@tinyrack/tinyauth-server 0.5.1 → 0.6.0

package/dist/routes/api/admin/index.d.ts

@@ -0,0 +1,185 @@
+import type { AppEnv } from '../../../lib/app-env.ts';
+export declare const adminRoutes: import("hono/hono-base").HonoBase<AppEnv, import("hono/types").BlankSchema | import("hono/types").MergeSchemaPath<{
+    "/admin/me": {
+        $get: {
+            input: {};
+            output: {
+                user: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                };
+            };
+            outputFormat: "json";
+            status: 200;
+        };
+    };
+}, "/"> | import("hono/types").MergeSchemaPath<{
+    "/admin/users": {
+        $get: {
+            input: {
+                query: {
+                    query?: string | string[];
+                    page?: string | string[];
+                    page_size?: string | string[];
+                    include_deleted?: string | string[];
+                    managed_by?: string | string[];
+                    role?: string | string[];
+                };
+            };
+            output: {
+                users: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                    deleted_at: string | null;
+                }[];
+                pagination: {
+                    page: number;
+                    page_size: number;
+                    total: number;
+                };
+            };
+            outputFormat: "json";
+            status: 200;
+        };
+    };
+} & {
+    "/admin/users": {
+        $post: {
+            input: {
+                json: {
+                    email: string;
+                    password: string;
+                    role?: "user" | "admin" | undefined;
+                    email_verified?: boolean | undefined;
+                };
+            };
+            output: {
+                user: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                    deleted_at: string | null;
+                };
+            };
+            outputFormat: "json";
+            status: 201;
+        };
+    };
+} & {
+    "/admin/users/:sub": {
+        $get: {
+            input: {
+                param: {
+                    sub: string;
+                };
+            };
+            output: {
+                user: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                    deleted_at: string | null;
+                };
+            };
+            outputFormat: "json";
+            status: 200;
+        };
+    };
+} & {
+    "/admin/users/:sub": {
+        $patch: {
+            input: {
+                json: {
+                    email?: string | undefined;
+                    role?: "user" | "admin" | undefined;
+                    email_verified?: boolean | undefined;
+                };
+            } & {
+                param: {
+                    sub: string;
+                };
+            };
+            output: {
+                user: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                    deleted_at: string | null;
+                };
+            };
+            outputFormat: "json";
+            status: 200;
+        };
+    };
+} & {
+    "/admin/users/:sub": {
+        $delete: {
+            input: {
+                param: {
+                    sub: string;
+                };
+            };
+            output: {
+                user: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                    deleted_at: string | null;
+                };
+            };
+            outputFormat: "json";
+            status: 200;
+        };
+    };
+}, "/">, "/", "/admin/*">;
+//# sourceMappingURL=index.d.ts.map

package/dist/routes/api/admin/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/routes/api/admin/index.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,yBAAyB,CAAC;AAItD,eAAO,MAAM,WAAW;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;yBAQO,CAAC"}

package/dist/routes/api/admin/index.js

@@ -0,0 +1,13 @@
+import { Hono } from 'hono';
+import { adminMeGet } from "./me/get.js";
+import { adminUsersRoutes } from "./users/index.js";
+export const adminRoutes = new Hono()
+    .use('/admin/*', async (c, next) => {
+    if (!c.var.services.config.admin.enabled) {
+        return c.json({ error: 'Not Found' }, 404);
+    }
+    return await next();
+})
+    .route('/', adminMeGet)
+    .route('/', adminUsersRoutes);
+//# sourceMappingURL=index.js.map

package/dist/routes/api/admin/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/routes/api/admin/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAE5B,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,gBAAgB,EAAE,MAAM,kBAAkB,CAAC;AAEpD,MAAM,CAAC,MAAM,WAAW,GAAG,IAAI,IAAI,EAAU;KAC1C,GAAG,CAAC,UAAU,EAAE,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;IACjC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;QACzC,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,GAAG,CAAC,CAAC;IAC7C,CAAC;IACD,OAAO,MAAM,IAAI,EAAE,CAAC;AACtB,CAAC,CAAC;KACD,KAAK,CAAC,GAAG,EAAE,UAAU,CAAC;KACtB,KAAK,CAAC,GAAG,EAAE,gBAAgB,CAAC,CAAC"}

