@vnodes/auth 0.0.5 → 0.0.11

package/dist/providers/auth-client-options.provider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-client-options.provider.d.ts","sourceRoot":"","sources":["../../src/providers/auth-client-options.provider.ts"],"names":[],"mappings":"AAAA,OAAO,EAAU,QAAQ,EAAE,MAAM,gBAAgB,CAAC;AAKlD,wBAAgB,yBAAyB,WAExC;AAED,wBAAgB,wBAAwB,IAAI,QAAQ,CAanD;AAED,eAAO,MAAM,uBAAuB,8CAA4C,CAAC"}

package/dist/providers/auth-client-options.provider.js

@@ -0,0 +1,21 @@
+import { Inject } from '@nestjs/common';
+import { ConfigService } from '@nestjs/config';
+import { Env } from '@vnodes/metadata';
+export function getAuthClientOptionsToken() {
+    return 'AUTH_CLIENT_OPTIONS_TOKEN';
+}
+export function provideAuthClientOptions() {
+    return {
+        inject: [ConfigService],
+        provide: getAuthClientOptionsToken(),
+        useFactory(config) {
+            const appId = config.getOrThrow(Env.APP_ID);
+            const authHost = config.getOrThrow(Env.AUTH_SERVICE_URL);
+            return {
+                appId,
+                authServiceUrl: `${authHost}/api/auth/can-activate`,
+            };
+        },
+    };
+}
+export const InjectAutoClientOptions = () => Inject(getAuthClientOptionsToken());

package/dist/services/auth-listener.service.d.ts

@@ -0,0 +1,10 @@
+import { EmailOtpEventDto } from '../dto/email-otp-event.dto.js';
+import { UpdatePasswordEventDto } from '../dto/update-password-event.dto.js';
+/**
+ * Extend an override the methods requried
+ */
+export declare class AuthListenerService {
+    protected updatePassword(body: UpdatePasswordEventDto): Promise<void>;
+    protected emailOtp(body: EmailOtpEventDto): Promise<void>;
+}
+//# sourceMappingURL=auth-listener.service.d.ts.map

package/dist/services/auth-listener.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-listener.service.d.ts","sourceRoot":"","sources":["../../src/services/auth-listener.service.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,gBAAgB,EAAE,MAAM,+BAA+B,CAAC;AACjE,OAAO,EAAE,sBAAsB,EAAE,MAAM,qCAAqC,CAAC;AAE7E;;GAEG;AACH,qBACa,mBAAmB;cAEZ,cAAc,CAAC,IAAI,EAAE,sBAAsB;cAK3C,QAAQ,CAAC,IAAI,EAAE,gBAAgB;CAGlD"}

package/dist/services/auth-listener.service.js

@@ -0,0 +1,32 @@
+import { __decorate, __metadata } from "tslib";
+import { Injectable, NotImplementedException } from '@nestjs/common';
+import { OnEvent } from '@nestjs/event-emitter';
+import { EmailOtpEventDto } from '../dto/email-otp-event.dto.js';
+import { UpdatePasswordEventDto } from '../dto/update-password-event.dto.js';
+/**
+ * Extend an override the methods requried
+ */
+let AuthListenerService = class AuthListenerService {
+    async updatePassword(body) {
+        throw new NotImplementedException(`Password update for the user with uuid: ${body.uuid} is not implemented`);
+    }
+    async emailOtp(body) {
+        throw new NotImplementedException(`Email otp is not implemented: ${body.username}`);
+    }
+};
+__decorate([
+    OnEvent('auth.user.update.password'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [UpdatePasswordEventDto]),
+    __metadata("design:returntype", Promise)
+], AuthListenerService.prototype, "updatePassword", null);
+__decorate([
+    OnEvent('auth.user.email.otp'),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [EmailOtpEventDto]),
+    __metadata("design:returntype", Promise)
+], AuthListenerService.prototype, "emailOtp", null);
+AuthListenerService = __decorate([
+    Injectable()
+], AuthListenerService);
+export { AuthListenerService };

