npm - @twin.org/api-auth-entity-storage-service - Versions diffs - 0.0.3-next.21 → 0.0.3-next.23 - Mend

@twin.org/api-auth-entity-storage-service 0.0.3-next.21 → 0.0.3-next.23

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (80) hide show

package/docs/reference/classes/EntityStorageAuthenticationAuditService.md ADDED Viewed

@@ -0,0 +1,157 @@
+# Class: EntityStorageAuthenticationAuditService
+Implementation of the authentication audit component using entity storage.
+## Implements
+- `IAuthenticationAuditComponent`
+## Constructors
+### Constructor
+> **new EntityStorageAuthenticationAuditService**(`options?`): `EntityStorageAuthenticationAuditService`
+Create a new instance of EntityStorageAuthenticationAuditService.
+#### Parameters
+##### options?
+[`IEntityStorageAuthenticationAuditServiceConstructorOptions`](../interfaces/IEntityStorageAuthenticationAuditServiceConstructorOptions.md)
+The dependencies for the identity connector.
+#### Returns
+`EntityStorageAuthenticationAuditService`
+## Properties
+### CLASS\_NAME {#class_name}
+> `readonly` `static` **CLASS\_NAME**: `string`
+Runtime name for the class.
+## Methods
+### className() {#classname}
+> **className**(): `string`
+Returns the class name of the component.
+#### Returns
+`string`
+The class name of the component.
+#### Implementation of
+`IAuthenticationAuditComponent.className`
+***
+### create() {#create}
+> **create**(`entry`): `Promise`\<`string`\>
+Create a new audit entry.
+#### Parameters
+##### entry
+`Omit`\<`IAuthenticationAuditEntry`, `"id"` \| `"dateCreated"`\>
+The audit entry to be logged.
+#### Returns
+`Promise`\<`string`\>
+The unique identifier of the created audit entry.
+#### Implementation of
+`IAuthenticationAuditComponent.create`
+***
+### query() {#query}
+> **query**(`options?`, `cursor?`, `limit?`): `Promise`\<\{ `entries`: `IAuthenticationAuditEntry`[]; `cursor?`: `string`; \}\>
+Query the audit entries.
+#### Parameters
+##### options?
+The query options.
+###### actorId?
+`string`
+The actor identifier to filter the audit entries, optional.
+###### organizationId?
+`string`
+The organization identifier to filter the audit entries, optional.
+###### tenantId?
+`string`
+The tenant identifier to filter the audit entries, optional.
+###### nodeId?
+`string`
+The node identifier to filter the audit entries, optional.
+###### event?
+`string`
+The audit event to filter the audit entries, optional.
+###### startDate?
+`string`
+The start date to filter the audit entries, optional.
+###### endDate?
+`string`
+The end date to filter the audit entries, optional.
+##### cursor?
+`string`
+The cursor for pagination.
+##### limit?
+`number`
+The maximum number of entries to return.
+#### Returns
+`Promise`\<\{ `entries`: `IAuthenticationAuditEntry`[]; `cursor?`: `string`; \}\>
+The audit entries.
+#### Implementation of
+`IAuthenticationAuditComponent.query`

package/docs/reference/classes/EntityStorageAuthenticationRateService.md ADDED Viewed

