npm - @twin.org/api-auth-entity-storage-service - Versions diffs - 0.0.3-next.22 → 0.0.3-next.24 - Mend

@twin.org/api-auth-entity-storage-service 0.0.3-next.22 → 0.0.3-next.24

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (80) hide show

package/docs/reference/classes/AuthenticationRateEntry.md ADDED Viewed

@@ -0,0 +1,37 @@
+# Class: AuthenticationRateEntry
+Class defining the storage for authentication rate entries.
+## Constructors
+### Constructor
+> **new AuthenticationRateEntry**(): `AuthenticationRateEntry`
+#### Returns
+`AuthenticationRateEntry`
+## Properties
+### id {#id}
+> **id**: `string`
+The id for the rate entry.
+***
+### timestamps {#timestamps}
+> **timestamps**: `string`[]
+Array of ISO date strings representing timestamps of failed attempts.
+***
+### dateModified {#datemodified}
+> **dateModified**: `string`
+Last modification time in ISO date format.

package/docs/reference/classes/EntityStorageAuthenticationAdminService.md CHANGED Viewed

@@ -108,7 +108,7 @@ Nothing.
 ### get() {#get}
-> **get**(`email`): `Promise`\<`Omit`\<`IAuthenticationUser`, `"salt"` \| `"password"`\>\>
+> **get**(`email`): `Promise`\<`Omit`\<`IAuthenticationUser`, `"password"` \| `"salt"`\>\>
 Get a user by email.
@@ -122,7 +122,7 @@ The email address of the user to get.
 #### Returns
-`Promise`\<`Omit`\<`IAuthenticationUser`, `"salt"` \| `"password"`\>\>
+`Promise`\<`Omit`\<`IAuthenticationUser`, `"password"` \| `"salt"`\>\>
 The user details.
@@ -134,7 +134,7 @@ The user details.
 ### getByIdentity() {#getbyidentity}
-> **getByIdentity**(`identity`): `Promise`\<`Omit`\<`IAuthenticationUser`, `"salt"` \| `"password"`\>\>
+> **getByIdentity**(`identity`): `Promise`\<`Omit`\<`IAuthenticationUser`, `"password"` \| `"salt"`\>\>
 Get a user by identity.
@@ -148,7 +148,7 @@ The identity of the user to get.
 #### Returns
-`Promise`\<`Omit`\<`IAuthenticationUser`, `"salt"` \| `"password"`\>\>
+`Promise`\<`Omit`\<`IAuthenticationUser`, `"password"` \| `"salt"`\>\>
 The user details.

package/docs/reference/classes/EntityStorageAuthenticationAuditService.md ADDED Viewed

@@ -0,0 +1,157 @@
+# Class: EntityStorageAuthenticationAuditService
+Implementation of the authentication audit component using entity storage.
+## Implements
+- `IAuthenticationAuditComponent`
+## Constructors
+### Constructor
+> **new EntityStorageAuthenticationAuditService**(`options?`): `EntityStorageAuthenticationAuditService`
+Create a new instance of EntityStorageAuthenticationAuditService.
+#### Parameters
+##### options?
+[`IEntityStorageAuthenticationAuditServiceConstructorOptions`](../interfaces/IEntityStorageAuthenticationAuditServiceConstructorOptions.md)
+The dependencies for the identity connector.
+#### Returns
+`EntityStorageAuthenticationAuditService`
+## Properties
+### CLASS\_NAME {#class_name}
+> `readonly` `static` **CLASS\_NAME**: `string`
+Runtime name for the class.
+## Methods
+### className() {#classname}
+> **className**(): `string`
+Returns the class name of the component.
+#### Returns
+`string`
+The class name of the component.
+#### Implementation of
+`IAuthenticationAuditComponent.className`
+***
+### create() {#create}
+> **create**(`entry`): `Promise`\<`string`\>
+Create a new audit entry.
+#### Parameters
+##### entry
+`Omit`\<`IAuthenticationAuditEntry`, `"id"` \| `"dateCreated"`\>
+The audit entry to be logged.
+#### Returns
+`Promise`\<`string`\>
+The unique identifier of the created audit entry.
+#### Implementation of
+`IAuthenticationAuditComponent.create`
+***
+### query() {#query}
+> **query**(`options?`, `cursor?`, `limit?`): `Promise`\<\{ `entries`: `IAuthenticationAuditEntry`[]; `cursor?`: `string`; \}\>
+Query the audit entries.
+#### Parameters
+##### options?
+The query options.
+###### actorId?
+`string`
+The actor identifier to filter the audit entries, optional.
+###### organizationId?
+`string`
+The organization identifier to filter the audit entries, optional.
+###### tenantId?
+`string`
+The tenant identifier to filter the audit entries, optional.
+###### nodeId?
+`string`
+The node identifier to filter the audit entries, optional.
+###### event?
+`string`
+The audit event to filter the audit entries, optional.
+###### startDate?
+`string`
+The start date to filter the audit entries, optional.
+###### endDate?
+`string`
+The end date to filter the audit entries, optional.
+##### cursor?
+`string`
+The cursor for pagination.
+##### limit?
+`number`
+The maximum number of entries to return.
+#### Returns
+`Promise`\<\{ `entries`: `IAuthenticationAuditEntry`[]; `cursor?`: `string`; \}\>
+The audit entries.
+#### Implementation of
+`IAuthenticationAuditComponent.query`