package/dist/services/{user.service.d.ts → auth-user.service.d.ts}

@@ -1,8 +1,10 @@
 import { JwtService } from '@nestjs/jwt';
-import { User, UserManager } from './user-manager.js';
-export declare class UserService {
+import { User } from '../types/user.js';
+import { UserManager } from '../types/user-manager.js';
+export declare class AuthUserService {
     protected readonly jwt: JwtService;
     protected readonly usernameMap: Map<string, User>;
+    protected readonly uuidUsernameMap: Map<string, string>;
     protected readonly tokenUsernameMap: Map<string, string>;
     protected readonly usernameOtpMap: Map<string, string>;
     constructor(jwt: JwtService);
@@ -10,11 +12,17 @@ export declare class UserService {
     deleteByUsername(username: string): void;
     load(users: User[]): void;
     findByUsername(username: string): UserManager;
-    findByToken(token: string): UserManager;
+    /**
+     * Find user by token and username or throw not found exception
+     * @param token
+     * @returns
+     */
+    findByToken(token: string): Promise<UserManager>;
+    findByUuid(uuid: string): UserManager;
     deleteToken(token: string): boolean;
     updateToken(token: string, username: string): void;
     createOtp(username: string): string;
     compareOtp(username: string, otp: string): boolean;
     deleteOtp(username: string): void;
 }
-//# sourceMappingURL=user.service.d.ts.map
+//# sourceMappingURL=auth-user.service.d.ts.map

package/dist/services/auth-user.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-user.service.d.ts","sourceRoot":"","sources":["../../src/services/auth-user.service.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAGzC,OAAO,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAC;AACxC,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAC;AAEvD,qBACa,eAAe;IAMZ,SAAS,CAAC,QAAQ,CAAC,GAAG,EAAE,UAAU;IAL9C,SAAS,CAAC,QAAQ,CAAC,WAAW,oBAA2B;IACzD,SAAS,CAAC,QAAQ,CAAC,eAAe,sBAA6B;IAC/D,SAAS,CAAC,QAAQ,CAAC,gBAAgB,sBAA6B;IAChE,SAAS,CAAC,QAAQ,CAAC,cAAc,sBAA6B;gBAE/B,GAAG,EAAE,UAAU;IAE9C,MAAM,CAAC,IAAI,EAAE,IAAI;IAIjB,gBAAgB,CAAC,QAAQ,EAAE,MAAM;IAIjC,IAAI,CAAC,KAAK,EAAE,IAAI,EAAE;IAQlB,cAAc,CAAC,QAAQ,EAAE,MAAM;IAQ/B;;;;OAIG;IACG,WAAW,CAAC,KAAK,EAAE,MAAM;IAa/B,UAAU,CAAC,IAAI,EAAE,MAAM;IAQvB,WAAW,CAAC,KAAK,EAAE,MAAM;IAOzB,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM;IAI3C,SAAS,CAAC,QAAQ,EAAE,MAAM;IAM1B,UAAU,CAAC,QAAQ,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM;IAYxC,SAAS,CAAC,QAAQ,EAAE,MAAM;CAG7B"}

