@webiny/cognito 0.0.0-unstable.61c048f412

package/api/features/CognitoService/CognitoService.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["CognitoIdentityProvider","CognitoConfig","CognitoService","ServiceAbstraction","CognitoServiceImpl","constructor","config","cognito","region","userExists","username","adminGetUser","Username","UserPoolId","userPoolId","createUser","params","createUserParams","DesiredDeliveryMediums","ForceAliasCreation","MessageAction","TemporaryPassword","temporaryPassword","UserAttributes","Name","Value","attributes","givenName","familyName","preferredUsername","email","customId","adminCreateUser","setEmailVerified","adminUpdateUserAttributes","setPermanentPassword","password","adminSetUserPassword","Permanent","Password","updateUserAttributes","userAttributes","Object","entries","map","name","value","deleteUser","adminDeleteUser","createImplementation","implementation","dependencies"],"sources":["CognitoService.ts"],"sourcesContent":["import type { AdminCreateUserRequest } from \"@webiny/aws-sdk/client-cognito-identity-provider/index.js\";\nimport { CognitoIdentityProvider } from \"@webiny/aws-sdk/client-cognito-identity-provider/index.js\";\nimport { CognitoConfig, CognitoService as ServiceAbstraction } from \"./abstractions.js\";\n\nclass CognitoServiceImpl implements ServiceAbstraction.Interface {\n    private cognito: CognitoIdentityProvider;\n\n    constructor(private config: CognitoConfig.Interface) {\n        this.cognito = new CognitoIdentityProvider({ region: config.region });\n    }\n\n    async userExists(username: string): Promise<boolean> {\n        try {\n            await this.cognito.adminGetUser({\n                Username: username,\n                UserPoolId: this.config.userPoolId\n            });\n            return true;\n        } catch {\n            // User does not exist\n            return false;\n        }\n    }\n\n    async createUser(params: {\n        username: string;\n        temporaryPassword: string;\n        attributes: ServiceAbstraction.UserAttributes;\n    }): Promise<void> {\n        const createUserParams: AdminCreateUserRequest = {\n            UserPoolId: this.config.userPoolId,\n            Username: params.username,\n            DesiredDeliveryMediums: [],\n            ForceAliasCreation: false,\n            MessageAction: \"SUPPRESS\",\n            TemporaryPassword: params.temporaryPassword,\n            UserAttributes: [\n                {\n                    Name: \"given_name\",\n                    Value: params.attributes.givenName || \"\"\n                },\n                {\n                    Name: \"family_name\",\n                    Value: params.attributes.familyName || \"\"\n                },\n                {\n                    Name: \"preferred_username\",\n                    Value: params.attributes.preferredUsername\n                },\n                {\n                    Name: \"email\",\n                    Value: params.attributes.email\n                },\n                {\n                    Name: \"custom:id\",\n                    Value: params.attributes.customId\n                }\n            ]\n        };\n\n        await this.cognito.adminCreateUser(createUserParams);\n    }\n\n    async setEmailVerified(username: string): Promise<void> {\n        await this.cognito.adminUpdateUserAttributes({\n            UserPoolId: this.config.userPoolId,\n            Username: username,\n            UserAttributes: [\n                {\n                    Name: \"email_verified\",\n                    Value: \"true\"\n                }\n            ]\n        });\n    }\n\n    async setPermanentPassword(username: string, password: string): Promise<void> {\n        await this.cognito.adminSetUserPassword({\n            Permanent: true,\n            Password: password,\n            Username: username,\n            UserPoolId: this.config.userPoolId\n        });\n    }\n\n    async updateUserAttributes(\n        username: string,\n        attributes: Record<string, string>\n    ): Promise<void> {\n        const userAttributes = Object.entries(attributes).map(([name, value]) => ({\n            Name: name,\n            Value: value\n        }));\n\n        await this.cognito.adminUpdateUserAttributes({\n            UserPoolId: this.config.userPoolId,\n            Username: username,\n            UserAttributes: userAttributes\n        });\n    }\n\n    async deleteUser(username: string): Promise<void> {\n        await this.cognito.adminDeleteUser({\n            UserPoolId: this.config.userPoolId,\n            Username: username\n        });\n    }\n}\n\nexport const CognitoService = ServiceAbstraction.createImplementation({\n    implementation: CognitoServiceImpl,\n    dependencies: [CognitoConfig]\n});\n"],"mappings":"AACA,SAASA,uBAAuB,QAAQ,2DAA2D;AACnG,SAASC,aAAa,EAAEC,cAAc,IAAIC,kBAAkB;AAE5D,MAAMC,kBAAkB,CAAyC;EAG7DC,WAAWA,CAASC,MAA+B,EAAE;IAAA,KAAjCA,MAA+B,GAA/BA,MAA+B;IAC/C,IAAI,CAACC,OAAO,GAAG,IAAIP,uBAAuB,CAAC;MAAEQ,MAAM,EAAEF,MAAM,CAACE;IAAO,CAAC,CAAC;EACzE;EAEA,MAAMC,UAAUA,CAACC,QAAgB,EAAoB;IACjD,IAAI;MACA,MAAM,IAAI,CAACH,OAAO,CAACI,YAAY,CAAC;QAC5BC,QAAQ,EAAEF,QAAQ;QAClBG,UAAU,EAAE,IAAI,CAACP,MAAM,CAACQ;MAC5B,CAAC,CAAC;MACF,OAAO,IAAI;IACf,CAAC,CAAC,MAAM;MACJ;MACA,OAAO,KAAK;IAChB;EACJ;EAEA,MAAMC,UAAUA,CAACC,MAIhB,EAAiB;IACd,MAAMC,gBAAwC,GAAG;MAC7CJ,UAAU,EAAE,IAAI,CAACP,MAAM,CAACQ,UAAU;MAClCF,QAAQ,EAAEI,MAAM,CAACN,QAAQ;MACzBQ,sBAAsB,EAAE,EAAE;MAC1BC,kBAAkB,EAAE,KAAK;MACzBC,aAAa,EAAE,UAAU;MACzBC,iBAAiB,EAAEL,MAAM,CAACM,iBAAiB;MAC3CC,cAAc,EAAE,CACZ;QACIC,IAAI,EAAE,YAAY;QAClBC,KAAK,EAAET,MAAM,CAACU,UAAU,CAACC,SAAS,IAAI;MAC1C,CAAC,EACD;QACIH,IAAI,EAAE,aAAa;QACnBC,KAAK,EAAET,MAAM,CAACU,UAAU,CAACE,UAAU,IAAI;MAC3C,CAAC,EACD;QACIJ,IAAI,EAAE,oBAAoB;QAC1BC,KAAK,EAAET,MAAM,CAACU,UAAU,CAACG;MAC7B,CAAC,EACD;QACIL,IAAI,EAAE,OAAO;QACbC,KAAK,EAAET,MAAM,CAACU,UAAU,CAACI;MAC7B,CAAC,EACD;QACIN,IAAI,EAAE,WAAW;QACjBC,KAAK,EAAET,MAAM,CAACU,UAAU,CAACK;MAC7B,CAAC;IAET,CAAC;IAED,MAAM,IAAI,CAACxB,OAAO,CAACyB,eAAe,CAACf,gBAAgB,CAAC;EACxD;EAEA,MAAMgB,gBAAgBA,CAACvB,QAAgB,EAAiB;IACpD,MAAM,IAAI,CAACH,OAAO,CAAC2B,yBAAyB,CAAC;MACzCrB,UAAU,EAAE,IAAI,CAACP,MAAM,CAACQ,UAAU;MAClCF,QAAQ,EAAEF,QAAQ;MAClBa,cAAc,EAAE,CACZ;QACIC,IAAI,EAAE,gBAAgB;QACtBC,KAAK,EAAE;MACX,CAAC;IAET,CAAC,CAAC;EACN;EAEA,MAAMU,oBAAoBA,CAACzB,QAAgB,EAAE0B,QAAgB,EAAiB;IAC1E,MAAM,IAAI,CAAC7B,OAAO,CAAC8B,oBAAoB,CAAC;MACpCC,SAAS,EAAE,IAAI;MACfC,QAAQ,EAAEH,QAAQ;MAClBxB,QAAQ,EAAEF,QAAQ;MAClBG,UAAU,EAAE,IAAI,CAACP,MAAM,CAACQ;IAC5B,CAAC,CAAC;EACN;EAEA,MAAM0B,oBAAoBA,CACtB9B,QAAgB,EAChBgB,UAAkC,EACrB;IACb,MAAMe,cAAc,GAAGC,MAAM,CAACC,OAAO,CAACjB,UAAU,CAAC,CAACkB,GAAG,CAAC,CAAC,CAACC,IAAI,EAAEC,KAAK,CAAC,MAAM;MACtEtB,IAAI,EAAEqB,IAAI;MACVpB,KAAK,EAAEqB;IACX,CAAC,CAAC,CAAC;IAEH,MAAM,IAAI,CAACvC,OAAO,CAAC2B,yBAAyB,CAAC;MACzCrB,UAAU,EAAE,IAAI,CAACP,MAAM,CAACQ,UAAU;MAClCF,QAAQ,EAAEF,QAAQ;MAClBa,cAAc,EAAEkB;IACpB,CAAC,CAAC;EACN;EAEA,MAAMM,UAAUA,CAACrC,QAAgB,EAAiB;IAC9C,MAAM,IAAI,CAACH,OAAO,CAACyC,eAAe,CAAC;MAC/BnC,UAAU,EAAE,IAAI,CAACP,MAAM,CAACQ,UAAU;MAClCF,QAAQ,EAAEF;IACd,CAAC,CAAC;EACN;AACJ;AAEA,OAAO,MAAMR,cAAc,GAAGC,kBAAkB,CAAC8C,oBAAoB,CAAC;EAClEC,cAAc,EAAE9C,kBAAkB;EAClC+C,YAAY,EAAE,CAAClD,aAAa;AAChC,CAAC,CAAC","ignoreList":[]}

