@tinyrack/tinyauth-server 0.5.1 → 0.6.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/entities/oauth-client.entity.d.ts +27 -0
- package/dist/entities/oauth-client.entity.d.ts.map +1 -1
- package/dist/entities/oauth-code.entity.d.ts +27 -0
- package/dist/entities/oauth-code.entity.d.ts.map +1 -1
- package/dist/entities/oauth-device-code.entity.d.ts +27 -0
- package/dist/entities/oauth-device-code.entity.d.ts.map +1 -1
- package/dist/entities/oauth-device-code.entity.js +12 -0
- package/dist/entities/oauth-device-code.entity.js.map +1 -1
- package/dist/entities/revoked-token.entity.d.ts +27 -0
- package/dist/entities/revoked-token.entity.d.ts.map +1 -1
- package/dist/entities/user-consent.entity.d.ts +27 -0
- package/dist/entities/user-consent.entity.d.ts.map +1 -1
- package/dist/entrypoints/app.d.ts +325 -16
- package/dist/entrypoints/app.d.ts.map +1 -1
- package/dist/entrypoints/app.js +33 -7
- package/dist/entrypoints/app.js.map +1 -1
- package/dist/entrypoints/database/postgres/compiled-functions.d.ts +16 -7
- package/dist/entrypoints/database/postgres/compiled-functions.d.ts.map +1 -1
- package/dist/entrypoints/database/postgres/compiled-functions.js +183 -39
- package/dist/entrypoints/database/postgres/compiled-functions.js.map +1 -1
- package/dist/entrypoints/database/sqlite/compiled-functions.d.ts +16 -7
- package/dist/entrypoints/database/sqlite/compiled-functions.d.ts.map +1 -1
- package/dist/entrypoints/database/sqlite/compiled-functions.js +183 -39
- package/dist/entrypoints/database/sqlite/compiled-functions.js.map +1 -1
- package/dist/lib/config/admin.d.ts +9 -0
- package/dist/lib/config/admin.d.ts.map +1 -0
- package/dist/lib/config/admin.js +13 -0
- package/dist/lib/config/admin.js.map +1 -0
- package/dist/lib/config/auth.d.ts +85 -0
- package/dist/lib/config/auth.d.ts.map +1 -1
- package/dist/lib/config/auth.js +61 -0
- package/dist/lib/config/auth.js.map +1 -1
- package/dist/lib/config/client.d.ts +20 -0
- package/dist/lib/config/client.d.ts.map +1 -1
- package/dist/lib/config/client.js +14 -0
- package/dist/lib/config/client.js.map +1 -1
- package/dist/lib/config/index.d.ts +2 -0
- package/dist/lib/config/index.d.ts.map +1 -1
- package/dist/lib/config/index.js +1 -0
- package/dist/lib/config/index.js.map +1 -1
- package/dist/lib/config/resolved.d.ts +40 -0
- package/dist/lib/config/resolved.d.ts.map +1 -1
- package/dist/lib/config/resolved.js +2 -0
- package/dist/lib/config/resolved.js.map +1 -1
- package/dist/lib/config/server.d.ts.map +1 -1
- package/dist/lib/config/server.js +12 -0
- package/dist/lib/config/server.js.map +1 -1
- package/dist/lib/swagger-tags.d.ts +1 -0
- package/dist/lib/swagger-tags.d.ts.map +1 -1
- package/dist/lib/swagger-tags.js +1 -0
- package/dist/lib/swagger-tags.js.map +1 -1
- package/dist/middleware/auth.d.ts +3 -0
- package/dist/middleware/auth.d.ts.map +1 -1
- package/dist/middleware/auth.js +26 -0
- package/dist/middleware/auth.js.map +1 -1
- package/dist/middleware/session.d.ts +33 -1
- package/dist/middleware/session.d.ts.map +1 -1
- package/dist/middleware/session.js +84 -3
- package/dist/middleware/session.js.map +1 -1
- package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.d.ts +6 -0
- package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.d.ts.map +1 -0
- package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.js +11 -0
- package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.js.map +1 -0
- package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.d.ts +6 -0
- package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.d.ts.map +1 -0
- package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.js +14 -0
- package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.js.map +1 -0
- package/dist/migrations/postgres/index.d.ts.map +1 -1
- package/dist/migrations/postgres/index.js +4 -0
- package/dist/migrations/postgres/index.js.map +1 -1
- package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.d.ts +6 -0
- package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.d.ts.map +1 -0
- package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.js +10 -0
- package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.js.map +1 -0
- package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.d.ts +6 -0
- package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.d.ts.map +1 -0
- package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.js +12 -0
- package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.js.map +1 -0
- package/dist/migrations/sqlite/index.d.ts.map +1 -1
- package/dist/migrations/sqlite/index.js +4 -0
- package/dist/migrations/sqlite/index.js.map +1 -1
- package/dist/repositories/oauth-device-code.repository.d.ts +4 -0
- package/dist/repositories/oauth-device-code.repository.d.ts.map +1 -1
- package/dist/repositories/oauth-device-code.repository.js +19 -0
- package/dist/repositories/oauth-device-code.repository.js.map +1 -1
- package/dist/repositories/user.repository.d.ts +4 -2
- package/dist/repositories/user.repository.d.ts.map +1 -1
- package/dist/repositories/user.repository.js +11 -7
- package/dist/repositories/user.repository.js.map +1 -1
- package/dist/routes/.well-known/openid-configuration/get.d.ts.map +1 -1
- package/dist/routes/.well-known/openid-configuration/get.js +4 -0
- package/dist/routes/.well-known/openid-configuration/get.js.map +1 -1
- package/dist/routes/api/admin/index.d.ts +185 -0
- package/dist/routes/api/admin/index.d.ts.map +1 -0
- package/dist/routes/api/admin/index.js +13 -0
- package/dist/routes/api/admin/index.js.map +1 -0
- package/dist/routes/api/admin/me/get.d.ts +26 -0
- package/dist/routes/api/admin/me/get.d.ts.map +1 -0
- package/dist/routes/api/admin/me/get.js +29 -0
- package/dist/routes/api/admin/me/get.js.map +1 -0
- package/dist/routes/api/admin/users/index.d.ts +162 -0
- package/dist/routes/api/admin/users/index.d.ts.map +1 -0
- package/dist/routes/api/admin/users/index.js +166 -0
- package/dist/routes/api/admin/users/index.js.map +1 -0
- package/dist/routes/api/auth/accounts/get.d.ts +28 -0
- package/dist/routes/api/auth/accounts/get.d.ts.map +1 -0
- package/dist/routes/api/auth/accounts/get.js +47 -0
- package/dist/routes/api/auth/accounts/get.js.map +1 -0
- package/dist/routes/api/auth/accounts/remove.post.d.ts +30 -0
- package/dist/routes/api/auth/accounts/remove.post.d.ts.map +1 -0
- package/dist/routes/api/auth/accounts/remove.post.js +30 -0
- package/dist/routes/api/auth/accounts/remove.post.js.map +1 -0
- package/dist/routes/api/auth/accounts/select.post.d.ts +31 -0
- package/dist/routes/api/auth/accounts/select.post.d.ts.map +1 -0
- package/dist/routes/api/auth/accounts/select.post.js +26 -0
- package/dist/routes/api/auth/accounts/select.post.js.map +1 -0
- package/dist/routes/api/auth/email/verify/post.d.ts +1 -0
- package/dist/routes/api/auth/email/verify/post.d.ts.map +1 -1
- package/dist/routes/api/auth/index.d.ts +86 -0
- package/dist/routes/api/auth/index.d.ts.map +1 -1
- package/dist/routes/api/auth/index.js +6 -0
- package/dist/routes/api/auth/index.js.map +1 -1
- package/dist/routes/api/auth/login/post.d.ts +1 -0
- package/dist/routes/api/auth/login/post.d.ts.map +1 -1
- package/dist/routes/api/auth/login/post.js +15 -16
- package/dist/routes/api/auth/login/post.js.map +1 -1
- package/dist/routes/api/auth/passkey/verify/post.d.ts +1 -0
- package/dist/routes/api/auth/passkey/verify/post.d.ts.map +1 -1
- package/dist/routes/api/auth/register/post.d.ts +1 -0
- package/dist/routes/api/auth/register/post.d.ts.map +1 -1
- package/dist/routes/api/auth/totp/recovery/verify/post.d.ts +1 -0
- package/dist/routes/api/auth/totp/recovery/verify/post.d.ts.map +1 -1
- package/dist/routes/api/auth/totp/verify/post.d.ts +1 -0
- package/dist/routes/api/auth/totp/verify/post.d.ts.map +1 -1
- package/dist/routes/api/config/get.d.ts +3 -0
- package/dist/routes/api/config/get.d.ts.map +1 -1
- package/dist/routes/api/config/get.js +7 -1
- package/dist/routes/api/config/get.js.map +1 -1
- package/dist/routes/api/config/index.d.ts +3 -0
- package/dist/routes/api/config/index.d.ts.map +1 -1
- package/dist/routes/api/consent/index.d.ts +10 -0
- package/dist/routes/api/consent/index.d.ts.map +1 -1
- package/dist/routes/api/consent/post.d.ts +10 -0
- package/dist/routes/api/consent/post.d.ts.map +1 -1
- package/dist/routes/api/consent/post.js +52 -1
- package/dist/routes/api/consent/post.js.map +1 -1
- package/dist/routes/api/index.d.ts +310 -26
- package/dist/routes/api/index.d.ts.map +1 -1
- package/dist/routes/api/index.js +2 -0
- package/dist/routes/api/index.js.map +1 -1
- package/dist/routes/api/user/index.d.ts +3 -0
- package/dist/routes/api/user/index.d.ts.map +1 -1
- package/dist/routes/api/user/passkeys/register/verify/post.d.ts +1 -0
- package/dist/routes/api/user/passkeys/register/verify/post.d.ts.map +1 -1
- package/dist/routes/api/user/session/get.d.ts +1 -0
- package/dist/routes/api/user/session/get.d.ts.map +1 -1
- package/dist/routes/api/user/totp/confirm/post.d.ts +1 -0
- package/dist/routes/api/user/totp/confirm/post.d.ts.map +1 -1
- package/dist/routes/index.d.ts +303 -16
- package/dist/routes/index.d.ts.map +1 -1
- package/dist/routes/oauth/.well-known/openid-configuration/get.d.ts.map +1 -1
- package/dist/routes/oauth/.well-known/openid-configuration/get.js +1 -0
- package/dist/routes/oauth/.well-known/openid-configuration/get.js.map +1 -1
- package/dist/routes/oauth/authorize/get.d.ts +2 -0
- package/dist/routes/oauth/authorize/get.d.ts.map +1 -1
- package/dist/routes/oauth/authorize/get.js +12 -1
- package/dist/routes/oauth/authorize/get.js.map +1 -1
- package/dist/routes/oauth/client-auth.js +1 -1
- package/dist/routes/oauth/client-auth.js.map +1 -1
- package/dist/routes/oauth/cors.d.ts.map +1 -1
- package/dist/routes/oauth/cors.js +8 -3
- package/dist/routes/oauth/cors.js.map +1 -1
- package/dist/routes/oauth/device/get-post.d.ts +2 -1
- package/dist/routes/oauth/device/get-post.d.ts.map +1 -1
- package/dist/routes/oauth/device/get-post.js +15 -9
- package/dist/routes/oauth/device/get-post.js.map +1 -1
- package/dist/routes/oauth/device-authorization/post.d.ts.map +1 -1
- package/dist/routes/oauth/device-authorization/post.js +2 -0
- package/dist/routes/oauth/device-authorization/post.js.map +1 -1
- package/dist/routes/oauth/end-session/get.d.ts.map +1 -1
- package/dist/routes/oauth/end-session/get.js +17 -8
- package/dist/routes/oauth/end-session/get.js.map +1 -1
- package/dist/routes/oauth/index.d.ts +5 -2
- package/dist/routes/oauth/index.d.ts.map +1 -1
- package/dist/routes/oauth/revoke/post.d.ts.map +1 -1