package/dist/services/{user.service.js → auth-user.service.js}

@@ -1,11 +1,12 @@
-import { __decorate, __metadata, __param } from "tslib";
-import { Inject, Injectable, NotFoundException, UnauthorizedException } from '@nestjs/common';
+import { __decorate, __metadata } from "tslib";
+import { Injectable, NotFoundException, UnauthorizedException } from '@nestjs/common';
 import { JwtService } from '@nestjs/jwt';
 import { otp } from '@vnodes/crypto';
-import { UserManager } from './user-manager.js';
-let UserService = class UserService {
+import { UserManager } from '../types/user-manager.js';
+let AuthUserService = class AuthUserService {
     jwt;
     usernameMap = new Map();
+    uuidUsernameMap = new Map();
     tokenUsernameMap = new Map();
     usernameOtpMap = new Map();
     constructor(jwt) {
@@ -21,6 +22,7 @@ let UserService = class UserService {
         this.usernameMap.clear();
         for (const user of users) {
             this.usernameMap.set(user.username, user);
+            this.uuidUsernameMap.set(user.uuid, user.username);
         }
     }
     findByUsername(username) {
@@ -30,12 +32,30 @@ let UserService = class UserService {
         }
         throw new NotFoundException(`The user ${username} not found`);
     }
-    findByToken(token) {
+    /**
+     * Find user by token and username or throw not found exception
+     * @param token
+     * @returns
+     */
+    async findByToken(token) {
         const username = this.tokenUsernameMap.get(token);
         if (username) {
             return this.findByUsername(username);
         }
-        throw new UnauthorizedException(`User not found by token`);
+        else {
+            const paylaod = await this.jwt.verifyAsync(token);
+            const userManager = this.findByUsername(paylaod.username);
+            userManager.verifyVersion(paylaod.version);
+            this.tokenUsernameMap.set(token, paylaod.username);
+            return this.findByUsername(paylaod.username);
+        }
+    }
+    findByUuid(uuid) {
+        const username = this.uuidUsernameMap.get(uuid);
+        if (username) {
+            return this.findByUsername(username);
+        }
+        throw new UnauthorizedException(`User not found by uuid`);
     }
     deleteToken(token) {
         if (this.tokenUsernameMap.delete(token)) {
@@ -67,9 +87,8 @@ let UserService = class UserService {
         this.usernameOtpMap.delete(username);
     }
 };
-UserService = __decorate([
+AuthUserService = __decorate([
     Injectable(),
-    __param(0, Inject(JwtService)),
     __metadata("design:paramtypes", [JwtService])
-], UserService);
-export { UserService };
+], AuthUserService);
+export { AuthUserService };

package/dist/services/auth.service.d.ts

@@ -1,14 +1,17 @@
 import { EventEmitter2 } from '@nestjs/event-emitter';
 import { AccessTokenDto } from '../dto/access-token.dto.js';
+import { CanActivateDto } from '../dto/can-activate.dto.js';
+import { CanActivateResponseDto } from '../dto/can-activate-response-dto.js';
 import { ForgotPasswordDto } from '../dto/forgot-password.dto.js';
 import { LoginDto } from '../dto/login.dto.js';
 import { LoginWithOtpDto } from '../dto/login-with-otp.dto.js';
 import { MessageDto } from '../dto/message.dto.js';
-import { UserService } from './user.service.js';
+import { UpdatePasswordDto } from '../dto/update-password.dto.js';
+import { AuthUserService } from './auth-user.service.js';
 export declare class AuthService {
-    protected readonly userService: UserService;
+    protected readonly authUserService: AuthUserService;
     protected readonly eventEmitter: EventEmitter2;
-    constructor(userService: UserService, eventEmitter: EventEmitter2);
+    constructor(authUserService: AuthUserService, eventEmitter: EventEmitter2);
     /**
      * Login with credentials (find user by username and compare the passed with hashed password)
      * @param body -- {@link LoginDto}
@@ -33,5 +36,13 @@ export declare class AuthService {
      * @returns -- {@link MessageDto}
      */
     forgotPassword(body: ForgotPasswordDto): MessageDto;
+    /**
+     *
+     * @param uuid
+     * @param body
+     */
+    updatePassword(uuid: string, body: UpdatePasswordDto): Promise<MessageDto>;
+    profile(uuid: string): import("../index.js").UserManager;
+    canActivate(username: string, body: CanActivateDto): Promise<CanActivateResponseDto>;
 }
 //# sourceMappingURL=auth.service.d.ts.map