package/api/features/CognitoService/abstractions.d.ts

@@ -0,0 +1,54 @@
+import type { BaseUserAttributes } from "@webiny/api-core/types/users.js";
+export interface AttributeGetter {
+    (user: BaseUserAttributes): string;
+}
+export interface ICognitoConfig {
+    region: string;
+    userPoolId: string;
+}
+export declare const CognitoConfig: import("@webiny/di").Abstraction<ICognitoConfig>;
+export declare namespace CognitoConfig {
+    type Interface = ICognitoConfig;
+}
+export interface CognitoUserAttributes {
+    givenName?: string;
+    familyName?: string;
+    preferredUsername: string;
+    email: string;
+    customId: string;
+}
+export interface ICognitoService {
+    /**
+     * Check if a user exists in Cognito User Pool
+     */
+    userExists(username: string): Promise<boolean>;
+    /**
+     * Create a new user in Cognito User Pool
+     */
+    createUser(params: {
+        username: string;
+        temporaryPassword: string;
+        attributes: CognitoUserAttributes;
+    }): Promise<void>;
+    /**
+     * Set email as verified for a user
+     */
+    setEmailVerified(username: string): Promise<void>;
+    /**
+     * Set a permanent password for a user
+     */
+    setPermanentPassword(username: string, password: string): Promise<void>;
+    /**
+     * Update user attributes in Cognito
+     */
+    updateUserAttributes(username: string, attributes: Record<string, string>): Promise<void>;
+    /**
+     * Delete a user from Cognito User Pool
+     */
+    deleteUser(username: string): Promise<void>;
+}
+export declare const CognitoService: import("@webiny/di").Abstraction<ICognitoService>;
+export declare namespace CognitoService {
+    type Interface = ICognitoService;
+    type UserAttributes = CognitoUserAttributes;
+}

package/api/features/CognitoService/abstractions.js

@@ -0,0 +1,8 @@
+import { createAbstraction } from "@webiny/feature/api";
+export const CognitoConfig = createAbstraction("CognitoConfig");
+
+// Cognito Service
+
+export const CognitoService = createAbstraction("CognitoService");
+
+//# sourceMappingURL=abstractions.js.map

package/api/features/CognitoService/abstractions.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["createAbstraction","CognitoConfig","CognitoService"],"sources":["abstractions.ts"],"sourcesContent":["import { createAbstraction } from \"@webiny/feature/api\";\nimport type { BaseUserAttributes } from \"@webiny/api-core/types/users.js\";\n\nexport interface AttributeGetter {\n    (user: BaseUserAttributes): string;\n}\n\nexport interface ICognitoConfig {\n    region: string;\n    userPoolId: string;\n}\n\nexport const CognitoConfig = createAbstraction<ICognitoConfig>(\"CognitoConfig\");\n\nexport namespace CognitoConfig {\n    export type Interface = ICognitoConfig;\n}\n\n// Cognito Service\n\nexport interface CognitoUserAttributes {\n    givenName?: string;\n    familyName?: string;\n    preferredUsername: string;\n    email: string;\n    customId: string;\n}\n\nexport interface ICognitoService {\n    /**\n     * Check if a user exists in Cognito User Pool\n     */\n    userExists(username: string): Promise<boolean>;\n\n    /**\n     * Create a new user in Cognito User Pool\n     */\n    createUser(params: {\n        username: string;\n        temporaryPassword: string;\n        attributes: CognitoUserAttributes;\n    }): Promise<void>;\n\n    /**\n     * Set email as verified for a user\n     */\n    setEmailVerified(username: string): Promise<void>;\n\n    /**\n     * Set a permanent password for a user\n     */\n    setPermanentPassword(username: string, password: string): Promise<void>;\n\n    /**\n     * Update user attributes in Cognito\n     */\n    updateUserAttributes(username: string, attributes: Record<string, string>): Promise<void>;\n\n    /**\n     * Delete a user from Cognito User Pool\n     */\n    deleteUser(username: string): Promise<void>;\n}\n\nexport const CognitoService = createAbstraction<ICognitoService>(\"CognitoService\");\nexport namespace CognitoService {\n    export type Interface = ICognitoService;\n    export type UserAttributes = CognitoUserAttributes;\n}\n"],"mappings":"AAAA,SAASA,iBAAiB,QAAQ,qBAAqB;AAYvD,OAAO,MAAMC,aAAa,GAAGD,iBAAiB,CAAiB,eAAe,CAAC;;AAM/E;;AA8CA,OAAO,MAAME,cAAc,GAAGF,iBAAiB,CAAkB,gBAAgB,CAAC","ignoreList":[]}

package/api/features/CognitoService/feature.d.ts

@@ -0,0 +1,5 @@
+export type UserPoolConfig = {
+    region: string;
+    userPoolId: string;
+};
+export declare const CognitoServiceFeature: import("@webiny/feature/api/createFeature.js").FeatureDefinition<UserPoolConfig>;

package/api/features/CognitoService/feature.js

@@ -0,0 +1,12 @@
+import { createFeature } from "@webiny/feature/api";
+import { CognitoService } from "./CognitoService.js";
+import { CognitoConfig } from "./abstractions.js";
+export const CognitoServiceFeature = createFeature({
+  name: "cognitoService",
+  register(container, config) {
+    container.register(CognitoService).inSingletonScope();
+    container.registerInstance(CognitoConfig, config);
+  }
+});
+
+//# sourceMappingURL=feature.js.map

package/api/features/CognitoService/feature.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["createFeature","CognitoService","CognitoConfig","CognitoServiceFeature","name","register","container","config","inSingletonScope","registerInstance"],"sources":["feature.ts"],"sourcesContent":["import { createFeature } from \"@webiny/feature/api\";\nimport { CognitoService } from \"./CognitoService.js\";\nimport { CognitoConfig } from \"./abstractions.js\";\n\nexport type UserPoolConfig = {\n    region: string;\n    userPoolId: string;\n};\n\nexport const CognitoServiceFeature = createFeature({\n    name: \"cognitoService\",\n    register(container, config: UserPoolConfig) {\n        container.register(CognitoService).inSingletonScope();\n\n        container.registerInstance(CognitoConfig, config);\n    }\n});\n"],"mappings":"AAAA,SAASA,aAAa,QAAQ,qBAAqB;AACnD,SAASC,cAAc;AACvB,SAASC,aAAa;AAOtB,OAAO,MAAMC,qBAAqB,GAAGH,aAAa,CAAC;EAC/CI,IAAI,EAAE,gBAAgB;EACtBC,QAAQA,CAACC,SAAS,EAAEC,MAAsB,EAAE;IACxCD,SAAS,CAACD,QAAQ,CAACJ,cAAc,CAAC,CAACO,gBAAgB,CAAC,CAAC;IAErDF,SAAS,CAACG,gBAAgB,CAACP,aAAa,EAAEK,MAAM,CAAC;EACrD;AACJ,CAAC,CAAC","ignoreList":[]}

