@xube/kit-aws-auth-infrastructure 0.0.62

package/dist/api/auth-api.d.ts

@@ -0,0 +1,12 @@
+import { XubeRestAPI, XubeRestAPIProps } from "@xube/kit-aws-infrastructure";
+import { IUserPool } from "aws-cdk-lib/aws-cognito";
+import { Construct } from "constructs";
+export declare const AUTH_PATH = "auth";
+interface AuthAPIProps extends XubeRestAPIProps {
+    userPool: IUserPool;
+}
+export declare class AuthAPIManager extends Construct {
+    authApi: XubeRestAPI;
+    constructor(scope: Construct, id: string, props: AuthAPIProps);
+}
+export {};

package/dist/api/auth-api.js

@@ -0,0 +1,24 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthAPIManager = exports.AUTH_PATH = void 0;
+const kit_aws_infrastructure_1 = require("@xube/kit-aws-infrastructure");
+const constructs_1 = require("constructs");
+const login_1 = require("./login");
+const signup_1 = require("./signup");
+exports.AUTH_PATH = "auth";
+class AuthAPIManager extends constructs_1.Construct {
+    authApi;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.authApi = new kit_aws_infrastructure_1.XubeRestAPI(scope, id + "xube-api", props);
+        const userSignUp = new signup_1.SignUpAPI(this, id + '-signup-api', {
+            name: props.name + '-signup',
+            authAPI: this.authApi
+        });
+        const userLogIn = new login_1.LoginAPI(this, id + '-login-api', {
+            name: props.name + '-login',
+            authAPI: this.authApi
+        });
+    }
+}
+exports.AuthAPIManager = AuthAPIManager;

package/dist/api/login.d.ts

@@ -0,0 +1,11 @@
+import { XubeRestAPI } from "@xube/kit-aws-infrastructure";
+import { NodejsFunction } from "aws-cdk-lib/aws-lambda-nodejs";
+import { Construct } from "constructs";
+export interface LoginAPIProps {
+    authAPI: XubeRestAPI;
+    name: string;
+}
+export declare class LoginAPI extends Construct {
+    loginFunction: NodejsFunction;
+    constructor(scope: Construct, id: string, props: LoginAPIProps);
+}

package/dist/api/login.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LoginAPI = void 0;
+const aws_apigateway_1 = require("aws-cdk-lib/aws-apigateway");
+const aws_lambda_1 = require("aws-cdk-lib/aws-lambda");
+const aws_lambda_nodejs_1 = require("aws-cdk-lib/aws-lambda-nodejs");
+const constructs_1 = require("constructs");
+const path_1 = require("path");
+class LoginAPI extends constructs_1.Construct {
+    loginFunction;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.loginFunction = new aws_lambda_nodejs_1.NodejsFunction(scope, id + "-login", {
+            entry: (0, path_1.join)(__dirname, "../functions/login.ts"),
+            runtime: aws_lambda_1.Runtime.NODEJS_18_X,
+            functionName: props.name,
+        });
+        props.authAPI.restAPI.root
+            .addResource("/login")
+            .addMethod(aws_lambda_1.HttpMethod.POST, new aws_apigateway_1.LambdaIntegration(this.loginFunction));
+    }
+}
+exports.LoginAPI = LoginAPI;

package/dist/api/signup.d.ts

@@ -0,0 +1,11 @@
+import { XubeRestAPI } from "@xube/kit-aws-infrastructure";
+import { NodejsFunction } from "aws-cdk-lib/aws-lambda-nodejs";
+import { Construct } from "constructs";
+export interface SignUpAPIProps {
+    authAPI: XubeRestAPI;
+    name: string;
+}
+export declare class SignUpAPI extends Construct {
+    signupFunction: NodejsFunction;
+    constructor(scope: Construct, id: string, props: SignUpAPIProps);
+}

package/dist/api/signup.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SignUpAPI = void 0;
+const aws_apigateway_1 = require("aws-cdk-lib/aws-apigateway");
+const aws_lambda_1 = require("aws-cdk-lib/aws-lambda");
+const aws_lambda_nodejs_1 = require("aws-cdk-lib/aws-lambda-nodejs");
+const constructs_1 = require("constructs");
+const path_1 = require("path");
+class SignUpAPI extends constructs_1.Construct {
+    signupFunction;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.signupFunction = new aws_lambda_nodejs_1.NodejsFunction(scope, id + "-signup", {
+            entry: (0, path_1.join)(__dirname, "../functions/signup.ts"),
+            runtime: aws_lambda_1.Runtime.NODEJS_18_X,
+            functionName: props.name,
+        });
+        props.authAPI.restAPI.root
+            .addResource("/signup")
+            .addMethod(aws_lambda_1.HttpMethod.POST, new aws_apigateway_1.LambdaIntegration(this.signupFunction));
+    }
+}
+exports.SignUpAPI = SignUpAPI;