package/dist/services/auth.service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth.service.d.ts","sourceRoot":"","sources":["../../src/services/auth.service.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AACtD,OAAO,EAAE,cAAc,EAAE,MAAM,4BAA4B,CAAC;AAC5D,OAAO,EAAE,iBAAiB,EAAE,MAAM,+BAA+B,CAAC;AAClE,OAAO,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AAC/C,OAAO,EAAE,eAAe,EAAE,MAAM,8BAA8B,CAAC;AAC/D,OAAO,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAC;AAEnD,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAEhD,qBACa,WAAW;IAEhB,SAAS,CAAC,QAAQ,CAAC,WAAW,EAAE,WAAW;IAC3C,SAAS,CAAC,QAAQ,CAAC,YAAY,EAAE,aAAa;gBAD3B,WAAW,EAAE,WAAW,EACxB,YAAY,EAAE,aAAa;IAGlD;;;;OAIG;IACG,KAAK,CAAC,IAAI,EAAE,QAAQ;IAQ1B;;;;OAIG;IACG,YAAY,CAAC,IAAI,EAAE,eAAe;IAQxC;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,MAAM;IAKpB;;;;OAIG;IACH,cAAc,CAAC,IAAI,EAAE,iBAAiB;CAKzC"}
+{"version":3,"file":"auth.service.d.ts","sourceRoot":"","sources":["../../src/services/auth.service.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AAEtD,OAAO,EAAE,cAAc,EAAE,MAAM,4BAA4B,CAAC;AAC5D,OAAO,EAAE,cAAc,EAAE,MAAM,4BAA4B,CAAC;AAC5D,OAAO,EAAE,sBAAsB,EAAE,MAAM,qCAAqC,CAAC;AAC7E,OAAO,EAAE,iBAAiB,EAAE,MAAM,+BAA+B,CAAC;AAClE,OAAO,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AAC/C,OAAO,EAAE,eAAe,EAAE,MAAM,8BAA8B,CAAC;AAC/D,OAAO,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAC;AAEnD,OAAO,EAAE,iBAAiB,EAAE,MAAM,+BAA+B,CAAC;AAClE,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAEzD,qBACa,WAAW;IAEhB,SAAS,CAAC,QAAQ,CAAC,eAAe,EAAE,eAAe;IACnD,SAAS,CAAC,QAAQ,CAAC,YAAY,EAAE,aAAa;gBAD3B,eAAe,EAAE,eAAe,EAChC,YAAY,EAAE,aAAa;IAGlD;;;;OAIG;IACG,KAAK,CAAC,IAAI,EAAE,QAAQ;IAQ1B;;;;OAIG;IACG,YAAY,CAAC,IAAI,EAAE,eAAe;IAQxC;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,MAAM;IAKpB;;;;OAIG;IACH,cAAc,CAAC,IAAI,EAAE,iBAAiB;IAMtC;;;;OAIG;IACG,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,iBAAiB;IAK1D,OAAO,CAAC,IAAI,EAAE,MAAM;IAId,WAAW,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,cAAc;CAO3D"}

