npm - hazo_auth - Versions diffs - 4.3.0 → 4.4.0 - Mend

hazo_auth 4.3.0 → 4.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (105) hide show

package/cli-src/lib/dev_lock_config.server.ts ADDED Viewed

@@ -0,0 +1,148 @@
+// file_description: server-only helper to read dev lock configuration from hazo_auth_config.ini
+// section: imports
+import { get_config_value, get_config_boolean, get_config_number } from "./config/config_loader.server.js";
+import { DEFAULT_DEV_LOCK } from "./config/default_config.js";
+// section: types
+export type DevLockConfig = {
+  /** Enable the development lock screen */
+  enable: boolean;
+  /** Session duration in days */
+  session_duration_days: number;
+  /** Background color */
+  background_color: string;
+  /** Logo image path */
+  logo_path: string;
+  /** Logo width in pixels */
+  logo_width: number;
+  /** Logo height in pixels */
+  logo_height: number;
+  /** Application name displayed below logo */
+  application_name: string;
+  /** Limited access text displayed with lock icon */
+  limited_access_text: string;
+  /** Password input placeholder text */
+  password_placeholder: string;
+  /** Submit button text */
+  submit_button_text: string;
+  /** Error message for incorrect password */
+  error_message: string;
+  /** Text color for labels */
+  text_color: string;
+  /** Accent color for button */
+  accent_color: string;
+};
+// section: constants
+const SECTION_NAME = "hazo_auth__dev_lock";
+// section: helpers
+/**
+ * Reads dev lock configuration from hazo_auth_config.ini file
+ * Falls back to defaults if hazo_auth_config.ini is not found or section is missing
+ * @returns Dev lock configuration options
+ */
+export function get_dev_lock_config(): DevLockConfig {
+  const enable = get_config_boolean(
+    SECTION_NAME,
+    "enable",
+    DEFAULT_DEV_LOCK.enable
+  );
+  const session_duration_days = get_config_number(
+    SECTION_NAME,
+    "session_duration_days",
+    DEFAULT_DEV_LOCK.session_duration_days
+  );
+  const background_color = get_config_value(
+    SECTION_NAME,
+    "background_color",
+    DEFAULT_DEV_LOCK.background_color
+  );
+  const logo_path = get_config_value(
+    SECTION_NAME,
+    "logo_path",
+    DEFAULT_DEV_LOCK.logo_path
+  );
+  const logo_width = get_config_number(
+    SECTION_NAME,
+    "logo_width",
+    DEFAULT_DEV_LOCK.logo_width
+  );
+  const logo_height = get_config_number(
+    SECTION_NAME,
+    "logo_height",
+    DEFAULT_DEV_LOCK.logo_height
+  );
+  const application_name = get_config_value(
+    SECTION_NAME,
+    "application_name",
+    DEFAULT_DEV_LOCK.application_name
+  );
+  const limited_access_text = get_config_value(
+    SECTION_NAME,
+    "limited_access_text",
+    DEFAULT_DEV_LOCK.limited_access_text
+  );
+  const password_placeholder = get_config_value(
+    SECTION_NAME,
+    "password_placeholder",
+    DEFAULT_DEV_LOCK.password_placeholder
+  );
+  const submit_button_text = get_config_value(
+    SECTION_NAME,
+    "submit_button_text",
+    DEFAULT_DEV_LOCK.submit_button_text
+  );
+  const error_message = get_config_value(
+    SECTION_NAME,
+    "error_message",
+    DEFAULT_DEV_LOCK.error_message
+  );
+  const text_color = get_config_value(
+    SECTION_NAME,
+    "text_color",
+    DEFAULT_DEV_LOCK.text_color
+  );
+  const accent_color = get_config_value(
+    SECTION_NAME,
+    "accent_color",
+    DEFAULT_DEV_LOCK.accent_color
+  );
+  return {
+    enable,
+    session_duration_days,
+    background_color,
+    logo_path,
+    logo_width,
+    logo_height,
+    application_name,
+    limited_access_text,
+    password_placeholder,
+    submit_button_text,
+    error_message,
+    text_color,
+    accent_color,
+  };
+}
+/**
+ * Helper to check if dev lock is enabled in config
+ * Note: Also requires HAZO_AUTH_DEV_LOCK_ENABLED env var for actual enforcement
+ * @returns true if dev lock is enabled in config
+ */
+export function is_dev_lock_enabled(): boolean {
+  return get_config_boolean(SECTION_NAME, "enable", DEFAULT_DEV_LOCK.enable);
+}

