@zola_do/authorization 0.1.9

package/dist/authorization.module.d.ts

@@ -0,0 +1,2 @@
+export declare class AuthorizationModule {
+}

package/dist/authorization.module.js

@@ -0,0 +1,46 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthorizationModule = void 0;
+const common_1 = require("@nestjs/common");
+const jwt_1 = require("@nestjs/jwt");
+const passport_1 = require("@nestjs/passport");
+const auth_helper_1 = require("./helper/auth.helper");
+const jwt_strategy_1 = require("./strategy/jwt.strategy");
+const jwt_refresh_token_strategy_1 = require("./strategy/jwt-refresh-token.strategy");
+const jwt_refresh_guard_1 = require("./guards/jwt-refresh.guard");
+const jwt_guard_1 = require("./guards/jwt.guard");
+const core_1 = require("@nestjs/core");
+const api_key_guard_1 = require("./guards/api-key.guard");
+const optional_jwt_guard_1 = require("./guards/optional-jwt.guard");
+let AuthorizationModule = class AuthorizationModule {
+};
+exports.AuthorizationModule = AuthorizationModule;
+exports.AuthorizationModule = AuthorizationModule = __decorate([
+    (0, common_1.Module)({
+        imports: [
+            passport_1.PassportModule.register({ defaultStrategy: 'jwt', property: 'user' }),
+            jwt_1.JwtModule.register({}),
+        ],
+        controllers: [],
+        providers: [
+            auth_helper_1.AuthHelper,
+            jwt_strategy_1.JwtStrategy,
+            jwt_1.JwtService,
+            jwt_refresh_token_strategy_1.JwtRefreshTokenStrategy,
+            core_1.Reflector,
+            jwt_guard_1.JwtGuard,
+            { provide: core_1.APP_GUARD, useClass: jwt_guard_1.JwtGuard },
+            jwt_refresh_guard_1.JwtRefreshGuard,
+            api_key_guard_1.ApiKeyGuard,
+            optional_jwt_guard_1.OptionalJwtGuard,
+        ],
+        exports: [core_1.Reflector, auth_helper_1.AuthHelper, jwt_1.JwtService],
+    })
+], AuthorizationModule);
+//# sourceMappingURL=authorization.module.js.map

package/dist/authorization.module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authorization.module.js","sourceRoot":"","sources":["../src/authorization.module.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAAwC;AACxC,qCAAoD;AACpD,+CAAkD;AAClD,sDAAkD;AAClD,0DAAsD;AACtD,sFAAgF;AAChF,kEAA6D;AAC7D,kDAA8C;AAC9C,uCAAoD;AACpD,0DAAqD;AACrD,oEAA+D;AAsBxD,IAAM,mBAAmB,GAAzB,MAAM,mBAAmB;CAAG,CAAA;AAAtB,kDAAmB;8BAAnB,mBAAmB;IApB/B,IAAA,eAAM,EAAC;QACN,OAAO,EAAE;YACP,yBAAc,CAAC,QAAQ,CAAC,EAAE,eAAe,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC;YACrE,eAAS,CAAC,QAAQ,CAAC,EAAE,CAAC;SACvB;QACD,WAAW,EAAE,EAAE;QACf,SAAS,EAAE;YACT,wBAAU;YACV,0BAAW;YACX,gBAAU;YACV,oDAAuB;YACvB,gBAAS;YACT,oBAAQ;YACR,EAAE,OAAO,EAAE,gBAAS,EAAE,QAAQ,EAAE,oBAAQ,EAAE;YAC1C,mCAAe;YACf,2BAAW;YACX,qCAAgB;SACjB;QACD,OAAO,EAAE,CAAC,gBAAS,EAAE,wBAAU,EAAE,gBAAU,CAAC;KAC7C,CAAC;GACW,mBAAmB,CAAG"}

package/dist/decorators/allow-anonymous.decorator.d.ts

@@ -0,0 +1,2 @@
+export declare const ALLOW_ANONYMOUS_META_KEY = "allowAnonymous";
+export declare const AllowAnonymous: () => import("@nestjs/common").CustomDecorator<string>;

package/dist/decorators/allow-anonymous.decorator.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AllowAnonymous = exports.ALLOW_ANONYMOUS_META_KEY = void 0;
+const common_1 = require("@nestjs/common");
+exports.ALLOW_ANONYMOUS_META_KEY = 'allowAnonymous';
+const AllowAnonymous = () => (0, common_1.SetMetadata)(exports.ALLOW_ANONYMOUS_META_KEY, true);
+exports.AllowAnonymous = AllowAnonymous;
+//# sourceMappingURL=allow-anonymous.decorator.js.map

package/dist/decorators/allow-anonymous.decorator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"allow-anonymous.decorator.js","sourceRoot":"","sources":["../../src/decorators/allow-anonymous.decorator.ts"],"names":[],"mappings":";;;AAAA,2CAA6C;AAEhC,QAAA,wBAAwB,GAAG,gBAAgB,CAAC;AAElD,MAAM,cAAc,GAAG,GAAG,EAAE,CAAC,IAAA,oBAAW,EAAC,gCAAwB,EAAE,IAAI,CAAC,CAAC;AAAnE,QAAA,cAAc,kBAAqD"}

package/dist/decorators/current-user.decorator.d.ts

@@ -0,0 +1 @@
+export declare const CurrentUser: (...dataOrPipes: any[]) => ParameterDecorator;

package/dist/decorators/current-user.decorator.js

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CurrentUser = void 0;
+const common_1 = require("@nestjs/common");
+exports.CurrentUser = (0, common_1.createParamDecorator)((data, ctx) => {
+    const request = ctx.switchToHttp().getRequest();
+    return request.user;
+});
+//# sourceMappingURL=current-user.decorator.js.map

package/dist/decorators/current-user.decorator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"current-user.decorator.js","sourceRoot":"","sources":["../../src/decorators/current-user.decorator.ts"],"names":[],"mappings":";;;AAAA,2CAAwE;AAE3D,QAAA,WAAW,GAAG,IAAA,6BAAoB,EAC7C,CAAC,IAAa,EAAE,GAAqB,EAAE,EAAE;IACvC,MAAM,OAAO,GAAG,GAAG,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;IAEhD,OAAO,OAAO,CAAC,IAAI,CAAC;AACtB,CAAC,CACF,CAAC"}

package/dist/guards/api-key.guard.d.ts

@@ -0,0 +1,4 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+export declare class ApiKeyGuard implements CanActivate {
+    canActivate(context: ExecutionContext): Promise<boolean>;
+}

