npm - authhero - Versions diffs - 1.3.0 → 3.0.0 - Mend

authhero 1.3.0 → 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/authhero.d.ts CHANGED Viewed

@@ -37513,73 +37513,25 @@ export declare class HttpSamlSigner implements SamlSigner {
 	constructor(signUrl: string);
 	signSAML(xmlContent: string, privateKey: string, publicCert: string): Promise<string>;
 }
-/**
- * Context passed to all entity hooks
- */
+/** Context passed to entity hooks */
 export interface EntityHookContext {
-	/** The tenant where the operation occurred */
 	tenantId: string;
-	/** Data adapters for the current tenant */
 	adapters: DataAdapters;
 }
-/**
- * CRUD hooks for any entity type.
- *
- * Use these hooks to implement cross-tenant synchronization,
- * audit logging, webhooks, or any other side effects.
- *
- * @example
- * ```typescript
- * const roleHooks: EntityHooks<Role, RoleInsert> = {
- *   afterCreate: async (ctx, role) => {
- *     // Propagate to other tenants
- *     await syncToChildTenants(ctx, role);
- *   },
- *   afterUpdate: async (ctx, id, role) => {
- *     // Log the update
- *     await auditLog('role_updated', { id, tenantId: ctx.tenantId });
- *   },
- * };
- * ```
- */
+/** CRUD hooks for entity operations */
 export interface EntityHooks<TEntity, TInsert, TUpdate = Partial<TInsert>> {
-	/** Called before an entity is created */
 	beforeCreate?: (ctx: EntityHookContext, data: TInsert) => Promise<TInsert>;
-	/** Called after an entity is created */
 	afterCreate?: (ctx: EntityHookContext, entity: TEntity) => Promise<void>;
-	/** Called before an entity is updated */
 	beforeUpdate?: (ctx: EntityHookContext, id: string, data: TUpdate) => Promise<TUpdate>;
-	/** Called after an entity is updated */
 	afterUpdate?: (ctx: EntityHookContext, id: string, entity: TEntity) => Promise<void>;
-	/** Called before an entity is deleted */
 	beforeDelete?: (ctx: EntityHookContext, id: string) => Promise<void>;
-	/** Called after an entity is deleted */
 	afterDelete?: (ctx: EntityHookContext, id: string) => Promise<void>;
 }
-/**
- * Hooks for role permission assignment operations.
- *
- * Role permissions use assign/remove operations rather than typical CRUD,
- * so they have a specialized hook interface.
- *
- * @example
- * ```typescript
- * const rolePermissionHooks: RolePermissionHooks = {
- *   afterAssign: async (ctx, roleId, permissions) => {
- *     // Sync permissions to child tenants
- *     await syncPermissionsToChildTenants(ctx, roleId, permissions);
- *   },
- * };
- * ```
- */
+/** Hooks for role permission assign/remove operations */
 export interface RolePermissionHooks {
-	/** Called before permissions are assigned to a role */
 	beforeAssign?: (ctx: EntityHookContext, roleId: string, permissions: RolePermissionInsert[]) => Promise<RolePermissionInsert[]>;
-	/** Called after permissions are assigned to a role */
 	afterAssign?: (ctx: EntityHookContext, roleId: string, permissions: RolePermissionInsert[]) => Promise<void>;
-	/** Called before permissions are removed from a role */
 	beforeRemove?: (ctx: EntityHookContext, roleId: string, permissions: Pick<RolePermissionInsert, "resource_server_identifier" | "permission_name">[]) => Promise<Pick<RolePermissionInsert, "resource_server_identifier" | "permission_name">[]>;
-	/** Called after permissions are removed from a role */
 	afterRemove?: (ctx: EntityHookContext, roleId: string, permissions: Pick<RolePermissionInsert, "resource_server_identifier" | "permission_name">[]) => Promise<void>;
 }
 export type Transaction = {
@@ -37596,7 +37548,7 @@ export type Transaction = {
 };
 export type HookRequest = {
 	asn?: string;
-	body?: Record<string, any>;
+	body?: Record<string, unknown>;
 	geoip?: {
 		cityName?: string;
 		continentCode?: string;
@@ -37639,13 +37591,13 @@ export type HookEvent = {
 		id: string;
 		name: string;
 		strategy: string;
-		metadata?: Record<string, any>;
+		metadata?: Record<string, unknown>;
 	};
 	organization?: {
 		id: string;
 		name: string;
 		display_name: string;
-		metadata?: Record<string, any>;
+		metadata?: Record<string, unknown>;
 	};
 	resource_server?: {
 		identifier: string;
@@ -37761,8 +37713,20 @@ export type OnExecuteValidateRegistrationUsername = (event: Omit<HookEvent, "use
 		connection: string;
 	};
 }, api: OnExecuteValidateRegistrationUsernameAPI) => Promise<void>;
-export type OnExecuteValidateSignupEmail = OnExecuteValidateRegistrationUsername;
-export type OnExecuteValidateSignupEmailAPI = OnExecuteValidateRegistrationUsernameAPI;
+export type UserInfoEvent = {
+	ctx: Context<{
+		Bindings: Bindings;
+		Variables: Variables;
+	}>;
+	user: User;
+	tenant_id: string;
+	scopes: string[];
+};
+export type OnFetchUserInfoAPI = {
+	setCustomClaim: (claim: string, value: unknown) => void;
+};
+/** Called when /userinfo endpoint is accessed */
+export type OnFetchUserInfo = (event: UserInfoEvent, api: OnFetchUserInfoAPI) => Promise<void>;
 /**
  * Entity hooks configuration for CRUD operations.
  *
@@ -37805,6 +37769,11 @@ export interface AuthHeroConfig {
 		onExecutePostUserRegistration?: OnExecutePostUserRegistration;
 		onExecutePreUserUpdate?: OnExecutePreUserUpdate;
 		onExecutePostLogin?: OnExecutePostLogin;
+		/**
+		 * Called when the /userinfo endpoint is accessed.
+		 * Use this to add custom claims to the userinfo response.
+		 */
+		onFetchUserInfo?: OnFetchUserInfo;
 	};
 	/**
 	 * Entity CRUD hooks for when resources are created/updated/deleted.
@@ -37906,8 +37875,9 @@ export type Bindings = {
 		onExecutePostLogin?: OnExecutePostLogin;
 		onExecutePreUserDeletion?: OnExecutePreUserDeletion;
 		onExecutePostUserDeletion?: OnExecutePostUserDeletion;
-		onExecuteValidateSignupEmail?: OnExecuteValidateSignupEmail;
 		onExecuteValidateRegistrationUsername?: OnExecuteValidateRegistrationUsername;
+		/** Called when /userinfo endpoint is accessed to add custom claims */
+		onFetchUserInfo?: OnFetchUserInfo;
 	};
 	/**
 	 * Entity CRUD hooks for when resources are created/updated/deleted.

