@tinyrack/tinyauth-server 0.5.1 → 0.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (362) hide show
  1. package/dist/entities/oauth-client.entity.d.ts +27 -0
  2. package/dist/entities/oauth-client.entity.d.ts.map +1 -1
  3. package/dist/entities/oauth-code.entity.d.ts +27 -0
  4. package/dist/entities/oauth-code.entity.d.ts.map +1 -1
  5. package/dist/entities/oauth-device-code.entity.d.ts +27 -0
  6. package/dist/entities/oauth-device-code.entity.d.ts.map +1 -1
  7. package/dist/entities/oauth-device-code.entity.js +12 -0
  8. package/dist/entities/oauth-device-code.entity.js.map +1 -1
  9. package/dist/entities/revoked-token.entity.d.ts +27 -0
  10. package/dist/entities/revoked-token.entity.d.ts.map +1 -1
  11. package/dist/entities/user-consent.entity.d.ts +27 -0
  12. package/dist/entities/user-consent.entity.d.ts.map +1 -1
  13. package/dist/entrypoints/app.d.ts +325 -16
  14. package/dist/entrypoints/app.d.ts.map +1 -1
  15. package/dist/entrypoints/app.js +33 -7
  16. package/dist/entrypoints/app.js.map +1 -1
  17. package/dist/entrypoints/database/postgres/compiled-functions.d.ts +16 -7
  18. package/dist/entrypoints/database/postgres/compiled-functions.d.ts.map +1 -1
  19. package/dist/entrypoints/database/postgres/compiled-functions.js +183 -39
  20. package/dist/entrypoints/database/postgres/compiled-functions.js.map +1 -1
  21. package/dist/entrypoints/database/sqlite/compiled-functions.d.ts +16 -7
  22. package/dist/entrypoints/database/sqlite/compiled-functions.d.ts.map +1 -1
  23. package/dist/entrypoints/database/sqlite/compiled-functions.js +183 -39
  24. package/dist/entrypoints/database/sqlite/compiled-functions.js.map +1 -1
  25. package/dist/lib/config/admin.d.ts +9 -0
  26. package/dist/lib/config/admin.d.ts.map +1 -0
  27. package/dist/lib/config/admin.js +13 -0
  28. package/dist/lib/config/admin.js.map +1 -0
  29. package/dist/lib/config/auth.d.ts +85 -0
  30. package/dist/lib/config/auth.d.ts.map +1 -1
  31. package/dist/lib/config/auth.js +61 -0
  32. package/dist/lib/config/auth.js.map +1 -1
  33. package/dist/lib/config/client.d.ts +20 -0
  34. package/dist/lib/config/client.d.ts.map +1 -1
  35. package/dist/lib/config/client.js +14 -0
  36. package/dist/lib/config/client.js.map +1 -1
  37. package/dist/lib/config/index.d.ts +2 -0
  38. package/dist/lib/config/index.d.ts.map +1 -1
  39. package/dist/lib/config/index.js +1 -0
  40. package/dist/lib/config/index.js.map +1 -1
  41. package/dist/lib/config/resolved.d.ts +40 -0
  42. package/dist/lib/config/resolved.d.ts.map +1 -1
  43. package/dist/lib/config/resolved.js +2 -0
  44. package/dist/lib/config/resolved.js.map +1 -1
  45. package/dist/lib/config/server.d.ts.map +1 -1
  46. package/dist/lib/config/server.js +12 -0
  47. package/dist/lib/config/server.js.map +1 -1
  48. package/dist/lib/swagger-tags.d.ts +1 -0
  49. package/dist/lib/swagger-tags.d.ts.map +1 -1
  50. package/dist/lib/swagger-tags.js +1 -0
  51. package/dist/lib/swagger-tags.js.map +1 -1
  52. package/dist/middleware/auth.d.ts +3 -0
  53. package/dist/middleware/auth.d.ts.map +1 -1
  54. package/dist/middleware/auth.js +26 -0
  55. package/dist/middleware/auth.js.map +1 -1
  56. package/dist/middleware/session.d.ts +33 -1
  57. package/dist/middleware/session.d.ts.map +1 -1
  58. package/dist/middleware/session.js +84 -3
  59. package/dist/middleware/session.js.map +1 -1
  60. package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.d.ts +6 -0
  61. package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.d.ts.map +1 -0
  62. package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.js +11 -0
  63. package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.js.map +1 -0
  64. package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.d.ts +6 -0
  65. package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.d.ts.map +1 -0
  66. package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.js +14 -0
  67. package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.js.map +1 -0
  68. package/dist/migrations/postgres/index.d.ts.map +1 -1
  69. package/dist/migrations/postgres/index.js +4 -0
  70. package/dist/migrations/postgres/index.js.map +1 -1
  71. package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.d.ts +6 -0
  72. package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.d.ts.map +1 -0
  73. package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.js +10 -0
  74. package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.js.map +1 -0
  75. package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.d.ts +6 -0
  76. package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.d.ts.map +1 -0
  77. package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.js +12 -0
  78. package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.js.map +1 -0
  79. package/dist/migrations/sqlite/index.d.ts.map +1 -1
  80. package/dist/migrations/sqlite/index.js +4 -0
  81. package/dist/migrations/sqlite/index.js.map +1 -1
  82. package/dist/repositories/oauth-device-code.repository.d.ts +4 -0
  83. package/dist/repositories/oauth-device-code.repository.d.ts.map +1 -1
  84. package/dist/repositories/oauth-device-code.repository.js +19 -0
  85. package/dist/repositories/oauth-device-code.repository.js.map +1 -1
  86. package/dist/repositories/user.repository.d.ts +4 -2
  87. package/dist/repositories/user.repository.d.ts.map +1 -1
  88. package/dist/repositories/user.repository.js +11 -7
  89. package/dist/repositories/user.repository.js.map +1 -1
  90. package/dist/routes/.well-known/openid-configuration/get.d.ts.map +1 -1
  91. package/dist/routes/.well-known/openid-configuration/get.js +4 -0
  92. package/dist/routes/.well-known/openid-configuration/get.js.map +1 -1
  93. package/dist/routes/api/admin/index.d.ts +185 -0
  94. package/dist/routes/api/admin/index.d.ts.map +1 -0
  95. package/dist/routes/api/admin/index.js +13 -0
  96. package/dist/routes/api/admin/index.js.map +1 -0
  97. package/dist/routes/api/admin/me/get.d.ts +26 -0
  98. package/dist/routes/api/admin/me/get.d.ts.map +1 -0
  99. package/dist/routes/api/admin/me/get.js +29 -0
  100. package/dist/routes/api/admin/me/get.js.map +1 -0
  101. package/dist/routes/api/admin/users/index.d.ts +162 -0
  102. package/dist/routes/api/admin/users/index.d.ts.map +1 -0
  103. package/dist/routes/api/admin/users/index.js +166 -0
  104. package/dist/routes/api/admin/users/index.js.map +1 -0
  105. package/dist/routes/api/auth/accounts/get.d.ts +28 -0
  106. package/dist/routes/api/auth/accounts/get.d.ts.map +1 -0
  107. package/dist/routes/api/auth/accounts/get.js +47 -0
  108. package/dist/routes/api/auth/accounts/get.js.map +1 -0
  109. package/dist/routes/api/auth/accounts/remove.post.d.ts +30 -0
  110. package/dist/routes/api/auth/accounts/remove.post.d.ts.map +1 -0
  111. package/dist/routes/api/auth/accounts/remove.post.js +30 -0
  112. package/dist/routes/api/auth/accounts/remove.post.js.map +1 -0
  113. package/dist/routes/api/auth/accounts/select.post.d.ts +31 -0
  114. package/dist/routes/api/auth/accounts/select.post.d.ts.map +1 -0
  115. package/dist/routes/api/auth/accounts/select.post.js +26 -0
  116. package/dist/routes/api/auth/accounts/select.post.js.map +1 -0
  117. package/dist/routes/api/auth/email/verify/post.d.ts +1 -0
  118. package/dist/routes/api/auth/email/verify/post.d.ts.map +1 -1
  119. package/dist/routes/api/auth/index.d.ts +86 -0
  120. package/dist/routes/api/auth/index.d.ts.map +1 -1
  121. package/dist/routes/api/auth/index.js +6 -0
  122. package/dist/routes/api/auth/index.js.map +1 -1
  123. package/dist/routes/api/auth/login/post.d.ts +1 -0
  124. package/dist/routes/api/auth/login/post.d.ts.map +1 -1
  125. package/dist/routes/api/auth/login/post.js +15 -16
  126. package/dist/routes/api/auth/login/post.js.map +1 -1
  127. package/dist/routes/api/auth/passkey/verify/post.d.ts +1 -0
  128. package/dist/routes/api/auth/passkey/verify/post.d.ts.map +1 -1
  129. package/dist/routes/api/auth/register/post.d.ts +1 -0
  130. package/dist/routes/api/auth/register/post.d.ts.map +1 -1
  131. package/dist/routes/api/auth/totp/recovery/verify/post.d.ts +1 -0
  132. package/dist/routes/api/auth/totp/recovery/verify/post.d.ts.map +1 -1
  133. package/dist/routes/api/auth/totp/verify/post.d.ts +1 -0
  134. package/dist/routes/api/auth/totp/verify/post.d.ts.map +1 -1
  135. package/dist/routes/api/config/get.d.ts +3 -0
  136. package/dist/routes/api/config/get.d.ts.map +1 -1
  137. package/dist/routes/api/config/get.js +7 -1
  138. package/dist/routes/api/config/get.js.map +1 -1
  139. package/dist/routes/api/config/index.d.ts +3 -0
  140. package/dist/routes/api/config/index.d.ts.map +1 -1
  141. package/dist/routes/api/consent/index.d.ts +10 -0
  142. package/dist/routes/api/consent/index.d.ts.map +1 -1
  143. package/dist/routes/api/consent/post.d.ts +10 -0
  144. package/dist/routes/api/consent/post.d.ts.map +1 -1
  145. package/dist/routes/api/consent/post.js +52 -1
  146. package/dist/routes/api/consent/post.js.map +1 -1
  147. package/dist/routes/api/index.d.ts +310 -26
  148. package/dist/routes/api/index.d.ts.map +1 -1
  149. package/dist/routes/api/index.js +2 -0
  150. package/dist/routes/api/index.js.map +1 -1
  151. package/dist/routes/api/user/index.d.ts +3 -0
  152. package/dist/routes/api/user/index.d.ts.map +1 -1
  153. package/dist/routes/api/user/passkeys/register/verify/post.d.ts +1 -0
  154. package/dist/routes/api/user/passkeys/register/verify/post.d.ts.map +1 -1
  155. package/dist/routes/api/user/session/get.d.ts +1 -0
  156. package/dist/routes/api/user/session/get.d.ts.map +1 -1
  157. package/dist/routes/api/user/totp/confirm/post.d.ts +1 -0
  158. package/dist/routes/api/user/totp/confirm/post.d.ts.map +1 -1
  159. package/dist/routes/index.d.ts +303 -16
  160. package/dist/routes/index.d.ts.map +1 -1
  161. package/dist/routes/oauth/.well-known/openid-configuration/get.d.ts.map +1 -1
  162. package/dist/routes/oauth/.well-known/openid-configuration/get.js +1 -0
  163. package/dist/routes/oauth/.well-known/openid-configuration/get.js.map +1 -1
  164. package/dist/routes/oauth/authorize/get.d.ts +2 -0
  165. package/dist/routes/oauth/authorize/get.d.ts.map +1 -1
  166. package/dist/routes/oauth/authorize/get.js +12 -1
  167. package/dist/routes/oauth/authorize/get.js.map +1 -1
  168. package/dist/routes/oauth/client-auth.js +1 -1
  169. package/dist/routes/oauth/client-auth.js.map +1 -1
  170. package/dist/routes/oauth/cors.d.ts.map +1 -1
  171. package/dist/routes/oauth/cors.js +8 -3
  172. package/dist/routes/oauth/cors.js.map +1 -1
  173. package/dist/routes/oauth/device/get-post.d.ts +2 -1
  174. package/dist/routes/oauth/device/get-post.d.ts.map +1 -1
  175. package/dist/routes/oauth/device/get-post.js +15 -9
  176. package/dist/routes/oauth/device/get-post.js.map +1 -1
  177. package/dist/routes/oauth/device-authorization/post.d.ts.map +1 -1
  178. package/dist/routes/oauth/device-authorization/post.js +2 -0
  179. package/dist/routes/oauth/device-authorization/post.js.map +1 -1
  180. package/dist/routes/oauth/end-session/get.d.ts.map +1 -1
  181. package/dist/routes/oauth/end-session/get.js +17 -8
  182. package/dist/routes/oauth/end-session/get.js.map +1 -1
  183. package/dist/routes/oauth/index.d.ts +5 -2
  184. package/dist/routes/oauth/index.d.ts.map +1 -1