package/dist/guards/api-key.guard.js

@@ -0,0 +1,38 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ApiKeyGuard = void 0;
+const common_1 = require("@nestjs/common");
+let ApiKeyGuard = class ApiKeyGuard {
+    async canActivate(context) {
+        try {
+            const request = context.switchToHttp().getRequest();
+            const headers = request.headers;
+            const apiKey = headers['x-api-key'];
+            if (!apiKey) {
+                throw new common_1.UnauthorizedException('api_key_not_provided');
+            }
+            const API_KEY = process.env.API_KEY;
+            if (!API_KEY) {
+                throw new common_1.UnauthorizedException('api_key_not_configured');
+            }
+            if (apiKey !== API_KEY) {
+                throw new common_1.UnauthorizedException('invalid_api_key');
+            }
+            return true;
+        }
+        catch (error) {
+            throw error;
+        }
+    }
+};
+exports.ApiKeyGuard = ApiKeyGuard;
+exports.ApiKeyGuard = ApiKeyGuard = __decorate([
+    (0, common_1.Injectable)()
+], ApiKeyGuard);
+//# sourceMappingURL=api-key.guard.js.map

package/dist/guards/api-key.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-key.guard.js","sourceRoot":"","sources":["../../src/guards/api-key.guard.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAKwB;AAGjB,IAAM,WAAW,GAAjB,MAAM,WAAW;IACtB,KAAK,CAAC,WAAW,CAAC,OAAyB;QACzC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;YACpD,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;YAChC,MAAM,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;YACpC,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,MAAM,IAAI,8BAAqB,CAAC,sBAAsB,CAAC,CAAC;YAC1D,CAAC;YAED,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC;YACpC,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,IAAI,8BAAqB,CAAC,wBAAwB,CAAC,CAAC;YAC5D,CAAC;YAGD,IAAI,MAAM,KAAK,OAAO,EAAE,CAAC;gBACvB,MAAM,IAAI,8BAAqB,CAAC,iBAAiB,CAAC,CAAC;YACrD,CAAC;YAED,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;CACF,CAAA;AAzBY,kCAAW;sBAAX,WAAW;IADvB,IAAA,mBAAU,GAAE;GACA,WAAW,CAyBvB"}

package/dist/guards/jwt-refresh.guard.d.ts

@@ -0,0 +1,4 @@
+declare const JwtRefreshGuard_base: import("@nestjs/passport").Type<import("@nestjs/passport").IAuthGuard>;
+export declare class JwtRefreshGuard extends JwtRefreshGuard_base {
+}
+export {};

package/dist/guards/jwt-refresh.guard.js

@@ -0,0 +1,18 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JwtRefreshGuard = void 0;
+const common_1 = require("@nestjs/common");
+const passport_1 = require("@nestjs/passport");
+let JwtRefreshGuard = class JwtRefreshGuard extends (0, passport_1.AuthGuard)('jwt-refresh') {
+};
+exports.JwtRefreshGuard = JwtRefreshGuard;
+exports.JwtRefreshGuard = JwtRefreshGuard = __decorate([
+    (0, common_1.Injectable)()
+], JwtRefreshGuard);
+//# sourceMappingURL=jwt-refresh.guard.js.map

package/dist/guards/jwt-refresh.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt-refresh.guard.js","sourceRoot":"","sources":["../../src/guards/jwt-refresh.guard.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAA4C;AAC5C,+CAA6C;AAGtC,IAAM,eAAe,GAArB,MAAM,eAAgB,SAAQ,IAAA,oBAAS,EAAC,aAAa,CAAC;CAAG,CAAA;AAAnD,0CAAe;0BAAf,eAAe;IAD3B,IAAA,mBAAU,GAAE;GACA,eAAe,CAAoC"}

package/dist/guards/jwt.guard.d.ts

@@ -0,0 +1,8 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+export declare class JwtGuard implements CanActivate {
+    private readonly reflector;
+    constructor(reflector: Reflector);
+    canActivate(context: ExecutionContext): Promise<boolean>;
+    private extractTokenFromHeader;
+}

package/dist/guards/jwt.guard.js

@@ -0,0 +1,59 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JwtGuard = void 0;
+const common_1 = require("@nestjs/common");
+const core_1 = require("@nestjs/core");
+const allow_anonymous_decorator_1 = require("../decorators/allow-anonymous.decorator");
+const jsonwebtoken = require("jsonwebtoken");
+const extract_user_1 = require("../utils/extract-user");
+let JwtGuard = class JwtGuard {
+    constructor(reflector) {
+        this.reflector = reflector;
+    }
+    async canActivate(context) {
+        var _a;
+        try {
+            const request = context.switchToHttp().getRequest();
+            const isAnonymousAllowed = (_a = this.reflector) === null || _a === void 0 ? void 0 : _a.getAllAndOverride(allow_anonymous_decorator_1.ALLOW_ANONYMOUS_META_KEY, [context.getHandler(), context.getClass()]);
+            if (isAnonymousAllowed) {
+                request.isAnonymous = true;
+                return true;
+            }
+            const token = this.extractTokenFromHeader(request);
+            if (!token) {
+                throw new common_1.UnauthorizedException('JsonWebTokenError', 'jwt must be provided');
+            }
+            const secret = process.env.JWT_ACCESS_TOKEN_SECRET;
+            if (!secret) {
+                throw new common_1.UnauthorizedException('ConfigurationError', 'JWT_ACCESS_TOKEN_SECRET is not configured');
+            }
+            const user = jsonwebtoken.verify(token, secret);
+            const parsedUser = (0, extract_user_1.extractUser)(request, user);
+            request.user = parsedUser;
+            return true;
+        }
+        catch (error) {
+            throw error;
+        }
+    }
+    extractTokenFromHeader(request) {
+        var _a, _b;
+        const [type, token] = (_b = (_a = request.headers.authorization) === null || _a === void 0 ? void 0 : _a.split(' ')) !== null && _b !== void 0 ? _b : [];
+        return type === 'Bearer' ? token : undefined;
+    }
+};
+exports.JwtGuard = JwtGuard;
+exports.JwtGuard = JwtGuard = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [core_1.Reflector])
+], JwtGuard);
+//# sourceMappingURL=jwt.guard.js.map