package/cli-src/lib/email_verification_config.server.ts CHANGED Viewed

@@ -1,8 +1,8 @@
 // file_description: server-only helper to read email verification layout configuration from hazo_auth_config.ini
 // section: imports
-import { get_already_logged_in_config } from "./already_logged_in_config.server";
-import { get_config_value } from "./config/config_loader.server";
-import verifyEmailDefaultImage from "../assets/images/verify_email_default.jpg";
+import { get_already_logged_in_config } from "./already_logged_in_config.server.js";
+import { get_config_value } from "./config/config_loader.server.js";
+import verifyEmailDefaultImage from "../assets/images/verify_email_default.jpg.js";
 // section: types
 import type { StaticImageData } from "next/image";

package/cli-src/lib/file_types_config.server.ts CHANGED Viewed

@@ -1,6 +1,6 @@
 // file_description: server-only helper to read file type configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_array } from "./config/config_loader.server";
+import { get_config_array } from "./config/config_loader.server.js";
 // section: types
 export type FileTypesConfig = {

package/cli-src/lib/forgot_password_config.server.ts CHANGED Viewed

@@ -1,8 +1,8 @@
 // file_description: server-only helper to read forgot password layout configuration from hazo_auth_config.ini
 // section: imports
-import { get_already_logged_in_config } from "./already_logged_in_config.server";
-import { get_config_value } from "./config/config_loader.server";
-import forgotPasswordDefaultImage from "../assets/images/forgot_password_default.jpg";
+import { get_already_logged_in_config } from "./already_logged_in_config.server.js";
+import { get_config_value } from "./config/config_loader.server.js";
+import forgotPasswordDefaultImage from "../assets/images/forgot_password_default.jpg.js";
 // section: types
 import type { StaticImageData } from "next/image";

package/cli-src/lib/hazo_connect_instance.server.ts CHANGED Viewed

@@ -5,9 +5,9 @@
 // section: imports
 import type { HazoConnectAdapter } from "hazo_connect";
 import { getHazoConnectSingleton } from "hazo_connect/nextjs/setup";
-import { create_sqlite_hazo_connect_server, get_hazo_connect_config_options } from "./hazo_connect_setup.server";
+import { create_sqlite_hazo_connect_server, get_hazo_connect_config_options } from "./hazo_connect_setup.server.js";
 import { initializeAdminService, getSqliteAdminService } from "hazo_connect/server";
-import { create_app_logger } from "./app_logger";
+import { create_app_logger } from "./app_logger.js";
 // section: singleton_state
 let hazoConnectInstance: HazoConnectAdapter | null = null;

package/cli-src/lib/hazo_connect_setup.server.ts CHANGED Viewed

@@ -6,8 +6,8 @@ import { createHazoConnect } from "hazo_connect/server";
 import { HazoConfig } from "hazo_config/dist/lib";
 import path from "path";
 import fs from "fs";
-import { create_app_logger } from "./app_logger";
-import { read_config_section } from "./config/config_loader.server";
+import { create_app_logger } from "./app_logger.js";
+import { read_config_section } from "./config/config_loader.server.js";
 // section: helpers
 /**