  185. package/dist/routes/oauth/revoke/post.d.ts.map +1 -1
  186. package/dist/routes/oauth/revoke/post.js +2 -0
  187. package/dist/routes/oauth/revoke/post.js.map +1 -1
  188. package/dist/routes/oauth/token/post.d.ts +1 -1
  189. package/dist/routes/oauth/token/post.d.ts.map +1 -1
  190. package/dist/routes/oauth/token/post.js +10 -6
  191. package/dist/routes/oauth/token/post.js.map +1 -1
  192. package/dist/routes/oauth/userinfo/get.d.ts.map +1 -1
  193. package/dist/routes/oauth/userinfo/get.js +12 -6
  194. package/dist/routes/oauth/userinfo/get.js.map +1 -1
  195. package/dist/schemas/error.d.ts +56 -6
  196. package/dist/schemas/error.d.ts.map +1 -1
  197. package/dist/schemas/error.js +4 -2
  198. package/dist/schemas/error.js.map +1 -1
  199. package/dist/schemas/field.d.ts +1 -4
  200. package/dist/schemas/field.d.ts.map +1 -1
  201. package/dist/schemas/field.js +3 -1
  202. package/dist/schemas/field.js.map +1 -1
  203. package/dist/schemas/response.d.ts +96 -0
  204. package/dist/schemas/response.d.ts.map +1 -1
  205. package/dist/schemas/response.js +29 -0
  206. package/dist/schemas/response.js.map +1 -1
  207. package/dist/services/account-selection.service.d.ts +39 -0
  208. package/dist/services/account-selection.service.d.ts.map +1 -0
  209. package/dist/services/account-selection.service.js +77 -0
  210. package/dist/services/account-selection.service.js.map +1 -0
  211. package/dist/services/container.d.ts +22 -0
  212. package/dist/services/container.d.ts.map +1 -1
  213. package/dist/services/jwt.service.js +3 -3
  214. package/dist/services/jwt.service.js.map +1 -1
  215. package/dist/services/oauth-authorize.service.d.ts +24 -1
  216. package/dist/services/oauth-authorize.service.d.ts.map +1 -1
  217. package/dist/services/oauth-authorize.service.js +232 -8
  218. package/dist/services/oauth-authorize.service.js.map +1 -1
  219. package/dist/services/oauth-token.service.d.ts +2 -3
  220. package/dist/services/oauth-token.service.d.ts.map +1 -1
  221. package/dist/services/oauth-token.service.js +18 -10
  222. package/dist/services/oauth-token.service.js.map +1 -1
  223. package/dist/services/user.service.d.ts +28 -1
  224. package/dist/services/user.service.d.ts.map +1 -1
  225. package/dist/services/user.service.js +104 -0
  226. package/dist/services/user.service.js.map +1 -1
  227. package/package.json +1 -1
  228. package/public/assets/2fa-BoyBKrjD.js +2 -0
  229. package/public/assets/2fa-BoyBKrjD.js.map +1 -0
  230. package/public/assets/2fa-DfWvDjDW.js +2 -0
  231. package/public/assets/2fa-DfWvDjDW.js.map +1 -0
  232. package/public/assets/2fa-IkQlgUP0.js +2 -0
  233. package/public/assets/2fa-IkQlgUP0.js.map +1 -0
  234. package/public/assets/2fa-SSKfXB7c.js +2 -0
  235. package/public/assets/2fa-SSKfXB7c.js.map +1 -0
  236. package/public/assets/CheckCircle.es-MnJIACCe.js +2 -0
  237. package/public/assets/CheckCircle.es-MnJIACCe.js.map +1 -0
  238. package/public/assets/EnvelopeSimple.es-BZ7u3LYh.js +2 -0
  239. package/public/assets/EnvelopeSimple.es-BZ7u3LYh.js.map +1 -0
  240. package/public/assets/Fingerprint.es-CW755VWD.js +2 -0
  241. package/public/assets/Fingerprint.es-CW755VWD.js.map +1 -0
  242. package/public/assets/IconBase.es-d5KP98Ac.js +2 -0
  243. package/public/assets/IconBase.es-d5KP98Ac.js.map +1 -0
  244. package/public/assets/Key.es-l5aSxw0I.js +2 -0
  245. package/public/assets/Key.es-l5aSxw0I.js.map +1 -0
  246. package/public/assets/Link.es-B-IJS4Q5.js +2 -0
  247. package/public/assets/Link.es-B-IJS4Q5.js.map +1 -0
  248. package/public/assets/Lock.es-Cb_uwQly.js +2 -0
  249. package/public/assets/Lock.es-Cb_uwQly.js.map +1 -0
  250. package/public/assets/ShieldCheck.es-CscPsYbC.js +2 -0
  251. package/public/assets/ShieldCheck.es-CscPsYbC.js.map +1 -0
  252. package/public/assets/Trash.es-BepW9BwV.js +2 -0
  253. package/public/assets/Trash.es-BepW9BwV.js.map +1 -0
  254. package/public/assets/Warning.es-BPpZIJYZ.js +2 -0
  255. package/public/assets/Warning.es-BPpZIJYZ.js.map +1 -0
  256. package/public/assets/X.es-IwdB4hWT.js +2 -0
  257. package/public/assets/X.es-IwdB4hWT.js.map +1 -0
  258. package/public/assets/admin-D2CMlWzS.js +2 -0
  259. package/public/assets/admin-D2CMlWzS.js.map +1 -0
  260. package/public/assets/admin-users-CTAQJl7w.js +2 -0
  261. package/public/assets/admin-users-CTAQJl7w.js.map +1 -0
  262. package/public/assets/alert-CSXqgDVi.js +2 -0
  263. package/public/assets/alert-CSXqgDVi.js.map +1 -0
  264. package/public/assets/consent-C5Qo0iLd.js +2 -0
  265. package/public/assets/consent-C5Qo0iLd.js.map +1 -0
  266. package/public/assets/consent-DwuWkp63.js +2 -0
  267. package/public/assets/consent-DwuWkp63.js.map +1 -0
  268. package/public/assets/email-CIttZRBe.js +2 -0
  269. package/public/assets/email-CIttZRBe.js.map +1 -0
  270. package/public/assets/email-SSKfXB7c.js +2 -0
  271. package/public/assets/email-SSKfXB7c.js.map +1 -0
  272. package/public/assets/error-D60wkdWN.js +2 -0
  273. package/public/assets/error-D60wkdWN.js.map +1 -0
  274. package/public/assets/footer-link-Ib1Hd-fr.js +2 -0
  275. package/public/assets/footer-link-Ib1Hd-fr.js.map +1 -0
  276. package/public/assets/forgot-SSKfXB7c.js +2 -0
  277. package/public/assets/forgot-SSKfXB7c.js.map +1 -0
  278. package/public/assets/forgot-x-UDyHXT.js +2 -0
  279. package/public/assets/forgot-x-UDyHXT.js.map +1 -0
  280. package/public/assets/icon-input-8iU7PNzd.js +2 -0
  281. package/public/assets/icon-input-8iU7PNzd.js.map +1 -0
  282. package/public/assets/index-CsT6OVnP.js +11 -0
  283. package/public/assets/index-CsT6OVnP.js.map +1 -0
  284. package/public/assets/index-D6-1JDnX.css +2 -0
  285. package/public/assets/login-DhbnCudI.js +2 -0
  286. package/public/assets/login-DhbnCudI.js.map +1 -0
  287. package/public/assets/login-SSKfXB7c.js +2 -0
  288. package/public/assets/login-SSKfXB7c.js.map +1 -0
  289. package/public/assets/modal-BjnpKlXn.js +2 -0
  290. package/public/assets/modal-BjnpKlXn.js.map +1 -0
  291. package/public/assets/mutationOptions-Dfvzj6n2.js +2 -0
  292. package/public/assets/mutationOptions-Dfvzj6n2.js.map +1 -0
  293. package/public/assets/page-header-BYMFSGfT.js +2 -0
  294. package/public/assets/page-header-BYMFSGfT.js.map +1 -0
  295. package/public/assets/page-layout-C475gs09.js +2 -0
  296. package/public/assets/page-layout-C475gs09.js.map +1 -0
  297. package/public/assets/passkey-BdISbWr7.js +2 -0
  298. package/public/assets/passkey-BdISbWr7.js.map +1 -0
  299. package/public/assets/passkey-Bv7zPLAZ.js +2 -0
  300. package/public/assets/passkey-Bv7zPLAZ.js.map +1 -0
  301. package/public/assets/passkey-e6uvApHa.js +2 -0
  302. package/public/assets/passkey-e6uvApHa.js.map +1 -0
  303. package/public/assets/password-CkeV4qxb.js +2 -0
  304. package/public/assets/password-CkeV4qxb.js.map +1 -0
  305. package/public/assets/password-SSKfXB7c.js +2 -0
  306. package/public/assets/password-SSKfXB7c.js.map +1 -0
  307. package/public/assets/password-reset-XZJTgJi3.js +2 -0
  308. package/public/assets/password-reset-XZJTgJi3.js.map +1 -0
  309. package/public/assets/pin-input-BM1UizHr.js +2 -0
  310. package/public/assets/pin-input-BM1UizHr.js.map +1 -0
  311. package/public/assets/profile-D2cuVYgE.js +2 -0
  312. package/public/assets/profile-D2cuVYgE.js.map +1 -0
  313. package/public/assets/profile-TKdT20x5.js +2 -0
  314. package/public/assets/profile-TKdT20x5.js.map +1 -0
  315. package/public/assets/promise-OpBtq8tG.js +2 -0
  316. package/public/assets/promise-OpBtq8tG.js.map +1 -0
  317. package/public/assets/recovery-DM8h2gbb.js +2 -0
  318. package/public/assets/recovery-DM8h2gbb.js.map +1 -0
  319. package/public/assets/register-SSKfXB7c.js +2 -0
  320. package/public/assets/register-SSKfXB7c.js.map +1 -0
  321. package/public/assets/register-vWW_43cD.js +2 -0
  322. package/public/assets/register-vWW_43cD.js.map +1 -0
  323. package/public/assets/reset-CgACYrdp.js +2 -0
  324. package/public/assets/reset-CgACYrdp.js.map +1 -0
  325. package/public/assets/reset-SSKfXB7c.js +2 -0
  326. package/public/assets/reset-SSKfXB7c.js.map +1 -0
  327. package/public/assets/routes-CAIeH5mq.js +2 -0
  328. package/public/assets/routes-CAIeH5mq.js.map +1 -0
  329. package/public/assets/select-BCP5fwfB.js +2 -0
  330. package/public/assets/select-BCP5fwfB.js.map +1 -0
  331. package/public/assets/select-SSKfXB7c.js +2 -0
  332. package/public/assets/select-SSKfXB7c.js.map +1 -0
  333. package/public/assets/standard-schema-o4V-s4uY.js +2 -0
  334. package/public/assets/standard-schema-o4V-s4uY.js.map +1 -0
  335. package/public/assets/submit-button-Xx6DwLyh.js +2 -0
  336. package/public/assets/submit-button-Xx6DwLyh.js.map +1 -0
  337. package/public/assets/terms-DPWrbYY2.js +2 -0
  338. package/public/assets/terms-DPWrbYY2.js.map +1 -0
  339. package/public/assets/terms-TKdT20x5.js +2 -0
  340. package/public/assets/terms-TKdT20x5.js.map +1 -0
  341. package/public/assets/terms-checkbox-list-CdrbHxiF.js +2 -0
  342. package/public/assets/terms-checkbox-list-CdrbHxiF.js.map +1 -0
  343. package/public/assets/totp-CKZ6N1NS.js +2 -0
  344. package/public/assets/totp-CKZ6N1NS.js.map +1 -0
  345. package/public/assets/totp-D-PVOsGQ.js +2 -0
  346. package/public/assets/totp-D-PVOsGQ.js.map +1 -0
  347. package/public/assets/totp-NlqqRp4a.js +2 -0
  348. package/public/assets/totp-NlqqRp4a.js.map +1 -0
  349. package/public/assets/use-theme-cVUDAjtt.js +2 -0
  350. package/public/assets/use-theme-cVUDAjtt.js.map +1 -0
  351. package/public/assets/use-totp-setup-BH75uEbE.js +3 -0
  352. package/public/assets/use-totp-setup-BH75uEbE.js.map +1 -0
  353. package/public/assets/useMutation-DVMopbtG.js +2 -0
  354. package/public/assets/useMutation-DVMopbtG.js.map +1 -0
  355. package/public/assets/users-B7ofdp72.js +2 -0
  356. package/public/assets/users-B7ofdp72.js.map +1 -0
  357. package/public/assets/zod-BItJDQBQ.js +66 -0
  358. package/public/assets/zod-BItJDQBQ.js.map +1 -0
  359. package/public/index.html +6 -2
  360. package/public/assets/index-5_9rzim1.css +0 -2
  361. package/public/assets/index-BTGeW26-.js +0 -75
  362. package/public/assets/index-BTGeW26-.js.map +0 -1
