alepha 0.21.2 → 0.23.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (519) hide show
  1. package/README.md +0 -1
  2. package/dist/api/audits/index.browser.js.map +1 -1
  3. package/dist/api/audits/index.d.ts +393 -403
  4. package/dist/api/audits/index.d.ts.map +1 -1
  5. package/dist/api/audits/index.js +25 -56
  6. package/dist/api/audits/index.js.map +1 -1
  7. package/dist/api/files/index.browser.js +31 -1
  8. package/dist/api/files/index.browser.js.map +1 -1
  9. package/dist/api/files/index.d.ts +313 -208
  10. package/dist/api/files/index.d.ts.map +1 -1
  11. package/dist/api/files/index.js +152 -42
  12. package/dist/api/files/index.js.map +1 -1
  13. package/dist/api/jobs/index.browser.js +2 -2
  14. package/dist/api/jobs/index.browser.js.map +1 -1
  15. package/dist/api/jobs/index.d.ts +282 -285
  16. package/dist/api/jobs/index.d.ts.map +1 -1
  17. package/dist/api/jobs/index.js +39 -33
  18. package/dist/api/jobs/index.js.map +1 -1
  19. package/dist/api/keys/index.d.ts +217 -222
  20. package/dist/api/keys/index.d.ts.map +1 -1
  21. package/dist/api/keys/index.js.map +1 -1
  22. package/dist/api/notifications/index.browser.js.map +1 -1
  23. package/dist/api/notifications/index.d.ts +188 -195
  24. package/dist/api/notifications/index.d.ts.map +1 -1
  25. package/dist/api/notifications/index.js.map +1 -1
  26. package/dist/api/oauth/index.d.ts +71 -76
  27. package/dist/api/oauth/index.d.ts.map +1 -1
  28. package/dist/api/oauth/index.js.map +1 -1
  29. package/dist/api/organizations/index.browser.js.map +1 -1
  30. package/dist/api/organizations/index.d.ts +104 -109
  31. package/dist/api/organizations/index.d.ts.map +1 -1
  32. package/dist/api/organizations/index.js.map +1 -1
  33. package/dist/api/parameters/index.browser.js +43 -16
  34. package/dist/api/parameters/index.browser.js.map +1 -1
  35. package/dist/api/parameters/index.d.ts +488 -344
  36. package/dist/api/parameters/index.d.ts.map +1 -1
  37. package/dist/api/parameters/index.js +175 -35
  38. package/dist/api/parameters/index.js.map +1 -1
  39. package/dist/api/payments/index.d.ts +396 -402
  40. package/dist/api/payments/index.d.ts.map +1 -1
  41. package/dist/api/payments/index.js.map +1 -1
  42. package/dist/api/subscriptions/index.d.ts +644 -652
  43. package/dist/api/subscriptions/index.d.ts.map +1 -1
  44. package/dist/api/subscriptions/index.js +1 -1
  45. package/dist/api/subscriptions/index.js.map +1 -1
  46. package/dist/api/users/index.browser.js +7 -0
  47. package/dist/api/users/index.browser.js.map +1 -1
  48. package/dist/api/users/index.d.ts +1106 -1005
  49. package/dist/api/users/index.d.ts.map +1 -1
  50. package/dist/api/users/index.js +307 -64
  51. package/dist/api/users/index.js.map +1 -1
  52. package/dist/api/verifications/index.browser.js.map +1 -1
  53. package/dist/api/verifications/index.d.ts +137 -143
  54. package/dist/api/verifications/index.d.ts.map +1 -1
  55. package/dist/api/verifications/index.js.map +1 -1
  56. package/dist/background/index.d.ts +95 -0
  57. package/dist/background/index.d.ts.map +1 -0
  58. package/dist/background/index.js +121 -0
  59. package/dist/background/index.js.map +1 -0
  60. package/dist/background/index.workerd.js +110 -0
  61. package/dist/background/index.workerd.js.map +1 -0
  62. package/dist/batch/index.d.ts +5 -7
  63. package/dist/batch/index.d.ts.map +1 -1
  64. package/dist/batch/index.js.map +1 -1
  65. package/dist/bin/index.js.map +1 -1
  66. package/dist/bucket/index.d.ts +76 -54
  67. package/dist/bucket/index.d.ts.map +1 -1
  68. package/dist/bucket/index.js +58 -11
  69. package/dist/bucket/index.js.map +1 -1
  70. package/dist/bucket/index.workerd.js +200 -5
  71. package/dist/bucket/index.workerd.js.map +1 -1
  72. package/dist/cache/core/index.d.ts +7 -10
  73. package/dist/cache/core/index.d.ts.map +1 -1
  74. package/dist/cache/core/index.js.map +1 -1
  75. package/dist/cache/core/index.workerd.js.map +1 -1
  76. package/dist/cache/database/index.d.ts +22 -26
  77. package/dist/cache/database/index.d.ts.map +1 -1
  78. package/dist/cache/database/index.js.map +1 -1
  79. package/dist/cache/redis/index.d.ts +4 -7
  80. package/dist/cache/redis/index.d.ts.map +1 -1
  81. package/dist/cache/redis/index.js.map +1 -1
  82. package/dist/captcha/index.d.ts +3 -6
  83. package/dist/captcha/index.d.ts.map +1 -1
  84. package/dist/captcha/index.js.map +1 -1
  85. package/dist/cli/config/index.d.ts.map +1 -1
  86. package/dist/cli/config/index.js.map +1 -1
  87. package/dist/cli/core/index.d.ts +458 -249
  88. package/dist/cli/core/index.d.ts.map +1 -1
  89. package/dist/cli/core/index.js +372 -660
  90. package/dist/cli/core/index.js.map +1 -1
  91. package/dist/cli/devtools/index.d.ts +3 -5
  92. package/dist/cli/devtools/index.d.ts.map +1 -1
  93. package/dist/cli/devtools/index.js.map +1 -1
  94. package/dist/cli/i18n/index.d.ts +20 -17
  95. package/dist/cli/i18n/index.d.ts.map +1 -1
  96. package/dist/cli/i18n/index.js +45 -11
  97. package/dist/cli/i18n/index.js.map +1 -1
  98. package/dist/cli/platform/index.d.ts +126 -1342
  99. package/dist/cli/platform/index.d.ts.map +1 -1
  100. package/dist/cli/platform/index.js +136 -2374
  101. package/dist/cli/platform/index.js.map +1 -1
  102. package/dist/cli/platform-lib/index.d.ts +1472 -0
  103. package/dist/cli/platform-lib/index.d.ts.map +1 -0
  104. package/dist/cli/platform-lib/index.js +2660 -0
  105. package/dist/cli/platform-lib/index.js.map +1 -0
  106. package/dist/cli/vendor/index.d.ts +17 -21
  107. package/dist/cli/vendor/index.d.ts.map +1 -1
  108. package/dist/cli/vendor/index.js.map +1 -1
  109. package/dist/command/index.d.ts +20 -19
  110. package/dist/command/index.d.ts.map +1 -1
  111. package/dist/command/index.js +39 -10
  112. package/dist/command/index.js.map +1 -1
  113. package/dist/{containers → container}/core/index.d.ts +13 -15
  114. package/dist/container/core/index.d.ts.map +1 -0
  115. package/dist/{containers → container}/core/index.js +23 -14
  116. package/dist/container/core/index.js.map +1 -0
  117. package/dist/{containers → container}/core/index.workerd.js +37 -22
  118. package/dist/container/core/index.workerd.js.map +1 -0
  119. package/dist/core/index.browser.js +27 -1
  120. package/dist/core/index.browser.js.map +1 -1
  121. package/dist/core/index.d.ts +48 -24
  122. package/dist/core/index.d.ts.map +1 -1
  123. package/dist/core/index.js +27 -1
  124. package/dist/core/index.js.map +1 -1
  125. package/dist/core/index.native.js +27 -1
  126. package/dist/core/index.native.js.map +1 -1
  127. package/dist/core/index.workerd.js +27 -1
  128. package/dist/core/index.workerd.js.map +1 -1
  129. package/dist/crypto/index.browser.js.map +1 -1
  130. package/dist/crypto/index.d.ts +5 -8
  131. package/dist/crypto/index.d.ts.map +1 -1
  132. package/dist/crypto/index.js.map +1 -1
  133. package/dist/datetime/index.d.ts +3 -4
  134. package/dist/datetime/index.d.ts.map +1 -1
  135. package/dist/datetime/index.js.map +1 -1
  136. package/dist/email/brevo/index.d.ts +2 -4
  137. package/dist/email/brevo/index.d.ts.map +1 -1
  138. package/dist/email/brevo/index.js.map +1 -1
  139. package/dist/email/cloudflare/index.d.ts +20 -7
  140. package/dist/email/cloudflare/index.d.ts.map +1 -1
  141. package/dist/email/cloudflare/index.js +46 -9
  142. package/dist/email/cloudflare/index.js.map +1 -1
  143. package/dist/email/core/index.d.ts +6 -9
  144. package/dist/email/core/index.d.ts.map +1 -1
  145. package/dist/email/core/index.js.map +1 -1
  146. package/dist/email/core/index.workerd.js.map +1 -1
  147. package/dist/email/smtp/index.d.ts +10 -13
  148. package/dist/email/smtp/index.d.ts.map +1 -1
  149. package/dist/email/smtp/index.js +107 -32
  150. package/dist/email/smtp/index.js.map +1 -1
  151. package/dist/fake/index.d.ts +1 -2
  152. package/dist/fake/index.d.ts.map +1 -1
  153. package/dist/fake/index.js.map +1 -1
  154. package/dist/lock/core/index.d.ts +9 -14
  155. package/dist/lock/core/index.d.ts.map +1 -1
  156. package/dist/lock/core/index.js.map +1 -1
  157. package/dist/lock/redis/index.d.ts +2 -4
  158. package/dist/lock/redis/index.d.ts.map +1 -1
  159. package/dist/lock/redis/index.js.map +1 -1
  160. package/dist/logger/index.d.ts +105 -76
  161. package/dist/logger/index.d.ts.map +1 -1
  162. package/dist/logger/index.js +196 -174
  163. package/dist/logger/index.js.map +1 -1
  164. package/dist/mcp/index.d.ts +25 -20
  165. package/dist/mcp/index.d.ts.map +1 -1
  166. package/dist/mcp/index.js +23 -0
  167. package/dist/mcp/index.js.map +1 -1
  168. package/dist/orm/core/index.browser.js.map +1 -1
  169. package/dist/orm/core/index.bun.js +19 -1
  170. package/dist/orm/core/index.bun.js.map +1 -1
  171. package/dist/orm/core/index.d.ts +76 -62
  172. package/dist/orm/core/index.d.ts.map +1 -1
  173. package/dist/orm/core/index.js +20 -2
  174. package/dist/orm/core/index.js.map +1 -1
  175. package/dist/orm/postgres/index.bun.js.map +1 -1
  176. package/dist/orm/postgres/index.d.ts +28 -20
  177. package/dist/orm/postgres/index.d.ts.map +1 -1
  178. package/dist/orm/postgres/index.js.map +1 -1
  179. package/dist/queue/core/index.d.ts +12 -15
  180. package/dist/queue/core/index.d.ts.map +1 -1
  181. package/dist/queue/core/index.js.map +1 -1
  182. package/dist/queue/core/index.workerd.js.map +1 -1
  183. package/dist/queue/redis/index.d.ts +3 -5
  184. package/dist/queue/redis/index.d.ts.map +1 -1
  185. package/dist/queue/redis/index.js.map +1 -1
  186. package/dist/react/auth/index.browser.js +9 -2
  187. package/dist/react/auth/index.browser.js.map +1 -1
  188. package/dist/react/auth/index.d.ts +14 -9
  189. package/dist/react/auth/index.d.ts.map +1 -1
  190. package/dist/react/auth/index.js +9 -2
  191. package/dist/react/auth/index.js.map +1 -1
  192. package/dist/react/core/index.d.ts +7 -8
  193. package/dist/react/core/index.d.ts.map +1 -1
  194. package/dist/react/core/index.js +6 -3
  195. package/dist/react/core/index.js.map +1 -1
  196. package/dist/react/form/index.d.ts +2 -5
  197. package/dist/react/form/index.d.ts.map +1 -1
  198. package/dist/react/form/index.js +16 -15
  199. package/dist/react/form/index.js.map +1 -1
  200. package/dist/react/head/index.browser.js.map +1 -1
  201. package/dist/react/head/index.d.ts +2 -4
  202. package/dist/react/head/index.d.ts.map +1 -1
  203. package/dist/react/head/index.js.map +1 -1
  204. package/dist/react/i18n/index.d.ts +90 -11
  205. package/dist/react/i18n/index.d.ts.map +1 -1
  206. package/dist/react/i18n/index.js +147 -11
  207. package/dist/react/i18n/index.js.map +1 -1
  208. package/dist/react/intro/index.d.ts +1 -2
  209. package/dist/react/intro/index.d.ts.map +1 -1
  210. package/dist/react/intro/index.js +2 -2
  211. package/dist/react/intro/index.js.map +1 -1
  212. package/dist/react/router/index.browser.js +193 -24
  213. package/dist/react/router/index.browser.js.map +1 -1
  214. package/dist/react/router/index.d.ts +434 -222
  215. package/dist/react/router/index.d.ts.map +1 -1
  216. package/dist/react/router/index.js +249 -35
  217. package/dist/react/router/index.js.map +1 -1
  218. package/dist/react/sitemap/index.browser.js +35 -0
  219. package/dist/react/sitemap/index.browser.js.map +1 -0
  220. package/dist/react/sitemap/index.d.ts +92 -0
  221. package/dist/react/sitemap/index.d.ts.map +1 -0
  222. package/dist/react/sitemap/index.js +131 -0
  223. package/dist/react/sitemap/index.js.map +1 -0
  224. package/dist/react/testing/index.d.ts +1 -2
  225. package/dist/react/testing/index.d.ts.map +1 -1
  226. package/dist/react/testing/index.js +16 -17
  227. package/dist/react/testing/index.js.map +1 -1
  228. package/dist/react/ui/index.d.ts +20 -25
  229. package/dist/react/ui/index.d.ts.map +1 -1
  230. package/dist/react/ui/index.js.map +1 -1
  231. package/dist/redis/index.bun.js.map +1 -1
  232. package/dist/redis/index.d.ts +17 -19
  233. package/dist/redis/index.d.ts.map +1 -1
  234. package/dist/redis/index.js.map +1 -1
  235. package/dist/retry/index.d.ts +2 -4
  236. package/dist/retry/index.d.ts.map +1 -1
  237. package/dist/retry/index.js.map +1 -1
  238. package/dist/router/index.d.ts.map +1 -1
  239. package/dist/router/index.js.map +1 -1
  240. package/dist/scheduler/index.d.ts +10 -13
  241. package/dist/scheduler/index.d.ts.map +1 -1
  242. package/dist/scheduler/index.js.map +1 -1
  243. package/dist/scheduler/index.workerd.js.map +1 -1
  244. package/dist/security/index.browser.js.map +1 -1
  245. package/dist/security/index.d.ts +45 -48
  246. package/dist/security/index.d.ts.map +1 -1
  247. package/dist/security/index.js.map +1 -1
  248. package/dist/server/auth/index.browser.js.map +1 -1
  249. package/dist/server/auth/index.d.ts +272 -173
  250. package/dist/server/auth/index.d.ts.map +1 -1
  251. package/dist/server/auth/index.js +1608 -15
  252. package/dist/server/auth/index.js.map +1 -1
  253. package/dist/server/cookies/index.browser.js.map +1 -1
  254. package/dist/server/cookies/index.d.ts +20 -7
  255. package/dist/server/cookies/index.d.ts.map +1 -1
  256. package/dist/server/cookies/index.js +22 -3
  257. package/dist/server/cookies/index.js.map +1 -1
  258. package/dist/server/core/index.browser.js.map +1 -1
  259. package/dist/server/core/index.d.ts +106 -73
  260. package/dist/server/core/index.d.ts.map +1 -1
  261. package/dist/server/core/index.js +44 -0
  262. package/dist/server/core/index.js.map +1 -1
  263. package/dist/server/cors/index.d.ts +11 -14
  264. package/dist/server/cors/index.d.ts.map +1 -1
  265. package/dist/server/cors/index.js.map +1 -1
  266. package/dist/server/etag/index.d.ts +6 -9
  267. package/dist/server/etag/index.d.ts.map +1 -1
  268. package/dist/server/etag/index.js.map +1 -1
  269. package/dist/server/health/index.d.ts +18 -21
  270. package/dist/server/health/index.d.ts.map +1 -1
  271. package/dist/server/health/index.js.map +1 -1
  272. package/dist/server/links/index.browser.js +2 -0
  273. package/dist/server/links/index.browser.js.map +1 -1
  274. package/dist/server/links/index.d.ts +63 -67
  275. package/dist/server/links/index.d.ts.map +1 -1
  276. package/dist/server/links/index.js +2 -0
  277. package/dist/server/links/index.js.map +1 -1
  278. package/dist/server/metrics/index.d.ts +5 -7
  279. package/dist/server/metrics/index.d.ts.map +1 -1
  280. package/dist/server/metrics/index.js.map +1 -1
  281. package/dist/server/proxy/index.d.ts +3 -5
  282. package/dist/server/proxy/index.d.ts.map +1 -1
  283. package/dist/server/proxy/index.js.map +1 -1
  284. package/dist/server/rate-limit/index.d.ts +10 -13
  285. package/dist/server/rate-limit/index.d.ts.map +1 -1
  286. package/dist/server/rate-limit/index.js.map +1 -1
  287. package/dist/server/static/index.d.ts +3 -5
  288. package/dist/server/static/index.d.ts.map +1 -1
  289. package/dist/server/static/index.js.map +1 -1
  290. package/dist/server/swagger/index.d.ts +5 -8
  291. package/dist/server/swagger/index.d.ts.map +1 -1
  292. package/dist/server/swagger/index.js.map +1 -1
  293. package/dist/sms/index.d.ts +3 -5
  294. package/dist/sms/index.d.ts.map +1 -1
  295. package/dist/sms/index.js.map +1 -1
  296. package/dist/system/index.browser.js.map +1 -1
  297. package/dist/system/index.d.ts +2 -4
  298. package/dist/system/index.d.ts.map +1 -1
  299. package/dist/system/index.js.map +1 -1
  300. package/dist/system/index.workerd.js.map +1 -1
  301. package/dist/topic/core/index.d.ts +4 -6
  302. package/dist/topic/core/index.d.ts.map +1 -1
  303. package/dist/topic/core/index.js.map +1 -1
  304. package/dist/topic/redis/index.d.ts +5 -8
  305. package/dist/topic/redis/index.d.ts.map +1 -1
  306. package/dist/topic/redis/index.js.map +1 -1
  307. package/package.json +59 -23
  308. package/src/api/audits/__tests__/AuditService.spec.ts +18 -110
  309. package/src/api/audits/controllers/AdminAuditController.ts +14 -0
  310. package/src/api/audits/services/AuditService.ts +21 -88
  311. package/src/api/files/__tests__/FileService.spec.ts +207 -2
  312. package/src/api/files/index.ts +3 -0
  313. package/src/api/files/schemas/fileCreatorSummarySchema.ts +22 -0
  314. package/src/api/files/schemas/fileResourceSchema.ts +10 -1
  315. package/src/api/files/services/FileService.ts +170 -72
  316. package/src/api/jobs/__tests__/$job.spec.ts +24 -1
  317. package/src/api/jobs/index.ts +4 -3
  318. package/src/api/jobs/primitives/$job.ts +7 -3
  319. package/src/api/jobs/providers/DirectJobDispatcher.ts +17 -36
  320. package/src/api/jobs/providers/JobProvider.ts +53 -24
  321. package/src/api/jobs/schemas/jobConfigAtom.ts +1 -1
  322. package/src/api/jobs/schemas/jobExecutionResourceSchema.ts +4 -1
  323. package/src/api/keys/schemas/adminApiKeyResourceSchema.ts +3 -1
  324. package/src/api/parameters/__tests__/$parameter.spec.ts +19 -2
  325. package/src/api/parameters/audits/ParameterAudits.ts +17 -0
  326. package/src/api/parameters/controllers/AdminParameterController.ts +95 -19
  327. package/src/api/parameters/index.ts +3 -0
  328. package/src/api/parameters/schemas/activateParameterBodySchema.ts +3 -3
  329. package/src/api/parameters/schemas/createParameterVersionBodySchema.ts +3 -2
  330. package/src/api/parameters/schemas/parameterCreatorSummarySchema.ts +25 -0
  331. package/src/api/parameters/schemas/parameterResponseSchema.ts +5 -0
  332. package/src/api/parameters/schemas/rollbackParameterBodySchema.ts +4 -2
  333. package/src/api/parameters/services/ParameterProvider.ts +69 -6
  334. package/src/api/subscriptions/jobs/SubscriptionJobs.ts +1 -1
  335. package/src/api/users/__tests__/AdminSessionController.spec.ts +37 -0
  336. package/src/api/users/audits/SessionAudits.ts +33 -0
  337. package/src/api/users/audits/UserAudits.ts +19 -43
  338. package/src/api/users/controllers/AdminUserController.ts +66 -1
  339. package/src/api/users/controllers/RealmController.ts +1 -0
  340. package/src/api/users/entities/sessions.ts +6 -0
  341. package/src/api/users/entities/users.ts +2 -0
  342. package/src/api/users/index.ts +9 -1
  343. package/src/api/users/primitives/$realm.ts +29 -0
  344. package/src/api/users/providers/RealmProvider.ts +15 -0
  345. package/src/api/users/schemas/realmConfigSchema.ts +14 -0
  346. package/src/api/users/schemas/sessionResourceSchema.ts +16 -0
  347. package/src/api/users/schemas/updateUserSchema.ts +1 -8
  348. package/src/api/users/schemas/userQuerySchema.ts +7 -0
  349. package/src/api/users/services/CredentialService.ts +15 -6
  350. package/src/api/users/services/IdentityService.ts +2 -1
  351. package/src/api/users/services/RegistrationService.ts +2 -1
  352. package/src/api/users/services/SessionCrudService.ts +19 -2
  353. package/src/api/users/services/SessionService.ts +39 -19
  354. package/src/api/users/services/UserService.ts +106 -8
  355. package/src/background/__tests__/BackgroundTaskProvider.spec.ts +96 -0
  356. package/src/background/index.ts +37 -0
  357. package/src/background/index.workerd.ts +28 -0
  358. package/src/background/providers/BackgroundTaskProvider.ts +70 -0
  359. package/src/background/providers/WorkerdBackgroundTaskProvider.ts +43 -0