package/dist/auth-management.d.ts

@@ -0,0 +1,20 @@
+import { Construct } from "constructs";
+import { AuthAPIManager } from "./api/auth-api";
+import { XubeUserPool } from "@xube/kit-aws-infrastructure";
+import { PasswordPolicy, UserPoolClient } from "aws-cdk-lib/aws-cognito";
+export interface AuthManagementProps {
+    name: string;
+    passwordPolicy: PasswordPolicy;
+    autoVerify?: {
+        email: boolean;
+    };
+    verification: {
+        emailSubject: string;
+    };
+}
+export declare class AuthManagement extends Construct {
+    userPool: XubeUserPool;
+    userPoolClient: UserPoolClient;
+    authAPIManager: AuthAPIManager;
+    constructor(scope: Construct, id: string, props: AuthManagementProps);
+}

package/dist/auth-management.js

@@ -0,0 +1,48 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthManagement = void 0;
+const aws_lambda_nodejs_1 = require("aws-cdk-lib/aws-lambda-nodejs");
+const constructs_1 = require("constructs");
+const auth_api_1 = require("./api/auth-api");
+const kit_aws_infrastructure_1 = require("@xube/kit-aws-infrastructure");
+const aws_lambda_1 = require("aws-cdk-lib/aws-lambda");
+const path_1 = require("path");
+const aws_cdk_lib_1 = require("aws-cdk-lib");
+const aws_ssm_1 = require("aws-cdk-lib/aws-ssm");
+const kit_aws_auth_1 = require("@xube/kit-aws-auth");
+class AuthManagement extends constructs_1.Construct {
+    userPool;
+    userPoolClient;
+    authAPIManager;
+    constructor(scope, id, props) {
+        super(scope, id);
+        const presignup = new aws_lambda_nodejs_1.NodejsFunction(scope, id + "-pre-signup", {
+            entry: (0, path_1.join)(__dirname, "functions/pre-signup.ts"),
+            runtime: aws_lambda_1.Runtime.NODEJS_18_X,
+            functionName: props.name + "-pre-signup",
+        });
+        this.userPool = new kit_aws_infrastructure_1.XubeUserPool(scope, id + "-xube-pool", {
+            name: props.name + "-pool",
+            passwordPolicy: props.passwordPolicy,
+            autoVerify: props.autoVerify,
+            verification: props.verification,
+            presignup,
+        });
+        const userPoolClientName = props.name + "-client";
+        this.userPoolClient = this.userPool.userPool.addClient(id + "-client", {
+            userPoolClientName,
+            authFlows: {
+                userPassword: true,
+            },
+            idTokenValidity: aws_cdk_lib_1.Duration.days(1),
+        });
+        const clientIdParam = new aws_ssm_1.StringParameter(this, id + "-client-id-param", {
+            parameterName: kit_aws_auth_1.DEFAULT_USER_POOL_CLIENT_ID_NAME,
+            stringValue: this.userPoolClient.userPoolClientId,
+        });
+        this.authAPIManager = new auth_api_1.AuthAPIManager(scope, id + "-auth-mgr", {
+            userPool: this.userPool.userPool,
+        });
+    }
+}
+exports.AuthManagement = AuthManagement;

package/dist/functions/login.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/functions/login.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/dist/functions/pre-signup.d.ts

@@ -0,0 +1,2 @@
+import { Context, PreSignUpTriggerEvent } from "aws-lambda";
+export declare const handler: (event: PreSignUpTriggerEvent, context: Context, callback: (err: any, data: PreSignUpTriggerEvent) => any) => Promise<any>;

package/dist/functions/pre-signup.js

@@ -0,0 +1,17 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.handler = void 0;
+const kit_log_1 = require("@xube/kit-log");
+const handler = async (event, context, callback) => {
+    const log = kit_log_1.XubeLog.getInstance();
+    if (!event.request.userAttributes.email) {
+        log.error("Email not found");
+        return callback(new Error("Email not found"), event);
+    }
+    event.response.autoVerifyEmail = false;
+    event.response.autoVerifyPhone = false;
+    event.response.autoConfirmUser = true;
+    log.info("Accepting user creation");
+    return callback(null, event);
+};
+exports.handler = handler;

package/dist/functions/signup.js

@@ -0,0 +1 @@
+"use strict";

package/dist/index.js

@@ -0,0 +1 @@
+"use strict";