package/cli-src/lib/index.ts CHANGED Viewed

@@ -6,41 +6,41 @@ export * from "./auth/index";
 export * from "./services/index";
 // section: utility_exports
-export { cn, merge_class_names } from "./utils";
+export { cn, merge_class_names } from "./utils.js";
 // section: config_exports
-export { get_config_value, get_config_number, get_config_boolean, get_config_array, read_config_section } from "./config/config_loader.server";
+export { get_config_value, get_config_number, get_config_boolean, get_config_array, read_config_section } from "./config/config_loader.server.js";
 // section: hazo_connect_exports
-export { create_sqlite_hazo_connect } from "./hazo_connect_setup";
-export { get_hazo_connect_instance } from "./hazo_connect_instance.server";
+export { create_sqlite_hazo_connect } from "./hazo_connect_setup.js";
+export { get_hazo_connect_instance } from "./hazo_connect_instance.server.js";
 // section: logger_exports
-export { create_app_logger } from "./app_logger";
+export { create_app_logger } from "./app_logger.js";
 // section: config_server_exports
-export { get_login_config } from "./login_config.server";
-export { get_register_config } from "./register_config.server";
-export { get_forgot_password_config } from "./forgot_password_config.server";
-export { get_reset_password_config } from "./reset_password_config.server";
-export { get_email_verification_config } from "./email_verification_config.server";
-export { get_my_settings_config } from "./my_settings_config.server";
-export { get_user_management_config } from "./user_management_config.server";
-export { get_profile_picture_config } from "./profile_picture_config.server";
-export { get_profile_pic_menu_config } from "./profile_pic_menu_config.server";
-export { get_already_logged_in_config } from "./already_logged_in_config.server";
-export { get_ui_shell_config } from "./ui_shell_config.server";
-export { get_ui_sizes_config } from "./ui_sizes_config.server";
-export { get_auth_utility_config } from "./auth_utility_config.server";
-export { get_password_requirements_config } from "./password_requirements_config.server";
-export { get_messages_config } from "./messages_config.server";
-export { get_user_fields_config } from "./user_fields_config.server";
-export { get_file_types_config } from "./file_types_config.server";
-export { get_oauth_config, is_google_oauth_enabled, is_email_password_enabled } from "./oauth_config.server";
+export { get_login_config } from "./login_config.server.js";
+export { get_register_config } from "./register_config.server.js";
+export { get_forgot_password_config } from "./forgot_password_config.server.js";
+export { get_reset_password_config } from "./reset_password_config.server.js";
+export { get_email_verification_config } from "./email_verification_config.server.js";
+export { get_my_settings_config } from "./my_settings_config.server.js";
+export { get_user_management_config } from "./user_management_config.server.js";
+export { get_profile_picture_config } from "./profile_picture_config.server.js";
+export { get_profile_pic_menu_config } from "./profile_pic_menu_config.server.js";
+export { get_already_logged_in_config } from "./already_logged_in_config.server.js";
+export { get_ui_shell_config } from "./ui_shell_config.server.js";
+export { get_ui_sizes_config } from "./ui_sizes_config.server.js";
+export { get_auth_utility_config } from "./auth_utility_config.server.js";
+export { get_password_requirements_config } from "./password_requirements_config.server.js";
+export { get_messages_config } from "./messages_config.server.js";
+export { get_user_fields_config } from "./user_fields_config.server.js";
+export { get_file_types_config } from "./file_types_config.server.js";
+export { get_oauth_config, is_google_oauth_enabled, is_email_password_enabled } from "./oauth_config.server.js";
 export type { OAuthConfig } from "./oauth_config.server";
 // section: util_exports
-export { sanitize_error_for_user } from "./utils/error_sanitizer";
+export { sanitize_error_for_user } from "./utils/error_sanitizer.js";
 export type { ErrorSanitizationOptions } from "./utils/error_sanitizer";
 export * from "./utils/api_route_helpers";

