyB,EAAE,CAAC;SACzB,KAAK,CAAC,iBAAiB,CAAC;SACxB,OAAO,CAAC,EAAE,CAAC;SACX,QAAQ,CAAC,kDAAkD,CAAC;IAC/D,WAAW,EAAE,CAAC;SACX,KAAK,CAAC,eAAe,CAAC;SACtB,OAAO,CAAC,EAAE,CAAC;SACX,QAAQ,CAAC,kDAAkD,CAAC;IAC/D,cAAc,EAAE,CAAC;SACd,KAAK,CAAC,uBAAuB,CAAC;SAC9B,QAAQ,EAAE;SACV,QAAQ,CAAC,4DAA4D,CAAC;IACzE,WAAW,EAAE,CAAC;SACX,KAAK,CAAC,oBAAoB,CAAC;SAC3B,QAAQ,EAAE;SACV,QAAQ,CACP,sFAAsF,CACvF;IACH,KAAK,EAAE,WAAW,CAAC,QAAQ,CACzB,2EAA2E,CAC5E;~~CACF~~,CAAC;KACD,MAAM,EAAE;KACR,WAAW,CAAC,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE;IAC3B,MAAM,aAAa,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC;IACrD,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IAE/C,IAAI,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,EAAE,CAAC;QACvE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,aAAa,CAAC;YACrB,OAAO,EACL,uFAAuF;SAC1F,CAAC,CAAC;IACL,CAAC;IAED,IAAI,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;QACvE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,gBAAgB,CAAC;YACxB,OAAO,EACL,uFAAuF;SAC1F,CAAC,CAAC;IACL,CAAC;IAED,IAAI,aAAa,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC;QACjE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,aAAa,CAAC;YACrB,OAAO,EACL,iFAAiF;SACpF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,UAAU,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC;QACjE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,gBAAgB,CAAC;YACxB,OAAO,EACL,iFAAiF;SACpF,CAAC,CAAC;IACL,CAAC;IAED,IACE,UAAU,CAAC,GAAG,CAAC,eAAe,CAAC;QAC/B,CAAC,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,EACrC,CAAC;QACD,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,aAAa,CAAC;YACrB,OAAO,EACL,qFAAqF;SACxF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,IAAI,CAAC,MAAM,CAAC,aAAa,EAAE,CAAC;QAClE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,eAAe,CAAC;YACvB,OAAO,EACL,mGAAmG;SACtG,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC;KACD,QAAQ,CAAC,8CAA8C,CAAC,CAAC;AAI5D,MAAM,CAAC,MAAM,sBAAsB,GAAmB,EAAE,CAAC;AAEzD,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC;KACjC,KAAK,CAAC,kBAAkB,CAAC;KACzB,WAAW,CAAC,CAAC,OAAO,EAAE,GAAG,EAAE,EAAE;IAC5B,MAAM,OAAO,GAAG,IAAI,GAAG,EAAkB,CAAC;IAC1C,MAAM,aAAa,GAAG,IAAI,GAAG,EAAkB,CAAC;IAEhD,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;QAChC,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QAC5C,IAAI,YAAY,KAAK,SAAS,EAAE,CAAC;YAC/B,GAAG,CAAC,QAAQ,CAAC;gBACX,IAAI,EAAE,QAAQ;gBACd,IAAI,EAAE,CAAC,KAAK,EAAE,IAAI,CAAC;gBACnB,OAAO,EAAE,2EAA2E,YAAY,MAAM;aACvG,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,EAAE,KAAK,CAAC,CAAC;QAChC,CAAC;QAED,MAAM,kBAAkB,GAAG,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAC/D,IAAI,kBAAkB,KAAK,SAAS,EAAE,CAAC;YACrC,GAAG,CAAC,QAAQ,CAAC;gBACX,IAAI,EAAE,QAAQ;gBACd,IAAI,EAAE,CAAC,KAAK,EAAE,WAAW,CAAC;gBAC1B,OAAO,EAAE,kFAAkF,kBAAkB,aAAa;aAC3H,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;QAC7C,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC,CAAC;KACD,OAAO,CAAC,sBAAsB,CAAC;KAC/B,QAAQ,CAAC,oDAAoD,CAAC,CAAC"}
1	+ {"version":3,"file":"client.js","sourceRoot":"","sources":["../../../src/lib/config/client.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAC;AAEtD,MAAM,iBAAiB,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CAAC,mBAAmB,EAAE;IAC/D,OAAO,EACL,wFAAwF;CAC3F,CAAC,CAAC;AAEH,MAAM,eAAe,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CACvC,CAAC,KAAK,EAAE,EAAE;IACR,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC;QAC3B,OAAO,GAAG,CAAC,MAAM,KAAK,KAAK,IAAI,mBAAmB,CAAC,KAAK,CAAC,CAAC;IAC5D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC,EACD;IACE,OAAO,EACL,gJAAgJ;CACnJ,CACF,CAAC;AAEF,MAAM,uBAAuB,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,CAAC,CAAC;AAC9E,MAAM,oBAAoB,GAAG,CAAC;KAC3B,MAAM,EAAE;KACR,IAAI,CACH,CAAC,CAAC,IAAI,CAAC;IACL,oBAAoB;IACpB,UAAU;IACV,eAAe;IACf,oBAAoB;IACpB,8CAA8C;CAC/C,CAAC,CACH,CAAC;AAEJ,MAAM,kCAAkC,GAAG,CAAC;KACzC,MAAM,CAAC;IACN,IAAI,EAAE,CAAC;SACJ,IAAI,CAAC,CAAC,SAAS,EAAE,OAAO,EAAE,aAAa,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC;SAC5D,OAAO,CAAC,SAAS,CAAC;SAClB,QAAQ,CAAC,iDAAiD,CAAC;IAC9D,iBAAiB,EAAE,CAAC;SACjB,OAAO,EAAE;SACT,QAAQ,EAAE;SACV,QAAQ,CACP,kEAAkE,CACnE;CACJ,CAAC;KACD,MAAM,EAAE;KACR,QAAQ,CAAC,8CAA8C,CAAC,CAAC;AAE5D,SAAS,kBAAkB,CAAC,KAAa;IACvC,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IAC7B,IAAI,