package/api/features/CognitoService/index.d.ts

@@ -0,0 +1 @@
+export * from "./abstractions.js";

package/api/features/CognitoService/index.js

@@ -0,0 +1,3 @@
+export * from "./abstractions.js";
+
+//# sourceMappingURL=index.js.map

package/api/features/CognitoService/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":[],"sources":["index.ts"],"sourcesContent":["export * from \"./abstractions.js\";\n"],"mappings":"AAAA","ignoreList":[]}

package/api/features/CreateUser/CreateUserUseCase.d.ts

@@ -0,0 +1,22 @@
+import { Result } from "@webiny/feature/api";
+import { AdminUsersRepository } from "@webiny/api-core/features/users/shared/abstractions.js";
+import type { AdminUser } from "@webiny/api-core/types/users.js";
+import { IdentityContext } from "@webiny/api-core/features/security/IdentityContext/index.js";
+import { CreateUserUseCase as CoreCreateUser } from "@webiny/api-core/features/users/CreateUser/index.js";
+import { ListUsersUseCase } from "@webiny/api-core/features/users/ListUsers/index.js";
+import { CreateUserUseCase as UseCaseAbstraction } from "./abstractions.js";
+import type { CreateAdminUserInput } from "./abstractions.js";
+import { CognitoService } from "../../../api/features/CognitoService/index.js";
+declare class CreateUserUseCaseImpl implements UseCaseAbstraction.Interface {
+    private identityContext;
+    private cognitoService;
+    private createUserUseCase;
+    private listUsersUseCase;
+    private repository;
+    constructor(identityContext: IdentityContext.Interface, cognitoService: CognitoService.Interface, createUserUseCase: CoreCreateUser.Interface, listUsersUseCase: ListUsersUseCase.Interface, repository: AdminUsersRepository.Interface);
+    execute(input: CreateAdminUserInput): Promise<Result<AdminUser, UseCaseAbstraction.Error>>;
+}
+export declare const CreateUserUseCase: typeof CreateUserUseCaseImpl & {
+    __abstraction: import("@webiny/di").Abstraction<import("./abstractions.js").ICreateUserUseCase>;
+};
+export {};

package/api/features/CreateUser/CreateUserUseCase.js

@@ -0,0 +1,106 @@
+import { Result } from "@webiny/feature/api";
+import { AdminUsersRepository } from "@webiny/api-core/features/users/shared/abstractions.js";
+import { NotAuthorizedError, UserValidationError } from "@webiny/api-core/features/users/shared/errors.js";
+import { IdentityContext } from "@webiny/api-core/features/security/IdentityContext/index.js";
+import { CreateUserUseCase as CoreCreateUser } from "@webiny/api-core/features/users/CreateUser/index.js";
+import { ListUsersUseCase } from "@webiny/api-core/features/users/ListUsers/index.js";
+import { CreateUserUseCase as UseCaseAbstraction } from "./abstractions.js";
+import { Username } from "../../domain/Username.js";
+import { CognitoAccountExistsError, CognitoCreateUserError } from "../../domain/errors.js";
+import { createAdminUserValidation } from "./schema.js";
+import { CognitoService } from "../CognitoService/index.js";
+class CreateUserUseCaseImpl {
+  constructor(identityContext, cognitoService, createUserUseCase, listUsersUseCase, repository) {
+    this.identityContext = identityContext;
+    this.cognitoService = cognitoService;
+    this.createUserUseCase = createUserUseCase;
+    this.listUsersUseCase = listUsersUseCase;
+    this.repository = repository;
+  }
+  async execute(input) {
+    const permission = await this.identityContext.getPermission("adminUsers.user");
+    if (!permission) {
+      return Result.fail(new NotAuthorizedError());
+    }
+
+    // Validate input (including password)
+    const validation = createAdminUserValidation.safeParse(input);
+    if (!validation.success) {
+      return Result.fail(new UserValidationError(validation.error.errors[0].message));
+    }
+    const data = validation.data;
+    const {
+      password,
+      ...userDataWithoutPassword
+    } = data;
+    const username = Username.fromUser(data);
+
+    // Check if user exists in database (faster than Cognito check)
+    const existingUserResult = await this.repository.get({
+      email: data.email
+    });
+    if (existingUserResult.isOk()) {
+      return Result.fail(new CognitoAccountExistsError(data.email));
+    }
+    let user = undefined;
+    try {
+      // Check if user exists in Cognito
+      const userExists = await this.cognitoService.userExists(username);
+      if (userExists) {
+        return Result.fail(new CognitoAccountExistsError(data.email));
+      }
+      // Create user in api-core
+      const createUserResult = await this.createUserUseCase.execute(userDataWithoutPassword);
+      if (createUserResult.isFail()) {
+        return Result.fail(createUserResult.error);
+      }
+      user = createUserResult.value;
+
+      // Create user in Cognito
+      await this.cognitoService.createUser({
+        username,
+        temporaryPassword: password,
+        attributes: {
+          givenName: data.firstName,
+          familyName: data.lastName,
+          preferredUsername: username,
+          email: username,
+          customId: user.id
+        }
+      });
+
+      // Set email as verified
+      await this.cognitoService.setEmailVerified(username);
+
+      // Check if this is the first user in the system, and if so, set permanent password
+      const usersResult = await this.listUsersUseCase.execute();
+      if (usersResult.isFail()) {
+        // Log error but don't fail the operation
+        console.error(`Failed to list users: ${usersResult.error.message}`);
+      } else {
+        const users = usersResult.value;
+        if (users.length <= 1) {
+          // This is the first user, set permanent password
+          await this.cognitoService.setPermanentPassword(username, password);
+        }
+      }
+      return Result.ok(user);
+    } catch (cognitoError) {
+      if (user) {
+        // Rollback: Delete user from api-core if Cognito creation failed
+        try {
+          await this.repository.delete(user);
+        } catch (rollbackError) {
+          console.error("Failed to rollback user creation:", rollbackError);
+        }
+      }
+      return Result.fail(new CognitoCreateUserError(cognitoError));
+    }
+  }
+}
+export const CreateUserUseCase = UseCaseAbstraction.createImplementation({
+  implementation: CreateUserUseCaseImpl,
+  dependencies: [IdentityContext, CognitoService, CoreCreateUser, ListUsersUseCase, AdminUsersRepository]
+});
+
+//# sourceMappingURL=CreateUserUseCase.js.map