package/package.json

@@ -0,0 +1,32 @@
+{
+  "name": "@xube/kit-aws-auth-infrastructure",
+  "version": "0.0.62",
+  "description": "",
+  "main": "dist/index.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+ssh://git@github.com/XubeLtd/dev-kit.git"
+  },
+  "author": "Xube Pty Ltd",
+  "license": "MIT",
+  "bugs": {
+    "url": "https://github.com/XubeLtd/dev-kit/issues"
+  },
+  "homepage": "https://github.com/XubeLtd/dev-kit#readme",
+  "devDependencies": {
+    "@xube/kit-build": "^0.0.62"
+  },
+  "dependencies": {
+    "@xube/kit-aws": "^0.0.62",
+    "@xube/kit-aws-hooks": "^0.0.62",
+    "@xube/kit-aws-infrastructure": "^0.0.62",
+    "@xube/kit-constants": "^0.0.62",
+    "@xube/kit-log": "^0.0.62",
+    "aws-cdk-lib": "^2.100.0",
+    "aws-lambda": "^1.0.7",
+    "constructs": "^10.3.0"
+  }
+}

package/src/api/auth-api.ts

@@ -0,0 +1,42 @@
+import { XubeRestAPI, XubeRestAPIProps } from "@xube/kit-aws-infrastructure";
+import { CorsOptions, IAuthorizer, IDomainName, RestApi } from "aws-cdk-lib/aws-apigateway";
+import { ICertificate } from "aws-cdk-lib/aws-certificatemanager";
+import { IUserPool } from "aws-cdk-lib/aws-cognito";
+import { Construct } from "constructs";
+import { LoginAPI } from "./login";
+import { SignUpAPI } from "./signup";
+
+export const AUTH_PATH = "auth";
+
+interface AuthAPIProps extends XubeRestAPIProps {
+  userPool: IUserPool;
+}
+
+export class AuthAPIManager extends Construct {
+  authApi: XubeRestAPI;
+
+  constructor(
+    scope: Construct,
+    id: string,
+    props: AuthAPIProps
+  ) {
+    super(scope, id);
+
+    this.authApi = new XubeRestAPI(scope, id + "xube-api", props);
+
+
+    const userSignUp = new SignUpAPI(this, id + '-signup-api', {
+        name: props.name + '-signup',
+        authAPI: this.authApi
+    });
+
+    const userLogIn = new LoginAPI(
+      this,
+      id + '-login-api',
+      {
+        name: props.name + '-login',
+        authAPI: this.authApi
+      }
+    );
+  }
+}

package/src/api/login.ts

@@ -0,0 +1,35 @@
+import { XubeRestAPI } from "@xube/kit-aws-infrastructure";
+import {
+  LambdaIntegration,
+} from "aws-cdk-lib/aws-apigateway";
+import { HttpMethod, Runtime } from "aws-cdk-lib/aws-lambda";
+import { NodejsFunction } from "aws-cdk-lib/aws-lambda-nodejs";
+import { Construct } from "constructs";
+import { join } from "path";
+
+export interface LoginAPIProps {
+  authAPI: XubeRestAPI;
+  name: string;
+}
+
+export class LoginAPI extends Construct {
+  loginFunction: NodejsFunction;
+
+  constructor(
+    scope: Construct,
+    id: string,
+    props: LoginAPIProps
+  ) {
+    super(scope, id);
+
+    this.loginFunction = new NodejsFunction(scope, id + "-login", {
+      entry: join(__dirname, "../functions/login.ts"),
+      runtime: Runtime.NODEJS_18_X,
+      functionName: props.name,
+    });
+
+    props.authAPI.restAPI.root
+      .addResource("/login")
+      .addMethod(HttpMethod.POST, new LambdaIntegration(this.loginFunction));
+  }
+}

package/src/api/signup.ts

@@ -0,0 +1,35 @@
+import { XubeRestAPI } from "@xube/kit-aws-infrastructure";
+import {
+  LambdaIntegration,
+} from "aws-cdk-lib/aws-apigateway";
+import { HttpMethod, Runtime } from "aws-cdk-lib/aws-lambda";
+import { NodejsFunction } from "aws-cdk-lib/aws-lambda-nodejs";
+import { Construct } from "constructs";
+import { join } from "path";
+
+export interface SignUpAPIProps {
+  authAPI: XubeRestAPI;
+  name: string;
+}
+
+export class SignUpAPI extends Construct {
+  signupFunction: NodejsFunction;
+
+  constructor(
+    scope: Construct,
+    id: string,
+    props: SignUpAPIProps
+  ) {
+    super(scope, id);
+
+    this.signupFunction = new NodejsFunction(scope, id + "-signup", {
+      entry: join(__dirname, "../functions/signup.ts"),
+      runtime: Runtime.NODEJS_18_X,
+      functionName: props.name,
+    });
+
+    props.authAPI.restAPI.root
+      .addResource("/signup")
+      .addMethod(HttpMethod.POST, new LambdaIntegration(this.signupFunction));
+  }
+}