package/dist/guards/jwt.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt.guard.js","sourceRoot":"","sources":["../../src/guards/jwt.guard.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,2CAKwB;AAExB,uCAAyC;AACzC,uFAAmF;AACnF,6CAA4C;AAC5C,wDAAoD;AAG7C,IAAM,QAAQ,GAAd,MAAM,QAAQ;IACnB,YACmB,SAAoB;QAApB,cAAS,GAAT,SAAS,CAAW;IACnC,CAAC;IAEL,KAAK,CAAC,WAAW,CAAC,OAAyB;;QACzC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;YACpD,MAAM,kBAAkB,GAAG,MAAA,IAAI,CAAC,SAAS,0CAAE,iBAAiB,CAC1D,oDAAwB,EACxB,CAAC,OAAO,CAAC,UAAU,EAAE,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC,CAC3C,CAAC;YACF,IAAI,kBAAkB,EAAE,CAAC;gBACvB,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;gBAC3B,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,KAAK,GAAG,IAAI,CAAC,sBAAsB,CAAC,OAAO,CAAC,CAAC;YACnD,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,MAAM,IAAI,8BAAqB,CAC7B,mBAAmB,EACnB,sBAAsB,CACvB,CAAC;YACJ,CAAC;YAED,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC;YACnD,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,MAAM,IAAI,8BAAqB,CAC7B,oBAAoB,EACpB,2CAA2C,CAC5C,CAAC;YACJ,CAAC;YAED,MAAM,IAAI,GAAG,YAAY,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;YAEhD,MAAM,UAAU,GAAQ,IAAA,0BAAW,EAAC,OAAO,EAAE,IAAI,CAAC,CAAC;YAEnD,OAAO,CAAC,IAAI,GAAG,UAAU,CAAC;YAC1B,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAEO,sBAAsB,CAAC,OAAgB;;QAC7C,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,GAAG,MAAA,MAAA,OAAO,CAAC,OAAO,CAAC,aAAa,0CAAE,KAAK,CAAC,GAAG,CAAC,mCAAI,EAAE,CAAC;QACtE,OAAO,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;IAC/C,CAAC;CACF,CAAA;AAhDY,4BAAQ;mBAAR,QAAQ;IADpB,IAAA,mBAAU,GAAE;qCAGmB,gBAAS;GAF5B,QAAQ,CAgDpB"}

package/dist/guards/optional-jwt.guard.d.ts

@@ -0,0 +1,8 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { AuthHelper } from '../helper/auth.helper';
+export declare class OptionalJwtGuard implements CanActivate {
+    private readonly authHelper;
+    constructor(authHelper: AuthHelper);
+    canActivate(context: ExecutionContext): Promise<boolean>;
+    private extractTokenFromHeader;
+}

package/dist/guards/optional-jwt.guard.js

@@ -0,0 +1,54 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OptionalJwtGuard = void 0;
+const common_1 = require("@nestjs/common");
+const auth_helper_1 = require("../helper/auth.helper");
+const extract_user_1 = require("../utils/extract-user");
+let OptionalJwtGuard = class OptionalJwtGuard {
+    constructor(authHelper) {
+        this.authHelper = authHelper;
+    }
+    async canActivate(context) {
+        try {
+            const request = context.switchToHttp().getRequest();
+            const token = this.extractTokenFromHeader(request);
+            if (!token) {
+                return true;
+            }
+            const secret = process.env.JWT_ACCESS_TOKEN_SECRET;
+            if (!secret) {
+                if (process.env.NODE_ENV === 'production') {
+                    console.warn('JWT_ACCESS_TOKEN_SECRET is not configured');
+                }
+                return true;
+            }
+            const user = await this.authHelper.verify(token, secret);
+            const parsedUser = (0, extract_user_1.extractUser)(request, user);
+            request.user = parsedUser;
+            return true;
+        }
+        catch (error) {
+            throw error;
+        }
+    }
+    extractTokenFromHeader(request) {
+        var _a, _b;
+        const [type, token] = (_b = (_a = request.headers.authorization) === null || _a === void 0 ? void 0 : _a.split(' ')) !== null && _b !== void 0 ? _b : [];
+        return type === 'Bearer' ? token : undefined;
+    }
+};
+exports.OptionalJwtGuard = OptionalJwtGuard;
+exports.OptionalJwtGuard = OptionalJwtGuard = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [auth_helper_1.AuthHelper])
+], OptionalJwtGuard);
+//# sourceMappingURL=optional-jwt.guard.js.map

package/dist/guards/optional-jwt.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"optional-jwt.guard.js","sourceRoot":"","sources":["../../src/guards/optional-jwt.guard.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,2CAA2E;AAE3E,uDAAmD;AACnD,wDAAoD;AAG7C,IAAM,gBAAgB,GAAtB,MAAM,gBAAgB;IAC3B,YAA6B,UAAsB;QAAtB,eAAU,GAAV,UAAU,CAAY;IAAG,CAAC;IAEvD,KAAK,CAAC,WAAW,CAAC,OAAyB;QACzC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;YACpD,MAAM,KAAK,GAAG,IAAI,CAAC,sBAAsB,CAAC,OAAO,CAAC,CAAC;YACnD,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC;YACnD,IAAI,CAAC,MAAM,EAAE,CAAC;gBAGZ,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,YAAY,EAAE,CAAC;oBAC1C,OAAO,CAAC,IAAI,CAAC,2CAA2C,CAAC,CAAC;gBAC5D,CAAC;gBACD,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;YAEzD,MAAM,UAAU,GAAQ,IAAA,0BAAW,EAAC,OAAO,EAAE,IAAI,CAAC,CAAC;YAEnD,OAAO,CAAC,IAAI,GAAG,UAAU,CAAC;YAC1B,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAEO,sBAAsB,CAAC,OAAgB;;QAC7C,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,GAAG,MAAA,MAAA,OAAO,CAAC,OAAO,CAAC,aAAa,0CAAE,KAAK,CAAC,GAAG,CAAC,mCAAI,EAAE,CAAC;QACtE,OAAO,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;IAC/C,CAAC;CACF,CAAA;AApCY,4CAAgB;2BAAhB,gBAAgB;IAD5B,IAAA,mBAAU,GAAE;qCAE8B,wBAAU;GADxC,gBAAgB,CAoC5B"}

package/dist/guards/permissions.guard.d.ts

@@ -0,0 +1,2 @@
+import { CanActivate, Type } from '@nestjs/common';
+export declare function PermissionsGuard(permissions: string): Type<CanActivate>;

package/dist/guards/permissions.guard.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PermissionsGuard = PermissionsGuard;
+function PermissionsGuard(permissions) {
+    class PermissionsGuardMixin {
+        canActivate(context) {
+            const request = context.switchToHttp().getRequest();
+            if (!permissions || request.isAnonymous) {
+                return true;
+            }
+            const requiredPermissions = permissions.split('|');
+            if (requiredPermissions.length < 1) {
+                return true;
+            }
+            const user = request.user;
+            const userPermissions = user === null || user === void 0 ? void 0 : user.permissions;
+            const isAllowed = requiredPermissions.some((requiredPermission) => userPermissions === null || userPermissions === void 0 ? void 0 : userPermissions.find((x) => x == requiredPermission.trim()));
+            return isAllowed;
+        }
+    }
+    return PermissionsGuardMixin;
+}
+//# sourceMappingURL=permissions.guard.js.map

