mongodb-dynamic-api 2.2.0 → 2.3.0

package/CHANGELOG.md

@@ -1,5 +1,14 @@
 Changelog
 
+## [2.3.0](https://github.com/MikeDev75015/mongodb-dynamic-api/compare/v2.2.1...v2.3.0) (2024-05-02)
+
+
+### api
+
+* **api:** add reset password process with callbacks ([9e8bf56](https://github.com/MikeDev75015/mongodb-dynamic-api/commit/9e8bf562ee9717ea1c0fe387bb621e9f724955ac))
+
+## [2.2.1](https://github.com/MikeDev75015/mongodb-dynamic-api/compare/v2.2.0...v2.2.1) (2024-04-30)
+
 ## [2.2.0](https://github.com/MikeDev75015/mongodb-dynamic-api/compare/v2.1.10...v2.2.0) (2024-04-30)
 
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "mongodb-dynamic-api",
-  "version": "2.2.0",
+  "version": "2.3.0",
   "description": "Auto generated CRUD API for MongoDB using NestJS",
   "readmeFilename": "README.md",
   "main": "index.js",
@@ -96,6 +96,8 @@
     "typescript": "^5.3.3"
   },
   "jest": {
+    "clearMocks": true,
+    "resetMocks": true,
     "moduleFileExtensions": [
       "js",
       "json",

package/src/decorators/api-endpoint-visibility.decorator.d.ts

@@ -0,0 +1,3 @@
+import { CustomDecorator } from '@nestjs/common';
+declare function ApiEndpointVisibility(condition: boolean, decorator?: MethodDecorator | CustomDecorator): MethodDecorator | CustomDecorator;
+export { ApiEndpointVisibility };

package/src/decorators/api-endpoint-visibility.decorator.js

@@ -0,0 +1,10 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ApiEndpointVisibility = void 0;
+const common_1 = require("@nestjs/common");
+const swagger_1 = require("@nestjs/swagger");
+function ApiEndpointVisibility(condition, decorator) {
+    const decoratorIfValid = decorator ?? ((_) => undefined);
+    return (0, common_1.applyDecorators)(!condition ? (0, swagger_1.ApiExcludeEndpoint)() : decoratorIfValid);
+}
+exports.ApiEndpointVisibility = ApiEndpointVisibility;

package/src/decorators/index.d.ts

@@ -1,3 +1,4 @@
+export * from './api-endpoint-visibility.decorator';
 export * from './public.decorator';
 export * from './schema-options.decorator';
 export * from './validator-pipe.decorator';

package/src/decorators/index.js

@@ -14,6 +14,7 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./api-endpoint-visibility.decorator"), exports);
 __exportStar(require("./public.decorator"), exports);
 __exportStar(require("./schema-options.decorator"), exports);
 __exportStar(require("./validator-pipe.decorator"), exports);

package/src/dynamic-api.module.js

@@ -80,10 +80,6 @@ let DynamicApiModule = DynamicApiModule_1 = class DynamicApiModule {
                         ...routes.map((routeConfig) => {
                             const { type, description: routeDescription, version: routeVersion, validationPipeOptions: routeValidationPipeOptions, } = routeConfig;
                             const module = moduleByRouteType.get(type);
-                            if (!module) {
-                                reject(new Error(`Route module for ${type} not found`));
-                                return;
-                            }
                             const description = routeDescription ?? (0, helpers_1.getDefaultRouteDescription)(type, entity.name);
                             const version = routeVersion ?? controllerVersion;
                             if (version && !(0, helpers_1.isValidVersion)(version)) {
@@ -162,6 +158,7 @@ let DynamicApiModule = DynamicApiModule_1 = class DynamicApiModule {
                 additionalFields: [],
             },
             login: useAuth.login ?? {},
+            resetPassword: useAuth.resetPassword ?? {},
         };
     }
     static setDefaultRoutes(stateRoutesConfig, controllerRoutesConfig = {}, routes = []) {