package/api/features/CreateUser/CreateUserUseCase.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["Result","AdminUsersRepository","NotAuthorizedError","UserValidationError","IdentityContext","CreateUserUseCase","CoreCreateUser","ListUsersUseCase","UseCaseAbstraction","Username","CognitoAccountExistsError","CognitoCreateUserError","createAdminUserValidation","CognitoService","CreateUserUseCaseImpl","constructor","identityContext","cognitoService","createUserUseCase","listUsersUseCase","repository","execute","input","permission","getPermission","fail","validation","safeParse","success","error","errors","message","data","password","userDataWithoutPassword","username","fromUser","existingUserResult","get","email","isOk","user","undefined","userExists","createUserResult","isFail","value","createUser","temporaryPassword","attributes","givenName","firstName","familyName","lastName","preferredUsername","customId","id","setEmailVerified","usersResult","console","users","length","setPermanentPassword","ok","cognitoError","delete","rollbackError","createImplementation","implementation","dependencies"],"sources":["CreateUserUseCase.ts"],"sourcesContent":["import { Result } from \"@webiny/feature/api\";\nimport { AdminUsersRepository } from \"@webiny/api-core/features/users/shared/abstractions.js\";\nimport {\n    NotAuthorizedError,\n    UserValidationError\n} from \"@webiny/api-core/features/users/shared/errors.js\";\nimport type { AdminUser } from \"@webiny/api-core/types/users.js\";\nimport { IdentityContext } from \"@webiny/api-core/features/security/IdentityContext/index.js\";\nimport { CreateUserUseCase as CoreCreateUser } from \"@webiny/api-core/features/users/CreateUser/index.js\";\nimport { ListUsersUseCase } from \"@webiny/api-core/features/users/ListUsers/index.js\";\n\nimport { CreateUserUseCase as UseCaseAbstraction } from \"./abstractions.js\";\nimport { Username } from \"~/api/domain/Username.js\";\nimport { CognitoAccountExistsError, CognitoCreateUserError } from \"~/api/domain/errors.js\";\nimport { createAdminUserValidation } from \"./schema.js\";\nimport type { CreateAdminUserInput } from \"./abstractions.js\";\nimport { CognitoService } from \"~/api/features/CognitoService/index.js\";\n\nclass CreateUserUseCaseImpl implements UseCaseAbstraction.Interface {\n    constructor(\n        private identityContext: IdentityContext.Interface,\n        private cognitoService: CognitoService.Interface,\n        private createUserUseCase: CoreCreateUser.Interface,\n        private listUsersUseCase: ListUsersUseCase.Interface,\n        private repository: AdminUsersRepository.Interface\n    ) {}\n\n    async execute(\n        input: CreateAdminUserInput\n    ): Promise<Result<AdminUser, UseCaseAbstraction.Error>> {\n        const permission = await this.identityContext.getPermission(\"adminUsers.user\");\n        if (!permission) {\n            return Result.fail(new NotAuthorizedError());\n        }\n\n        // Validate input (including password)\n        const validation = createAdminUserValidation.safeParse(input);\n        if (!validation.success) {\n            return Result.fail(new UserValidationError(validation.error.errors[0].message));\n        }\n\n        const data = validation.data;\n        const { password, ...userDataWithoutPassword } = data;\n\n        const username = Username.fromUser(data);\n\n        // Check if user exists in database (faster than Cognito check)\n        const existingUserResult = await this.repository.get({ email: data.email });\n        if (existingUserResult.isOk()) {\n            return Result.fail(new CognitoAccountExistsError(data.email));\n        }\n\n        let user: AdminUser | undefined = undefined;\n\n        try {\n            // Check if user exists in Cognito\n            const userExists = await this.cognitoService.userExists(username);\n            if (userExists) {\n                return Result.fail(new CognitoAccountExistsError(data.email));\n            }\n            // Create user in api-core\n            const createUserResult = await this.createUserUseCase.execute(userDataWithoutPassword);\n            if (createUserResult.isFail()) {\n                return Result.fail(createUserResult.error);\n            }\n\n            user = createUserResult.value;\n\n            // Create user in Cognito\n            await this.cognitoService.createUser({\n                username,\n                temporaryPassword: password,\n                attributes: {\n                    givenName: data.firstName,\n                    familyName: data.lastName,\n                    preferredUsername: username,\n                    email: username,\n                    customId: user.id\n                }\n            });\n\n            // Set email as verified\n            await this.cognitoService.setEmailVerified(username);\n\n            // Check if this is the first user in the system, and if so, set permanent password\n            const usersResult = await this.listUsersUseCase.execute();\n            if (usersResult.isFail()) {\n                // Log error but don't fail the operation\n                console.error(`Failed to list users: ${usersResult.error.message}`);\n            } else {\n                const users = usersResult.value;\n                if (users.length <= 1) {\n                    // This is the first user, set permanent password\n                    await this.cognitoService.setPermanentPassword(username, password);\n                }\n            }\n\n            return Result.ok(user);\n        } catch (cognitoError) {\n            if (user) {\n                // Rollback: Delete user from api-core if Cognito creation failed\n                try {\n                    await this.repository.delete(user);\n                } catch (rollbackError) {\n                    console.error(\"Failed to rollback user creation:\", rollbackError);\n                }\n            }\n            return Result.fail(new CognitoCreateUserError(cognitoError as Error));\n        }\n    }\n}\n\nexport const CreateUserUseCase = UseCaseAbstraction.createImplementation({\n    implementation: CreateUserUseCaseImpl,\n    dependencies: [\n        IdentityContext,\n        CognitoService,\n        CoreCreateUser,\n        ListUsersUseCase,\n        AdminUsersRepository\n    ]\n});\n"],"mappings":"AAAA,SAASA,MAAM,QAAQ,qBAAqB;AAC5C,SAASC,oBAAoB,QAAQ,wDAAwD;AAC7F,SACIC,kBAAkB,EAClBC,mBAAmB,QAChB,kDAAkD;AAEzD,SAASC,eAAe,QAAQ,6DAA6D;AAC7F,SAASC,iBAAiB,IAAIC,cAAc,QAAQ,qDAAqD;AACzG,SAASC,gBAAgB,QAAQ,oDAAoD;AAErF,SAASF,iBAAiB,IAAIG,kBAAkB;AAChD,SAASC,QAAQ;AACjB,SAASC,yBAAyB,EAAEC,sBAAsB;AAC1D,SAASC,yBAAyB;AAElC,SAASC,cAAc;AAEvB,MAAMC,qBAAqB,CAAyC;EAChEC,WAAWA,CACCC,eAA0C,EAC1CC,cAAwC,EACxCC,iBAA2C,EAC3CC,gBAA4C,EAC5CC,UAA0C,EACpD;IAAA,KALUJ,eAA0C,GAA1CA,eAA0C;IAAA,KAC1CC,cAAwC,GAAxCA,cAAwC;IAAA,KACxCC,iBAA2C,GAA3CA,iBAA2C;IAAA,KAC3CC,gBAA4C,GAA5CA,gBAA4C;IAAA,KAC5CC,UAA0C,GAA1CA,UAA0C;EACnD;EAEH,MAAMC,OAAOA,CACTC,KAA2B,EACyB;IACpD,MAAMC,UAAU,GAAG,MAAM,IAAI,CAACP,eAAe,CAACQ,aAAa,CAAC,iBAAiB,CAAC;IAC9E,IAAI,CAACD,UAAU,EAAE;MACb,OAAOvB,MAAM,CAACyB,IAAI,CAAC,IAAIvB,kBAAkB,CAAC,CAAC,CAAC;IAChD;;IAEA;IACA,MAAMwB,UAAU,GAAGd,yBAAyB,CAACe,SAAS,CAACL,KAAK,CAAC;IAC7D,IAAI,CAACI,UAAU,CAACE,OAAO,EAAE;MACrB,OAAO5B,MAAM,CAACyB,IAAI,CAAC,IAAItB,mBAAmB,CAACuB,UAAU,CAACG,KAAK,CAACC,MAAM,CAAC,CAAC,CAAC,CAACC,OAAO,CAAC,CAAC;IACnF;IAEA,MAAMC,IAAI,GAAGN,UAAU,CAACM,IAAI;IAC5B,MAAM;MAAEC,QAAQ;MAAE,GAAGC;IAAwB,CAAC,GAAGF,IAAI;IAErD,MAAMG,QAAQ,GAAG1B,QAAQ,CAAC2B,QAAQ,CAACJ,IAAI,CAAC;;IAExC;IACA,MAAMK,kBAAkB,GAAG,MAAM,IAAI,CAACjB,UAAU,CAACkB,GAAG,CAAC;MAAEC,KAAK,EAAEP,IAAI,CAACO;IAAM,CAAC,CAAC;IAC3E,IAAIF,kBAAkB,CAACG,IAAI,CAAC,CAAC,EAAE;MAC3B,OAAOxC,MAAM,CAACyB,IAAI,CAAC,IAAIf,yBAAyB,CAACsB,IAAI,CAACO,KAAK,CAAC,CAAC;IACjE;IAEA,IAAIE,IAA2B,GAAGC,SAAS;IAE3C,IAAI;MACA;MACA,MAAMC,UAAU,GAAG,MAAM,IAAI,CAAC1B,cAAc,CAAC0B,UAAU,CAACR,QAAQ,CAAC;MACjE,IAAIQ,UAAU,EAAE;QACZ,OAAO3C,MAAM,CAACyB,IAAI,CAAC,IAAIf,yBAAyB,CAACsB,IAAI,CAACO,KAAK,CAAC,CAAC;MACjE;MACA;MACA,MAAMK,gBAAgB,GAAG,MAAM,IAAI,CAAC1B,iBAAiB,CAACG,OAAO,CAACa,uBAAuB,CAAC;MACtF,IAAIU,gBAAgB,CAACC,MAAM,CAAC,CAAC,EAAE;QAC3B,OAAO7C,MAAM,CAACyB,IAAI,CAACmB,gBAAgB,CAACf,KAAK,CAAC;MAC9C;MAEAY,IAAI,GAAGG,gBAAgB,CAACE,KAAK;;MAE7B;MACA,MAAM,IAAI,CAAC7B,cAAc,CAAC8B,UAAU,CAAC;QACjCZ,QAAQ;QACRa,iBAAiB,EAAEf,QAAQ;QAC3BgB,UAAU,EAAE;UACRC,SAAS,EAAElB,IAAI,CAACmB,SAAS;UACzBC,UAAU,EAAEpB,IAAI,CAACqB,QAAQ;UACzBC,iBAAiB,EAAEnB,QAAQ;UAC3BI,KAAK,EAAEJ,QAAQ;UACfoB,QAAQ,EAAEd,IAAI,CAACe;QACnB;MACJ,CAAC,CAAC;;MAEF;MACA,MAAM,IAAI,CAACvC,cAAc,CAACwC,gBAAgB,CAACtB,QAAQ,CAAC;;MAEpD;MACA,MAAMuB,WAAW,GAAG,MAAM,IAAI,CAACvC,gBAAgB,CAACE,OAAO,CAAC,CAAC;MACzD,IAAIqC,WAAW,CAACb,MAAM,CAAC,CAAC,EAAE;QACtB;QACAc,OAAO,CAAC9B,KAAK,CAAC,yBAAyB6B,WAAW,CAAC7B,KAAK,CAACE,OAAO,EAAE,CAAC;MACvE,CAAC,MAAM;QACH,MAAM6B,KAAK,GAAGF,WAAW,CAACZ,KAAK;QAC/B,IAAIc,KAAK,CAACC,MAAM,IAAI,CAAC,EAAE;UACnB;UACA,MAAM,IAAI,CAAC5C,cAAc,CAAC6C,oBAAoB,CAAC3B,QAAQ,EAAEF,QAAQ,CAAC;QACtE;MACJ;MAEA,OAAOjC,MAAM,CAAC+D,EAAE,CAACtB,IAAI,CAAC;IAC1B,CAAC,CAAC,OAAOuB,YAAY,EAAE;MACnB,IAAIvB,IAAI,EAAE;QACN;QACA,IAAI;UACA,MAAM,IAAI,CAACrB,UAAU,CAAC6C,MAAM,CAACxB,IAAI,CAAC;QACtC,CAAC,CAAC,OAAOyB,aAAa,EAAE;UACpBP,OAAO,CAAC9B,KAAK,CAAC,mCAAmC,EAAEqC,aAAa,CAAC;QACrE;MACJ;MACA,OAAOlE,MAAM,CAACyB,IAAI,CAAC,IAAId,sBAAsB,CAACqD,YAAqB,CAAC,CAAC;IACzE;EACJ;AACJ;AAEA,OAAO,MAAM3D,iBAAiB,GAAGG,kBAAkB,CAAC2D,oBAAoB,CAAC;EACrEC,cAAc,EAAEtD,qBAAqB;EACrCuD,YAAY,EAAE,CACVjE,eAAe,EACfS,cAAc,EACdP,cAAc,EACdC,gBAAgB,EAChBN,oBAAoB;AAE5B,CAAC,CAAC","ignoreList":[]}