package/dist/guards/permissions.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permissions.guard.js","sourceRoot":"","sources":["../../src/guards/permissions.guard.ts"],"names":[],"mappings":";;AAEA,4CA0BC;AA1BD,SAAgB,gBAAgB,CAAC,WAAmB;IAClD,MAAM,qBAAqB;QACzB,WAAW,CAAC,OAAyB;YACnC,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;YAEpD,IAAI,CAAC,WAAW,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC;gBACxC,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,mBAAmB,GAAG,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YACnD,IAAI,mBAAmB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACnC,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,IAAI,GAAQ,OAAO,CAAC,IAAI,CAAC;YAC/B,MAAM,eAAe,GAAG,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,WAAW,CAAC;YAE1C,MAAM,SAAS,GAAG,mBAAmB,CAAC,IAAI,CAAC,CAAC,kBAAkB,EAAE,EAAE,CAChE,eAAe,aAAf,eAAe,uBAAf,eAAe,CAAE,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,IAAI,kBAAkB,CAAC,IAAI,EAAE,CAAC,CACrE,CAAC;YAEF,OAAO,SAAS,CAAC;QACnB,CAAC;KACF;IAED,OAAO,qBAAqB,CAAC;AAC/B,CAAC"}

package/dist/guards/throttler-behind-proxy.guard.d.ts

@@ -0,0 +1,4 @@
+import { ThrottlerGuard } from '@nestjs/throttler';
+export declare class ThrottlerBehindProxyGuard extends ThrottlerGuard {
+    protected getTracker(req: Record<string, any>): Promise<string>;
+}

package/dist/guards/throttler-behind-proxy.guard.js

@@ -0,0 +1,22 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ThrottlerBehindProxyGuard = void 0;
+const throttler_1 = require("@nestjs/throttler");
+const common_1 = require("@nestjs/common");
+let ThrottlerBehindProxyGuard = class ThrottlerBehindProxyGuard extends throttler_1.ThrottlerGuard {
+    async getTracker(req) {
+        var _a;
+        return ((_a = req.ips) === null || _a === void 0 ? void 0 : _a.length) ? req.ips[0] : req.ip;
+    }
+};
+exports.ThrottlerBehindProxyGuard = ThrottlerBehindProxyGuard;
+exports.ThrottlerBehindProxyGuard = ThrottlerBehindProxyGuard = __decorate([
+    (0, common_1.Injectable)()
+], ThrottlerBehindProxyGuard);
+//# sourceMappingURL=throttler-behind-proxy.guard.js.map

package/dist/guards/throttler-behind-proxy.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"throttler-behind-proxy.guard.js","sourceRoot":"","sources":["../../src/guards/throttler-behind-proxy.guard.ts"],"names":[],"mappings":";;;;;;;;;AAAA,iDAAmD;AACnD,2CAA4C;AAMrC,IAAM,yBAAyB,GAA/B,MAAM,yBAA0B,SAAQ,0BAAc;IACjD,KAAK,CAAC,UAAU,CAAC,GAAwB;;QACjD,OAAO,CAAA,MAAA,GAAG,CAAC,GAAG,0CAAE,MAAM,EAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC;IAC/C,CAAC;CACF,CAAA;AAJY,8DAAyB;oCAAzB,yBAAyB;IADrC,IAAA,mBAAU,GAAE;GACA,yBAAyB,CAIrC"}

package/dist/guards/vendor.guard.d.ts

@@ -0,0 +1,2 @@
+import { CanActivate, Type } from '@nestjs/common';
+export declare function VendorGuard(): Type<CanActivate>;

package/dist/guards/vendor.guard.js

@@ -0,0 +1,19 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.VendorGuard = VendorGuard;
+const common_1 = require("@nestjs/common");
+function VendorGuard() {
+    class VendorGuardMixin {
+        canActivate(context) {
+            const request = context.switchToHttp().getRequest();
+            const user = request.user;
+            const organization = user === null || user === void 0 ? void 0 : user.organization;
+            if ((organization === null || organization === void 0 ? void 0 : organization.id) != null) {
+                return true;
+            }
+            throw new common_1.ForbiddenException('vendor_registration_not_completed');
+        }
+    }
+    return VendorGuardMixin;
+}
+//# sourceMappingURL=vendor.guard.js.map

package/dist/guards/vendor.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"vendor.guard.js","sourceRoot":"","sources":["../../src/guards/vendor.guard.ts"],"names":[],"mappings":";;AAOA,kCAgBC;AAvBD,2CAKwB;AAExB,SAAgB,WAAW;IACzB,MAAM,gBAAgB;QACpB,WAAW,CAAC,OAAyB;YACnC,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;YACpD,MAAM,IAAI,GAAQ,OAAO,CAAC,IAAI,CAAC;YAC/B,MAAM,YAAY,GAAG,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,YAAY,CAAC;YAExC,IAAI,CAAA,YAAY,aAAZ,YAAY,uBAAZ,YAAY,CAAE,EAAE,KAAI,IAAI,EAAE,CAAC;gBAC7B,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,IAAI,2BAAkB,CAAC,mCAAmC,CAAC,CAAC;QACpE,CAAC;KACF;IAED,OAAO,gBAAgB,CAAC;AAC1B,CAAC"}

package/dist/helper/auth.helper.d.ts

@@ -0,0 +1,17 @@
+import { JwtService } from '@nestjs/jwt';
+export declare class AuthHelper {
+    private readonly jwt;
+    constructor(jwt: JwtService);
+    verify(token: string, secret: string): Promise<any>;
+    decode(token: string): Promise<unknown>;
+    generateAccessToken(payload: any): string;
+    generateRefreshToken(payload: any): string;
+    generateToken(account: any): Promise<{
+        accessToken: string;
+        refreshToken: string;
+    }>;
+    compareHashedValue(originalValue: string, hashedValue: string): boolean;
+    encodePassword(password: string): string;
+    generateOpt(): string;
+    verifyEmailTemplateForOtp(fullName: string, username: string, otp: string, duration: number): string;
+}