package/cli-src/lib/login_config.server.ts CHANGED Viewed

@@ -1,9 +1,9 @@
 // file_description: server-only helper to read login layout configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_value } from "./config/config_loader.server";
-import { get_already_logged_in_config } from "./already_logged_in_config.server";
-import { get_oauth_config, type OAuthConfig } from "./oauth_config.server";
-import loginDefaultImage from "../assets/images/login_default.jpg";
+import { get_config_value } from "./config/config_loader.server.js";
+import { get_already_logged_in_config } from "./already_logged_in_config.server.js";
+import { get_oauth_config, type OAuthConfig } from "./oauth_config.server.js";
+import loginDefaultImage from "../assets/images/login_default.jpg.js";
 // section: types
 import type { StaticImageData } from "next/image";

package/cli-src/lib/messages_config.server.ts CHANGED Viewed

@@ -1,6 +1,6 @@
 // file_description: server-only helper to read user-facing messages from hazo_auth_config.ini
 // section: imports
-import { get_config_value } from "./config/config_loader.server";
+import { get_config_value } from "./config/config_loader.server.js";
 // section: types
 export type MessagesConfig = {

package/cli-src/lib/multi_tenancy_config.server.ts ADDED Viewed

@@ -0,0 +1,94 @@
+// file_description: server-only helper to read multi-tenancy configuration from hazo_auth_config.ini
+// section: imports
+import {
+  get_config_value,
+  get_config_number,
+  get_config_boolean,
+} from "./config/config_loader.server.js";
+import { DEFAULT_MULTI_TENANCY } from "./config/default_config.js";
+// section: types
+/**
+ * Multi-tenancy configuration options
+ */
+export type MultiTenancyConfig = {
+  /** Whether multi-tenancy is enabled (default: false) */
+  enable_multi_tenancy: boolean;
+  /** Cache TTL in minutes for org lookups (default: 15) */
+  org_cache_ttl_minutes: number;
+  /** Maximum entries in org cache (default: 1000) */
+  org_cache_max_entries: number;
+  /** Default user limit per organization (0 = unlimited) */
+  default_user_limit: number;
+};
+// section: constants
+const SECTION_NAME = "hazo_auth__multi_tenancy";
+// section: helpers
+/**
+ * Reads multi-tenancy configuration from hazo_auth_config.ini file
+ * Falls back to defaults if config file is not found or section is missing
+ * @returns Multi-tenancy configuration options
+ */
+export function get_multi_tenancy_config(): MultiTenancyConfig {
+  // Core multi-tenancy enablement
+  const enable_multi_tenancy = get_config_boolean(
+    SECTION_NAME,
+    "enable_multi_tenancy",
+    DEFAULT_MULTI_TENANCY.enable_multi_tenancy,
+  );
+  // Cache settings
+  const org_cache_ttl_minutes = get_config_number(
+    SECTION_NAME,
+    "org_cache_ttl_minutes",
+    DEFAULT_MULTI_TENANCY.org_cache_ttl_minutes,
+  );
+  const org_cache_max_entries = get_config_number(
+    SECTION_NAME,
+    "org_cache_max_entries",
+    DEFAULT_MULTI_TENANCY.org_cache_max_entries,
+  );
+  // Default user limit
+  const default_user_limit = get_config_number(
+    SECTION_NAME,
+    "default_user_limit",
+    DEFAULT_MULTI_TENANCY.default_user_limit,
+  );
+  return {
+    enable_multi_tenancy,
+    org_cache_ttl_minutes,
+    org_cache_max_entries,
+    default_user_limit,
+  };
+}
+/**
+ * Checks if multi-tenancy is enabled in the configuration
+ * Convenience function for quick checks
+ */
+export function is_multi_tenancy_enabled(): boolean {
+  return get_config_boolean(
+    SECTION_NAME,
+    "enable_multi_tenancy",
+    DEFAULT_MULTI_TENANCY.enable_multi_tenancy,
+  );
+}
+/**
+ * Gets the default user limit from config
+ * Returns 0 if not configured (unlimited)
+ */
+export function get_default_user_limit(): number {
+  return get_config_number(
+    SECTION_NAME,
+    "default_user_limit",
+    DEFAULT_MULTI_TENANCY.default_user_limit,
+  );
+}

