@zssz-soft/firebase-functions-shared 1.2.13 → 1.2.14

package/lib/modules/user/index.d.ts

@@ -1,4 +1,5 @@
 export * from './user.models';
 export * from './user';
 export * from './user-management';
+export * from './user-auth.triggers';
 //# sourceMappingURL=index.d.ts.map

package/lib/modules/user/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/modules/user/index.ts"],"names":[],"mappings":"AAAA,cAAc,eAAe,CAAC;AAC9B,cAAc,QAAQ,CAAC;AACvB,cAAc,mBAAmB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/modules/user/index.ts"],"names":[],"mappings":"AAAA,cAAc,eAAe,CAAC;AAC9B,cAAc,QAAQ,CAAC;AACvB,cAAc,mBAAmB,CAAC;AAClC,cAAc,sBAAsB,CAAC"}

package/lib/modules/user/index.js

@@ -17,4 +17,5 @@ Object.defineProperty(exports, "__esModule", { value: true });
 __exportStar(require("./user.models"), exports);
 __exportStar(require("./user"), exports);
 __exportStar(require("./user-management"), exports);
+__exportStar(require("./user-auth.triggers"), exports);
 //# sourceMappingURL=index.js.map

package/lib/modules/user/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/modules/user/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,gDAA8B;AAC9B,yCAAuB;AACvB,oDAAkC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/modules/user/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,gDAA8B;AAC9B,yCAAuB;AACvB,oDAAkC;AAClC,uDAAqC"}

package/lib/modules/user/user-auth.triggers.d.ts

@@ -0,0 +1,41 @@
+/**
+ * Firebase Auth Triggers for User Document Management
+ *
+ * Creates Firestore user documents automatically when users sign up
+ * via Firebase Auth (email/password, Google, etc.)
+ */
+/**
+ * Configuration for user auth triggers
+ */
+export interface UserAuthTriggerConfig {
+    /** Region for the trigger function */
+    region?: string;
+    /** Collection name for user documents */
+    userCollection?: string;
+    /** Default role ID for new users */
+    defaultRoleId?: string;
+    /** Whether to create user document automatically */
+    autoCreateUserDocument?: boolean;
+}
+/**
+ * Return type for user auth triggers factory
+ * Using generic function signature to avoid firebase-functions internal type dependencies
+ */
+export interface UserAuthTriggers {
+    beforeUserCreated: any;
+}
+/**
+ * Factory function to create the beforeUserCreated trigger
+ *
+ * This blocking function runs BEFORE a new user is created in Firebase Auth.
+ * It allows us to:
+ * 1. Create the Firestore user document with admin privileges
+ * 2. Reject the sign-up if something goes wrong
+ *
+ * Benefits of beforeUserCreated vs onCreate:
+ * - Runs synchronously before user is fully created
+ * - Can reject the sign-up if Firestore write fails
+ * - User document exists immediately when auth flow completes
+ */
+export declare function createUserAuthTriggers(config?: UserAuthTriggerConfig): UserAuthTriggers;
+//# sourceMappingURL=user-auth.triggers.d.ts.map

package/lib/modules/user/user-auth.triggers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-auth.triggers.d.ts","sourceRoot":"","sources":["../../../src/modules/user/user-auth.triggers.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AASH;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,sCAAsC;IACtC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,yCAAyC;IACzC,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,oCAAoC;IACpC,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,oDAAoD;IACpD,sBAAsB,CAAC,EAAE,OAAO,CAAC;CAClC;AAED;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAE/B,iBAAiB,EAAE,GAAG,CAAC;CACxB;AAiBD;;;;;;;;;;;;GAYG;AACH,wBAAgB,sBAAsB,CAAC,MAAM,GAAE,qBAA0B,GAAG,gBAAgB,CA0F3F"}