package/dist/routes/api/admin/me/get.d.ts

@@ -0,0 +1,26 @@
+import type { AppEnv } from '../../../../lib/app-env.ts';
+export declare const adminMeGet: import("hono/hono-base").HonoBase<AppEnv, {
+    "/admin/me": {
+        $get: {
+            input: {};
+            output: {
+                user: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                };
+            };
+            outputFormat: "json";
+            status: 200;
+        };
+    };
+}, "/", "/admin/me">;
+//# sourceMappingURL=get.d.ts.map

package/dist/routes/api/admin/me/get.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"get.d.ts","sourceRoot":"","sources":["../../../../../src/routes/api/admin/me/get.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,4BAA4B,CAAC;AAMzD,eAAO,MAAM,UAAU;;;;;;;;;;;;;;;;;;;;;;;oBA4BtB,CAAC"}

package/dist/routes/api/admin/me/get.js

@@ -0,0 +1,29 @@
+import { Hono } from 'hono';
+import { describeRoute, resolver } from 'hono-openapi';
+import { z } from 'zod';
+import { OPENAPI_SECURITY } from "../../../../lib/openapi.js";
+import { TAGS } from "../../../../lib/swagger-tags.js";
+import { requireAdmin } from "../../../../middleware/auth.js";
+import { r } from "../../../../schemas/response.js";
+export const adminMeGet = new Hono().get('/admin/me', describeRoute({
+    tags: [TAGS.ADMIN],
+    security: OPENAPI_SECURITY.cookieSession,
+    summary: 'Get current admin',
+    description: 'Get the current admin session identity.',
+    responses: {
+        200: {
+            content: {
+                'application/json': {
+                    schema: resolver(z.object({ user: r.UserSession })),
+                },
+            },
+            description: 'Success',
+        },
+    },
+}), requireAdmin(), async (c) => {
+    const { userService } = c.var.services;
+    const fullUser = await c.var.services.mikro.user.verifyBySub(c.var.verifiedUser.user.sub);
+    const user = await userService.userEntityToSessionUser(fullUser);
+    return c.json({ user }, 200);
+});
+//# sourceMappingURL=get.js.map

package/dist/routes/api/admin/me/get.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"get.js","sourceRoot":"","sources":["../../../../../src/routes/api/admin/me/get.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,cAAc,CAAC;AACvD,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,EAAE,gBAAgB,EAAE,MAAM,4BAA4B,CAAC;AAC9D,OAAO,EAAE,IAAI,EAAE,MAAM,iCAAiC,CAAC;AACvD,OAAO,EAAE,YAAY,EAAE,MAAM,gCAAgC,CAAC;AAC9D,OAAO,EAAE,CAAC,EAAE,MAAM,iCAAiC,CAAC;AAEpD,MAAM,CAAC,MAAM,UAAU,GAAG,IAAI,IAAI,EAAU,CAAC,GAAG,CAC9C,WAAW,EACX,aAAa,CAAC;IACZ,IAAI,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC;IAClB,QAAQ,EAAE,gBAAgB,CAAC,aAAa;IACxC,OAAO,EAAE,mBAAmB;IAC5B,WAAW,EAAE,yCAAyC;IACtD,SAAS,EAAE;QACT,GAAG,EAAE;YACH,OAAO,EAAE;gBACP,kBAAkB,EAAE;oBAClB,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;iBACpD;aACF;YACD,WAAW,EAAE,SAAS;SACvB;KACF;CACF,CAAC,EACF,YAAY,EAAE,EACd,KAAK,EAAE,CAAC,EAAE,EAAE;IACV,MAAM,EAAE,WAAW,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC;IACvC,MAAM,QAAQ,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,WAAW,CAC1D,CAAC,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,GAAG,CAC5B,CAAC;IACF,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC;IAEjE,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,EAAE,GAAG,CAAC,CAAC;AAC/B,CAAC,CACF,CAAC"}