  360. package/src/bucket/__tests__/$bucket.spec.ts +18 -0
  361. package/src/bucket/__tests__/LocalFileStorageProvider.spec.ts +5 -0
  362. package/src/bucket/__tests__/MemoryFileStorageProvider.spec.ts +5 -0
  363. package/src/bucket/__tests__/NodeS3BucketProvider.spec.ts +23 -4
  364. package/src/bucket/__tests__/shared.ts +30 -0
  365. package/src/bucket/index.ts +5 -5
  366. package/src/bucket/index.workerd.ts +11 -4
  367. package/src/bucket/primitives/$bucket.ts +27 -0
  368. package/src/bucket/providers/FileStorageProvider.ts +13 -0
  369. package/src/bucket/providers/LocalFileStorageProvider.ts +17 -1
  370. package/src/bucket/providers/MemoryFileStorageProvider.ts +7 -0
  371. package/src/bucket/providers/{CloudflareR2Provider.ts → R2FileStorageProvider.ts} +10 -1
  372. package/src/bucket/providers/{NodeS3BucketProvider.ts → S3FileStorageProvider.ts} +27 -5
  373. package/src/cli/core/__tests__/BuildDockerTask.spec.ts +25 -1
  374. package/src/cli/core/__tests__/init.spec.ts +0 -219
  375. package/src/cli/core/atoms/buildOptions.ts +0 -12
  376. package/src/cli/core/commands/__tests__/BuildCommand.spec.ts +43 -0
  377. package/src/cli/core/commands/build.ts +105 -37
  378. package/src/cli/core/commands/init.ts +0 -12
  379. package/src/cli/core/commands/pack.ts +133 -0
  380. package/src/cli/core/index.ts +3 -3
  381. package/src/cli/core/providers/ViteDevServerProvider.ts +40 -16
  382. package/src/cli/core/services/PackageManagerUtils.ts +0 -16
  383. package/src/cli/core/services/ProjectScaffolder.ts +29 -291
  384. package/src/cli/core/tasks/BuildCloudflareTask.ts +382 -56
  385. package/src/cli/core/tasks/BuildDockerTask.ts +33 -3
  386. package/src/cli/core/tasks/BuildPrerenderTask.ts +44 -7
  387. package/src/cli/core/tasks/BuildTask.ts +34 -0
  388. package/src/cli/core/templates/apiIndexTs.ts +1 -22
  389. package/src/cli/core/templates/mainCss.ts +0 -1
  390. package/src/cli/core/templates/webAppRouterTs.ts +0 -99
  391. package/src/cli/core/templates/webIndexTs.ts +1 -22
  392. package/src/cli/i18n/__tests__/I18nCheckService.spec.ts +48 -0
  393. package/src/cli/i18n/services/I18nCheckService.ts +65 -11
  394. package/src/cli/platform/__tests__/SecretsCommand.spec.ts +5 -3
  395. package/src/cli/platform/commands/SecretsCommand.ts +8 -6
  396. package/src/cli/platform/commands/platform.ts +192 -46
  397. package/src/cli/platform/index.ts +12 -52
  398. package/src/cli/{platform → platform-lib}/__tests__/CloudflareAdapter.spec.ts +426 -169
  399. package/src/cli/{platform → platform-lib}/__tests__/NamingService.spec.ts +91 -4
  400. package/src/cli/{platform → platform-lib}/__tests__/VercelAdapter.spec.ts +56 -85
  401. package/src/cli/{platform → platform-lib}/adapters/CloudflareAdapter.ts +519 -190
  402. package/src/cli/{platform → platform-lib}/adapters/PlatformAdapter.ts +62 -35
  403. package/src/cli/{platform → platform-lib}/adapters/VercelAdapter.ts +6 -10
  404. package/src/cli/{platform → platform-lib}/atoms/platformOptions.ts +34 -1
  405. package/src/cli/platform-lib/index.ts +67 -0
  406. package/src/cli/platform-lib/services/NamingService.ts +136 -0
  407. package/src/cli/{platform → platform-lib}/services/PlatformInspector.ts +60 -13
  408. package/src/cli/{platform → platform-lib}/services/PlatformOrchestrator.ts +54 -43
  409. package/src/cli/{platform → platform-lib}/services/WranglerApi.ts +4 -2
  410. package/src/command/__tests__/Runner.spec.ts +20 -0
  411. package/src/command/helpers/EnvUtils.ts +19 -3
  412. package/src/command/helpers/Runner.ts +12 -2
  413. package/src/command/providers/CliProvider.ts +34 -1
  414. package/src/{containers → container}/core/__tests__/$container.spec.ts +5 -5
  415. package/src/{containers → container}/core/index.ts +4 -4
  416. package/src/{containers → container}/core/index.workerd.ts +19 -3
  417. package/src/{containers → container}/core/primitives/$container.ts +1 -1
  418. package/src/{containers → container}/core/providers/CloudflareContainerProvider.ts +17 -19
  419. package/src/{containers → container}/core/providers/ContainerProvider.ts +16 -2
  420. package/src/{containers → container}/core/providers/MockContainerProvider.ts +1 -1
  421. package/src/core/Alepha.ts +49 -1
  422. package/src/core/__tests__/$env.spec.ts +42 -0
  423. package/src/core/__tests__/dump.spec.ts +47 -0
  424. package/src/email/cloudflare/__tests__/CloudflareEmailProvider.spec.ts +42 -10
  425. package/src/email/cloudflare/index.ts +14 -5
  426. package/src/email/cloudflare/providers/CloudflareEmailProvider.ts +54 -9
  427. package/src/logger/__tests__/Logger.spec.ts +55 -0
  428. package/src/logger/index.ts +13 -0
  429. package/src/logger/services/Logger.ts +31 -1
  430. package/src/mcp/__tests__/McpServerProvider.spec.ts +71 -0
  431. package/src/mcp/providers/McpServerProvider.ts +55 -0
  432. package/src/orm/__tests__/orm-showcase-tests.ts +27 -0
  433. package/src/orm/__tests__/orm-showcase.spec.ts +12 -0
  434. package/src/orm/core/interfaces/PgQuery.ts +4 -1
  435. package/src/orm/core/services/Repository.ts +27 -11
  436. package/src/react/auth/hooks/useAuth.ts +10 -5
  437. package/src/react/core/__tests__/useQuery.browser.spec.tsx +25 -0
  438. package/src/react/core/hooks/useAction.ts +14 -3
  439. package/src/react/core/hooks/useQuery.ts +24 -4
  440. package/src/react/form/__tests__/FormModel-submit-loading.spec.ts +71 -0
  441. package/src/react/form/__tests__/form-submitting-reactive.browser.spec.tsx +96 -0
  442. package/src/react/form/services/FormModel.ts +57 -39
  443. package/src/react/i18n/__tests__/I18nProvider.spec.ts +89 -0
  444. package/src/react/i18n/__tests__/locale-routing.spec.ts +107 -0
  445. package/src/react/i18n/components/Translate.tsx +47 -0
  446. package/src/react/i18n/index.ts +2 -0
  447. package/src/react/i18n/providers/I18nProvider.ts +171 -12
  448. package/src/react/intro/components/GettingStartedAdminSlide.tsx +2 -2
  449. package/src/react/router/__tests__/$page.spec.tsx +3 -2
  450. package/src/react/router/__tests__/RouterLocaleProvider.spec.ts +127 -0
  451. package/src/react/router/__tests__/page-can.spec.ts +18 -13
  452. package/src/react/router/hooks/useQueryParams.ts +114 -14
  453. package/src/react/router/index.browser.ts +4 -0
  454. package/src/react/router/index.shared.ts +1 -0
  455. package/src/react/router/index.ts +9 -0
  456. package/src/react/router/primitives/$page.ts +85 -4
  457. package/src/react/router/providers/ReactBrowserRouterProvider.ts +18 -8
  458. package/src/react/router/providers/ReactPageProvider.ts +12 -1
  459. package/src/react/router/providers/ReactServerProvider.ts +96 -14
  460. package/src/react/router/providers/RootComponentsProvider.ts +13 -0
  461. package/src/react/router/providers/RouterLocaleProvider.ts +125 -0
  462. package/src/react/router/providers/__tests__/RootComponentsProvider.spec.ts +15 -0
  463. package/src/react/router/providers/__tests__/rootComponents.ssr.browser.spec.tsx +67 -0
  464. package/src/react/sitemap/__tests__/$sitemap.spec.ts +131 -0
  465. package/src/react/sitemap/index.browser.ts +21 -0
  466. package/src/react/sitemap/index.ts +25 -0
  467. package/src/react/sitemap/primitives/$sitemap.browser.ts +26 -0
  468. package/src/react/sitemap/primitives/$sitemap.ts +196 -0
  469. package/src/react/ui/services/SchemaControl.ts +3 -4
  470. package/src/server/auth/__tests__/appleClientSecret.spec.ts +34 -0
  471. package/src/server/auth/__tests__/authFederationClient.spec.ts +40 -0
  472. package/src/server/auth/__tests__/federationAssertion.spec.ts +146 -0
  473. package/src/server/auth/__tests__/federationRedirectReplay.spec.ts +44 -0
  474. package/src/server/auth/helpers/appleClientSecret.ts +24 -0
  475. package/src/server/auth/helpers/federationAssertion.ts +74 -0
  476. package/src/server/auth/helpers/jtiReplayGuard.ts +41 -0
  477. package/src/server/auth/helpers/safeRedirectPath.ts +19 -0
  478. package/src/server/auth/index.ts +4 -0
  479. package/src/server/auth/primitives/$authFederationBroker.ts +273 -0
  480. package/src/server/auth/primitives/$authFederationClient.ts +89 -0
  481. package/src/server/auth/providers/ServerAuthProvider.ts +18 -4
  482. package/src/server/cookies/__tests__/ServerCookiesProvider.spec.ts +70 -0
  483. package/src/server/cookies/providers/ServerCookiesProvider.ts +23 -3
  484. package/src/server/core/interfaces/ServerRequest.ts +8 -0
  485. package/src/server/core/primitives/$route.ts +27 -0
  486. package/src/server/core/providers/ServerMultipartProvider.ts +19 -0
  487. package/src/server/links/providers/LinkProvider.ts +10 -0
  488. package/dist/containers/core/index.d.ts.map +0 -1
  489. package/dist/containers/core/index.js.map +0 -1
  490. package/dist/containers/core/index.workerd.js.map +0 -1
  491. package/src/cli/core/tasks/BuildSitemapTask.ts +0 -130
  492. package/src/cli/core/templates/componentsJsonTs.ts +0 -39
  493. package/src/cli/core/templates/saasAdminLayoutTsx.ts +0 -77
  494. package/src/cli/core/templates/saasAdminPagesTsx.ts +0 -26
  495. package/src/cli/core/templates/saasAuthLayoutTsx.ts +0 -22
  496. package/src/cli/core/templates/saasAuthPagesTsx.ts +0 -62
  497. package/src/cli/core/templates/saasRealmProviderTs.ts +0 -52
  498. package/src/cli/platform/services/NamingService.ts +0 -54
  499. /package/dist/orm/core/{chunk-o8xxKEmq.js → chunk-B4FMCO8f.js} +0 -0
  500. /package/dist/react/testing/{chunk-6Ep1yQYe.js → chunk-BpyX8vjI.js} +0 -0
  501. /package/src/cli/{platform → platform-lib}/__tests__/GitHubSecretStore.spec.ts +0 -0
  502. /package/src/cli/{platform → platform-lib}/__tests__/PlatformCacheProvider.spec.ts +0 -0
  503. /package/src/cli/{platform → platform-lib}/__tests__/PlatformInspector.spec.ts +0 -0
  504. /package/src/cli/{platform → platform-lib}/__tests__/PlatformOrchestrator.spec.ts +0 -0
  505. /package/src/cli/{platform → platform-lib}/__tests__/SecretFilterService.spec.ts +0 -0
  506. /package/src/cli/{platform → platform-lib}/__tests__/detectResources.spec.ts +0 -0
  507. /package/src/cli/{platform → platform-lib}/providers/GitHubSecretStore.ts +0 -0
  508. /package/src/cli/{platform → platform-lib}/providers/MemorySecretStore.ts +0 -0
  509. /package/src/cli/{platform → platform-lib}/providers/PlatformCacheProvider.ts +0 -0
  510. /package/src/cli/{platform → platform-lib}/providers/SecretStoreProvider.ts +0 -0
  511. /package/src/cli/{platform → platform-lib}/schemas/cloudflare.ts +0 -0
  512. /package/src/cli/{platform → platform-lib}/schemas/platform.ts +0 -0
  513. /package/src/cli/{platform → platform-lib}/schemas/vercel.ts +0 -0
  514. /package/src/cli/{platform → platform-lib}/services/CloudflareApi.ts +0 -0
  515. /package/src/cli/{platform → platform-lib}/services/SecretFilterService.ts +0 -0
  516. /package/src/cli/{platform → platform-lib}/services/VercelApi.ts +0 -0
  517. /package/src/cli/{platform → platform-lib}/services/VercelCli.ts +0 -0
  518. /package/src/{containers → container}/core/interfaces/ContainerOptions.ts +0 -0
  519. /package/src/{containers → container}/core/providers/NodeContainerProvider.ts +0 -0
package/dist/api/users/index.d.ts CHANGED
@@ -1,27 +1,14 @@
1
- import * as _$alepha from "alepha";
2
1
  import { Alepha, AlephaError, Page, PageQuery, Primitive, SchemaValidator, Static, StaticEncode, TNull, TObject, TOptional, TSchema, TUnion } from "alepha";
3
- import { AuditService, CreateAudit } from "alepha/api/audits";
4
- import * as _$alepha_bucket0 from "alepha/bucket";
5
- import { CryptoProvider, IssuerPrimitive, IssuerPrimitiveOptions, UserAccount } from "alepha/security";
6
- import * as _$alepha_server0 from "alepha/server";
7
- import * as _$alepha_orm0 from "alepha/orm";
2
+ import { CryptoProvider, IssuerPrimitive, IssuerPrimitiveOptions, SecurityProvider, UserAccount } from "alepha/security";
8
3
  import { Page as Page$1, Repository } from "alepha/orm";
9
- import * as _$alepha_logger0 from "alepha/logger";
10
- import * as _$alepha_server_links0 from "alepha/server/links";
11
- import * as _$alepha_api_notifications0 from "alepha/api/notifications";
12
4
  import { CaptchaProvider } from "alepha/captcha";
13
5
  import { OAuth2Profile, ServerAuthProvider, WithLinkFn, WithLoginFn } from "alepha/server/auth";
14
6
  import { VerificationController, VerificationService } from "alepha/api/verifications";
15
- import * as _$alepha_cache0 from "alepha/cache";
16
7
  import { CacheProvider } from "alepha/cache";
17
8
  import { DateTime, DateTimeProvider } from "alepha/datetime";
18
- import * as _$alepha_api_jobs0 from "alepha/api/jobs";
19
9
  import { FileSystemProvider } from "alepha/system";
20
10
  import { ParameterPrimitive } from "alepha/api/parameters";
21
- import * as _$typebox from "typebox";
22
- import * as _$drizzle_orm0 from "drizzle-orm";
23
11
  import { BuildExtraConfigColumns, SQL, SQLWrapper } from "drizzle-orm";
24
- import * as _$drizzle_orm_pg_core0 from "drizzle-orm/pg-core";
25
12
  import { LockConfig, LockStrength, PgColumn, PgColumnBuilderBase, PgDatabase, PgInsertValue, PgSelectBase, PgSequenceOptions, PgTableExtraConfigValue, PgTableWithColumns, PgTransaction, UpdateDeleteAction } from "drizzle-orm/pg-core";
26
13
  import { PgTransactionConfig } from "drizzle-orm/pg-core/session";
27
14
  import { CryptoProvider as CryptoProvider$1 } from "alepha/crypto";
@@ -48,128 +35,72 @@ type FieldRequirement = "none" | "optional" | "required";
48
35
  * collision behavior.
49
36
  */
50
37
  type UsernameFieldRequirement = FieldRequirement | "email";
51
- declare const realmAuthSettingsAtom: _$alepha.Atom<_$typebox.TObject<{
52
- displayName: _$typebox.TOptional<_$typebox.TString>;
53
- description: _$typebox.TOptional<_$typebox.TString>;
54
- logoUrl: _$typebox.TOptional<_$typebox.TString>;
55
- registrationAllowed: _$typebox.TBoolean;
56
- email: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
57
- username: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">, _$typebox.TLiteral<"email">]>;
58
- usernameRegExp: _$typebox.TString;
59
- usernameBlocklist: _$typebox.TArray<_$typebox.TString>;
60
- phoneNumber: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
61
- verifyEmailRequired: _$typebox.TBoolean;
62
- verifyPhoneRequired: _$typebox.TBoolean;
63
- firstNameLastName: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
64
- resetPasswordAllowed: _$typebox.TBoolean;
65
- captchaRequired: _$typebox.TBoolean;
66
- adminEmails: _$typebox.TArray<_$typebox.TString>;
67
- adminUsernames: _$typebox.TArray<_$typebox.TString>;
68
- defaultRoles: _$typebox.TArray<_$typebox.TString>;
69
- verifyEmailUrl: _$typebox.TOptional<_$typebox.TString>;
70
- passwordPolicy: _$typebox.TObject<{
71
- minLength: _$typebox.TInteger;
72
- requireUppercase: _$typebox.TBoolean;
73
- requireLowercase: _$typebox.TBoolean;
74
- requireNumbers: _$typebox.TBoolean;
75
- requireSpecialCharacters: _$typebox.TBoolean;
38
+ declare const realmAuthSettingsAtom: import("alepha").Atom<import("typebox").TObject<{
39
+ displayName: import("typebox").TOptional<import("typebox").TString>;
40
+ description: import("typebox").TOptional<import("typebox").TString>;
41
+ logoUrl: import("typebox").TOptional<import("typebox").TString>;
42
+ registrationAllowed: import("typebox").TBoolean;
43
+ email: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">]>;
44
+ username: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">, import("typebox").TLiteral<"email">]>;
45
+ usernameRegExp: import("typebox").TString;
46
+ usernameBlocklist: import("typebox").TArray<import("typebox").TString>;
47
+ phoneNumber: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">]>;
48
+ verifyEmailRequired: import("typebox").TBoolean;
49
+ verifyPhoneRequired: import("typebox").TBoolean;
50
+ firstNameLastName: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">]>;
51
+ resetPasswordAllowed: import("typebox").TBoolean;
52
+ captchaRequired: import("typebox").TBoolean;
53
+ adminEmails: import("typebox").TArray<import("typebox").TString>;
54
+ adminUsernames: import("typebox").TArray<import("typebox").TString>;
55
+ defaultRoles: import("typebox").TArray<import("typebox").TString>;
56
+ verifyEmailUrl: import("typebox").TOptional<import("typebox").TString>;
57
+ passwordPolicy: import("typebox").TObject<{
58
+ minLength: import("typebox").TInteger;
59
+ requireUppercase: import("typebox").TBoolean;
60
+ requireLowercase: import("typebox").TBoolean;
61
+ requireNumbers: import("typebox").TBoolean;
62
+ requireSpecialCharacters: import("typebox").TBoolean;
76
63
  }>;
77
- loginRateLimit: _$typebox.TObject<{
78
- ipMaxAttempts: _$typebox.TInteger;
79
- accountMaxAttempts: _$typebox.TInteger;
80
- windowMs: _$typebox.TInteger;
64
+ loginRateLimit: import("typebox").TObject<{
65
+ ipMaxAttempts: import("typebox").TInteger;
66
+ accountMaxAttempts: import("typebox").TInteger;
67
+ windowMs: import("typebox").TInteger;
81
68
  }>;
82
- registrationIpMaxAttempts: _$typebox.TInteger;
83
- refreshToken: _$typebox.TObject<{
84
- expirationIdle: _$typebox.TOptional<_$typebox.TInteger>;
69
+ registrationIpMaxAttempts: import("typebox").TInteger;
70
+ refreshToken: import("typebox").TObject<{
71
+ expirationIdle: import("typebox").TOptional<import("typebox").TInteger>;
85
72
  }>;
86
73
  }>, "alepha.api.users.realmAuthSettings">;
87
74
  type RealmAuthSettings = Static<typeof realmAuthSettingsAtom.schema>;
88
75
  //#endregion
89
- //#region ../../src/api/users/audits/UserAudits.d.ts
90
- type AuditContext = Omit<CreateAudit, "type" | "action">;
76
+ //#region ../../src/api/users/audits/SessionAudits.d.ts
91
77
  /**
92
- * User-specific audit wrapper service.
78
+ * Authentication & session-security audit events.
93
79
  *
94
- * This service wraps the core AuditService to provide user-related audit logging.
80
+ * Holds two audit types:
81
+ * - `auth` — login / logout / token refresh / MFA.
82
+ * - `security` — rate limiting, session invalidation, and related guards.
95
83
  *
96
- * Declared as a module variant not auto-injected. It is instantiated
97
- * lazily the first time something calls `alepha.inject(UserAudits)`.
84
+ * Failed events are logged with `success: false`; severity (`warning`) is
85
+ * derived centrally in `AuditService.create`. Register as a module variant
86
+ * and log via the exposed primitives:
87
+ * `sessionAudits(realm)?.auth.log("login", { success: false, … })`.
88
+ */
89
+ declare class SessionAudits {
90
+ readonly auth: import("alepha/api/audits").AuditPrimitive;
91
+ readonly security: import("alepha/api/audits").AuditPrimitive;
92
+ }
93
+ //#endregion
94
+ //#region ../../src/api/users/audits/UserAudits.d.ts
95
+ /**
96
+ * User-management audit events.
97
+ *
98
+ * Holds the `user` audit type. Mirrors the `$notification`/`$job` holder
99
+ * pattern (see {@link UserNotifications}) — register as a module variant and
100
+ * log via the exposed primitive: `userAudits(realm)?.user.log("create", …)`.
98
101
  */
99
102
  declare class UserAudits {
100
- protected readonly auditService: AuditService;
101
- /**
102
- * Record a user-related audit event.