- package/dist/routes/oauth/revoke/post.js +2 -0
- package/dist/routes/oauth/revoke/post.js.map +1 -1
- package/dist/routes/oauth/token/post.d.ts +1 -1
- package/dist/routes/oauth/token/post.d.ts.map +1 -1
- package/dist/routes/oauth/token/post.js +10 -6
- package/dist/routes/oauth/token/post.js.map +1 -1
- package/dist/routes/oauth/userinfo/get.d.ts.map +1 -1
- package/dist/routes/oauth/userinfo/get.js +12 -6
- package/dist/routes/oauth/userinfo/get.js.map +1 -1
- package/dist/schemas/error.d.ts +56 -6
- package/dist/schemas/error.d.ts.map +1 -1
- package/dist/schemas/error.js +4 -2
- package/dist/schemas/error.js.map +1 -1
- package/dist/schemas/field.d.ts +1 -4
- package/dist/schemas/field.d.ts.map +1 -1
- package/dist/schemas/field.js +3 -1
- package/dist/schemas/field.js.map +1 -1
- package/dist/schemas/response.d.ts +96 -0
- package/dist/schemas/response.d.ts.map +1 -1
- package/dist/schemas/response.js +29 -0
- package/dist/schemas/response.js.map +1 -1
- package/dist/services/account-selection.service.d.ts +39 -0
- package/dist/services/account-selection.service.d.ts.map +1 -0
- package/dist/services/account-selection.service.js +77 -0
- package/dist/services/account-selection.service.js.map +1 -0
- package/dist/services/container.d.ts +22 -0
- package/dist/services/container.d.ts.map +1 -1
- package/dist/services/jwt.service.js +3 -3
- package/dist/services/jwt.service.js.map +1 -1
- package/dist/services/oauth-authorize.service.d.ts +24 -1
- package/dist/services/oauth-authorize.service.d.ts.map +1 -1
- package/dist/services/oauth-authorize.service.js +232 -8
- package/dist/services/oauth-authorize.service.js.map +1 -1
- package/dist/services/oauth-token.service.d.ts +2 -3
- package/dist/services/oauth-token.service.d.ts.map +1 -1
- package/dist/services/oauth-token.service.js +18 -10
- package/dist/services/oauth-token.service.js.map +1 -1
- package/dist/services/user.service.d.ts +28 -1
- package/dist/services/user.service.d.ts.map +1 -1
- package/dist/services/user.service.js +104 -0
- package/dist/services/user.service.js.map +1 -1
- package/package.json +1 -1
- package/public/assets/2fa-BoyBKrjD.js +2 -0
- package/public/assets/2fa-BoyBKrjD.js.map +1 -0
- package/public/assets/2fa-DfWvDjDW.js +2 -0
- package/public/assets/2fa-DfWvDjDW.js.map +1 -0
- package/public/assets/2fa-IkQlgUP0.js +2 -0
- package/public/assets/2fa-IkQlgUP0.js.map +1 -0
- package/public/assets/2fa-SSKfXB7c.js +2 -0
- package/public/assets/2fa-SSKfXB7c.js.map +1 -0
- package/public/assets/CheckCircle.es-MnJIACCe.js +2 -0
- package/public/assets/CheckCircle.es-MnJIACCe.js.map +1 -0
- package/public/assets/EnvelopeSimple.es-BZ7u3LYh.js +2 -0
- package/public/assets/EnvelopeSimple.es-BZ7u3LYh.js.map +1 -0
- package/public/assets/Fingerprint.es-CW755VWD.js +2 -0
- package/public/assets/Fingerprint.es-CW755VWD.js.map +1 -0
- package/public/assets/IconBase.es-d5KP98Ac.js +2 -0
- package/public/assets/IconBase.es-d5KP98Ac.js.map +1 -0
- package/public/assets/Key.es-l5aSxw0I.js +2 -0
- package/public/assets/Key.es-l5aSxw0I.js.map +1 -0
- package/public/assets/Link.es-B-IJS4Q5.js +2 -0
- package/public/assets/Link.es-B-IJS4Q5.js.map +1 -0
- package/public/assets/Lock.es-Cb_uwQly.js +2 -0
- package/public/assets/Lock.es-Cb_uwQly.js.map +1 -0
- package/public/assets/ShieldCheck.es-CscPsYbC.js +2 -0
- package/public/assets/ShieldCheck.es-CscPsYbC.js.map +1 -0
- package/public/assets/Trash.es-BepW9BwV.js +2 -0
- package/public/assets/Trash.es-BepW9BwV.js.map +1 -0
- package/public/assets/Warning.es-BPpZIJYZ.js +2 -0
- package/public/assets/Warning.es-BPpZIJYZ.js.map +1 -0
- package/public/assets/X.es-IwdB4hWT.js +2 -0
- package/public/assets/X.es-IwdB4hWT.js.map +1 -0
- package/public/assets/admin-D2CMlWzS.js +2 -0
- package/public/assets/admin-D2CMlWzS.js.map +1 -0
- package/public/assets/admin-users-CTAQJl7w.js +2 -0
- package/public/assets/admin-users-CTAQJl7w.js.map +1 -0
- package/public/assets/alert-CSXqgDVi.js +2 -0
- package/public/assets/alert-CSXqgDVi.js.map +1 -0
- package/public/assets/consent-C5Qo0iLd.js +2 -0
- package/public/assets/consent-C5Qo0iLd.js.map +1 -0
- package/public/assets/consent-DwuWkp63.js +2 -0
- package/public/assets/consent-DwuWkp63.js.map +1 -0
- package/public/assets/email-CIttZRBe.js +2 -0
- package/public/assets/email-CIttZRBe.js.map +1 -0
- package/public/assets/email-SSKfXB7c.js +2 -0
- package/public/assets/email-SSKfXB7c.js.map +1 -0
- package/public/assets/error-D60wkdWN.js +2 -0
- package/public/assets/error-D60wkdWN.js.map +1 -0
- package/public/assets/footer-link-Ib1Hd-fr.js +2 -0
- package/public/assets/footer-link-Ib1Hd-fr.js.map +1 -0
- package/public/assets/forgot-SSKfXB7c.js +2 -0
- package/public/assets/forgot-SSKfXB7c.js.map +1 -0
- package/public/assets/forgot-x-UDyHXT.js +2 -0
- package/public/assets/forgot-x-UDyHXT.js.map +1 -0
- package/public/assets/icon-input-8iU7PNzd.js +2 -0
- package/public/assets/icon-input-8iU7PNzd.js.map +1 -0
- package/public/assets/index-CsT6OVnP.js +11 -0
- package/public/assets/index-CsT6OVnP.js.map +1 -0
- package/public/assets/index-D6-1JDnX.css +2 -0
- package/public/assets/login-DhbnCudI.js +2 -0
- package/public/assets/login-DhbnCudI.js.map +1 -0
- package/public/assets/login-SSKfXB7c.js +2 -0
- package/public/assets/login-SSKfXB7c.js.map +1 -0
- package/public/assets/modal-BjnpKlXn.js +2 -0
- package/public/assets/modal-BjnpKlXn.js.map +1 -0
- package/public/assets/mutationOptions-Dfvzj6n2.js +2 -0
- package/public/assets/mutationOptions-Dfvzj6n2.js.map +1 -0
- package/public/assets/page-header-BYMFSGfT.js +2 -0
- package/public/assets/page-header-BYMFSGfT.js.map +1 -0
- package/public/assets/page-layout-C475gs09.js +2 -0
- package/public/assets/page-layout-C475gs09.js.map +1 -0
- package/public/assets/passkey-BdISbWr7.js +2 -0
- package/public/assets/passkey-BdISbWr7.js.map +1 -0
- package/public/assets/passkey-Bv7zPLAZ.js +2 -0
- package/public/assets/passkey-Bv7zPLAZ.js.map +1 -0
- package/public/assets/passkey-e6uvApHa.js +2 -0
- package/public/assets/passkey-e6uvApHa.js.map +1 -0
- package/public/assets/password-CkeV4qxb.js +2 -0
- package/public/assets/password-CkeV4qxb.js.map +1 -0
- package/public/assets/password-SSKfXB7c.js +2 -0
- package/public/assets/password-SSKfXB7c.js.map +1 -0
- package/public/assets/password-reset-XZJTgJi3.js +2 -0
- package/public/assets/password-reset-XZJTgJi3.js.map +1 -0
- package/public/assets/pin-input-BM1UizHr.js +2 -0
- package/public/assets/pin-input-BM1UizHr.js.map +1 -0
- package/public/assets/profile-D2cuVYgE.js +2 -0
- package/public/assets/profile-D2cuVYgE.js.map +1 -0
- package/public/assets/profile-TKdT20x5.js +2 -0
- package/public/assets/profile-TKdT20x5.js.map +1 -0
- package/public/assets/promise-OpBtq8tG.js +2 -0
- package/public/assets/promise-OpBtq8tG.js.map +1 -0
- package/public/assets/recovery-DM8h2gbb.js +2 -0
- package/public/assets/recovery-DM8h2gbb.js.map +1 -0
- package/public/assets/register-SSKfXB7c.js +2 -0
- package/public/assets/register-SSKfXB7c.js.map +1 -0
- package/public/assets/register-vWW_43cD.js +2 -0
- package/public/assets/register-vWW_43cD.js.map +1 -0
- package/public/assets/reset-CgACYrdp.js +2 -0
- package/public/assets/reset-CgACYrdp.js.map +1 -0
- package/public/assets/reset-SSKfXB7c.js +2 -0
- package/public/assets/reset-SSKfXB7c.js.map +1 -0
- package/public/assets/routes-CAIeH5mq.js +2 -0
- package/public/assets/routes-CAIeH5mq.js.map +1 -0
- package/public/assets/select-BCP5fwfB.js +2 -0
- package/public/assets/select-BCP5fwfB.js.map +1 -0
- package/public/assets/select-SSKfXB7c.js +2 -0
- package/public/assets/select-SSKfXB7c.js.map +1 -0
- package/public/assets/standard-schema-o4V-s4uY.js +2 -0
- package/public/assets/standard-schema-o4V-s4uY.js.map +1 -0
- package/public/assets/submit-button-Xx6DwLyh.js +2 -0
- package/public/assets/submit-button-Xx6DwLyh.js.map +1 -0
- package/public/assets/terms-DPWrbYY2.js +2 -0
- package/public/assets/terms-DPWrbYY2.js.map +1 -0
- package/public/assets/terms-TKdT20x5.js +2 -0
- package/public/assets/terms-TKdT20x5.js.map +1 -0
- package/public/assets/terms-checkbox-list-CdrbHxiF.js +2 -0
- package/public/assets/terms-checkbox-list-CdrbHxiF.js.map +1 -0
- package/public/assets/totp-CKZ6N1NS.js +2 -0
- package/public/assets/totp-CKZ6N1NS.js.map +1 -0
- package/public/assets/totp-D-PVOsGQ.js +2 -0
- package/public/assets/totp-D-PVOsGQ.js.map +1 -0
- package/public/assets/totp-NlqqRp4a.js +2 -0
- package/public/assets/totp-NlqqRp4a.js.map +1 -0
- package/public/assets/use-theme-cVUDAjtt.js +2 -0
- package/public/assets/use-theme-cVUDAjtt.js.map +1 -0
- package/public/assets/use-totp-setup-BH75uEbE.js +3 -0
- package/public/assets/use-totp-setup-BH75uEbE.js.map +1 -0
- package/public/assets/useMutation-DVMopbtG.js +2 -0
- package/public/assets/useMutation-DVMopbtG.js.map +1 -0
- package/public/assets/users-B7ofdp72.js +2 -0
- package/public/assets/users-B7ofdp72.js.map +1 -0
- package/public/assets/zod-BItJDQBQ.js +66 -0
- package/public/assets/zod-BItJDQBQ.js.map +1 -0
- package/public/index.html +6 -2
- package/public/assets/index-5_9rzim1.css +0 -2
- package/public/assets/index-BTGeW26-.js +0 -75
- package/public/assets/index-BTGeW26-.js.map +0 -1
|
@@ -0,0 +1,9 @@
|
|
|
1
|
+
import z from 'zod';
|
|
2
|
+
export declare const ADMIN_CONFIG_DEFAULT: {
|
|
3
|
+
enabled: boolean;
|
|
4
|
+
};
|
|
5
|
+
export declare const AdminConfigSchema: z.ZodDefault<z.ZodObject<{
|
|
6
|
+
enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
7
|
+
}, z.z.core.$strict>>;
|
|
8
|
+
export type AdminConfig = z.infer<typeof AdminConfigSchema>;
|
|
9
|
+
//# sourceMappingURL=admin.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"admin.d.ts","sourceRoot":"","sources":["../../../src/lib/config/admin.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAGpB,eAAO,MAAM,oBAAoB;;CAEhC,CAAC;AAEF,eAAO,MAAM,iBAAiB;;qBAMQ,CAAC;AAEvC,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC"}
|
|
@@ -0,0 +1,13 @@
|
|
|
1
|
+
import z from 'zod';
|
|
2
|
+
import { zz } from "../../schemas/provider.js";
|
|
3
|
+
export const ADMIN_CONFIG_DEFAULT = {
|
|
4
|
+
enabled: false,
|
|
5
|
+
};
|
|
6
|
+
export const AdminConfigSchema = z
|
|
7
|
+
.object({
|
|
8
|
+
enabled: zz.COERCE_BOOLEAN.default(ADMIN_CONFIG_DEFAULT.enabled),
|
|
9
|
+
})
|
|
10
|
+
.strict()
|
|
11
|
+
.default(ADMIN_CONFIG_DEFAULT)
|
|
12
|
+
.describe('Admin console settings.');
|
|
13
|
+