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACjC,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AACvC,CAAC;AAED,MAAM,WAAW,GAAG,CAAC;KAClB,MAAM,EAAE;KACR,SAAS,CAAC,kBAAkB,CAAC;KAC7B,IAAI,CACH,CAAC;KACE,MAAM,EAAE;KACR,GAAG,CAAC,CAAC,CAAC;KACN,MAAM,CACL,CAAC,KAAK,EAAE,EAAE,CACR,KAAK;KACF,KAAK,CAAC,GAAG,CAAC;KACV,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,6BAA6B,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAChE;IACE,OAAO,EACL,yEAAyE;CAC5E,CACF,CACJ,CAAC;AAEJ;;;GAGG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC;KAChC,MAAM,CAAC;IACN,EAAE,EAAE,CAAC;SACF,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,GAAG,CAAC;SACR,QAAQ,CAAC,qCAAqC,CAAC;IAClD,IAAI,EAAE,CAAC;SACJ,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,QAAQ,CAAC,iDAAiD,CAAC;IAC9D,QAAQ,EAAE,CAAC;SACR,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,qCAAqC,CAAC;IAClD,SAAS,EAAE,CAAC;SACT,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,QAAQ,CAAC,iDAAiD,CAAC;IAC9D,aAAa,EAAE,CAAC;SACb,MAAM,EAAE;SACR,GAAG,CAAC,EAAE,CAAC;SACP,QAAQ,EAAE;SACV,QAAQ,CACP,wEAAwE,CACzE;IACH,aAAa,EAAE,CAAC;SACb,KAAK,CAAC,iBAAiB,CAAC;SACxB,QAAQ,EAAE;SACV,QAAQ,CAAC,4CAA4C,CAAC;IACzD,yBAAyB,EAAE,CAAC;SACzB,KAAK,CAAC,iBAAiB,CAAC;SACxB,OAAO,CAAC,EAAE,CAAC;SACX,QAAQ,CAAC,kDAAkD,CAAC;IAC/D,WAAW,EAAE,CAAC;SACX,KAAK,CAAC,eAAe,CAAC;SACtB,OAAO,CAAC,EAAE,CAAC;SACX,QAAQ,CAAC,kDAAkD,CAAC;IAC/D,cAAc,EAAE,CAAC;SACd,KAAK,CAAC,uBAAuB,CAAC;SAC9B,QAAQ,EAAE;SACV,QAAQ,CAAC,4DAA4D,CAAC;IACzE,WAAW,EAAE,CAAC;SACX,KAAK,CAAC,oBAAoB,CAAC;SAC3B,QAAQ,EAAE;SACV,QAAQ,CACP,sFAAsF,CACvF;IACH,KAAK,EAAE,WAAW,CAAC,QAAQ,CACzB,2EAA2E,CAC5E;IACD,YAAY,EAAE,CAAC;SACZ,OAAO,EAAE;SACT,OAAO,CAAC,KAAK,CAAC;SACd,QAAQ,CACP,mFAAmF,CACpF;IACH,iBAAiB,EAAE,kCAAkC,CAAC,QAAQ,EAAE;CACjE,CAAC;KACD,MAAM,EAAE;KACR,WAAW,CAAC,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE;IAC3B,MAAM,aAAa,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC;IACrD,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IAE/C,IAAI,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,EAAE,CAAC;QACvE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,aAAa,CAAC;YACrB,OAAO,EACL,uFAAuF;SAC1F,CAAC,CAAC;IACL,CAAC;IAED,IAAI,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;QACvE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,gBAAgB,CAAC;YACxB,OAAO,EACL,uFAAuF;SAC1F,CAAC,CAAC;IACL,CAAC;IAED,IAAI,aAAa,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC;QACjE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,aAAa,CAAC;YACrB,OAAO,EACL,iFAAiF;SACpF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,UAAU,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC;QACjE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,gBAAgB,CAAC;YACxB,OAAO,EACL,iFAAiF;SACpF,CAAC,CAAC;IACL,CAAC;IAED,IACE,UAAU,CAAC,GAAG,CAAC,eAAe,CAAC;QAC/B,CAAC,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,EACrC,CAAC;QACD,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,aAAa,CAAC;YACrB,OAAO,EACL,qFAAqF;SACxF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,IAAI,CAAC,MAAM,CAAC,aAAa,EAAE,CAAC;QAClE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,eAAe,CAAC;YACvB,OAAO,EACL,mGAAmG;SACtG,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC;KACD,QAAQ,CAAC,8CAA8C,CAAC,CAAC;AAI5D,MAAM,CAAC,MAAM,sBAAsB,GAAmB,EAAE,CAAC;AAEzD,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC;KACjC,KAAK,CAAC,kBAAkB,CAAC;KACzB,WAAW,CAAC,CAAC,OAAO,EAAE,GAAG,EAAE,EAAE;IAC5B,MAAM,OAAO,GAAG,IAAI,GAAG,EAAkB,CAAC;IAC1C,MAAM,aAAa,GAAG,IAAI,GAAG,EAAkB,CAAC;IAEhD,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;QAChC,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QAC5C,IAAI,YAAY,KAAK,SAAS,EAAE,CAAC;YAC/B,GAAG,CAAC,QAAQ,CAAC;gBACX,IAAI,EAAE,QAAQ;gBACd,IAAI,EAAE,CAAC,KAAK,EAAE,IAAI,CAAC;gBACnB,OAAO,EAAE,2EAA2E,YAAY,MAAM;aACvG,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,EAAE,KAAK,CAAC,CAAC;QAChC,CAAC;QAED,MAAM,kBAAkB,GAAG,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAC/D,IAAI,kBAAkB,KAAK,SAAS,EAAE,CAAC;YACrC,GAAG,CAAC,QAAQ,CAAC;gBACX,IAAI,EAAE,QAAQ;gBACd,IAAI,EAAE,CAAC,KAAK,EAAE,WAAW,CAAC;gBAC1B,OAAO,EAAE,kFAAkF,kBAAkB,aAAa;aAC3H,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;QAC7C,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC,CAAC;KACD,OAAO,CAAC,sBAAsB,CAAC;KAC/B,QAAQ,CAAC,oDAAoD,CAAC,CAAC"}