package/dist/middleware/auth.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"auth.js","sourceRoot":"","sources":["../../src/middleware/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAEhD,OAAO,EAAE,CAAC,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AA0BvD,MAAM,CAAC,MAAM,UAAU,GAAG,CAAmC,OAE5D,EAAE,EAAE,CACH,gBAAgB,CAIb,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACnB,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC;IAChC,MAAM,aAAa,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;IACpC,MAAM,OAAO,GAAG,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IAC1C,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;YACtB,CAAC,CAAC,GAAG,CAAC,cAAc,EAAE,SAAkB,CAAC,CAAC;YAC1C,MAAM,IAAI,EAAE,CAAC;YACb,OAAO;QACT,CAAC;QACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;IACnC,CAAC;IACD,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACpE,CAAC,CAAC,GAAG,CAAC,cAAc,EAAE;YACpB,IAAI,EAAE,UAAU;YAChB,eAAe,EAAE,OAAO,CAAC,gBAAgB;SAC1C,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,aAAa,IAAI,GAAG,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAClE,aAAa,CAAC,iBAAiB,EAAE,CAAC;YAClC,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;gBACtB,CAAC,CAAC,GAAG,CAAC,cAAc,EAAE,SAAkB,CAAC,CAAC;gBAC1C,MAAM,IAAI,EAAE,CAAC;gBACb,OAAO;YACT,CAAC;YACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QACnC,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IACD,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,CAAC;AAUL,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAElC,OAED,EAAE,EAAE,CACH,gBAAgB,CAIb,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACnB,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC;IAChC,MAAM,aAAa,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;IACpC,MAAM,OAAO,GAAG,aAAa,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;IACpD,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;YACtB,CAAC,CAAC,GAAG,CAAC,wBAAwB,EAAE,SAAkB,CAAC,CAAC;YACpD,MAAM,IAAI,EAAE,CAAC;YACb,OAAO;QACT,CAAC;QACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;IACnC,CAAC;IACD,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACpE,CAAC,CAAC,GAAG,CAAC,wBAAwB,EAAE;YAC9B,IAAI,EAAE,UAAU;YAChB,eAAe,EAAE,OAAO,CAAC,gBAAgB;SAC1C,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,aAAa,IAAI,GAAG,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAClE,aAAa,CAAC,iBAAiB,EAAE,CAAC;YAClC,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;gBACtB,CAAC,CAAC,GAAG,CAAC,wBAAwB,EAAE,SAAkB,CAAC,CAAC;gBACpD,MAAM,IAAI,EAAE,CAAC;gBACb,OAAO;YACT,CAAC;YACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QACnC,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IACD,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,CAAC;AAUL,MAAM,CAAC,MAAM,yBAAyB,GAAG,CAEvC,OAED,EAAE,EAAE,CACH,gBAAgB,CAIb,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACnB,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC;IAChC,MAAM,aAAa,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;IACpC,MAAM,OAAO,GAAG,aAAa,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC;IACrD,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;YACtB,CAAC,CAAC,GAAG,CAAC,6BAA6B,EAAE,SAAkB,CAAC,CAAC;YACzD,MAAM,IAAI,EAAE,CAAC;YACb,OAAO;QACT,CAAC;QACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;IACnC,CAAC;IACD,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACpE,CAAC,CAAC,GAAG,CAAC,6BAA6B,EAAE,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC;IAC7D,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,aAAa,IAAI,GAAG,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAClE,aAAa,CAAC,iBAAiB,EAAE,CAAC;YAClC,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;gBACtB,CAAC,CAAC,GAAG,CAAC,6BAA6B,EAAE,SAAkB,CAAC,CAAC;gBACzD,MAAM,IAAI,EAAE,CAAC;gBACb,OAAO;YACT,CAAC;YACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QACnC,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IACD,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,CAAC;AAQL,MAAM,CAAC,MAAM,sBAAsB,GAAG,GAAG,EAAE,CACzC,gBAAgB,CAGb,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACnB,MAAM,aAAa,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;IACpC,MAAM,SAAS,GAAG,aAAa,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;IACzD,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,CAAC,CAAC,wBAAwB,CAAC,KAAK,EAAE,CAAC;IAC/C,CAAC;IACD,aAAa,CAAC,GAAG,CAAC,mBAAmB,EAAE,SAAS,CAAC,CAAC;IAClD,CAAC,CAAC,GAAG,CAAC,0BAA0B,EAAE,SAAS,CAAC,CAAC;IAC7C,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,CAAC;AAUL,MAAM,CAAC,MAAM,WAAW,GAAG,CAAmC,OAE7D,EAAE,EAAE,CACH,gBAAgB,CAGb,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACnB,MAAM,aAAa,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;IACpC,MAAM,KAAK,GAAG,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IACzC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;YACtB,CAAC,CAAC,GAAG,CAAC,eAAe,EAAE,SAAkB,CAAC,CAAC;YAC3C,MAAM,IAAI,EAAE,CAAC;YACb,OAAO;QACT,CAAC;QACD,MAAM,IAAI,CAAC,CAAC,mBAAmB,CAAC,KAAK,EAAE,CAAC;IAC1C,CAAC;IACD,CAAC,CAAC,GAAG,CAAC,eAAe,EAAE,KAAK,CAAC,CAAC;IAC9B,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,CAAC"}
1
+ {"version":3,"file":"auth.js","sourceRoot":"","sources":["../../src/middleware/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAEhD,OAAO,EAAE,CAAC,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AA0BvD,MAAM,CAAC,MAAM,UAAU,GAAG,CAAmC,OAE5D,EAAE,EAAE,CACH,gBAAgB,CAIb,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACnB,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC;IAChC,MAAM,aAAa,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;IACpC,MAAM,OAAO,GAAG,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IAC1C,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;YACtB,CAAC,CAAC,GAAG,CAAC,cAAc,EAAE,SAAkB,CAAC,CAAC;YAC1C,MAAM,IAAI,EAAE,CAAC;YACb,OAAO;QACT,CAAC;QACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;IACnC,CAAC;IACD,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACpE,CAAC,CAAC,GAAG,CAAC,cAAc,EAAE;YACpB,IAAI,EAAE,UAAU;YAChB,eAAe,EAAE,OAAO,CAAC,gBAAgB;SAC1C,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,aAAa,IAAI,GAAG,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAClE,aAAa,CAAC,iBAAiB,EAAE,CAAC;YAClC,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;gBACtB,CAAC,CAAC,GAAG,CAAC,cAAc,EAAE,SAAkB,CAAC,CAAC;gBAC1C,MAAM,IAAI,EAAE,CAAC;gBACb,OAAO;YACT,CAAC;YACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QACnC,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IACD,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,CAAC;AAEL,MAAM,CAAC,MAAM,YAAY,GAAG,GAAG,EAAE,CAC/B,gBAAgB,CAIb,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACnB,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC;IAChC,MAAM,aAAa,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;IACpC,MAAM,OAAO,GAAG,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IAC1C,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;IACnC,CAAC;IAED,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACpE,IAAI,UAAU,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;YAChC,MAAM,IAAI,CAAC,CAAC,SAAS,CAAC,KAAK,EAAE,CAAC;QAChC,CAAC;QACD,CAAC,CAAC,GAAG,CAAC,cAAc,EAAE;YACpB,IAAI,EAAE,UAAU;YAChB,eAAe,EAAE,OAAO,CAAC,gBAAgB;SAC1C,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,aAAa,IAAI,GAAG,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAClE,aAAa,CAAC,iBAAiB,EAAE,CAAC;YAClC,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QACnC,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IAED,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,CAAC;AAUL,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAElC,OAED,EAAE,EAAE,CACH,gBAAgB,CAIb,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACnB,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC;IAChC,MAAM,aAAa,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;IACpC,MAAM,OAAO,GAAG,aAAa,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;IACpD,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;YACtB,CAAC,CAAC,GAAG,CAAC,wBAAwB,EAAE,SAAkB,CAAC,CAAC;YACpD,MAAM,IAAI,EAAE,CAAC;YACb,OAAO;QACT,CAAC;QACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;IACnC,CAAC;IACD,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACpE,CAAC,CAAC,GAAG,CAAC,wBAAwB,EAAE;YAC9B,IAAI,EAAE,UAAU;YAChB,eAAe,EAAE,OAAO,CAAC,gBAAgB;SAC1C,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,aAAa,IAAI,GAAG,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAClE,aAAa,CAAC,iBAAiB,EAAE,CAAC;YAClC,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;gBACtB,CAAC,CAAC,GAAG,CAAC,wBAAwB,EAAE,SAAkB,CAAC,CAAC;gBACpD,MAAM,IAAI,EAAE,CAAC;gBACb,OAAO;YACT,CAAC;YACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QACnC,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IACD,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,CAAC;AAUL,MAAM,CAAC,MAAM,yBAAyB,GAAG,CAEvC,OAED,EAAE,EAAE,CACH,gBAAgB,CAIb,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACnB,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC;IAChC,MAAM,aAAa,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;IACpC,MAAM,OAAO,GAAG,aAAa,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC;IACrD,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;YACtB,CAAC,CAAC,GAAG,CAAC,6BAA6B,EAAE,SAAkB,CAAC,CAAC;YACzD,MAAM,IAAI,EAAE,CAAC;YACb,OAAO;QACT,CAAC;QACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;IACnC,CAAC;IACD,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACpE,CAAC,CAAC,GAAG,CAAC,6BAA6B,EAAE,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC;IAC7D,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,aAAa,IAAI,GAAG,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;YAClE,aAAa,CAAC,iBAAiB,EAAE,CAAC;YAClC,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;gBACtB,CAAC,CAAC,GAAG,CAAC,6BAA6B,EAAE,SAAkB,CAAC,CAAC;gBACzD,MAAM,IAAI,EAAE,CAAC;gBACb,OAAO;YACT,CAAC;YACD,MAAM,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QACnC,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IACD,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,CAAC;AAQL,MAAM,CAAC,MAAM,sBAAsB,GAAG,GAAG,EAAE,CACzC,gBAAgB,CAGb,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACnB,MAAM,aAAa,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;IACpC,MAAM,SAAS,GAAG,aAAa,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;IACzD,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,CAAC,CAAC,wBAAwB,CAAC,KAAK,EAAE,CAAC;IAC/C,CAAC;IACD,aAAa,CAAC,GAAG,CAAC,mBAAmB,EAAE,SAAS,CAAC,CAAC;IAClD,CAAC,CAAC,GAAG,CAAC,0BAA0B,EAAE,SAAS,CAAC,CAAC;IAC7C,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,CAAC;AAUL,MAAM,CAAC,MAAM,WAAW,GAAG,CAAmC,OAE7D,EAAE,EAAE,CACH,gBAAgB,CAGb,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACnB,MAAM,aAAa,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;IACpC,MAAM,KAAK,GAAG,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IACzC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,IAAI,OAAO,EAAE,QAAQ,EAAE,CAAC;YACtB,CAAC,CAAC,GAAG,CAAC,eAAe,EAAE,SAAkB,CAAC,CAAC;YAC3C,MAAM,IAAI,EAAE,CAAC;YACb,OAAO;QACT,CAAC;QACD,MAAM,IAAI,CAAC,CAAC,mBAAmB,CAAC,KAAK,EAAE,CAAC;IAC1C,CAAC;IACD,CAAC,CAAC,GAAG,CAAC,eAAe,EAAE,KAAK,CAAC,CAAC;IAC9B,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,CAAC"}
package/dist/middleware/session.d.ts CHANGED
@@ -3,6 +3,24 @@ export type SessionEnv = {
3
3
  session: SessionHelper;
4
4
  };
5
5
  };
6
+ export interface RememberedAccountsOptions {
7
+ enabled?: boolean | undefined;
8
+ maxAccounts?: number | undefined;
9
+ ttlMs?: number | undefined;
10
+ }
11
+ export interface SessionAccount {
12
+ sub: string;
13
+ authenticated_at: number;
14
+ last_used_at: number;
15
+ }
16
+ export interface AccountSelectionSession {
17
+ id: string;
18
+ client_id: string;
19
+ request_fingerprint: string;
20
+ allow_add_account: boolean;
21
+ allowed_subs: string[];
22
+ created_at: number;
23
+ }
6
24
  export interface SessionData {
7
25
  /**
8
26
  * Fully authenticated user session.
@@ -13,6 +31,18 @@ export interface SessionData {
13
31
  sub: string;
14
32
  authenticated_at: number;
15
33
  };
34
+ /**
35
+ * Browser-local remembered authenticated accounts for OIDC account selection.
36
+ * This is stored only in the encrypted session cookie and must never be
37
+ * treated as an authoritative user directory.
38
+ */
39
+ accounts?: SessionAccount[];
40
+ /**
41
+ * Server-side continuation marker for account chooser completion.
42
+ * The public query flag is not trusted unless it matches this encrypted
43
+ * browser-session value.
44
+ */
45
+ accountSelection?: AccountSelectionSession;
16
46
  /**
17
47
  * Intermediate session for users who have passed primary authentication
18
48
  * (e.g., password) but still need to complete 2FA (TOTP) verification.