package/dist/routes/api/admin/users/index.d.ts

@@ -0,0 +1,162 @@
+import type { AppEnv } from '../../../../lib/app-env.ts';
+export declare const adminUsersRoutes: import("hono/hono-base").HonoBase<AppEnv, {
+    "/admin/users": {
+        $get: {
+            input: {
+                query: {
+                    query?: string | string[];
+                    page?: string | string[];
+                    page_size?: string | string[];
+                    include_deleted?: string | string[];
+                    managed_by?: string | string[];
+                    role?: string | string[];
+                };
+            };
+            output: {
+                users: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                    deleted_at: string | null;
+                }[];
+                pagination: {
+                    page: number;
+                    page_size: number;
+                    total: number;
+                };
+            };
+            outputFormat: "json";
+            status: 200;
+        };
+    };
+} & {
+    "/admin/users": {
+        $post: {
+            input: {
+                json: {
+                    email: string;
+                    password: string;
+                    role?: "user" | "admin" | undefined;
+                    email_verified?: boolean | undefined;
+                };
+            };
+            output: {
+                user: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                    deleted_at: string | null;
+                };
+            };
+            outputFormat: "json";
+            status: 201;
+        };
+    };
+} & {
+    "/admin/users/:sub": {
+        $get: {
+            input: {
+                param: {
+                    sub: string;
+                };
+            };
+            output: {
+                user: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                    deleted_at: string | null;
+                };
+            };
+            outputFormat: "json";
+            status: 200;
+        };
+    };
+} & {
+    "/admin/users/:sub": {
+        $patch: {
+            input: {
+                json: {
+                    email?: string | undefined;
+                    role?: "user" | "admin" | undefined;
+                    email_verified?: boolean | undefined;
+                };
+            } & {
+                param: {
+                    sub: string;
+                };
+            };
+            output: {
+                user: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                    deleted_at: string | null;
+                };
+            };
+            outputFormat: "json";
+            status: 200;
+        };
+    };
+} & {
+    "/admin/users/:sub": {
+        $delete: {
+            input: {
+                param: {
+                    sub: string;
+                };
+            };
+            output: {
+                user: {
+                    managed_by: "database" | "config";
+                    sub: string;
+                    email: string;
+                    role: "user" | "admin";
+                    email_verified: boolean;
+                    email_verification_required: boolean;
+                    has_password: boolean;
+                    totp_registered: boolean;
+                    totp_recovery_codes_missing: boolean;
+                    second_factor_required: boolean;
+                    passkey_count: number;
+                    deleted_at: string | null;
+                };
+            };
+            outputFormat: "json";
+            status: 200;
+        };
+    };
+}, "/", "/admin/users/:sub">;
+//# sourceMappingURL=index.d.ts.map

package/dist/routes/api/admin/users/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../src/routes/api/admin/users/index.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,4BAA4B,CAAC;AA8EzD,eAAO,MAAM,gBAAgB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;4BAwH1B,CAAC"}