package/dist/lib/config/index.d.ts CHANGED Viewed

@@ -1,5 +1,7 @@
 export type { AccountDeletionConfig } from './account-deletion.ts';
 export { AccountDeletionConfigSchema } from './account-deletion.ts';
+export type { AdminConfig } from './admin.ts';
+export { ADMIN_CONFIG_DEFAULT, AdminConfigSchema } from './admin.ts';
 export type { AuthConfig, PasskeyAuthConfig, PasswordAuthConfig, PasswordPolicyConfig, PasswordTwoFactorConfig, } from './auth.ts';
 export { AuthConfigSchema, PasskeyAuthConfigSchema, PasswordAuthConfigSchema, PasswordPolicyConfigSchema, } from './auth.ts';
 export type { AppTheme, BrandingConfig } from './branding.ts';

package/dist/lib/config/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/lib/config/index.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAC;AACnE,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AACpE,YAAY,EACV,UAAU,EACV,iBAAiB,EACjB,kBAAkB,EAClB,oBAAoB,EACpB,uBAAuB,GACxB,MAAM,WAAW,CAAC;AACnB,OAAO,EACL,gBAAgB,EAChB,uBAAuB,EACvB,wBAAwB,EACxB,0BAA0B,GAC3B,MAAM,WAAW,CAAC;AACnB,YAAY,EAAE,QAAQ,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrE,YAAY,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAC3E,YAAY,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AACtE,YAAY,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EACV,WAAW,EACX,kBAAkB,EAClB,cAAc,GACf,MAAM,YAAY,CAAC;AACpB,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,YAAY,EACV,cAAc,EACd,eAAe,EACf,sBAAsB,GACvB,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,gBAAgB,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAC3D,YAAY,EAAE,sBAAsB,EAAE,MAAM,yBAAyB,CAAC;AACtE,OAAO,EACL,4BAA4B,EAC5B,6BAA6B,GAC9B,MAAM,yBAAyB,CAAC;AACjC,YAAY,EAAE,SAAS,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,cAAc,CAAC;AACvE,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,YAAY,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAC3E,YAAY,EAAE,kBAAkB,EAAE,MAAM,mBAAmB,CAAC;AAC5D,OAAO,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAC7D,YAAY,EACV,qBAAqB,EACrB,0BAA0B,GAC3B,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAC5D,YAAY,EACV,mBAAmB,EACnB,2BAA2B,EAC3B,UAAU,EACV,aAAa,EACb,kBAAkB,EAClB,eAAe,EACf,uBAAuB,EACvB,eAAe,EACf,sBAAsB,EACtB,uBAAuB,EACvB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EACL,yBAAyB,EACzB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,YAAY,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,YAAY,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AACzD,OAAO,EAAE,iBAAiB,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAChE,YAAY,EAAE,sBAAsB,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,EAAE,4BAA4B,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAC/E,YAAY,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/lib/config/index.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAC;AACnE,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AACpE,YAAY,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAC9C,OAAO,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AACrE,YAAY,EACV,UAAU,EACV,iBAAiB,EACjB,kBAAkB,EAClB,oBAAoB,EACpB,uBAAuB,GACxB,MAAM,WAAW,CAAC;AACnB,OAAO,EACL,gBAAgB,EAChB,uBAAuB,EACvB,wBAAwB,EACxB,0BAA0B,GAC3B,MAAM,WAAW,CAAC;AACnB,YAAY,EAAE,QAAQ,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrE,YAAY,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAC3E,YAAY,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AACtE,YAAY,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EACV,WAAW,EACX,kBAAkB,EAClB,cAAc,GACf,MAAM,YAAY,CAAC;AACpB,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,YAAY,EACV,cAAc,EACd,eAAe,EACf,sBAAsB,GACvB,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,gBAAgB,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAC3D,YAAY,EAAE,sBAAsB,EAAE,MAAM,yBAAyB,CAAC;AACtE,OAAO,EACL,4BAA4B,EAC5B,6BAA6B,GAC9B,MAAM,yBAAyB,CAAC;AACjC,YAAY,EAAE,SAAS,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,cAAc,CAAC;AACvE,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,YAAY,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAC3E,YAAY,EAAE,kBAAkB,EAAE,MAAM,mBAAmB,CAAC;AAC5D,OAAO,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAC7D,YAAY,EACV,qBAAqB,EACrB,0BAA0B,GAC3B,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAC5D,YAAY,EACV,mBAAmB,EACnB,2BAA2B,EAC3B,UAAU,EACV,aAAa,EACb,kBAAkB,EAClB,eAAe,EACf,uBAAuB,EACvB,eAAe,EACf,sBAAsB,EACtB,uBAAuB,EACvB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EACL,yBAAyB,EACzB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,YAAY,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,YAAY,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AACzD,OAAO,EAAE,iBAAiB,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAChE,YAAY,EAAE,sBAAsB,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,EAAE,4BAA4B,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAC/E,YAAY,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC"}