@@ -55,9 +85,11 @@ export interface SessionHelper {
55
85
  set<K extends keyof SessionData>(key: K, value: SessionData[K]): void;
56
86
  delete(): void;
57
87
  setUserSession(userSub: string, authenticatedAt?: number): void;
88
+ selectUserSession(userSub: string): boolean;
89
+ removeRememberedUserSession(userSub: string): boolean;
58
90
  setPending2FASession(userSub: string, authenticatedAt?: number): void;
59
91
  setPending2FASetupSession(userSub: string): void;
60
92
  clearAuthSessions(): void;
61
93
  }
62
- export declare function sessionMiddleware(cookieSecret: string, isSecure: boolean): import("hono").MiddlewareHandler<SessionEnv, string, {}, Response>;
94
+ export declare function sessionMiddleware(cookieSecret: string, isSecure: boolean, rememberedAccountsOptions?: RememberedAccountsOptions): import("hono").MiddlewareHandler<SessionEnv, string, {}, Response>;
63
95
  //# sourceMappingURL=session.d.ts.map
package/dist/middleware/session.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"session.d.ts","sourceRoot":"","sources":["../../src/middleware/session.ts"],"names":[],"mappings":"AAIA,MAAM,MAAM,UAAU,GAAG;IAAE,SAAS,EAAE;QAAE,OAAO,EAAE,aAAa,CAAA;KAAE,CAAA;CAAE,CAAC;AAEnE,MAAM,WAAW,WAAW;IAC1B;;;;OAIG;IACH,IAAI,CAAC,EAAE;QACL,GAAG,EAAE,MAAM,CAAC;QACZ,gBAAgB,EAAE,MAAM,CAAC;KAC1B,CAAC;IACF;;;;OAIG;IACH,cAAc,CAAC,EAAE;QACf,GAAG,EAAE,MAAM,CAAC;QACZ,gBAAgB,EAAE,MAAM,CAAC;KAC1B,CAAC;IACF;;;;OAIG;IACH,eAAe,CAAC,EAAE;QAChB,GAAG,EAAE,MAAM,CAAC;KACb,CAAC;IACF;;;;;OAKG;IACH,KAAK,CAAC,EAAE;QACN,KAAK,EAAE,MAAM,CAAC;QACd,YAAY,EAAE,MAAM,CAAC;QACrB,UAAU,EAAE,MAAM,CAAC;QACnB,IAAI,EAAE,OAAO,GAAG,UAAU,GAAG,MAAM,CAAC;QACpC,SAAS,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;KAChC,CAAC;IACF;;;;OAIG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC;CAC5B;AAED,MAAM,WAAW,aAAa;IAC5B,GAAG,CAAC,CAAC,SAAS,MAAM,WAAW,EAAE,GAAG,EAAE,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;IACzD,GAAG,CAAC,CAAC,SAAS,MAAM,WAAW,EAAE,GAAG,EAAE,CAAC,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;IACtE,MAAM,IAAI,IAAI,CAAC;IACf,cAAc,CAAC,OAAO,EAAE,MAAM,EAAE,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAChE,oBAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACtE,yBAAyB,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACjD,iBAAiB,IAAI,IAAI,CAAC;CAC3B;AAED,wBAAgB,iBAAiB,CAAC,YAAY,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,sEA4FxE"}
1
+ {"version":3,"file":"session.d.ts","sourceRoot":"","sources":["../../src/middleware/session.ts"],"names":[],"mappings":"AAIA,MAAM,MAAM,UAAU,GAAG;IAAE,SAAS,EAAE;QAAE,OAAO,EAAE,aAAa,CAAA;KAAE,CAAA;CAAE,CAAC;AAInE,MAAM,WAAW,yBAAyB;IACxC,OAAO,CAAC,EAAE,OAAO,GAAG,SAAS,CAAC;IAC9B,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IACjC,KAAK,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;CAC5B;AAqCD,MAAM,WAAW,cAAc;IAC7B,GAAG,EAAE,MAAM,CAAC;IACZ,gBAAgB,EAAE,MAAM,CAAC;IACzB,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,uBAAuB;IACtC,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,mBAAmB,EAAE,MAAM,CAAC;IAC5B,iBAAiB,EAAE,OAAO,CAAC;IAC3B,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,WAAW;IAC1B;;;;OAIG;IACH,IAAI,CAAC,EAAE;QACL,GAAG,EAAE,MAAM,CAAC;QACZ,gBAAgB,EAAE,MAAM,CAAC;KAC1B,CAAC;IACF;;;;OAIG;IACH,QAAQ,CAAC,EAAE,cAAc,EAAE,CAAC;IAC5B;;;;OAIG;IACH,gBAAgB,CAAC,EAAE,uBAAuB,CAAC;IAC3C;;;;OAIG;IACH,cAAc,CAAC,EAAE;QACf,GAAG,EAAE,MAAM,CAAC;QACZ,gBAAgB,EAAE,MAAM,CAAC;KAC1B,CAAC;IACF;;;;OAIG;IACH,eAAe,CAAC,EAAE;QAChB,GAAG,EAAE,MAAM,CAAC;KACb,CAAC;IACF;;;;;OAKG;IACH,KAAK,CAAC,EAAE;QACN,KAAK,EAAE,MAAM,CAAC;QACd,YAAY,EAAE,MAAM,CAAC;QACrB,UAAU,EAAE,MAAM,CAAC;QACnB,IAAI,EAAE,OAAO,GAAG,UAAU,GAAG,MAAM,CAAC;QACpC,SAAS,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;KAChC,CAAC;IACF;;;;OAIG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC;CAC5B;AAED,MAAM,WAAW,aAAa;IAC5B,GAAG,CAAC,CAAC,SAAS,MAAM,WAAW,EAAE,GAAG,EAAE,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;IACzD,GAAG,CAAC,CAAC,SAAS,MAAM,WAAW,EAAE,GAAG,EAAE,CAAC,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;IACtE,MAAM,IAAI,IAAI,CAAC;IACf,cAAc,CAAC,OAAO,EAAE,MAAM,EAAE,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAChE,iBAAiB,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC;IAC5C,2BAA2B,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC;IACtD,oBAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACtE,yBAAyB,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACjD,iBAAiB,IAAI,IAAI,CAAC;CAC3B;AAED,wBAAgB,iBAAiB,CAC/B,YAAY,EAAE,MAAM,EACpB,QAAQ,EAAE,OAAO,EACjB,yBAAyB,CAAC,EAAE,yBAAyB,sEAgLtD"}
package/dist/middleware/session.js CHANGED
@@ -1,7 +1,26 @@
1
1
  import { deleteCookie, getCookie, setCookie } from 'hono/cookie';
2
2
  import { createMiddleware } from 'hono/factory';
3
3
  import { decrypt, encrypt } from "../lib/crypto.js";
4
- export function sessionMiddleware(cookieSecret, isSecure) {
4
+ const DEFAULT_MAX_REMEMBERED_ACCOUNTS = 5;
5
+ function nowSeconds() {
6
+ return Math.floor(Date.now() / 1000);
7
+ }
8
+ function resolveRememberedAccountsOptions(options) {
9
+ return {
10
+ enabled: options?.enabled ?? true,
11
+ maxAccounts: options?.maxAccounts ?? DEFAULT_MAX_REMEMBERED_ACCOUNTS,
12
+ ttlMs: options?.ttlMs,
13
+ };
14
+ }
15
+ function pruneRememberedAccounts(accounts, options) {
16
+ const ttlSeconds = options.ttlMs === undefined ? undefined : Math.floor(options.ttlMs / 1000);
17
+ const freshAccounts = ttlSeconds === undefined
18
+ ? accounts
19
+ : accounts.filter((account) => nowSeconds() - account.last_used_at <= ttlSeconds);
20
+ return freshAccounts.slice(-options.maxAccounts);
21
+ }
22
+ export function sessionMiddleware(cookieSecret, isSecure, rememberedAccountsOptions) {
23
+ const rememberedOptions = resolveRememberedAccountsOptions(rememberedAccountsOptions);
5
24
  return createMiddleware(async (c, next) => {
6
25
  const cookieValue = getCookie(c, 'session');
7
26
  let sessionData = {};
@@ -29,6 +48,17 @@ export function sessionMiddleware(cookieSecret, isSecure) {
29
48
  return Reflect.deleteProperty(target, prop);
30
49
  },
31
50
  });
51
+ if (!rememberedOptions.enabled) {
52
+ if (data.accounts !== undefined) {
53
+ delete data.accounts;
54
+ }
55
+ }
56
+ else if (data.accounts) {
57
+ const prunedAccounts = pruneRememberedAccounts(data.accounts, rememberedOptions);
58
+ if (prunedAccounts.length !== data.accounts.length) {
59
+ data.accounts = prunedAccounts;
60
+ }
61
+ }
32
62
  c.set('session', {
33
63
  get(key) {
34
64
  return data[key];
@@ -42,21 +72,72 @@ export function sessionMiddleware(cookieSecret, isSecure) {
42
72
  }
43
73
  },
44
74
  setUserSession(userSub, authenticatedAt) {
75
+ const authTime = authenticatedAt ?? nowSeconds();
45
76
  delete data.pending2FAUser;
46
77
  delete data.pending2FASetup;
47
78
  delete data.oauth;
48
79
  delete data.passkey_challenge;
49
80
  data.user = {
50
81
  sub: userSub,
51
- authenticated_at: authenticatedAt ?? Math.floor(Date.now() / 1000),
82
+ authenticated_at: authTime,
83
+ };
84
+ if (rememberedOptions.enabled) {
85
+ const existingAccounts = pruneRememberedAccounts(data.accounts ?? [], rememberedOptions);
86
+ data.accounts = [
87
+ ...existingAccounts.filter((account) => account.sub !== userSub),
88
+ {
89
+ sub: userSub,
90
+ authenticated_at: authTime,
91
+ last_used_at: authTime,
92
+ },
93
+ ].slice(-rememberedOptions.maxAccounts);
94
+ }
95
+ else {
96
+ delete data.accounts;
97
+ }
98
+ },
99
+ selectUserSession(userSub) {
100
+ if (!rememberedOptions.enabled) {
101
+ return false;
102
+ }
103
+ const account = pruneRememberedAccounts(data.accounts ?? [], rememberedOptions).find((entry) => entry.sub === userSub);
104
+ if (!account) {
105
+ return false;
106
+ }
107
+ delete data.pending2FAUser;
108
+ delete data.pending2FASetup;
109
+ delete data.oauth;
110
+ delete data.passkey_challenge;
111
+ data.user = {
112
+ sub: account.sub,
113
+ authenticated_at: account.authenticated_at,
52
114
  };
115
+ data.accounts = pruneRememberedAccounts(data.accounts ?? [], rememberedOptions).map((entry) => entry.sub === userSub
116
+ ? { ...entry, last_used_at: nowSeconds() }
117
+ : entry);
118
+ return true;
119
+ },
120
+ removeRememberedUserSession(userSub) {
121
+ if (data.user?.sub === userSub) {
122
+ return false;
123
+ }
124
+ if (!rememberedOptions.enabled) {
125
+ return false;
126
+ }
127
+ const existingAccounts = pruneRememberedAccounts(data.accounts ?? [], rememberedOptions);
128
+ const nextAccounts = existingAccounts.filter((account) => account.sub !== userSub);
129
+ if (nextAccounts.length === existingAccounts.length) {
130
+ return false;
131
+ }
132
+ data.accounts = nextAccounts;
133
+ return true;
53
134
  },
54
135
  setPending2FASession(userSub, authenticatedAt) {
55
136
  delete data.user;
56
137
  delete data.pending2FASetup;
57
138
  data.pending2FAUser = {
58
139
  sub: userSub,
59
- authenticated_at: authenticatedAt ?? Math.floor(Date.now() / 1000),
140
+ authenticated_at: authenticatedAt ?? nowSeconds(),
60
141
  };
61
142
  },
62
143
  setPending2FASetupSession(userSub) {