103
- */
104
- recordUser(action: "create" | "update" | "delete" | "role_change" | "enable" | "disable", context: AuditContext): Promise<{
105
- description?: string | undefined;
106
- userId?: string | undefined;
107
- userRealm?: string | undefined;
108
- userEmail?: string | undefined;
109
- resourceType?: string | undefined;
110
- resourceId?: string | undefined;
111
- metadata?: Record<string, any> | undefined;
112
- ipAddress?: string | undefined;
113
- userAgent?: string | undefined;
114
- sessionId?: string | undefined;
115
- requestId?: string | undefined;
116
- errorMessage?: string | undefined;
117
- type: string;
118
- action: string;
119
- severity: "info" | "warning" | "critical";
120
- success: boolean;
121
- id: string;
122
- createdAt: string;
123
- organizationId: string;
124
- }>;
125
- /**
126
- * Record an authentication-related audit event.
127
- */
128
- recordAuth(action: "login" | "logout" | "login_failed" | "token_refresh", context: AuditContext): Promise<{
129
- description?: string | undefined;
130
- userId?: string | undefined;
131
- userRealm?: string | undefined;
132
- userEmail?: string | undefined;
133
- resourceType?: string | undefined;
134
- resourceId?: string | undefined;
135
- metadata?: Record<string, any> | undefined;
136
- ipAddress?: string | undefined;
137
- userAgent?: string | undefined;
138
- sessionId?: string | undefined;
139
- requestId?: string | undefined;
140
- errorMessage?: string | undefined;
141
- type: string;
142
- action: string;
143
- severity: "info" | "warning" | "critical";
144
- success: boolean;
145
- id: string;
146
- createdAt: string;
147
- organizationId: string;
148
- }>;
149
- /**
150
- * Record a generic audit event.
151
- */
152
- record(category: string, action: string, context: AuditContext): Promise<{
153
- description?: string | undefined;
154
- userId?: string | undefined;
155
- userRealm?: string | undefined;
156
- userEmail?: string | undefined;
157
- resourceType?: string | undefined;
158
- resourceId?: string | undefined;
159
- metadata?: Record<string, any> | undefined;
160
- ipAddress?: string | undefined;
161
- userAgent?: string | undefined;
162
- sessionId?: string | undefined;
163
- requestId?: string | undefined;
164
- errorMessage?: string | undefined;
165
- type: string;
166
- action: string;
167
- severity: "info" | "warning" | "critical";
168
- success: boolean;
169
- id: string;
170
- createdAt: string;
171
- organizationId: string;
172
- }>;
103
+ readonly user: import("alepha/api/audits").AuditPrimitive;
173
104
  }
174
105
  //#endregion
175
106
  //#region ../../src/api/users/buckets/UserBuckets.d.ts
@@ -186,7 +117,7 @@ declare class UserBuckets {
186
117
  /**
187
118
  * Bucket for user avatar storage.
188
119
  */
189
- readonly avatars: _$alepha_bucket0.BucketPrimitive;
120
+ readonly avatars: import("alepha/bucket").BucketPrimitive;
190
121
  }
191
122
  //#endregion
192
123
  //#region ../../src/orm/core/schemas/insertSchema.d.ts
@@ -944,7 +875,7 @@ type PgRelation<Base extends TObject> = {
944
875
  schema: TObject;
945
876
  name: string;
946
877
  };
947
- on: SQLWrapper | [keyof Static<Base>, {
878
+ on: SQLWrapper | readonly [keyof Static<Base>, {
948
879
  name: string;
949
880
  }];
950
881
  with?: PgRelationMap<TObject>;
@@ -1154,13 +1085,13 @@ declare class DbCacheProvider {
1154
1085
  * the engine behind that call.
1155
1086
  */
1156
1087
  declare class SequenceProvider {
1157
- protected readonly repository: Repository$1<_$typebox.TObject<{
1158
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
1159
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
1160
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
1161
- name: _$typebox.TString;
1162
- scope: _$typebox.TString;
1163
- value: _$typebox.TInteger;
1088
+ protected readonly repository: Repository$1<import("typebox").TObject<{
1089
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
1090
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
1091
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
1092
+ name: import("typebox").TString;
1093
+ scope: import("typebox").TString;
1094
+ value: import("typebox").TInteger;
1164
1095
  }>>;
1165
1096
  protected readonly crypto: CryptoProvider$1;
1166
1097
  /**
@@ -1298,7 +1229,7 @@ declare abstract class ModelBuilder {
1298
1229
  //#endregion
1299
1230
  //#region ../../src/orm/core/providers/DrizzleKitProvider.d.ts
1300
1231
  declare class DrizzleKitProvider {
1301
- protected readonly log: _$alepha_logger0.Logger;
1232
+ protected readonly log: import("alepha/logger").Logger;
1302
1233
  protected readonly dateTime: DateTimeProvider;
1303
1234
  protected readonly alepha: Alepha;
1304
1235
  /**
@@ -1390,7 +1321,7 @@ type SQLLike = SQLWrapper | string;
1390
1321
  declare abstract class DatabaseProvider {
1391
1322
  protected readonly alepha: Alepha;
1392
1323
  protected readonly dateTime: DateTimeProvider;
1393
- protected readonly log: _$alepha_logger0.Logger;
1324
+ protected readonly log: import("alepha/logger").Logger;
1394
1325
  protected abstract readonly builder: ModelBuilder;
1395
1326
  protected readonly kit: DrizzleKitProvider;
1396
1327
  abstract readonly db: PgDatabase<any>;
@@ -1547,7 +1478,7 @@ declare class QueryManager {
1547
1478
  createPagination<T>(entities: T[], limit?: number, offset?: number, sort?: Array<{
1548
1479
  column: string;
1549
1480
  direction: "asc" | "desc";
1550
- }>): _$alepha.Page<T>;
1481
+ }>): import("alepha").Page<T>;
1551
1482
  }
1552
1483
  interface PgJoin {
1553
1484
  table: string;
@@ -1582,7 +1513,7 @@ declare class PgRelationManager {
1582
1513
  declare abstract class Repository$1<T extends TObject> {
1583
1514
  readonly entity: EntityPrimitive<T>;
1584
1515
  readonly provider: DatabaseProvider;
1585
- protected readonly log: _$alepha_logger0.Logger;
1516
+ protected readonly log: import("alepha/logger").Logger;
1586
1517
  protected readonly relationManager: PgRelationManager;
1587
1518
  protected readonly queryManager: QueryManager;
1588
1519
  protected readonly dateTimeProvider: DateTimeProvider;
@@ -1656,15 +1587,15 @@ declare abstract class Repository$1<T extends TObject> {
1656
1587
  /**
1657
1588
  * Start a SELECT query on the table.
1658
1589
  */
1659
- protected rawSelect(opts?: StatementOptions): _$drizzle_orm_pg_core0.PgSelectBase<string, Record<string, PgColumn<_$drizzle_orm0.ColumnBaseConfig<_$drizzle_orm0.ColumnDataType, string>, {}, {}>>, "single", Record<string, "not-null">, false, never, {
1590
+ protected rawSelect(opts?: StatementOptions): import("drizzle-orm/pg-core").PgSelectBase<string, Record<string, PgColumn<import("drizzle-orm").ColumnBaseConfig<import("drizzle-orm").ColumnDataType, string>, {}, {}>>, "single", Record<string, "not-null">, false, never, {
1660
1591
  [x: string]: unknown;
1661
1592
  }[], {
1662
- [x: string]: PgColumn<_$drizzle_orm0.ColumnBaseConfig<_$drizzle_orm0.ColumnDataType, string>, {}, {}>;
1593
+ [x: string]: PgColumn<import("drizzle-orm").ColumnBaseConfig<import("drizzle-orm").ColumnDataType, string>, {}, {}>;
1663
1594
  }>;
1664
1595
  /**
1665
1596
  * Start a SELECT DISTINCT query on the table.
1666
1597
  */
1667
- protected rawSelectDistinct(opts?: StatementOptions, columns?: (keyof Static<T>)[]): _$drizzle_orm_pg_core0.PgSelectBase<string, Record<string, any>, "partial", Record<string, "not-null">, false, never, {
1598
+ protected rawSelectDistinct(opts?: StatementOptions, columns?: (keyof Static<T>)[]): import("drizzle-orm/pg-core").PgSelectBase<string, Record<string, any>, "partial", Record<string, "not-null">, false, never, {
1668
1599
  [x: string]: any;
1669
1600
  }[], {
1670
1601
  [x: string]: any;
@@ -1672,15 +1603,15 @@ declare abstract class Repository$1<T extends TObject> {
1672
1603
  /**
1673
1604
  * Start an INSERT query on the table.
1674
1605
  */
1675
- protected rawInsert(opts?: StatementOptions): _$drizzle_orm_pg_core0.PgInsertBuilder<PgTableWithColumns<SchemaToTableConfig<T>>, any, false>;
1606
+ protected rawInsert(opts?: StatementOptions): import("drizzle-orm/pg-core").PgInsertBuilder<PgTableWithColumns<SchemaToTableConfig<T>>, any, false>;
1676
1607
  /**
1677
1608
  * Start an UPDATE query on the table.
1678
1609
  */
1679
- protected rawUpdate(opts?: StatementOptions): _$drizzle_orm_pg_core0.PgUpdateBuilder<PgTableWithColumns<SchemaToTableConfig<T>>, any>;
1610
+ protected rawUpdate(opts?: StatementOptions): import("drizzle-orm/pg-core").PgUpdateBuilder<PgTableWithColumns<SchemaToTableConfig<T>>, any>;
1680
1611
  /**
1681
1612
  * Start a DELETE query on the table.
1682
1613
  */
1683
- protected rawDelete(opts?: StatementOptions): _$drizzle_orm_pg_core0.PgDeleteBase<PgTableWithColumns<SchemaToTableConfig<T>>, any, undefined, undefined, false, never>;
1614
+ protected rawDelete(opts?: StatementOptions): import("drizzle-orm/pg-core").PgDeleteBase<PgTableWithColumns<SchemaToTableConfig<T>>, any, undefined, undefined, false, never>;
1684
1615
  /**
1685
1616
  * Create a Drizzle `select` query based on a JSON query object.
1686
1617
  *
@@ -1709,12 +1640,30 @@ declare abstract class Repository$1<T extends TObject> {
1709
1640
  }): Promise<Page<PgStatic<T, R>>>;
1710
1641
  /**
1711
1642
  * Find an entity by ID. Returns `undefined` if not found.
1643
+ *
1644
+ * Pass `with` to eager-load relations on the result — same `with` map
1645
+ * shape as `findOne` / `paginate`. Without `with`, returns the plain
1646
+ * row.
1647
+ *
1648
+ * @example
1649
+ * ```ts
1650
+ * const session = await sessions.findById(id, {
1651
+ * with: { user: { join: users, on: ["userId", users.cols.id] as const } },
1652
+ * });
1653
+ * session?.user?.email;
1654
+ * ```
1712
1655
  */
1713
- findById(id: string | number, opts?: StatementOptions): Promise<Static<T> | undefined>;
1656
+ findById<R extends PgRelationMap<T>>(id: string | number, opts?: StatementOptions & {
1657
+ with?: R;
1658
+ }): Promise<PgStatic<T, R> | undefined>;
1714
1659
  /**
1715
1660
  * Find an entity by ID. Throws `DbEntityNotFoundError` if not found.
1661
+ *
1662
+ * Pass `with` to eager-load relations — see {@link findById}.
1716
1663
  */
1717
- getById(id: string | number, opts?: StatementOptions): Promise<Static<T>>;
1664
+ getById<R extends PgRelationMap<T>>(id: string | number, opts?: StatementOptions & {
1665
+ with?: R;
1666
+ }): Promise<PgStatic<T, R>>;
1718
1667
  /**
1719
1668
  * Helper to create a type-safe query object.
1720
1669
  */
@@ -1915,7 +1864,7 @@ declare abstract class Repository$1<T extends TObject> {
1915
1864
  */
1916
1865
  protected getPrimaryKey(schema: TObject): {
1917
1866
  key: string;
1918
- col: PgColumn<_$drizzle_orm0.ColumnBaseConfig<_$drizzle_orm0.ColumnDataType, string>, {}, {}>;
1867
+ col: PgColumn<import("drizzle-orm").ColumnBaseConfig<import("drizzle-orm").ColumnDataType, string>, {}, {}>;
1919
1868
  type: TSchema;
1920
1869
  };
1921
1870
  }
@@ -1984,8 +1933,8 @@ type WithSQL<T> = { [P in keyof T]?: T[P] | SQL };
1984
1933
  * - `d1://BINDING_NAME` — Cloudflare D1
1985
1934
  * - `hyperdrive://BINDING_NAME` — Cloudflare Hyperdrive
1986
1935
  */
1987
- declare const databaseEnvSchema: _$typebox.TObject<{
1988
- DATABASE_URL: _$typebox.TOptional<_$typebox.TString>;
1936
+ declare const databaseEnvSchema: import("typebox").TObject<{
1937
+ DATABASE_URL: import("typebox").TOptional<import("typebox").TString>;
1989
1938
  /**
1990
1939
  * Enable or disable push-based schema synchronization (drizzle-kit push).
1991
1940
  *
@@ -1993,34 +1942,34 @@ declare const databaseEnvSchema: _$typebox.TObject<{
1993
1942
  * Set to `false` in development to skip automatic schema sync
1994
1943
  * (e.g. when managing migrations manually).
1995
1944
  */
1996
- DATABASE_SYNC: _$typebox.TOptional<_$typebox.TBoolean>;
1945
+ DATABASE_SYNC: import("typebox").TOptional<import("typebox").TBoolean>;
1997
1946
  }>;
1998
1947
  declare module "alepha" {
1999
1948
  interface Env extends Partial<Static<typeof databaseEnvSchema>> {}
2000
1949
  } //# sourceMappingURL=databaseEnvSchema.d.ts.map
2001
1950
  //#endregion
2002
1951
  //#region ../../src/api/users/entities/identities.d.ts
2003
- declare const identities: _$alepha_orm0.EntityPrimitive<_$typebox.TObject<{
2004
- id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
2005
- version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
2006
- createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2007
- updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2008
- userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
2009
- password: _$typebox.TOptional<_$typebox.TString>;
2010
- provider: _$typebox.TString;
2011
- providerUserId: _$typebox.TOptional<_$typebox.TString>;
2012
- providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
1952
+ declare const identities: import("alepha/orm").EntityPrimitive<import("typebox").TObject<{
1953
+ id: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_PRIMARY_KEY>, typeof import("alepha/orm").PG_DEFAULT>;
1954
+ version: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TInteger, typeof import("alepha/orm").PG_VERSION>, typeof import("alepha/orm").PG_DEFAULT>;
1955
+ createdAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_CREATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
1956
+ updatedAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_UPDATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
1957
+ userId: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_REF>;
1958
+ password: import("typebox").TOptional<import("typebox").TString>;
1959
+ provider: import("typebox").TString;
1960
+ providerUserId: import("typebox").TOptional<import("typebox").TString>;
1961
+ providerData: import("typebox").TOptional<import("typebox").TRecord<string, import("typebox").TAny>>;
2013
1962
  }>>;
2014
1963
  type IdentityEntity = Static<typeof identities.schema>;
2015
1964
  //#endregion
2016
1965
  //#region ../../src/api/users/entities/sessions.d.ts
2017
- declare const sessions: _$alepha_orm0.EntityPrimitive<_$typebox.TObject<{
2018
- id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
2019
- version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
2020
- createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2021
- updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2022
- refreshToken: _$typebox.TString;
2023
- userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
1966
+ declare const sessions: import("alepha/orm").EntityPrimitive<import("typebox").TObject<{
1967
+ id: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_PRIMARY_KEY>, typeof import("alepha/orm").PG_DEFAULT>;
1968
+ version: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TInteger, typeof import("alepha/orm").PG_VERSION>, typeof import("alepha/orm").PG_DEFAULT>;
1969
+ createdAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_CREATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
1970
+ updatedAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_UPDATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
1971
+ refreshToken: import("typebox").TString;
1972
+ userId: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_REF>;
2024
1973
  /**
2025
1974
  * OAuth client this session was minted for, when it was created via the
2026
1975
  * OAuth 2.1 authorization flow — the `client_id` of an `oauth_clients`
@@ -2028,41 +1977,48 @@ declare const sessions: _$alepha_orm0.EntityPrimitive<_$typebox.TObject<{
2028
1977
  * key: `sessions` is a core entity and must not depend on the optional
2029
1978
  * OAuth module's table; the join to `oauth_clients` is done at query time.
2030
1979
  */
2031
- clientId: _$typebox.TOptional<_$typebox.TString>;
2032
- expiresAt: _$typebox.TString;
1980
+ clientId: import("typebox").TOptional<import("typebox").TString>;
1981
+ expiresAt: import("typebox").TString;
2033
1982
  /**
2034
1983
  * Last time the session was used to refresh an access token.
2035
1984
  * Used by realm `refreshToken.expirationIdle` to invalidate idle sessions.
2036
1985
  * `null` on existing rows pre-migration — falls back to `createdAt`.
2037
1986
  */
2038
- lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
2039
- ip: _$typebox.TOptional<_$typebox.TString>;
2040
- userAgent: _$typebox.TOptional<_$typebox.TObject<{
2041
- os: _$typebox.TString;
2042
- browser: _$typebox.TString;
2043
- device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
1987
+ lastUsedAt: import("typebox").TOptional<import("typebox").TString>;
1988
+ ip: import("typebox").TOptional<import("typebox").TString>;
1989
+ /**
1990
+ * ISO 3166-1 alpha-2 country code derived from the request geo headers
1991
+ * (`cf-ipcountry` on Cloudflare, CDN equivalents elsewhere) at login time.
1992
+ * `null` on pre-migration rows and where geo isn't available.
1993
+ */
1994
+ country: import("typebox").TOptional<import("typebox").TString>;
1995
+ userAgent: import("typebox").TOptional<import("typebox").TObject<{
1996
+ os: import("typebox").TString;
1997
+ browser: import("typebox").TString;
1998
+ device: import("typebox").TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
2044
1999
  }>>;
2045
2000
  }>>;
2046
2001
  type SessionEntity = Static<typeof sessions.schema>;
2047
2002
  //#endregion
2048
2003
  //#region ../../src/api/users/entities/users.d.ts
2049
2004
  declare const DEFAULT_USER_REALM_NAME = "default";
2050
- declare const users: _$alepha_orm0.EntityPrimitive<_$typebox.TObject<{
2051
- id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
2052
- version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
2053
- createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2054
- updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2055
- realm: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_DEFAULT>;
2056
- username: _$typebox.TOptional<_$typebox.TString>;
2057
- email: _$typebox.TOptional<_$typebox.TString>;
2058
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
2059
- roles: _$alepha_orm0.PgAttr<_$typebox.TArray<_$typebox.TString>, typeof _$alepha_orm0.PG_DEFAULT>;
2060
- firstName: _$typebox.TOptional<_$typebox.TString>;
2061
- lastName: _$typebox.TOptional<_$typebox.TString>;
2062
- picture: _$typebox.TOptional<_$typebox.TString>;
2063
- enabled: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
2064
- emailVerified: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
2065
- organizationId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_ORGANIZATION>;
2005
+ declare const users: import("alepha/orm").EntityPrimitive<import("typebox").TObject<{
2006
+ id: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_PRIMARY_KEY>, typeof import("alepha/orm").PG_DEFAULT>;
2007
+ version: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TInteger, typeof import("alepha/orm").PG_VERSION>, typeof import("alepha/orm").PG_DEFAULT>;
2008
+ createdAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_CREATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2009
+ updatedAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_UPDATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2010
+ realm: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_DEFAULT>;
2011
+ username: import("typebox").TOptional<import("typebox").TString>;
2012
+ email: import("typebox").TOptional<import("typebox").TString>;
2013
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
2014
+ roles: import("alepha/orm").PgAttr<import("typebox").TArray<import("typebox").TString>, typeof import("alepha/orm").PG_DEFAULT>;
2015
+ firstName: import("typebox").TOptional<import("typebox").TString>;
2016
+ lastName: import("typebox").TOptional<import("typebox").TString>;
2017
+ picture: import("typebox").TOptional<import("typebox").TString>;
2018
+ enabled: import("alepha/orm").PgAttr<import("typebox").TBoolean, typeof import("alepha/orm").PG_DEFAULT>;
2019
+ emailVerified: import("alepha/orm").PgAttr<import("typebox").TBoolean, typeof import("alepha/orm").PG_DEFAULT>;
2020
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
2021
+ organizationId: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_ORGANIZATION>;
2066
2022
  }>>;
2067
2023
  type UserEntity = Static<typeof users.schema>;
2068
2024
  //#endregion
@@ -2175,6 +2131,19 @@ interface RealmOptions {
2175
2131
  facebook?: true;
2176
2132
  microsoft?: true;
2177
2133
  franceconnect?: true;
2134
+ /**
2135
+ * Federated social login via a central broker (the platform).
2136
+ *
2137
+ * The broker performs the real OIDC dance with Google/Apple on a single
2138
+ * shared OAuth client and hands this realm a short-lived, asymmetric-signed
2139
+ * assertion. This realm verifies it (broker `publicKey`), links a local
2140
+ * user, and establishes a session — no per-tenant OAuth client required.
2141
+ */
2142
+ federated?: {
2143
+ /** Broker origin (assertion `iss`), e.g. https://alepha.club. */brokerUrl: string; /** Broker EdDSA public key (SPKI PEM) used to verify assertions. */
2144
+ publicKey: string; /** Providers to surface as broker login buttons. */
2145
+ providers: Array<"google" | "apple">;
2146
+ };
2178
2147
  };
2179
2148
  /**
2180
2149
  * Enable or disable realm features.
@@ -2195,55 +2164,66 @@ interface Realm {
2195
2164
  repositories: RealmRepositories;
2196
2165
  settings: RealmAuthSettings;
2197
2166
  features: RealmFeatures;
2167
+ /**
2168
+ * Federated (broker) login config surfaced to the login UI, when the realm
2169
+ * declares `identities.federated`. The broker public key is intentionally
2170
+ * omitted — only the broker URL + provider list are client-facing.