package/dist/helper/auth.helper.js

@@ -0,0 +1,289 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthHelper = void 0;
+const common_1 = require("@nestjs/common");
+const jwt_1 = require("@nestjs/jwt");
+const bcrypt = require("bcrypt");
+const crypto_1 = require("crypto");
+let AuthHelper = class AuthHelper {
+    constructor(jwt) {
+        this.jwt = jwt;
+    }
+    async verify(token, secret) {
+        const decoded = this.jwt.verify(token, { secret });
+        if (!decoded) {
+            throw new common_1.UnauthorizedException('invalid_token');
+        }
+        return decoded;
+    }
+    async decode(token) {
+        return this.jwt.decode(token, null);
+    }
+    generateAccessToken(payload) {
+        return this.jwt.sign(Object.assign({}, payload), {
+            secret: process.env.JWT_ACCESS_TOKEN_SECRET,
+            expiresIn: process.env.JWT_ACCESS_TOKEN_EXPIRES,
+        });
+    }
+    generateRefreshToken(payload) {
+        return this.jwt.sign(Object.assign({}, payload), {
+            secret: process.env.JWT_REFRESH_TOKEN_SECRET,
+            expiresIn: process.env.JWT_REFRESH_TOKEN_EXPIRES,
+        });
+    }
+    async generateToken(account) {
+        const [accessToken, refreshToken] = await Promise.all([
+            this.jwt.signAsync({ id: account.id, email: account.email }, {
+                secret: process.env.JWT_ACCESS_TOKEN_SECRET,
+                expiresIn: process.env.JWT_ACCESS_TOKEN_EXPIRES,
+            }),
+            this.jwt.signAsync({ id: account.id }, {
+                secret: process.env.JWT_REFRESH_TOKEN_SECRET,
+                expiresIn: process.env.JWT_REFRESH_TOKEN_EXPIRES,
+            }),
+        ]);
+        return { accessToken, refreshToken };
+    }
+    compareHashedValue(originalValue, hashedValue) {
+        return bcrypt.compareSync(originalValue, hashedValue);
+    }
+    encodePassword(password) {
+        const salt = bcrypt.genSaltSync(12);
+        return bcrypt.hashSync(password, salt);
+    }
+    generateOpt() {
+        const randomNumber = (0, crypto_1.randomInt)(100000, 999999);
+        return randomNumber.toString();
+    }
+    verifyEmailTemplateForOtp(fullName, username, otp, duration) {
+        return `<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <meta http-equiv="X-UA-Compatible" content="ie=edge" />
+    <title>Static Template</title>
+
+    <link
+      href="https://fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600&display=swap"
+      rel="stylesheet"
+    />
+  </head>
+  <body
+    style="
+      margin: 0;
+      font-family: 'Poppins', sans-serif;
+      background: #ffffff;
+      font-size: 14px;
+    "
+  >
+      <header>
+        <table style="width: 100%;">
+          <tbody>
+            <tr style="height: 0;">
+              <td>
+              </td>
+              <td style="text-align: right;">
+                <span
+                  style="font-size: 16px; line-height: 30px; color: #ffffff;"
+                  >Oct 20, 2023</span
+                >
+              </td>
+            </tr>
+          </tbody>
+        </table>
+      </header>
+
+      <main>
+        <div
+          style="
+            padding: 92px 30px 115px;
+            background: #ffffff;
+            border-radius: 30px;
+            text-align: center;
+          "
+        >
+          <div style="width: 100%; max-width: 489px; margin: 0 auto;">
+            <p
+              style="
+                margin: 0;
+                margin-top: 5px;
+                font-size: 16px;
+                font-weight: 500;
+              "
+            >
+              Hey ${fullName},
+            </p>
+            <p
+              style="
+                margin: 0;
+                margin-top: 17px;
+                font-weight: 500;
+                letter-spacing: 0.56px;
+              "
+            >
+              Use the following OTP
+              to complete the procedure to verify your email address. OTP is
+              valid for
+              <span style="font-weight: 600; color: #1f1f1f;">${duration} minutes</span>.
+              Do not share this code with others.
+            </p>
+            <p
+              style="
+                margin: 0;
+                margin-top: 24px;
+                font-size: 16px;
+                font-weight: 500;
+              "
+            >
+              Your Username
+            </p>
+            <p
+              style="
+                 margin: 0;
+                margin-top: 17px;
+                font-size: 28px;
+                font-weight: 600;
+              "
+            >
+              ${username}
+            </p>
+            <p
+              style="
+                margin: 0;
+                margin-top: 17px;
+                font-size: 24px;
+                font-weight: 500;
+                color: #1f1f1f;
+              "
+            >
+              Your OTP
+            </p>
+            <p
+              style="
+                font-size: 40px;
+                font-weight: 600;
+                letter-spacing: 25px;
+                color: #fafafa;
+                background-color: #0d7801;
+              "
+            >
+              ${otp}
+            </p>
+          </div>
+        </div>
+
+        <p
+          style="
+            max-width: 400px;
+            margin: 0 auto;
+            margin-top: 90px;
+            text-align: center;
+            font-weight: 500;
+            color: #8c8c8c;
+          "
+        >
+          Need help? Ask at
+          <a
+            href="mailto:megp@gmail.com"
+            style="color: #499fb6; text-decoration: none;"
+            >megp@gmail.com</a
+          >
+          or visit our
+          <a
+            href=""
+            target="_blank"
+            style="color: #499fb6; text-decoration: none;"
+            >Help Center</a
+          >
+        </p>
+      </main>
+
+      <footer
+        style="
+          width: 100%;
+          max-width: 490px;
+          margin: 20px auto 0;
+          text-align: center;
+          border-top: 1px solid #e6ebf1;
+        "
+      >
+        <p
+          style="
+            margin: 0;
+            margin-top: 40px;
+            font-size: 16px;
+            font-weight: 600;
+            color: #434343;
+          "
+        >
+          egp Malawi
+        </p>
+        <p style="margin: 0; margin-top: 8px; color: #434343;">
+          Lilongwe 3, Malawi.
+        </p>
+        <div style="margin: 0; margin-top: 16px;">
+          <a href="" target="_blank" style="display: inline-block;">
+            <img
+              width="36px"
+              alt="Facebook"
+              src="https://archisketch-resources.s3.ap-northeast-2.amazonaws.com/vrstyler/1661502815169_682499/email-template-icon-facebook"
+            />
+          </a>
+          <a
+            href=""
+            target="_blank"
+            style="display: inline-block; margin-left: 8px;"
+          >
+            <img
+              width="36px"
+              alt="Instagram"
+              src="https://archisketch-resources.s3.ap-northeast-2.amazonaws.com/vrstyler/1661504218208_684135/email-template-icon-instagram"
+          /></a>
+          <a
+            href=""
+            target="_blank"
+            style="display: inline-block; margin-left: 8px;"
+          >
+            <img
+              width="36px"
+              alt="Twitter"
+              src="https://archisketch-resources.s3.ap-northeast-2.amazonaws.com/vrstyler/1661503043040_372004/email-template-icon-twitter"
+            />
+          </a>
+          <a
+            href=""
+            target="_blank"
+            style="display: inline-block; margin-left: 8px;"
+          >
+            <img
+              width="36px"
+              alt="Youtube"
+              src="https://archisketch-resources.s3.ap-northeast-2.amazonaws.com/vrstyler/1661503195931_210869/email-template-icon-youtube"
+          /></a>
+        </div>
+        <p style="margin: 0; margin-top: 16px; color: #434343;">
+          Copyright © 2022 Company. All rights reserved.
+        </p>
+      </footer>
+    </div>
+  </body>
+</html>
+`;
+    }
+};
+exports.AuthHelper = AuthHelper;
+exports.AuthHelper = AuthHelper = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [jwt_1.JwtService])
+], AuthHelper);
+//# sourceMappingURL=auth.helper.js.map