package/cli-src/lib/my_settings_config.server.ts CHANGED Viewed

@@ -1,12 +1,12 @@
 // file_description: server-only helper to read my settings layout configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_value } from "./config/config_loader.server";
-import { get_user_fields_config } from "./user_fields_config.server";
-import { get_password_requirements_config } from "./password_requirements_config.server";
-import { get_profile_picture_config } from "./profile_picture_config.server";
-import { get_messages_config } from "./messages_config.server";
-import { get_ui_sizes_config } from "./ui_sizes_config.server";
-import { get_file_types_config } from "./file_types_config.server";
+import { get_config_value } from "./config/config_loader.server.js";
+import { get_user_fields_config } from "./user_fields_config.server.js";
+import { get_password_requirements_config } from "./password_requirements_config.server.js";
+import { get_profile_picture_config } from "./profile_picture_config.server.js";
+import { get_messages_config } from "./messages_config.server.js";
+import { get_ui_sizes_config } from "./ui_sizes_config.server.js";
+import { get_file_types_config } from "./file_types_config.server.js";
 // section: types
 export type MySettingsConfig = {

package/cli-src/lib/oauth_config.server.ts CHANGED Viewed

@@ -1,7 +1,7 @@
 // file_description: server-only helper to read OAuth configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_value, get_config_boolean } from "./config/config_loader.server";
-import { DEFAULT_OAUTH } from "./config/default_config";
+import { get_config_value, get_config_boolean } from "./config/config_loader.server.js";
+import { DEFAULT_OAUTH } from "./config/default_config.js";
 // section: types
 export type OAuthConfig = {

package/cli-src/lib/password_requirements_config.server.ts CHANGED Viewed

@@ -1,7 +1,7 @@
 // file_description: server-only helper to read shared password requirements configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_number, get_config_boolean } from "./config/config_loader.server";
-import { DEFAULT_PASSWORD_REQUIREMENTS } from "./config/default_config";
+import { get_config_number, get_config_boolean } from "./config/config_loader.server.js";
+import { DEFAULT_PASSWORD_REQUIREMENTS } from "./config/default_config.js";
 // section: types
 export type PasswordRequirementsConfig = {

package/cli-src/lib/profile_pic_menu_config.server.ts CHANGED Viewed

@@ -1,6 +1,6 @@
 // file_description: server-only helper to read profile picture menu configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_value, get_config_boolean, get_config_array } from "./config/config_loader.server";
+import { get_config_value, get_config_boolean, get_config_array } from "./config/config_loader.server.js";
 // section: types
 // Note: These types are also used in client components, but TypeScript types are erased at runtime

package/cli-src/lib/profile_picture_config.server.ts CHANGED Viewed

@@ -1,7 +1,7 @@
 // file_description: server-only helper to read profile picture configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_boolean, get_config_value, get_config_number, read_config_section } from "./config/config_loader.server";
-import { create_app_logger } from "./app_logger";
+import { get_config_boolean, get_config_value, get_config_number, read_config_section } from "./config/config_loader.server.js";
+import { create_app_logger } from "./app_logger.js";
 // section: types
 export type ProfilePictureConfig = {

package/cli-src/lib/register_config.server.ts CHANGED Viewed

@@ -1,10 +1,10 @@
 // file_description: server-only helper to read register layout configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_boolean, get_config_value, read_config_section } from "./config/config_loader.server";
-import { get_password_requirements_config } from "./password_requirements_config.server";
-import { get_already_logged_in_config } from "./already_logged_in_config.server";
-import { get_user_fields_config } from "./user_fields_config.server";
-import registerDefaultImage from "../assets/images/register_default.jpg";
+import { get_config_boolean, get_config_value, read_config_section } from "./config/config_loader.server.js";
+import { get_password_requirements_config } from "./password_requirements_config.server.js";
+import { get_already_logged_in_config } from "./already_logged_in_config.server.js";
+import { get_user_fields_config } from "./user_fields_config.server.js";
+import registerDefaultImage from "../assets/images/register_default.jpg.js";
 // section: types
 import type { StaticImageData } from "next/image";