@@ -0,0 +1,227 @@
+# Class: EntityStorageAuthenticationRateService
+Implementation of the authentication rate component using entity storage.
+## Implements
+- `IAuthenticationRateComponent`
+## Constructors
+### Constructor
+> **new EntityStorageAuthenticationRateService**(`options?`): `EntityStorageAuthenticationRateService`
+Create a new instance of EntityStorageAuthenticationRateService.
+#### Parameters
+##### options?
+[`IEntityStorageAuthenticationRateServiceConstructorOptions`](../interfaces/IEntityStorageAuthenticationRateServiceConstructorOptions.md)
+The constructor options.
+#### Returns
+`EntityStorageAuthenticationRateService`
+## Properties
+### CLASS\_NAME {#class_name}
+> `readonly` `static` **CLASS\_NAME**: `string`
+Runtime name for the class.
+## Methods
+### registerAction() {#registeraction}
+> **registerAction**(`action`, `config`): `Promise`\<`void`\>
+Register or update rate-limit configuration for an action.
+#### Parameters
+##### action
+`string`
+The action name.
+##### config
+`IAuthenticationRateActionConfig`
+The action configuration.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationRateComponent.registerAction`
+***
+### unregisterAction() {#unregisteraction}
+> **unregisterAction**(`action`): `Promise`\<`void`\>
+Unregister rate-limit configuration for an action.
+#### Parameters
+##### action
+`string`
+The action name.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationRateComponent.unregisterAction`
+***
+### className() {#classname}
+> **className**(): `string`
+Returns the class name of the component.
+#### Returns
+`string`
+The class name of the component.
+#### Implementation of
+`IAuthenticationRateComponent.className`
+***
+### start() {#start}
+> **start**(`nodeLoggingComponentType?`): `Promise`\<`void`\>
+The service needs to be started when the application is initialized.
+#### Parameters
+##### nodeLoggingComponentType?
+`string`
+The node logging component type.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationRateComponent.start`
+***
+### stop() {#stop}
+> **stop**(`nodeLoggingComponentType?`): `Promise`\<`void`\>
+The component needs to be stopped when the node is closed.
+#### Parameters
+##### nodeLoggingComponentType?
+`string`
+The node logging component type.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationRateComponent.stop`
+***
+### check() {#check}
+> **check**(`action`, `identifier`): `Promise`\<`string`\>
+Check the authentication rate for a given action and identifier.
+#### Parameters
+##### action
+`string`
+The action to be checked.
+##### identifier
+`string`
+The identifier to be checked.
+#### Returns
+`Promise`\<`string`\>
+The rate entry id.
+#### Implementation of
+`IAuthenticationRateComponent.check`
+***
+### clear() {#clear}
+> **clear**(`action`, `identifier`): `Promise`\<`void`\>
+Clear the authentication rate entry for the given action and identifier.
+#### Parameters
+##### action
+`string`
+The action to clear.
+##### identifier
+`string`
+The identifier to clear.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationRateComponent.clear`

package/docs/reference/classes/EntityStorageAuthenticationService.md CHANGED Viewed

@@ -28,7 +28,7 @@ The dependencies for the identity connector.
 ## Properties
-### CLASS\_NAME
+### CLASS\_NAME {#class_name}
 > `readonly` `static` **CLASS\_NAME**: `string`
@@ -36,7 +36,7 @@ Runtime name for the class.
 ## Methods
-### className()
+### className() {#classname}
 > **className**(): `string`
@@ -54,7 +54,7 @@ The class name of the component.
 ***
-### start()
+### start() {#start}
 > **start**(`nodeLoggingComponentType?`): `Promise`\<`void`\>
@@ -80,7 +80,33 @@ Nothing.
 ***
-### login()
+### stop() {#stop}
+> **stop**(`nodeLoggingComponentType?`): `Promise`\<`void`\>
+The component needs to be stopped when the node is closed.
+#### Parameters
+##### nodeLoggingComponentType?
+`string`
+The node logging component type.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationComponent.stop`
+***
+### login() {#login}
 > **login**(`email`, `password`): `Promise`\<\{ `token?`: `string`; `expiry`: `number`; \}\>
@@ -112,7 +138,7 @@ The authentication token for the user, if it uses a mechanism with public access
 ***
-### logout()
+### logout() {#logout}
 > **logout**(`token?`): `Promise`\<`void`\>
@@ -138,7 +164,7 @@ Nothing.
 ***
-### refresh()
+### refresh() {#refresh}
 > **refresh**(`token?`): `Promise`\<\{ `token?`: `string`; `expiry`: `number`; \}\>
@@ -164,7 +190,7 @@ The refreshed token, if it uses a mechanism with public access.
 ***
-### updatePassword()
+### updatePassword() {#updatepassword}
 > **updatePassword**(`currentPassword`, `newPassword`): `Promise`\<`void`\>