package/dist/services/auth.service.js

@@ -1,15 +1,17 @@
 import { __decorate, __metadata } from "tslib";
 import { Injectable } from '@nestjs/common';
 import { EventEmitter2 } from '@nestjs/event-emitter';
+import { hash } from '@vnodes/crypto';
 import { AccessTokenDto } from '../dto/access-token.dto.js';
+import { CanActivateResponseDto } from '../dto/can-activate-response-dto.js';
 import { MessageDto } from '../dto/message.dto.js';
 import { OtpResponseDto } from '../dto/otp-response-dto.js';
-import { UserService } from './user.service.js';
+import { AuthUserService } from './auth-user.service.js';
 let AuthService = class AuthService {
-    userService;
+    authUserService;
     eventEmitter;
-    constructor(userService, eventEmitter) {
-        this.userService = userService;
+    constructor(authUserService, eventEmitter) {
+        this.authUserService = authUserService;
         this.eventEmitter = eventEmitter;
     }
     /**
@@ -18,10 +20,10 @@ let AuthService = class AuthService {
      * @returns -- {@link AccessTokenDto}
      */
     async login(body) {
-        const user = this.userService.findByUsername(body.username);
+        const user = this.authUserService.findByUsername(body.username);
         await user.comparePassword(body.password);
         const token = await user.signToken();
-        this.userService.updateToken(token, user.user.username);
+        this.authUserService.updateToken(token, user.user.username);
         return new AccessTokenDto({ token });
     }
     /**
@@ -30,9 +32,9 @@ let AuthService = class AuthService {
      * @returns -- {@link AccessTokenDto}
      */
     async loginWithOtp(body) {
-        this.userService.compareOtp(body.username, body.otp);
-        this.userService.deleteOtp(body.username);
-        const user = this.userService.findByUsername(body.username);
+        this.authUserService.compareOtp(body.username, body.otp);
+        this.authUserService.deleteOtp(body.username);
+        const user = this.authUserService.findByUsername(body.username);
         const token = await user.signToken();
         return new AccessTokenDto({ token });
     }
@@ -42,7 +44,7 @@ let AuthService = class AuthService {
      * @returns -- {@link MessageDto}
      */
     logout(token) {
-        this.userService.deleteToken(token);
+        this.authUserService.deleteToken(token);
         return new MessageDto({ message: 'Bye for now' });
     }
     /**
@@ -51,14 +53,32 @@ let AuthService = class AuthService {
      * @returns -- {@link MessageDto}
      */
     forgotPassword(body) {
-        const otp = this.userService.createOtp(body.username);
-        this.eventEmitter.emit('email.otp', new OtpResponseDto({ otp }));
+        const otp = this.authUserService.createOtp(body.username);
+        this.eventEmitter.emit('auth.user.email.otp', new OtpResponseDto({ otp }));
         return new MessageDto({ message: 'We sent the otp to your email' });
     }
+    /**
+     *
+     * @param uuid
+     * @param body
+     */
+    async updatePassword(uuid, body) {
+        this.eventEmitter.emit('auth.user.update.password', { uuid, password: await hash(body.password) });
+        return new MessageDto({ message: 'Update password request is sent' });
+    }
+    profile(uuid) {
+        return this.authUserService.findByUuid(uuid);
+    }
+    async canActivate(username, body) {
+        const found = this.authUserService.findByUsername(username);
+        return new CanActivateResponseDto({
+            canActivate: !!found.canActivate(body),
+        });
+    }
 };
 AuthService = __decorate([
     Injectable(),
-    __metadata("design:paramtypes", [UserService,
+    __metadata("design:paramtypes", [AuthUserService,
         EventEmitter2])
 ], AuthService);
 export { AuthService };

package/dist/types/auth-client-options.d.ts

@@ -0,0 +1,6 @@
+export declare class AuthClientOptions {
+    appId: string;
+    authServiceUrl: string;
+    constructor(data: AuthClientOptions);
+}
+//# sourceMappingURL=auth-client-options.d.ts.map

package/dist/types/auth-client-options.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-client-options.d.ts","sourceRoot":"","sources":["../../src/types/auth-client-options.ts"],"names":[],"mappings":"AAAA,qBAAa,iBAAiB;IAC1B,KAAK,EAAE,MAAM,CAAC;IACd,cAAc,EAAE,MAAM,CAAC;gBAEX,IAAI,EAAE,iBAAiB;CAGtC"}

package/dist/types/auth-client-options.js

@@ -0,0 +1,7 @@
+export class AuthClientOptions {
+    appId;
+    authServiceUrl;
+    constructor(data) {
+        Object.assign(this, data);
+    }
+}

package/dist/types/auth-request.d.ts

@@ -1,4 +1,4 @@
-import { User } from '../services/user-manager.js';
+import { User } from './user.js';
 export type HeaderNames = 'authorization';
 export type AuthRequest = {
     user: User;

package/dist/types/auth-request.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth-request.d.ts","sourceRoot":"","sources":["../../src/types/auth-request.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,6BAA6B,CAAC;AACnD,MAAM,MAAM,WAAW,GAAG,eAAe,CAAC;AAC1C,MAAM,MAAM,WAAW,GAAG;IACtB,IAAI,EAAE,IAAI,CAAC;IACX,OAAO,EAAE,MAAM,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;IACrC,WAAW,EAAE,MAAM,CAAC;CACvB,CAAC"}
+{"version":3,"file":"auth-request.d.ts","sourceRoot":"","sources":["../../src/types/auth-request.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAEjC,MAAM,MAAM,WAAW,GAAG,eAAe,CAAC;AAE1C,MAAM,MAAM,WAAW,GAAG;IACtB,IAAI,EAAE,IAAI,CAAC;IACX,OAAO,EAAE,MAAM,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;IACrC,WAAW,EAAE,MAAM,CAAC;CACvB,CAAC"}