package/src/helpers/format.helper.d.ts

@@ -1,5 +1,5 @@
 import { RouteType } from '../interfaces';
 export declare function pascalCase(str?: string): string;
 export declare function isValidVersion(version: string): boolean;
-export declare function getFormattedApiTag<Entity>(apiTag: string | undefined, entityName: string): string;
-export declare function getNamePrefix(routeType: RouteType, entityName: string, version: string | undefined): string;
+export declare function getFormattedApiTag(apiTag: string | undefined, entityName: string): string;
+export declare function provideName(routeType: RouteType, entityName: string, version: string | undefined, suffix: 'Service' | 'Controller' | 'PoliciesGuard'): string;

package/src/helpers/format.helper.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.getNamePrefix = exports.getFormattedApiTag = exports.isValidVersion = exports.pascalCase = void 0;
+exports.provideName = exports.getFormattedApiTag = exports.isValidVersion = exports.pascalCase = void 0;
 const lodash_1 = require("lodash");
 const versioning_config_helper_1 = require("./versioning-config.helper");
 function pascalCase(str) {
@@ -18,4 +18,7 @@ exports.getFormattedApiTag = getFormattedApiTag;
 function getNamePrefix(routeType, entityName, version) {
     return `${routeType}${entityName}${(0, versioning_config_helper_1.addVersionSuffix)(version)}`;
 }
-exports.getNamePrefix = getNamePrefix;
+function provideName(routeType, entityName, version, suffix) {
+    return `${getNamePrefix(routeType, entityName, version)}${suffix}`;
+}
+exports.provideName = provideName;

package/src/helpers/index.d.ts

@@ -1,3 +1,5 @@
+export * from './controller-ability-predicates.helper';
+export * from './controller-mixin.helper';
 export * from './format.helper';
 export * from './route-decorators.helper';
 export * from './route-description.helper';

package/src/helpers/index.js

@@ -14,6 +14,8 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./controller-ability-predicates.helper"), exports);
+__exportStar(require("./controller-mixin.helper"), exports);
 __exportStar(require("./format.helper"), exports);
 __exportStar(require("./route-decorators.helper"), exports);
 __exportStar(require("./route-description.helper"), exports);

package/src/interfaces/dynamic-api-service-callback.interface.d.ts

@@ -1,28 +1,15 @@
-/// <reference types="mongoose/types/aggregate" />
-/// <reference types="mongoose/types/callback" />
-/// <reference types="mongoose/types/collection" />
-/// <reference types="mongoose/types/connection" />
-/// <reference types="mongoose/types/cursor" />
-/// <reference types="mongoose/types/document" />
-/// <reference types="mongoose/types/error" />
-/// <reference types="mongoose/types/expressions" />
-/// <reference types="mongoose/types/helpers" />
-/// <reference types="mongoose/types/middlewares" />
-/// <reference types="mongoose/types/indexes" />
-/// <reference types="mongoose/types/models" />
-/// <reference types="mongoose/types/mongooseoptions" />
-/// <reference types="mongoose/types/pipelinestage" />
-/// <reference types="mongoose/types/populate" />
-/// <reference types="mongoose/types/query" />
-/// <reference types="mongoose/types/schemaoptions" />
-/// <reference types="mongoose/types/schematypes" />
-/// <reference types="mongoose/types/session" />
-/// <reference types="mongoose/types/types" />
-/// <reference types="mongoose/types/utility" />
-/// <reference types="mongoose/types/validation" />
-/// <reference types="mongoose/types/virtuals" />
-/// <reference types="mongoose/types/inferschematype" />
-import { Model } from 'mongoose';
 import { BaseEntity } from '../models';
-type DynamicApiServiceCallback<Entity extends BaseEntity> = (entity: Partial<Entity>, model: Model<Entity>) => Promise<void>;
-export type { DynamicApiServiceCallback };
+type DynamicApiCallbackMethods<Entity extends BaseEntity> = {
+    findById: (id: string) => Promise<Entity | undefined>;
+    findAndUpdateById: (id: string, update: Partial<Entity>) => Promise<Entity>;
+};
+type DynamicApiServiceCallback<Entity extends BaseEntity> = (entity: Entity, methods: DynamicApiCallbackMethods<Entity>) => Promise<void>;
+type DynamicApiResetPasswordCallbackMethods<Entity extends BaseEntity, UpdateBy = 'userId'> = {
+    findUserByEmail: (email: string) => Promise<Entity | undefined>;
+    updateUserByEmail: (email: string, update: Partial<Entity>) => Promise<Entity>;
+};
+type DynamicApiResetPasswordCallback<Entity extends BaseEntity> = (_: {
+    resetPasswordToken: string;
+    email: string;
+}, methods: DynamicApiResetPasswordCallbackMethods<Entity>) => Promise<void>;
+export type { DynamicApiServiceCallback, DynamicApiResetPasswordCallback, DynamicApiCallbackMethods, DynamicApiResetPasswordCallbackMethods, };