package/dist/lib/config/index.js CHANGED Viewed

@@ -1,4 +1,5 @@
 export { AccountDeletionConfigSchema } from "./account-deletion.js";
+export { ADMIN_CONFIG_DEFAULT, AdminConfigSchema } from "./admin.js";
 export { AuthConfigSchema, PasskeyAuthConfigSchema, PasswordAuthConfigSchema, PasswordPolicyConfigSchema, } from "./auth.js";
 export { AppThemeSchema, BrandingConfigSchema } from "./branding.js";
 export { CLEANUP_CONFIG_DEFAULT, CleanupConfigSchema } from "./cleanup.js";

package/dist/lib/config/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/lib/config/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;~~AAQpE~~,OAAO,EACL,gBAAgB,EAChB,uBAAuB,EACvB,wBAAwB,EACxB,0BAA0B,GAC3B,MAAM,WAAW,CAAC;AAEnB,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAErE,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAE3E,OAAO,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAEtE,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAMrD,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAM/C,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAErD,OAAO,EAAE,gBAAgB,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAE3D,OAAO,EACL,4BAA4B,EAC5B,6BAA6B,GAC9B,MAAM,yBAAyB,CAAC;AAEjC,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAEnD,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAE3E,OAAO,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAK7D,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAc5D,OAAO,EACL,yBAAyB,EACzB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AAExB,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAErD,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAEjD,OAAO,EAAE,iBAAiB,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAEhE,OAAO,EAAE,4BAA4B,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAE/E,OAAO,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC"}
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/lib/config/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AAEpE,OAAO,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAQrE,OAAO,EACL,gBAAgB,EAChB,uBAAuB,EACvB,wBAAwB,EACxB,0BAA0B,GAC3B,MAAM,WAAW,CAAC;AAEnB,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAErE,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAE3E,OAAO,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAEtE,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAMrD,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAM/C,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAErD,OAAO,EAAE,gBAAgB,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAE3D,OAAO,EACL,4BAA4B,EAC5B,6BAA6B,GAC9B,MAAM,yBAAyB,CAAC;AAEjC,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAEnD,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAE3E,OAAO,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAK7D,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAc5D,OAAO,EACL,yBAAyB,EACzB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AAExB,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAErD,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAEjD,OAAO,EAAE,iBAAiB,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAEhE,OAAO,EAAE,4BAA4B,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAE/E,OAAO,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC"}

package/dist/lib/config/resolved.d.ts CHANGED Viewed

@@ -126,6 +126,9 @@ export declare const TinyAuthRuntimeConfigSchema: z.ZodObject<{
         enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
         retention: z.ZodDefault<z.ZodString>;
     }, z.z.core.$strict>>;
+    admin: z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+    }, z.z.core.$strict>>;
     logging: z.ZodDefault<z.ZodObject<{
         level: z.ZodDefault<z.ZodEnum<{
             error: "error";
@@ -167,6 +170,33 @@ export declare const TinyAuthRuntimeConfigSchema: z.ZodObject<{
             rp_id: z.ZodOptional<z.ZodString>;
             origins: z.ZodOptional<z.ZodArray<z.ZodURL>>;
         }, z.z.core.$strict>>;
+        account_selection: z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+            mode: z.ZodDefault<z.ZodEnum<{
+                always: "always";
+                oidc_prompt: "oidc_prompt";
+                disabled: "disabled";
+                smart: "smart";
+            }>>;
+            remember_accounts: z.ZodDefault<z.ZodObject<{
+                enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+                max_accounts: z.ZodDefault<z.z.ZodCoercedNumber<unknown>>;
+                ttl: z.ZodDefault<z.ZodString>;
+            }, z.z.core.$strict>>;
+            allow_add_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+            allow_remove_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
+            login_hint: z.ZodDefault<z.ZodObject<{
+                behavior: z.ZodDefault<z.ZodEnum<{
+                    prefer: "prefer";
+                    ignore: "ignore";
+                    require_match: "require_match";
+                }>>;
+            }, z.z.core.$strict>>;
+            prompt_none_error: z.ZodDefault<z.ZodEnum<{
+                login_required: "login_required";
+                account_selection_required: "account_selection_required";
+            }>>;
+        }, z.z.core.$strict>>;
     }, z.z.core.$strict>>;
     security: z.ZodObject<{
         session_secret: z.ZodString;
@@ -235,6 +265,17 @@ export declare const TinyAuthRuntimeConfigSchema: z.ZodObject<{
             "urn:ietf:params:oauth:grant-type:device_code": "urn:ietf:params:oauth:grant-type:device_code";
         }>>>;
         scope: z.ZodPipe<z.ZodPipe<z.ZodString, z.ZodTransform<string, string>>, z.ZodString>;
+        skip_consent: z.ZodDefault<z.ZodBoolean>;
+        account_selection: z.ZodOptional<z.ZodObject<{
+            mode: z.ZodDefault<z.ZodEnum<{
+                inherit: "inherit";
+                never: "never";
+                always: "always";
+                oidc_prompt: "oidc_prompt";
+                smart: "smart";
+            }>>;
+            allow_add_account: z.ZodOptional<z.ZodBoolean>;
+        }, z.z.core.$strict>>;
     }, z.z.core.$strict>>>;
     users: z.ZodDefault<z.ZodArray<z.ZodObject<{
         sub: z.ZodString;