package/dist/types/jwt-payload.d.ts

@@ -0,0 +1,6 @@
+export declare class JwtPayload {
+    sub: string;
+    username: string;
+    version: string;
+}
+//# sourceMappingURL=jwt-payload.d.ts.map

package/dist/types/jwt-payload.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt-payload.d.ts","sourceRoot":"","sources":["../../src/types/jwt-payload.ts"],"names":[],"mappings":"AAAA,qBAAa,UAAU;IACnB,GAAG,EAAE,MAAM,CAAC;IACZ,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;CACnB"}

package/dist/types/jwt-payload.js

@@ -0,0 +1,5 @@
+export class JwtPayload {
+    sub;
+    username;
+    version;
+}

package/dist/{services → types}/user-manager.d.ts

@@ -1,18 +1,7 @@
 import { JwtService } from '@nestjs/jwt';
-export declare class JwtPayload {
-    sub: number;
-    username: string;
-    version: string;
-}
-export declare class User {
-    id: number;
-    version: string;
-    username: string;
-    password: string;
-    permissions?: string[];
-    roles?: string[];
-    constructor(user: User);
-}
+import { CanActivateDto } from 'src/dto/can-activate.dto.js';
+import { JwtPayload } from './jwt-payload.js';
+import { User } from './user.js';
 export declare class UserManager {
     protected readonly userData: User;
     protected readonly jwt: JwtService;
@@ -40,11 +29,12 @@ export declare class UserManager {
     /**
      * Check the user has all {@link requiredPermissions} or throw {@link ForbiddenException}
      */
-    hasPermissions(requiredPermissions: string[]): boolean;
+    hasAllPermissions(requiredPermissions: string[]): boolean;
     /**
      * Check the user has one of the {@link requiredRoles} or throw {@link ForbiddenException}
      */
-    hasRoles(requiredRoles: string[]): boolean;
+    hasSomeRoles(requiredRoles: string[]): boolean;
+    canActivate(body: CanActivateDto): boolean | undefined;
     /**
      * Create the jwt payload object {@link JwtPayload}
      * @returns -- {@link JwtPayload}
@@ -67,5 +57,11 @@ export declare class UserManager {
      * @returns string or throw {@link UnauthorizedException} that indicated invalid or old versioned token
      */
     verifyToken(token: string): Promise<JwtPayload>;
+    /**
+     * Check the jwt version matches with the provided token's version or thow Invalid Jwt version error
+     * @param version
+     * @returns
+     */
+    verifyVersion(version: string): boolean;
 }
 //# sourceMappingURL=user-manager.d.ts.map

package/dist/types/user-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-manager.d.ts","sourceRoot":"","sources":["../../src/types/user-manager.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAEzC,OAAO,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAC7D,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAEjC,qBAAa,WAAW;IAEhB,SAAS,CAAC,QAAQ,CAAC,QAAQ,EAAE,IAAI;IACjC,SAAS,CAAC,QAAQ,CAAC,GAAG,EAAE,UAAU;gBADf,QAAQ,EAAE,IAAI,EACd,GAAG,EAAE,UAAU;IAGtC;;OAEG;IACH,IAAI,IAAI,IAAI,IAAI,CAEf;IAED;;OAEG;IACH,IAAI,WAAW,gBAEd;IAED;;OAEG;IACH,IAAI,KAAK,gBAER;IAED;;OAEG;IACH,IAAI,OAAO,WAEV;IAED;;OAEG;IACH,OAAO;IAIP;;OAEG;IACH,iBAAiB,CAAC,mBAAmB,EAAE,MAAM,EAAE;IAO/C;;OAEG;IACH,YAAY,CAAC,aAAa,EAAE,MAAM,EAAE;IAOpC,WAAW,CAAC,IAAI,EAAE,cAAc;IAYhC;;;OAGG;IACH,YAAY,IAAI,UAAU;IAQ1B;;;;OAIG;IACG,eAAe,CAAC,QAAQ,EAAE,MAAM;IAOtC;;;OAGG;IACG,SAAS;IAKf;;;;OAIG;IACG,WAAW,CAAC,KAAK,EAAE,MAAM;IAM/B;;;;OAIG;IACH,aAAa,CAAC,OAAO,EAAE,MAAM;CAMhC"}