package/docs/reference/classes/TokenHelper.md CHANGED Viewed

@@ -14,7 +14,7 @@ Helper class for token operations.
 ## Properties
-### CLASS\_NAME
+### CLASS\_NAME {#class_name}
 > `readonly` `static` **CLASS\_NAME**: `string`
@@ -22,7 +22,7 @@ Runtime name for the class.
 ## Methods
-### createToken()
+### createToken() {#createtoken}
 > `static` **createToken**(`vaultConnector`, `signingKeyName`, `userIdentity`, `organizationIdentity`, `tenantId`, `ttlMinutes`, `scope?`): `Promise`\<\{ `token`: `string`; `expiry`: `number`; \}\>
@@ -50,15 +50,15 @@ The subject for the token.
 ##### organizationIdentity
-The organization for the token.
+`string` \| `undefined`
-`string` | `undefined`
+The organization for the token.
 ##### tenantId
-The tenant id for the token.
+`string` \| `undefined`
-`string` | `undefined`
+The tenant id for the token.
 ##### ttlMinutes
@@ -80,9 +80,9 @@ The new token and its expiry date.
 ***
-### verify()
+### verify() {#verify}
-> `static` **verify**(`vaultConnector`, `signingKeyName`, `token`, `requiredScopes?`): `Promise`\<\{ `header`: `JWTHeaderParameters`; `payload`: `JWTPayload`; \}\>
+> `static` **verify**(`vaultConnector`, `signingKeyName`, `token`, `requiredScopes?`, `verifyUser?`): `Promise`\<\{ `header`: `JWTHeaderParameters`; `payload`: `JWTPayload`; \}\>
 Verify the token.
@@ -102,9 +102,9 @@ The signing key name.
 ##### token
-The token to verify.
+`string` \| `undefined`
-`string` | `undefined`
+The token to verify.
 ##### requiredScopes?
@@ -112,6 +112,12 @@ The token to verify.
 The required scopes.
+##### verifyUser?
+(`userIdentity`, `organizationIdentity`) => `Promise`\<`string`[]\>
+A function to verify the user identity and organization, which can be used to check if the user is still active or not.
 #### Returns
 `Promise`\<\{ `header`: `JWTHeaderParameters`; `payload`: `JWTPayload`; \}\>
@@ -124,7 +130,7 @@ UnauthorizedError if the token is missing, invalid or expired.
 ***
-### extractTokenFromHeaders()
+### extractTokenFromHeaders() {#extracttokenfromheaders}
 > `static` **extractTokenFromHeaders**(`headers?`, `cookieName?`): \{ `token`: `string`; `location`: `"authorization"` \| `"cookie"`; \} \| `undefined`

package/docs/reference/functions/authenticationAuditCreate.md ADDED Viewed

@@ -0,0 +1,31 @@
+# Function: authenticationAuditCreate()
+> **authenticationAuditCreate**(`httpRequestContext`, `componentName`, `request`): `Promise`\<`ICreatedResponse`\>
+Create an authentication audit entry.
+## Parameters
+### httpRequestContext
+`IHttpRequestContext`
+The request context for the API.
+### componentName
+`string`
+The name of the component to use in the routes.
+### request
+`IAuditCreateRequest`
+The request.
+## Returns
+`Promise`\<`ICreatedResponse`\>
+The response object with additional http response properties.

package/docs/reference/functions/authenticationAuditQuery.md ADDED Viewed

@@ -0,0 +1,31 @@
+# Function: authenticationAuditQuery()
+> **authenticationAuditQuery**(`httpRequestContext`, `componentName`, `request`): `Promise`\<`IAuditQueryResponse`\>
+Query authentication audit entries.
+## Parameters
+### httpRequestContext
+`IHttpRequestContext`
+The request context for the API.
+### componentName
+`string`
+The name of the component to use in the routes.
+### request
+`IAuditQueryRequest`
+The request.
+## Returns
+`Promise`\<`IAuditQueryResponse`\>
+The response object with additional http response properties.

package/docs/reference/functions/generateRestRoutesAuthenticationAudit.md ADDED Viewed

@@ -0,0 +1,25 @@
+# Function: generateRestRoutesAuthenticationAudit()
+> **generateRestRoutesAuthenticationAudit**(`baseRouteName`, `componentName`): `IRestRoute`\<`any`, `any`\>[]
+The REST routes for authentication audit.
+## Parameters
+### baseRouteName
+`string`
+Prefix to prepend to the paths.
+### componentName
+`string`
+The name of the component to use in the routes stored in the ComponentFactory.
+## Returns
+`IRestRoute`\<`any`, `any`\>[]
+The generated routes.