package/dist/middleware/session.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"session.js","sourceRoot":"","sources":["../../src/middleware/session.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AACjE,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAC;AA8DpD,MAAM,UAAU,iBAAiB,CAAC,YAAoB,EAAE,QAAiB;IACvE,OAAO,gBAAgB,CAAa,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;QACpD,MAAM,WAAW,GAAG,SAAS,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC;QAE5C,IAAI,WAAW,GAAgB,EAAE,CAAC;QAClC,IAAI,WAAW,EAAE,CAAC;YAChB,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,WAAW,EAAE,YAAY,CAAC,CAAC;YAC3D,IAAI,SAAS,EAAE,CAAC;gBACd,IAAI,CAAC;oBACH,iDAAiD;oBACjD,+CAA+C;oBAC/C,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAgB,CAAC;gBACrD,CAAC;gBAAC,MAAM,CAAC;oBACP,WAAW,GAAG,EAAE,CAAC;gBACnB,CAAC;YACH,CAAC;QACH,CAAC;QAED,IAAI,OAAO,GAAG,KAAK,CAAC;QACpB,MAAM,IAAI,GAAgB,IAAI,KAAK,CAAC,WAAW,EAAE;YAC/C,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK;gBACrB,OAAO,GAAG,IAAI,CAAC;gBACf,OAAO,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;YAC1C,CAAC;YACD,cAAc,CAAC,MAAM,EAAE,IAAI;gBACzB,OAAO,GAAG,IAAI,CAAC;gBACf,OAAO,OAAO,CAAC,cAAc,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YAC9C,CAAC;SACF,CAAC,CAAC;QAEH,CAAC,CAAC,GAAG,CAAC,SAAS,EAAE;YACf,GAAG,CAA8B,GAAM;gBACrC,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC;YACnB,CAAC;YACD,GAAG,CAA8B,GAAM,EAAE,KAAqB;gBAC5D,IAAI,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;YACpB,CAAC;YACD,MAAM;gBACJ,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;oBACpC,OAAO,CAAC,cAAc,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;gBACpC,CAAC;YACH,CAAC;YACD,cAAc,CAAC,OAAe,EAAE,eAAwB;gBACtD,OAAO,IAAI,CAAC,cAAc,CAAC;gBAC3B,OAAO,IAAI,CAAC,eAAe,CAAC;gBAC5B,OAAO,IAAI,CAAC,KAAK,CAAC;gBAClB,OAAO,IAAI,CAAC,iBAAiB,CAAC;gBAC9B,IAAI,CAAC,IAAI,GAAG;oBACV,GAAG,EAAE,OAAO;oBACZ,gBAAgB,EAAE,eAAe,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;iBACnE,CAAC;YACJ,CAAC;YACD,oBAAoB,CAAC,OAAe,EAAE,eAAwB;gBAC5D,OAAO,IAAI,CAAC,IAAI,CAAC;gBACjB,OAAO,IAAI,CAAC,eAAe,CAAC;gBAC5B,IAAI,CAAC,cAAc,GAAG;oBACpB,GAAG,EAAE,OAAO;oBACZ,gBAAgB,EAAE,eAAe,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;iBACnE,CAAC;YACJ,CAAC;YACD,yBAAyB,CAAC,OAAe;gBACvC,OAAO,IAAI,CAAC,IAAI,CAAC;gBACjB,OAAO,IAAI,CAAC,cAAc,CAAC;gBAC3B,IAAI,CAAC,eAAe,GAAG,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC;YAC1C,CAAC;YACD,iBAAiB;gBACf,OAAO,IAAI,CAAC,IAAI,CAAC;gBACjB,OAAO,IAAI,CAAC,cAAc,CAAC;gBAC3B,OAAO,IAAI,CAAC,eAAe,CAAC;YAC9B,CAAC;SACF,CAAC,CAAC;QAEH,MAAM,IAAI,EAAE,CAAC;QAEb,IAAI,OAAO,EAAE,CAAC;YACZ,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,SAAS,CAAC,CAAC;YACxE,IAAI,OAAO,EAAE,CAAC;gBACZ,MAAM,SAAS,GAAG,MAAM,OAAO,CAC7B,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,EAC3B,YAAY,CACb,CAAC;gBACF,SAAS,CAAC,CAAC,EAAE,SAAS,EAAE,SAAS,EAAE;oBACjC,IAAI,EAAE,GAAG;oBACT,QAAQ,EAAE,IAAI;oBACd,MAAM,EAAE,QAAQ;oBAChB,QAAQ,EAAE,KAAK;iBAChB,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,YAAY,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC;YAC5C,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC"}
1
+ {"version":3,"file":"session.js","sourceRoot":"","sources":["../../src/middleware/session.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AACjE,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAIpD,MAAM,+BAA+B,GAAG,CAAC,CAAC;AAQ1C,SAAS,UAAU;IACjB,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;AACvC,CAAC;AAQD,SAAS,gCAAgC,CACvC,OAA8C;IAE9C,OAAO;QACL,OAAO,EAAE,OAAO,EAAE,OAAO,IAAI,IAAI;QACjC,WAAW,EAAE,OAAO,EAAE,WAAW,IAAI,+BAA+B;QACpE,KAAK,EAAE,OAAO,EAAE,KAAK;KACtB,CAAC;AACJ,CAAC;AAED,SAAS,uBAAuB,CAC9B,QAA0B,EAC1B,OAA4D;IAE5D,MAAM,UAAU,GACd,OAAO,CAAC,KAAK,KAAK,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,GAAG,IAAI,CAAC,CAAC;IAC7E,MAAM,aAAa,GACjB,UAAU,KAAK,SAAS;QACtB,CAAC,CAAC,QAAQ;QACV,CAAC,CAAC,QAAQ,CAAC,MAAM,CACb,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,EAAE,GAAG,OAAO,CAAC,YAAY,IAAI,UAAU,CAC/D,CAAC;IACR,OAAO,aAAa,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;AACnD,CAAC;AAyFD,MAAM,UAAU,iBAAiB,CAC/B,YAAoB,EACpB,QAAiB,EACjB,yBAAqD;IAErD,MAAM,iBAAiB,GAAG,gCAAgC,CACxD,yBAAyB,CAC1B,CAAC;IACF,OAAO,gBAAgB,CAAa,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;QACpD,MAAM,WAAW,GAAG,SAAS,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC;QAE5C,IAAI,WAAW,GAAgB,EAAE,CAAC;QAClC,IAAI,WAAW,EAAE,CAAC;YAChB,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,WAAW,EAAE,YAAY,CAAC,CAAC;YAC3D,IAAI,SAAS,EAAE,CAAC;gBACd,IAAI,CAAC;oBACH,iDAAiD;oBACjD,+CAA+C;oBAC/C,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAgB,CAAC;gBACrD,CAAC;gBAAC,MAAM,CAAC;oBACP,WAAW,GAAG,EAAE,CAAC;gBACnB,CAAC;YACH,CAAC;QACH,CAAC;QAED,IAAI,OAAO,GAAG,KAAK,CAAC;QACpB,MAAM,IAAI,GAAgB,IAAI,KAAK,CAAC,WAAW,EAAE;YAC/C,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK;gBACrB,OAAO,GAAG,IAAI,CAAC;gBACf,OAAO,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;YAC1C,CAAC;YACD,cAAc,CAAC,MAAM,EAAE,IAAI;gBACzB,OAAO,GAAG,IAAI,CAAC;gBACf,OAAO,OAAO,CAAC,cAAc,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YAC9C,CAAC;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,iBAAiB,CAAC,OAAO,EAAE,CAAC;YAC/B,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;gBAChC,OAAO,IAAI,CAAC,QAAQ,CAAC;YACvB,CAAC;QACH,CAAC;aAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YACzB,MAAM,cAAc,GAAG,uBAAuB,CAC5C,IAAI,CAAC,QAAQ,EACb,iBAAiB,CAClB,CAAC;YACF,IAAI,cAAc,CAAC,MAAM,KAAK,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC;gBACnD,IAAI,CAAC,QAAQ,GAAG,cAAc,CAAC;YACjC,CAAC;QACH,CAAC;QAED,CAAC,CAAC,GAAG,CAAC,SAAS,EAAE;YACf,GAAG,CAA8B,GAAM;gBACrC,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC;YACnB,CAAC;YACD,GAAG,CAA8B,GAAM,EAAE,KAAqB;gBAC5D,IAAI,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;YACpB,CAAC;YACD,MAAM;gBACJ,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;oBACpC,OAAO,CAAC,cAAc,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;gBACpC,CAAC;YACH,CAAC;YACD,cAAc,CAAC,OAAe,EAAE,eAAwB;gBACtD,MAAM,QAAQ,GAAG,eAAe,IAAI,UAAU,EAAE,CAAC;gBACjD,OAAO,IAAI,CAAC,cAAc,CAAC;gBAC3B,OAAO,IAAI,CAAC,eAAe,CAAC;gBAC5B,OAAO,IAAI,CAAC,KAAK,CAAC;gBAClB,OAAO,IAAI,CAAC,iBAAiB,CAAC;gBAC9B,IAAI,CAAC,IAAI,GAAG;oBACV,GAAG,EAAE,OAAO;oBACZ,gBAAgB,EAAE,QAAQ;iBAC3B,CAAC;gBACF,IAAI,iBAAiB,CAAC,OAAO,EAAE,CAAC;oBAC9B,MAAM,gBAAgB,GAAG,uBAAuB,CAC9C,IAAI,CAAC,QAAQ,IAAI,EAAE,EACnB,iBAAiB,CAClB,CAAC;oBACF,IAAI,CAAC,QAAQ,GAAG;wBACd,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,GAAG,KAAK,OAAO,CAAC;wBAChE;4BACE,GAAG,EAAE,OAAO;4BACZ,gBAAgB,EAAE,QAAQ;4BAC1B,YAAY,EAAE,QAAQ;yBACvB;qBACF,CAAC,KAAK,CAAC,CAAC,iBAAiB,CAAC,WAAW,CAAC,CAAC;gBAC1C,CAAC;qBAAM,CAAC;oBACN,OAAO,IAAI,CAAC,QAAQ,CAAC;gBACvB,CAAC;YACH,CAAC;YACD,iBAAiB,CAAC,OAAe;gBAC/B,IAAI,CAAC,iBAAiB,CAAC,OAAO,EAAE,CAAC;oBAC/B,OAAO,KAAK,CAAC;gBACf,CAAC;gBACD,MAAM,OAAO,GAAG,uBAAuB,CACrC,IAAI,CAAC,QAAQ,IAAI,EAAE,EACnB,iBAAiB,CAClB,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,GAAG,KAAK,OAAO,CAAC,CAAC;gBACzC,IAAI,CAAC,OAAO,EAAE,CAAC;oBACb,OAAO,KAAK,CAAC;gBACf,CAAC;gBACD,OAAO,IAAI,CAAC,cAAc,CAAC;gBAC3B,OAAO,IAAI,CAAC,eAAe,CAAC;gBAC5B,OAAO,IAAI,CAAC,KAAK,CAAC;gBAClB,OAAO,IAAI,CAAC,iBAAiB,CAAC;gBAC9B,IAAI,CAAC,IAAI,GAAG;oBACV,GAAG,EAAE,OAAO,CAAC,GAAG;oBAChB,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;iBAC3C,CAAC;gBACF,IAAI,CAAC,QAAQ,GAAG,uBAAuB,CACrC,IAAI,CAAC,QAAQ,IAAI,EAAE,EACnB,iBAAiB,CAClB,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CACd,KAAK,CAAC,GAAG,KAAK,OAAO;oBACnB,CAAC,CAAC,EAAE,GAAG,KAAK,EAAE,YAAY,EAAE,UAAU,EAAE,EAAE;oBAC1C,CAAC,CAAC,KAAK,CACV,CAAC;gBACF,OAAO,IAAI,CAAC;YACd,CAAC;YACD,2BAA2B,CAAC,OAAe;gBACzC,IAAI,IAAI,CAAC,IAAI,EAAE,GAAG,KAAK,OAAO,EAAE,CAAC;oBAC/B,OAAO,KAAK,CAAC;gBACf,CAAC;gBACD,IAAI,CAAC,iBAAiB,CAAC,OAAO,EAAE,CAAC;oBAC/B,OAAO,KAAK,CAAC;gBACf,CAAC;gBACD,MAAM,gBAAgB,GAAG,uBAAuB,CAC9C,IAAI,CAAC,QAAQ,IAAI,EAAE,EACnB,iBAAiB,CAClB,CAAC;gBACF,MAAM,YAAY,GAAG,gBAAgB,CAAC,MAAM,CAC1C,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,GAAG,KAAK,OAAO,CACrC,CAAC;gBACF,IAAI,YAAY,CAAC,MAAM,KAAK,gBAAgB,CAAC,MAAM,EAAE,CAAC;oBACpD,OAAO,KAAK,CAAC;gBACf,CAAC;gBACD,IAAI,CAAC,QAAQ,GAAG,YAAY,CAAC;gBAC7B,OAAO,IAAI,CAAC;YACd,CAAC;YACD,oBAAoB,CAAC,OAAe,EAAE,eAAwB;gBAC5D,OAAO,IAAI,CAAC,IAAI,CAAC;gBACjB,OAAO,IAAI,CAAC,eAAe,CAAC;gBAC5B,IAAI,CAAC,cAAc,GAAG;oBACpB,GAAG,EAAE,OAAO;oBACZ,gBAAgB,EAAE,eAAe,IAAI,UAAU,EAAE;iBAClD,CAAC;YACJ,CAAC;YACD,yBAAyB,CAAC,OAAe;gBACvC,OAAO,IAAI,CAAC,IAAI,CAAC;gBACjB,OAAO,IAAI,CAAC,cAAc,CAAC;gBAC3B,IAAI,CAAC,eAAe,GAAG,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC;YAC1C,CAAC;YACD,iBAAiB;gBACf,OAAO,IAAI,CAAC,IAAI,CAAC;gBACjB,OAAO,IAAI,CAAC,cAAc,CAAC;gBAC3B,OAAO,IAAI,CAAC,eAAe,CAAC;YAC9B,CAAC;SACF,CAAC,CAAC;QAEH,MAAM,IAAI,EAAE,CAAC;QAEb,IAAI,OAAO,EAAE,CAAC;YACZ,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,SAAS,CAAC,CAAC;YACxE,IAAI,OAAO,EAAE,CAAC;gBACZ,MAAM,SAAS,GAAG,MAAM,OAAO,CAC7B,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,EAC3B,YAAY,CACb,CAAC;gBACF,SAAS,CAAC,CAAC,EAAE,SAAS,EAAE,SAAS,EAAE;oBACjC,IAAI,EAAE,GAAG;oBACT,QAAQ,EAAE,IAAI;oBACd,MAAM,EAAE,QAAQ;oBAChB,QAAQ,EAAE,KAAK;iBAChB,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,YAAY,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC;YAC5C,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC"}
package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.d.ts ADDED
@@ -0,0 +1,6 @@
1
+ import { Migration } from '@mikro-orm/migrations';
2
+ export declare class Migration20260624190500_add_oauth_device_denied_at extends Migration {
3
+ up(): void | Promise<void>;
4
+ down(): void | Promise<void>;
5
+ }
6
+ //# sourceMappingURL=Migration20260624190500_add_oauth_device_denied_at.d.ts.map
package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"Migration20260624190500_add_oauth_device_denied_at.d.ts","sourceRoot":"","sources":["../../../src/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD,qBAAa,kDAAmD,SAAQ,SAAS;IACtE,EAAE,IAAI,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAS1B,IAAI,IAAI,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAGtC"}
package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.js ADDED
@@ -0,0 +1,11 @@
1
+ import { Migration } from '@mikro-orm/migrations';
2
+ export class Migration20260624190500_add_oauth_device_denied_at extends Migration {
3
+ up() {
4
+ this.addSql(`alter table "oauth_device_code" add "denied_at" timestamptz null;`);
5
+ this.addSql(`comment on column "oauth_device_code"."denied_at" is 'Timestamp when the user denied the request';`);
6
+ }
7
+ down() {
8
+ this.addSql(`alter table "oauth_device_code" drop column "denied_at";`);
9
+ }
10
+ }
11
+ //# sourceMappingURL=Migration20260624190500_add_oauth_device_denied_at.js.map
package/dist/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"Migration20260624190500_add_oauth_device_denied_at.js","sourceRoot":"","sources":["../../../src/migrations/postgres/Migration20260624190500_add_oauth_device_denied_at.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD,MAAM,OAAO,kDAAmD,SAAQ,SAAS;IACtE,EAAE;QACT,IAAI,CAAC,MAAM,CACT,mEAAmE,CACpE,CAAC;QACF,IAAI,CAAC,MAAM,CACT,oGAAoG,CACrG,CAAC;IACJ,CAAC;IAEQ,IAAI;QACX,IAAI,CAAC,MAAM,CAAC,0DAA0D,CAAC,CAAC;IAC1E,CAAC;CACF"}
package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.d.ts ADDED
@@ -0,0 +1,6 @@
1
+ import { Migration } from '@mikro-orm/migrations';
2
+ export declare class Migration20260624223000_add_oauth_device_poll_state extends Migration {
3
+ up(): void | Promise<void>;
4
+ down(): void | Promise<void>;
5
+ }
6
+ //# sourceMappingURL=Migration20260624223000_add_oauth_device_poll_state.d.ts.map
package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"Migration20260624223000_add_oauth_device_poll_state.d.ts","sourceRoot":"","sources":["../../../src/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD,qBAAa,mDAAoD,SAAQ,SAAS;IACvE,EAAE,IAAI,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAe1B,IAAI,IAAI,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAQtC"}