package/dist/{services → types}/user-manager.js

@@ -1,27 +1,6 @@
 import { ForbiddenException, UnauthorizedException } from '@nestjs/common';
 import { compare } from '@vnodes/crypto';
-export class JwtPayload {
-    sub;
-    username;
-    version;
-}
-export class User {
-    id;
-    version;
-    username;
-    password;
-    permissions;
-    roles;
-    constructor(user) {
-        Object.assign(this, user);
-        if (user.permissions && user.permissions?.length > 0) {
-            this.permissions = user.permissions;
-        }
-        if (user.roles && user.roles?.length > 0) {
-            this.roles = user.roles;
-        }
-    }
-}
+import { User } from './user.js';
 export class UserManager {
     userData;
     jwt;
@@ -57,12 +36,12 @@ export class UserManager {
      * Check the user has the "admin" role
      */
     isAdmin() {
-        return this.roles.has('admin');
+        return this.roles.has('Admin');
     }
     /**
      * Check the user has all {@link requiredPermissions} or throw {@link ForbiddenException}
      */
-    hasPermissions(requiredPermissions) {
+    hasAllPermissions(requiredPermissions) {
         if (requiredPermissions.every((permission) => this.permisisons.has(permission))) {
             return true;
         }
@@ -71,19 +50,27 @@ export class UserManager {
     /**
      * Check the user has one of the {@link requiredRoles} or throw {@link ForbiddenException}
      */
-    hasRoles(requiredRoles) {
+    hasSomeRoles(requiredRoles) {
         if (requiredRoles.some((role) => this.roles.has(role))) {
             return true;
         }
         throw new ForbiddenException('Insufficient role');
     }
+    canActivate(body) {
+        const { requiredPermissions, requiredRoles } = body;
+        if (this.isAdmin()) {
+            return true;
+        }
+        return ((requiredRoles && this.hasSomeRoles(requiredRoles)) ||
+            (requiredPermissions && this.hasAllPermissions(requiredPermissions)));
+    }
     /**
      * Create the jwt payload object {@link JwtPayload}
      * @returns -- {@link JwtPayload}
      */
     toJwtPayload() {
         return {
-            sub: this.userData.id,
+            sub: this.userData.uuid,
             username: this.userData.username,
             version: this.userData.version,
         };
@@ -114,9 +101,18 @@ export class UserManager {
      */
     async verifyToken(token) {
         const jwtPayload = await this.jwt.verifyAsync(token);
-        if (jwtPayload.version === this.version) {
-            return jwtPayload;
+        this.verifyVersion(jwtPayload.version);
+        return jwtPayload;
+    }
+    /**
+     * Check the jwt version matches with the provided token's version or thow Invalid Jwt version error
+     * @param version
+     * @returns
+     */
+    verifyVersion(version) {
+        if (this.version !== version) {
+            throw new UnauthorizedException(`Invalid jwt version`);
         }
-        throw new UnauthorizedException(`Invalid jwt version`);
+        return true;
     }
 }

package/dist/types/user.d.ts

@@ -0,0 +1,10 @@
+export declare class User {
+    uuid: string;
+    version: string;
+    username: string;
+    password: string;
+    permissions?: string[];
+    roles?: string[];
+    constructor(user: User);
+}
+//# sourceMappingURL=user.d.ts.map

package/dist/types/user.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"user.d.ts","sourceRoot":"","sources":["../../src/types/user.ts"],"names":[],"mappings":"AAAA,qBAAa,IAAI;IACb,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;gBAEL,IAAI,EAAE,IAAI;CAWzB"}

package/dist/types/user.js

@@ -0,0 +1,17 @@
+export class User {
+    uuid;
+    version;
+    username;
+    password;
+    permissions;
+    roles;
+    constructor(user) {
+        Object.assign(this, user);
+        if (user.permissions && user.permissions?.length > 0) {
+            this.permissions = user.permissions;
+        }
+        if (user.roles && user.roles?.length > 0) {
+            this.roles = user.roles;
+        }
+    }
+}