package/lib/modules/user/user-auth.triggers.js

@@ -0,0 +1,150 @@
+"use strict";
+/**
+ * Firebase Auth Triggers for User Document Management
+ *
+ * Creates Firestore user documents automatically when users sign up
+ * via Firebase Auth (email/password, Google, etc.)
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createUserAuthTriggers = createUserAuthTriggers;
+const firestore_1 = require("firebase-admin/firestore");
+const identity_1 = require("firebase-functions/v2/identity");
+const logger = __importStar(require("firebase-functions/logger"));
+const config_1 = require("../../config");
+const user_models_1 = require("./user.models");
+const DEFAULT_CONFIG = {
+    userCollection: user_models_1.USER_FEATURE_KEY,
+    defaultRoleId: 'guest',
+    autoCreateUserDocument: true,
+};
+/**
+ * Get Firestore instance based on config
+ */
+function getFirestoreInstance() {
+    const appConfig = (0, config_1.getConfig)();
+    const databaseId = appConfig.firestoreDatabaseId;
+    return databaseId ? (0, firestore_1.getFirestore)(databaseId) : (0, firestore_1.getFirestore)();
+}
+/**
+ * Factory function to create the beforeUserCreated trigger
+ *
+ * This blocking function runs BEFORE a new user is created in Firebase Auth.
+ * It allows us to:
+ * 1. Create the Firestore user document with admin privileges
+ * 2. Reject the sign-up if something goes wrong
+ *
+ * Benefits of beforeUserCreated vs onCreate:
+ * - Runs synchronously before user is fully created
+ * - Can reject the sign-up if Firestore write fails
+ * - User document exists immediately when auth flow completes
+ */
+function createUserAuthTriggers(config = {}) {
+    const cfg = Object.assign(Object.assign({}, DEFAULT_CONFIG), config);
+    const appConfig = (0, config_1.getConfig)();
+    return {
+        /**
+         * Blocking function that creates Firestore user document before auth user is finalized
+         */
+        beforeUserCreated: (0, identity_1.beforeUserCreated)({
+            region: cfg.region || appConfig.region,
+        }, async (event) => {
+            var _a;
+            if (!cfg.autoCreateUserDocument) {
+                logger.info('Auto-create user document disabled, skipping');
+                return;
+            }
+            const user = event.data;
+            if (!user) {
+                logger.error('No user data in event');
+                throw new identity_1.HttpsError('internal', 'No user data provided');
+            }
+            const uid = user.uid;
+            const email = user.email || '';
+            const displayName = user.displayName || email.split('@')[0] || 'User';
+            const authProvider = event.eventType.includes('google')
+                ? 'google.com'
+                : event.eventType.includes('password')
+                    ? 'password'
+                    : ((_a = event.additionalUserInfo) === null || _a === void 0 ? void 0 : _a.providerId) || 'unknown';
+            logger.info(`Creating user document for new auth user: ${uid} (${email})`);
+            try {
+                const db = getFirestoreInstance();
+                const userDocRef = db.collection(cfg.userCollection).doc(uid);
+                // Check if document already exists (shouldn't happen, but be safe)
+                const existingDoc = await userDocRef.get();
+                if (existingDoc.exists) {
+                    logger.info(`User document already exists for ${uid}, skipping creation`);
+                    return;
+                }
+                // Parse display name into first/last name
+                const nameParts = displayName.split(' ');
+                const firstName = nameParts[0] || '';
+                const lastName = nameParts.slice(1).join(' ') || '';
+                const now = new Date().toISOString();
+                const userDocument = {
+                    id: uid,
+                    email,
+                    displayName,
+                    firstName,
+                    lastName,
+                    photoURL: user.photoURL || null,
+                    phoneNumber: user.phoneNumber || null,
+                    emailVerified: user.emailVerified || false,
+                    authProvider,
+                    roleIds: [cfg.defaultRoleId],
+                    meta: {
+                        createdAt: now,
+                        updatedAt: now,
+                        createdBy: 'auth-trigger',
+                        updatedBy: 'auth-trigger',
+                    },
+                };
+                await userDocRef.set(userDocument);
+                logger.info(`User document created successfully for ${uid}`);
+                // The beforeUserCreated trigger can return custom claims or session claims
+                // We don't need any here, just log success
+                return;
+            }
+            catch (error) {
+                logger.error(`Failed to create user document for ${uid}:`, error);
+                // Throwing an error here will BLOCK the user creation
+                // This ensures we don't have auth users without Firestore documents
+                throw new identity_1.HttpsError('internal', 'Failed to create user profile. Please try again.');
+            }
+        }),
+    };
+}
+//# sourceMappingURL=user-auth.triggers.js.map