package/dist/lib/config/resolved.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"resolved.d.ts","sourceRoot":"","sources":["../../../src/lib/config/resolved.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;~~AAqBpB~~,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;oBAyCM,CAAC;AAE/C,MAAM,MAAM,0BAA0B,GAAG,CAAC,CAAC,KAAK,CAC9C,OAAO,2BAA2B,CACnC,CAAC;AACF,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,MAAM,CAC1C,OAAO,2BAA2B,CACnC,CAAC"}
1	+ {"version":3,"file":"resolved.d.ts","sourceRoot":"","sources":["../../../src/lib/config/resolved.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAsBpB,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;oBA0CM,CAAC;AAE/C,MAAM,MAAM,0BAA0B,GAAG,CAAC,CAAC,KAAK,CAC9C,OAAO,2BAA2B,CACnC,CAAC;AACF,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,MAAM,CAC1C,OAAO,2BAA2B,CACnC,CAAC"}

package/dist/lib/config/resolved.js CHANGED Viewed

@@ -1,5 +1,6 @@
 import z from 'zod';
 import { AccountDeletionConfigSchema } from "./account-deletion.js";
+import { AdminConfigSchema } from "./admin.js";
 import { AuthConfigSchema } from "./auth.js";
 import { BrandingConfigSchema } from "./branding.js";
 import { CleanupConfigSchema } from "./cleanup.js";
@@ -26,6 +27,7 @@ export const TinyAuthRuntimeConfigSchema = z
     branding: BrandingConfigSchema.describe('Branding and visual customization settings.'),
     registration: RegistrationConfigSchema.describe('User self-registration settings.'),
     account_deletion: AccountDeletionConfigSchema.describe('Account deletion settings.'),
+    admin: AdminConfigSchema.describe('Admin console settings.'),
     logging: LoggingConfigSchema.describe('Logging settings.'),
     openapi: OpenApiConfigSchema.describe('OpenAPI and API reference settings.'),
     auth: AuthConfigSchema.describe('Authentication methods settings.'),

package/dist/lib/config/resolved.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"resolved.js","sourceRoot":"","sources":["../../../src/lib/config/resolved.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AACpE,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAClD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,6BAA6B,EAAE,MAAM,yBAAyB,CAAC;AACxE,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAC7D,OAAO,EAAE,qBAAqB,EAAE,MAAM,gBAAgB,CAAC;AACvD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC;AAE9C,MAAM,CAAC,MAAM,2BAA2B,GAAG,CAAC;KACzC,MAAM,CAAC;IACN,MAAM,EAAE,kBAAkB,CAAC,QAAQ,CAAC,uBAAuB,CAAC;IAC5D,MAAM,EAAE,kBAAkB,CAAC,QAAQ,CACjC,0CAA0C,CAC3C;IACD,IAAI,EAAE,gBAAgB,CAAC,QAAQ,CAAC,gCAAgC,CAAC;IACjE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,6CAA6C,CAC9C;IACD,YAAY,EAAE,wBAAwB,CAAC,QAAQ,CAC7C,kCAAkC,CACnC;IACD,gBAAgB,EAAE,2BAA2B,CAAC,QAAQ,CACpD,4BAA4B,CAC7B;IACD,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CAAC,mBAAmB,CAAC;IAC1D,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CACnC,qCAAqC,CACtC;IACD,IAAI,EAAE,gBAAgB,CAAC,QAAQ,CAAC,kCAAkC,CAAC;IACnE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,sCAAsC,CACvC;IACD,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CAAC,wBAAwB,CAAC;IAC/D,SAAS,EAAE,qBAAqB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IACvE,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IAC/D,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CACnC,4CAA4C,CAC7C;IACD,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,gCAAgC,CAAC;IACnE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IACrE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,sCAAsC,CACvC;IACD,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,mCAAmC,CAAC;IACtE,kBAAkB,EAAE,6BAA6B,CAAC,QAAQ,CACxD,sCAAsC,CACvC;CACF,CAAC;KACD,MAAM,EAAE;KACR,QAAQ,CAAC,iCAAiC,CAAC,CAAC"}
1	+ {"version":3,"file":"resolved.js","sourceRoot":"","sources":["../../../src/lib/config/resolved.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AACpE,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAClD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,6BAA6B,EAAE,MAAM,yBAAyB,CAAC;AACxE,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAC7D,OAAO,EAAE,qBAAqB,EAAE,MAAM,gBAAgB,CAAC;AACvD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC;AAE9C,MAAM,CAAC,MAAM,2BAA2B,GAAG,CAAC;KACzC,MAAM,CAAC;IACN,MAAM,EAAE,kBAAkB,CAAC,QAAQ,CAAC,uBAAuB,CAAC;IAC5D,MAAM,EAAE,kBAAkB,CAAC,QAAQ,CACjC,0CAA0C,CAC3C;IACD,IAAI,EAAE,gBAAgB,CAAC,QAAQ,CAAC,gCAAgC,CAAC;IACjE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,6CAA6C,CAC9C;IACD,YAAY,EAAE,wBAAwB,CAAC,QAAQ,CAC7C,kCAAkC,CACnC;IACD,gBAAgB,EAAE,2BAA2B,CAAC,QAAQ,CACpD,4BAA4B,CAC7B;IACD,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,yBAAyB,CAAC;IAC5D,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CAAC,mBAAmB,CAAC;IAC1D,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CACnC,qCAAqC,CACtC;IACD,IAAI,EAAE,gBAAgB,CAAC,QAAQ,CAAC,kCAAkC,CAAC;IACnE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,sCAAsC,CACvC;IACD,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CAAC,wBAAwB,CAAC;IAC/D,SAAS,EAAE,qBAAqB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IACvE,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IAC/D,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CACnC,4CAA4C,CAC7C;IACD,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,gCAAgC,CAAC;IACnE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IACrE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,sCAAsC,CACvC;IACD,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,mCAAmC,CAAC;IACtE,kBAAkB,EAAE,6BAA6B,CAAC,QAAQ,CACxD,sCAAsC,CACvC;CACF,CAAC;KACD,MAAM,EAAE;KACR,QAAQ,CAAC,iCAAiC,CAAC,CAAC"}