package/api/features/CreateUser/abstractions.d.ts

@@ -0,0 +1,35 @@
+import type { Result } from "@webiny/feature/api";
+import type { AdminUser } from "@webiny/api-core/types/users.js";
+import type { NotAuthorizedError, EmailTakenError, UserValidationError } from "@webiny/api-core/features/users/shared/errors.js";
+import type { RepositoryError } from "@webiny/api-core/features/users/shared/abstractions.js";
+import type { CognitoAccountExistsError, CognitoCreateUserError } from "../../../api/domain/errors.js";
+export interface CreateAdminUserInput {
+    id?: string;
+    displayName?: string;
+    email: string;
+    firstName?: string;
+    lastName?: string;
+    password: string;
+    avatar?: Record<string, any> | null;
+    roles?: string[];
+    teams?: string[];
+}
+export interface ICreateUserUseCaseErrors {
+    authorization: NotAuthorizedError;
+    validation: UserValidationError;
+    emailTaken: EmailTakenError;
+    repository: RepositoryError;
+    cognitoAccountExists: CognitoAccountExistsError;
+    cognitoCreateUser: CognitoCreateUserError;
+}
+type CreateAdminUserError = ICreateUserUseCaseErrors[keyof ICreateUserUseCaseErrors];
+export interface ICreateUserUseCase {
+    execute(input: CreateAdminUserInput): Promise<Result<AdminUser, CreateAdminUserError>>;
+}
+export declare const CreateUserUseCase: import("@webiny/di").Abstraction<ICreateUserUseCase>;
+export declare namespace CreateUserUseCase {
+    type Interface = ICreateUserUseCase;
+    type Input = CreateAdminUserInput;
+    type Error = CreateAdminUserError;
+}
+export {};

package/api/features/CreateUser/abstractions.js

@@ -0,0 +1,4 @@
+import { createAbstraction } from "@webiny/feature/api";
+export const CreateUserUseCase = createAbstraction("CreateUserUseCase");
+
+//# sourceMappingURL=abstractions.js.map

package/api/features/CreateUser/abstractions.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["createAbstraction","CreateUserUseCase"],"sources":["abstractions.ts"],"sourcesContent":["import { createAbstraction } from \"@webiny/feature/api\";\nimport type { Result } from \"@webiny/feature/api\";\nimport type { AdminUser } from \"@webiny/api-core/types/users.js\";\nimport type {\n    NotAuthorizedError,\n    EmailTakenError,\n    UserValidationError\n} from \"@webiny/api-core/features/users/shared/errors.js\";\nimport type { RepositoryError } from \"@webiny/api-core/features/users/shared/abstractions.js\";\nimport type { CognitoAccountExistsError, CognitoCreateUserError } from \"~/api/domain/errors.js\";\n\nexport interface CreateAdminUserInput {\n    id?: string;\n    displayName?: string;\n    email: string;\n    firstName?: string;\n    lastName?: string;\n    password: string;\n    avatar?: Record<string, any> | null;\n    roles?: string[];\n    teams?: string[];\n}\n\nexport interface ICreateUserUseCaseErrors {\n    authorization: NotAuthorizedError;\n    validation: UserValidationError;\n    emailTaken: EmailTakenError;\n    repository: RepositoryError;\n    cognitoAccountExists: CognitoAccountExistsError;\n    cognitoCreateUser: CognitoCreateUserError;\n}\n\ntype CreateAdminUserError = ICreateUserUseCaseErrors[keyof ICreateUserUseCaseErrors];\n\nexport interface ICreateUserUseCase {\n    execute(input: CreateAdminUserInput): Promise<Result<AdminUser, CreateAdminUserError>>;\n}\n\nexport const CreateUserUseCase = createAbstraction<ICreateUserUseCase>(\"CreateUserUseCase\");\n\nexport namespace CreateUserUseCase {\n    export type Interface = ICreateUserUseCase;\n    export type Input = CreateAdminUserInput;\n    export type Error = CreateAdminUserError;\n}\n"],"mappings":"AAAA,SAASA,iBAAiB,QAAQ,qBAAqB;AAsCvD,OAAO,MAAMC,iBAAiB,GAAGD,iBAAiB,CAAqB,mBAAmB,CAAC","ignoreList":[]}

package/api/features/CreateUser/feature.d.ts

@@ -0,0 +1 @@
+export declare const CreateUserFeature: import("@webiny/feature/api/createFeature.js").FeatureDefinition<unknown>;