package/dist/helper/auth.helper.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.helper.js","sourceRoot":"","sources":["../../src/helper/auth.helper.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,2CAAmE;AACnE,qCAAyC;AACzC,iCAAiC;AACjC,mCAAmC;AAK5B,IAAM,UAAU,GAAhB,MAAM,UAAU;IACrB,YAA6B,GAAe;QAAf,QAAG,GAAH,GAAG,CAAY;IAAG,CAAC;IAEzC,KAAK,CAAC,MAAM,CAAC,KAAa,EAAE,MAAc;QAC/C,MAAM,OAAO,GAAQ,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC;QAExD,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,8BAAqB,CAAC,eAAe,CAAC,CAAC;QACnD,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAGM,KAAK,CAAC,MAAM,CAAC,KAAa;QAC/B,OAAO,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;IACtC,CAAC;IAGM,mBAAmB,CAAC,OAAY;QACrC,OAAO,IAAI,CAAC,GAAG,CAAC,IAAI,mBACb,OAAO,GACZ;YACE,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,uBAAuB;YAC3C,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,wBAAuC;SAC/D,CACF,CAAC;IACJ,CAAC;IAGM,oBAAoB,CAAC,OAAY;QACtC,OAAO,IAAI,CAAC,GAAG,CAAC,IAAI,mBACb,OAAO,GACZ;YACE,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,wBAAwB;YAC5C,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,yBAAwC;SAChE,CACF,CAAC;IACJ,CAAC;IAEM,KAAK,CAAC,aAAa,CAAC,OAAY;QACrC,MAAM,CAAC,WAAW,EAAE,YAAY,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YACpD,IAAI,CAAC,GAAG,CAAC,SAAS,CAChB,EAAE,EAAE,EAAE,OAAO,CAAC,EAAE,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,EACxC;gBACE,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,uBAAuB;gBAC3C,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,wBAAuC;aAC/D,CACF;YACD,IAAI,CAAC,GAAG,CAAC,SAAS,CAChB,EAAE,EAAE,EAAE,OAAO,CAAC,EAAE,EAAE,EAClB;gBACE,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,wBAAwB;gBAC5C,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,yBAAwC;aAChE,CACF;SACF,CAAC,CAAC;QAEH,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,CAAC;IACvC,CAAC;IAGM,kBAAkB,CACvB,aAAqB,EACrB,WAAmB;QAEnB,OAAO,MAAM,CAAC,WAAW,CAAC,aAAa,EAAE,WAAW,CAAC,CAAC;IACxD,CAAC;IAGM,cAAc,CAAC,QAAgB;QACpC,MAAM,IAAI,GAAW,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC;QAE5C,OAAO,MAAM,CAAC,QAAQ,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;IACzC,CAAC;IAGM,WAAW;QAEhB,MAAM,YAAY,GAAG,IAAA,kBAAS,EAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QAC/C,OAAO,YAAY,CAAC,QAAQ,EAAE,CAAC;IACjC,CAAC;IAEM,yBAAyB,CAC9B,QAAgB,EAChB,QAAgB,EAChB,GAAW,EACX,QAAgB;QAEhB,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;oBAwDS,QAAQ;;;;;;;;;;;;;gEAaoC,QAAQ;;;;;;;;;;;;;;;;;;;;;gBAqBxD,QAAQ;;;;;;;;;;;;;;;;;;;;;;gBAsBR,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAqGlB,CAAC;IACA,CAAC;CACF,CAAA;AAhTY,gCAAU;qBAAV,UAAU;IADtB,IAAA,mBAAU,GAAE;qCAEuB,gBAAU;GADjC,UAAU,CAgTtB"}

package/dist/helper/jwt.type.d.ts

@@ -0,0 +1,4 @@
+type Unit = "Years" | "Year" | "Yrs" | "Yr" | "Y" | "Weeks" | "Week" | "W" | "Days" | "Day" | "D" | "Hours" | "Hour" | "Hrs" | "Hr" | "H" | "Minutes" | "Minute" | "Mins" | "Min" | "M" | "Seconds" | "Second" | "Secs" | "Sec" | "s" | "Milliseconds" | "Millisecond" | "Msecs" | "Msec" | "Ms";
+type UnitAnyCase = Unit | Uppercase<Unit> | Lowercase<Unit>;
+export type StringValue = `${number}` | `${number}${UnitAnyCase}` | `${number} ${UnitAnyCase}`;
+export {};

package/dist/helper/jwt.type.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=jwt.type.js.map

package/dist/helper/jwt.type.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt.type.js","sourceRoot":"","sources":["../../src/helper/jwt.type.ts"],"names":[],"mappings":""}

package/dist/index.d.ts

@@ -0,0 +1,15 @@
+export * from './authorization.module';
+export * from './decorators/allow-anonymous.decorator';
+export * from './decorators/current-user.decorator';
+export * from './guards/jwt.guard';
+export * from './guards/permissions.guard';
+export * from './helper/auth.helper';
+export * from './guards/jwt-refresh.guard';
+export * from './guards/throttler-behind-proxy.guard';
+export * from './guards/api-key.guard';
+export * from './guards/vendor.guard';
+export * from './guards/optional-jwt.guard';
+export * from './strategy/jwt-refresh-token.strategy';
+export * from './strategy/jwt.strategy';
+export * from './models/auth.model';
+export * from './helper/jwt.type';