2171
+ */
2172
+ federated?: {
2173
+ brokerUrl: string;
2174
+ providers: Array<"google" | "apple">;
2175
+ };
2198
2176
  settingsParameter?: ParameterPrimitive<typeof realmAuthSettingsAtom.schema>;
2199
2177
  getSettings(): Promise<RealmAuthSettings>;
2200
2178
  }
2201
2179
  declare class RealmProvider {
2202
2180
  protected readonly alepha: Alepha;
2203
- protected readonly defaultIdentities: Repository<_$typebox.TObject<{
2204
- id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
2205
- version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
2206
- createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2207
- updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2208
- userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
2209
- password: _$typebox.TOptional<_$typebox.TString>;
2210
- provider: _$typebox.TString;
2211
- providerUserId: _$typebox.TOptional<_$typebox.TString>;
2212
- providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
2181
+ protected readonly defaultIdentities: Repository<import("typebox").TObject<{
2182
+ id: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_PRIMARY_KEY>, typeof import("alepha/orm").PG_DEFAULT>;
2183
+ version: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TInteger, typeof import("alepha/orm").PG_VERSION>, typeof import("alepha/orm").PG_DEFAULT>;
2184
+ createdAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_CREATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2185
+ updatedAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_UPDATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2186
+ userId: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_REF>;
2187
+ password: import("typebox").TOptional<import("typebox").TString>;
2188
+ provider: import("typebox").TString;
2189
+ providerUserId: import("typebox").TOptional<import("typebox").TString>;
2190
+ providerData: import("typebox").TOptional<import("typebox").TRecord<string, import("typebox").TAny>>;
2213
2191
  }>>;
2214
- protected readonly defaultSessions: Repository<_$typebox.TObject<{
2215
- id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
2216
- version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
2217
- createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2218
- updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2219
- refreshToken: _$typebox.TString;
2220
- userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
2221
- clientId: _$typebox.TOptional<_$typebox.TString>;
2222
- expiresAt: _$typebox.TString;
2223
- lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
2224
- ip: _$typebox.TOptional<_$typebox.TString>;
2225
- userAgent: _$typebox.TOptional<_$typebox.TObject<{
2226
- os: _$typebox.TString;
2227
- browser: _$typebox.TString;
2228
- device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
2192
+ protected readonly defaultSessions: Repository<import("typebox").TObject<{
2193
+ id: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_PRIMARY_KEY>, typeof import("alepha/orm").PG_DEFAULT>;
2194
+ version: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TInteger, typeof import("alepha/orm").PG_VERSION>, typeof import("alepha/orm").PG_DEFAULT>;
2195
+ createdAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_CREATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2196
+ updatedAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_UPDATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2197
+ refreshToken: import("typebox").TString;
2198
+ userId: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_REF>;
2199
+ clientId: import("typebox").TOptional<import("typebox").TString>;
2200
+ expiresAt: import("typebox").TString;
2201
+ lastUsedAt: import("typebox").TOptional<import("typebox").TString>;
2202
+ ip: import("typebox").TOptional<import("typebox").TString>;
2203
+ country: import("typebox").TOptional<import("typebox").TString>;
2204
+ userAgent: import("typebox").TOptional<import("typebox").TObject<{
2205
+ os: import("typebox").TString;
2206
+ browser: import("typebox").TString;
2207
+ device: import("typebox").TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
2229
2208
  }>>;
2230
2209
  }>>;
2231
- protected readonly defaultUsers: Repository<_$typebox.TObject<{
2232
- id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
2233
- version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
2234
- createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2235
- updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2236
- realm: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_DEFAULT>;
2237
- username: _$typebox.TOptional<_$typebox.TString>;
2238
- email: _$typebox.TOptional<_$typebox.TString>;
2239
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
2240
- roles: _$alepha_orm0.PgAttr<_$typebox.TArray<_$typebox.TString>, typeof _$alepha_orm0.PG_DEFAULT>;
2241
- firstName: _$typebox.TOptional<_$typebox.TString>;
2242
- lastName: _$typebox.TOptional<_$typebox.TString>;
2243
- picture: _$typebox.TOptional<_$typebox.TString>;
2244
- enabled: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
2245
- emailVerified: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
2246
- organizationId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_ORGANIZATION>;
2210
+ protected readonly defaultUsers: Repository<import("typebox").TObject<{
2211
+ id: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_PRIMARY_KEY>, typeof import("alepha/orm").PG_DEFAULT>;
2212
+ version: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TInteger, typeof import("alepha/orm").PG_VERSION>, typeof import("alepha/orm").PG_DEFAULT>;
2213
+ createdAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_CREATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2214
+ updatedAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_UPDATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2215
+ realm: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_DEFAULT>;
2216
+ username: import("typebox").TOptional<import("typebox").TString>;
2217
+ email: import("typebox").TOptional<import("typebox").TString>;
2218
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
2219
+ roles: import("alepha/orm").PgAttr<import("typebox").TArray<import("typebox").TString>, typeof import("alepha/orm").PG_DEFAULT>;
2220
+ firstName: import("typebox").TOptional<import("typebox").TString>;
2221
+ lastName: import("typebox").TOptional<import("typebox").TString>;
2222
+ picture: import("typebox").TOptional<import("typebox").TString>;
2223
+ enabled: import("alepha/orm").PgAttr<import("typebox").TBoolean, typeof import("alepha/orm").PG_DEFAULT>;
2224
+ emailVerified: import("alepha/orm").PgAttr<import("typebox").TBoolean, typeof import("alepha/orm").PG_DEFAULT>;
2225
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
2226
+ organizationId: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_ORGANIZATION>;
2247
2227
  }>>;
2248
2228
  protected realms: Map<string, Realm>;
2249
2229
  register(realmName: string, realmOptions?: RealmOptions): Realm;
@@ -2257,31 +2237,31 @@ declare class RealmProvider {
2257
2237
  }
2258
2238
  //#endregion
2259
2239
  //#region ../../src/api/users/schemas/identityQuerySchema.d.ts
2260
- declare const identityQuerySchema: _$typebox.TObject<{
2261
- page: _$typebox.TOptional<_$typebox.TInteger>;
2262
- size: _$typebox.TOptional<_$typebox.TInteger>;
2263
- sort: _$typebox.TOptional<_$typebox.TString>;
2264
- userId: _$typebox.TOptional<_$typebox.TString>;
2265
- provider: _$typebox.TOptional<_$typebox.TString>;
2240
+ declare const identityQuerySchema: import("typebox").TObject<{
2241
+ page: import("typebox").TOptional<import("typebox").TInteger>;
2242
+ size: import("typebox").TOptional<import("typebox").TInteger>;
2243
+ sort: import("typebox").TOptional<import("typebox").TString>;
2244
+ userId: import("typebox").TOptional<import("typebox").TString>;
2245
+ provider: import("typebox").TOptional<import("typebox").TString>;
2266
2246
  }>;
2267
2247
  type IdentityQuery = Static<typeof identityQuerySchema>;
2268
2248
  //#endregion
2269
2249
  //#region ../../src/api/users/services/IdentityService.d.ts
2270
2250
  declare class IdentityService {
2271
2251
  protected readonly alepha: Alepha;
2272
- protected readonly log: _$alepha_logger0.Logger;
2252
+ protected readonly log: import("alepha/logger").Logger;
2273
2253
  protected readonly realmProvider: RealmProvider;
2274
2254
  protected userAudits(realmName?: string): UserAudits | undefined;
2275
- identities(userRealmName?: string): _$alepha_orm0.Repository<_$typebox.TObject<{
2276
- id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
2277
- version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
2278
- createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2279
- updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2280
- userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
2281
- password: _$typebox.TOptional<_$typebox.TString>;
2282
- provider: _$typebox.TString;
2283
- providerUserId: _$typebox.TOptional<_$typebox.TString>;
2284
- providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
2255
+ identities(userRealmName?: string): import("alepha/orm").Repository<import("typebox").TObject<{
2256
+ id: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_PRIMARY_KEY>, typeof import("alepha/orm").PG_DEFAULT>;
2257
+ version: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TInteger, typeof import("alepha/orm").PG_VERSION>, typeof import("alepha/orm").PG_DEFAULT>;
2258
+ createdAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_CREATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2259
+ updatedAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_UPDATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2260
+ userId: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_REF>;
2261
+ password: import("typebox").TOptional<import("typebox").TString>;
2262
+ provider: import("typebox").TString;
2263
+ providerUserId: import("typebox").TOptional<import("typebox").TString>;
2264
+ providerData: import("typebox").TOptional<import("typebox").TRecord<string, import("typebox").TAny>>;
2285
2265
  }>>;
2286
2266
  /**
2287
2267
  * Find identities with pagination and filtering.
@@ -2305,93 +2285,94 @@ declare class AdminIdentityController {
2305
2285
  /**
2306
2286
  * Find identities with pagination and filtering.
2307
2287
  */
2308
- readonly findIdentities: _$alepha_server0.ActionPrimitiveFn<{
2309
- query: _$typebox.TObject<{
2310
- page: _$typebox.TOptional<_$typebox.TInteger>;
2311
- size: _$typebox.TOptional<_$typebox.TInteger>;
2312
- sort: _$typebox.TOptional<_$typebox.TString>;
2313
- userId: _$typebox.TOptional<_$typebox.TString>;
2314
- provider: _$typebox.TOptional<_$typebox.TString>;
2315
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2316
- }>;
2317
- response: _$alepha.TPage<_$typebox.TObject<{
2318
- userId: PgAttr<_$typebox.TString, typeof PG_REF>;
2319
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2320
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2321
- provider: _$typebox.TString;
2322
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2323
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2324
- providerUserId: _$typebox.TOptional<_$typebox.TString>;
2325
- providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
2288
+ readonly findIdentities: import("alepha/server").ActionPrimitiveFn<{
2289
+ query: import("typebox").TObject<{
2290
+ page: import("typebox").TOptional<import("typebox").TInteger>;
2291
+ size: import("typebox").TOptional<import("typebox").TInteger>;
2292
+ sort: import("typebox").TOptional<import("typebox").TString>;
2293
+ userId: import("typebox").TOptional<import("typebox").TString>;
2294
+ provider: import("typebox").TOptional<import("typebox").TString>;
2295
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2296
+ }>;
2297
+ response: import("alepha").TPage<import("typebox").TObject<{
2298
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2299
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2300
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2301
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2302
+ userId: PgAttr<import("typebox").TString, typeof PG_REF>;
2303
+ provider: import("typebox").TString;
2304
+ providerUserId: import("typebox").TOptional<import("typebox").TString>;
2305
+ providerData: import("typebox").TOptional<import("typebox").TRecord<string, import("typebox").TAny>>;
2326
2306
  }>>;
2327
2307
  }>;
2328
2308
  /**
2329
2309
  * Get an identity by ID.
2330
2310
  */
2331
- readonly getIdentity: _$alepha_server0.ActionPrimitiveFn<{
2332
- params: _$typebox.TObject<{
2333
- id: _$typebox.TString;
2311
+ readonly getIdentity: import("alepha/server").ActionPrimitiveFn<{
2312
+ params: import("typebox").TObject<{
2313
+ id: import("typebox").TString;
2334
2314
  }>;
2335
- query: _$typebox.TObject<{
2336
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2315
+ query: import("typebox").TObject<{
2316
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2337
2317
  }>;
2338
- response: _$typebox.TObject<{
2339
- userId: PgAttr<_$typebox.TString, typeof PG_REF>;
2340
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2341
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2342
- provider: _$typebox.TString;
2343
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2344
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2345
- providerUserId: _$typebox.TOptional<_$typebox.TString>;
2346
- providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
2318
+ response: import("typebox").TObject<{
2319
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2320
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2321
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2322
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2323
+ userId: PgAttr<import("typebox").TString, typeof PG_REF>;
2324
+ provider: import("typebox").TString;
2325
+ providerUserId: import("typebox").TOptional<import("typebox").TString>;
2326
+ providerData: import("typebox").TOptional<import("typebox").TRecord<string, import("typebox").TAny>>;
2347
2327
  }>;
2348
2328
  }>;
2349
2329
  /**
2350
2330
  * Delete an identity.
2351
2331
  */
2352
- readonly deleteIdentity: _$alepha_server0.ActionPrimitiveFn<{
2353
- params: _$typebox.TObject<{
2354
- id: _$typebox.TString;
2332
+ readonly deleteIdentity: import("alepha/server").ActionPrimitiveFn<{
2333
+ params: import("typebox").TObject<{
2334
+ id: import("typebox").TString;
2355
2335
  }>;
2356
- query: _$typebox.TObject<{
2357
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2336
+ query: import("typebox").TObject<{
2337
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2358
2338
  }>;
2359
- response: _$typebox.TObject<{
2360
- ok: _$typebox.TBoolean;
2361
- id: _$typebox.TOptional<_$typebox.TUnion<[_$typebox.TString, _$typebox.TInteger]>>;
2362
- count: _$typebox.TOptional<_$typebox.TNumber>;
2339
+ response: import("typebox").TObject<{
2340
+ ok: import("typebox").TBoolean;
2341
+ id: import("typebox").TOptional<import("typebox").TUnion<[import("typebox").TString, import("typebox").TInteger]>>;
2342
+ count: import("typebox").TOptional<import("typebox").TNumber>;
2363
2343
  }>;
2364
2344
  }>;
2365
2345
  }
2366
2346
  //#endregion
2367
2347
  //#region ../../src/api/users/schemas/sessionQuerySchema.d.ts
2368
- declare const sessionQuerySchema: _$typebox.TObject<{
2369
- page: _$typebox.TOptional<_$typebox.TInteger>;
2370
- size: _$typebox.TOptional<_$typebox.TInteger>;
2371
- sort: _$typebox.TOptional<_$typebox.TString>;
2372
- userId: _$typebox.TOptional<_$typebox.TString>;
2348
+ declare const sessionQuerySchema: import("typebox").TObject<{
2349
+ page: import("typebox").TOptional<import("typebox").TInteger>;
2350
+ size: import("typebox").TOptional<import("typebox").TInteger>;
2351
+ sort: import("typebox").TOptional<import("typebox").TString>;
2352
+ userId: import("typebox").TOptional<import("typebox").TString>;
2373
2353
  }>;
2374
2354
  type SessionQuery = Static<typeof sessionQuerySchema>;
2375
2355
  //#endregion
2376
2356
  //#region ../../src/api/users/services/SessionCrudService.d.ts
2377
2357
  declare class SessionCrudService {
2378
- protected readonly log: _$alepha_logger0.Logger;
2358
+ protected readonly log: import("alepha/logger").Logger;
2379
2359
  protected readonly realmProvider: RealmProvider;
2380
- sessions(userRealmName?: string): _$alepha_orm0.Repository<_$typebox.TObject<{
2381
- id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
2382
- version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
2383
- createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2384
- updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2385
- refreshToken: _$typebox.TString;
2386
- userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
2387
- clientId: _$typebox.TOptional<_$typebox.TString>;
2388
- expiresAt: _$typebox.TString;
2389
- lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
2390
- ip: _$typebox.TOptional<_$typebox.TString>;
2391
- userAgent: _$typebox.TOptional<_$typebox.TObject<{
2392
- os: _$typebox.TString;
2393
- browser: _$typebox.TString;
2394
- device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
2360
+ sessions(userRealmName?: string): import("alepha/orm").Repository<import("typebox").TObject<{
2361
+ id: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_PRIMARY_KEY>, typeof import("alepha/orm").PG_DEFAULT>;
2362
+ version: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TInteger, typeof import("alepha/orm").PG_VERSION>, typeof import("alepha/orm").PG_DEFAULT>;
2363
+ createdAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_CREATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2364
+ updatedAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_UPDATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2365
+ refreshToken: import("typebox").TString;
2366
+ userId: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_REF>;
2367
+ clientId: import("typebox").TOptional<import("typebox").TString>;
2368
+ expiresAt: import("typebox").TString;
2369
+ lastUsedAt: import("typebox").TOptional<import("typebox").TString>;
2370
+ ip: import("typebox").TOptional<import("typebox").TString>;
2371
+ country: import("typebox").TOptional<import("typebox").TString>;
2372
+ userAgent: import("typebox").TOptional<import("typebox").TObject<{
2373
+ os: import("typebox").TString;
2374
+ browser: import("typebox").TString;
2375
+ device: import("typebox").TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
2395
2376
  }>>;
2396
2377
  }>>;
2397
2378
  /**
@@ -2420,190 +2401,213 @@ declare class AdminSessionController {
2420
2401
  /**
2421
2402
  * Find sessions with pagination and filtering.
2422
2403
  */
2423
- readonly findSessions: _$alepha_server0.ActionPrimitiveFn<{
2424
- query: _$typebox.TObject<{
2425
- page: _$typebox.TOptional<_$typebox.TInteger>;
2426
- size: _$typebox.TOptional<_$typebox.TInteger>;
2427
- sort: _$typebox.TOptional<_$typebox.TString>;
2428
- userId: _$typebox.TOptional<_$typebox.TString>;
2429
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2430
- }>;
2431
- response: _$alepha.TPage<_$typebox.TObject<{
2432
- id: _$typebox.TString;
2433
- version: _$typebox.TNumber;
2434
- createdAt: _$typebox.TString;
2435
- updatedAt: _$typebox.TString;
2436
- refreshToken: _$typebox.TString;
2437
- userId: _$typebox.TString;
2438
- expiresAt: _$typebox.TString;
2439
- ip: _$typebox.TOptional<_$typebox.TString>;
2440
- userAgent: _$typebox.TOptional<_$typebox.TObject<{
2441
- os: _$typebox.TString;
2442
- browser: _$typebox.TString;
2443
- device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
2404
+ readonly findSessions: import("alepha/server").ActionPrimitiveFn<{
2405
+ query: import("typebox").TObject<{
2406
+ page: import("typebox").TOptional<import("typebox").TInteger>;
2407
+ size: import("typebox").TOptional<import("typebox").TInteger>;
2408
+ sort: import("typebox").TOptional<import("typebox").TString>;
2409
+ userId: import("typebox").TOptional<import("typebox").TString>;
2410
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2411
+ }>;
2412
+ response: import("alepha").TPage<import("typebox").TObject<{
2413
+ id: import("typebox").TString;
2414
+ version: import("typebox").TNumber;
2415
+ createdAt: import("typebox").TString;
2416
+ updatedAt: import("typebox").TString;
2417
+ refreshToken: import("typebox").TString;
2418
+ userId: import("typebox").TString;
2419
+ expiresAt: import("typebox").TString;
2420
+ ip: import("typebox").TOptional<import("typebox").TString>;
2421
+ country: import("typebox").TOptional<import("typebox").TString>;
2422
+ userAgent: import("typebox").TOptional<import("typebox").TObject<{
2423
+ os: import("typebox").TString;
2424
+ browser: import("typebox").TString;
2425
+ device: import("typebox").TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
2426
+ }>>;
2427
+ user: import("typebox").TOptional<import("typebox").TObject<{
2428
+ id: import("typebox").TString;
2429
+ email: import("typebox").TOptional<import("typebox").TString>;
2430
+ username: import("typebox").TOptional<import("typebox").TString>;
2431
+ firstName: import("typebox").TOptional<import("typebox").TString>;
2432
+ lastName: import("typebox").TOptional<import("typebox").TString>;
2444
2433
  }>>;
2445
2434
  }>>;
2446
2435
  }>;
2447
2436
  /**
2448
2437
  * Get a session by ID.
2449
2438
  */
2450
- readonly getSession: _$alepha_server0.ActionPrimitiveFn<{
2451
- params: _$typebox.TObject<{
2452
- id: _$typebox.TString;
2453
- }>;
2454
- query: _$typebox.TObject<{
2455
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2456
- }>;
2457
- response: _$typebox.TObject<{
2458
- id: _$typebox.TString;
2459
- version: _$typebox.TNumber;
2460
- createdAt: _$typebox.TString;
2461
- updatedAt: _$typebox.TString;
2462
- refreshToken: _$typebox.TString;
2463
- userId: _$typebox.TString;
2464
- expiresAt: _$typebox.TString;
2465
- ip: _$typebox.TOptional<_$typebox.TString>;
2466
- userAgent: _$typebox.TOptional<_$typebox.TObject<{
2467
- os: _$typebox.TString;
2468
- browser: _$typebox.TString;
2469
- device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
2439
+ readonly getSession: import("alepha/server").ActionPrimitiveFn<{
2440
+ params: import("typebox").TObject<{
2441
+ id: import("typebox").TString;
2442
+ }>;
2443
+ query: import("typebox").TObject<{
2444
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2445
+ }>;
2446
+ response: import("typebox").TObject<{
2447
+ id: import("typebox").TString;
2448
+ version: import("typebox").TNumber;
2449
+ createdAt: import("typebox").TString;
2450
+ updatedAt: import("typebox").TString;
2451
+ refreshToken: import("typebox").TString;
2452
+ userId: import("typebox").TString;
2453
+ expiresAt: import("typebox").TString;
2454
+ ip: import("typebox").TOptional<import("typebox").TString>;
2455
+ country: import("typebox").TOptional<import("typebox").TString>;
2456
+ userAgent: import("typebox").TOptional<import("typebox").TObject<{
2457
+ os: import("typebox").TString;
2458
+ browser: import("typebox").TString;
2459
+ device: import("typebox").TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
2460
+ }>>;
2461
+ user: import("typebox").TOptional<import("typebox").TObject<{
2462
+ id: import("typebox").TString;
2463
+ email: import("typebox").TOptional<import("typebox").TString>;
2464
+ username: import("typebox").TOptional<import("typebox").TString>;
2465
+ firstName: import("typebox").TOptional<import("typebox").TString>;
2466
+ lastName: import("typebox").TOptional<import("typebox").TString>;
2470
2467
  }>>;
2471
2468
  }>;
2472
2469
  }>;
2473
2470
  /**
2474
2471
  * Delete a session.
2475
2472
  */
2476
- readonly deleteSession: _$alepha_server0.ActionPrimitiveFn<{
2477
- params: _$typebox.TObject<{
2478
- id: _$typebox.TString;
2473
+ readonly deleteSession: import("alepha/server").ActionPrimitiveFn<{
2474
+ params: import("typebox").TObject<{
2475
+ id: import("typebox").TString;
2479
2476
  }>;
2480
- query: _$typebox.TObject<{
2481
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2477
+ query: import("typebox").TObject<{
2478
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2482
2479
  }>;
2483
- response: _$typebox.TObject<{
2484
- ok: _$typebox.TBoolean;
2485
- id: _$typebox.TOptional<_$typebox.TUnion<[_$typebox.TString, _$typebox.TInteger]>>;
2486
- count: _$typebox.TOptional<_$typebox.TNumber>;
2480
+ response: import("typebox").TObject<{
2481
+ ok: import("typebox").TBoolean;
2482
+ id: import("typebox").TOptional<import("typebox").TUnion<[import("typebox").TString, import("typebox").TInteger]>>;
2483
+ count: import("typebox").TOptional<import("typebox").TNumber>;
2487
2484
  }>;
2488
2485
  }>;
2489
2486
  /**
2490
2487
  * Delete many sessions in one repository call.