package/api/features/CreateUser/feature.js

@@ -0,0 +1,10 @@
+import { createFeature } from "@webiny/feature/api";
+import { CreateUserUseCase } from "./CreateUserUseCase.js";
+export const CreateUserFeature = createFeature({
+  name: "CreateUserFeature",
+  register(container) {
+    container.register(CreateUserUseCase);
+  }
+});
+
+//# sourceMappingURL=feature.js.map

package/api/features/CreateUser/feature.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["createFeature","CreateUserUseCase","CreateUserFeature","name","register","container"],"sources":["feature.ts"],"sourcesContent":["import { createFeature } from \"@webiny/feature/api\";\nimport { CreateUserUseCase } from \"./CreateUserUseCase.js\";\n\nexport const CreateUserFeature = createFeature({\n    name: \"CreateUserFeature\",\n    register(container) {\n        container.register(CreateUserUseCase);\n    }\n});\n"],"mappings":"AAAA,SAASA,aAAa,QAAQ,qBAAqB;AACnD,SAASC,iBAAiB;AAE1B,OAAO,MAAMC,iBAAiB,GAAGF,aAAa,CAAC;EAC3CG,IAAI,EAAE,mBAAmB;EACzBC,QAAQA,CAACC,SAAS,EAAE;IAChBA,SAAS,CAACD,QAAQ,CAACH,iBAAiB,CAAC;EACzC;AACJ,CAAC,CAAC","ignoreList":[]}

package/api/features/CreateUser/index.d.ts

@@ -0,0 +1,2 @@
+export * from "./abstractions.js";
+export * from "./feature.js";

package/api/features/CreateUser/index.js

@@ -0,0 +1,4 @@
+export * from "./abstractions.js";
+export * from "./feature.js";
+
+//# sourceMappingURL=index.js.map

package/api/features/CreateUser/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":[],"sources":["index.ts"],"sourcesContent":["export * from \"./abstractions.js\";\nexport * from \"./feature.js\";\n"],"mappings":"AAAA;AACA","ignoreList":[]}

package/api/features/CreateUser/schema.d.ts

@@ -0,0 +1,47 @@
+import { z } from "zod";
+export declare const createAdminUserValidation: z.ZodObject<{
+    id: z.ZodOptional<z.ZodString>;
+    displayName: z.ZodOptional<z.ZodString>;
+    email: z.ZodString;
+    firstName: z.ZodOptional<z.ZodString>;
+    lastName: z.ZodOptional<z.ZodString>;
+    password: z.ZodString;
+    avatar: z.ZodNullable<z.ZodOptional<z.ZodObject<{
+        id: z.ZodString;
+        src: z.ZodString;
+    }, "strip", z.ZodTypeAny, {
+        src: string;
+        id: string;
+    }, {
+        src: string;
+        id: string;
+    }>>>;
+    roles: z.ZodDefault<z.ZodOptional<z.ZodArray<z.ZodString, "many">>>;
+    teams: z.ZodDefault<z.ZodOptional<z.ZodArray<z.ZodString, "many">>>;
+}, "strip", z.ZodTypeAny, {
+    roles: string[];
+    teams: string[];
+    email: string;
+    password: string;
+    displayName?: string | undefined;
+    id?: string | undefined;
+    firstName?: string | undefined;
+    lastName?: string | undefined;
+    avatar?: {
+        src: string;
+        id: string;
+    } | null | undefined;
+}, {
+    email: string;
+    password: string;
+    displayName?: string | undefined;
+    id?: string | undefined;
+    roles?: string[] | undefined;
+    teams?: string[] | undefined;
+    firstName?: string | undefined;
+    lastName?: string | undefined;
+    avatar?: {
+        src: string;
+        id: string;
+    } | null | undefined;
+}>;

package/api/features/CreateUser/schema.js

@@ -0,0 +1,17 @@
+import { z } from "zod";
+export const createAdminUserValidation = z.object({
+  id: z.string().min(1).optional(),
+  displayName: z.string().min(1).optional(),
+  email: z.string().email(),
+  firstName: z.string().optional(),
+  lastName: z.string().optional(),
+  password: z.string().min(8),
+  avatar: z.object({
+    id: z.string().min(1),
+    src: z.string().url()
+  }).optional().nullable(),
+  roles: z.array(z.string()).optional().default([]),
+  teams: z.array(z.string()).optional().default([])
+});
+
+//# sourceMappingURL=schema.js.map

package/api/features/CreateUser/schema.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["z","createAdminUserValidation","object","id","string","min","optional","displayName","email","firstName","lastName","password","avatar","src","url","nullable","roles","array","default","teams"],"sources":["schema.ts"],"sourcesContent":["import { z } from \"zod\";\n\nexport const createAdminUserValidation = z.object({\n    id: z.string().min(1).optional(),\n    displayName: z.string().min(1).optional(),\n    email: z.string().email(),\n    firstName: z.string().optional(),\n    lastName: z.string().optional(),\n    password: z.string().min(8),\n    avatar: z\n        .object({\n            id: z.string().min(1),\n            src: z.string().url()\n        })\n        .optional()\n        .nullable(),\n    roles: z.array(z.string()).optional().default([]),\n    teams: z.array(z.string()).optional().default([])\n});\n"],"mappings":"AAAA,SAASA,CAAC,QAAQ,KAAK;AAEvB,OAAO,MAAMC,yBAAyB,GAAGD,CAAC,CAACE,MAAM,CAAC;EAC9CC,EAAE,EAAEH,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,GAAG,CAAC,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAChCC,WAAW,EAAEP,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,GAAG,CAAC,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACzCE,KAAK,EAAER,CAAC,CAACI,MAAM,CAAC,CAAC,CAACI,KAAK,CAAC,CAAC;EACzBC,SAAS,EAAET,CAAC,CAACI,MAAM,CAAC,CAAC,CAACE,QAAQ,CAAC,CAAC;EAChCI,QAAQ,EAAEV,CAAC,CAACI,MAAM,CAAC,CAAC,CAACE,QAAQ,CAAC,CAAC;EAC/BK,QAAQ,EAAEX,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,GAAG,CAAC,CAAC,CAAC;EAC3BO,MAAM,EAAEZ,CAAC,CACJE,MAAM,CAAC;IACJC,EAAE,EAAEH,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,GAAG,CAAC,CAAC,CAAC;IACrBQ,GAAG,EAAEb,CAAC,CAACI,MAAM,CAAC,CAAC,CAACU,GAAG,CAAC;EACxB,CAAC,CAAC,CACDR,QAAQ,CAAC,CAAC,CACVS,QAAQ,CAAC,CAAC;EACfC,KAAK,EAAEhB,CAAC,CAACiB,KAAK,CAACjB,CAAC,CAACI,MAAM,CAAC,CAAC,CAAC,CAACE,QAAQ,CAAC,CAAC,CAACY,OAAO,CAAC,EAAE,CAAC;EACjDC,KAAK,EAAEnB,CAAC,CAACiB,KAAK,CAACjB,CAAC,CAACI,MAAM,CAAC,CAAC,CAAC,CAACE,QAAQ,CAAC,CAAC,CAACY,OAAO,CAAC,EAAE;AACpD,CAAC,CAAC","ignoreList":[]}

package/api/features/DeleteUser/DeleteUserUseCase.d.ts

@@ -0,0 +1,16 @@
+import { Result } from "@webiny/feature/api";
+import { DeleteUserUseCase as CoreDeleteUser } from "@webiny/api-core/features/DeleteUser";
+import { GetUserUseCase } from "@webiny/api-core/features/GetUser";
+import { IdentityContext } from "@webiny/api-core/features/security/IdentityContext/index.js";
+import { DeleteUserUseCase as UseCaseAbstraction } from "./abstractions.js";
+import { CognitoService } from "../CognitoService/abstractions.js";
+declare class DeleteUserUseCaseImpl implements UseCaseAbstraction.Interface {
+    private identityContext;
+    private cognitoService;
+    private deleteUserUseCase;
+    private getUserUseCase;
+    constructor(identityContext: IdentityContext.Interface, cognitoService: CognitoService.Interface, deleteUserUseCase: CoreDeleteUser.Interface, getUserUseCase: GetUserUseCase.Interface);
+    execute(id: string): Promise<Result<void, UseCaseAbstraction.Error>>;
+}
+export declare const DeleteUserUseCase: import("@webiny/di").Implementation<typeof DeleteUserUseCaseImpl>;
+export {};