//# sourceMappingURL=admin.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"admin.js","sourceRoot":"","sources":["../../../src/lib/config/admin.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;AAE/C,MAAM,CAAC,MAAM,oBAAoB,GAAG;IAClC,OAAO,EAAE,KAAK;CACf,CAAC;AAEF,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC;KAC/B,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAAC,oBAAoB,CAAC,OAAO,CAAC;CACjE,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,oBAAoB,CAAC;KAC7B,QAAQ,CAAC,yBAAyB,CAAC,CAAC"}
|
|
@@ -60,6 +60,49 @@ export declare const PasskeyAuthConfigSchema: z.ZodDefault<z.ZodObject<{
|
|
|
60
60
|
origins: z.ZodOptional<z.ZodArray<z.ZodURL>>;
|
|
61
61
|
}, z.z.core.$strict>>;
|
|
62
62
|
export type PasskeyAuthConfig = z.infer<typeof PasskeyAuthConfigSchema>;
|
|
63
|
+
export declare const ACCOUNT_SELECTION_CONFIG_DEFAULT: {
|
|
64
|
+
readonly enabled: false;
|
|
65
|
+
readonly mode: "oidc_prompt";
|
|
66
|
+
readonly remember_accounts: {
|
|
67
|
+
enabled: boolean;
|
|
68
|
+
max_accounts: number;
|
|
69
|
+
ttl: string;
|
|
70
|
+
};
|
|
71
|
+
readonly allow_add_account: true;
|
|
72
|
+
readonly allow_remove_account: true;
|
|
73
|
+
readonly login_hint: {
|
|
74
|
+
readonly behavior: "prefer";
|
|
75
|
+
};
|
|
76
|
+
readonly prompt_none_error: "account_selection_required";
|
|
77
|
+
};
|
|
78
|
+
export declare const AccountSelectionConfigSchema: z.ZodDefault<z.ZodObject<{
|
|
79
|
+
enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
80
|
+
mode: z.ZodDefault<z.ZodEnum<{
|
|
81
|
+
always: "always";
|
|
82
|
+
oidc_prompt: "oidc_prompt";
|
|
83
|
+
disabled: "disabled";
|
|
84
|
+
smart: "smart";
|
|
85
|
+
}>>;
|
|
86
|
+
remember_accounts: z.ZodDefault<z.ZodObject<{
|
|
87
|
+
enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
88
|
+
max_accounts: z.ZodDefault<z.z.ZodCoercedNumber<unknown>>;
|
|
89
|
+
ttl: z.ZodDefault<z.ZodString>;
|
|
90
|
+
}, z.z.core.$strict>>;
|
|
91
|
+
allow_add_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
92
|
+
allow_remove_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
93
|
+
login_hint: z.ZodDefault<z.ZodObject<{
|
|
94
|
+
behavior: z.ZodDefault<z.ZodEnum<{
|
|
95
|
+
prefer: "prefer";
|
|
96
|
+
ignore: "ignore";
|
|
97
|
+
require_match: "require_match";
|
|
98
|
+
}>>;
|
|
99
|
+
}, z.z.core.$strict>>;
|
|
100
|
+
prompt_none_error: z.ZodDefault<z.ZodEnum<{
|
|
101
|
+
login_required: "login_required";
|
|
102
|
+
account_selection_required: "account_selection_required";
|
|
103
|
+
}>>;
|
|
104
|
+
}, z.z.core.$strict>>;
|
|
105
|
+
export type AccountSelectionConfig = z.infer<typeof AccountSelectionConfigSchema>;
|
|
63
106
|
export declare const AUTH_CONFIG_DEFAULT: {
|
|
64
107
|
password: {
|
|
65
108
|
enabled: boolean;
|
|
@@ -78,6 +121,21 @@ export declare const AUTH_CONFIG_DEFAULT: {
|
|
|
78
121
|
passkey: {
|
|
79
122
|
enabled: boolean;
|
|
80
123
|
};
|
|
124
|
+
account_selection: {
|
|
125
|
+
readonly enabled: false;
|
|
126
|
+
readonly mode: "oidc_prompt";
|
|
127
|
+
readonly remember_accounts: {
|
|
128
|
+
enabled: boolean;
|
|
129
|
+
max_accounts: number;
|
|
130
|
+
ttl: string;
|
|
131
|
+
};
|
|
132
|
+
readonly allow_add_account: true;
|
|
133
|
+
readonly allow_remove_account: true;
|
|
134
|
+
readonly login_hint: {
|
|
135
|
+
readonly behavior: "prefer";
|
|
136
|
+
};
|
|
137
|
+
readonly prompt_none_error: "account_selection_required";
|
|
138
|
+
};
|
|
81
139
|
};
|
|
82
140
|
/**
|
|
83
141
|
* Authentication methods configuration (fixed structure).
|
|
@@ -103,6 +161,33 @@ export declare const AuthConfigSchema: z.ZodDefault<z.ZodObject<{
|
|
|
103
161
|
rp_id: z.ZodOptional<z.ZodString>;
|
|
104
162
|
origins: z.ZodOptional<z.ZodArray<z.ZodURL>>;
|
|
105
163
|
}, z.z.core.$strict>>;
|
|
164
|
+
account_selection: z.ZodDefault<z.ZodObject<{
|
|
165
|
+
enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
166
|
+
mode: z.ZodDefault<z.ZodEnum<{
|
|
167
|
+
always: "always";
|
|
168
|
+
oidc_prompt: "oidc_prompt";
|
|
169
|
+
disabled: "disabled";
|
|
170
|
+
smart: "smart";
|
|
171
|
+
}>>;
|
|
172
|
+
remember_accounts: z.ZodDefault<z.ZodObject<{
|
|
173
|
+
enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
174
|
+
max_accounts: z.ZodDefault<z.z.ZodCoercedNumber<unknown>>;
|
|
175
|
+
ttl: z.ZodDefault<z.ZodString>;
|
|
176
|
+
}, z.z.core.$strict>>;
|
|
177
|
+
allow_add_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
178
|
+
allow_remove_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
179
|
+
login_hint: z.ZodDefault<z.ZodObject<{
|
|
180
|
+
behavior: z.ZodDefault<z.ZodEnum<{
|
|
181
|
+
prefer: "prefer";
|
|
182
|
+
ignore: "ignore";
|
|
183
|
+
require_match: "require_match";
|
|
184
|
+
}>>;
|
|
185
|
+
}, z.z.core.$strict>>;
|
|
186
|
+
prompt_none_error: z.ZodDefault<z.ZodEnum<{
|
|
187
|
+
login_required: "login_required";
|
|
188
|
+
account_selection_required: "account_selection_required";
|
|
189
|
+
}>>;
|
|
190
|
+
}, z.z.core.$strict>>;
|
|
106
191
|
}, z.z.core.$strict>>;
|
|
107
192
|
export type AuthConfig = z.infer<typeof AuthConfigSchema>;
|
|
108
193
|
export {};
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../src/lib/config/auth.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;
|
|
1
|
+
{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../src/lib/config/auth.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAYpB;;;GAGG;AACH,QAAA,MAAM,6BAA6B;;qBAa0B,CAAC;AAE9D,MAAM,MAAM,uBAAuB,GAAG,CAAC,CAAC,KAAK,CAC3C,OAAO,6BAA6B,CACrC,CAAC;AAEF,eAAO,MAAM,8BAA8B;;;CAG1C,CAAC;AAEF,eAAO,MAAM,0BAA0B;;;oBA0BnC,CAAC;AAEL,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAC;AAO9E,eAAO,MAAM,4BAA4B;;;;;;;;;;;;;CAKxC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,wBAAwB;;;;;;;;;;;;;qBA4BgB,CAAC;AAEtD,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,wBAAwB,CAAC,CAAC;AAc1E,eAAO,MAAM,2BAA2B;;CAEvC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,uBAAuB;;;;qBA6B2B,CAAC;AAEhE,MAAM,MAAM,iBAAiB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,uBAAuB,CAAC,CAAC;AAQxE,eAAO,MAAM,gCAAgC;;;;;;;;;;;;;;CAUnC,CAAC;AA0BX,eAAO,MAAM,4BAA4B;;;;;;;;;;;;;;;;;;;;;;;;;;qBAsCW,CAAC;AAErD,MAAM,MAAM,sBAAsB,GAAG,CAAC,CAAC,KAAK,CAC1C,OAAO,4BAA4B,CACpC,CAAC;AAEF,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAI/B,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,gBAAgB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;qBA2BuB,CAAC;AAErD,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC"}
|
package/dist/lib/config/auth.js
CHANGED
|
@@ -1,5 +1,6 @@
|
|
|
1
1
|
import z from 'zod';
|
|
2
2
|
import { zz } from "../../schemas/provider.js";
|
|
3
|
+
import { DurationString } from "../duration.js";
|
|
3
4
|
import { PASSWORD_POLICY_MAX_LENGTH, PASSWORD_POLICY_MIN_LENGTH, } from "../password-policy.js";
|
|
4
5
|
const PASSWORD_TWO_FACTOR_CONFIG_DEFAULT = {
|
|
5
6
|
enrollment_required: false,
|
|
@@ -126,9 +127,68 @@ export const PasskeyAuthConfigSchema = z
|
|
|
126
127
|
.strict()
|
|
127
128
|
.default(PASSKEY_AUTH_CONFIG_DEFAULT)
|
|
128
129
|
.describe('Passkey (WebAuthn) authentication configuration.');
|
|
130
|
+
const ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT = {
|
|
131
|
+
enabled: true,
|
|
132
|
+
max_accounts: 5,
|
|
133
|
+
ttl: '30d',
|
|
134
|
+
};
|
|
135
|
+
export const ACCOUNT_SELECTION_CONFIG_DEFAULT = {
|
|
136
|
+
enabled: false,
|
|
137
|
+
mode: 'oidc_prompt',
|
|
138
|
+
remember_accounts: ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT,
|
|
139
|
+
allow_add_account: true,
|
|
140
|
+
allow_remove_account: true,
|
|
141
|
+
login_hint: {
|
|
142
|
+
behavior: 'prefer',
|
|
143
|
+
},
|
|
144
|
+
prompt_none_error: 'account_selection_required',
|
|
145
|
+
};
|
|
146
|
+
const AccountSelectionRememberAccountsConfigSchema = z
|
|
147
|
+
.object({
|
|
148
|
+
enabled: zz.COERCE_BOOLEAN.default(ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT.enabled).describe('Whether previously authenticated accounts are remembered in the browser session.'),
|
|
149
|
+
max_accounts: z.coerce
|
|
150
|
+
.number()
|
|
151
|
+
.int()
|
|
152
|
+
.min(1)
|
|
153
|
+
.max(10)
|
|
154
|
+
.default(ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT.max_accounts)
|
|
155
|
+
.describe('Maximum remembered accounts to keep in the encrypted session cookie.'),
|
|
156
|
+
ttl: DurationString.default(ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT.ttl).describe('How long remembered accounts remain selectable, e.g. 30d.'),
|
|
157
|
+
})
|
|
158
|
+
.strict()
|
|
159
|
+
.default(ACCOUNT_SELECTION_REMEMBER_ACCOUNTS_CONFIG_DEFAULT)
|
|
160
|
+
.describe('Remembered account roster configuration.');
|
|
161
|
+
export const AccountSelectionConfigSchema = z
|
|
162
|
+
.object({
|
|
163
|
+
enabled: zz.COERCE_BOOLEAN.default(ACCOUNT_SELECTION_CONFIG_DEFAULT.enabled).describe('Whether OIDC account selection is enabled.'),
|
|
164
|
+
mode: z
|
|
165
|
+
.enum(['disabled', 'oidc_prompt', 'smart', 'always'])
|
|
166
|
+
.default(ACCOUNT_SELECTION_CONFIG_DEFAULT.mode)
|
|
167
|
+
.describe('When to show the account selection screen.'),
|
|
168
|
+
remember_accounts: AccountSelectionRememberAccountsConfigSchema,
|
|
169
|
+
allow_add_account: zz.COERCE_BOOLEAN.default(ACCOUNT_SELECTION_CONFIG_DEFAULT.allow_add_account).describe('Whether the account chooser allows signing in with another account.'),
|
|
170
|
+
allow_remove_account: zz.COERCE_BOOLEAN.default(ACCOUNT_SELECTION_CONFIG_DEFAULT.allow_remove_account).describe('Whether the account chooser allows removing remembered accounts.'),
|
|
171
|
+
login_hint: z
|
|
172
|
+
.object({
|
|
173
|
+
behavior: z
|
|
174
|
+
.enum(['ignore', 'prefer', 'require_match'])
|
|
175
|
+
.default(ACCOUNT_SELECTION_CONFIG_DEFAULT.login_hint.behavior)
|
|
176
|
+
.describe('How login_hint influences remembered account selection.'),
|
|
177
|
+
})
|
|
178
|
+
.strict()
|
|
179
|
+
.default(ACCOUNT_SELECTION_CONFIG_DEFAULT.login_hint),
|
|
180
|
+
prompt_none_error: z
|
|
181
|
+
.enum(['account_selection_required', 'login_required'])
|
|
182
|
+
.default(ACCOUNT_SELECTION_CONFIG_DEFAULT.prompt_none_error)
|
|
183
|
+
.describe('OAuth error returned when prompt=none forbids required account-selection UI.'),
|
|
184
|
+
})
|
|
185
|
+
.strict()
|
|
186
|
+
.default(ACCOUNT_SELECTION_CONFIG_DEFAULT)
|
|
187
|
+
.describe('OIDC account selection configuration.');
|
|
129
188
|
export const AUTH_CONFIG_DEFAULT = {
|
|
130
189
|
password: PASSWORD_AUTH_CONFIG_DEFAULT,
|
|
131
190
|
passkey: PASSKEY_AUTH_CONFIG_DEFAULT,
|
|
191
|
+
account_selection: ACCOUNT_SELECTION_CONFIG_DEFAULT,
|
|
132
192
|
};
|
|
133
193
|
/**
|
|
134
194
|
* Authentication methods configuration (fixed structure).