package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.js ADDED
@@ -0,0 +1,14 @@
1
+ import { Migration } from '@mikro-orm/migrations';
2
+ export class Migration20260624223000_add_oauth_device_poll_state extends Migration {
3
+ up() {
4
+ this.addSql(`alter table "oauth_device_code" add "last_polled_at" timestamptz null;`);
5
+ this.addSql(`alter table "oauth_device_code" add "poll_interval_seconds" int not null default 5;`);
6
+ this.addSql(`comment on column "oauth_device_code"."last_polled_at" is 'Timestamp of the most recent device token polling request';`);
7
+ this.addSql(`comment on column "oauth_device_code"."poll_interval_seconds" is 'Current required polling interval for this device code';`);
8
+ }
9
+ down() {
10
+ this.addSql(`alter table "oauth_device_code" drop column "poll_interval_seconds";`);
11
+ this.addSql(`alter table "oauth_device_code" drop column "last_polled_at";`);
12
+ }
13
+ }
14
+ //# sourceMappingURL=Migration20260624223000_add_oauth_device_poll_state.js.map
package/dist/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"Migration20260624223000_add_oauth_device_poll_state.js","sourceRoot":"","sources":["../../../src/migrations/postgres/Migration20260624223000_add_oauth_device_poll_state.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD,MAAM,OAAO,mDAAoD,SAAQ,SAAS;IACvE,EAAE;QACT,IAAI,CAAC,MAAM,CACT,wEAAwE,CACzE,CAAC;QACF,IAAI,CAAC,MAAM,CACT,qFAAqF,CACtF,CAAC;QACF,IAAI,CAAC,MAAM,CACT,wHAAwH,CACzH,CAAC;QACF,IAAI,CAAC,MAAM,CACT,4HAA4H,CAC7H,CAAC;IACJ,CAAC;IAEQ,IAAI;QACX,IAAI,CAAC,MAAM,CACT,sEAAsE,CACvE,CAAC;QACF,IAAI,CAAC,MAAM,CACT,+DAA+D,CAChE,CAAC;IACJ,CAAC;CACF"}
package/dist/migrations/postgres/index.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/migrations/postgres/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,+BAA+B,EAAE,MAAM,sCAAsC,CAAC;AAMvF,eAAO,MAAM,mBAAmB,4CAM/B,CAAC"}
1
+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/migrations/postgres/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,+BAA+B,EAAE,MAAM,sCAAsC,CAAC;AAQvF,eAAO,MAAM,mBAAmB,4CAQ/B,CAAC"}
package/dist/migrations/postgres/index.js CHANGED
@@ -3,11 +3,15 @@ import { Migration20260512120000_add_scheduler_jobs } from './Migration202605121
3
3
  import { Migration20260619075007 } from './Migration20260619075007.js';
4
4
  import { Migration20260619191600_unique_oauth_client_client_id } from './Migration20260619191600_unique_oauth_client_client_id.js';
5
5
  import { Migration20260620025358_add_oauth_client_skip_consent } from './Migration20260620025358_add_oauth_client_skip_consent.js';
6
+ import { Migration20260624190500_add_oauth_device_denied_at } from './Migration20260624190500_add_oauth_device_denied_at.js';
7
+ import { Migration20260624223000_add_oauth_device_poll_state } from './Migration20260624223000_add_oauth_device_poll_state.js';
6
8
  export const POSTGRES_MIGRATIONS = [
7
9
  Migration20260509171036_initial,
8
10
  Migration20260512120000_add_scheduler_jobs,
9
11
  Migration20260619075007,
10
12
  Migration20260619191600_unique_oauth_client_client_id,
11
13
  Migration20260620025358_add_oauth_client_skip_consent,
14
+ Migration20260624190500_add_oauth_device_denied_at,
15
+ Migration20260624223000_add_oauth_device_poll_state,
12
16
  ];
13
17
  //# sourceMappingURL=index.js.map
package/dist/migrations/postgres/index.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/migrations/postgres/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,+BAA+B,EAAE,MAAM,sCAAsC,CAAC;AACvF,OAAO,EAAE,0CAA0C,EAAE,MAAM,iDAAiD,CAAC;AAC7G,OAAO,EAAE,uBAAuB,EAAE,MAAM,8BAA8B,CAAC;AACvE,OAAO,EAAE,qDAAqD,EAAE,MAAM,4DAA4D,CAAC;AACnI,OAAO,EAAE,qDAAqD,EAAE,MAAM,4DAA4D,CAAC;AAEnI,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,+BAA+B;IAC/B,0CAA0C;IAC1C,uBAAuB;IACvB,qDAAqD;IACrD,qDAAqD;CACtD,CAAC"}
1
+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/migrations/postgres/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,+BAA+B,EAAE,MAAM,sCAAsC,CAAC;AACvF,OAAO,EAAE,0CAA0C,EAAE,MAAM,iDAAiD,CAAC;AAC7G,OAAO,EAAE,uBAAuB,EAAE,MAAM,8BAA8B,CAAC;AACvE,OAAO,EAAE,qDAAqD,EAAE,MAAM,4DAA4D,CAAC;AACnI,OAAO,EAAE,qDAAqD,EAAE,MAAM,4DAA4D,CAAC;AACnI,OAAO,EAAE,kDAAkD,EAAE,MAAM,yDAAyD,CAAC;AAC7H,OAAO,EAAE,mDAAmD,EAAE,MAAM,0DAA0D,CAAC;AAE/H,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,+BAA+B;IAC/B,0CAA0C;IAC1C,uBAAuB;IACvB,qDAAqD;IACrD,qDAAqD;IACrD,kDAAkD;IAClD,mDAAmD;CACpD,CAAC"}
package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.d.ts ADDED
@@ -0,0 +1,6 @@
1
+ import { Migration } from '@mikro-orm/migrations';
2
+ export declare class Migration20260624190500_add_oauth_device_denied_at extends Migration {
3
+ up(): void | Promise<void>;
4
+ down(): void | Promise<void>;
5
+ }
6
+ //# sourceMappingURL=Migration20260624190500_add_oauth_device_denied_at.d.ts.map
package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"Migration20260624190500_add_oauth_device_denied_at.d.ts","sourceRoot":"","sources":["../../../src/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD,qBAAa,kDAAmD,SAAQ,SAAS;IACtE,EAAE,IAAI,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAM1B,IAAI,IAAI,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAGtC"}
package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.js ADDED
@@ -0,0 +1,10 @@
1
+ import { Migration } from '@mikro-orm/migrations';
2
+ export class Migration20260624190500_add_oauth_device_denied_at extends Migration {
3
+ up() {
4
+ this.addSql(`alter table \`oauth_device_code\` add column \`denied_at\` datetime null;`);
5
+ }
6
+ down() {
7
+ this.addSql(`alter table \`oauth_device_code\` drop column \`denied_at\`;`);
8
+ }
9
+ }
10
+ //# sourceMappingURL=Migration20260624190500_add_oauth_device_denied_at.js.map
package/dist/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"Migration20260624190500_add_oauth_device_denied_at.js","sourceRoot":"","sources":["../../../src/migrations/sqlite/Migration20260624190500_add_oauth_device_denied_at.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD,MAAM,OAAO,kDAAmD,SAAQ,SAAS;IACtE,EAAE;QACT,IAAI,CAAC,MAAM,CACT,2EAA2E,CAC5E,CAAC;IACJ,CAAC;IAEQ,IAAI;QACX,IAAI,CAAC,MAAM,CAAC,8DAA8D,CAAC,CAAC;IAC9E,CAAC;CACF"}
package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.d.ts ADDED
@@ -0,0 +1,6 @@
1
+ import { Migration } from '@mikro-orm/migrations';
2
+ export declare class Migration20260624223000_add_oauth_device_poll_state extends Migration {
3
+ up(): void | Promise<void>;
4
+ down(): void | Promise<void>;
5
+ }
6
+ //# sourceMappingURL=Migration20260624223000_add_oauth_device_poll_state.d.ts.map
package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"Migration20260624223000_add_oauth_device_poll_state.d.ts","sourceRoot":"","sources":["../../../src/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD,qBAAa,mDAAoD,SAAQ,SAAS;IACvE,EAAE,IAAI,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAS1B,IAAI,IAAI,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAQtC"}
package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.js ADDED
@@ -0,0 +1,12 @@
1
+ import { Migration } from '@mikro-orm/migrations';
2
+ export class Migration20260624223000_add_oauth_device_poll_state extends Migration {
3
+ up() {
4
+ this.addSql(`alter table \`oauth_device_code\` add column \`last_polled_at\` datetime null;`);
5
+ this.addSql(`alter table \`oauth_device_code\` add column \`poll_interval_seconds\` integer not null default 5;`);
6
+ }
7
+ down() {
8
+ this.addSql(`alter table \`oauth_device_code\` drop column \`poll_interval_seconds\`;`);
9
+ this.addSql(`alter table \`oauth_device_code\` drop column \`last_polled_at\`;`);
10
+ }
11
+ }
12
+ //# sourceMappingURL=Migration20260624223000_add_oauth_device_poll_state.js.map
package/dist/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"Migration20260624223000_add_oauth_device_poll_state.js","sourceRoot":"","sources":["../../../src/migrations/sqlite/Migration20260624223000_add_oauth_device_poll_state.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD,MAAM,OAAO,mDAAoD,SAAQ,SAAS;IACvE,EAAE;QACT,IAAI,CAAC,MAAM,CACT,gFAAgF,CACjF,CAAC;QACF,IAAI,CAAC,MAAM,CACT,oGAAoG,CACrG,CAAC;IACJ,CAAC;IAEQ,IAAI;QACX,IAAI,CAAC,MAAM,CACT,0EAA0E,CAC3E,CAAC;QACF,IAAI,CAAC,MAAM,CACT,mEAAmE,CACpE,CAAC;IACJ,CAAC;CACF"}
package/dist/migrations/sqlite/index.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/migrations/sqlite/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,+BAA+B,EAAE,MAAM,sCAAsC,CAAC;AAMvF,eAAO,MAAM,iBAAiB,4CAM7B,CAAC"}
1
+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/migrations/sqlite/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,+BAA+B,EAAE,MAAM,sCAAsC,CAAC;AAQvF,eAAO,MAAM,iBAAiB,4CAQ7B,CAAC"}
package/dist/migrations/sqlite/index.js CHANGED
@@ -3,11 +3,15 @@ import { Migration20260512120000_add_scheduler_jobs } from './Migration202605121
3
3
  import { Migration20260619075330 } from './Migration20260619075330.js';
4
4
  import { Migration20260619191600_unique_oauth_client_client_id } from './Migration20260619191600_unique_oauth_client_client_id.js';
5
5
  import { Migration20260620025358_add_oauth_client_skip_consent } from './Migration20260620025358_add_oauth_client_skip_consent.js';
6
+ import { Migration20260624190500_add_oauth_device_denied_at } from './Migration20260624190500_add_oauth_device_denied_at.js';
7
+ import { Migration20260624223000_add_oauth_device_poll_state } from './Migration20260624223000_add_oauth_device_poll_state.js';
6
8
  export const SQLITE_MIGRATIONS = [
7
9
  Migration20260509171226_initial,
8
10
  Migration20260512120000_add_scheduler_jobs,
9
11
  Migration20260619075330,
10
12
  Migration20260619191600_unique_oauth_client_client_id,
11
13
  Migration20260620025358_add_oauth_client_skip_consent,
14
+ Migration20260624190500_add_oauth_device_denied_at,
15
+ Migration20260624223000_add_oauth_device_poll_state,
12
16
  ];
13
17
  //# sourceMappingURL=index.js.map
package/dist/migrations/sqlite/index.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/migrations/sqlite/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,+BAA+B,EAAE,MAAM,sCAAsC,CAAC;AACvF,OAAO,EAAE,0CAA0C,EAAE,MAAM,iDAAiD,CAAC;AAC7G,OAAO,EAAE,uBAAuB,EAAE,MAAM,8BAA8B,CAAC;AACvE,OAAO,EAAE,qDAAqD,EAAE,MAAM,4DAA4D,CAAC;AACnI,OAAO,EAAE,qDAAqD,EAAE,MAAM,4DAA4D,CAAC;AAEnI,MAAM,CAAC,MAAM,iBAAiB,GAAG;IAC/B,+BAA+B;IAC/B,0CAA0C;IAC1C,uBAAuB;IACvB,qDAAqD;IACrD,qDAAqD;CACtD,CAAC"}