2491
2488
  */
2492
- readonly deleteSessions: _$alepha_server0.ActionPrimitiveFn<{
2493
- query: _$typebox.TObject<{
2494
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2489
+ readonly deleteSessions: import("alepha/server").ActionPrimitiveFn<{
2490
+ query: import("typebox").TObject<{
2491
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2495
2492
  }>;
2496
- body: _$typebox.TObject<{
2497
- ids: _$typebox.TArray<_$typebox.TString>;
2493
+ body: import("typebox").TObject<{
2494
+ ids: import("typebox").TArray<import("typebox").TString>;
2498
2495
  }>;
2499
- response: _$typebox.TObject<{
2500
- deleted: _$typebox.TArray<_$typebox.TString>;
2496
+ response: import("typebox").TObject<{
2497
+ deleted: import("typebox").TArray<import("typebox").TString>;
2501
2498
  }>;
2502
2499
  }>;
2503
2500
  }
2504
2501
  //#endregion
2505
2502
  //#region ../../src/api/users/notifications/UserNotifications.d.ts
2506
2503
  declare class UserNotifications {
2507
- readonly passwordReset: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
2508
- email: _$typebox.TString;
2509
- code: _$typebox.TString;
2510
- expiresInMinutes: _$typebox.TNumber;
2504
+ readonly passwordReset: import("alepha/api/notifications").NotificationPrimitive<import("typebox").TObject<{
2505
+ email: import("typebox").TString;
2506
+ code: import("typebox").TString;
2507
+ expiresInMinutes: import("typebox").TNumber;
2511
2508
  }>>;
2512
- readonly emailVerification: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
2513
- email: _$typebox.TString;
2514
- code: _$typebox.TString;
2515
- expiresInMinutes: _$typebox.TNumber;
2509
+ readonly emailVerification: import("alepha/api/notifications").NotificationPrimitive<import("typebox").TObject<{
2510
+ email: import("typebox").TString;
2511
+ code: import("typebox").TString;
2512
+ expiresInMinutes: import("typebox").TNumber;
2516
2513
  }>>;
2517
- readonly phoneVerification: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
2518
- phoneNumber: _$typebox.TString;
2519
- code: _$typebox.TString;
2520
- expiresInMinutes: _$typebox.TNumber;
2514
+ readonly phoneVerification: import("alepha/api/notifications").NotificationPrimitive<import("typebox").TObject<{
2515
+ phoneNumber: import("typebox").TString;
2516
+ code: import("typebox").TString;
2517
+ expiresInMinutes: import("typebox").TNumber;
2521
2518
  }>>;
2522
- readonly passwordResetLink: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
2523
- email: _$typebox.TString;
2524
- resetUrl: _$typebox.TString;
2525
- expiresInMinutes: _$typebox.TNumber;
2519
+ readonly passwordResetLink: import("alepha/api/notifications").NotificationPrimitive<import("typebox").TObject<{
2520
+ email: import("typebox").TString;
2521
+ resetUrl: import("typebox").TString;
2522
+ expiresInMinutes: import("typebox").TNumber;
2526
2523
  }>>;
2527
- readonly accountLockout: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
2528
- email: _$typebox.TString;
2529
- lockoutMinutes: _$typebox.TNumber;
2524
+ readonly accountLockout: import("alepha/api/notifications").NotificationPrimitive<import("typebox").TObject<{
2525
+ email: import("typebox").TString;
2526
+ lockoutMinutes: import("typebox").TNumber;
2530
2527
  }>>;
2531
- readonly emailVerificationLink: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
2532
- email: _$typebox.TString;
2533
- verifyUrl: _$typebox.TString;
2534
- expiresInMinutes: _$typebox.TNumber;
2528
+ readonly emailVerificationLink: import("alepha/api/notifications").NotificationPrimitive<import("typebox").TObject<{
2529
+ email: import("typebox").TString;
2530
+ verifyUrl: import("typebox").TString;
2531
+ expiresInMinutes: import("typebox").TNumber;
2535
2532
  }>>;
2536
2533
  }
2537
2534
  //#endregion
2538
2535
  //#region ../../src/api/users/schemas/createUserSchema.d.ts
2539
- declare const createUserSchema: _$typebox.TObject<{
2540
- email: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2541
- id: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>>;
2542
- createdAt: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>>;
2543
- organizationId: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>>;
2544
- phoneNumber: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2545
- version: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>>;
2546
- updatedAt: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>>;
2547
- username: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2548
- roles: _$typebox.TOptional<PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>>;
2549
- firstName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2550
- lastName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2551
- picture: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2552
- enabled: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
2553
- emailVerified: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
2536
+ declare const createUserSchema: import("typebox").TObject<{
2537
+ enabled: import("typebox").TOptional<PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>>;
2538
+ email: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2539
+ phoneNumber: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2540
+ id: import("typebox").TOptional<PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>>;
2541
+ version: import("typebox").TOptional<PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>>;
2542
+ createdAt: import("typebox").TOptional<PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>>;
2543
+ updatedAt: import("typebox").TOptional<PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>>;
2544
+ username: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2545
+ roles: import("typebox").TOptional<PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>>;
2546
+ firstName: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2547
+ lastName: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2548
+ picture: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2549
+ emailVerified: import("typebox").TOptional<PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>>;
2550
+ lastLoginAt: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2551
+ organizationId: import("typebox").TOptional<PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>>;
2554
2552
  }>;
2555
2553
  type CreateUser = Static<typeof createUserSchema>;
2556
2554
  //#endregion
2557
2555
  //#region ../../src/api/users/schemas/updateUserSchema.d.ts
2558
- declare const updateUserSchema: _$typebox.TObject<{
2559
- email: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2560
- organizationId: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>>;
2561
- phoneNumber: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2562
- realm: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_DEFAULT>>;
2563
- roles: _$typebox.TOptional<PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>>;
2564
- firstName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2565
- lastName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2566
- picture: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2567
- enabled: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
2556
+ declare const updateUserSchema: import("typebox").TObject<{
2557
+ enabled: import("typebox").TOptional<PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>>;
2558
+ email: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2559
+ phoneNumber: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2560
+ realm: import("typebox").TOptional<PgAttr<import("typebox").TString, typeof PG_DEFAULT>>;
2561
+ username: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2562
+ roles: import("typebox").TOptional<PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>>;
2563
+ firstName: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2564
+ lastName: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2565
+ picture: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2566
+ emailVerified: import("typebox").TOptional<PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>>;
2567
+ lastLoginAt: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2568
+ organizationId: import("typebox").TOptional<PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>>;
2568
2569
  }>;
2569
2570
  type UpdateUser = Static<typeof updateUserSchema>;
2570
2571
  //#endregion
2571
2572
  //#region ../../src/api/users/schemas/userQuerySchema.d.ts
2572
- declare const userQuerySchema: _$typebox.TObject<{
2573
- page: _$typebox.TOptional<_$typebox.TInteger>;
2574
- size: _$typebox.TOptional<_$typebox.TInteger>;
2575
- sort: _$typebox.TOptional<_$typebox.TString>;
2576
- email: _$typebox.TOptional<_$typebox.TString>;
2577
- enabled: _$typebox.TOptional<_$typebox.TBoolean>;
2578
- emailVerified: _$typebox.TOptional<_$typebox.TBoolean>;
2579
- roles: _$typebox.TOptional<_$typebox.TArray<_$typebox.TString>>;
2573
+ declare const userQuerySchema: import("typebox").TObject<{
2574
+ page: import("typebox").TOptional<import("typebox").TInteger>;
2575
+ size: import("typebox").TOptional<import("typebox").TInteger>;
2576
+ sort: import("typebox").TOptional<import("typebox").TString>;
2577
+ search: import("typebox").TOptional<import("typebox").TString>;
2578
+ email: import("typebox").TOptional<import("typebox").TString>;
2579
+ enabled: import("typebox").TOptional<import("typebox").TBoolean>;
2580
+ emailVerified: import("typebox").TOptional<import("typebox").TBoolean>;
2581
+ roles: import("typebox").TOptional<import("typebox").TArray<import("typebox").TString>>;
2580
2582
  }>;
2581
2583
  type UserQuery = Static<typeof userQuerySchema>;
2582
2584
  //#endregion
2583
2585
  //#region ../../src/api/users/services/UserService.d.ts
2584
2586
  declare class UserService {
2585
2587
  protected readonly alepha: Alepha;
2586
- protected readonly log: _$alepha_logger0.Logger;
2587
- protected readonly verificationController: _$alepha_server_links0.HttpVirtualClient<VerificationController>;
2588
+ protected readonly log: import("alepha/logger").Logger;
2589
+ protected readonly verificationController: import("alepha/server/links").HttpVirtualClient<VerificationController>;
2588
2590
  protected readonly realmProvider: RealmProvider;
2591
+ protected readonly cryptoProvider: CryptoProvider;
2589
2592
  protected userAudits(realmName?: string): UserAudits | undefined;
2590
2593
  protected userNotifications(realmName?: string): UserNotifications | undefined;
2591
- users(userRealmName?: string): _$alepha_orm0.Repository<_$typebox.TObject<{
2592
- id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
2593
- version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
2594
- createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2595
- updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
2596
- realm: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_DEFAULT>;
2597
- username: _$typebox.TOptional<_$typebox.TString>;
2598
- email: _$typebox.TOptional<_$typebox.TString>;
2599
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
2600
- roles: _$alepha_orm0.PgAttr<_$typebox.TArray<_$typebox.TString>, typeof _$alepha_orm0.PG_DEFAULT>;
2601
- firstName: _$typebox.TOptional<_$typebox.TString>;
2602
- lastName: _$typebox.TOptional<_$typebox.TString>;
2603
- picture: _$typebox.TOptional<_$typebox.TString>;
2604
- enabled: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
2605
- emailVerified: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
2606
- organizationId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_ORGANIZATION>;
2594
+ users(userRealmName?: string): import("alepha/orm").Repository<import("typebox").TObject<{
2595
+ id: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_PRIMARY_KEY>, typeof import("alepha/orm").PG_DEFAULT>;
2596
+ version: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TInteger, typeof import("alepha/orm").PG_VERSION>, typeof import("alepha/orm").PG_DEFAULT>;
2597
+ createdAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_CREATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2598
+ updatedAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_UPDATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
2599
+ realm: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_DEFAULT>;
2600
+ username: import("typebox").TOptional<import("typebox").TString>;
2601
+ email: import("typebox").TOptional<import("typebox").TString>;
2602
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
2603
+ roles: import("alepha/orm").PgAttr<import("typebox").TArray<import("typebox").TString>, typeof import("alepha/orm").PG_DEFAULT>;
2604
+ firstName: import("typebox").TOptional<import("typebox").TString>;
2605
+ lastName: import("typebox").TOptional<import("typebox").TString>;
2606
+ picture: import("typebox").TOptional<import("typebox").TString>;
2607
+ enabled: import("alepha/orm").PgAttr<import("typebox").TBoolean, typeof import("alepha/orm").PG_DEFAULT>;
2608
+ emailVerified: import("alepha/orm").PgAttr<import("typebox").TBoolean, typeof import("alepha/orm").PG_DEFAULT>;
2609
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
2610
+ organizationId: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_ORGANIZATION>;
2607
2611
  }>>;
2608
2612
  /**
2609
2613
  * Request email verification for a user.
@@ -2638,6 +2642,13 @@ declare class UserService {
2638
2642
  * Update an existing user.
2639
2643
  */
2640
2644
  updateUser(id: string, data: UpdateUser, userRealmName?: string): Promise<UserEntity>;
2645
+ /**
2646
+ * Set (or reset) a user's password. Upserts a "credentials" identity
2647
+ * with the new hash. Used by admin password-set flows; does NOT
2648
+ * verify any old password or token — the caller is responsible for
2649
+ * authorization.
2650
+ */
2651
+ setPassword(id: string, newPassword: string, userRealmName?: string): Promise<void>;
2641
2652
  /**
2642
2653
  * Delete a user by ID.
2643
2654
  */
@@ -2649,160 +2660,205 @@ declare class AdminUserController {
2649
2660
  protected readonly url = "/users";
2650
2661
  protected readonly group = "admin:users";
2651
2662
  protected readonly userService: UserService;
2663
+ protected readonly securityProvider: SecurityProvider;
2664
+ /**
2665
+ * List roles available in a realm. Used by the admin UI to render the
2666
+ * role picker and grey out defaults (which cannot be removed).
2667
+ */
2668
+ readonly findRoles: import("alepha/server").ActionPrimitiveFn<{
2669
+ query: import("typebox").TObject<{
2670
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2671
+ }>;
2672
+ response: import("typebox").TArray<import("typebox").TObject<{
2673
+ name: import("typebox").TString;
2674
+ default: import("typebox").TOptional<import("typebox").TBoolean>;
2675
+ description: import("typebox").TOptional<import("typebox").TString>;
2676
+ }>>;
2677
+ }>;
2652
2678
  /**
2653
2679
  * Find users with pagination and filtering.
2654
2680
  */
2655
- readonly findUsers: _$alepha_server0.ActionPrimitiveFn<{
2656
- query: _$typebox.TObject<{
2657
- page: _$typebox.TOptional<_$typebox.TInteger>;
2658
- size: _$typebox.TOptional<_$typebox.TInteger>;
2659
- sort: _$typebox.TOptional<_$typebox.TString>;
2660
- email: _$typebox.TOptional<_$typebox.TString>;
2661
- enabled: _$typebox.TOptional<_$typebox.TBoolean>;
2662
- emailVerified: _$typebox.TOptional<_$typebox.TBoolean>;
2663
- roles: _$typebox.TOptional<_$typebox.TArray<_$typebox.TString>>;
2664
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2665
- }>;
2666
- response: _$alepha.TPage<_$typebox.TObject<{
2667
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2668
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2669
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2670
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2671
- realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
2672
- username: _$typebox.TOptional<_$typebox.TString>;
2673
- email: _$typebox.TOptional<_$typebox.TString>;
2674
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
2675
- roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
2676
- firstName: _$typebox.TOptional<_$typebox.TString>;
2677
- lastName: _$typebox.TOptional<_$typebox.TString>;
2678
- picture: _$typebox.TOptional<_$typebox.TString>;
2679
- enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
2680
- emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
2681
- organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
2681
+ readonly findUsers: import("alepha/server").ActionPrimitiveFn<{
2682
+ query: import("typebox").TObject<{
2683
+ page: import("typebox").TOptional<import("typebox").TInteger>;
2684
+ size: import("typebox").TOptional<import("typebox").TInteger>;
2685
+ sort: import("typebox").TOptional<import("typebox").TString>;
2686
+ search: import("typebox").TOptional<import("typebox").TString>;
2687
+ email: import("typebox").TOptional<import("typebox").TString>;
2688
+ enabled: import("typebox").TOptional<import("typebox").TBoolean>;
2689
+ emailVerified: import("typebox").TOptional<import("typebox").TBoolean>;
2690
+ roles: import("typebox").TOptional<import("typebox").TArray<import("typebox").TString>>;
2691
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2692
+ }>;
2693
+ response: import("alepha").TPage<import("typebox").TObject<{
2694
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2695
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2696
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2697
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2698
+ realm: PgAttr<import("typebox").TString, typeof PG_DEFAULT>;
2699
+ username: import("typebox").TOptional<import("typebox").TString>;
2700
+ email: import("typebox").TOptional<import("typebox").TString>;
2701
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
2702
+ roles: PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>;
2703
+ firstName: import("typebox").TOptional<import("typebox").TString>;
2704
+ lastName: import("typebox").TOptional<import("typebox").TString>;
2705
+ picture: import("typebox").TOptional<import("typebox").TString>;
2706
+ enabled: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
2707
+ emailVerified: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
2708
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
2709
+ organizationId: PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>;
2682
2710
  }>>;
2683
2711
  }>;
2684
2712
  /**
2685
2713
  * Get a user by ID.
2686
2714
  */
2687
- readonly getUser: _$alepha_server0.ActionPrimitiveFn<{
2688
- params: _$typebox.TObject<{
2689
- id: _$typebox.TString;
2690
- }>;
2691
- query: _$typebox.TObject<{
2692
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2693
- }>;
2694
- response: _$typebox.TObject<{
2695
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2696
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2697
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2698
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2699
- realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
2700
- username: _$typebox.TOptional<_$typebox.TString>;
2701
- email: _$typebox.TOptional<_$typebox.TString>;
2702
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
2703
- roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
2704
- firstName: _$typebox.TOptional<_$typebox.TString>;
2705
- lastName: _$typebox.TOptional<_$typebox.TString>;
2706
- picture: _$typebox.TOptional<_$typebox.TString>;
2707
- enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
2708
- emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
2709
- organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
2715
+ readonly getUser: import("alepha/server").ActionPrimitiveFn<{
2716
+ params: import("typebox").TObject<{
2717
+ id: import("typebox").TString;
2718
+ }>;
2719
+ query: import("typebox").TObject<{
2720
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2721
+ }>;
2722
+ response: import("typebox").TObject<{
2723
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2724
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2725
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2726
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2727
+ realm: PgAttr<import("typebox").TString, typeof PG_DEFAULT>;
2728
+ username: import("typebox").TOptional<import("typebox").TString>;
2729
+ email: import("typebox").TOptional<import("typebox").TString>;
2730
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
2731
+ roles: PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>;
2732
+ firstName: import("typebox").TOptional<import("typebox").TString>;
2733
+ lastName: import("typebox").TOptional<import("typebox").TString>;
2734
+ picture: import("typebox").TOptional<import("typebox").TString>;
2735
+ enabled: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
2736
+ emailVerified: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
2737
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
2738
+ organizationId: PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>;
2710
2739
  }>;
2711
2740
  }>;
2712
2741
  /**
2713
2742
  * Create a new user.
2714
2743
  */
2715
- readonly createUser: _$alepha_server0.ActionPrimitiveFn<{
2716
- query: _$typebox.TObject<{
2717
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2718
- }>;
2719
- body: _$typebox.TObject<{
2720
- email: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2721
- id: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>>;
2722
- createdAt: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>>;
2723
- organizationId: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>>;
2724
- phoneNumber: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2725
- version: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>>;
2726
- updatedAt: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>>;
2727
- username: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2728
- roles: _$typebox.TOptional<PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>>;
2729
- firstName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2730
- lastName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2731
- picture: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2732
- enabled: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
2733
- emailVerified: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
2734
- }>;
2735
- response: _$typebox.TObject<{
2736
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2737
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2738
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2739
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2740
- realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
2741
- username: _$typebox.TOptional<_$typebox.TString>;
2742
- email: _$typebox.TOptional<_$typebox.TString>;
2743
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
2744
- roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
2745
- firstName: _$typebox.TOptional<_$typebox.TString>;
2746
- lastName: _$typebox.TOptional<_$typebox.TString>;
2747
- picture: _$typebox.TOptional<_$typebox.TString>;
2748
- enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
2749
- emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
2750
- organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
2744
+ readonly createUser: import("alepha/server").ActionPrimitiveFn<{
2745
+ query: import("typebox").TObject<{
2746
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2747
+ }>;
2748
+ body: import("typebox").TObject<{
2749
+ enabled: import("typebox").TOptional<PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>>;
2750
+ email: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2751
+ phoneNumber: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2752
+ id: import("typebox").TOptional<PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>>;
2753
+ version: import("typebox").TOptional<PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>>;
2754
+ createdAt: import("typebox").TOptional<PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>>;
2755
+ updatedAt: import("typebox").TOptional<PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>>;
2756
+ username: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2757
+ roles: import("typebox").TOptional<PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>>;
2758
+ firstName: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2759
+ lastName: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2760
+ picture: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2761
+ emailVerified: import("typebox").TOptional<PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>>;
2762
+ lastLoginAt: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2763
+ organizationId: import("typebox").TOptional<PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>>;
2764
+ }>;
2765
+ response: import("typebox").TObject<{
2766
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2767
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2768
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2769
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2770
+ realm: PgAttr<import("typebox").TString, typeof PG_DEFAULT>;
2771
+ username: import("typebox").TOptional<import("typebox").TString>;
2772
+ email: import("typebox").TOptional<import("typebox").TString>;
2773
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
2774
+ roles: PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>;
2775
+ firstName: import("typebox").TOptional<import("typebox").TString>;
2776
+ lastName: import("typebox").TOptional<import("typebox").TString>;
2777
+ picture: import("typebox").TOptional<import("typebox").TString>;
2778
+ enabled: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
2779
+ emailVerified: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
2780
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
2781
+ organizationId: PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>;
2751
2782
  }>;
2752
2783
  }>;
2753
2784
  /**
2754
2785
  * Update a user.