package/dist/lib/config/server.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../../src/lib/config/server.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;~~AAGpB~~,eAAO,MAAM,qBAAqB;;;;CAIxB,CAAC;~~AA+BX~~,eAAO,MAAM,kBAAkB;;;;~~qBAcE~~,CAAC;AAElC,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC"}
1	+ {"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../../src/lib/config/server.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAIpB,eAAO,MAAM,qBAAqB;;;;CAIxB,CAAC;AAuCX,eAAO,MAAM,kBAAkB;;;;qBAkBE,CAAC;AAElC,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC"}

package/dist/lib/config/server.js CHANGED Viewed

@@ -1,10 +1,19 @@
 import z from 'zod';
 import { zz } from "../../schemas/provider.js";
+import { isHttpsOrLocalHttpUrl } from "./url-policy.js";
 export const SERVER_CONFIG_DEFAULT = {
     public_origin: 'http://localhost:8080',
     listen_port: 8080,
     trust_proxy: false,
 };
+function isOriginUrl(value) {
+    try {
+        return new URL(value).origin === value && isHttpsOrLocalHttpUrl(value);
+    }
+    catch {
+        return false;
+    }
+}
 const TrustProxySchema = z
     .union([
     z.boolean(),
@@ -35,6 +44,9 @@ export const ServerConfigSchema = z
     .object({
     public_origin: z
         .url()
+        .refine(isOriginUrl, {
+        message: 'public_origin must be an HTTPS or local HTTP origin URL without credentials, path, query, fragment, or trailing slash',
+    })
         .default(SERVER_CONFIG_DEFAULT.public_origin)
         .describe('Public origin for the auth service, used for redirects, emails, and CORS.'),
     listen_port: zz.PORT.default(SERVER_CONFIG_DEFAULT.listen_port).describe('TCP port to listen on.'),

package/dist/lib/config/server.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"server.js","sourceRoot":"","sources":["../../../src/lib/config/server.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;~~AAE~~/C,MAAM,CAAC,MAAM,qBAAqB,GAAG;IACnC,aAAa,EAAE,uBAAuB;IACtC,WAAW,EAAE,IAAI;IACjB,WAAW,EAAE,KAAK;CACV,CAAC;AAEX,MAAM,gBAAgB,GAAG,CAAC;KACvB,KAAK,CAAC;IACL,CAAC,CAAC,OAAO,EAAE;IACX,CAAC,CAAC,MAAM,EAAE;IACV,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC;IACnB,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CACxB,CAAC;KACD,OAAO,CAAC,qBAAqB,CAAC,WAAW,CAAC;KAC1C,SAAS,CAAC,CAAC,KAAK,EAAE,EAAE;IACnB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,IAAI,KAAK,KAAK,MAAM,EAAE,CAAC;YACrB,OAAO,IAAI,CAAC;QACd,CAAC;QACD,IAAI,KAAK,KAAK,OAAO,EAAE,CAAC;YACtB,OAAO,KAAK,CAAC;QACf,CAAC;QACD,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;QAC1B,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,GAAG,CAAC,KAAK,KAAK,EAAE,CAAC;YAChD,OAAO,GAAG,CAAC;QACb,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC,CAAC;KACD,QAAQ,CACP,uDAAuD;IACrD,+CAA+C;IAC/C,mDAAmD,CACtD,CAAC;AAEJ,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC;KAChC,MAAM,CAAC;IACN,aAAa,EAAE,CAAC;SACb,GAAG,EAAE;SACL,OAAO,CAAC,qBAAqB,CAAC,aAAa,CAAC;SAC5C,QAAQ,CACP,2EAA2E,CAC5E;IACH,WAAW,EAAE,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,qBAAqB,CAAC,WAAW,CAAC,CAAC,QAAQ,CACtE,wBAAwB,CACzB;IACD,WAAW,EAAE,gBAAgB;CAC9B,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,qBAAqB,CAAC,CAAC"}
1	+ {"version":3,"file":"server.js","sourceRoot":"","sources":["../../../src/lib/config/server.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;AAC/C,OAAO,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AAExD,MAAM,CAAC,MAAM,qBAAqB,GAAG;IACnC,aAAa,EAAE,uBAAuB;IACtC,WAAW,EAAE,IAAI;IACjB,WAAW,EAAE,KAAK;CACV,CAAC;AAEX,SAAS,WAAW,CAAC,KAAa;IAChC,IAAI,CAAC;QACH,OAAO,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC,MAAM,KAAK,KAAK,IAAI,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACzE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,MAAM,gBAAgB,GAAG,CAAC;KACvB,KAAK,CAAC;IACL,CAAC,CAAC,OAAO,EAAE;IACX,CAAC,CAAC,MAAM,EAAE;IACV,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC;IACnB,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CACxB,CAAC;KACD,OAAO,CAAC,qBAAqB,CAAC,WAAW,CAAC;KAC1C,SAAS,CAAC,CAAC,KAAK,EAAE,EAAE;IACnB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,IAAI,KAAK,KAAK,MAAM,EAAE,CAAC;YACrB,OAAO,IAAI,CAAC;QACd,CAAC;QACD,IAAI,KAAK,KAAK,OAAO,EAAE,CAAC;YACtB,OAAO,KAAK,CAAC;QACf,CAAC;QACD,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;QAC1B,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,GAAG,CAAC,KAAK,KAAK,EAAE,CAAC;YAChD,OAAO,GAAG,CAAC;QACb,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC,CAAC;KACD,QAAQ,CACP,uDAAuD;IACrD,+CAA+C;IAC/C,mDAAmD,CACtD,CAAC;AAEJ,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC;KAChC,MAAM,CAAC;IACN,aAAa,EAAE,CAAC;SACb,GAAG,EAAE;SACL,MAAM,CAAC,WAAW,EAAE;QACnB,OAAO,EACL,uHAAuH;KAC1H,CAAC;SACD,OAAO,CAAC,qBAAqB,CAAC,aAAa,CAAC;SAC5C,QAAQ,CACP,2EAA2E,CAC5E;IACH,WAAW,EAAE,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,qBAAqB,CAAC,WAAW,CAAC,CAAC,QAAQ,CACtE,wBAAwB,CACzB;IACD,WAAW,EAAE,gBAAgB;CAC9B,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,qBAAqB,CAAC,CAAC"}