package/dist/index.js

@@ -0,0 +1,32 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./authorization.module"), exports);
+__exportStar(require("./decorators/allow-anonymous.decorator"), exports);
+__exportStar(require("./decorators/current-user.decorator"), exports);
+__exportStar(require("./guards/jwt.guard"), exports);
+__exportStar(require("./guards/permissions.guard"), exports);
+__exportStar(require("./helper/auth.helper"), exports);
+__exportStar(require("./guards/jwt-refresh.guard"), exports);
+__exportStar(require("./guards/throttler-behind-proxy.guard"), exports);
+__exportStar(require("./guards/api-key.guard"), exports);
+__exportStar(require("./guards/vendor.guard"), exports);
+__exportStar(require("./guards/optional-jwt.guard"), exports);
+__exportStar(require("./strategy/jwt-refresh-token.strategy"), exports);
+__exportStar(require("./strategy/jwt.strategy"), exports);
+__exportStar(require("./models/auth.model"), exports);
+__exportStar(require("./helper/jwt.type"), exports);
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,yDAAuC;AACvC,yEAAuD;AACvD,sEAAoD;AACpD,qDAAmC;AACnC,6DAA2C;AAC3C,uDAAqC;AACrC,6DAA2C;AAC3C,wEAAsD;AACtD,yDAAuC;AACvC,wDAAsC;AACtC,8DAA4C;AAC5C,wEAAsD;AACtD,0DAAwC;AACxC,sDAAoC;AACpC,oDAAkC"}

package/dist/models/auth.model.d.ts

@@ -0,0 +1,36 @@
+import { ORGANIZATION_TYPE_ENUM } from '@zola_do/core';
+export declare class OrganizationDto {
+    id: string;
+    name: string;
+    shortName: string;
+    code: string;
+    preferentialTreatments: string[];
+}
+export declare class UserDto {
+    userId: string;
+    organization: OrganizationDto;
+    permissions: string[];
+    roleSystems: string[];
+    applications: string[];
+}
+export declare class AccountDto {
+    tenantId: number;
+    id: string;
+    username: string;
+    firstName: string;
+    lastName: string;
+    email: string;
+    phone: string;
+    isPhoneVerified: boolean;
+    origin: ORGANIZATION_TYPE_ENUM;
+    organizations: UserDto[];
+}
+export declare class CurrentUserDto extends UserDto {
+    tenantId: number;
+    id: string;
+    username: string;
+    firstName: string;
+    lastName: string;
+    email: string;
+    origin: ORGANIZATION_TYPE_ENUM;
+}

package/dist/models/auth.model.js

@@ -0,0 +1,16 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CurrentUserDto = exports.AccountDto = exports.UserDto = exports.OrganizationDto = void 0;
+class OrganizationDto {
+}
+exports.OrganizationDto = OrganizationDto;
+class UserDto {
+}
+exports.UserDto = UserDto;
+class AccountDto {
+}
+exports.AccountDto = AccountDto;
+class CurrentUserDto extends UserDto {
+}
+exports.CurrentUserDto = CurrentUserDto;
+//# sourceMappingURL=auth.model.js.map

package/dist/models/auth.model.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.model.js","sourceRoot":"","sources":["../../src/models/auth.model.ts"],"names":[],"mappings":";;;AAEA,MAAa,eAAe;CAM3B;AAND,0CAMC;AAED,MAAa,OAAO;CAMnB;AAND,0BAMC;AAED,MAAa,UAAU;CAWtB;AAXD,gCAWC;AAED,MAAa,cAAe,SAAQ,OAAO;CAQ1C;AARD,wCAQC"}

package/dist/strategy/jwt-refresh-token.strategy.d.ts

@@ -0,0 +1,9 @@
+import { Strategy } from 'passport-jwt';
+declare const JwtRefreshTokenStrategy_base: new (...args: [opt: import("passport-jwt").StrategyOptionsWithRequest] | [opt: import("passport-jwt").StrategyOptionsWithoutRequest]) => Strategy & {
+    validate(...args: any[]): unknown;
+};
+export declare class JwtRefreshTokenStrategy extends JwtRefreshTokenStrategy_base {
+    constructor();
+    validate(payload: any): Promise<any>;
+}
+export {};

package/dist/strategy/jwt-refresh-token.strategy.js

@@ -0,0 +1,22 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JwtRefreshTokenStrategy = void 0;
+const common_1 = require("@nestjs/common");
+const passport_1 = require("@nestjs/passport");
+const passport_jwt_1 = require("passport-jwt");
+(0, common_1.Injectable)();
+class JwtRefreshTokenStrategy extends (0, passport_1.PassportStrategy)(passport_jwt_1.Strategy, 'jwt-refresh') {
+    constructor() {
+        const strategyOptions = {
+            jwtFromRequest: (req) => req.body.refresh_token,
+            ignoreExpiration: false,
+            secretOrKey: process.env.JWT_REFRESH_TOKEN_SECRET,
+        };
+        super(strategyOptions);
+    }
+    async validate(payload) {
+        return payload;
+    }
+}
+exports.JwtRefreshTokenStrategy = JwtRefreshTokenStrategy;
+//# sourceMappingURL=jwt-refresh-token.strategy.js.map

package/dist/strategy/jwt-refresh-token.strategy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt-refresh-token.strategy.js","sourceRoot":"","sources":["../../src/strategy/jwt-refresh-token.strategy.ts"],"names":[],"mappings":";;;AAAA,2CAA4C;AAC5C,+CAAoD;AACpD,+CAAyD;AAEzD,IAAA,mBAAU,GAAE,CAAC;AACb,MAAa,uBAAwB,SAAQ,IAAA,2BAAgB,EAC3D,uBAAQ,EACR,aAAa,CACd;IACC;QACE,MAAM,eAAe,GAAoB;YACvC,cAAc,EAAE,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,aAAa;YAC/C,gBAAgB,EAAE,KAAK;YACvB,WAAW,EAAE,OAAO,CAAC,GAAG,CAAC,wBAAwB;SAClD,CAAC;QAEF,KAAK,CAAC,eAAe,CAAC,CAAC;IACzB,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,OAAY;QACzB,OAAO,OAAO,CAAC;IACjB,CAAC;CACF;AAjBD,0DAiBC"}

package/dist/strategy/jwt.strategy.d.ts

@@ -0,0 +1,9 @@
+import { Strategy } from 'passport-jwt';
+declare const JwtStrategy_base: new (...args: [opt: import("passport-jwt").StrategyOptionsWithRequest] | [opt: import("passport-jwt").StrategyOptionsWithoutRequest]) => Strategy & {
+    validate(...args: any[]): unknown;
+};
+export declare class JwtStrategy extends JwtStrategy_base {
+    constructor();
+    validate(payload: any): Promise<any>;
+}
+export {};