|
|
@@ -138,6 +198,7 @@ export const AuthConfigSchema = z
|
|
|
138
198
|
.object({
|
|
139
199
|
password: PasswordAuthConfigSchema.describe('Password authentication settings.'),
|
|
140
200
|
passkey: PasskeyAuthConfigSchema.describe('Passkey (WebAuthn) authentication settings.'),
|
|
201
|
+
account_selection: AccountSelectionConfigSchema.describe('OIDC account selection settings.'),
|
|
141
202
|
})
|
|
142
203
|
.strict()
|
|
143
204
|
.superRefine((val, ctx) => {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../src/lib/config/auth.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;AAC/C,OAAO,EACL,0BAA0B,EAC1B,0BAA0B,GAC3B,MAAM,uBAAuB,CAAC;AAE/B,MAAM,kCAAkC,GAAG;IACzC,mBAAmB,EAAE,KAAK;CAC3B,CAAC;AAEF;;;GAGG;AACH,MAAM,6BAA6B,GAAG,CAAC;KACpC,MAAM,CAAC;IACN;;OAEG;IACH,mBAAmB,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAC5C,kCAAkC,CAAC,mBAAmB,CACvD,CAAC,QAAQ,CACR,wEAAwE,CACzE;CACF,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,kCAAkC,CAAC;KAC3C,QAAQ,CAAC,gDAAgD,CAAC,CAAC;AAM9D,MAAM,CAAC,MAAM,8BAA8B,GAAG;IAC5C,UAAU,EAAE,0BAA0B;IACtC,UAAU,EAAE,0BAA0B;CACvC,CAAC;AAEF,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC;KACxC,MAAM,CAAC;IACN,UAAU,EAAE,CAAC,CAAC,MAAM;SACjB,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,0BAA0B,CAAC;SAC/B,OAAO,CAAC,8BAA8B,CAAC,UAAU,CAAC;SAClD,QAAQ,CAAC,0BAA0B,CAAC;IACvC,UAAU,EAAE,CAAC,CAAC,MAAM;SACjB,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,0BAA0B,CAAC;SAC/B,OAAO,CAAC,8BAA8B,CAAC,UAAU,CAAC;SAClD,QAAQ,CAAC,0BAA0B,CAAC;CACxC,CAAC;KACD,OAAO,CAAC,8BAA8B,CAAC;KACvC,QAAQ,CAAC,2BAA2B,CAAC;KACrC,WAAW,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;IAC1B,IAAI,KAAK,CAAC,UAAU,GAAG,KAAK,CAAC,UAAU,EAAE,CAAC;QACxC,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,YAAY,CAAC;YACpB,OAAO,EAAE,wDAAwD;SAClE,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC,CAAC;AAIL,MAAM,iCAAiC,GAAG;IACxC,OAAO,EAAE,KAAK;IACd,MAAM,EAAE,UAAU;CACnB,CAAC;AAEF,MAAM,CAAC,MAAM,4BAA4B,GAAG;IAC1C,OAAO,EAAE,IAAI;IACb,UAAU,EAAE,kCAAkC;IAC9C,IAAI,EAAE,iCAAiC;IACvC,MAAM,EAAE,8BAA8B;CACvC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,wBAAwB,GAAG,CAAC;KACtC,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,4BAA4B,CAAC,OAAO,CACrC,CAAC,QAAQ,CAAC,mDAAmD,CAAC;IAC/D;;OAEG;IACH,UAAU,EAAE,6BAA6B;IACzC,IAAI,EAAE,CAAC;SACJ,MAAM,CAAC;QACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,iCAAiC,CAAC,OAAO,CAC1C,CAAC,QAAQ,CAAC,0DAA0D,CAAC;QACtE,MAAM,EAAE,CAAC;aACN,MAAM,EAAE;aACR,OAAO,CAAC,iCAAiC,CAAC,MAAM,CAAC;aACjD,QAAQ,CACP,kEAAkE,CACnE;KACJ,CAAC;SACD,MAAM,EAAE;SACR,OAAO,CAAC,iCAAiC,CAAC;SAC1C,QAAQ,CAAC,oDAAoD,CAAC;IACjE,MAAM,EAAE,0BAA0B;CACnC,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,4BAA4B,CAAC;KACrC,QAAQ,CAAC,wCAAwC,CAAC,CAAC;AAItD;;;;;;;;GAQG;AACH,MAAM,eAAe,GACnB,qHAAqH,CAAC;AAExH,MAAM,CAAC,MAAM,2BAA2B,GAAG;IACzC,OAAO,EAAE,KAAK;CACf,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAG,CAAC;KACrC,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,2BAA2B,CAAC,OAAO,CACpC,CAAC,QAAQ,CAAC,uDAAuD,CAAC;IACnE;;;;;;OAMG;IACH,KAAK,EAAE,CAAC;SACL,MAAM,EAAE;SACR,KAAK,CACJ,eAAe,EACf,wDAAwD;QACtD,sCAAsC,CACzC;SACA,QAAQ,EAAE;IACb;;;;OAIG;IACH,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,QAAQ,EAAE;CACrC,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,2BAA2B,CAAC;KACpC,QAAQ,CAAC,kDAAkD,CAAC,CAAC;AAIhE,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,QAAQ,EAAE,4BAA4B;IACtC,OAAO,EAAE,2BAA2B;
|
|
1
|
+
{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../src/lib/config/auth.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;AAC/C,OAAO,EAAE,cAAc,EAAE,MAAM,gBAAgB,CAAC;AAChD,OAAO,EACL,0BAA0B,EAC1B,0BAA0B,GAC3B,MAAM,uBAAuB,CAAC;AAE/B,MAAM,kCAAkC,GAAG;IACzC,mBAAmB,EAAE,KAAK;CAC3B,CAAC;AAEF;;;GAGG;AACH,MAAM,6BAA6B,GAAG,CAAC;KACpC,MAAM,CAAC;IACN;;OAEG;IACH,mBAAmB,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAC5C,kCAAkC,CAAC,mBAAmB,CACvD,CAAC,QAAQ,CACR,wEAAwE,CACzE;CACF,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,kCAAkC,CAAC;KAC3C,QAAQ,CAAC,gDAAgD,CAAC,CAAC;AAM9D,MAAM,CAAC,MAAM,8BAA8B,GAAG;IAC5C,UAAU,EAAE,0BAA0B;IACtC,UAAU,EAAE,0BAA0B;CACvC,CAAC;AAEF,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC;KACxC,MAAM,CAAC;IACN,UAAU,EAAE,CAAC,CAAC,MAAM;SACjB,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,0BAA0B,CAAC;SAC/B,OAAO,CAAC,8BAA8B,CAAC,UAAU,CAAC;SAClD,QAAQ,CAAC,0BAA0B,CAAC;IACvC,UAAU,EAAE,CAAC,CAAC,MAAM;SACjB,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,0BAA0B,CAAC;SAC/B,OAAO,CAAC,8BAA8B,CAAC,UAAU,CAAC;SAClD,QAAQ,CAAC,0BAA0B,CAAC;CACxC,CAAC;KACD,OAAO,CAAC,8BAA8B,CAAC;KACvC,QAAQ,CAAC,2BAA2B,CAAC;KACrC,WAAW,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;IAC1B,IAAI,KAAK,CAAC,UAAU,GAAG,KAAK,CAAC,UAAU,EAAE,CAAC;QACxC,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,YAAY,CAAC;YACpB,OAAO,EAAE,wDAAwD;SAClE,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC,CAAC;AAIL,MAAM,iCAAiC,GAAG;IACxC,OAAO,EAAE,KAAK;IACd,MAAM,EAAE,UAAU;CACnB,CAAC;AAEF,MAAM,CAAC,MAAM,4BAA4B,GAAG;IAC1C,OAAO,EAAE,IAAI;IACb,UAAU,EAAE,kCAAkC;IAC9C,IAAI,EAAE,iCAAiC;IACvC,MAAM,EAAE,8BAA8B;CACvC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,wBAAwB,GAAG,CAAC;KACtC,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,4BAA4B,CAAC,OAAO,CACrC,CAAC,QAAQ,CAAC,mDAAmD,CAAC;IAC/D;;OAEG;IACH,UAAU,EAAE,6BAA6B;IACzC,IAAI,EAAE,CAAC;SACJ,MAAM,CAAC;QACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,iCAAiC,CAAC,OAAO,CAC1C,CAAC,QAAQ,CAAC,0DAA0D,CAAC;QACtE,MAAM,EAAE,CAAC;aACN,MAAM,EAAE;aACR,OAAO,CAAC,iCAAiC,CAAC,MAAM,CAAC;aACjD,QAAQ,CACP,kEAAkE,CACnE;KACJ,CAAC;SACD,MAAM,EAAE;SACR,OAAO,CAAC,iCAAiC,CAAC;SAC1C,QAAQ,CAAC,oDAAoD,CAAC;IACjE,MAAM,EAAE,0BAA0B;CACnC,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,4BAA4B,CAAC;KACrC,QAAQ,CAAC,wCAAwC,CAAC,CAAC;AAItD;;;;;;;;GAQG;AACH,MAAM,eAAe,GACnB,qHAAqH,CAAC;AAExH,MAAM,CAAC,MAAM,2BAA2B,GAAG;IACzC,OAAO,EAAE,KAAK;CACf,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAG,CAAC;KACrC,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,2BAA2B,CAAC,OAAO,CACpC,CAAC,QAAQ,CAAC,uDAAuD,CAAC;IACnE;;;;;;OAMG;IACH,KAAK,EAAE,CAAC;SACL,MAAM,EAAE;SACR,KAAK,CACJ,eAAe,EACf,wDAAwD;QACtD,sCAAsC,CACzC;SACA,QAAQ,EAAE;IACb;;;;OAIG;IACH,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,QAAQ,EAAE;CACrC,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,2BAA2B,CAAC;KACpC,QAAQ,CAAC,kDAAkD,CAAC,CAAC;AAIhE,MAAM,kDAAkD,GAAG;IACzD,OAAO,EAAE,IAAI;IACb,YAAY,EAAE,CAAC;IACf,GAAG,EAAE,KAAK;CACX,CAAC;AAEF,MAAM,CAAC,MAAM,gCAAgC,GAAG;IAC9C,OAAO,EAAE,KAAK;IACd,IAAI,EAAE,aAAa;IACnB,iBAAiB,EAAE,kDAAkD;IACrE,iBAAiB,EAAE,IAAI;IACvB,oBAAoB,EAAE,IAAI;IAC1B,UAAU,EAAE;QACV,QAAQ,EAAE,QAAQ;KACnB;IACD,iBAAiB,EAAE,4BAA4B;CACvC,CAAC;AAEX,MAAM,4CAA4C,GAAG,CAAC;KACnD,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,kDAAkD,CAAC,OAAO,CAC3D,CAAC,QAAQ,CACR,kFAAkF,CACnF;IACD,YAAY,EAAE,CAAC,CAAC,MAAM;SACnB,MAAM,EAAE;SACR,GAAG,EAAE;SACL,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,EAAE,CAAC;SACP,OAAO,CAAC,kDAAkD,CAAC,YAAY,CAAC;SACxE,QAAQ,CACP,sEAAsE,CACvE;IACH,GAAG,EAAE,cAAc,CAAC,OAAO,CACzB,kDAAkD,CAAC,GAAG,CACvD,CAAC,QAAQ,CAAC,2DAA2D,CAAC;CACxE,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,kDAAkD,CAAC;KAC3D,QAAQ,CAAC,0CAA0C,CAAC,CAAC;AAExD,MAAM,CAAC,MAAM,4BAA4B,GAAG,CAAC;KAC1C,MAAM,CAAC;IACN,OAAO,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAChC,gCAAgC,CAAC,OAAO,CACzC,CAAC,QAAQ,CAAC,4CAA4C,CAAC;IACxD,IAAI,EAAE,CAAC;SACJ,IAAI,CAAC,CAAC,UAAU,EAAE,aAAa,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC;SACpD,OAAO,CAAC,gCAAgC,CAAC,IAAI,CAAC;SAC9C,QAAQ,CAAC,4CAA4C,CAAC;IACzD,iBAAiB,EAAE,4CAA4C;IAC/D,iBAAiB,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAC1C,gCAAgC,CAAC,iBAAiB,CACnD,CAAC,QAAQ,CACR,qEAAqE,CACtE;IACD,oBAAoB,EAAE,EAAE,CAAC,cAAc,CAAC,OAAO,CAC7C,gCAAgC,CAAC,oBAAoB,CACtD,CAAC,QAAQ,CACR,kEAAkE,CACnE;IACD,UAAU,EAAE,CAAC;SACV,MAAM,CAAC;QACN,QAAQ,EAAE,CAAC;aACR,IAAI,CAAC,CAAC,QAAQ,EAAE,QAAQ,EAAE,eAAe,CAAC,CAAC;aAC3C,OAAO,CAAC,gCAAgC,CAAC,UAAU,CAAC,QAAQ,CAAC;aAC7D,QAAQ,CAAC,yDAAyD,CAAC;KACvE,CAAC;SACD,MAAM,EAAE;SACR,OAAO,CAAC,gCAAgC,CAAC,UAAU,CAAC;IACvD,iBAAiB,EAAE,CAAC;SACjB,IAAI,CAAC,CAAC,4BAA4B,EAAE,gBAAgB,CAAC,CAAC;SACtD,OAAO,CAAC,gCAAgC,CAAC,iBAAiB,CAAC;SAC3D,QAAQ,CACP,8EAA8E,CAC/E;CACJ,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,gCAAgC,CAAC;KACzC,QAAQ,CAAC,uCAAuC,CAAC,CAAC;AAMrD,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,QAAQ,EAAE,4BAA4B;IACtC,OAAO,EAAE,2BAA2B;IACpC,iBAAiB,EAAE,gCAAgC;CACpD,CAAC;AAEF;;;GAGG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC;KAC9B,MAAM,CAAC;IACN,QAAQ,EAAE,wBAAwB,CAAC,QAAQ,CACzC,mCAAmC,CACpC;IACD,OAAO,EAAE,uBAAuB,CAAC,QAAQ,CACvC,6CAA6C,CAC9C;IACD,iBAAiB,EAAE,4BAA4B,CAAC,QAAQ,CACtD,kCAAkC,CACnC;CACF,CAAC;KACD,MAAM,EAAE;KACR,WAAW,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;IACxB,IACE,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,mBAAmB;QAC3C,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO;QAC1B,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,EACpB,CAAC;QACD,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,OAAO,EACL,uFAAuF;SAC1F,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC;KACD,OAAO,CAAC,mBAAmB,CAAC;KAC5B,QAAQ,CAAC,uCAAuC,CAAC,CAAC"}
|
|
@@ -25,6 +25,16 @@ export declare const ClientConfigSchema: z.ZodObject<{
|
|
|
25
25
|
}>>>;
|
|
26
26
|
scope: z.ZodPipe<z.ZodPipe<z.ZodString, z.ZodTransform<string, string>>, z.ZodString>;
|
|
27
27
|
skip_consent: z.ZodDefault<z.ZodBoolean>;
|
|
28
|
+
account_selection: z.ZodOptional<z.ZodObject<{
|
|
29
|
+
mode: z.ZodDefault<z.ZodEnum<{
|
|
30
|
+
inherit: "inherit";