2755
2786
  */
2756
- readonly updateUser: _$alepha_server0.ActionPrimitiveFn<{
2757
- params: _$typebox.TObject<{
2758
- id: _$typebox.TString;
2759
- }>;
2760
- query: _$typebox.TObject<{
2761
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2762
- }>;
2763
- body: _$typebox.TObject<{
2764
- email: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2765
- organizationId: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>>;
2766
- phoneNumber: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2767
- realm: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_DEFAULT>>;
2768
- roles: _$typebox.TOptional<PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>>;
2769
- firstName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2770
- lastName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2771
- picture: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
2772
- enabled: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
2773
- }>;
2774
- response: _$typebox.TObject<{
2775
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2776
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2777
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2778
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2779
- realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
2780
- username: _$typebox.TOptional<_$typebox.TString>;
2781
- email: _$typebox.TOptional<_$typebox.TString>;
2782
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
2783
- roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
2784
- firstName: _$typebox.TOptional<_$typebox.TString>;
2785
- lastName: _$typebox.TOptional<_$typebox.TString>;
2786
- picture: _$typebox.TOptional<_$typebox.TString>;
2787
- enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
2788
- emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
2789
- organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
2787
+ readonly updateUser: import("alepha/server").ActionPrimitiveFn<{
2788
+ params: import("typebox").TObject<{
2789
+ id: import("typebox").TString;
2790
+ }>;
2791
+ query: import("typebox").TObject<{
2792
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2793
+ }>;
2794
+ body: import("typebox").TObject<{
2795
+ enabled: import("typebox").TOptional<PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>>;
2796
+ email: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2797
+ phoneNumber: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2798
+ realm: import("typebox").TOptional<PgAttr<import("typebox").TString, typeof PG_DEFAULT>>;
2799
+ username: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2800
+ roles: import("typebox").TOptional<PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>>;
2801
+ firstName: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2802
+ lastName: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2803
+ picture: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2804
+ emailVerified: import("typebox").TOptional<PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>>;
2805
+ lastLoginAt: import("typebox").TOptional<import("typebox").TOptional<import("typebox").TString>>;
2806
+ organizationId: import("typebox").TOptional<PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>>;
2807
+ }>;
2808
+ response: import("typebox").TObject<{
2809
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2810
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2811
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2812
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2813
+ realm: PgAttr<import("typebox").TString, typeof PG_DEFAULT>;
2814
+ username: import("typebox").TOptional<import("typebox").TString>;
2815
+ email: import("typebox").TOptional<import("typebox").TString>;
2816
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
2817
+ roles: PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>;
2818
+ firstName: import("typebox").TOptional<import("typebox").TString>;
2819
+ lastName: import("typebox").TOptional<import("typebox").TString>;
2820
+ picture: import("typebox").TOptional<import("typebox").TString>;
2821
+ enabled: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
2822
+ emailVerified: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
2823
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
2824
+ organizationId: PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>;
2825
+ }>;
2826
+ }>;
2827
+ /**
2828
+ * Set (or reset) a user's password. Admin-only flow — does NOT
2829
+ * require knowing the previous password. Hash is stored as a
2830
+ * "credentials" identity for the user (upsert).
2831
+ */
2832
+ readonly setUserPassword: import("alepha/server").ActionPrimitiveFn<{
2833
+ params: import("typebox").TObject<{
2834
+ id: import("typebox").TString;
2835
+ }>;
2836
+ query: import("typebox").TObject<{
2837
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2838
+ }>;
2839
+ body: import("typebox").TObject<{
2840
+ password: import("typebox").TString;
2841
+ }>;
2842
+ response: import("typebox").TObject<{
2843
+ ok: import("typebox").TBoolean;
2844
+ id: import("typebox").TOptional<import("typebox").TUnion<[import("typebox").TString, import("typebox").TInteger]>>;
2845
+ count: import("typebox").TOptional<import("typebox").TNumber>;
2790
2846
  }>;
2791
2847
  }>;
2792
2848
  /**
2793
2849
  * Delete a user.
2794
2850
  */
2795
- readonly deleteUser: _$alepha_server0.ActionPrimitiveFn<{
2796
- params: _$typebox.TObject<{
2797
- id: _$typebox.TString;
2851
+ readonly deleteUser: import("alepha/server").ActionPrimitiveFn<{
2852
+ params: import("typebox").TObject<{
2853
+ id: import("typebox").TString;
2798
2854
  }>;
2799
- query: _$typebox.TObject<{
2800
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2855
+ query: import("typebox").TObject<{
2856
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2801
2857
  }>;
2802
- response: _$typebox.TObject<{
2803
- ok: _$typebox.TBoolean;
2804
- id: _$typebox.TOptional<_$typebox.TUnion<[_$typebox.TString, _$typebox.TInteger]>>;
2805
- count: _$typebox.TOptional<_$typebox.TNumber>;
2858
+ response: import("typebox").TObject<{
2859
+ ok: import("typebox").TBoolean;
2860
+ id: import("typebox").TOptional<import("typebox").TUnion<[import("typebox").TString, import("typebox").TInteger]>>;
2861
+ count: import("typebox").TOptional<import("typebox").TNumber>;
2806
2862
  }>;
2807
2863
  }>;
2808
2864
  /**
@@ -2810,15 +2866,15 @@ declare class AdminUserController {
2810
2866
  * cascades and side-effects run as if called one-by-one. Errors on a single
2811
2867
  * id surface with that id in the response.
2812
2868
  */
2813
- readonly deleteUsers: _$alepha_server0.ActionPrimitiveFn<{
2814
- query: _$typebox.TObject<{
2815
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
2869
+ readonly deleteUsers: import("alepha/server").ActionPrimitiveFn<{
2870
+ query: import("typebox").TObject<{
2871
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
2816
2872
  }>;
2817
- body: _$typebox.TObject<{
2818
- ids: _$typebox.TArray<_$typebox.TString>;
2873
+ body: import("typebox").TObject<{
2874
+ ids: import("typebox").TArray<import("typebox").TString>;
2819
2875
  }>;
2820
- response: _$typebox.TObject<{
2821
- deleted: _$typebox.TArray<_$typebox.TString>;
2876
+ response: import("typebox").TObject<{
2877
+ deleted: import("typebox").TArray<import("typebox").TString>;
2822
2878
  }>;
2823
2879
  }>;
2824
2880
  }
@@ -2838,64 +2894,68 @@ declare class RealmController {
2838
2894
  * Get realm configuration settings.
2839
2895
  * This endpoint is not exposed in the API documentation.
2840
2896
  */
2841
- readonly getRealmConfig: _$alepha_server0.ActionPrimitiveFn<{
2842
- query: _$typebox.TObject<{
2843
- realmName: _$typebox.TOptional<_$typebox.TString>;
2844
- }>;
2845
- response: _$typebox.TObject<{
2846
- settings: _$typebox.TObject<{
2847
- displayName: _$typebox.TOptional<_$typebox.TString>;
2848
- description: _$typebox.TOptional<_$typebox.TString>;
2849
- logoUrl: _$typebox.TOptional<_$typebox.TString>;
2850
- registrationAllowed: _$typebox.TBoolean;
2851
- email: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
2852
- username: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">, _$typebox.TLiteral<"email">]>;
2853
- usernameRegExp: _$typebox.TString;
2854
- usernameBlocklist: _$typebox.TArray<_$typebox.TString>;
2855
- phoneNumber: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
2856
- verifyEmailRequired: _$typebox.TBoolean;
2857
- verifyPhoneRequired: _$typebox.TBoolean;
2858
- firstNameLastName: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
2859
- resetPasswordAllowed: _$typebox.TBoolean;
2860
- captchaRequired: _$typebox.TBoolean;
2861
- adminEmails: _$typebox.TArray<_$typebox.TString>;
2862
- adminUsernames: _$typebox.TArray<_$typebox.TString>;
2863
- defaultRoles: _$typebox.TArray<_$typebox.TString>;
2864
- verifyEmailUrl: _$typebox.TOptional<_$typebox.TString>;
2865
- passwordPolicy: _$typebox.TObject<{
2866
- minLength: _$typebox.TInteger;
2867
- requireUppercase: _$typebox.TBoolean;
2868
- requireLowercase: _$typebox.TBoolean;
2869
- requireNumbers: _$typebox.TBoolean;
2870
- requireSpecialCharacters: _$typebox.TBoolean;
2897
+ readonly getRealmConfig: import("alepha/server").ActionPrimitiveFn<{
2898
+ query: import("typebox").TObject<{
2899
+ realmName: import("typebox").TOptional<import("typebox").TString>;
2900
+ }>;
2901
+ response: import("typebox").TObject<{
2902
+ settings: import("typebox").TObject<{
2903
+ displayName: import("typebox").TOptional<import("typebox").TString>;
2904
+ description: import("typebox").TOptional<import("typebox").TString>;
2905
+ logoUrl: import("typebox").TOptional<import("typebox").TString>;
2906
+ registrationAllowed: import("typebox").TBoolean;
2907
+ email: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">]>;
2908
+ username: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">, import("typebox").TLiteral<"email">]>;
2909
+ usernameRegExp: import("typebox").TString;
2910
+ usernameBlocklist: import("typebox").TArray<import("typebox").TString>;
2911
+ phoneNumber: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">]>;
2912
+ verifyEmailRequired: import("typebox").TBoolean;
2913
+ verifyPhoneRequired: import("typebox").TBoolean;
2914
+ firstNameLastName: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">]>;
2915
+ resetPasswordAllowed: import("typebox").TBoolean;
2916
+ captchaRequired: import("typebox").TBoolean;
2917
+ adminEmails: import("typebox").TArray<import("typebox").TString>;
2918
+ adminUsernames: import("typebox").TArray<import("typebox").TString>;
2919
+ defaultRoles: import("typebox").TArray<import("typebox").TString>;
2920
+ verifyEmailUrl: import("typebox").TOptional<import("typebox").TString>;
2921
+ passwordPolicy: import("typebox").TObject<{
2922
+ minLength: import("typebox").TInteger;
2923
+ requireUppercase: import("typebox").TBoolean;
2924
+ requireLowercase: import("typebox").TBoolean;
2925
+ requireNumbers: import("typebox").TBoolean;
2926
+ requireSpecialCharacters: import("typebox").TBoolean;
2871
2927
  }>;
2872
- loginRateLimit: _$typebox.TObject<{
2873
- ipMaxAttempts: _$typebox.TInteger;
2874
- accountMaxAttempts: _$typebox.TInteger;
2875
- windowMs: _$typebox.TInteger;
2928
+ loginRateLimit: import("typebox").TObject<{
2929
+ ipMaxAttempts: import("typebox").TInteger;
2930
+ accountMaxAttempts: import("typebox").TInteger;
2931
+ windowMs: import("typebox").TInteger;
2876
2932
  }>;
2877
- registrationIpMaxAttempts: _$typebox.TInteger;
2878
- refreshToken: _$typebox.TObject<{
2879
- expirationIdle: _$typebox.TOptional<_$typebox.TInteger>;
2933
+ registrationIpMaxAttempts: import("typebox").TInteger;
2934
+ refreshToken: import("typebox").TObject<{
2935
+ expirationIdle: import("typebox").TOptional<import("typebox").TInteger>;
2880
2936
  }>;
2881
2937
  }>;
2882
- realmName: _$typebox.TString;
2883
- authenticationMethods: _$typebox.TArray<_$typebox.TObject<{
2884
- name: _$typebox.TString;
2885
- type: _$typebox.TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
2938
+ realmName: import("typebox").TString;
2939
+ authenticationMethods: import("typebox").TArray<import("typebox").TObject<{
2940
+ name: import("typebox").TString;
2941
+ type: import("typebox").TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
2942
+ }>>;
2943
+ captchaSiteKey: import("typebox").TOptional<import("typebox").TString>;
2944
+ federated: import("typebox").TOptional<import("typebox").TObject<{
2945
+ brokerUrl: import("typebox").TString;
2946
+ providers: import("typebox").TArray<import("typebox").TUnion<[import("typebox").TLiteral<"google">, import("typebox").TLiteral<"apple">]>>;
2886
2947
  }>>;
2887
- captchaSiteKey: _$typebox.TOptional<_$typebox.TString>;
2888
2948
  }>;
2889
2949
  }>;
2890
- readonly checkUsernameAvailability: _$alepha_server0.ActionPrimitiveFn<{
2891
- query: _$typebox.TObject<{
2892
- realmName: _$typebox.TOptional<_$typebox.TString>;
2950
+ readonly checkUsernameAvailability: import("alepha/server").ActionPrimitiveFn<{
2951
+ query: import("typebox").TObject<{
2952
+ realmName: import("typebox").TOptional<import("typebox").TString>;
2893
2953
  }>;
2894
- body: _$typebox.TObject<{
2895
- username: _$typebox.TString;
2954
+ body: import("typebox").TObject<{
2955
+ username: import("typebox").TString;
2896
2956
  }>;
2897
- response: _$typebox.TObject<{
2898
- available: _$typebox.TBoolean;
2957
+ response: import("typebox").TObject<{
2958
+ available: import("typebox").TBoolean;
2899
2959
  }>;
2900
2960
  }>;
2901
2961
  }
@@ -2907,10 +2967,10 @@ declare class RealmController {
2907
2967
  * Requires the intent ID from Phase 1, the verification code,
2908
2968
  * and the new password.
2909
2969
  */
2910
- declare const completePasswordResetRequestSchema: _$typebox.TObject<{
2911
- intentId: _$typebox.TString;
2912
- code: _$typebox.TString;
2913
- newPassword: _$typebox.TString;
2970
+ declare const completePasswordResetRequestSchema: import("typebox").TObject<{
2971
+ intentId: import("typebox").TString;
2972
+ code: import("typebox").TString;
2973
+ newPassword: import("typebox").TString;
2914
2974
  }>;
2915
2975
  type CompletePasswordResetRequest = Static<typeof completePasswordResetRequestSchema>;
2916
2976
  //#endregion
@@ -2921,9 +2981,9 @@ type CompletePasswordResetRequest = Static<typeof completePasswordResetRequestSc
2921
2981
  * Contains the intent ID needed for Phase 2 completion,
2922
2982
  * along with expiration time.
2923
2983
  */
2924
- declare const passwordResetIntentResponseSchema: _$typebox.TObject<{
2925
- intentId: _$typebox.TString;
2926
- expiresAt: _$typebox.TString;
2984
+ declare const passwordResetIntentResponseSchema: import("typebox").TObject<{
2985
+ intentId: import("typebox").TString;
2986
+ expiresAt: import("typebox").TString;
2927
2987
  }>;
2928
2988
  type PasswordResetIntentResponse = Static<typeof passwordResetIntentResponseSchema>;
2929
2989
  //#endregion
@@ -2940,58 +3000,61 @@ interface PasswordResetIntent {
2940
3000
  }
2941
3001
  declare class CredentialService {
2942
3002
  protected readonly alepha: Alepha;
2943
- protected readonly log: _$alepha_logger0.Logger;
3003
+ protected readonly log: import("alepha/logger").Logger;
2944
3004
  protected readonly cryptoProvider: CryptoProvider;
2945
3005
  protected readonly dateTimeProvider: DateTimeProvider;
2946
3006
  protected readonly verificationService: VerificationService;
2947
3007
  protected readonly realmProvider: RealmProvider;
2948
3008
  protected userAudits(realmName?: string): UserAudits | undefined;
3009
+ protected sessionAudits(realmName?: string): SessionAudits | undefined;
2949
3010
  protected userNotifications(realmName?: string): UserNotifications | undefined;
2950
- protected readonly intentCache: _$alepha_cache0.CacheMiddlewareFn<PasswordResetIntent>;
2951
- users(userRealmName?: string): Repository$1<_$typebox.TObject<{
2952
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2953
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2954
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2955
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2956
- realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
2957
- username: _$typebox.TOptional<_$typebox.TString>;
2958
- email: _$typebox.TOptional<_$typebox.TString>;
2959
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
2960
- roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
2961
- firstName: _$typebox.TOptional<_$typebox.TString>;
2962
- lastName: _$typebox.TOptional<_$typebox.TString>;
2963
- picture: _$typebox.TOptional<_$typebox.TString>;
2964
- enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
2965
- emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
2966
- organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
3011
+ protected readonly intentCache: import("alepha/cache").CacheMiddlewareFn<PasswordResetIntent>;
3012
+ users(userRealmName?: string): Repository$1<import("typebox").TObject<{
3013
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3014
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3015
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3016
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3017
+ realm: PgAttr<import("typebox").TString, typeof PG_DEFAULT>;
3018
+ username: import("typebox").TOptional<import("typebox").TString>;
3019
+ email: import("typebox").TOptional<import("typebox").TString>;
3020
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
3021
+ roles: PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>;
3022
+ firstName: import("typebox").TOptional<import("typebox").TString>;
3023
+ lastName: import("typebox").TOptional<import("typebox").TString>;
3024
+ picture: import("typebox").TOptional<import("typebox").TString>;
3025
+ enabled: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3026
+ emailVerified: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3027
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
3028
+ organizationId: PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>;
2967
3029
  }>>;
2968
- sessions(userRealmName?: string): Repository$1<_$typebox.TObject<{
2969
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2970
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2971
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2972
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2973
- refreshToken: _$typebox.TString;
2974
- userId: PgAttr<_$typebox.TString, typeof PG_REF>;
2975
- clientId: _$typebox.TOptional<_$typebox.TString>;
2976
- expiresAt: _$typebox.TString;
2977
- lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
2978
- ip: _$typebox.TOptional<_$typebox.TString>;
2979
- userAgent: _$typebox.TOptional<_$typebox.TObject<{
2980
- os: _$typebox.TString;
2981
- browser: _$typebox.TString;
2982
- device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
3030
+ sessions(userRealmName?: string): Repository$1<import("typebox").TObject<{
3031
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3032
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3033
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3034
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3035
+ refreshToken: import("typebox").TString;
3036
+ userId: PgAttr<import("typebox").TString, typeof PG_REF>;
3037
+ clientId: import("typebox").TOptional<import("typebox").TString>;
3038
+ expiresAt: import("typebox").TString;
3039
+ lastUsedAt: import("typebox").TOptional<import("typebox").TString>;
3040
+ ip: import("typebox").TOptional<import("typebox").TString>;
3041
+ country: import("typebox").TOptional<import("typebox").TString>;
3042
+ userAgent: import("typebox").TOptional<import("typebox").TObject<{
3043
+ os: import("typebox").TString;
3044
+ browser: import("typebox").TString;
3045
+ device: import("typebox").TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
2983
3046
  }>>;
2984
3047
  }>>;
2985
- identities(userRealmName?: string): Repository$1<_$typebox.TObject<{
2986
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
2987
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
2988
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
2989
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
2990
- userId: PgAttr<_$typebox.TString, typeof PG_REF>;
2991
- password: _$typebox.TOptional<_$typebox.TString>;
2992
- provider: _$typebox.TString;
2993
- providerUserId: _$typebox.TOptional<_$typebox.TString>;
2994
- providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
3048
+ identities(userRealmName?: string): Repository$1<import("typebox").TObject<{
3049
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3050
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3051
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3052
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3053
+ userId: PgAttr<import("typebox").TString, typeof PG_REF>;
3054
+ password: import("typebox").TOptional<import("typebox").TString>;
3055
+ provider: import("typebox").TString;
3056
+ providerUserId: import("typebox").TOptional<import("typebox").TString>;
3057
+ providerData: import("typebox").TOptional<import("typebox").TRecord<string, import("typebox").TAny>>;
2995
3058
  }>>;
2996
3059
  /**
2997
3060
  * Validate a password against the realm's password policy.
@@ -3032,11 +3095,11 @@ declare class CredentialService {
3032
3095
  }
3033
3096
  //#endregion
3034
3097
  //#region ../../src/api/users/schemas/completeRegistrationRequestSchema.d.ts
3035
- declare const completeRegistrationRequestSchema: _$typebox.TObject<{
3036
- intentId: _$typebox.TString;
3037
- emailCode: _$typebox.TOptional<_$typebox.TString>;
3038
- phoneCode: _$typebox.TOptional<_$typebox.TString>;
3039
- captchaToken: _$typebox.TOptional<_$typebox.TString>;
3098
+ declare const completeRegistrationRequestSchema: import("typebox").TObject<{
3099
+ intentId: import("typebox").TString;
3100
+ emailCode: import("typebox").TOptional<import("typebox").TString>;
3101
+ phoneCode: import("typebox").TOptional<import("typebox").TString>;
3102
+ captchaToken: import("typebox").TOptional<import("typebox").TString>;
3040
3103
  }>;
3041
3104
  type CompleteRegistrationRequest = Static<typeof completeRegistrationRequestSchema>;
3042
3105
  //#endregion
@@ -3045,26 +3108,26 @@ type CompleteRegistrationRequest = Static<typeof completeRegistrationRequestSche
3045
3108
  * Schema for user registration request body.
3046
3109
  * Password is always required, other fields depend on realm settings.
3047
3110
  */
3048
- declare const registerRequestSchema: _$typebox.TObject<{
3049
- password: _$typebox.TString;
3050
- username: _$typebox.TOptional<_$typebox.TString>;
3051
- email: _$typebox.TOptional<_$typebox.TString>;
3052
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
3053
- firstName: _$typebox.TOptional<_$typebox.TString>;
3054
- lastName: _$typebox.TOptional<_$typebox.TString>;
3055
- picture: _$typebox.TOptional<_$typebox.TString>;
3056
- captchaToken: _$typebox.TOptional<_$typebox.TString>;
3111
+ declare const registerRequestSchema: import("typebox").TObject<{
3112
+ password: import("typebox").TString;
3113
+ username: import("typebox").TOptional<import("typebox").TString>;
3114
+ email: import("typebox").TOptional<import("typebox").TString>;
3115
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
3116
+ firstName: import("typebox").TOptional<import("typebox").TString>;
3117
+ lastName: import("typebox").TOptional<import("typebox").TString>;
3118
+ picture: import("typebox").TOptional<import("typebox").TString>;
3119
+ captchaToken: import("typebox").TOptional<import("typebox").TString>;
3057
3120
  }>;
3058
3121
  type RegisterRequest = Static<typeof registerRequestSchema>;
3059
3122
  //#endregion
3060
3123
  //#region ../../src/api/users/schemas/registrationIntentResponseSchema.d.ts
3061
- declare const registrationIntentResponseSchema: _$typebox.TObject<{
3062
- intentId: _$typebox.TString;
3063
- expectCaptcha: _$typebox.TBoolean;
3064
- captchaSiteKey: _$typebox.TOptional<_$typebox.TString>;
3065
- expectEmailVerification: _$typebox.TBoolean;
3066
- expectPhoneVerification: _$typebox.TBoolean;
3067
- expiresAt: _$typebox.TString;
3124
+ declare const registrationIntentResponseSchema: import("typebox").TObject<{
3125
+ intentId: import("typebox").TString;
3126
+ expectCaptcha: import("typebox").TBoolean;
3127
+ captchaSiteKey: import("typebox").TOptional<import("typebox").TString>;
3128
+ expectEmailVerification: import("typebox").TBoolean;
3129
+ expectPhoneVerification: import("typebox").TBoolean;
3130
+ expiresAt: import("typebox").TString;
3068
3131
  }>;
3069
3132
  type RegistrationIntentResponse = Static<typeof registrationIntentResponseSchema>;
3070
3133
  //#endregion
@@ -3094,7 +3157,7 @@ type RegistrationIntentResponse = Static<typeof registrationIntentResponseSchema
3094
3157
  */
3095
3158
  declare class UsernameSlugger {
3096
3159
  protected readonly realmProvider: RealmProvider;
3097
- protected readonly log: _$alepha_logger0.Logger;
3160
+ protected readonly log: import("alepha/logger").Logger;
3098
3161
  /**
3099
3162
  * Floor for derived usernames. Shorter slugs are padded with random
3100
3163
  * alphanumerics. Matches the lower bound of the default `usernameRegExp`.