package/dist/lib/swagger-tags.d.ts CHANGED Viewed

@@ -4,6 +4,7 @@
  * Use these constants in route schema definitions for consistent tagging.
  */
 export declare const TAGS: {
+    readonly ADMIN: "Admin";
     readonly AUTH: "Auth";
     readonly USER: "User";
     readonly CONSENT: "Consent";

package/dist/lib/swagger-tags.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"swagger-tags.d.ts","sourceRoot":"","sources":["../../src/lib/swagger-tags.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,eAAO,MAAM,IAAI~~;;;;;;;;CAQP~~,CAAC"}
1	+ {"version":3,"file":"swagger-tags.d.ts","sourceRoot":"","sources":["../../src/lib/swagger-tags.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,eAAO,MAAM,IAAI;;;;;;;;;CASP,CAAC"}

package/dist/lib/swagger-tags.js CHANGED Viewed

@@ -4,6 +4,7 @@
  * Use these constants in route schema definitions for consistent tagging.
  */
 export const TAGS = {
+    ADMIN: 'Admin',
     AUTH: 'Auth',
     USER: 'User',
     CONSENT: 'Consent',

package/dist/lib/swagger-tags.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"swagger-tags.js","sourceRoot":"","sources":["../../src/lib/swagger-tags.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,MAAM,CAAC,MAAM,IAAI,GAAG;IAClB,IAAI,EAAE,MAAM;IACZ,IAAI,EAAE,MAAM;IACZ,OAAO,EAAE,SAAS;IAClB,KAAK,EAAE,OAAO;IACd,aAAa,EAAE,eAAe;IAC9B,MAAM,EAAE,QAAQ;IAChB,MAAM,EAAE,QAAQ;CACR,CAAC"}
1	+ {"version":3,"file":"swagger-tags.js","sourceRoot":"","sources":["../../src/lib/swagger-tags.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,MAAM,CAAC,MAAM,IAAI,GAAG;IAClB,KAAK,EAAE,OAAO;IACd,IAAI,EAAE,MAAM;IACZ,IAAI,EAAE,MAAM;IACZ,OAAO,EAAE,SAAS;IAClB,KAAK,EAAE,OAAO;IACd,aAAa,EAAE,eAAe;IAC9B,MAAM,EAAE,QAAQ;IAChB,MAAM,EAAE,QAAQ;CACR,CAAC"}

package/dist/middleware/auth.d.ts CHANGED Viewed

@@ -22,6 +22,9 @@ export declare const verifyAuth: <Optional extends boolean = false>(options?: {
 }) => import("hono").MiddlewareHandler<{
     Variables: SessionEnv["Variables"] & ServicesEnv["Variables"] & VerifiedAuthEnv<Optional>["Variables"];
 }, string, {}, Response>;
+export declare const requireAdmin: () => import("hono").MiddlewareHandler<{
+    Variables: SessionEnv["Variables"] & ServicesEnv["Variables"] & VerifiedAuthEnv<false>["Variables"];
+}, string, {}, Response>;
 type VerifiedPending2FAUserEnv<Optional extends boolean> = {
     Variables: {
         verifiedPending2FAUser: Optional extends true ? VerifiedPending2FA | undefined : VerifiedPending2FA;