package/src/mixins/create-policies-guard.mixin.js

@@ -28,11 +28,11 @@ function CreatePoliciesGuardMixin(entity, routeType, version, abilityPredicate)
     };
     RoutePoliciesGuard = __decorate([
         (0, common_1.Injectable)(),
-        __param(0, (0, common_1.Inject)(`${(0, helpers_1.getNamePrefix)(routeType, entity.name, version)}Service`)),
+        __param(0, (0, common_1.Inject)(`${(0, helpers_1.provideName)(routeType, entity.name, version, 'Service')}`)),
         __metadata("design:paramtypes", [Object])
     ], RoutePoliciesGuard);
     Object.defineProperty(RoutePoliciesGuard, 'name', {
-        value: `${(0, helpers_1.getNamePrefix)(routeType, entity.name, version)}PoliciesGuard`,
+        value: `${(0, helpers_1.provideName)(routeType, entity.name, version, 'PoliciesGuard')}`,
         writable: false,
     });
     return RoutePoliciesGuard;

package/src/modules/auth/auth.helper.d.ts

@@ -1,10 +1,10 @@
 import { Type, ValidationPipeOptions } from '@nestjs/common';
 import { DynamicApiServiceCallback, DynamicAPIServiceProvider } from '../../interfaces';
 import { BaseEntity } from '../../models';
-import { AuthControllerConstructor, DynamicApiRegisterOptions } from './interfaces';
+import { AuthControllerConstructor, DynamicApiRegisterOptions, DynamicApiResetPasswordOptions } from './interfaces';
 declare const authServiceProviderName = "DynamicApiAuthService";
 declare const localStrategyProviderName = "DynamicApiLocalStrategy";
 declare function createLocalStrategyProvider<Entity extends BaseEntity>(loginField: keyof Entity, passwordField: keyof Entity): DynamicAPIServiceProvider;
-declare function createAuthServiceProvider<Entity extends BaseEntity>(userEntity: Type<Entity>, loginField: keyof Entity, passwordField: keyof Entity, additionalFields: (keyof Entity)[] | undefined, registerCallback: DynamicApiServiceCallback<Entity> | undefined, loginCallback: DynamicApiServiceCallback<Entity> | undefined): DynamicAPIServiceProvider;
-declare function createAuthController<Entity extends BaseEntity>(userEntity: Type<Entity>, loginField: keyof Entity, passwordField: keyof Entity, additionalRequestFields: (keyof Entity)[] | undefined, registerOptions: DynamicApiRegisterOptions<Entity> | undefined, validationPipeOptions: ValidationPipeOptions | undefined): AuthControllerConstructor<Entity>;
+declare function createAuthServiceProvider<Entity extends BaseEntity>(userEntity: Type<Entity>, loginField: keyof Entity, passwordField: keyof Entity, additionalFields: (keyof Entity)[] | undefined, registerCallback: DynamicApiServiceCallback<Entity> | undefined, loginCallback: DynamicApiServiceCallback<Entity> | undefined, resetPasswordOptions: DynamicApiResetPasswordOptions<Entity> | undefined): DynamicAPIServiceProvider;
+declare function createAuthController<Entity extends BaseEntity>(userEntity: Type<Entity>, loginField: keyof Entity, passwordField: keyof Entity, additionalRequestFields: (keyof Entity)[] | undefined, registerOptions: DynamicApiRegisterOptions<Entity> | undefined, validationPipeOptions: ValidationPipeOptions | undefined, resetPasswordOptions: DynamicApiResetPasswordOptions<Entity> | undefined): AuthControllerConstructor<Entity>;
 export { authServiceProviderName, createAuthController, createAuthServiceProvider, createLocalStrategyProvider, localStrategyProviderName, };