package/docs/reference/index.md CHANGED Viewed

@@ -2,9 +2,13 @@
 ## Classes
+- [AuthenticationAuditEntry](classes/AuthenticationAuditEntry.md)
+- [AuthenticationRateEntry](classes/AuthenticationRateEntry.md)
 - [AuthenticationUser](classes/AuthenticationUser.md)
 - [AuthHeaderProcessor](classes/AuthHeaderProcessor.md)
 - [EntityStorageAuthenticationAdminService](classes/EntityStorageAuthenticationAdminService.md)
+- [EntityStorageAuthenticationAuditService](classes/EntityStorageAuthenticationAuditService.md)
+- [EntityStorageAuthenticationRateService](classes/EntityStorageAuthenticationRateService.md)
 - [EntityStorageAuthenticationService](classes/EntityStorageAuthenticationService.md)
 - [TokenHelper](classes/TokenHelper.md)
@@ -14,6 +18,10 @@
 - [IAuthHeaderProcessorConstructorOptions](interfaces/IAuthHeaderProcessorConstructorOptions.md)
 - [IEntityStorageAuthenticationAdminServiceConfig](interfaces/IEntityStorageAuthenticationAdminServiceConfig.md)
 - [IEntityStorageAuthenticationAdminServiceConstructorOptions](interfaces/IEntityStorageAuthenticationAdminServiceConstructorOptions.md)
+- [IEntityStorageAuthenticationAuditServiceConfig](interfaces/IEntityStorageAuthenticationAuditServiceConfig.md)
+- [IEntityStorageAuthenticationAuditServiceConstructorOptions](interfaces/IEntityStorageAuthenticationAuditServiceConstructorOptions.md)
+- [IEntityStorageAuthenticationRateServiceConfig](interfaces/IEntityStorageAuthenticationRateServiceConfig.md)
+- [IEntityStorageAuthenticationRateServiceConstructorOptions](interfaces/IEntityStorageAuthenticationRateServiceConstructorOptions.md)
 - [IEntityStorageAuthenticationServiceConfig](interfaces/IEntityStorageAuthenticationServiceConfig.md)
 - [IEntityStorageAuthenticationServiceConstructorOptions](interfaces/IEntityStorageAuthenticationServiceConstructorOptions.md)
@@ -21,6 +29,7 @@
 - [restEntryPoints](variables/restEntryPoints.md)
 - [tagsAuthenticationAdmin](variables/tagsAuthenticationAdmin.md)
+- [tagsAuthenticationAudit](variables/tagsAuthenticationAudit.md)
 - [tagsAuthentication](variables/tagsAuthentication.md)
 ## Functions
@@ -32,6 +41,9 @@
 - [authenticationAdminGetUser](functions/authenticationAdminGetUser.md)
 - [authenticationAdminGetUserByIdentity](functions/authenticationAdminGetUserByIdentity.md)
 - [authenticationAdminRemoveUser](functions/authenticationAdminRemoveUser.md)
+- [generateRestRoutesAuthenticationAudit](functions/generateRestRoutesAuthenticationAudit.md)
+- [authenticationAuditCreate](functions/authenticationAuditCreate.md)
+- [authenticationAuditQuery](functions/authenticationAuditQuery.md)
 - [generateRestRoutesAuthentication](functions/generateRestRoutesAuthentication.md)
 - [authenticationLogin](functions/authenticationLogin.md)
 - [authenticationLogout](functions/authenticationLogout.md)

package/docs/reference/interfaces/IAuthHeaderProcessorConfig.md CHANGED Viewed

@@ -4,16 +4,28 @@ Configuration for the authentication header processor
 ## Properties
-### signingKeyName?
+### signingKeyName? {#signingkeyname}
-> `optional` **signingKeyName**: `string`
+> `optional` **signingKeyName?**: `string`
 The name of the key to retrieve from the vault for signing JWT.
+#### Default
+```ts
+auth-signing
+```
 ***
-### cookieName?
+### cookieName? {#cookiename}
-> `optional` **cookieName**: `string`
+> `optional` **cookieName?**: `string`
 The name of the cookie to use for the token.
+#### Default
+```ts
+access_token
+```