package/src/auth-management.ts

@@ -0,0 +1,70 @@
+import { NodejsFunction } from "aws-cdk-lib/aws-lambda-nodejs";
+import { Construct } from "constructs";
+import { LoginAPI } from "./api/login";
+import { SignUpAPI } from "./api/signup";
+import { AuthAPIManager } from "./api/auth-api";
+import { XubeUserPool } from "@xube/kit-aws-infrastructure";
+import { PasswordPolicy, UserPoolClient } from "aws-cdk-lib/aws-cognito";
+import { Runtime } from "aws-cdk-lib/aws-lambda";
+import { join } from "path";
+import { Duration } from "aws-cdk-lib";
+import { StringParameter } from "aws-cdk-lib/aws-ssm";
+import { DEFAULT_USER_POOL_CLIENT_ID_NAME } from "@xube/kit-aws-auth";
+
+export interface AuthManagementProps {
+  name: string;
+  passwordPolicy: PasswordPolicy;
+  autoVerify?: {
+    email: boolean;
+  };
+  verification: {
+    emailSubject: string;
+  };
+}
+
+export class AuthManagement extends Construct {
+  userPool: XubeUserPool;
+  userPoolClient: UserPoolClient;
+  authAPIManager: AuthAPIManager;
+
+  constructor(scope: Construct, id: string, props: AuthManagementProps) {
+    super(scope, id);
+
+    const presignup: NodejsFunction = new NodejsFunction(
+      scope,
+      id + "-pre-signup",
+      {
+        entry: join(__dirname, "functions/pre-signup.ts"),
+        runtime: Runtime.NODEJS_18_X,
+        functionName: props.name + "-pre-signup",
+      }
+    );
+
+    this.userPool = new XubeUserPool(scope, id + "-xube-pool", {
+      name: props.name + "-pool",
+      passwordPolicy: props.passwordPolicy,
+      autoVerify: props.autoVerify,
+      verification: props.verification,
+      presignup,
+    });
+
+    const userPoolClientName = props.name + "-client";
+
+    this.userPoolClient = this.userPool.userPool.addClient(id + "-client", {
+      userPoolClientName,
+      authFlows: {
+        userPassword: true,
+      },
+      idTokenValidity: Duration.days(1),
+    });
+
+    const clientIdParam = new StringParameter(this, id + "-client-id-param", {
+      parameterName: DEFAULT_USER_POOL_CLIENT_ID_NAME,
+      stringValue: this.userPoolClient.userPoolClientId,
+    });
+
+    this.authAPIManager = new AuthAPIManager(scope, id + "-auth-mgr", {
+      userPool: this.userPool.userPool,
+    });
+  }
+}

package/src/functions/login.ts

@@ -0,0 +1,2 @@
+import { StatusCode } from "@xube/kit-constants";
+import { XubeResponse } from "../../../kit-request/src";

package/src/functions/pre-signup.ts

@@ -0,0 +1,24 @@
+import { XubeLog } from "@xube/kit-log";
+import { Context, PreSignUpTriggerEvent } from "aws-lambda";
+
+export const handler = async (
+    event: PreSignUpTriggerEvent,
+    context: Context,
+    callback: (err: any, data: PreSignUpTriggerEvent) => any
+  ) => {
+    const log = XubeLog.getInstance();
+  
+    if (!event.request.userAttributes.email) {
+      log.error("Email not found");
+      return callback(new Error("Email not found"), event);
+    }
+  
+    event.response.autoVerifyEmail = false;
+    event.response.autoVerifyPhone = false;
+    event.response.autoConfirmUser = true;
+  
+    log.info("Accepting user creation");
+  
+    return callback(null, event);
+  };
+  

package/tsconfig.json

@@ -0,0 +1,26 @@
+{
+    "extends": "../kit-build/tsconfig.json",
+    "compilerOptions": {
+      "rootDir": "./src",
+      "outDir": "./dist"
+    },
+    "exclude": ["**/*.test.ts", "**/*.mock.ts", "dist"],
+    "references": [
+      {
+        "path": "../kit-constants"
+      },
+      {
+        "path": "../kit-log"
+      },
+      {
+        "path": "../kit-aws"
+      },
+      {
+        "path": "../kit-aws-auth"
+      },
+      {
+        "path": "../kit-aws-infrastructure"
+      }
+    ]
+  }
+