package/dist/routes/api/admin/users/index.js

@@ -0,0 +1,166 @@
+import { Hono } from 'hono';
+import { describeRoute, resolver, validator } from 'hono-openapi';
+import { z } from 'zod';
+import { OPENAPI_SECURITY } from "../../../../lib/openapi.js";
+import { TAGS } from "../../../../lib/swagger-tags.js";
+import { requireAdmin } from "../../../../middleware/auth.js";
+import { e } from "../../../../schemas/error.js";
+import { f } from "../../../../schemas/field.js";
+import { r } from "../../../../schemas/response.js";
+const QueryBoolean = z.preprocess((value) => {
+    if (value === undefined)
+        return undefined;
+    if (value === true || value === 'true')
+        return true;
+    if (value === false || value === 'false')
+        return false;
+    return value;
+}, z.boolean());
+const AdminUsersQuery = z.object({
+    query: z.string().trim().optional(),
+    page: z.coerce.number().int().min(1).default(1),
+    page_size: z.coerce.number().int().min(1).max(100).default(20),
+    include_deleted: QueryBoolean.default(false),
+    managed_by: z.enum(['database', 'config']).optional(),
+    role: z.enum(['user', 'admin']).optional(),
+});
+const AdminCreateUserBody = z.object({
+    email: f.userEmail,
+    password: f.userPassword,
+    role: z.enum(['user', 'admin']).default('user'),
+    email_verified: z.boolean().default(false),
+});
+const AdminUpdateUserBody = z
+    .object({
+    email: f.userEmail.optional(),
+    role: z.enum(['user', 'admin']).optional(),
+    email_verified: z.boolean().optional(),
+})
+    .refine((value) => Object.keys(value).length > 0, {
+    message: 'At least one field is required',
+});
+const adminUserResponses = {
+    200: {
+        content: {
+            'application/json': { schema: resolver(r.AdminUserResponse) },
+        },
+        description: 'Success',
+    },
+    401: {
+        content: {
+            'application/json': { schema: resolver(e.Unauthorized.Schema) },
+        },
+        description: 'Unauthorized',
+    },
+    403: {
+        content: {
+            'application/json': {
+                schema: resolver(z.union([e.Forbidden.Schema, e.UserNotEditable.Schema])),
+            },
+        },
+        description: 'Forbidden or not editable',
+    },
+    404: {
+        content: {
+            'application/json': { schema: resolver(e.UserNotFound.Schema) },
+        },
+        description: 'User not found',
+    },
+    409: {
+        content: {
+            'application/json': { schema: resolver(e.EmailAlreadyExists.Schema) },
+        },
+        description: 'Email already exists',
+    },
+};
+export const adminUsersRoutes = new Hono()
+    .get('/admin/users', describeRoute({
+    tags: [TAGS.ADMIN],
+    security: OPENAPI_SECURITY.cookieSession,
+    summary: 'List admin users',
+    description: 'List users for the admin console.',
+    responses: {
+        200: {
+            content: {
+                'application/json': { schema: resolver(r.AdminUserListResponse) },
+            },
+            description: 'Success',
+        },
+    },
+}), requireAdmin(), validator('query', AdminUsersQuery), async (c) => {
+    const query = c.req.valid('query');
+    const result = await c.var.services.userService.listAdminUsers({
+        query: query.query,
+        page: query.page,
+        pageSize: query.page_size,
+        includeDeleted: query.include_deleted,
+        managedBy: query.managed_by,
+        role: query.role,
+    });
+    return c.json(result, 200);
+})
+    .post('/admin/users', describeRoute({
+    tags: [TAGS.ADMIN],
+    security: OPENAPI_SECURITY.cookieSession,
+    summary: 'Create admin-managed user',
+    description: 'Create a database-managed user from the admin console.',
+    responses: {
+        201: {
+            content: {
+                'application/json': { schema: resolver(r.AdminUserResponse) },
+            },
+            description: 'Created',
+        },
+        ...adminUserResponses,
+    },
+}), requireAdmin(), validator('json', AdminCreateUserBody), async (c) => {
+    const body = c.req.valid('json');
+    const user = await c.var.services.userService.createAdminUser({
+        email: body.email,
+        password: body.password,
+        role: body.role,
+        emailVerified: body.email_verified,
+    });
+    return c.json({ user }, 201);
+})
+    .get('/admin/users/:sub', describeRoute({
+    tags: [TAGS.ADMIN],
+    security: OPENAPI_SECURITY.cookieSession,
+    summary: 'Get admin user',
+    description: 'Get a user for the admin console.',
+    responses: adminUserResponses,
+}), requireAdmin(), async (c) => {
+    const user = await c.var.services.userService.getAdminUser(c.req.param('sub'));
+    return c.json({ user }, 200);
+})
+    .patch('/admin/users/:sub', describeRoute({
+    tags: [TAGS.ADMIN],
+    security: OPENAPI_SECURITY.cookieSession,
+    summary: 'Update admin-managed user',
+    description: 'Update a database-managed user from the admin console.',
+    responses: adminUserResponses,
+}), requireAdmin(), validator('json', AdminUpdateUserBody), async (c) => {
+    const body = c.req.valid('json');
+    const user = await c.var.services.userService.updateAdminUser({
+        sub: c.req.param('sub'),
+        actorSub: c.var.verifiedUser.user.sub,
+        email: body.email,
+        role: body.role,
+        emailVerified: body.email_verified,
+    });
+    return c.json({ user }, 200);
+})
+    .delete('/admin/users/:sub', describeRoute({
+    tags: [TAGS.ADMIN],
+    security: OPENAPI_SECURITY.cookieSession,
+    summary: 'Delete admin-managed user',
+    description: 'Soft-delete a database-managed user from the admin console.',
+    responses: adminUserResponses,
+}), requireAdmin(), async (c) => {
+    const user = await c.var.services.userService.deleteAdminUser({
+        sub: c.req.param('sub'),
+        actorSub: c.var.verifiedUser.user.sub,
+    });
+    return c.json({ user }, 200);
+});
+//# sourceMappingURL=index.js.map