@@ -3182,16 +3245,16 @@ interface RegistrationIntent {
3182
3245
  }
3183
3246
  declare class RegistrationService {
3184
3247
  protected readonly alepha: Alepha;
3185
- protected readonly log: _$alepha_logger0.Logger;
3248
+ protected readonly log: import("alepha/logger").Logger;
3186
3249
  protected readonly dateTimeProvider: DateTimeProvider;
3187
3250
  protected readonly cryptoProvider: CryptoProvider;
3188
- protected readonly verificationController: _$alepha_server_links0.HttpVirtualClient<VerificationController>;
3251
+ protected readonly verificationController: import("alepha/server/links").HttpVirtualClient<VerificationController>;
3189
3252
  protected readonly realmProvider: RealmProvider;
3190
3253
  protected readonly credentialService: CredentialService;
3191
3254
  protected readonly captchaProvider: CaptchaProvider;
3192
3255
  protected readonly usernameSlugger: UsernameSlugger;
3193
- protected readonly intentCache: _$alepha_cache0.CacheMiddlewareFn<RegistrationIntent>;
3194
- protected readonly rateLimitCache: _$alepha_cache0.CacheMiddlewareFn<number>;
3256
+ protected readonly intentCache: import("alepha/cache").CacheMiddlewareFn<RegistrationIntent>;
3257
+ protected readonly rateLimitCache: import("alepha/cache").CacheMiddlewareFn<number>;
3195
3258
  protected userAudits(realmName?: string): UserAudits | undefined;
3196
3259
  protected userNotifications(realmName?: string): UserNotifications;
3197
3260
  /**
@@ -3241,134 +3304,135 @@ declare class UserController {
3241
3304
  * Phase 1: Create a registration intent.
3242
3305
  * Validates data, creates verification sessions, and stores intent in cache.
3243
3306
  */
3244
- readonly createRegistrationIntent: _$alepha_server0.ActionPrimitiveFn<{
3245
- body: _$typebox.TObject<{
3246
- password: _$typebox.TString;
3247
- username: _$typebox.TOptional<_$typebox.TString>;
3248
- email: _$typebox.TOptional<_$typebox.TString>;
3249
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
3250
- firstName: _$typebox.TOptional<_$typebox.TString>;
3251
- lastName: _$typebox.TOptional<_$typebox.TString>;
3252
- picture: _$typebox.TOptional<_$typebox.TString>;
3253
- captchaToken: _$typebox.TOptional<_$typebox.TString>;
3254
- }>;
3255
- query: _$typebox.TObject<{
3256
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
3257
- }>;
3258
- response: _$typebox.TObject<{
3259
- intentId: _$typebox.TString;
3260
- expectCaptcha: _$typebox.TBoolean;
3261
- captchaSiteKey: _$typebox.TOptional<_$typebox.TString>;
3262
- expectEmailVerification: _$typebox.TBoolean;
3263
- expectPhoneVerification: _$typebox.TBoolean;
3264
- expiresAt: _$typebox.TString;
3307
+ readonly createRegistrationIntent: import("alepha/server").ActionPrimitiveFn<{
3308
+ body: import("typebox").TObject<{
3309
+ password: import("typebox").TString;
3310
+ username: import("typebox").TOptional<import("typebox").TString>;
3311
+ email: import("typebox").TOptional<import("typebox").TString>;
3312
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
3313
+ firstName: import("typebox").TOptional<import("typebox").TString>;
3314
+ lastName: import("typebox").TOptional<import("typebox").TString>;
3315
+ picture: import("typebox").TOptional<import("typebox").TString>;
3316
+ captchaToken: import("typebox").TOptional<import("typebox").TString>;
3317
+ }>;
3318
+ query: import("typebox").TObject<{
3319
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
3320
+ }>;
3321
+ response: import("typebox").TObject<{
3322
+ intentId: import("typebox").TString;
3323
+ expectCaptcha: import("typebox").TBoolean;
3324
+ captchaSiteKey: import("typebox").TOptional<import("typebox").TString>;
3325
+ expectEmailVerification: import("typebox").TBoolean;
3326
+ expectPhoneVerification: import("typebox").TBoolean;
3327
+ expiresAt: import("typebox").TString;
3265
3328
  }>;
3266
3329
  }>;
3267
3330
  /**
3268
3331
  * Phase 2: Complete registration using an intent.
3269
3332
  * Validates verification codes and creates the user.
3270
3333
  */
3271
- readonly createUserFromIntent: _$alepha_server0.ActionPrimitiveFn<{
3272
- body: _$typebox.TObject<{
3273
- intentId: _$typebox.TString;
3274
- emailCode: _$typebox.TOptional<_$typebox.TString>;
3275
- phoneCode: _$typebox.TOptional<_$typebox.TString>;
3276
- captchaToken: _$typebox.TOptional<_$typebox.TString>;
3277
- }>;
3278
- response: _$typebox.TObject<{
3279
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3280
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3281
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3282
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3283
- realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
3284
- username: _$typebox.TOptional<_$typebox.TString>;
3285
- email: _$typebox.TOptional<_$typebox.TString>;
3286
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
3287
- roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
3288
- firstName: _$typebox.TOptional<_$typebox.TString>;
3289
- lastName: _$typebox.TOptional<_$typebox.TString>;
3290
- picture: _$typebox.TOptional<_$typebox.TString>;
3291
- enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
3292
- emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
3293
- organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
3334
+ readonly createUserFromIntent: import("alepha/server").ActionPrimitiveFn<{
3335
+ body: import("typebox").TObject<{
3336
+ intentId: import("typebox").TString;
3337
+ emailCode: import("typebox").TOptional<import("typebox").TString>;
3338
+ phoneCode: import("typebox").TOptional<import("typebox").TString>;
3339
+ captchaToken: import("typebox").TOptional<import("typebox").TString>;
3340
+ }>;
3341
+ response: import("typebox").TObject<{
3342
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3343
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3344
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3345
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3346
+ realm: PgAttr<import("typebox").TString, typeof PG_DEFAULT>;
3347
+ username: import("typebox").TOptional<import("typebox").TString>;
3348
+ email: import("typebox").TOptional<import("typebox").TString>;
3349
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
3350
+ roles: PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>;
3351
+ firstName: import("typebox").TOptional<import("typebox").TString>;
3352
+ lastName: import("typebox").TOptional<import("typebox").TString>;
3353
+ picture: import("typebox").TOptional<import("typebox").TString>;
3354
+ enabled: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3355
+ emailVerified: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3356
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
3357
+ organizationId: PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>;
3294
3358
  }>;
3295
3359
  }>;
3296
3360
  /**
3297
3361
  * Phase 1: Create a password reset intent.
3298
3362
  * Validates email, sends verification code, and stores intent in cache.
3299
3363
  */
3300
- readonly createPasswordResetIntent: _$alepha_server0.ActionPrimitiveFn<{
3301
- query: _$typebox.TObject<{
3302
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
3364
+ readonly createPasswordResetIntent: import("alepha/server").ActionPrimitiveFn<{
3365
+ query: import("typebox").TObject<{
3366
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
3303
3367
  }>;
3304
- body: _$typebox.TObject<{
3305
- email: _$typebox.TString;
3368
+ body: import("typebox").TObject<{
3369
+ email: import("typebox").TString;
3306
3370
  }>;
3307
- response: _$typebox.TObject<{
3308
- intentId: _$typebox.TString;
3309
- expiresAt: _$typebox.TString;
3371
+ response: import("typebox").TObject<{
3372
+ intentId: import("typebox").TString;
3373
+ expiresAt: import("typebox").TString;
3310
3374
  }>;
3311
3375
  }>;
3312
3376
  /**
3313
3377
  * Phase 2: Complete password reset using an intent.
3314
3378
  * Validates verification code, updates password, and invalidates sessions.
3315
3379
  */
3316
- readonly completePasswordReset: _$alepha_server0.ActionPrimitiveFn<{
3317
- body: _$typebox.TObject<{
3318
- intentId: _$typebox.TString;
3319
- code: _$typebox.TString;
3320
- newPassword: _$typebox.TString;
3380
+ readonly completePasswordReset: import("alepha/server").ActionPrimitiveFn<{
3381
+ body: import("typebox").TObject<{
3382
+ intentId: import("typebox").TString;
3383
+ code: import("typebox").TString;
3384
+ newPassword: import("typebox").TString;
3321
3385
  }>;
3322
- response: _$typebox.TObject<{
3323
- ok: _$typebox.TBoolean;
3324
- id: _$typebox.TOptional<_$typebox.TUnion<[_$typebox.TString, _$typebox.TInteger]>>;
3325
- count: _$typebox.TOptional<_$typebox.TNumber>;
3386
+ response: import("typebox").TObject<{
3387
+ ok: import("typebox").TBoolean;
3388
+ id: import("typebox").TOptional<import("typebox").TUnion<[import("typebox").TString, import("typebox").TInteger]>>;
3389
+ count: import("typebox").TOptional<import("typebox").TNumber>;
3326
3390
  }>;
3327
3391
  }>;
3328
3392
  /**
3329
3393
  * @deprecated Use createPasswordResetIntent instead
3330
3394
  */
3331
- requestPasswordReset: _$alepha_server0.ActionPrimitiveFn<{
3332
- query: _$typebox.TObject<{
3333
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
3395
+ requestPasswordReset: import("alepha/server").ActionPrimitiveFn<{
3396
+ query: import("typebox").TObject<{
3397
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
3334
3398
  }>;
3335
- body: _$typebox.TObject<{
3336
- email: _$typebox.TString;
3399
+ body: import("typebox").TObject<{
3400
+ email: import("typebox").TString;
3337
3401
  }>;
3338
- response: _$typebox.TObject<{
3339
- success: _$typebox.TBoolean;
3340
- message: _$typebox.TString;
3402
+ response: import("typebox").TObject<{
3403
+ success: import("typebox").TBoolean;
3404
+ message: import("typebox").TString;
3341
3405
  }>;
3342
3406
  }>;
3343
3407
  /**
3344
3408
  * @deprecated Use completePasswordReset instead
3345
3409
  */
3346
- validateResetToken: _$alepha_server0.ActionPrimitiveFn<{
3347
- query: _$typebox.TObject<{
3348
- email: _$typebox.TString;
3349
- token: _$typebox.TString;
3350
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
3410
+ validateResetToken: import("alepha/server").ActionPrimitiveFn<{
3411
+ query: import("typebox").TObject<{
3412
+ email: import("typebox").TString;
3413
+ token: import("typebox").TString;
3414
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
3351
3415
  }>;
3352
- response: _$typebox.TObject<{
3353
- valid: _$typebox.TBoolean;
3354
- email: _$typebox.TOptional<_$typebox.TString>;
3416
+ response: import("typebox").TObject<{
3417
+ valid: import("typebox").TBoolean;
3418
+ email: import("typebox").TOptional<import("typebox").TString>;
3355
3419
  }>;
3356
3420
  }>;
3357
3421
  /**
3358
3422
  * @deprecated Use completePasswordReset instead
3359
3423
  */
3360
- resetPassword: _$alepha_server0.ActionPrimitiveFn<{
3361
- query: _$typebox.TObject<{
3362
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
3424
+ resetPassword: import("alepha/server").ActionPrimitiveFn<{
3425
+ query: import("typebox").TObject<{
3426
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
3363
3427
  }>;
3364
- body: _$typebox.TObject<{
3365
- email: _$typebox.TString;
3366
- token: _$typebox.TString;
3367
- newPassword: _$typebox.TString;
3428
+ body: import("typebox").TObject<{
3429
+ email: import("typebox").TString;
3430
+ token: import("typebox").TString;
3431
+ newPassword: import("typebox").TString;
3368
3432
  }>;
3369
- response: _$typebox.TObject<{
3370
- success: _$typebox.TBoolean;
3371
- message: _$typebox.TString;
3433
+ response: import("typebox").TObject<{
3434
+ success: import("typebox").TBoolean;
3435
+ message: import("typebox").TString;
3372
3436
  }>;
3373
3437
  }>;
3374
3438
  /**
@@ -3377,46 +3441,46 @@ declare class UserController {
3377
3441
  * @param method - The verification method: "code" (default) sends a 6-digit code, "link" sends a clickable verification link.
3378
3442
  * @param verifyUrl - Required when method is "link". The base URL for the verification link. Token and email will be appended as query params.
3379
3443
  */
3380
- requestEmailVerification: _$alepha_server0.ActionPrimitiveFn<{
3381
- query: _$typebox.TObject<{
3382
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
3383
- method: _$typebox.TOptional<_$typebox.TUnsafe<"link" | "code">>;
3444
+ requestEmailVerification: import("alepha/server").ActionPrimitiveFn<{
3445
+ query: import("typebox").TObject<{
3446
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
3447
+ method: import("typebox").TOptional<import("typebox").TUnsafe<"link" | "code">>;
3384
3448
  }>;
3385
- body: _$typebox.TObject<{
3386
- email: _$typebox.TString;
3449
+ body: import("typebox").TObject<{
3450
+ email: import("typebox").TString;
3387
3451
  }>;
3388
- response: _$typebox.TObject<{
3389
- success: _$typebox.TBoolean;
3390
- message: _$typebox.TString;
3452
+ response: import("typebox").TObject<{
3453
+ success: import("typebox").TBoolean;
3454
+ message: import("typebox").TString;
3391
3455
  }>;
3392
3456
  }>;
3393
3457
  /**
3394
3458
  * Verify email with a valid token.
3395
3459
  * Updates the user's emailVerified status.
3396
3460
  */
3397
- verifyEmail: _$alepha_server0.ActionPrimitiveFn<{
3398
- query: _$typebox.TObject<{
3399
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
3461
+ verifyEmail: import("alepha/server").ActionPrimitiveFn<{
3462
+ query: import("typebox").TObject<{
3463
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
3400
3464
  }>;
3401
- body: _$typebox.TObject<{
3402
- email: _$typebox.TString;
3403
- token: _$typebox.TString;
3465
+ body: import("typebox").TObject<{
3466
+ email: import("typebox").TString;
3467
+ token: import("typebox").TString;
3404
3468
  }>;
3405
- response: _$typebox.TObject<{
3406
- success: _$typebox.TBoolean;
3407
- message: _$typebox.TString;
3469
+ response: import("typebox").TObject<{
3470
+ success: import("typebox").TBoolean;
3471
+ message: import("typebox").TString;
3408
3472
  }>;
3409
3473
  }>;
3410
3474
  /**
3411
3475
  * Check if an email is verified.
3412
3476
  */
3413
- checkEmailVerification: _$alepha_server0.ActionPrimitiveFn<{
3414
- query: _$typebox.TObject<{
3415
- email: _$typebox.TString;
3416
- userRealmName: _$typebox.TOptional<_$typebox.TString>;
3477
+ checkEmailVerification: import("alepha/server").ActionPrimitiveFn<{
3478
+ query: import("typebox").TObject<{
3479
+ email: import("typebox").TString;
3480
+ userRealmName: import("typebox").TOptional<import("typebox").TString>;
3417
3481
  }>;
3418
- response: _$typebox.TObject<{
3419
- verified: _$typebox.TBoolean;
3482
+ response: import("typebox").TObject<{
3483
+ verified: import("typebox").TBoolean;
3420
3484
  }>;
3421
3485
  }>;
3422
3486
  }
@@ -3434,23 +3498,24 @@ declare class UserController {
3434
3498
  * lazily the first time something calls `alepha.inject(UserJobs)`.
3435
3499
  */
3436
3500
  declare class UserJobs {
3437
- protected readonly log: _$alepha_logger0.Logger;
3501
+ protected readonly log: import("alepha/logger").Logger;
3438
3502
  protected readonly dateTimeProvider: DateTimeProvider;
3439
- protected readonly sessionRepository: _$alepha_orm0.Repository<_$typebox.TObject<{
3440
- id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
3441
- version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
3442
- createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
3443
- updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
3444
- refreshToken: _$typebox.TString;
3445
- userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
3446
- clientId: _$typebox.TOptional<_$typebox.TString>;
3447
- expiresAt: _$typebox.TString;
3448
- lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
3449
- ip: _$typebox.TOptional<_$typebox.TString>;
3450
- userAgent: _$typebox.TOptional<_$typebox.TObject<{
3451
- os: _$typebox.TString;
3452
- browser: _$typebox.TString;
3453
- device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
3503
+ protected readonly sessionRepository: import("alepha/orm").Repository<import("typebox").TObject<{
3504
+ id: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_PRIMARY_KEY>, typeof import("alepha/orm").PG_DEFAULT>;
3505
+ version: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TInteger, typeof import("alepha/orm").PG_VERSION>, typeof import("alepha/orm").PG_DEFAULT>;
3506
+ createdAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_CREATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
3507
+ updatedAt: import("alepha/orm").PgAttr<import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_UPDATED_AT>, typeof import("alepha/orm").PG_DEFAULT>;
3508
+ refreshToken: import("typebox").TString;
3509
+ userId: import("alepha/orm").PgAttr<import("typebox").TString, typeof import("alepha/orm").PG_REF>;
3510
+ clientId: import("typebox").TOptional<import("typebox").TString>;
3511
+ expiresAt: import("typebox").TString;
3512
+ lastUsedAt: import("typebox").TOptional<import("typebox").TString>;
3513
+ ip: import("typebox").TOptional<import("typebox").TString>;
3514
+ country: import("typebox").TOptional<import("typebox").TString>;
3515
+ userAgent: import("typebox").TOptional<import("typebox").TObject<{
3516
+ os: import("typebox").TString;
3517
+ browser: import("typebox").TString;
3518
+ device: import("typebox").TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
3454
3519
  }>>;
3455
3520
  }>>;
3456
3521
  protected readonly realmProvider: RealmProvider;
@@ -3466,134 +3531,164 @@ declare class UserJobs {
3466
3531
  * The idle sweep is best-effort cleanup — runtime enforcement happens in
3467
3532
  * `SessionService.refreshSession()`.
3468
3533
  */
3469
- readonly purgeExpiredSessions: _$alepha_api_jobs0.JobPrimitive<_$typebox.TSchema>;
3534
+ readonly purgeExpiredSessions: import("alepha/api/jobs").JobPrimitive<import("typebox").TSchema>;
3470
3535
  }
3471
3536
  //#endregion
3472
3537
  //#region ../../src/api/users/schemas/identityResourceSchema.d.ts
3473
- declare const identityResourceSchema: _$typebox.TObject<{
3474
- userId: PgAttr<_$typebox.TString, typeof PG_REF>;
3475
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3476
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3477
- provider: _$typebox.TString;
3478
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3479
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3480
- providerUserId: _$typebox.TOptional<_$typebox.TString>;
3481
- providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
3538
+ declare const identityResourceSchema: import("typebox").TObject<{
3539
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3540
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3541
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3542
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3543
+ userId: PgAttr<import("typebox").TString, typeof PG_REF>;
3544
+ provider: import("typebox").TString;
3545
+ providerUserId: import("typebox").TOptional<import("typebox").TString>;
3546
+ providerData: import("typebox").TOptional<import("typebox").TRecord<string, import("typebox").TAny>>;
3482
3547
  }>;
3483
3548
  type IdentityResource = Static<typeof identityResourceSchema>;
3484
3549
  //#endregion
3485
3550
  //#region ../../src/api/users/schemas/loginSchema.d.ts
3486
- declare const loginSchema: _$typebox.TObject<{
3487
- username: _$typebox.TString;
3488
- password: _$typebox.TString;
3551
+ declare const loginSchema: import("typebox").TObject<{
3552
+ username: import("typebox").TString;
3553
+ password: import("typebox").TString;
3489
3554
  }>;
3490
3555
  type LoginInput = Static<typeof loginSchema>;
3491
3556
  //#endregion
3492
3557
  //#region ../../src/api/users/schemas/realmConfigSchema.d.ts
3493
- declare const realmConfigSchema: _$typebox.TObject<{
3494
- settings: _$typebox.TObject<{
3495
- displayName: _$typebox.TOptional<_$typebox.TString>;
3496
- description: _$typebox.TOptional<_$typebox.TString>;
3497
- logoUrl: _$typebox.TOptional<_$typebox.TString>;
3498
- registrationAllowed: _$typebox.TBoolean;
3499
- email: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
3500
- username: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">, _$typebox.TLiteral<"email">]>;
3501
- usernameRegExp: _$typebox.TString;
3502
- usernameBlocklist: _$typebox.TArray<_$typebox.TString>;
3503
- phoneNumber: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
3504
- verifyEmailRequired: _$typebox.TBoolean;
3505
- verifyPhoneRequired: _$typebox.TBoolean;
3506
- firstNameLastName: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
3507
- resetPasswordAllowed: _$typebox.TBoolean;
3508
- captchaRequired: _$typebox.TBoolean;
3509
- adminEmails: _$typebox.TArray<_$typebox.TString>;
3510
- adminUsernames: _$typebox.TArray<_$typebox.TString>;
3511
- defaultRoles: _$typebox.TArray<_$typebox.TString>;
3512
- verifyEmailUrl: _$typebox.TOptional<_$typebox.TString>;
3513
- passwordPolicy: _$typebox.TObject<{
3514
- minLength: _$typebox.TInteger;
3515
- requireUppercase: _$typebox.TBoolean;
3516
- requireLowercase: _$typebox.TBoolean;
3517
- requireNumbers: _$typebox.TBoolean;
3518
- requireSpecialCharacters: _$typebox.TBoolean;
3519
- }>;
3520
- loginRateLimit: _$typebox.TObject<{
3521
- ipMaxAttempts: _$typebox.TInteger;
3522
- accountMaxAttempts: _$typebox.TInteger;
3523
- windowMs: _$typebox.TInteger;
3524
- }>;
3525
- registrationIpMaxAttempts: _$typebox.TInteger;
3526
- refreshToken: _$typebox.TObject<{
3527
- expirationIdle: _$typebox.TOptional<_$typebox.TInteger>;
3558
+ declare const realmConfigSchema: import("typebox").TObject<{
3559
+ settings: import("typebox").TObject<{
3560
+ displayName: import("typebox").TOptional<import("typebox").TString>;
3561
+ description: import("typebox").TOptional<import("typebox").TString>;
3562
+ logoUrl: import("typebox").TOptional<import("typebox").TString>;
3563
+ registrationAllowed: import("typebox").TBoolean;
3564
+ email: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">]>;
3565
+ username: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">, import("typebox").TLiteral<"email">]>;
3566
+ usernameRegExp: import("typebox").TString;
3567
+ usernameBlocklist: import("typebox").TArray<import("typebox").TString>;
3568
+ phoneNumber: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">]>;
3569
+ verifyEmailRequired: import("typebox").TBoolean;
3570
+ verifyPhoneRequired: import("typebox").TBoolean;
3571
+ firstNameLastName: import("typebox").TUnion<[import("typebox").TLiteral<"none">, import("typebox").TLiteral<"optional">, import("typebox").TLiteral<"required">]>;
3572
+ resetPasswordAllowed: import("typebox").TBoolean;
3573
+ captchaRequired: import("typebox").TBoolean;
3574
+ adminEmails: import("typebox").TArray<import("typebox").TString>;
3575
+ adminUsernames: import("typebox").TArray<import("typebox").TString>;
3576
+ defaultRoles: import("typebox").TArray<import("typebox").TString>;
3577
+ verifyEmailUrl: import("typebox").TOptional<import("typebox").TString>;
3578
+ passwordPolicy: import("typebox").TObject<{
3579
+ minLength: import("typebox").TInteger;
3580
+ requireUppercase: import("typebox").TBoolean;
3581
+ requireLowercase: import("typebox").TBoolean;
3582
+ requireNumbers: import("typebox").TBoolean;
3583
+ requireSpecialCharacters: import("typebox").TBoolean;
3584
+ }>;
3585
+ loginRateLimit: import("typebox").TObject<{
3586
+ ipMaxAttempts: import("typebox").TInteger;
3587
+ accountMaxAttempts: import("typebox").TInteger;
3588
+ windowMs: import("typebox").TInteger;
3589
+ }>;
3590
+ registrationIpMaxAttempts: import("typebox").TInteger;
3591
+ refreshToken: import("typebox").TObject<{
3592
+ expirationIdle: import("typebox").TOptional<import("typebox").TInteger>;
3528
3593
  }>;
3529
3594
  }>;
3530
- realmName: _$typebox.TString;
3531
- authenticationMethods: _$typebox.TArray<_$typebox.TObject<{
3532
- name: _$typebox.TString;
3533
- type: _$typebox.TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
3595
+ realmName: import("typebox").TString;
3596
+ authenticationMethods: import("typebox").TArray<import("typebox").TObject<{
3597
+ name: import("typebox").TString;
3598
+ type: import("typebox").TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
3599
+ }>>;
3600
+ captchaSiteKey: import("typebox").TOptional<import("typebox").TString>;
3601
+ /**
3602
+ * Federated (broker) social login. When present, the login UI renders one
3603
+ * button per provider linking to `{brokerUrl}/auth/federated/start`.