package/api/features/DeleteUser/DeleteUserUseCase.js

@@ -0,0 +1,54 @@
+import { createImplementation } from "@webiny/feature/api";
+import { Result } from "@webiny/feature/api";
+import { DeleteUserUseCase as CoreDeleteUser } from "@webiny/api-core/features/DeleteUser";
+import { GetUserUseCase } from "@webiny/api-core/features/GetUser";
+import { NotAuthorizedError } from "@webiny/api-core/features/users/shared/errors.js";
+import { IdentityContext } from "@webiny/api-core/features/security/IdentityContext/index.js";
+import { DeleteUserUseCase as UseCaseAbstraction } from "./abstractions.js";
+import { Username } from "../../domain/Username.js";
+import { CognitoDeleteUserError } from "../../domain/errors.js";
+import { CognitoService } from "../CognitoService/abstractions.js";
+class DeleteUserUseCaseImpl {
+  constructor(identityContext, cognitoService, deleteUserUseCase, getUserUseCase) {
+    this.identityContext = identityContext;
+    this.cognitoService = cognitoService;
+    this.deleteUserUseCase = deleteUserUseCase;
+    this.getUserUseCase = getUserUseCase;
+  }
+  async execute(id) {
+    const permission = await this.identityContext.getPermission("adminUsers.user");
+    if (!permission) {
+      return Result.fail(new NotAuthorizedError());
+    }
+
+    // Get user to have email for Cognito deletion
+    const getUserResult = await this.getUserUseCase.execute({
+      id
+    });
+    if (getUserResult.isFail()) {
+      return Result.fail(getUserResult.error);
+    }
+    const user = getUserResult.value;
+
+    // Delete user from the database
+    const deleteUserResult = await this.deleteUserUseCase.execute(id);
+    if (deleteUserResult.isFail()) {
+      return Result.fail(deleteUserResult.error);
+    }
+
+    // Delete user from Cognito
+    try {
+      await this.cognitoService.deleteUser(Username.fromUser(user));
+      return Result.ok();
+    } catch (cognitoError) {
+      return Result.fail(new CognitoDeleteUserError(cognitoError));
+    }
+  }
+}
+export const DeleteUserUseCase = createImplementation({
+  abstraction: UseCaseAbstraction,
+  implementation: DeleteUserUseCaseImpl,
+  dependencies: [IdentityContext, CognitoService, CoreDeleteUser, GetUserUseCase]
+});
+
+//# sourceMappingURL=DeleteUserUseCase.js.map

package/api/features/DeleteUser/DeleteUserUseCase.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["createImplementation","Result","DeleteUserUseCase","CoreDeleteUser","GetUserUseCase","NotAuthorizedError","IdentityContext","UseCaseAbstraction","Username","CognitoDeleteUserError","CognitoService","DeleteUserUseCaseImpl","constructor","identityContext","cognitoService","deleteUserUseCase","getUserUseCase","execute","id","permission","getPermission","fail","getUserResult","isFail","error","user","value","deleteUserResult","deleteUser","fromUser","ok","cognitoError","abstraction","implementation","dependencies"],"sources":["DeleteUserUseCase.ts"],"sourcesContent":["import { createImplementation } from \"@webiny/feature/api\";\nimport { Result } from \"@webiny/feature/api\";\nimport { DeleteUserUseCase as CoreDeleteUser } from \"@webiny/api-core/features/DeleteUser\";\nimport { GetUserUseCase } from \"@webiny/api-core/features/GetUser\";\nimport { NotAuthorizedError } from \"@webiny/api-core/features/users/shared/errors.js\";\nimport { IdentityContext } from \"@webiny/api-core/features/security/IdentityContext/index.js\";\nimport { DeleteUserUseCase as UseCaseAbstraction } from \"./abstractions.js\";\nimport { Username } from \"~/api/domain/Username.js\";\nimport { CognitoDeleteUserError } from \"~/api/domain/errors.js\";\nimport { CognitoService } from \"../CognitoService/abstractions.js\";\n\nclass DeleteUserUseCaseImpl implements UseCaseAbstraction.Interface {\n    constructor(\n        private identityContext: IdentityContext.Interface,\n        private cognitoService: CognitoService.Interface,\n        private deleteUserUseCase: CoreDeleteUser.Interface,\n        private getUserUseCase: GetUserUseCase.Interface\n    ) {}\n\n    async execute(id: string): Promise<Result<void, UseCaseAbstraction.Error>> {\n        const permission = await this.identityContext.getPermission(\"adminUsers.user\");\n        if (!permission) {\n            return Result.fail(new NotAuthorizedError());\n        }\n\n        // Get user to have email for Cognito deletion\n        const getUserResult = await this.getUserUseCase.execute({ id });\n        if (getUserResult.isFail()) {\n            return Result.fail(getUserResult.error);\n        }\n\n        const user = getUserResult.value;\n\n        // Delete user from the database\n        const deleteUserResult = await this.deleteUserUseCase.execute(id);\n        if (deleteUserResult.isFail()) {\n            return Result.fail(deleteUserResult.error);\n        }\n\n        // Delete user from Cognito\n        try {\n            await this.cognitoService.deleteUser(Username.fromUser(user));\n\n            return Result.ok();\n        } catch (cognitoError) {\n            return Result.fail(new CognitoDeleteUserError(cognitoError as Error));\n        }\n    }\n}\n\nexport const DeleteUserUseCase = createImplementation({\n    abstraction: UseCaseAbstraction,\n    implementation: DeleteUserUseCaseImpl,\n    dependencies: [IdentityContext, CognitoService, CoreDeleteUser, GetUserUseCase]\n});\n"],"mappings":"AAAA,SAASA,oBAAoB,QAAQ,qBAAqB;AAC1D,SAASC,MAAM,QAAQ,qBAAqB;AAC5C,SAASC,iBAAiB,IAAIC,cAAc,QAAQ,sCAAsC;AAC1F,SAASC,cAAc,QAAQ,mCAAmC;AAClE,SAASC,kBAAkB,QAAQ,kDAAkD;AACrF,SAASC,eAAe,QAAQ,6DAA6D;AAC7F,SAASJ,iBAAiB,IAAIK,kBAAkB;AAChD,SAASC,QAAQ;AACjB,SAASC,sBAAsB;AAC/B,SAASC,cAAc;AAEvB,MAAMC,qBAAqB,CAAyC;EAChEC,WAAWA,CACCC,eAA0C,EAC1CC,cAAwC,EACxCC,iBAA2C,EAC3CC,cAAwC,EAClD;IAAA,KAJUH,eAA0C,GAA1CA,eAA0C;IAAA,KAC1CC,cAAwC,GAAxCA,cAAwC;IAAA,KACxCC,iBAA2C,GAA3CA,iBAA2C;IAAA,KAC3CC,cAAwC,GAAxCA,cAAwC;EACjD;EAEH,MAAMC,OAAOA,CAACC,EAAU,EAAmD;IACvE,MAAMC,UAAU,GAAG,MAAM,IAAI,CAACN,eAAe,CAACO,aAAa,CAAC,iBAAiB,CAAC;IAC9E,IAAI,CAACD,UAAU,EAAE;MACb,OAAOlB,MAAM,CAACoB,IAAI,CAAC,IAAIhB,kBAAkB,CAAC,CAAC,CAAC;IAChD;;IAEA;IACA,MAAMiB,aAAa,GAAG,MAAM,IAAI,CAACN,cAAc,CAACC,OAAO,CAAC;MAAEC;IAAG,CAAC,CAAC;IAC/D,IAAII,aAAa,CAACC,MAAM,CAAC,CAAC,EAAE;MACxB,OAAOtB,MAAM,CAACoB,IAAI,CAACC,aAAa,CAACE,KAAK,CAAC;IAC3C;IAEA,MAAMC,IAAI,GAAGH,aAAa,CAACI,KAAK;;IAEhC;IACA,MAAMC,gBAAgB,GAAG,MAAM,IAAI,CAACZ,iBAAiB,CAACE,OAAO,CAACC,EAAE,CAAC;IACjE,IAAIS,gBAAgB,CAACJ,MAAM,CAAC,CAAC,EAAE;MAC3B,OAAOtB,MAAM,CAACoB,IAAI,CAACM,gBAAgB,CAACH,KAAK,CAAC;IAC9C;;IAEA;IACA,IAAI;MACA,MAAM,IAAI,CAACV,cAAc,CAACc,UAAU,CAACpB,QAAQ,CAACqB,QAAQ,CAACJ,IAAI,CAAC,CAAC;MAE7D,OAAOxB,MAAM,CAAC6B,EAAE,CAAC,CAAC;IACtB,CAAC,CAAC,OAAOC,YAAY,EAAE;MACnB,OAAO9B,MAAM,CAACoB,IAAI,CAAC,IAAIZ,sBAAsB,CAACsB,YAAqB,CAAC,CAAC;IACzE;EACJ;AACJ;AAEA,OAAO,MAAM7B,iBAAiB,GAAGF,oBAAoB,CAAC;EAClDgC,WAAW,EAAEzB,kBAAkB;EAC/B0B,cAAc,EAAEtB,qBAAqB;EACrCuB,YAAY,EAAE,CAAC5B,eAAe,EAAEI,cAAc,EAAEP,cAAc,EAAEC,cAAc;AAClF,CAAC,CAAC","ignoreList":[]}