package/dist/routes/api/admin/users/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../src/routes/api/admin/users/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,aAAa,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAClE,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,EAAE,gBAAgB,EAAE,MAAM,4BAA4B,CAAC;AAC9D,OAAO,EAAE,IAAI,EAAE,MAAM,iCAAiC,CAAC;AACvD,OAAO,EAAE,YAAY,EAAE,MAAM,gCAAgC,CAAC;AAC9D,OAAO,EAAE,CAAC,EAAE,MAAM,8BAA8B,CAAC;AACjD,OAAO,EAAE,CAAC,EAAE,MAAM,8BAA8B,CAAC;AACjD,OAAO,EAAE,CAAC,EAAE,MAAM,iCAAiC,CAAC;AAEpD,MAAM,YAAY,GAAG,CAAC,CAAC,UAAU,CAAC,CAAC,KAAK,EAAE,EAAE;IAC1C,IAAI,KAAK,KAAK,SAAS;QAAE,OAAO,SAAS,CAAC;IAC1C,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,KAAK,MAAM;QAAE,OAAO,IAAI,CAAC;IACpD,IAAI,KAAK,KAAK,KAAK,IAAI,KAAK,KAAK,OAAO;QAAE,OAAO,KAAK,CAAC;IACvD,OAAO,KAAK,CAAC;AACf,CAAC,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;AAEhB,MAAM,eAAe,GAAG,CAAC,CAAC,MAAM,CAAC;IAC/B,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC,QAAQ,EAAE;IACnC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC;IAC/C,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;IAC9D,eAAe,EAAE,YAAY,CAAC,OAAO,CAAC,KAAK,CAAC;IAC5C,UAAU,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC,CAAC,QAAQ,EAAE;IACrD,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,QAAQ,EAAE;CAC3C,CAAC,CAAC;AAEH,MAAM,mBAAmB,GAAG,CAAC,CAAC,MAAM,CAAC;IACnC,KAAK,EAAE,CAAC,CAAC,SAAS;IAClB,QAAQ,EAAE,CAAC,CAAC,YAAY;IACxB,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC;IAC/C,cAAc,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC;CAC3C,CAAC,CAAC;AAEH,MAAM,mBAAmB,GAAG,CAAC;KAC1B,MAAM,CAAC;IACN,KAAK,EAAE,CAAC,CAAC,SAAS,CAAC,QAAQ,EAAE;IAC7B,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,QAAQ,EAAE;IAC1C,cAAc,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;CACvC,CAAC;KACD,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,MAAM,GAAG,CAAC,EAAE;IAChD,OAAO,EAAE,gCAAgC;CAC1C,CAAC,CAAC;AAEL,MAAM,kBAAkB,GAAG;IACzB,GAAG,EAAE;QACH,OAAO,EAAE;YACP,kBAAkB,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC,iBAAiB,CAAC,EAAE;SAC9D;QACD,WAAW,EAAE,SAAS;KACvB;IACD,GAAG,EAAE;QACH,OAAO,EAAE;YACP,kBAAkB,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC,YAAY,CAAC,MAAM,CAAC,EAAE;SAChE;QACD,WAAW,EAAE,cAAc;KAC5B;IACD,GAAG,EAAE;QACH,OAAO,EAAE;YACP,kBAAkB,EAAE;gBAClB,MAAM,EAAE,QAAQ,CACd,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC,CACxD;aACF;SACF;QACD,WAAW,EAAE,2BAA2B;KACzC;IACD,GAAG,EAAE;QACH,OAAO,EAAE;YACP,kBAAkB,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC,YAAY,CAAC,MAAM,CAAC,EAAE;SAChE;QACD,WAAW,EAAE,gBAAgB;KAC9B;IACD,GAAG,EAAE;QACH,OAAO,EAAE;YACP,kBAAkB,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC,kBAAkB,CAAC,MAAM,CAAC,EAAE;SACtE;QACD,WAAW,EAAE,sBAAsB;KACpC;CACF,CAAC;AAEF,MAAM,CAAC,MAAM,gBAAgB,GAAG,IAAI,IAAI,EAAU;KAC/C,GAAG,CACF,cAAc,EACd,aAAa,CAAC;IACZ,IAAI,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC;IAClB,QAAQ,EAAE,gBAAgB,CAAC,aAAa;IACxC,OAAO,EAAE,kBAAkB;IAC3B,WAAW,EAAE,mCAAmC;IAChD,SAAS,EAAE;QACT,GAAG,EAAE;YACH,OAAO,EAAE;gBACP,kBAAkB,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC,qBAAqB,CAAC,EAAE;aAClE;YACD,WAAW,EAAE,SAAS;SACvB;KACF;CACF,CAAC,EACF,YAAY,EAAE,EACd,SAAS,CAAC,OAAO,EAAE,eAAe,CAAC,EACnC,KAAK,EAAE,CAAC,EAAE,EAAE;IACV,MAAM,KAAK,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IACnC,MAAM,MAAM,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,cAAc,CAAC;QAC7D,KAAK,EAAE,KAAK,CAAC,KAAK;QAClB,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,QAAQ,EAAE,KAAK,CAAC,SAAS;QACzB,cAAc,EAAE,KAAK,CAAC,eAAe;QACrC,SAAS,EAAE,KAAK,CAAC,UAAU;QAC3B,IAAI,EAAE,KAAK,CAAC,IAAI;KACjB,CAAC,CAAC;IACH,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;AAC7B,CAAC,CACF;KACA,IAAI,CACH,cAAc,EACd,aAAa,CAAC;IACZ,IAAI,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC;IAClB,QAAQ,EAAE,gBAAgB,CAAC,aAAa;IACxC,OAAO,EAAE,2BAA2B;IACpC,WAAW,EAAE,wDAAwD;IACrE,SAAS,EAAE;QACT,GAAG,EAAE;YACH,OAAO,EAAE;gBACP,kBAAkB,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC,iBAAiB,CAAC,EAAE;aAC9D;YACD,WAAW,EAAE,SAAS;SACvB;QACD,GAAG,kBAAkB;KACtB;CACF,CAAC,EACF,YAAY,EAAE,EACd,SAAS,CAAC,MAAM,EAAE,mBAAmB,CAAC,EACtC,KAAK,EAAE,CAAC,EAAE,EAAE;IACV,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACjC,MAAM,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,eAAe,CAAC;QAC5D,KAAK,EAAE,IAAI,CAAC,KAAK;QACjB,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,aAAa,EAAE,IAAI,CAAC,cAAc;KACnC,CAAC,CAAC;IACH,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,EAAE,GAAG,CAAC,CAAC;AAC/B,CAAC,CACF;KACA,GAAG,CACF,mBAAmB,EACnB,aAAa,CAAC;IACZ,IAAI,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC;IAClB,QAAQ,EAAE,gBAAgB,CAAC,aAAa;IACxC,OAAO,EAAE,gBAAgB;IACzB,WAAW,EAAE,mCAAmC;IAChD,SAAS,EAAE,kBAAkB;CAC9B,CAAC,EACF,YAAY,EAAE,EACd,KAAK,EAAE,CAAC,EAAE,EAAE;IACV,MAAM,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,YAAY,CACxD,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,CACnB,CAAC;IACF,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,EAAE,GAAG,CAAC,CAAC;AAC/B,CAAC,CACF;KACA,KAAK,CACJ,mBAAmB,EACnB,aAAa,CAAC;IACZ,IAAI,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC;IAClB,QAAQ,EAAE,gBAAgB,CAAC,aAAa;IACxC,OAAO,EAAE,2BAA2B;IACpC,WAAW,EAAE,wDAAwD;IACrE,SAAS,EAAE,kBAAkB;CAC9B,CAAC