3604
+ */
3605
+ federated: import("typebox").TOptional<import("typebox").TObject<{
3606
+ brokerUrl: import("typebox").TString;
3607
+ providers: import("typebox").TArray<import("typebox").TUnion<[import("typebox").TLiteral<"google">, import("typebox").TLiteral<"apple">]>>;
3534
3608
  }>>;
3535
- captchaSiteKey: _$typebox.TOptional<_$typebox.TString>;
3536
3609
  }>;
3537
3610
  type RealmConfig = Static<typeof realmConfigSchema>;
3538
3611
  //#endregion
3539
3612
  //#region ../../src/api/users/schemas/registerSchema.d.ts
3540
- declare const registerSchema: _$typebox.TObject<{
3541
- username: _$typebox.TString;
3542
- email: _$typebox.TString;
3543
- password: _$typebox.TString;
3544
- confirmPassword: _$typebox.TString;
3545
- firstName: _$typebox.TOptional<_$typebox.TString>;
3546
- lastName: _$typebox.TOptional<_$typebox.TString>;
3613
+ declare const registerSchema: import("typebox").TObject<{
3614
+ username: import("typebox").TString;
3615
+ email: import("typebox").TString;
3616
+ password: import("typebox").TString;
3617
+ confirmPassword: import("typebox").TString;
3618
+ firstName: import("typebox").TOptional<import("typebox").TString>;
3619
+ lastName: import("typebox").TOptional<import("typebox").TString>;
3547
3620
  }>;
3548
3621
  type RegisterInput = Static<typeof registerSchema>;
3549
3622
  //#endregion
3550
3623
  //#region ../../src/api/users/schemas/resetPasswordSchema.d.ts
3551
- declare const resetPasswordRequestSchema: _$typebox.TObject<{
3552
- email: _$typebox.TString;
3624
+ declare const resetPasswordRequestSchema: import("typebox").TObject<{
3625
+ email: import("typebox").TString;
3553
3626
  }>;
3554
- declare const resetPasswordSchema: _$typebox.TObject<{
3555
- token: _$typebox.TString;
3556
- password: _$typebox.TString;
3557
- confirmPassword: _$typebox.TString;
3627
+ declare const resetPasswordSchema: import("typebox").TObject<{
3628
+ token: import("typebox").TString;
3629
+ password: import("typebox").TString;
3630
+ confirmPassword: import("typebox").TString;
3558
3631
  }>;
3559
3632
  type ResetPasswordRequest = Static<typeof resetPasswordRequestSchema>;
3560
3633
  type ResetPasswordInput = Static<typeof resetPasswordSchema>;
3561
3634
  //#endregion
3562
3635
  //#region ../../src/api/users/schemas/sessionResourceSchema.d.ts
3563
- declare const sessionResourceSchema: _$typebox.TObject<{
3564
- id: _$typebox.TString;
3565
- version: _$typebox.TNumber;
3566
- createdAt: _$typebox.TString;
3567
- updatedAt: _$typebox.TString;
3568
- refreshToken: _$typebox.TString;
3569
- userId: _$typebox.TString;
3570
- expiresAt: _$typebox.TString;
3571
- ip: _$typebox.TOptional<_$typebox.TString>;
3572
- userAgent: _$typebox.TOptional<_$typebox.TObject<{
3573
- os: _$typebox.TString;
3574
- browser: _$typebox.TString;
3575
- device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
3636
+ /**
3637
+ * Slim view of the session's owner — embedded by the admin listing so the
3638
+ * UI can render a human-readable identifier instead of just a UUID. Comes
3639
+ * back via a left join, so it's optional (a session whose user was deleted
3640
+ * still returns; `user` is undefined).
3641
+ */
3642
+ declare const sessionUserSummarySchema: import("typebox").TObject<{
3643
+ id: import("typebox").TString;
3644
+ email: import("typebox").TOptional<import("typebox").TString>;
3645
+ username: import("typebox").TOptional<import("typebox").TString>;
3646
+ firstName: import("typebox").TOptional<import("typebox").TString>;
3647
+ lastName: import("typebox").TOptional<import("typebox").TString>;
3648
+ }>;
3649
+ declare const sessionResourceSchema: import("typebox").TObject<{
3650
+ id: import("typebox").TString;
3651
+ version: import("typebox").TNumber;
3652
+ createdAt: import("typebox").TString;
3653
+ updatedAt: import("typebox").TString;
3654
+ refreshToken: import("typebox").TString;
3655
+ userId: import("typebox").TString;
3656
+ expiresAt: import("typebox").TString;
3657
+ ip: import("typebox").TOptional<import("typebox").TString>;
3658
+ country: import("typebox").TOptional<import("typebox").TString>;
3659
+ userAgent: import("typebox").TOptional<import("typebox").TObject<{
3660
+ os: import("typebox").TString;
3661
+ browser: import("typebox").TString;
3662
+ device: import("typebox").TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
3663
+ }>>;
3664
+ user: import("typebox").TOptional<import("typebox").TObject<{
3665
+ id: import("typebox").TString;
3666
+ email: import("typebox").TOptional<import("typebox").TString>;
3667
+ username: import("typebox").TOptional<import("typebox").TString>;
3668
+ firstName: import("typebox").TOptional<import("typebox").TString>;
3669
+ lastName: import("typebox").TOptional<import("typebox").TString>;
3576
3670
  }>>;
3577
3671
  }>;
3578
3672
  type SessionResource = Static<typeof sessionResourceSchema>;
3579
3673
  //#endregion
3580
3674
  //#region ../../src/api/users/schemas/userResourceSchema.d.ts
3581
- declare const userResourceSchema: _$typebox.TObject<{
3582
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3583
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3584
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3585
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3586
- realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
3587
- username: _$typebox.TOptional<_$typebox.TString>;
3588
- email: _$typebox.TOptional<_$typebox.TString>;
3589
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
3590
- roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
3591
- firstName: _$typebox.TOptional<_$typebox.TString>;
3592
- lastName: _$typebox.TOptional<_$typebox.TString>;
3593
- picture: _$typebox.TOptional<_$typebox.TString>;
3594
- enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
3595
- emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
3596
- organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
3675
+ declare const userResourceSchema: import("typebox").TObject<{
3676
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3677
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3678
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3679
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3680
+ realm: PgAttr<import("typebox").TString, typeof PG_DEFAULT>;
3681
+ username: import("typebox").TOptional<import("typebox").TString>;
3682
+ email: import("typebox").TOptional<import("typebox").TString>;
3683
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
3684
+ roles: PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>;
3685
+ firstName: import("typebox").TOptional<import("typebox").TString>;
3686
+ lastName: import("typebox").TOptional<import("typebox").TString>;
3687
+ picture: import("typebox").TOptional<import("typebox").TString>;
3688
+ enabled: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3689
+ emailVerified: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3690
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
3691
+ organizationId: PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>;
3597
3692
  }>;
3598
3693
  type UserResource = Static<typeof userResourceSchema>;
3599
3694
  //#endregion
@@ -3603,57 +3698,60 @@ declare class SessionService {
3603
3698
  protected readonly fsp: FileSystemProvider;
3604
3699
  protected readonly dateTimeProvider: DateTimeProvider;
3605
3700
  protected readonly cryptoProvider: CryptoProvider;
3606
- protected readonly log: _$alepha_logger0.Logger;
3701
+ protected readonly log: import("alepha/logger").Logger;
3607
3702
  protected readonly realmProvider: RealmProvider;
3608
- protected readonly fileController: _$alepha_server_links0.HttpVirtualClient<FileController>;
3703
+ protected readonly fileController: import("alepha/server/links").HttpVirtualClient<FileController>;
3609
3704
  protected readonly cacheProvider: CacheProvider;
3610
3705
  protected readonly usernameSlugger: UsernameSlugger;
3611
3706
  protected userAudits(realmName?: string): UserAudits | undefined;
3707
+ protected sessionAudits(realmName?: string): SessionAudits | undefined;
3612
3708
  protected userNotifications(realmName?: string): UserNotifications | undefined;
3613
- users(userRealmName?: string): Repository$1<_$typebox.TObject<{
3614
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3615
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3616
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3617
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3618
- realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
3619
- username: _$typebox.TOptional<_$typebox.TString>;
3620
- email: _$typebox.TOptional<_$typebox.TString>;
3621
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
3622
- roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
3623
- firstName: _$typebox.TOptional<_$typebox.TString>;
3624
- lastName: _$typebox.TOptional<_$typebox.TString>;
3625
- picture: _$typebox.TOptional<_$typebox.TString>;
3626
- enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
3627
- emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
3628
- organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
3709
+ users(userRealmName?: string): Repository$1<import("typebox").TObject<{
3710
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3711
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3712
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3713
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3714
+ realm: PgAttr<import("typebox").TString, typeof PG_DEFAULT>;
3715
+ username: import("typebox").TOptional<import("typebox").TString>;
3716
+ email: import("typebox").TOptional<import("typebox").TString>;
3717
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
3718
+ roles: PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>;
3719
+ firstName: import("typebox").TOptional<import("typebox").TString>;
3720
+ lastName: import("typebox").TOptional<import("typebox").TString>;
3721
+ picture: import("typebox").TOptional<import("typebox").TString>;
3722
+ enabled: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3723
+ emailVerified: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3724
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
3725
+ organizationId: PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>;
3629
3726
  }>>;
3630
- sessions(userRealmName?: string): Repository$1<_$typebox.TObject<{
3631
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3632
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3633
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3634
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3635
- refreshToken: _$typebox.TString;
3636
- userId: PgAttr<_$typebox.TString, typeof PG_REF>;
3637
- clientId: _$typebox.TOptional<_$typebox.TString>;
3638
- expiresAt: _$typebox.TString;
3639
- lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
3640
- ip: _$typebox.TOptional<_$typebox.TString>;
3641
- userAgent: _$typebox.TOptional<_$typebox.TObject<{
3642
- os: _$typebox.TString;
3643
- browser: _$typebox.TString;
3644
- device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
3727
+ sessions(userRealmName?: string): Repository$1<import("typebox").TObject<{
3728
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3729
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3730
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3731
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3732
+ refreshToken: import("typebox").TString;
3733
+ userId: PgAttr<import("typebox").TString, typeof PG_REF>;
3734
+ clientId: import("typebox").TOptional<import("typebox").TString>;
3735
+ expiresAt: import("typebox").TString;
3736
+ lastUsedAt: import("typebox").TOptional<import("typebox").TString>;
3737
+ ip: import("typebox").TOptional<import("typebox").TString>;
3738
+ country: import("typebox").TOptional<import("typebox").TString>;
3739
+ userAgent: import("typebox").TOptional<import("typebox").TObject<{
3740
+ os: import("typebox").TString;
3741
+ browser: import("typebox").TString;
3742
+ device: import("typebox").TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
3645
3743
  }>>;
3646
3744
  }>>;
3647
- identities(userRealmName?: string): Repository$1<_$typebox.TObject<{
3648
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3649
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3650
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3651
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3652
- userId: PgAttr<_$typebox.TString, typeof PG_REF>;
3653
- password: _$typebox.TOptional<_$typebox.TString>;
3654
- provider: _$typebox.TString;
3655
- providerUserId: _$typebox.TOptional<_$typebox.TString>;
3656
- providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
3745
+ identities(userRealmName?: string): Repository$1<import("typebox").TObject<{
3746
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3747
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3748
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3749
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3750
+ userId: PgAttr<import("typebox").TString, typeof PG_REF>;
3751
+ password: import("typebox").TOptional<import("typebox").TString>;
3752
+ provider: import("typebox").TString;
3753
+ providerUserId: import("typebox").TOptional<import("typebox").TString>;
3754
+ providerData: import("typebox").TOptional<import("typebox").TRecord<string, import("typebox").TAny>>;
3657
3755
  }>>;
3658
3756
  /**
3659
3757
  * Check if user should be auto-promoted to admin based on adminEmails/adminUsernames settings.
@@ -3702,38 +3800,40 @@ declare class SessionService {
3702
3800
  sessionId: string;
3703
3801
  }>;
3704
3802
  refreshSession(refreshToken: string, userRealmName?: string): Promise<{
3705
- user: PgStatic<_$typebox.TObject<{
3706
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3707
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3708
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3709
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3710
- realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
3711
- username: _$typebox.TOptional<_$typebox.TString>;
3712
- email: _$typebox.TOptional<_$typebox.TString>;
3713
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
3714
- roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
3715
- firstName: _$typebox.TOptional<_$typebox.TString>;
3716
- lastName: _$typebox.TOptional<_$typebox.TString>;
3717
- picture: _$typebox.TOptional<_$typebox.TString>;
3718
- enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
3719
- emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
3720
- organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
3721
- }>, PgRelationMap<_$typebox.TObject<{
3722
- id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3723
- version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3724
- createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3725
- updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3726
- realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
3727
- username: _$typebox.TOptional<_$typebox.TString>;
3728
- email: _$typebox.TOptional<_$typebox.TString>;
3729
- phoneNumber: _$typebox.TOptional<_$typebox.TString>;
3730
- roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
3731
- firstName: _$typebox.TOptional<_$typebox.TString>;
3732
- lastName: _$typebox.TOptional<_$typebox.TString>;
3733
- picture: _$typebox.TOptional<_$typebox.TString>;
3734
- enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
3735
- emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
3736
- organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
3803
+ user: PgStatic<import("typebox").TObject<{
3804
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3805
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3806
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3807
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3808
+ realm: PgAttr<import("typebox").TString, typeof PG_DEFAULT>;
3809
+ username: import("typebox").TOptional<import("typebox").TString>;
3810
+ email: import("typebox").TOptional<import("typebox").TString>;
3811
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
3812
+ roles: PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>;
3813
+ firstName: import("typebox").TOptional<import("typebox").TString>;
3814
+ lastName: import("typebox").TOptional<import("typebox").TString>;
3815
+ picture: import("typebox").TOptional<import("typebox").TString>;
3816
+ enabled: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3817
+ emailVerified: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3818
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
3819
+ organizationId: PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>;
3820
+ }>, PgRelationMap<import("typebox").TObject<{
3821
+ id: PgAttr<PgAttr<import("typebox").TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
3822
+ version: PgAttr<PgAttr<import("typebox").TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
3823
+ createdAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
3824
+ updatedAt: PgAttr<PgAttr<import("typebox").TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
3825
+ realm: PgAttr<import("typebox").TString, typeof PG_DEFAULT>;
3826
+ username: import("typebox").TOptional<import("typebox").TString>;
3827
+ email: import("typebox").TOptional<import("typebox").TString>;
3828
+ phoneNumber: import("typebox").TOptional<import("typebox").TString>;
3829
+ roles: PgAttr<import("typebox").TArray<import("typebox").TString>, typeof PG_DEFAULT>;
3830
+ firstName: import("typebox").TOptional<import("typebox").TString>;
3831
+ lastName: import("typebox").TOptional<import("typebox").TString>;
3832
+ picture: import("typebox").TOptional<import("typebox").TString>;
3833
+ enabled: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3834
+ emailVerified: PgAttr<import("typebox").TBoolean, typeof PG_DEFAULT>;
3835
+ lastLoginAt: import("typebox").TOptional<import("typebox").TString>;
3836
+ organizationId: PgAttr<import("typebox").TString, typeof PG_ORGANIZATION>;
3737
3837
  }>>>;
3738
3838
  expiresIn: number;
3739
3839
  sessionId: string;
@@ -3746,15 +3846,16 @@ declare class SessionService {
3746
3846
  firstName?: string | undefined;
3747
3847
  lastName?: string | undefined;
3748
3848
  picture?: string | undefined;
3849
+ lastLoginAt?: string | undefined;
3850
+ enabled: boolean;
3749
3851
  id: string;
3750
- createdAt: string;
3751
- organizationId: string;
3752
3852
  version: number;
3853
+ createdAt: string;
3753
3854
  updatedAt: string;
3754
3855
  realm: string;
3755
3856
  roles: string[];
3756
- enabled: boolean;
3757
3857
  emailVerified: boolean;
3858
+ organizationId: string;
3758
3859
  } | {
3759
3860
  sub: string;
3760
3861
  email?: string;
@@ -3803,7 +3904,7 @@ declare class SessionService {
3803
3904
  *
3804
3905
  * @module alepha.api.users
3805
3906
  */
3806
- declare const AlephaApiUsers: _$alepha.Service<_$alepha.Module>;
3907
+ declare const AlephaApiUsers: import("alepha").Service<import("alepha").Module>;
3807
3908
  //#endregion
3808
- export { $realm, AdminIdentityController, AdminSessionController, AdminUserController, AlephaApiUsers, CompletePasswordResetRequest, CompleteRegistrationRequest, CreateUser, CredentialService, DEFAULT_USER_REALM_NAME, FieldRequirement, IdentityEntity, IdentityQuery, IdentityResource, IdentityService, LoginInput, PasswordResetIntentResponse, Realm, RealmAuthSettings, RealmConfig, RealmController, RealmFeatures, RealmOptions, RealmPrimitive, RealmProvider, RealmRepositories, RegisterInput, RegistrationIntentResponse, RegistrationService, ResetPasswordInput, ResetPasswordRequest, SessionCrudService, SessionEntity, SessionQuery, SessionResource, SessionService, UpdateUser, UserAudits, UserBuckets, UserController, UserEntity, UserJobs, UserNotifications, UserQuery, UserResource, UserService, UsernameFieldRequirement, UsernameSlugger, completePasswordResetRequestSchema, completeRegistrationRequestSchema, createUserSchema, identities, identityQuerySchema, identityResourceSchema, loginSchema, passwordResetIntentResponseSchema, realmAuthSettingsAtom, realmConfigSchema, registerSchema, registrationIntentResponseSchema, resetPasswordRequestSchema, resetPasswordSchema, sessionQuerySchema, sessionResourceSchema, sessions, updateUserSchema, userQuerySchema, userResourceSchema, users };
3909
+ export { $realm, AdminIdentityController, AdminSessionController, AdminUserController, AlephaApiUsers, CompletePasswordResetRequest, CompleteRegistrationRequest, CreateUser, CredentialService, DEFAULT_USER_REALM_NAME, FieldRequirement, IdentityEntity, IdentityQuery, IdentityResource, IdentityService, LoginInput, PasswordResetIntentResponse, Realm, RealmAuthSettings, RealmConfig, RealmController, RealmFeatures, RealmOptions, RealmPrimitive, RealmProvider, RealmRepositories, RegisterInput, RegistrationIntentResponse, RegistrationService, ResetPasswordInput, ResetPasswordRequest, SessionAudits, SessionCrudService, SessionEntity, SessionQuery, SessionResource, SessionService, UpdateUser, UserAudits, UserBuckets, UserController, UserEntity, UserJobs, UserNotifications, UserQuery, UserResource, UserService, UsernameFieldRequirement, UsernameSlugger, completePasswordResetRequestSchema, completeRegistrationRequestSchema, createUserSchema, identities, identityQuerySchema, identityResourceSchema, loginSchema, passwordResetIntentResponseSchema, realmAuthSettingsAtom, realmConfigSchema, registerSchema, registrationIntentResponseSchema, resetPasswordRequestSchema, resetPasswordSchema, sessionQuerySchema, sessionResourceSchema, sessionUserSummarySchema, sessions, updateUserSchema, userQuerySchema, userResourceSchema, users };
3809
3910
  //# sourceMappingURL=index.d.ts.map