package/cli-src/lib/reset_password_config.server.ts CHANGED Viewed

@@ -1,9 +1,9 @@
 // file_description: server-only helper to read reset password layout configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_value } from "./config/config_loader.server";
-import { get_already_logged_in_config } from "./already_logged_in_config.server";
-import { get_password_requirements_config } from "./password_requirements_config.server";
-import resetPasswordDefaultImage from "../assets/images/reset_password_default.jpg";
+import { get_config_value } from "./config/config_loader.server.js";
+import { get_already_logged_in_config } from "./already_logged_in_config.server.js";
+import { get_password_requirements_config } from "./password_requirements_config.server.js";
+import resetPasswordDefaultImage from "../assets/images/reset_password_default.jpg.js";
 // section: types
 import type { StaticImageData } from "next/image";

package/cli-src/lib/scope_hierarchy_config.server.ts CHANGED Viewed

@@ -5,9 +5,9 @@ import {
   get_config_number,
   get_config_boolean,
   get_config_array,
-} from "./config/config_loader.server";
+} from "./config/config_loader.server.js";
 import type { ScopeLevel } from "./services/scope_service";
-import { SCOPE_LEVELS } from "./services/scope_service";
+import { SCOPE_LEVELS } from "./services/scope_service.js";
 // section: types

package/cli-src/lib/services/email_service.ts CHANGED Viewed

@@ -2,8 +2,8 @@
 // section: imports
 import fs from "fs";
 import path from "path";
-import { create_app_logger } from "../app_logger";
-import { read_config_section } from "../config/config_loader.server";
+import { create_app_logger } from "../app_logger.js";
+import { read_config_section } from "../config/config_loader.server.js";
 import type { EmailerConfig, SendEmailOptions } from "hazo_notify";
 // section: types

package/cli-src/lib/services/email_verification_service.ts CHANGED Viewed

@@ -3,9 +3,9 @@
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
 import argon2 from "argon2";
-import { create_token } from "./token_service";
-import { send_template_email } from "./email_service";
-import { create_app_logger } from "../app_logger";
+import { create_token } from "./token_service.js";
+import { send_template_email } from "./email_service.js";
+import { create_app_logger } from "../app_logger.js";
 // section: types
 export type EmailVerificationTokenData = {

package/cli-src/lib/services/login_service.ts CHANGED Viewed

@@ -3,9 +3,9 @@
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
 import argon2 from "argon2";
-import { create_app_logger } from "../app_logger";
-import { sanitize_error_for_user } from "../utils/error_sanitizer";
-import { get_filename, get_line_number } from "../utils/api_route_helpers";
+import { create_app_logger } from "../app_logger.js";
+import { sanitize_error_for_user } from "../utils/error_sanitizer.js";
+import { get_filename, get_line_number } from "../utils/api_route_helpers.js";
 // section: types
 export type LoginData = {

package/cli-src/lib/services/oauth_service.ts CHANGED Viewed

@@ -3,10 +3,10 @@
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
 import { randomUUID } from "crypto";
-import { create_app_logger } from "../app_logger";
-import { sanitize_error_for_user } from "../utils/error_sanitizer";
-import { get_line_number } from "../utils/api_route_helpers";
-import { get_oauth_config } from "../oauth_config.server";
+import { create_app_logger } from "../app_logger.js";
+import { sanitize_error_for_user } from "../utils/error_sanitizer.js";
+import { get_line_number } from "../utils/api_route_helpers.js";
+import { get_oauth_config } from "../oauth_config.server.js";
 // section: types
 export type GoogleOAuthData = {