,EACF,YAAY,EAAE,EACd,SAAS,CAAC,MAAM,EAAE,mBAAmB,CAAC,EACtC,KAAK,EAAE,CAAC,EAAE,EAAE;IACV,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACjC,MAAM,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,eAAe,CAAC;QAC5D,GAAG,EAAE,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC;QACvB,QAAQ,EAAE,CAAC,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,GAAG;QACrC,KAAK,EAAE,IAAI,CAAC,KAAK;QACjB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,aAAa,EAAE,IAAI,CAAC,cAAc;KACnC,CAAC,CAAC;IACH,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,EAAE,GAAG,CAAC,CAAC;AAC/B,CAAC,CACF;KACA,MAAM,CACL,mBAAmB,EACnB,aAAa,CAAC;IACZ,IAAI,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC;IAClB,QAAQ,EAAE,gBAAgB,CAAC,aAAa;IACxC,OAAO,EAAE,2BAA2B;IACpC,WAAW,EACT,6DAA6D;IAC/D,SAAS,EAAE,kBAAkB;CAC9B,CAAC,EACF,YAAY,EAAE,EACd,KAAK,EAAE,CAAC,EAAE,EAAE;IACV,MAAM,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,eAAe,CAAC;QAC5D,GAAG,EAAE,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC;QACvB,QAAQ,EAAE,CAAC,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,GAAG;KACtC,CAAC,CAAC;IACH,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,EAAE,GAAG,CAAC,CAAC;AAC/B,CAAC,CACF,CAAC"}

package/dist/routes/api/auth/accounts/get.d.ts

@@ -0,0 +1,28 @@
+import type { AppEnv } from '../../../../lib/app-env.ts';
+export declare const authAccountsGet: import("hono/hono-base").HonoBase<AppEnv, {
+    "/auth/accounts": {
+        $get: {
+            input: {
+                query: {
+                    client_id?: string | string[];
+                };
+            };
+            output: {
+                active_sub: string | null;
+                accounts: {
+                    sub: import("@mikro-orm/core").Opt<string>;
+                    email: string;
+                    role: import("@mikro-orm/core").Opt<NonNullable<"user" | "admin">>;
+                    current: boolean;
+                    authenticated_at: number;
+                    last_used_at: number;
+                }[];
+                allow_add_account: boolean;
+                allow_remove_account: boolean;
+            };
+            outputFormat: "json";
+            status: 200;
+        };
+    };
+}, "/", "/auth/accounts">;
+//# sourceMappingURL=get.d.ts.map

package/dist/routes/api/auth/accounts/get.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"get.d.ts","sourceRoot":"","sources":["../../../../../src/routes/api/auth/accounts/get.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,4BAA4B,CAAC;AAGzD,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;;;;;;;;;;;yBAsD3B,CAAC"}