package/docs/reference/classes/EntityStorageAuthenticationRateService.md ADDED Viewed

@@ -0,0 +1,227 @@
+# Class: EntityStorageAuthenticationRateService
+Implementation of the authentication rate component using entity storage.
+## Implements
+- `IAuthenticationRateComponent`
+## Constructors
+### Constructor
+> **new EntityStorageAuthenticationRateService**(`options?`): `EntityStorageAuthenticationRateService`
+Create a new instance of EntityStorageAuthenticationRateService.
+#### Parameters
+##### options?
+[`IEntityStorageAuthenticationRateServiceConstructorOptions`](../interfaces/IEntityStorageAuthenticationRateServiceConstructorOptions.md)
+The constructor options.
+#### Returns
+`EntityStorageAuthenticationRateService`
+## Properties
+### CLASS\_NAME {#class_name}
+> `readonly` `static` **CLASS\_NAME**: `string`
+Runtime name for the class.
+## Methods
+### registerAction() {#registeraction}
+> **registerAction**(`action`, `config`): `Promise`\<`void`\>
+Register or update rate-limit configuration for an action.
+#### Parameters
+##### action
+`string`
+The action name.
+##### config
+`IAuthenticationRateActionConfig`
+The action configuration.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationRateComponent.registerAction`
+***
+### unregisterAction() {#unregisteraction}
+> **unregisterAction**(`action`): `Promise`\<`void`\>
+Unregister rate-limit configuration for an action.
+#### Parameters
+##### action
+`string`
+The action name.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationRateComponent.unregisterAction`
+***
+### className() {#classname}
+> **className**(): `string`
+Returns the class name of the component.
+#### Returns
+`string`
+The class name of the component.
+#### Implementation of
+`IAuthenticationRateComponent.className`
+***
+### start() {#start}
+> **start**(`nodeLoggingComponentType?`): `Promise`\<`void`\>
+The service needs to be started when the application is initialized.
+#### Parameters
+##### nodeLoggingComponentType?
+`string`
+The node logging component type.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationRateComponent.start`
+***
+### stop() {#stop}
+> **stop**(`nodeLoggingComponentType?`): `Promise`\<`void`\>
+The component needs to be stopped when the node is closed.
+#### Parameters
+##### nodeLoggingComponentType?
+`string`
+The node logging component type.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationRateComponent.stop`
+***
+### check() {#check}
+> **check**(`action`, `identifier`): `Promise`\<`string`\>
+Check the authentication rate for a given action and identifier.
+#### Parameters
+##### action
+`string`
+The action to be checked.
+##### identifier
+`string`
+The identifier to be checked.
+#### Returns
+`Promise`\<`string`\>
+The rate entry id.
+#### Implementation of
+`IAuthenticationRateComponent.check`
+***
+### clear() {#clear}
+> **clear**(`action`, `identifier`): `Promise`\<`void`\>
+Clear the authentication rate entry for the given action and identifier.
+#### Parameters
+##### action
+`string`
+The action to clear.
+##### identifier
+`string`
+The identifier to clear.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationRateComponent.clear`

package/docs/reference/classes/EntityStorageAuthenticationService.md CHANGED Viewed