1
+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/migrations/sqlite/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,+BAA+B,EAAE,MAAM,sCAAsC,CAAC;AACvF,OAAO,EAAE,0CAA0C,EAAE,MAAM,iDAAiD,CAAC;AAC7G,OAAO,EAAE,uBAAuB,EAAE,MAAM,8BAA8B,CAAC;AACvE,OAAO,EAAE,qDAAqD,EAAE,MAAM,4DAA4D,CAAC;AACnI,OAAO,EAAE,qDAAqD,EAAE,MAAM,4DAA4D,CAAC;AACnI,OAAO,EAAE,kDAAkD,EAAE,MAAM,yDAAyD,CAAC;AAC7H,OAAO,EAAE,mDAAmD,EAAE,MAAM,0DAA0D,CAAC;AAE/H,MAAM,CAAC,MAAM,iBAAiB,GAAG;IAC/B,+BAA+B;IAC/B,0CAA0C;IAC1C,uBAAuB;IACvB,qDAAqD;IACrD,qDAAqD;IACrD,kDAAkD;IAClD,mDAAmD;CACpD,CAAC"}
package/dist/repositories/oauth-device-code.repository.d.ts CHANGED
@@ -14,6 +14,10 @@ export declare class OAuthDeviceCodeRepository extends EntityRepository<IOAuthDe
14
14
  userSub: string;
15
15
  approvedAt: Date;
16
16
  }): Promise<IOAuthDeviceCodeEntity | null>;
17
+ denyPendingByUserCodeHash(params: {
18
+ userCodeHash: string;
19
+ deniedAt: Date;
20
+ }): Promise<IOAuthDeviceCodeEntity | null>;
17
21
  findByClientAndDeviceCodeHash(clientId: string, deviceCodeHash: string): Promise<IOAuthDeviceCodeEntity | null>;
18
22
  consumeAuthorizedDeviceCode(id: string, consumedAt: Date): Promise<boolean>;
19
23
  }
package/dist/repositories/oauth-device-code.repository.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"oauth-device-code.repository.d.ts","sourceRoot":"","sources":["../../src/repositories/oauth-device-code.repository.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,yCAAyC,CAAC;AAEtF,qBAAa,yBAA0B,SAAQ,gBAAgB,CAAC,sBAAsB,CAAC;IAC/E,yBAAyB,CAAC,MAAM,EAAE;QACtC,QAAQ,EAAE,MAAM,CAAC;QACjB,cAAc,EAAE,MAAM,CAAC;QACvB,YAAY,EAAE,MAAM,CAAC;QACrB,KAAK,EAAE,MAAM,EAAE,CAAC;QAChB,gBAAgB,CAAC,EAAE,MAAM,CAAC;KAC3B,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAe7B,yBAAyB,CAC7B,YAAY,EAAE,MAAM,GACnB,OAAO,CAAC,sBAAsB,GAAG,IAAI,CAAC;IAQnC,4BAA4B,CAAC,MAAM,EAAE;QACzC,YAAY,EAAE,MAAM,CAAC;QACrB,OAAO,EAAE,MAAM,CAAC;QAChB,UAAU,EAAE,IAAI,CAAC;KAClB,GAAG,OAAO,CAAC,sBAAsB,GAAG,IAAI,CAAC;IAwBpC,6BAA6B,CACjC,QAAQ,EAAE,MAAM,EAChB,cAAc,EAAE,MAAM,GACrB,OAAO,CAAC,sBAAsB,GAAG,IAAI,CAAC;IAQnC,2BAA2B,CAC/B,EAAE,EAAE,MAAM,EACV,UAAU,EAAE,IAAI,GACf,OAAO,CAAC,OAAO,CAAC;CAapB"}
1
+ {"version":3,"file":"oauth-device-code.repository.d.ts","sourceRoot":"","sources":["../../src/repositories/oauth-device-code.repository.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,yCAAyC,CAAC;AAEtF,qBAAa,yBAA0B,SAAQ,gBAAgB,CAAC,sBAAsB,CAAC;IAC/E,yBAAyB,CAAC,MAAM,EAAE;QACtC,QAAQ,EAAE,MAAM,CAAC;QACjB,cAAc,EAAE,MAAM,CAAC;QACvB,YAAY,EAAE,MAAM,CAAC;QACrB,KAAK,EAAE,MAAM,EAAE,CAAC;QAChB,gBAAgB,CAAC,EAAE,MAAM,CAAC;KAC3B,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAe7B,yBAAyB,CAC7B,YAAY,EAAE,MAAM,GACnB,OAAO,CAAC,sBAAsB,GAAG,IAAI,CAAC;IAUnC,4BAA4B,CAAC,MAAM,EAAE;QACzC,YAAY,EAAE,MAAM,CAAC;QACrB,OAAO,EAAE,MAAM,CAAC;QAChB,UAAU,EAAE,IAAI,CAAC;KAClB,GAAG,OAAO,CAAC,sBAAsB,GAAG,IAAI,CAAC;IAyBpC,yBAAyB,CAAC,MAAM,EAAE;QACtC,YAAY,EAAE,MAAM,CAAC;QACrB,QAAQ,EAAE,IAAI,CAAC;KAChB,GAAG,OAAO,CAAC,sBAAsB,GAAG,IAAI,CAAC;IAwBpC,6BAA6B,CACjC,QAAQ,EAAE,MAAM,EAChB,cAAc,EAAE,MAAM,GACrB,OAAO,CAAC,sBAAsB,GAAG,IAAI,CAAC;IAQnC,2BAA2B,CAC/B,EAAE,EAAE,MAAM,EACV,UAAU,EAAE,IAAI,GACf,OAAO,CAAC,OAAO,CAAC;CAcpB"}
package/dist/repositories/oauth-device-code.repository.js CHANGED
@@ -18,6 +18,8 @@ export class OAuthDeviceCodeRepository extends EntityRepository {
18
18
  userCodeHash,
19
19
  consumedAt: null,
20
20
  authorizedAt: null,
21
+ deniedAt: null,
22
+ expiresAt: { $gt: new Date() },
21
23
  });
22
24
  }
23
25
  async approvePendingByUserCodeHash(params) {
@@ -25,6 +27,7 @@ export class OAuthDeviceCodeRepository extends EntityRepository {
25
27
  userCodeHash: params.userCodeHash,
26
28
  consumedAt: null,
27
29
  authorizedAt: null,
30
+ deniedAt: null,
28
31
  expiresAt: { $gt: params.approvedAt },
29
32
  }, {
30
33
  authorizedUser: params.userSub,
@@ -35,6 +38,21 @@ export class OAuthDeviceCodeRepository extends EntityRepository {
35
38
  }
36
39
  return this.findOne({ userCodeHash: params.userCodeHash }, { populate: ['client'] });
37
40
  }
41
+ async denyPendingByUserCodeHash(params) {
42
+ const updated = await this.nativeUpdate({
43
+ userCodeHash: params.userCodeHash,
44
+ consumedAt: null,
45
+ authorizedAt: null,
46
+ deniedAt: null,
47
+ expiresAt: { $gt: params.deniedAt },
48
+ }, {
49
+ deniedAt: params.deniedAt,
50
+ });
51
+ if (updated !== 1) {
52
+ return null;
53
+ }
54
+ return this.findOne({ userCodeHash: params.userCodeHash }, { populate: ['client'] });
55
+ }
38
56
  async findByClientAndDeviceCodeHash(clientId, deviceCodeHash) {
39
57
  return this.findOne({
40
58
  client: clientId,
@@ -47,6 +65,7 @@ export class OAuthDeviceCodeRepository extends EntityRepository {
47
65
  id,
48
66
  consumedAt: null,
49
67
  authorizedAt: { $ne: null },
68
+ deniedAt: null,
50
69
  expiresAt: { $gt: consumedAt },
51
70
  }, { consumedAt });
52
71
  return updated === 1;
package/dist/repositories/oauth-device-code.repository.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"oauth-device-code.repository.js","sourceRoot":"","sources":["../../src/repositories/oauth-device-code.repository.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAGnD,MAAM,OAAO,yBAA0B,SAAQ,gBAAwC;IACrF,KAAK,CAAC,yBAAyB,CAAC,MAM/B;QACC,MAAM,gBAAgB,GAAG,MAAM,CAAC,gBAAgB,IAAI,GAAG,CAAC;QACxD,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,gBAAgB,GAAG,IAAI,CAAC,CAAC;QACjE,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;YACzB,MAAM,EAAE,MAAM,CAAC,QAAQ;YACvB,cAAc,EAAE,MAAM,CAAC,cAAc;YACrC,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,SAAS;SACV,CAAC,CAAC;QAEH,MAAM,IAAI,CAAC,gBAAgB,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,CAAC;QACtD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,KAAK,CAAC,yBAAyB,CAC7B,YAAoB;QAEpB,OAAO,IAAI,CAAC,OAAO,CAAC;YAClB,YAAY;YACZ,UAAU,EAAE,IAAI;YAChB,YAAY,EAAE,IAAI;SACnB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,4BAA4B,CAAC,MAIlC;QACC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,YAAY,CACrC;YACE,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,UAAU,EAAE,IAAI;YAChB,YAAY,EAAE,IAAI;YAClB,SAAS,EAAE,EAAE,GAAG,EAAE,MAAM,CAAC,UAAU,EAAE;SACtC,EACD;YACE,cAAc,EAAE,MAAM,CAAC,OAAO;YAC9B,YAAY,EAAE,MAAM,CAAC,UAAU;SAChC,CACF,CAAC;QAEF,IAAI,OAAO,KAAK,CAAC,EAAE,CAAC;YAClB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,IAAI,CAAC,OAAO,CACjB,EAAE,YAAY,EAAE,MAAM,CAAC,YAAY,EAAE,EACrC,EAAE,QAAQ,EAAE,CAAC,QAAQ,CAAC,EAAE,CACzB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,6BAA6B,CACjC,QAAgB,EAChB,cAAsB;QAEtB,OAAO,IAAI,CAAC,OAAO,CAAC;YAClB,MAAM,EAAE,QAAQ;YAChB,cAAc;YACd,UAAU,EAAE,IAAI;SACjB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,2BAA2B,CAC/B,EAAU,EACV,UAAgB;QAEhB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,YAAY,CACrC;YACE,EAAE;YACF,UAAU,EAAE,IAAI;YAChB,YAAY,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE;YAC3B,SAAS,EAAE,EAAE,GAAG,EAAE,UAAU,EAAE;SAC/B,EACD,EAAE,UAAU,EAAE,CACf,CAAC;QAEF,OAAO,OAAO,KAAK,CAAC,CAAC;IACvB,CAAC;CACF"}
1
+ {"version":3,"file":"oauth-device-code.repository.js","sourceRoot":"","sources":["../../src/repositories/oauth-device-code.repository.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAGnD,MAAM,OAAO,yBAA0B,SAAQ,gBAAwC;IACrF,KAAK,CAAC,yBAAyB,CAAC,MAM/B;QACC,MAAM,gBAAgB,GAAG,MAAM,CAAC,gBAAgB,IAAI,GAAG,CAAC;QACxD,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,gBAAgB,GAAG,IAAI,CAAC,CAAC;QACjE,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;YACzB,MAAM,EAAE,MAAM,CAAC,QAAQ;YACvB,cAAc,EAAE,MAAM,CAAC,cAAc;YACrC,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,SAAS;SACV,CAAC,CAAC;QAEH,MAAM,IAAI,CAAC,gBAAgB,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,CAAC;QACtD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,KAAK,CAAC,yBAAyB,CAC7B,YAAoB;QAEpB,OAAO,IAAI,CAAC,OAAO,CAAC;YAClB,YAAY;YACZ,UAAU,EAAE,IAAI;YAChB,YAAY,EAAE,IAAI;YAClB,QAAQ,EAAE,IAAI;YACd,SAAS,EAAE,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE;SAC/B,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,4BAA4B,CAAC,MAIlC;QACC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,YAAY,CACrC;YACE,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,UAAU,EAAE,IAAI;YAChB,YAAY,EAAE,IAAI;YAClB,QAAQ,EAAE,IAAI;YACd,SAAS,EAAE,EAAE,GAAG,EAAE,MAAM,CAAC,UAAU,EAAE;SACtC,EACD;YACE,cAAc,EAAE,MAAM,CAAC,OAAO;YAC9B,YAAY,EAAE,MAAM,CAAC,UAAU;SAChC,CACF,CAAC;QAEF,IAAI,OAAO,KAAK,CAAC,EAAE,CAAC;YAClB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,IAAI,CAAC,OAAO,CACjB,EAAE,YAAY,EAAE,MAAM,CAAC,YAAY,EAAE,EACrC,EAAE,QAAQ,EAAE,CAAC,QAAQ,CAAC,EAAE,CACzB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,yBAAyB,CAAC,MAG/B;QACC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,YAAY,CACrC;YACE,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,UAAU,EAAE,IAAI;YAChB,YAAY,EAAE,IAAI;YAClB,QAAQ,EAAE,IAAI;YACd,SAAS,EAAE,EAAE,GAAG,EAAE,MAAM,CAAC,QAAQ,EAAE;SACpC,EACD;YACE,QAAQ,EAAE,MAAM,CAAC,QAAQ;SAC1B,CACF,CAAC;QAEF,IAAI,OAAO,KAAK,CAAC,EAAE,CAAC;YAClB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,IAAI,CAAC,OAAO,CACjB,EAAE,YAAY,EAAE,MAAM,CAAC,YAAY,EAAE,EACrC,EAAE,QAAQ,EAAE,CAAC,QAAQ,CAAC,EAAE,CACzB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,6BAA6B,CACjC,QAAgB,EAChB,cAAsB;QAEtB,OAAO,IAAI,CAAC,OAAO,CAAC;YAClB,MAAM,EAAE,QAAQ;YAChB,cAAc;YACd,UAAU,EAAE,IAAI;SACjB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,2BAA2B,CAC/B,EAAU,EACV,UAAgB;QAEhB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,YAAY,CACrC;YACE,EAAE;YACF,UAAU,EAAE,IAAI;YAChB,YAAY,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE;YAC3B,QAAQ,EAAE,IAAI;YACd,SAAS,EAAE,EAAE,GAAG,EAAE,UAAU,EAAE;SAC/B,EACD,EAAE,UAAU,EAAE,CACf,CAAC;QAEF,OAAO,OAAO,KAAK,CAAC,CAAC;IACvB,CAAC;CACF"}
package/dist/repositories/user.repository.d.ts CHANGED
@@ -9,12 +9,14 @@ export declare class UserRepository extends EntityRepository<UserEntity> {
9
9
  */
10
10
  findBySub(sub: string): Promise<UserEntity>;
11
11
  verifyBySub(sub: string): Promise<Loaded<UserEntity, 'password_hash' | 'passkeys' | 'totps', '*', never>>;
12
+ verifyBySubIncludingDeleted(sub: string): Promise<Loaded<UserEntity, 'password_hash' | 'passkeys' | 'totps', '*', never>>;
13
+ private verifyBySubWhere;
12
14
  findActiveByEmailForPasswordAuth(email: string): Promise<Loaded<UserEntity, 'password_hash' | 'passkeys' | 'totps', '*', never>>;
13
15
  /**
14
- * Check if email is already registered (excluding deleted users)
16
+ * Check if email is already registered, including soft-deleted users.