|
|
31
|
+
never: "never";
|
|
32
|
+
always: "always";
|
|
33
|
+
oidc_prompt: "oidc_prompt";
|
|
34
|
+
smart: "smart";
|
|
35
|
+
}>>;
|
|
36
|
+
allow_add_account: z.ZodOptional<z.ZodBoolean>;
|
|
37
|
+
}, z.z.core.$strict>>;
|
|
28
38
|
}, z.z.core.$strict>;
|
|
29
39
|
export type ClientConfig = z.infer<typeof ClientConfigSchema>;
|
|
30
40
|
export declare const CLIENT_CONFIGS_DEFAULT: ClientConfig[];
|
|
@@ -50,5 +60,15 @@ export declare const ClientConfigsSchema: z.ZodDefault<z.ZodArray<z.ZodObject<{
|
|
|
50
60
|
}>>>;
|
|
51
61
|
scope: z.ZodPipe<z.ZodPipe<z.ZodString, z.ZodTransform<string, string>>, z.ZodString>;
|
|
52
62
|
skip_consent: z.ZodDefault<z.ZodBoolean>;
|
|
63
|
+
account_selection: z.ZodOptional<z.ZodObject<{
|
|
64
|
+
mode: z.ZodDefault<z.ZodEnum<{
|
|
65
|
+
inherit: "inherit";
|
|
66
|
+
never: "never";
|
|
67
|
+
always: "always";
|
|
68
|
+
oidc_prompt: "oidc_prompt";
|
|
69
|
+
smart: "smart";
|
|
70
|
+
}>>;
|
|
71
|
+
allow_add_account: z.ZodOptional<z.ZodBoolean>;
|
|
72
|
+
}, z.z.core.$strict>>;
|
|
53
73
|
}, z.z.core.$strict>>>;
|
|
54
74
|
//# sourceMappingURL=client.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../../src/lib/config/client.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AA+
|
|
1
|
+
{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../../src/lib/config/client.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AA+EpB;;;GAGG;AACH,eAAO,MAAM,kBAAkB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;oBAyH4B,CAAC;AAE5D,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAE9D,eAAO,MAAM,sBAAsB,EAAE,YAAY,EAAO,CAAC;AAEzD,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;sBA+BiC,CAAC"}
|
|
@@ -24,6 +24,19 @@ const OAuthGrantTypeSchema = z
|
|
|
24
24
|
'client_credentials',
|
|
25
25
|
'urn:ietf:params:oauth:grant-type:device_code',
|
|
26
26
|
]));
|
|
27
|
+
const ClientAccountSelectionConfigSchema = z
|
|
28
|
+
.object({
|
|
29
|
+
mode: z
|
|
30
|
+
.enum(['inherit', 'never', 'oidc_prompt', 'smart', 'always'])
|
|
31
|
+
.default('inherit')
|
|
32
|
+
.describe('Client-level account selection policy override.'),
|
|
33
|
+
allow_add_account: z
|
|
34
|
+
.boolean()
|
|
35
|
+
.optional()
|
|
36
|
+
.describe('Client-level override for whether users can add another account.'),
|
|
37
|
+
})
|
|
38
|
+
.strict()
|
|
39
|
+
.describe('Client-specific account selection overrides.');
|
|
27
40
|
function normalizeScopeList(scope) {
|
|
28
41
|
const trimmed = scope.trim();
|
|
29
42
|
if (/[\t\n\r\f\v]/.test(trimmed)) {
|
|
@@ -95,6 +108,7 @@ export const ClientConfigSchema = z
|
|
|
95
108
|
.boolean()
|
|
96
109
|
.default(false)
|
|
97
110
|
.describe('Skip the OAuth consent screen for this client unless prompt=consent is requested.'),
|
|
111
|
+
account_selection: ClientAccountSelectionConfigSchema.optional(),
|
|
98
112
|
})
|
|
99
113
|
.strict()
|
|
100
114
|
.superRefine((client, ctx) => {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"client.js","sourceRoot":"","sources":["../../../src/lib/config/client.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAC;AAEtD,MAAM,iBAAiB,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CAAC,mBAAmB,EAAE;IAC/D,OAAO,EACL,wFAAwF;CAC3F,CAAC,CAAC;AAEH,MAAM,eAAe,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CACvC,CAAC,KAAK,EAAE,EAAE;IACR,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC;QAC3B,OAAO,GAAG,CAAC,MAAM,KAAK,KAAK,IAAI,mBAAmB,CAAC,KAAK,CAAC,CAAC;IAC5D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC,EACD;IACE,OAAO,EACL,gJAAgJ;CACnJ,CACF,CAAC;AAEF,MAAM,uBAAuB,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,CAAC,CAAC;AAC9E,MAAM,oBAAoB,GAAG,CAAC;KAC3B,MAAM,EAAE;KACR,IAAI,CACH,CAAC,CAAC,IAAI,CAAC;IACL,oBAAoB;IACpB,UAAU;IACV,eAAe;IACf,oBAAoB;IACpB,8CAA8C;CAC/C,CAAC,CACH,CAAC;AAEJ,SAAS,kBAAkB,CAAC,KAAa;IACvC,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IAC7B,IAAI,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACjC,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AACvC,CAAC;AAED,MAAM,WAAW,GAAG,CAAC;KAClB,MAAM,EAAE;KACR,SAAS,CAAC,kBAAkB,CAAC;KAC7B,IAAI,CACH,CAAC;KACE,MAAM,EAAE;KACR,GAAG,CAAC,CAAC,CAAC;KACN,MAAM,CACL,CAAC,KAAK,EAAE,EAAE,CACR,KAAK;KACF,KAAK,CAAC,GAAG,CAAC;KACV,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,6BAA6B,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAChE;IACE,OAAO,EACL,yEAAyE;CAC5E,CACF,CACJ,CAAC;AAEJ;;;GAGG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC;KAChC,MAAM,CAAC;IACN,EAAE,EAAE,CAAC;SACF,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,GAAG,CAAC;SACR,QAAQ,CAAC,qCAAqC,CAAC;IAClD,IAAI,EAAE,CAAC;SACJ,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,QAAQ,CAAC,iDAAiD,CAAC;IAC9D,QAAQ,EAAE,CAAC;SACR,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,qCAAqC,CAAC;IAClD,SAAS,EAAE,CAAC;SACT,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,QAAQ,CAAC,iDAAiD,CAAC;IAC9D,aAAa,EAAE,CAAC;SACb,MAAM,EAAE;SACR,GAAG,CAAC,EAAE,CAAC;SACP,QAAQ,EAAE;SACV,QAAQ,CACP,wEAAwE,CACzE;IACH,aAAa,EAAE,CAAC;SACb,KAAK,CAAC,iBAAiB,CAAC;SACxB,QAAQ,EAAE;SACV,QAAQ,CAAC,4CAA4C,CAAC;IACzD,yBAAyB,EAAE,CAAC;SACzB,KAAK,CAAC,iBAAiB,CAAC;SACxB,OAAO,CAAC,EAAE,CAAC;SACX,QAAQ,CAAC,kDAAkD,CAAC;IAC/D,WAAW,EAAE,CAAC;SACX,KAAK,CAAC,eAAe,CAAC;SACtB,OAAO,CAAC,EAAE,CAAC;SACX,QAAQ,CAAC,kDAAkD,CAAC;IAC/D,cAAc,EAAE,CAAC;SACd,KAAK,CAAC,uBAAuB,CAAC;SAC9B,QAAQ,EAAE;SACV,QAAQ,CAAC,4DAA4D,CAAC;IACzE,WAAW,EAAE,CAAC;SACX,KAAK,CAAC,oBAAoB,CAAC;SAC3B,QAAQ,EAAE;SACV,QAAQ,CACP,sFAAsF,CACvF;IACH,KAAK,EAAE,WAAW,CAAC,QAAQ,CACzB,2EAA2E,CAC5E;IACD,YAAY,EAAE,CAAC;SACZ,OAAO,EAAE;SACT,OAAO,CAAC,KAAK,CAAC;SACd,QAAQ,CACP,mFAAmF,CACpF;
|
|
1
|
+
{"version":3,"file":"client.js","sourceRoot":"","sources":["../../../src/lib/config/client.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAC;AAEtD,MAAM,iBAAiB,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CAAC,mBAAmB,EAAE;IAC/D,OAAO,EACL,wFAAwF;CAC3F,CAAC,CAAC;AAEH,MAAM,eAAe,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CACvC,CAAC,KAAK,EAAE,EAAE;IACR,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC;QAC3B,OAAO,GAAG,CAAC,MAAM,KAAK,KAAK,IAAI,mBAAmB,CAAC,KAAK,CAAC,CAAC;IAC5D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC,EACD;IACE,OAAO,EACL,gJAAgJ;CACnJ,CACF,CAAC;AAEF,MAAM,uBAAuB,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,CAAC,CAAC;AAC9E,MAAM,oBAAoB,GAAG,CAAC;KAC3B,MAAM,EAAE;KACR,IAAI,CACH,CAAC,CAAC,IAAI,CAAC;IACL,oBAAoB;IACpB,UAAU;IACV,eAAe;IACf,oBAAoB;IACpB,8CAA8C;CAC/C,CAAC,CACH,CAAC;AAEJ,MAAM,kCAAkC,GAAG,CAAC;KACzC,MAAM,CAAC;IACN,IAAI,EAAE,CAAC;SACJ,IAAI,CAAC,CAAC,SAAS,EAAE,OAAO,EAAE,aAAa,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC;SAC5D,OAAO,CAAC,SAAS,CAAC;SAClB,QAAQ,CAAC,iDAAiD,CAAC;IAC9D,iBAAiB,EAAE,CAAC;SACjB,OAAO,EAAE;SACT,QAAQ,EAAE;SACV,QAAQ,CACP,kEAAkE,CACnE;CACJ,CAAC;KACD,MAAM,EAAE;KACR,QAAQ,CAAC,8CAA8C,CAAC,CAAC;AAE5D,SAAS,kBAAkB,CAAC,KAAa;IACvC,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IAC7B,IAAI,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACjC,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AACvC,CAAC;AAED,MAAM,WAAW,GAAG,CAAC;KAClB,MAAM,EAAE;KACR,SAAS,CAAC,kBAAkB,CAAC;KAC7B,IAAI,CACH,CAAC;KACE,MAAM,EAAE;KACR,GAAG,CAAC,CAAC,CAAC;KACN,MAAM,CACL,CAAC,KAAK,EAAE,EAAE,CACR,KAAK;KACF,KAAK,CAAC,GAAG,CAAC;KACV,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,6BAA6B,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAChE;IACE,OAAO,EACL,yEAAyE;CAC5E,CACF,CACJ,CAAC;AAEJ;;;GAGG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC;KAChC,MAAM,CAAC;IACN,EAAE,EAAE,CAAC;SACF,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,GAAG,CAAC;SACR,QAAQ,CAAC,qCAAqC,CAAC;IAClD,IAAI,EAAE,CAAC;SACJ,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,QAAQ,CAAC,iDAAiD,CAAC;IAC9D,QAAQ,EAAE,CAAC;SACR,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,qCAAqC,CAAC;IAClD,SAAS,EAAE,CAAC;SACT,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,QAAQ,CAAC,iDAAiD,CAAC;IAC9D,aAAa,EAAE,CAAC;SACb,MAAM,EAAE;SACR,GAAG,CAAC,EAAE,CAAC;SACP,QAAQ,EAAE;SACV,QAAQ,CACP,wEAAwE,CACzE;IACH,aAAa,EAAE,CAAC;SACb,KAAK,CAAC,iBAAiB,CAAC;SACxB,QAAQ,EAAE;SACV,QAAQ,CAAC,4CAA4C,CAAC;IACzD,yBAAyB,EAAE,CAAC;SACzB,KAAK,CAAC,iBAAiB,CAAC;SACxB,OAAO,CAAC,EAAE,CAAC;SACX,QAAQ,CAAC,kDAAkD,CAAC;IAC/D,WAAW,EAAE,CAAC;SACX,KAAK,CAAC,eAAe,CAAC;SACtB,OAAO,CAAC,EAAE,CAAC;SACX,QAAQ,CAAC,kDAAkD,CAAC;IAC/D,cAAc,EAAE,CAAC;SACd,KAAK,CAAC,uBAAuB,CAAC;SAC9B,QAAQ,EAAE;SACV,QAAQ,CAAC,4DAA4D,CAAC;IACzE,WAAW,EAAE,CAAC;SACX,KAAK,CAAC,oBAAoB,CAAC;SAC3B,QAAQ,EAAE;SACV,QAAQ,CACP,sFAAsF,CACvF;IACH,KAAK,EAAE,WAAW,CAAC,QAAQ,CACzB,2EAA2E,CAC5E;IACD,YAAY,EAAE,CAAC;SACZ,OAAO,EAAE;SACT,OAAO,CAAC,KAAK,CAAC;SACd,QAAQ,CACP,mFAAmF,CACpF;IACH,iBAAiB,EAAE,kCAAkC,CAAC,QAAQ,EAAE;CACjE,CAAC;KACD,MAAM,EAAE;KACR,WAAW,CAAC,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE;IAC3B,MAAM,aAAa,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC;IACrD,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IAE/C,IAAI,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,EAAE,CAAC;QACvE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,aAAa,CAAC;YACrB,OAAO,EACL,uFAAuF;SAC1F,CAAC,CAAC;IACL,CAAC;IAED,IAAI,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;QACvE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,gBAAgB,CAAC;YACxB,OAAO,EACL,uFAAuF;SAC1F,CAAC,CAAC;IACL,CAAC;IAED,IAAI,aAAa,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC;QACjE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,aAAa,CAAC;YACrB,OAAO,EACL,iFAAiF;SACpF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,UAAU,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC;QACjE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,gBAAgB,CAAC;YACxB,OAAO,EACL,iFAAiF;SACpF,CAAC,CAAC;IACL,CAAC;IAED,IACE,UAAU,CAAC,GAAG,CAAC,eAAe,CAAC;QAC/B,CAAC,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,EACrC,CAAC;QACD,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,aAAa,CAAC;YACrB,OAAO,EACL,qFAAqF;SACxF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,UAAU,CAAC,GAAG,CAAC,oBAAoB,CAAC,IAAI,CAAC,MAAM,CAAC,aAAa,EAAE,CAAC;QAClE,GAAG,CAAC,QAAQ,CAAC;YACX,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,CAAC,eAAe,CAAC;YACvB,OAAO,EACL,mGAAmG;SACtG,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC;KACD,QAAQ,CAAC,8CAA8C,CAAC,CAAC;AAI5D,MAAM,CAAC,MAAM,sBAAsB,GAAmB,EAAE,CAAC;AAEzD,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC;KACjC,KAAK,CAAC,kBAAkB,CAAC;KACzB,WAAW,CAAC,CAAC,OAAO,EAAE,GAAG,EAAE,EAAE;IAC5B,MAAM,OAAO,GAAG,IAAI,GAAG,EAAkB,CAAC;IAC1C,MAAM,aAAa,GAAG,IAAI,GAAG,EAAkB,CAAC;IAEhD,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;QAChC,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QAC5C,IAAI,YAAY,KAAK,SAAS,EAAE,CAAC;YAC/B,GAAG,CAAC,QAAQ,CAAC;gBACX,IAAI,EAAE,QAAQ;gBACd,IAAI,EAAE,CAAC,KAAK,EAAE,IAAI,CAAC;gBACnB,OAAO,EAAE,2EAA2E,YAAY,MAAM;aACvG,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,EAAE,KAAK,CAAC,CAAC;QAChC,CAAC;QAED,MAAM,kBAAkB,GAAG,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAC/D,IAAI,kBAAkB,KAAK,SAAS,EAAE,CAAC;YACrC,GAAG,CAAC,QAAQ,CAAC;gBACX,IAAI,EAAE,QAAQ;gBACd,IAAI,EAAE,CAAC,KAAK,EAAE,WAAW,CAAC;gBAC1B,OAAO,EAAE,kFAAkF,kBAAkB,aAAa;aAC3H,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;QAC7C,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC,CAAC;KACD,OAAO,CAAC,sBAAsB,CAAC;KAC/B,QAAQ,CAAC,oDAAoD,CAAC,CAAC"}
|
|
@@ -1,5 +1,7 @@
|
|
|
1
1
|
export type { AccountDeletionConfig } from './account-deletion.ts';
|
|
2
2
|
export { AccountDeletionConfigSchema } from './account-deletion.ts';
|
|
3
|
+
export type { AdminConfig } from './admin.ts';
|
|
4
|
+
export { ADMIN_CONFIG_DEFAULT, AdminConfigSchema } from './admin.ts';
|
|
3
5
|
export type { AuthConfig, PasskeyAuthConfig, PasswordAuthConfig, PasswordPolicyConfig, PasswordTwoFactorConfig, } from './auth.ts';
|
|
4
6
|
export { AuthConfigSchema, PasskeyAuthConfigSchema, PasswordAuthConfigSchema, PasswordPolicyConfigSchema, } from './auth.ts';
|
|
5
7
|
export type { AppTheme, BrandingConfig } from './branding.ts';
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/lib/config/index.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAC;AACnE,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AACpE,YAAY,EACV,UAAU,EACV,iBAAiB,EACjB,kBAAkB,EAClB,oBAAoB,EACpB,uBAAuB,GACxB,MAAM,WAAW,CAAC;AACnB,OAAO,EACL,gBAAgB,EAChB,uBAAuB,EACvB,wBAAwB,EACxB,0BAA0B,GAC3B,MAAM,WAAW,CAAC;AACnB,YAAY,EAAE,QAAQ,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrE,YAAY,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAC3E,YAAY,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AACtE,YAAY,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EACV,WAAW,EACX,kBAAkB,EAClB,cAAc,GACf,MAAM,YAAY,CAAC;AACpB,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,YAAY,EACV,cAAc,EACd,eAAe,EACf,sBAAsB,GACvB,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,gBAAgB,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAC3D,YAAY,EAAE,sBAAsB,EAAE,MAAM,yBAAyB,CAAC;AACtE,OAAO,EACL,4BAA4B,EAC5B,6BAA6B,GAC9B,MAAM,yBAAyB,CAAC;AACjC,YAAY,EAAE,SAAS,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,cAAc,CAAC;AACvE,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,YAAY,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAC3E,YAAY,EAAE,kBAAkB,EAAE,MAAM,mBAAmB,CAAC;AAC5D,OAAO,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAC7D,YAAY,EACV,qBAAqB,EACrB,0BAA0B,GAC3B,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAC5D,YAAY,EACV,mBAAmB,EACnB,2BAA2B,EAC3B,UAAU,EACV,aAAa,EACb,kBAAkB,EAClB,eAAe,EACf,uBAAuB,EACvB,eAAe,EACf,sBAAsB,EACtB,uBAAuB,EACvB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EACL,yBAAyB,EACzB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,YAAY,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,YAAY,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AACzD,OAAO,EAAE,iBAAiB,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAChE,YAAY,EAAE,sBAAsB,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,EAAE,4BAA4B,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAC/E,YAAY,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC"}
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/lib/config/index.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAC;AACnE,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AACpE,YAAY,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAC9C,OAAO,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AACrE,YAAY,EACV,UAAU,EACV,iBAAiB,EACjB,kBAAkB,EAClB,oBAAoB,EACpB,uBAAuB,GACxB,MAAM,WAAW,CAAC;AACnB,OAAO,EACL,gBAAgB,EAChB,uBAAuB,EACvB,wBAAwB,EACxB,0BAA0B,GAC3B,MAAM,WAAW,CAAC;AACnB,YAAY,EAAE,QAAQ,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrE,YAAY,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAC3E,YAAY,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AACtE,YAAY,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EACV,WAAW,EACX,kBAAkB,EAClB,cAAc,GACf,MAAM,YAAY,CAAC;AACpB,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,YAAY,EACV,cAAc,EACd,eAAe,EACf,sBAAsB,GACvB,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,gBAAgB,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAC3D,YAAY,EAAE,sBAAsB,EAAE,MAAM,yBAAyB,CAAC;AACtE,OAAO,EACL,4BAA4B,EAC5B,6BAA6B,GAC9B,MAAM,yBAAyB,CAAC;AACjC,YAAY,EAAE,SAAS,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,cAAc,CAAC;AACvE,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,YAAY,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAC3E,YAAY,EAAE,kBAAkB,EAAE,MAAM,mBAAmB,CAAC;AAC5D,OAAO,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAC7D,YAAY,EACV,qBAAqB,EACrB,0BAA0B,GAC3B,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAC5D,YAAY,EACV,mBAAmB,EACnB,2BAA2B,EAC3B,UAAU,EACV,aAAa,EACb,kBAAkB,EAClB,eAAe,EACf,uBAAuB,EACvB,eAAe,EACf,sBAAsB,EACtB,uBAAuB,EACvB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EACL,yBAAyB,EACzB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,YAAY,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,YAAY,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,YAAY,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AACzD,OAAO,EAAE,iBAAiB,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAChE,YAAY,EAAE,sBAAsB,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,EAAE,4BAA4B,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAC/E,YAAY,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC"}
|
package/dist/lib/config/index.js
CHANGED
|
@@ -1,4 +1,5 @@
|
|
|
1
1
|
export { AccountDeletionConfigSchema } from "./account-deletion.js";
|
|
2
|
+
export { ADMIN_CONFIG_DEFAULT, AdminConfigSchema } from "./admin.js";
|
|
2
3
|
export { AuthConfigSchema, PasskeyAuthConfigSchema, PasswordAuthConfigSchema, PasswordPolicyConfigSchema, } from "./auth.js";
|
|
3
4
|
export { AppThemeSchema, BrandingConfigSchema } from "./branding.js";
|
|
4
5
|
export { CLEANUP_CONFIG_DEFAULT, CleanupConfigSchema } from "./cleanup.js";
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/lib/config/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/lib/config/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AAEpE,OAAO,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAQrE,OAAO,EACL,gBAAgB,EAChB,uBAAuB,EACvB,wBAAwB,EACxB,0BAA0B,GAC3B,MAAM,WAAW,CAAC;AAEnB,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAErE,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAE3E,OAAO,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAEtE,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAMrD,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAM/C,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAErD,OAAO,EAAE,gBAAgB,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAE3D,OAAO,EACL,4BAA4B,EAC5B,6BAA6B,GAC9B,MAAM,yBAAyB,CAAC;AAEjC,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAEnD,OAAO,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAE3E,OAAO,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAK7D,OAAO,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAc5D,OAAO,EACL,yBAAyB,EACzB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AAExB,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAErD,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAEjD,OAAO,EAAE,iBAAiB,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAEhE,OAAO,EAAE,4BAA4B,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAE/E,OAAO,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC"}
|
|
@@ -126,6 +126,9 @@ export declare const TinyAuthRuntimeConfigSchema: z.ZodObject<{
|
|
|
126
126
|
enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
127
127
|
retention: z.ZodDefault<z.ZodString>;
|
|
128
128
|
}, z.z.core.$strict>>;
|
|
129
|
+
admin: z.ZodDefault<z.ZodObject<{
|
|
130
|
+
enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
131
|
+
}, z.z.core.$strict>>;
|
|
129
132
|
logging: z.ZodDefault<z.ZodObject<{
|
|
130
133
|
level: z.ZodDefault<z.ZodEnum<{
|
|
131
134
|
error: "error";
|
|
@@ -167,6 +170,33 @@ export declare const TinyAuthRuntimeConfigSchema: z.ZodObject<{
|
|
|
167
170
|
rp_id: z.ZodOptional<z.ZodString>;
|
|
168
171
|
origins: z.ZodOptional<z.ZodArray<z.ZodURL>>;
|
|
169
172
|
}, z.z.core.$strict>>;
|
|
173
|
+