@@ -80,6 +80,32 @@ Nothing.
 ***
+### stop() {#stop}
+> **stop**(`nodeLoggingComponentType?`): `Promise`\<`void`\>
+The component needs to be stopped when the node is closed.
+#### Parameters
+##### nodeLoggingComponentType?
+`string`
+The node logging component type.
+#### Returns
+`Promise`\<`void`\>
+Nothing.
+#### Implementation of
+`IAuthenticationComponent.stop`
+***
 ### login() {#login}
 > **login**(`email`, `password`): `Promise`\<\{ `token?`: `string`; `expiry`: `number`; \}\>

package/docs/reference/classes/PasswordHelper.md ADDED Viewed

@@ -0,0 +1,74 @@
+# Class: PasswordHelper
+Helper class for password operations.
+## Constructors
+### Constructor
+> **new PasswordHelper**(): `PasswordHelper`
+#### Returns
+`PasswordHelper`
+## Properties
+### CLASS\_NAME {#class_name}
+> `readonly` `static` **CLASS\_NAME**: `string`
+Runtime name for the class.
+## Methods
+### updatePassword() {#updatepassword}
+> `static` **updatePassword**(`userEntityStorage`, `authenticationAuditService`, `user`, `newPassword`, `currentPassword?`, `minPasswordLength?`): `Promise`\<`void`\>
+Update the password for a user.
+Validates password strength, verifies the current password if provided, then hashes and stores the new password and raises an audit event.
+#### Parameters
+##### userEntityStorage
+`IEntityStorageConnector`\<[`AuthenticationUser`](AuthenticationUser.md)\>
+The entity storage for users.
+##### authenticationAuditService
+`IAuthenticationAuditComponent` \| `undefined`
+The optional audit service.
+##### user
+[`AuthenticationUser`](AuthenticationUser.md)
+The user whose password is being updated.
+##### newPassword
+`string`
+The new password to set.
+##### currentPassword?
+`string`
+The current password to verify against, if supplied.
+##### minPasswordLength?
+`number`
+Optional minimum password length for validation.
+#### Returns
+`Promise`\<`void`\>
+Nothing.

package/docs/reference/classes/TokenHelper.md CHANGED Viewed

@@ -82,7 +82,7 @@ The new token and its expiry date.
 ### verify() {#verify}
-> `static` **verify**(`vaultConnector`, `signingKeyName`, `token`, `requiredScopes?`): `Promise`\<\{ `header`: `JWTHeaderParameters`; `payload`: `JWTPayload`; \}\>
+> `static` **verify**(`vaultConnector`, `signingKeyName`, `token`, `requiredScopes?`, `verifyUser?`): `Promise`\<\{ `header`: `JWTHeaderParameters`; `payload`: `JWTPayload`; \}\>
 Verify the token.
@@ -112,6 +112,12 @@ The token to verify.
 The required scopes.
+##### verifyUser?
+(`userIdentity`, `organizationIdentity`) => `Promise`\<`string`[]\>
+A function to verify the user identity and organization, which can be used to check if the user is still active or not.
 #### Returns
 `Promise`\<\{ `header`: `JWTHeaderParameters`; `payload`: `JWTPayload`; \}\>

package/docs/reference/functions/authenticationAuditCreate.md ADDED Viewed

@@ -0,0 +1,31 @@
+# Function: authenticationAuditCreate()
+> **authenticationAuditCreate**(`httpRequestContext`, `componentName`, `request`): `Promise`\<`ICreatedResponse`\>
+Create an authentication audit entry.
+## Parameters
+### httpRequestContext
+`IHttpRequestContext`
+The request context for the API.
+### componentName
+`string`
+The name of the component to use in the routes.
+### request
+`IAuditCreateRequest`
+The request.
+## Returns
+`Promise`\<`ICreatedResponse`\>
+The response object with additional http response properties.

package/docs/reference/functions/authenticationAuditQuery.md ADDED Viewed

@@ -0,0 +1,31 @@
+# Function: authenticationAuditQuery()
+> **authenticationAuditQuery**(`httpRequestContext`, `componentName`, `request`): `Promise`\<`IAuditQueryResponse`\>
+Query authentication audit entries.
+## Parameters
+### httpRequestContext
+`IHttpRequestContext`
+The request context for the API.
+### componentName
+`string`
+The name of the component to use in the routes.
+### request
+`IAuditQueryRequest`
+The request.
+## Returns
+`Promise`\<`IAuditQueryResponse`\>
+The response object with additional http response properties.