15
17
  *
16
18
  * @param email - Email address to check
17
- * @returns True if email exists and is not deleted, false otherwise
19
+ * @returns True if email exists, false otherwise
18
20
  */
19
21
  exists(email: string): Promise<boolean>;
20
22
  /**
package/dist/repositories/user.repository.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"user.repository.d.ts","sourceRoot":"","sources":["../../src/repositories/user.repository.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,KAAK,MAAM,EAAE,MAAM,iBAAiB,CAAC;AAChE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AAG7D,qBAAa,cAAe,SAAQ,gBAAgB,CAAC,UAAU,CAAC;IAC9D;;;;;OAKG;IACU,SAAS,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC;IAQ3C,WAAW,CACtB,GAAG,EAAE,MAAM,GACV,OAAO,CACR,MAAM,CAAC,UAAU,EAAE,eAAe,GAAG,UAAU,GAAG,OAAO,EAAE,GAAG,EAAE,KAAK,CAAC,CACvE;IAiBY,gCAAgC,CAC3C,KAAK,EAAE,MAAM,GACZ,OAAO,CACR,MAAM,CAAC,UAAU,EAAE,eAAe,GAAG,UAAU,GAAG,OAAO,EAAE,GAAG,EAAE,KAAK,CAAC,CACvE;IAiBD;;;;;OAKG;IACU,MAAM,CAAC,KAAK,EAAE,MAAM;IAKjC;;;;;;OAMG;IACU,QAAQ,CAAC,MAAM,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,YAAY,EAAE,MAAM,CAAA;KAAE;CAYtE"}
1
+ {"version":3,"file":"user.repository.d.ts","sourceRoot":"","sources":["../../src/repositories/user.repository.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,KAAK,MAAM,EAAE,MAAM,iBAAiB,CAAC;AAChE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,4BAA4B,CAAC;AAG7D,qBAAa,cAAe,SAAQ,gBAAgB,CAAC,UAAU,CAAC;IAC9D;;;;;OAKG;IACU,SAAS,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC;IAQ3C,WAAW,CACtB,GAAG,EAAE,MAAM,GACV,OAAO,CACR,MAAM,CAAC,UAAU,EAAE,eAAe,GAAG,UAAU,GAAG,OAAO,EAAE,GAAG,EAAE,KAAK,CAAC,CACvE;IAIY,2BAA2B,CACtC,GAAG,EAAE,MAAM,GACV,OAAO,CACR,MAAM,CAAC,UAAU,EAAE,eAAe,GAAG,UAAU,GAAG,OAAO,EAAE,GAAG,EAAE,KAAK,CAAC,CACvE;YAIa,gBAAgB;IAiBjB,gCAAgC,CAC3C,KAAK,EAAE,MAAM,GACZ,OAAO,CACR,MAAM,CAAC,UAAU,EAAE,eAAe,GAAG,UAAU,GAAG,OAAO,EAAE,GAAG,EAAE,KAAK,CAAC,CACvE;IAiBD;;;;;OAKG;IACU,MAAM,CAAC,KAAK,EAAE,MAAM;IAKjC;;;;;;OAMG;IACU,QAAQ,CAAC,MAAM,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,YAAY,EAAE,MAAM,CAAA;KAAE;CAYtE"}
package/dist/repositories/user.repository.js CHANGED
@@ -8,13 +8,17 @@ export class UserRepository extends EntityRepository {
8
8
  * use verifyBySub() or populate the entity yourself.
9
9
  */
10
10
  async findBySub(sub) {
11
- const user = await this.findOneOrFail({ sub }, { failHandler: () => new e.UserNotFound.Error() });
11
+ const user = await this.findOneOrFail({ sub, deleted_at: null }, { failHandler: () => new e.UserNotFound.Error() });
12
12
  return user;
13
13
  }
14
14
  async verifyBySub(sub) {
15
- const user = await this.findOneOrFail({
16
- sub: sub,
17
- }, {
15
+ return this.verifyBySubWhere({ sub, deleted_at: null });
16
+ }
17
+ async verifyBySubIncludingDeleted(sub) {
18
+ return this.verifyBySubWhere({ sub });
19
+ }
20
+ async verifyBySubWhere(where) {
21
+ const user = await this.findOneOrFail(where, {
18
22
  populate: ['password_hash', 'totps', 'passkeys'],
19
23
  populateWhere: {
20
24
  totps: { verified: true },
@@ -38,13 +42,13 @@ export class UserRepository extends EntityRepository {
38
42
  });
39
43
  }
40
44
  /**
41
- * Check if email is already registered (excluding deleted users)
45
+ * Check if email is already registered, including soft-deleted users.
42
46
  *
43
47
  * @param email - Email address to check
44
- * @returns True if email exists and is not deleted, false otherwise
48
+ * @returns True if email exists, false otherwise
45
49
  */
46
50
  async exists(email) {
47
- const count = await this.count({ email: email, deleted_at: null });
51
+ const count = await this.count({ email });
48
52
  return count > 0;
49
53
  }
50
54
  /**
package/dist/repositories/user.repository.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"user.repository.js","sourceRoot":"","sources":["../../src/repositories/user.repository.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAe,MAAM,iBAAiB,CAAC;AAEhE,OAAO,EAAE,CAAC,EAAE,MAAM,qBAAqB,CAAC;AAExC,MAAM,OAAO,cAAe,SAAQ,gBAA4B;IAC9D;;;;;OAKG;IACI,KAAK,CAAC,SAAS,CAAC,GAAW;QAChC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,aAAa,CACnC,EAAE,GAAG,EAAE,EACP,EAAE,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,EAAE,CAClD,CAAC;QACF,OAAO,IAAI,CAAC;IACd,CAAC;IAEM,KAAK,CAAC,WAAW,CACtB,GAAW;QAIX,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,aAAa,CACnC;YACE,GAAG,EAAE,GAAG;SACT,EACD;YACE,QAAQ,EAAE,CAAC,eAAe,EAAE,OAAO,EAAE,UAAU,CAAC;YAChD,aAAa,EAAE;gBACb,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE;gBACzB,QAAQ,EAAE,EAAE;aACb;YACD,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE;SAC9C,CACF,CAAC;QACF,OAAO,IAAI,CAAC;IACd,CAAC;IAEM,KAAK,CAAC,gCAAgC,CAC3C,KAAa;QAIb,OAAO,IAAI,CAAC,aAAa,CACvB;YACE,KAAK;YACL,UAAU,EAAE,IAAI;SACjB,EACD;YACE,QAAQ,EAAE,CAAC,eAAe,EAAE,OAAO,EAAE,UAAU,CAAC;YAChD,aAAa,EAAE;gBACb,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE;gBACzB,QAAQ,EAAE,EAAE;aACb;YACD,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC,sBAAsB,CAAC,KAAK,EAAE;SACxD,CACF,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACI,KAAK,CAAC,MAAM,CAAC,KAAa;QAC/B,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,EAAE,KAAK,EAAE,KAAK,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC;QACnE,OAAO,KAAK,GAAG,CAAC,CAAC;IACnB,CAAC;IAED;;;;;;OAMG;IACI,KAAK,CAAC,QAAQ,CAAC,MAA+C;QACnE,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QACpD,IAAI,WAAW,EAAE,CAAC;YAChB,MAAM,IAAI,CAAC,CAAC,kBAAkB,CAAC,KAAK,EAAE,CAAC;QACzC,CAAC;QACD,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC;YACvB,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,aAAa,EAAE,MAAM,CAAC,YAAY;SACnC,CAAC,CAAC;QACH,MAAM,IAAI,CAAC,gBAAgB,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;QACpD,OAAO,IAAI,CAAC;IACd,CAAC;CACF"}
1
+ {"version":3,"file":"user.repository.js","sourceRoot":"","sources":["../../src/repositories/user.repository.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAe,MAAM,iBAAiB,CAAC;AAEhE,OAAO,EAAE,CAAC,EAAE,MAAM,qBAAqB,CAAC;AAExC,MAAM,OAAO,cAAe,SAAQ,gBAA4B;IAC9D;;;;;OAKG;IACI,KAAK,CAAC,SAAS,CAAC,GAAW;QAChC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,aAAa,CACnC,EAAE,GAAG,EAAE,UAAU,EAAE,IAAI,EAAE,EACzB,EAAE,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE,EAAE,CAClD,CAAC;QACF,OAAO,IAAI,CAAC;IACd,CAAC;IAEM,KAAK,CAAC,WAAW,CACtB,GAAW;QAIX,OAAO,IAAI,CAAC,gBAAgB,CAAC,EAAE,GAAG,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC;IAC1D,CAAC;IAEM,KAAK,CAAC,2BAA2B,CACtC,GAAW;QAIX,OAAO,IAAI,CAAC,gBAAgB,CAAC,EAAE,GAAG,EAAE,CAAC,CAAC;IACxC,CAAC;IAEO,KAAK,CAAC,gBAAgB,CAAC,KAG9B;QAGC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE;YAC3C,QAAQ,EAAE,CAAC,eAAe,EAAE,OAAO,EAAE,UAAU,CAAC;YAChD,aAAa,EAAE;gBACb,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE;gBACzB,QAAQ,EAAE,EAAE;aACb;YACD,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC,YAAY,CAAC,KAAK,EAAE;SAC9C,CAAC,CAAC;QACH,OAAO,IAAI,CAAC;IACd,CAAC;IAEM,KAAK,CAAC,gCAAgC,CAC3C,KAAa;QAIb,OAAO,IAAI,CAAC,aAAa,CACvB;YACE,KAAK;YACL,UAAU,EAAE,IAAI;SACjB,EACD;YACE,QAAQ,EAAE,CAAC,eAAe,EAAE,OAAO,EAAE,UAAU,CAAC;YAChD,aAAa,EAAE;gBACb,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE;gBACzB,QAAQ,EAAE,EAAE;aACb;YACD,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC,sBAAsB,CAAC,KAAK,EAAE;SACxD,CACF,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACI,KAAK,CAAC,MAAM,CAAC,KAAa;QAC/B,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;QAC1C,OAAO,KAAK,GAAG,CAAC,CAAC;IACnB,CAAC;IAED;;;;;;OAMG;IACI,KAAK,CAAC,QAAQ,CAAC,MAA+C;QACnE,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QACpD,IAAI,WAAW,EAAE,CAAC;YAChB,MAAM,IAAI,CAAC,CAAC,kBAAkB,CAAC,KAAK,EAAE,CAAC;QACzC,CAAC;QACD,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC;YACvB,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,aAAa,EAAE,MAAM,CAAC,YAAY;SACnC,CAAC,CAAC;QACH,MAAM,IAAI,CAAC,gBAAgB,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;QACpD,OAAO,IAAI,CAAC;IACd,CAAC;CACF"}
package/dist/routes/.well-known/openid-configuration/get.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"get.d.ts","sourceRoot":"","sources":["../../../../src/routes/.well-known/openid-configuration/get.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,wBAAwB,CAAC;AAGrD;;;;;;GAMG;AACH,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;gCAO3B,CAAC"}
1
+ {"version":3,"file":"get.d.ts","sourceRoot":"","sources":["../../../../src/routes/.well-known/openid-configuration/get.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,wBAAwB,CAAC;AAGrD;;;;;;GAMG;AACH,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;gCAW3B,CAAC"}
package/dist/routes/.well-known/openid-configuration/get.js CHANGED
@@ -10,6 +10,10 @@ import { buildOpenidConfiguration } from '#server/routes/oauth/.well-known/openi
10
10
  export const openidConfigGet = new Hono().get('/openid-configuration', async (c) => {
11
11
  const { config } = c.var.services;
12
12
  c.header('Cache-Control', 'public, max-age=3600');
13
+ if (c.req.header('origin')) {
14
+ c.res.headers.delete('Access-Control-Allow-Credentials');
15
+ c.header('Access-Control-Allow-Origin', '*');
16
+ }
13
17
  return c.json(buildOpenidConfiguration(config), 200);
14
18
  });
15
19
  //# sourceMappingURL=get.js.map
package/dist/routes/.well-known/openid-configuration/get.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"get.js","sourceRoot":"","sources":["../../../../src/routes/.well-known/openid-configuration/get.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAE5B,OAAO,EAAE,wBAAwB,EAAE,MAAM,8DAA8D,CAAC;AAExG;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,IAAI,IAAI,EAAU,CAAC,GAAG,CACnD,uBAAuB,EACvB,KAAK,EAAE,CAAC,EAAE,EAAE;IACV,MAAM,EAAE,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC;IAClC,CAAC,CAAC,MAAM,CAAC,eAAe,EAAE,sBAAsB,CAAC,CAAC;IAClD,OAAO,CAAC,CAAC,IAAI,CAAC,wBAAwB,CAAC,MAAM,CAAC,EAAE,GAAG,CAAC,CAAC;AACvD,CAAC,CACF,CAAC"}
1
+ {"version":3,"file":"get.js","sourceRoot":"","sources":["../../../../src/routes/.well-known/openid-configuration/get.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAE5B,OAAO,EAAE,wBAAwB,EAAE,MAAM,8DAA8D,CAAC;AAExG;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,IAAI,IAAI,EAAU,CAAC,GAAG,CACnD,uBAAuB,EACvB,KAAK,EAAE,CAAC,EAAE,EAAE;IACV,MAAM,EAAE,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC;IAClC,CAAC,CAAC,MAAM,CAAC,eAAe,EAAE,sBAAsB,CAAC,CAAC;IAClD,IAAI,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC3B,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,kCAAkC,CAAC,CAAC;QACzD,CAAC,CAAC,MAAM,CAAC,6BAA6B,EAAE,GAAG,CAAC,CAAC;IAC/C,CAAC;IACD,OAAO,CAAC,CAAC,IAAI,CAAC,wBAAwB,CAAC,MAAM,CAAC,EAAE,GAAG,CAAC,CAAC;AACvD,CAAC,CACF,CAAC"}