package/dist/strategy/jwt.strategy.js

@@ -0,0 +1,22 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JwtStrategy = void 0;
+const common_1 = require("@nestjs/common");
+const passport_1 = require("@nestjs/passport");
+const passport_jwt_1 = require("passport-jwt");
+(0, common_1.Injectable)();
+class JwtStrategy extends (0, passport_1.PassportStrategy)(passport_jwt_1.Strategy) {
+    constructor() {
+        const strategyOptions = {
+            jwtFromRequest: passport_jwt_1.ExtractJwt.fromAuthHeaderAsBearerToken(),
+            ignoreExpiration: false,
+            secretOrKey: process.env.JWT_ACCESS_TOKEN_SECRET,
+        };
+        super(strategyOptions);
+    }
+    async validate(payload) {
+        return payload;
+    }
+}
+exports.JwtStrategy = JwtStrategy;
+//# sourceMappingURL=jwt.strategy.js.map

package/dist/strategy/jwt.strategy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt.strategy.js","sourceRoot":"","sources":["../../src/strategy/jwt.strategy.ts"],"names":[],"mappings":";;;AAAA,2CAA4C;AAC5C,+CAAoD;AACpD,+CAAqE;AAErE,IAAA,mBAAU,GAAE,CAAC;AACb,MAAa,WAAY,SAAQ,IAAA,2BAAgB,EAAC,uBAAQ,CAAC;IACzD;QACE,MAAM,eAAe,GAAoB;YACvC,cAAc,EAAE,yBAAU,CAAC,2BAA2B,EAAE;YACxD,gBAAgB,EAAE,KAAK;YACvB,WAAW,EAAE,OAAO,CAAC,GAAG,CAAC,uBAAuB;SACjD,CAAC;QAEF,KAAK,CAAC,eAAe,CAAC,CAAC;IACzB,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,OAAY;QACzB,OAAO,OAAO,CAAC;IACjB,CAAC;CACF;AAdD,kCAcC"}

package/dist/utils/extract-user.d.ts

@@ -0,0 +1 @@
+export declare const extractUser: (request: any, user: any) => any;

package/dist/utils/extract-user.js

@@ -0,0 +1,31 @@
+"use strict";
+var __rest = (this && this.__rest) || function (s, e) {
+    var t = {};
+    for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p) && e.indexOf(p) < 0)
+        t[p] = s[p];
+    if (s != null && typeof Object.getOwnPropertySymbols === "function")
+        for (var i = 0, p = Object.getOwnPropertySymbols(s); i < p.length; i++) {
+            if (e.indexOf(p[i]) < 0 && Object.prototype.propertyIsEnumerable.call(s, p[i]))
+                t[p[i]] = s[p[i]];
+        }
+    return t;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.extractUser = void 0;
+const extractUser = (request, user) => {
+    const { organizations } = user, rest = __rest(user, ["organizations"]);
+    let parsedUser = rest;
+    if (organizations && organizations.length > 0) {
+        let organization;
+        if (request.headers && request.headers['x-organization-id']) {
+            organization = organizations.find((x) => x.organization.id == request.headers['x-organization-id']);
+        }
+        else {
+            organization = organizations[0];
+        }
+        parsedUser = Object.assign(Object.assign(Object.assign({}, parsedUser), { fullName: parsedUser.firstName + ' ' + parsedUser.lastName }), organization);
+    }
+    return parsedUser;
+};
+exports.extractUser = extractUser;
+//# sourceMappingURL=extract-user.js.map

package/dist/utils/extract-user.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"extract-user.js","sourceRoot":"","sources":["../../src/utils/extract-user.ts"],"names":[],"mappings":";;;;;;;;;;;;;;AAAO,MAAM,WAAW,GAAG,CAAC,OAAY,EAAE,IAAS,EAAE,EAAE;IACrD,MAAM,EAAE,aAAa,KAAc,IAAI,EAAb,IAAI,UAAK,IAAI,EAAjC,iBAA0B,CAAO,CAAC;IACxC,IAAI,UAAU,GAAQ,IAAI,CAAC;IAC3B,IAAI,aAAa,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC9C,IAAI,YAAiB,CAAC;QAEtB,IAAI,OAAO,CAAC,OAAO,IAAI,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,EAAE,CAAC;YAC5D,YAAY,GAAG,aAAa,CAAC,IAAI,CAC/B,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,CAAC,EAAE,IAAI,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,CACtE,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,YAAY,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;QAClC,CAAC;QAED,UAAU,iDACL,UAAU,KACb,QAAQ,EAAE,UAAU,CAAC,SAAS,GAAG,GAAG,GAAG,UAAU,CAAC,QAAQ,KACvD,YAAY,CAChB,CAAC;IACJ,CAAC;IACD,OAAO,UAAU,CAAC;AACpB,CAAC,CAAC;AArBW,QAAA,WAAW,eAqBtB"}

package/package.json

@@ -0,0 +1,49 @@
+{
+  "name": "@zola_do/authorization",
+  "version": "0.1.9",
+  "description": "JWT auth, guards, strategies for NestJS",
+  "author": "zolaDO",
+  "license": "ISC",
+  "publishConfig": {
+    "access": "public"
+  },
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "default": "./dist/index.js"
+    }
+  },
+  "files": ["dist", "README.md"],
+  "scripts": {
+    "build": "rimraf dist && tsc",
+    "prepublishOnly": "npm run build"
+  },
+  "peerDependencies": {
+    "@nestjs/common": "^10.0.0 || ^11.0.0",
+    "@nestjs/core": "^10.0.0 || ^11.0.0",
+    "@nestjs/jwt": "^10.0.0 || ^11.0.0",
+    "@nestjs/passport": "^10.0.0 || ^11.0.0",
+    "@nestjs/platform-express": "^10.0.0 || ^11.0.0",
+    "@nestjs/throttler": "^5.0.0 || ^6.0.0",
+    "passport": "^0.7.0",
+    "passport-jwt": "^4.0.1",
+    "reflect-metadata": "^0.1.0 || ^0.2.0",
+    "rxjs": "^7.0.0 || ^8.0.0"
+  },
+  "peerDependenciesMeta": {
+    "@nestjs/throttler": { "optional": true }
+  },
+  "dependencies": {
+    "@zola_do/core": "file:../core",
+    "bcrypt": "^6.0.0",
+    "jsonwebtoken": "^9.0.2"
+  },
+  "devDependencies": {
+    "@types/bcrypt": "^6.0.0",
+    "@types/passport-jwt": "^4.0.1",
+    "rimraf": "^6.1.0",
+    "typescript": "^5.9.3"
+  }
+}