account_selection: z.ZodDefault<z.ZodObject<{
|
|
174
|
+
enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
175
|
+
mode: z.ZodDefault<z.ZodEnum<{
|
|
176
|
+
always: "always";
|
|
177
|
+
oidc_prompt: "oidc_prompt";
|
|
178
|
+
disabled: "disabled";
|
|
179
|
+
smart: "smart";
|
|
180
|
+
}>>;
|
|
181
|
+
remember_accounts: z.ZodDefault<z.ZodObject<{
|
|
182
|
+
enabled: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
183
|
+
max_accounts: z.ZodDefault<z.z.ZodCoercedNumber<unknown>>;
|
|
184
|
+
ttl: z.ZodDefault<z.ZodString>;
|
|
185
|
+
}, z.z.core.$strict>>;
|
|
186
|
+
allow_add_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
187
|
+
allow_remove_account: z.ZodDefault<z.ZodPipe<z.ZodUnion<readonly [z.ZodBoolean, z.ZodString]>, z.ZodTransform<boolean, string | boolean>>>;
|
|
188
|
+
login_hint: z.ZodDefault<z.ZodObject<{
|
|
189
|
+
behavior: z.ZodDefault<z.ZodEnum<{
|
|
190
|
+
prefer: "prefer";
|
|
191
|
+
ignore: "ignore";
|
|
192
|
+
require_match: "require_match";
|
|
193
|
+
}>>;
|
|
194
|
+
}, z.z.core.$strict>>;
|
|
195
|
+
prompt_none_error: z.ZodDefault<z.ZodEnum<{
|
|
196
|
+
login_required: "login_required";
|
|
197
|
+
account_selection_required: "account_selection_required";
|
|
198
|
+
}>>;
|
|
199
|
+
}, z.z.core.$strict>>;
|
|
170
200
|
}, z.z.core.$strict>>;
|
|
171
201
|
security: z.ZodObject<{
|
|
172
202
|
session_secret: z.ZodString;
|
|
@@ -236,6 +266,16 @@ export declare const TinyAuthRuntimeConfigSchema: z.ZodObject<{
|
|
|
236
266
|
}>>>;
|
|
237
267
|
scope: z.ZodPipe<z.ZodPipe<z.ZodString, z.ZodTransform<string, string>>, z.ZodString>;
|
|
238
268
|
skip_consent: z.ZodDefault<z.ZodBoolean>;
|
|
269
|
+
account_selection: z.ZodOptional<z.ZodObject<{
|
|
270
|
+
mode: z.ZodDefault<z.ZodEnum<{
|
|
271
|
+
inherit: "inherit";
|
|
272
|
+
never: "never";
|
|
273
|
+
always: "always";
|
|
274
|
+
oidc_prompt: "oidc_prompt";
|
|
275
|
+
smart: "smart";
|
|
276
|
+
}>>;
|
|
277
|
+
allow_add_account: z.ZodOptional<z.ZodBoolean>;
|
|
278
|
+
}, z.z.core.$strict>>;
|
|
239
279
|
}, z.z.core.$strict>>>;
|
|
240
280
|
users: z.ZodDefault<z.ZodArray<z.ZodObject<{
|
|
241
281
|
sub: z.ZodString;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"resolved.d.ts","sourceRoot":"","sources":["../../../src/lib/config/resolved.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;
|
|
1
|
+
{"version":3,"file":"resolved.d.ts","sourceRoot":"","sources":["../../../src/lib/config/resolved.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAsBpB,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;oBA0CM,CAAC;AAE/C,MAAM,MAAM,0BAA0B,GAAG,CAAC,CAAC,KAAK,CAC9C,OAAO,2BAA2B,CACnC,CAAC;AACF,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,MAAM,CAC1C,OAAO,2BAA2B,CACnC,CAAC"}
|
|
@@ -1,5 +1,6 @@
|
|
|
1
1
|
import z from 'zod';
|
|
2
2
|
import { AccountDeletionConfigSchema } from "./account-deletion.js";
|
|
3
|
+
import { AdminConfigSchema } from "./admin.js";
|
|
3
4
|
import { AuthConfigSchema } from "./auth.js";
|
|
4
5
|
import { BrandingConfigSchema } from "./branding.js";
|
|
5
6
|
import { CleanupConfigSchema } from "./cleanup.js";
|
|
@@ -26,6 +27,7 @@ export const TinyAuthRuntimeConfigSchema = z
|
|
|
26
27
|
branding: BrandingConfigSchema.describe('Branding and visual customization settings.'),
|
|
27
28
|
registration: RegistrationConfigSchema.describe('User self-registration settings.'),
|
|
28
29
|
account_deletion: AccountDeletionConfigSchema.describe('Account deletion settings.'),
|
|
30
|
+
admin: AdminConfigSchema.describe('Admin console settings.'),
|
|
29
31
|
logging: LoggingConfigSchema.describe('Logging settings.'),
|
|
30
32
|
openapi: OpenApiConfigSchema.describe('OpenAPI and API reference settings.'),
|
|
31
33
|
auth: AuthConfigSchema.describe('Authentication methods settings.'),
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"resolved.js","sourceRoot":"","sources":["../../../src/lib/config/resolved.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AACpE,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAClD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,6BAA6B,EAAE,MAAM,yBAAyB,CAAC;AACxE,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAC7D,OAAO,EAAE,qBAAqB,EAAE,MAAM,gBAAgB,CAAC;AACvD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC;AAE9C,MAAM,CAAC,MAAM,2BAA2B,GAAG,CAAC;KACzC,MAAM,CAAC;IACN,MAAM,EAAE,kBAAkB,CAAC,QAAQ,CAAC,uBAAuB,CAAC;IAC5D,MAAM,EAAE,kBAAkB,CAAC,QAAQ,CACjC,0CAA0C,CAC3C;IACD,IAAI,EAAE,gBAAgB,CAAC,QAAQ,CAAC,gCAAgC,CAAC;IACjE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,6CAA6C,CAC9C;IACD,YAAY,EAAE,wBAAwB,CAAC,QAAQ,CAC7C,kCAAkC,CACnC;IACD,gBAAgB,EAAE,2BAA2B,CAAC,QAAQ,CACpD,4BAA4B,CAC7B;IACD,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CAAC,mBAAmB,CAAC;IAC1D,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CACnC,qCAAqC,CACtC;IACD,IAAI,EAAE,gBAAgB,CAAC,QAAQ,CAAC,kCAAkC,CAAC;IACnE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,sCAAsC,CACvC;IACD,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CAAC,wBAAwB,CAAC;IAC/D,SAAS,EAAE,qBAAqB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IACvE,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IAC/D,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CACnC,4CAA4C,CAC7C;IACD,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,gCAAgC,CAAC;IACnE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IACrE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,sCAAsC,CACvC;IACD,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,mCAAmC,CAAC;IACtE,kBAAkB,EAAE,6BAA6B,CAAC,QAAQ,CACxD,sCAAsC,CACvC;CACF,CAAC;KACD,MAAM,EAAE;KACR,QAAQ,CAAC,iCAAiC,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"resolved.js","sourceRoot":"","sources":["../../../src/lib/config/resolved.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,2BAA2B,EAAE,MAAM,uBAAuB,CAAC;AACpE,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAClD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,6BAA6B,EAAE,MAAM,yBAAyB,CAAC;AACxE,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAC7D,OAAO,EAAE,qBAAqB,EAAE,MAAM,gBAAgB,CAAC;AACvD,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC;AAE9C,MAAM,CAAC,MAAM,2BAA2B,GAAG,CAAC;KACzC,MAAM,CAAC;IACN,MAAM,EAAE,kBAAkB,CAAC,QAAQ,CAAC,uBAAuB,CAAC;IAC5D,MAAM,EAAE,kBAAkB,CAAC,QAAQ,CACjC,0CAA0C,CAC3C;IACD,IAAI,EAAE,gBAAgB,CAAC,QAAQ,CAAC,gCAAgC,CAAC;IACjE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,6CAA6C,CAC9C;IACD,YAAY,EAAE,wBAAwB,CAAC,QAAQ,CAC7C,kCAAkC,CACnC;IACD,gBAAgB,EAAE,2BAA2B,CAAC,QAAQ,CACpD,4BAA4B,CAC7B;IACD,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,yBAAyB,CAAC;IAC5D,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CAAC,mBAAmB,CAAC;IAC1D,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CACnC,qCAAqC,CACtC;IACD,IAAI,EAAE,gBAAgB,CAAC,QAAQ,CAAC,kCAAkC,CAAC;IACnE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,sCAAsC,CACvC;IACD,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CAAC,wBAAwB,CAAC;IAC/D,SAAS,EAAE,qBAAqB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IACvE,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IAC/D,OAAO,EAAE,mBAAmB,CAAC,QAAQ,CACnC,4CAA4C,CAC7C;IACD,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,gCAAgC,CAAC;IACnE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IACrE,QAAQ,EAAE,oBAAoB,CAAC,QAAQ,CACrC,sCAAsC,CACvC;IACD,KAAK,EAAE,iBAAiB,CAAC,QAAQ,CAAC,mCAAmC,CAAC;IACtE,kBAAkB,EAAE,6BAA6B,CAAC,QAAQ,CACxD,sCAAsC,CACvC;CACF,CAAC;KACD,MAAM,EAAE;KACR,QAAQ,CAAC,iCAAiC,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../../src/lib/config/server.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;
|
|
1
|
+
{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../../src/lib/config/server.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AAIpB,eAAO,MAAM,qBAAqB;;;;CAIxB,CAAC;AAuCX,eAAO,MAAM,kBAAkB;;;;qBAkBE,CAAC;AAElC,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC"}
|
|
@@ -1,10 +1,19 @@
|
|
|
1
1
|
import z from 'zod';
|
|
2
2
|
import { zz } from "../../schemas/provider.js";
|
|
3
|
+
import { isHttpsOrLocalHttpUrl } from "./url-policy.js";
|
|
3
4
|
export const SERVER_CONFIG_DEFAULT = {
|
|
4
5
|
public_origin: 'http://localhost:8080',
|
|
5
6
|
listen_port: 8080,
|
|
6
7
|
trust_proxy: false,
|
|
7
8
|
};
|
|
9
|
+
function isOriginUrl(value) {
|
|
10
|
+
try {
|
|
11
|
+
return new URL(value).origin === value && isHttpsOrLocalHttpUrl(value);
|
|
12
|
+
}
|
|
13
|
+
catch {
|
|
14
|
+
return false;
|
|
15
|
+
}
|
|
16
|
+
}
|
|
8
17
|
const TrustProxySchema = z
|
|
9
18
|
.union([
|
|
10
19
|
z.boolean(),
|
|
@@ -35,6 +44,9 @@ export const ServerConfigSchema = z
|
|
|
35
44
|
.object({
|
|
36
45
|
public_origin: z
|
|
37
46
|
.url()
|
|
47
|
+
.refine(isOriginUrl, {
|
|
48
|
+
message: 'public_origin must be an HTTPS or local HTTP origin URL without credentials, path, query, fragment, or trailing slash',
|
|
49
|
+
})
|
|
38
50
|
.default(SERVER_CONFIG_DEFAULT.public_origin)
|
|
39
51
|
.describe('Public origin for the auth service, used for redirects, emails, and CORS.'),
|
|
40
52
|
listen_port: zz.PORT.default(SERVER_CONFIG_DEFAULT.listen_port).describe('TCP port to listen on.'),
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"server.js","sourceRoot":"","sources":["../../../src/lib/config/server.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;
|
|
1
|
+