package/lib/modules/user/user-auth.triggers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-auth.triggers.js","sourceRoot":"","sources":["../../../src/modules/user/user-auth.triggers.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA4DH,wDA0FC;AApJD,wDAAmE;AACnE,6DAA+E;AAC/E,kEAAoD;AAEpD,yCAAyC;AACzC,+CAAiD;AAyBjD,MAAM,cAAc,GAA0B;IAC5C,cAAc,EAAE,8BAAgB;IAChC,aAAa,EAAE,OAAO;IACtB,sBAAsB,EAAE,IAAI;CAC7B,CAAC;AAEF;;GAEG;AACH,SAAS,oBAAoB;IAC3B,MAAM,SAAS,GAAG,IAAA,kBAAS,GAAE,CAAC;IAC9B,MAAM,UAAU,GAAG,SAAS,CAAC,mBAAmB,CAAC;IACjD,OAAO,UAAU,CAAC,CAAC,CAAC,IAAA,wBAAY,EAAC,UAAU,CAAC,CAAC,CAAC,CAAC,IAAA,wBAAY,GAAE,CAAC;AAChE,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,SAAgB,sBAAsB,CAAC,SAAgC,EAAE;IACvE,MAAM,GAAG,mCAAQ,cAAc,GAAK,MAAM,CAAE,CAAC;IAC7C,MAAM,SAAS,GAAG,IAAA,kBAAS,GAAE,CAAC;IAE9B,OAAO;QACL;;WAEG;QACH,iBAAiB,EAAE,IAAA,4BAAiB,EAClC;YACE,MAAM,EAAE,GAAG,CAAC,MAAM,IAAI,SAAS,CAAC,MAAM;SACvC,EACD,KAAK,EAAE,KAAK,EAAE,EAAE;;YACd,IAAI,CAAC,GAAG,CAAC,sBAAsB,EAAE,CAAC;gBAChC,MAAM,CAAC,IAAI,CAAC,8CAA8C,CAAC,CAAC;gBAC5D,OAAO;YACT,CAAC;YAED,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC;YACxB,IAAI,CAAC,IAAI,EAAE,CAAC;gBACV,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;gBACtC,MAAM,IAAI,qBAAU,CAAC,UAAU,EAAE,uBAAuB,CAAC,CAAC;YAC5D,CAAC;YAED,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC;YACrB,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,IAAI,EAAE,CAAC;YAC/B,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,MAAM,CAAC;YACtE,MAAM,YAAY,GAAG,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC;gBACrD,CAAC,CAAC,YAAY;gBACd,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC;oBACpC,CAAC,CAAC,UAAU;oBACZ,CAAC,CAAC,CAAA,MAAA,KAAK,CAAC,kBAAkB,0CAAE,UAAU,KAAI,SAAS,CAAC;YAExD,MAAM,CAAC,IAAI,CAAC,6CAA6C,GAAG,KAAK,KAAK,GAAG,CAAC,CAAC;YAE3E,IAAI,CAAC;gBACH,MAAM,EAAE,GAAG,oBAAoB,EAAE,CAAC;gBAClC,MAAM,UAAU,GAAG,EAAE,CAAC,UAAU,CAAC,GAAG,CAAC,cAAe,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;gBAE/D,mEAAmE;gBACnE,MAAM,WAAW,GAAG,MAAM,UAAU,CAAC,GAAG,EAAE,CAAC;gBAC3C,IAAI,WAAW,CAAC,MAAM,EAAE,CAAC;oBACvB,MAAM,CAAC,IAAI,CAAC,oCAAoC,GAAG,qBAAqB,CAAC,CAAC;oBAC1E,OAAO;gBACT,CAAC;gBAED,0CAA0C;gBAC1C,MAAM,SAAS,GAAG,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;gBACzC,MAAM,SAAS,GAAG,SAAS,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;gBACrC,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;gBAEpD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;gBACrC,MAAM,YAAY,GAAG;oBACnB,EAAE,EAAE,GAAG;oBACP,KAAK;oBACL,WAAW;oBACX,SAAS;oBACT,QAAQ;oBACR,QAAQ,EAAE,IAAI,CAAC,QAAQ,IAAI,IAAI;oBAC/B,WAAW,EAAE,IAAI,CAAC,WAAW,IAAI,IAAI;oBACrC,aAAa,EAAE,IAAI,CAAC,aAAa,IAAI,KAAK;oBAC1C,YAAY;oBACZ,OAAO,EAAE,CAAC,GAAG,CAAC,aAAa,CAAC;oBAC5B,IAAI,EAAE;wBACJ,SAAS,EAAE,GAAG;wBACd,SAAS,EAAE,GAAG;wBACd,SAAS,EAAE,cAAc;wBACzB,SAAS,EAAE,cAAc;qBAC1B;iBACF,CAAC;gBAEF,MAAM,UAAU,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;gBACnC,MAAM,CAAC,IAAI,CAAC,0CAA0C,GAAG,EAAE,CAAC,CAAC;gBAE7D,2EAA2E;gBAC3E,2CAA2C;gBAC3C,OAAO;YACT,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,CAAC,KAAK,CAAC,sCAAsC,GAAG,GAAG,EAAE,KAAK,CAAC,CAAC;gBAElE,sDAAsD;gBACtD,oEAAoE;gBACpE,MAAM,IAAI,qBAAU,CAClB,UAAU,EACV,kDAAkD,CACnD,CAAC;YACJ,CAAC;QACH,CAAC,CACF;KACF,CAAC;AACJ,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@zssz-soft/firebase-functions-shared",
-  "version": "1.2.13",
+  "version": "1.2.14",
   "description": "Shared Firebase Cloud Functions modules for LodgeFlow applications",
   "main": "lib/index.js",
   "types": "lib/index.d.ts",