package/docs/reference/functions/generateRestRoutesAuthenticationAudit.md ADDED Viewed

@@ -0,0 +1,25 @@
+# Function: generateRestRoutesAuthenticationAudit()
+> **generateRestRoutesAuthenticationAudit**(`baseRouteName`, `componentName`): `IRestRoute`\<`any`, `any`\>[]
+The REST routes for authentication audit.
+## Parameters
+### baseRouteName
+`string`
+Prefix to prepend to the paths.
+### componentName
+`string`
+The name of the component to use in the routes stored in the ComponentFactory.
+## Returns
+`IRestRoute`\<`any`, `any`\>[]
+The generated routes.

package/docs/reference/index.md CHANGED Viewed

@@ -2,10 +2,15 @@
 ## Classes
+- [AuthenticationAuditEntry](classes/AuthenticationAuditEntry.md)
+- [AuthenticationRateEntry](classes/AuthenticationRateEntry.md)
 - [AuthenticationUser](classes/AuthenticationUser.md)
 - [AuthHeaderProcessor](classes/AuthHeaderProcessor.md)
 - [EntityStorageAuthenticationAdminService](classes/EntityStorageAuthenticationAdminService.md)
+- [EntityStorageAuthenticationAuditService](classes/EntityStorageAuthenticationAuditService.md)
+- [EntityStorageAuthenticationRateService](classes/EntityStorageAuthenticationRateService.md)
 - [EntityStorageAuthenticationService](classes/EntityStorageAuthenticationService.md)
+- [PasswordHelper](classes/PasswordHelper.md)
 - [TokenHelper](classes/TokenHelper.md)
 ## Interfaces
@@ -14,6 +19,10 @@
 - [IAuthHeaderProcessorConstructorOptions](interfaces/IAuthHeaderProcessorConstructorOptions.md)
 - [IEntityStorageAuthenticationAdminServiceConfig](interfaces/IEntityStorageAuthenticationAdminServiceConfig.md)
 - [IEntityStorageAuthenticationAdminServiceConstructorOptions](interfaces/IEntityStorageAuthenticationAdminServiceConstructorOptions.md)
+- [IEntityStorageAuthenticationAuditServiceConfig](interfaces/IEntityStorageAuthenticationAuditServiceConfig.md)
+- [IEntityStorageAuthenticationAuditServiceConstructorOptions](interfaces/IEntityStorageAuthenticationAuditServiceConstructorOptions.md)
+- [IEntityStorageAuthenticationRateServiceConfig](interfaces/IEntityStorageAuthenticationRateServiceConfig.md)
+- [IEntityStorageAuthenticationRateServiceConstructorOptions](interfaces/IEntityStorageAuthenticationRateServiceConstructorOptions.md)
 - [IEntityStorageAuthenticationServiceConfig](interfaces/IEntityStorageAuthenticationServiceConfig.md)
 - [IEntityStorageAuthenticationServiceConstructorOptions](interfaces/IEntityStorageAuthenticationServiceConstructorOptions.md)
@@ -21,6 +30,7 @@
 - [restEntryPoints](variables/restEntryPoints.md)
 - [tagsAuthenticationAdmin](variables/tagsAuthenticationAdmin.md)
+- [tagsAuthenticationAudit](variables/tagsAuthenticationAudit.md)
 - [tagsAuthentication](variables/tagsAuthentication.md)
 ## Functions
@@ -32,6 +42,9 @@
 - [authenticationAdminGetUser](functions/authenticationAdminGetUser.md)
 - [authenticationAdminGetUserByIdentity](functions/authenticationAdminGetUserByIdentity.md)
 - [authenticationAdminRemoveUser](functions/authenticationAdminRemoveUser.md)
+- [generateRestRoutesAuthenticationAudit](functions/generateRestRoutesAuthenticationAudit.md)
+- [authenticationAuditCreate](functions/authenticationAuditCreate.md)
+- [authenticationAuditQuery](functions/authenticationAuditQuery.md)
 - [generateRestRoutesAuthentication](functions/generateRestRoutesAuthentication.md)
 - [authenticationLogin](functions/authenticationLogin.md)
 - [authenticationLogout](functions/authenticationLogout.md)