package/src/modules/auth/auth.helper.js

@@ -56,7 +56,7 @@ function createLocalStrategyProvider(loginField, passwordField) {
     };
 }
 exports.createLocalStrategyProvider = createLocalStrategyProvider;
-function createAuthServiceProvider(userEntity, loginField, passwordField, additionalFields, registerCallback, loginCallback) {
+function createAuthServiceProvider(userEntity, loginField, passwordField, additionalFields, registerCallback, loginCallback, resetPasswordOptions) {
     let AuthService = class AuthService extends services_2.BaseAuthService {
         constructor(model, jwtService, bcryptService) {
             super(model, jwtService, bcryptService);
@@ -68,6 +68,7 @@ function createAuthServiceProvider(userEntity, loginField, passwordField, additi
             this.passwordField = passwordField;
             this.registerCallback = registerCallback;
             this.loginCallback = loginCallback;
+            this.resetPasswordOptions = resetPasswordOptions;
         }
     };
     AuthService = __decorate([
@@ -82,8 +83,8 @@ function createAuthServiceProvider(userEntity, loginField, passwordField, additi
     };
 }
 exports.createAuthServiceProvider = createAuthServiceProvider;
-function createAuthController(userEntity, loginField, passwordField, additionalRequestFields, registerOptions, validationPipeOptions) {
-    let AuthController = class AuthController extends (0, mixins_1.AuthControllerMixin)(userEntity, loginField, passwordField, additionalRequestFields, registerOptions ?? {}) {
+function createAuthController(userEntity, loginField, passwordField, additionalRequestFields, registerOptions, validationPipeOptions, resetPasswordOptions) {
+    let AuthController = class AuthController extends (0, mixins_1.AuthControllerMixin)(userEntity, loginField, passwordField, additionalRequestFields, registerOptions ?? {}, resetPasswordOptions) {
         constructor(service) {
             super(service);
             this.service = service;

package/src/modules/auth/auth.module.d.ts

@@ -3,7 +3,7 @@ import { BcryptService } from '../../services';
 import { DynamicApiAuthOptions } from './interfaces';
 import { JwtStrategy } from './strategies';
 export declare class AuthModule {
-    static forRoot<Entity extends BaseEntity>({ user: { entity: userEntity, loginField, passwordField, requestAdditionalFields, }, jwt: { secret, expiresIn }, register, login, validationPipeOptions, }: DynamicApiAuthOptions<Entity>, extraImports?: any[]): {
+    static forRoot<Entity extends BaseEntity>({ user: { entity: userEntity, loginField, passwordField, requestAdditionalFields, }, jwt: { secret, expiresIn }, register, login, resetPassword, validationPipeOptions, }: DynamicApiAuthOptions<Entity>, extraImports?: any[]): {
         module: typeof AuthModule;
         imports: any[];
         providers: (typeof BcryptService | import("../../interfaces/dynamic-api-service-provider.interface").DynamicAPIServiceProvider | typeof JwtStrategy)[];

package/src/modules/auth/auth.module.js

@@ -18,9 +18,13 @@ const services_1 = require("../../services");
 const auth_helper_1 = require("./auth.helper");
 const strategies_1 = require("./strategies");
 let AuthModule = AuthModule_1 = class AuthModule {
-    static forRoot({ user: { entity: userEntity, loginField, passwordField, requestAdditionalFields, }, jwt: { secret, expiresIn }, register, login, validationPipeOptions, }, extraImports = []) {
-        const AuthController = (0, auth_helper_1.createAuthController)(userEntity, loginField, passwordField, requestAdditionalFields, register, validationPipeOptions);
-        const AuthServiceProvider = (0, auth_helper_1.createAuthServiceProvider)(userEntity, loginField, passwordField, requestAdditionalFields, register.callback, login.callback);
+    static forRoot({ user: { entity: userEntity, loginField, passwordField, requestAdditionalFields, }, jwt: { secret, expiresIn }, register, login, resetPassword, validationPipeOptions, }, extraImports = []) {
+        const { resetPasswordCallback, changePasswordCallback, emailField = 'email', expiresInMinutes = 10 } = resetPassword;
+        const resetPasswordOptions = resetPasswordCallback
+            ? { resetPasswordCallback, changePasswordCallback, emailField, expiresInMinutes }
+            : undefined;
+        const AuthController = (0, auth_helper_1.createAuthController)(userEntity, loginField, passwordField, requestAdditionalFields, register, validationPipeOptions, resetPasswordOptions);
+        const AuthServiceProvider = (0, auth_helper_1.createAuthServiceProvider)(userEntity, loginField, passwordField, requestAdditionalFields, register.callback, login.callback, resetPasswordOptions);
         const LocalStrategyProvider = (0, auth_helper_1.createLocalStrategyProvider)(loginField, passwordField);
         return {
             module: AuthModule_1,