package/dist/middleware/auth.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/middleware/auth.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AAE7D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AACjD,OAAO,KAAK,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE5D,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,UAAU,CAAC;IACjB,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,UAAU,CAAC;IACjB,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,uBAAuB;IACtC,IAAI,EAAE,UAAU,CAAC;CAClB;AAED,KAAK,eAAe,CAAC,QAAQ,SAAS,OAAO,IAAI;IAC/C,SAAS,EAAE;QACT,YAAY,EAAE,QAAQ,SAAS,IAAI,GAC/B,YAAY,GAAG,SAAS,GACxB,YAAY,CAAC;KAClB,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,UAAU,GAAI,QAAQ,SAAS,OAAO,GAAG,KAAK,EAAE,UAAU;IACrE,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,eAAe,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAgCxC,CAAC;AAEL,KAAK,yBAAyB,CAAC,QAAQ,SAAS,OAAO,IAAI;IACzD,SAAS,EAAE;QACT,sBAAsB,EAAE,QAAQ,SAAS,IAAI,GACzC,kBAAkB,GAAG,SAAS,GAC9B,kBAAkB,CAAC;KACxB,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,oBAAoB,GAC/B,QAAQ,SAAS,OAAO,GAAG,KAAK,EAChC,UAAU;IACV,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,yBAAyB,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAgClD,CAAC;AAEL,KAAK,8BAA8B,CAAC,QAAQ,SAAS,OAAO,IAAI;IAC9D,SAAS,EAAE;QACT,2BAA2B,EAAE,QAAQ,SAAS,IAAI,GAC9C,uBAAuB,GAAG,SAAS,GACnC,uBAAuB,CAAC;KAC7B,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,yBAAyB,GACpC,QAAQ,SAAS,OAAO,GAAG,KAAK,EAChC,UAAU;IACV,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,8BAA8B,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBA6BvD,CAAC;AAEL,KAAK,2BAA2B,GAAG;IACjC,SAAS,EAAE;QACT,wBAAwB,EAAE,MAAM,CAAC;KAClC,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,sBAAsB;eAEpB,UAAU,CAAC,WAAW,CAAC,GAChC,2BAA2B,CAAC,WAAW,CAAC;wBAU1C,CAAC;AAEL,KAAK,gBAAgB,CAAC,QAAQ,SAAS,OAAO,IAAI;IAChD,SAAS,EAAE;QACT,aAAa,EAAE,QAAQ,SAAS,IAAI,GAChC,WAAW,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,GAAG,SAAS,GAC7C,WAAW,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC;KACvC,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,WAAW,GAAI,QAAQ,SAAS,OAAO,GAAG,KAAK,EAAE,UAAU;IACtE,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,gBAAgB,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAczC,CAAC"}
1	+ {"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/middleware/auth.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AAE7D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AACjD,OAAO,KAAK,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE5D,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,UAAU,CAAC;IACjB,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,UAAU,CAAC;IACjB,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,uBAAuB;IACtC,IAAI,EAAE,UAAU,CAAC;CAClB;AAED,KAAK,eAAe,CAAC,QAAQ,SAAS,OAAO,IAAI;IAC/C,SAAS,EAAE;QACT,YAAY,EAAE,QAAQ,SAAS,IAAI,GAC/B,YAAY,GAAG,SAAS,GACxB,YAAY,CAAC;KAClB,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,UAAU,GAAI,QAAQ,SAAS,OAAO,GAAG,KAAK,EAAE,UAAU;IACrE,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,eAAe,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAgCxC,CAAC;AAEL,eAAO,MAAM,YAAY;eAEV,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,eAAe,CAAC,KAAK,CAAC,CAAC,WAAW,CAAC;wBA2BrC,CAAC;AAEL,KAAK,yBAAyB,CAAC,QAAQ,SAAS,OAAO,IAAI;IACzD,SAAS,EAAE;QACT,sBAAsB,EAAE,QAAQ,SAAS,IAAI,GACzC,kBAAkB,GAAG,SAAS,GAC9B,kBAAkB,CAAC;KACxB,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,oBAAoB,GAC/B,QAAQ,SAAS,OAAO,GAAG,KAAK,EAChC,UAAU;IACV,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,yBAAyB,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAgClD,CAAC;AAEL,KAAK,8BAA8B,CAAC,QAAQ,SAAS,OAAO,IAAI;IAC9D,SAAS,EAAE;QACT,2BAA2B,EAAE,QAAQ,SAAS,IAAI,GAC9C,uBAAuB,GAAG,SAAS,GACnC,uBAAuB,CAAC;KAC7B,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,yBAAyB,GACpC,QAAQ,SAAS,OAAO,GAAG,KAAK,EAChC,UAAU;IACV,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,8BAA8B,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBA6BvD,CAAC;AAEL,KAAK,2BAA2B,GAAG;IACjC,SAAS,EAAE;QACT,wBAAwB,EAAE,MAAM,CAAC;KAClC,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,sBAAsB;eAEpB,UAAU,CAAC,WAAW,CAAC,GAChC,2BAA2B,CAAC,WAAW,CAAC;wBAU1C,CAAC;AAEL,KAAK,gBAAgB,CAAC,QAAQ,SAAS,OAAO,IAAI;IAChD,SAAS,EAAE;QACT,aAAa,EAAE,QAAQ,SAAS,IAAI,GAChC,WAAW,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,GAAG,SAAS,GAC7C,WAAW,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC;KACvC,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,WAAW,GAAI,QAAQ,SAAS,OAAO,GAAG,KAAK,EAAE,UAAU;IACtE,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,gBAAgB,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAczC,CAAC"}

package/dist/middleware/auth.js CHANGED Viewed

@@ -33,6 +33,32 @@ export const verifyAuth = (options) => createMiddleware(async (c, next) => {
     }
     await next();
 });
+export const requireAdmin = () => createMiddleware(async (c, next) => {
+    const services = c.var.services;
+    const sessionHelper = c.var.session;
+    const session = sessionHelper.get('user');
+    if (!session) {
+        throw new e.Unauthorized.Error();
+    }
+    try {
+        const userEntity = await services.mikro.user.findBySub(session.sub);
+        if (userEntity.role !== 'admin') {
+            throw new e.Forbidden.Error();
+        }
+        c.set('verifiedUser', {
+            user: userEntity,
+            authenticatedAt: session.authenticated_at,
+        });
+    }
+    catch (err) {
+        if (err instanceof TinyAuthError && err.code === 'USER_NOT_FOUND') {
+            sessionHelper.clearAuthSessions();
+            throw new e.Unauthorized.Error();
+        }
+        throw err;
+    }
+    await next();
+});
 export const verifyPending2FAUser = (options) => createMiddleware(async (c, next) => {
     const services = c.var.services;
     const sessionHelper = c.var.session;