package/package.json

@@ -19,7 +19,7 @@
       "url": "https://cash.app/$puqlib"
     }
   ],
-  "version": "0.0.5",
+  "version": "0.0.11",
   "type": "module",
   "main": "./dist/index.js",
   "module": "./dist/index.js",
@@ -61,8 +61,8 @@
     "@nestjs/jwt": "^11.0.2",
     "@nestjs/swagger": "^11.2.6",
     "@nestjs/throttler": "^6.5.0",
-    "@vnodes/crypto": "0.0.5",
-    "@vnodes/metadata": "0.0.5",
-    "@vnodes/property": "0.0.5"
+    "@vnodes/crypto": "0.0.11",
+    "@vnodes/metadata": "0.0.11",
+    "@vnodes/property": "0.0.11"
   }
 }

package/dist/services/user-manager.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"user-manager.d.ts","sourceRoot":"","sources":["../../src/services/user-manager.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAGzC,qBAAa,UAAU;IACnB,GAAG,EAAE,MAAM,CAAC;IACZ,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;CACnB;AAED,qBAAa,IAAI;IACb,EAAE,EAAE,MAAM,CAAC;IACX,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;gBAEL,IAAI,EAAE,IAAI;CAWzB;AAED,qBAAa,WAAW;IAEhB,SAAS,CAAC,QAAQ,CAAC,QAAQ,EAAE,IAAI;IACjC,SAAS,CAAC,QAAQ,CAAC,GAAG,EAAE,UAAU;gBADf,QAAQ,EAAE,IAAI,EACd,GAAG,EAAE,UAAU;IAGtC;;OAEG;IACH,IAAI,IAAI,IAAI,IAAI,CAEf;IAED;;OAEG;IACH,IAAI,WAAW,gBAEd;IAED;;OAEG;IACH,IAAI,KAAK,gBAER;IAED;;OAEG;IACH,IAAI,OAAO,WAEV;IAED;;OAEG;IACH,OAAO;IAIP;;OAEG;IACH,cAAc,CAAC,mBAAmB,EAAE,MAAM,EAAE;IAO5C;;OAEG;IACH,QAAQ,CAAC,aAAa,EAAE,MAAM,EAAE;IAOhC;;;OAGG;IACH,YAAY,IAAI,UAAU;IAQ1B;;;;OAIG;IACG,eAAe,CAAC,QAAQ,EAAE,MAAM;IAOtC;;;OAGG;IACG,SAAS;IAKf;;;;OAIG;IACG,WAAW,CAAC,KAAK,EAAE,MAAM;CASlC"}

package/dist/services/user.service.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"user.service.d.ts","sourceRoot":"","sources":["../../src/services/user.service.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAEzC,OAAO,EAAE,IAAI,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAEtD,qBACa,WAAW;IAKY,SAAS,CAAC,QAAQ,CAAC,GAAG,EAAE,UAAU;IAJlE,SAAS,CAAC,QAAQ,CAAC,WAAW,oBAA2B;IACzD,SAAS,CAAC,QAAQ,CAAC,gBAAgB,sBAA6B;IAChE,SAAS,CAAC,QAAQ,CAAC,cAAc,sBAA6B;gBAEX,GAAG,EAAE,UAAU;IAElE,MAAM,CAAC,IAAI,EAAE,IAAI;IAIjB,gBAAgB,CAAC,QAAQ,EAAE,MAAM;IAIjC,IAAI,CAAC,KAAK,EAAE,IAAI,EAAE;IAOlB,cAAc,CAAC,QAAQ,EAAE,MAAM;IAQ/B,WAAW,CAAC,KAAK,EAAE,MAAM;IASzB,WAAW,CAAC,KAAK,EAAE,MAAM;IAOzB,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM;IAI3C,SAAS,CAAC,QAAQ,EAAE,MAAM;IAM1B,UAAU,CAAC,QAAQ,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM;IAYxC,SAAS,CAAC,QAAQ,EAAE,MAAM;CAG7B"}