package/api/features/DeleteUser/abstractions.d.ts

@@ -0,0 +1,19 @@
+import type { Result } from "@webiny/feature/api";
+import type { NotAuthorizedError } from "@webiny/api-core/features/users/shared/errors.js";
+import type { DeleteUserUseCase as CoreDeleteUser } from "@webiny/api-core/features/users/DeleteUser/index.js";
+import type { CognitoDeleteUserError } from "../../../api/domain/errors.js";
+export interface IDeleteUserUseCaseErrors {
+    authorization: NotAuthorizedError;
+    deleteUser: CoreDeleteUser.Error;
+    cognitoDeleteUser: CognitoDeleteUserError;
+}
+type IDeleteAdminUserError = IDeleteUserUseCaseErrors[keyof IDeleteUserUseCaseErrors];
+export interface IDeleteUserUseCase {
+    execute(id: string): Promise<Result<void, IDeleteAdminUserError>>;
+}
+export declare const DeleteUserUseCase: import("@webiny/di").Abstraction<IDeleteUserUseCase>;
+export declare namespace DeleteUserUseCase {
+    type Interface = IDeleteUserUseCase;
+    type Error = IDeleteAdminUserError;
+}
+export {};

package/api/features/DeleteUser/abstractions.js

@@ -0,0 +1,4 @@
+import { createAbstraction } from "@webiny/feature/api";
+export const DeleteUserUseCase = createAbstraction("DeleteUserUseCase");
+
+//# sourceMappingURL=abstractions.js.map

package/api/features/DeleteUser/abstractions.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["createAbstraction","DeleteUserUseCase"],"sources":["abstractions.ts"],"sourcesContent":["import { createAbstraction } from \"@webiny/feature/api\";\nimport type { Result } from \"@webiny/feature/api\";\nimport type { NotAuthorizedError } from \"@webiny/api-core/features/users/shared/errors.js\";\nimport type { DeleteUserUseCase as CoreDeleteUser } from \"@webiny/api-core/features/users/DeleteUser/index.js\";\nimport type { CognitoDeleteUserError } from \"~/api/domain/errors.js\";\n\nexport interface IDeleteUserUseCaseErrors {\n    authorization: NotAuthorizedError;\n    deleteUser: CoreDeleteUser.Error;\n    cognitoDeleteUser: CognitoDeleteUserError;\n}\n\ntype IDeleteAdminUserError = IDeleteUserUseCaseErrors[keyof IDeleteUserUseCaseErrors];\n\nexport interface IDeleteUserUseCase {\n    execute(id: string): Promise<Result<void, IDeleteAdminUserError>>;\n}\n\nexport const DeleteUserUseCase = createAbstraction<IDeleteUserUseCase>(\"DeleteUserUseCase\");\n\nexport namespace DeleteUserUseCase {\n    export type Interface = IDeleteUserUseCase;\n    export type Error = IDeleteAdminUserError;\n}\n"],"mappings":"AAAA,SAASA,iBAAiB,QAAQ,qBAAqB;AAkBvD,OAAO,MAAMC,iBAAiB,GAAGD,iBAAiB,CAAqB,mBAAmB,CAAC","ignoreList":[]}

package/api/features/DeleteUser/feature.d.ts

@@ -0,0 +1 @@
+export declare const DeleteUserFeature: import("@webiny/feature/api/createFeature.js").FeatureDefinition<unknown>;

package/api/features/DeleteUser/feature.js

@@ -0,0 +1,10 @@
+import { createFeature } from "@webiny/feature/api";
+import { DeleteUserUseCase } from "./DeleteUserUseCase.js";
+export const DeleteUserFeature = createFeature({
+  name: "DeleteUserFeature",
+  register(container) {
+    container.register(DeleteUserUseCase);
+  }
+});
+
+//# sourceMappingURL=feature.js.map

package/api/features/DeleteUser/feature.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["createFeature","DeleteUserUseCase","DeleteUserFeature","name","register","container"],"sources":["feature.ts"],"sourcesContent":["import { createFeature } from \"@webiny/feature/api\";\nimport { DeleteUserUseCase } from \"./DeleteUserUseCase.js\";\n\nexport const DeleteUserFeature = createFeature({\n    name: \"DeleteUserFeature\",\n    register(container) {\n        container.register(DeleteUserUseCase);\n    }\n});\n"],"mappings":"AAAA,SAASA,aAAa,QAAQ,qBAAqB;AACnD,SAASC,iBAAiB;AAE1B,OAAO,MAAMC,iBAAiB,GAAGF,aAAa,CAAC;EAC3CG,IAAI,EAAE,mBAAmB;EACzBC,QAAQA,CAACC,SAAS,EAAE;IAChBA,SAAS,CAACD,QAAQ,CAACH,iBAAiB,CAAC;EACzC;AACJ,CAAC,CAAC","ignoreList":[]}

package/api/features/DeleteUser/index.d.ts

@@ -0,0 +1,2 @@
+export * from "./abstractions.js";
+export * from "./feature.js";

package/api/features/DeleteUser/index.js

@@ -0,0 +1,4 @@
+export * from "./abstractions.js";
+export * from "./feature.js";
+
+//# sourceMappingURL=index.js.map

package/api/features/DeleteUser/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":[],"sources":["index.ts"],"sourcesContent":["export * from \"./abstractions.js\";\nexport * from \"./feature.js\";\n"],"mappings":"AAAA;AACA","ignoreList":[]}

package/api/features/UpdateUser/UpdateUserUseCase.d.ts

@@ -0,0 +1,21 @@
+import { Result } from "@webiny/feature/api";
+import { UpdateUserUseCase as CoreUpdateUser } from "@webiny/api-core/features/UpdateUser";
+import { GetUserUseCase } from "@webiny/api-core/features/GetUser";
+import type { AdminUser } from "@webiny/api-core/types/users.js";
+import { IdentityContext } from "@webiny/api-core/features/security/IdentityContext/index.js";
+import { UpdateUserUseCase as UseCaseAbstraction } from "./abstractions.js";
+import type { UpdateAdminUserInput } from "./abstractions.js";
+import { CognitoService } from "../../../api/features/CognitoService/index.js";
+declare class UpdateUserUseCaseImpl implements UseCaseAbstraction.Interface {
+    private identityContext;
+    private cognitoService;
+    private updateUserUseCase;
+    private getUserUseCase;
+    private updateAttributes;
+    constructor(identityContext: IdentityContext.Interface, cognitoService: CognitoService.Interface, updateUserUseCase: CoreUpdateUser.Interface, getUserUseCase: GetUserUseCase.Interface);
+    execute(id: string, input: UpdateAdminUserInput): Promise<Result<AdminUser, UseCaseAbstraction.Error>>;
+}
+export declare const UpdateUserUseCase: typeof UpdateUserUseCaseImpl & {
+    __abstraction: import("@webiny/di").Abstraction<import("./abstractions.js").IUpdateUserUseCase>;
+};
+export {};