package/dist/authhero.mjs CHANGED Viewed

@@ -7973,7 +7973,7 @@ async function by(t, e, n, r, i = "email") {
         reason: "Public signup is disabled for this client"
       };
   }
-  if (t.env.hooks?.onExecuteValidateSignupEmail) {
+  if (t.env.hooks?.onExecuteValidateRegistrationUsername) {
     const a = {
       method: t.req.method,
       ip: t.var.ip || t.get("ip") || "",
@@ -7982,7 +7982,7 @@ async function by(t, e, n, r, i = "email") {
     };
     let c = !1, l;
     try {
-      if (await t.env.hooks.onExecuteValidateSignupEmail(
+      if (await t.env.hooks.onExecuteValidateRegistrationUsername(
         {
           ctx: t,
           client: e,
@@ -25803,7 +25803,27 @@ const P$ = new ae().openapi(
     );
     if (!e)
       throw new j(404, { message: "User not found" });
-    return t.json($m.parse({ ...e, sub: e.user_id }));
+    const n = $m.parse({
+      ...e,
+      sub: e.user_id
+    }), r = t.env.hooks?.onFetchUserInfo;
+    if (r) {
+      const i = {};
+      return await r(
+        {
+          ctx: t,
+          user: e,
+          tenant_id: t.var.user.tenant_id,
+          scopes: t.var.scope?.split(" ") || []
+        },
+        {
+          setCustomClaim: (s, a) => {
+            i[s] = a;
+          }
+        }
+      ), t.json({ ...n, ...i });
+    }
+    return t.json(n);
   }
 ), L$ = new ae().openapi(
   P({