{"version":3,"file":"server.js","sourceRoot":"","sources":["../../../src/lib/config/server.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,EAAE,EAAE,MAAM,2BAA2B,CAAC;AAC/C,OAAO,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AAExD,MAAM,CAAC,MAAM,qBAAqB,GAAG;IACnC,aAAa,EAAE,uBAAuB;IACtC,WAAW,EAAE,IAAI;IACjB,WAAW,EAAE,KAAK;CACV,CAAC;AAEX,SAAS,WAAW,CAAC,KAAa;IAChC,IAAI,CAAC;QACH,OAAO,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC,MAAM,KAAK,KAAK,IAAI,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACzE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,MAAM,gBAAgB,GAAG,CAAC;KACvB,KAAK,CAAC;IACL,CAAC,CAAC,OAAO,EAAE;IACX,CAAC,CAAC,MAAM,EAAE;IACV,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC;IACnB,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CACxB,CAAC;KACD,OAAO,CAAC,qBAAqB,CAAC,WAAW,CAAC;KAC1C,SAAS,CAAC,CAAC,KAAK,EAAE,EAAE;IACnB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,IAAI,KAAK,KAAK,MAAM,EAAE,CAAC;YACrB,OAAO,IAAI,CAAC;QACd,CAAC;QACD,IAAI,KAAK,KAAK,OAAO,EAAE,CAAC;YACtB,OAAO,KAAK,CAAC;QACf,CAAC;QACD,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;QAC1B,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,GAAG,CAAC,KAAK,KAAK,EAAE,CAAC;YAChD,OAAO,GAAG,CAAC;QACb,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC,CAAC;KACD,QAAQ,CACP,uDAAuD;IACrD,+CAA+C;IAC/C,mDAAmD,CACtD,CAAC;AAEJ,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC;KAChC,MAAM,CAAC;IACN,aAAa,EAAE,CAAC;SACb,GAAG,EAAE;SACL,MAAM,CAAC,WAAW,EAAE;QACnB,OAAO,EACL,uHAAuH;KAC1H,CAAC;SACD,OAAO,CAAC,qBAAqB,CAAC,aAAa,CAAC;SAC5C,QAAQ,CACP,2EAA2E,CAC5E;IACH,WAAW,EAAE,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,qBAAqB,CAAC,WAAW,CAAC,CAAC,QAAQ,CACtE,wBAAwB,CACzB;IACD,WAAW,EAAE,gBAAgB;CAC9B,CAAC;KACD,MAAM,EAAE;KACR,OAAO,CAAC,qBAAqB,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"swagger-tags.d.ts","sourceRoot":"","sources":["../../src/lib/swagger-tags.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,eAAO,MAAM,IAAI
|
|
1
|
+
{"version":3,"file":"swagger-tags.d.ts","sourceRoot":"","sources":["../../src/lib/swagger-tags.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,eAAO,MAAM,IAAI;;;;;;;;;CASP,CAAC"}
|
package/dist/lib/swagger-tags.js
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"swagger-tags.js","sourceRoot":"","sources":["../../src/lib/swagger-tags.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,MAAM,CAAC,MAAM,IAAI,GAAG;IAClB,IAAI,EAAE,MAAM;IACZ,IAAI,EAAE,MAAM;IACZ,OAAO,EAAE,SAAS;IAClB,KAAK,EAAE,OAAO;IACd,aAAa,EAAE,eAAe;IAC9B,MAAM,EAAE,QAAQ;IAChB,MAAM,EAAE,QAAQ;CACR,CAAC"}
|
|
1
|
+
{"version":3,"file":"swagger-tags.js","sourceRoot":"","sources":["../../src/lib/swagger-tags.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,MAAM,CAAC,MAAM,IAAI,GAAG;IAClB,KAAK,EAAE,OAAO;IACd,IAAI,EAAE,MAAM;IACZ,IAAI,EAAE,MAAM;IACZ,OAAO,EAAE,SAAS;IAClB,KAAK,EAAE,OAAO;IACd,aAAa,EAAE,eAAe;IAC9B,MAAM,EAAE,QAAQ;IAChB,MAAM,EAAE,QAAQ;CACR,CAAC"}
|
|
@@ -22,6 +22,9 @@ export declare const verifyAuth: <Optional extends boolean = false>(options?: {
|
|
|
22
22
|
}) => import("hono").MiddlewareHandler<{
|
|
23
23
|
Variables: SessionEnv["Variables"] & ServicesEnv["Variables"] & VerifiedAuthEnv<Optional>["Variables"];
|
|
24
24
|
}, string, {}, Response>;
|
|
25
|
+
export declare const requireAdmin: () => import("hono").MiddlewareHandler<{
|
|
26
|
+
Variables: SessionEnv["Variables"] & ServicesEnv["Variables"] & VerifiedAuthEnv<false>["Variables"];
|
|
27
|
+
}, string, {}, Response>;
|
|
25
28
|
type VerifiedPending2FAUserEnv<Optional extends boolean> = {
|
|
26
29
|
Variables: {
|
|
27
30
|
verifiedPending2FAUser: Optional extends true ? VerifiedPending2FA | undefined : VerifiedPending2FA;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/middleware/auth.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AAE7D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AACjD,OAAO,KAAK,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE5D,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,UAAU,CAAC;IACjB,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,UAAU,CAAC;IACjB,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,uBAAuB;IACtC,IAAI,EAAE,UAAU,CAAC;CAClB;AAED,KAAK,eAAe,CAAC,QAAQ,SAAS,OAAO,IAAI;IAC/C,SAAS,EAAE;QACT,YAAY,EAAE,QAAQ,SAAS,IAAI,GAC/B,YAAY,GAAG,SAAS,GACxB,YAAY,CAAC;KAClB,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,UAAU,GAAI,QAAQ,SAAS,OAAO,GAAG,KAAK,EAAE,UAAU;IACrE,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,eAAe,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAgCxC,CAAC;AAEL,KAAK,yBAAyB,CAAC,QAAQ,SAAS,OAAO,IAAI;IACzD,SAAS,EAAE;QACT,sBAAsB,EAAE,QAAQ,SAAS,IAAI,GACzC,kBAAkB,GAAG,SAAS,GAC9B,kBAAkB,CAAC;KACxB,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,oBAAoB,GAC/B,QAAQ,SAAS,OAAO,GAAG,KAAK,EAChC,UAAU;IACV,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,yBAAyB,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAgClD,CAAC;AAEL,KAAK,8BAA8B,CAAC,QAAQ,SAAS,OAAO,IAAI;IAC9D,SAAS,EAAE;QACT,2BAA2B,EAAE,QAAQ,SAAS,IAAI,GAC9C,uBAAuB,GAAG,SAAS,GACnC,uBAAuB,CAAC;KAC7B,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,yBAAyB,GACpC,QAAQ,SAAS,OAAO,GAAG,KAAK,EAChC,UAAU;IACV,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,8BAA8B,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBA6BvD,CAAC;AAEL,KAAK,2BAA2B,GAAG;IACjC,SAAS,EAAE;QACT,wBAAwB,EAAE,MAAM,CAAC;KAClC,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,sBAAsB;eAEpB,UAAU,CAAC,WAAW,CAAC,GAChC,2BAA2B,CAAC,WAAW,CAAC;wBAU1C,CAAC;AAEL,KAAK,gBAAgB,CAAC,QAAQ,SAAS,OAAO,IAAI;IAChD,SAAS,EAAE;QACT,aAAa,EAAE,QAAQ,SAAS,IAAI,GAChC,WAAW,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,GAAG,SAAS,GAC7C,WAAW,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC;KACvC,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,WAAW,GAAI,QAAQ,SAAS,OAAO,GAAG,KAAK,EAAE,UAAU;IACtE,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,gBAAgB,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAczC,CAAC"}
|
|
1
|
+
{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/middleware/auth.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AAE7D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AACjD,OAAO,KAAK,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE5D,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,UAAU,CAAC;IACjB,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,UAAU,CAAC;IACjB,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,uBAAuB;IACtC,IAAI,EAAE,UAAU,CAAC;CAClB;AAED,KAAK,eAAe,CAAC,QAAQ,SAAS,OAAO,IAAI;IAC/C,SAAS,EAAE;QACT,YAAY,EAAE,QAAQ,SAAS,IAAI,GAC/B,YAAY,GAAG,SAAS,GACxB,YAAY,CAAC;KAClB,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,UAAU,GAAI,QAAQ,SAAS,OAAO,GAAG,KAAK,EAAE,UAAU;IACrE,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,eAAe,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAgCxC,CAAC;AAEL,eAAO,MAAM,YAAY;eAEV,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,eAAe,CAAC,KAAK,CAAC,CAAC,WAAW,CAAC;wBA2BrC,CAAC;AAEL,KAAK,yBAAyB,CAAC,QAAQ,SAAS,OAAO,IAAI;IACzD,SAAS,EAAE;QACT,sBAAsB,EAAE,QAAQ,SAAS,IAAI,GACzC,kBAAkB,GAAG,SAAS,GAC9B,kBAAkB,CAAC;KACxB,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,oBAAoB,GAC/B,QAAQ,SAAS,OAAO,GAAG,KAAK,EAChC,UAAU;IACV,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,yBAAyB,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAgClD,CAAC;AAEL,KAAK,8BAA8B,CAAC,QAAQ,SAAS,OAAO,IAAI;IAC9D,SAAS,EAAE;QACT,2BAA2B,EAAE,QAAQ,SAAS,IAAI,GAC9C,uBAAuB,GAAG,SAAS,GACnC,uBAAuB,CAAC;KAC7B,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,yBAAyB,GACpC,QAAQ,SAAS,OAAO,GAAG,KAAK,EAChC,UAAU;IACV,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,WAAW,CAAC,WAAW,CAAC,GACxB,8BAA8B,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBA6BvD,CAAC;AAEL,KAAK,2BAA2B,GAAG;IACjC,SAAS,EAAE;QACT,wBAAwB,EAAE,MAAM,CAAC;KAClC,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,sBAAsB;eAEpB,UAAU,CAAC,WAAW,CAAC,GAChC,2BAA2B,CAAC,WAAW,CAAC;wBAU1C,CAAC;AAEL,KAAK,gBAAgB,CAAC,QAAQ,SAAS,OAAO,IAAI;IAChD,SAAS,EAAE;QACT,aAAa,EAAE,QAAQ,SAAS,IAAI,GAChC,WAAW,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,GAAG,SAAS,GAC7C,WAAW,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC;KACvC,CAAC;CACH,CAAC;AAEF,eAAO,MAAM,WAAW,GAAI,QAAQ,SAAS,OAAO,GAAG,KAAK,EAAE,UAAU;IACtE,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB;eAEc,UAAU,CAAC,WAAW,CAAC,GAChC,gBAAgB,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC;wBAczC,CAAC"}
|
package/dist/middleware/auth.js
CHANGED
|
@@ -33,6 +33,32 @@ export const verifyAuth = (options) => createMiddleware(async (c, next) => {
|
|
|
33
33
|
}
|
|
34
34
|
await next();
|
|
35
35
|
});
|
|
36
|
+
export const requireAdmin = () => createMiddleware(async (c, next) => {
|
|
37
|
+
const services = c.var.services;
|
|
38
|
+
const sessionHelper = c.var.session;
|
|
39
|
+
const session = sessionHelper.get('user');
|
|
40
|
+
if (!session) {
|
|
41
|
+
throw new e.Unauthorized.Error();
|
|
42
|
+
}
|
|
43
|
+
try {
|
|
44
|
+
const userEntity = await services.mikro.user.findBySub(session.sub);
|
|
45
|
+
if (userEntity.role !== 'admin') {
|
|
46
|
+
throw new e.Forbidden.Error();
|
|
47
|
+
}
|
|
48
|
+
c.set('verifiedUser', {
|
|
49
|
+
user: userEntity,
|
|
50
|
+
authenticatedAt: session.authenticated_at,
|
|
51
|
+
});
|
|
52
|
+
}
|
|
53
|
+
catch (err) {
|
|
54
|
+
if (err instanceof TinyAuthError && err.code === 'USER_NOT_FOUND') {
|
|
55
|
+
sessionHelper.clearAuthSessions();
|
|
56
|
+
throw new e.Unauthorized.Error();
|
|
57
|
+
}
|
|
58
|
+
throw err;
|
|
59
|
+
}
|
|
60
|
+
await next();
|
|
61
|
+
});
|
|
36
62
|
export const verifyPending2FAUser = (options) => createMiddleware(async (c, next) => {
|
|
37
63
|
const services = c.var.services;
|
|
38
64
|
const sessionHelper = c.var.session;
|