package/src/modules/auth/dtos/change-password.dto.d.ts

@@ -0,0 +1,4 @@
+export declare class ChangePasswordDto {
+    resetPasswordToken: string;
+    newPassword: string;
+}

package/src/modules/auth/dtos/change-password.dto.js

@@ -0,0 +1,29 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ChangePasswordDto = void 0;
+const swagger_1 = require("@nestjs/swagger");
+const class_validator_1 = require("class-validator");
+class ChangePasswordDto {
+}
+exports.ChangePasswordDto = ChangePasswordDto;
+__decorate([
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.IsNotEmpty)(),
+    (0, swagger_1.ApiProperty)(),
+    __metadata("design:type", String)
+], ChangePasswordDto.prototype, "resetPasswordToken", void 0);
+__decorate([
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.IsNotEmpty)(),
+    (0, swagger_1.ApiProperty)(),
+    __metadata("design:type", String)
+], ChangePasswordDto.prototype, "newPassword", void 0);

package/src/modules/auth/dtos/reset-password.dto.d.ts

@@ -0,0 +1,3 @@
+export declare class ResetPasswordDto {
+    email: string;
+}

package/src/modules/auth/dtos/reset-password.dto.js

@@ -0,0 +1,24 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ResetPasswordDto = void 0;
+const swagger_1 = require("@nestjs/swagger");
+const class_validator_1 = require("class-validator");
+class ResetPasswordDto {
+}
+exports.ResetPasswordDto = ResetPasswordDto;
+__decorate([
+    (0, class_validator_1.IsString)(),
+    (0, class_validator_1.IsNotEmpty)(),
+    (0, class_validator_1.IsEmail)(),
+    (0, swagger_1.ApiProperty)(),
+    __metadata("design:type", String)
+], ResetPasswordDto.prototype, "email", void 0);

package/src/modules/auth/interfaces/auth-options.interface.d.ts

@@ -1,5 +1,5 @@
 import { Type, ValidationPipeOptions } from '@nestjs/common';
-import { DynamicApiServiceCallback, RegisterAbilityPredicate } from '../../../interfaces';
+import { DynamicApiResetPasswordCallback, DynamicApiServiceCallback, RegisterAbilityPredicate } from '../../../interfaces';
 import { BaseEntity } from '../../../models';
 type DynamicApiJWTOptions = {
     secret: string;
@@ -23,11 +23,18 @@ type DynamicApiUserOptions<Entity extends BaseEntity = any> = {
     passwordField?: keyof Entity;
     requestAdditionalFields?: (keyof Entity)[];
 };
+type DynamicApiResetPasswordOptions<Entity extends BaseEntity = any> = {
+    resetPasswordCallback: DynamicApiResetPasswordCallback<Entity>;
+    changePasswordCallback: DynamicApiServiceCallback<Entity>;
+    emailField: keyof Entity | string;
+    expiresInMinutes: number;
+};
 type DynamicApiAuthOptions<Entity extends BaseEntity = any> = {
     user: DynamicApiUserOptions<Entity>;
     login?: DynamicApiLoginOptions<Entity>;
     register?: DynamicApiRegisterOptions<Entity>;
     jwt?: DynamicApiJWTOptions;
+    resetPassword?: Partial<DynamicApiResetPasswordOptions<Entity>>;
     validationPipeOptions?: ValidationPipeOptions;
 };
-export type { DynamicApiAuthOptions, DynamicApiRegisterOptions, DynamicApiUserOptions, DynamicApiJWTOptions, DynamicApiLoginOptions, };
+export type { DynamicApiAuthOptions, DynamicApiRegisterOptions, DynamicApiUserOptions, DynamicApiJWTOptions, DynamicApiLoginOptions, DynamicApiResetPasswordOptions, };

package/src/modules/auth/interfaces/auth-service.interface.d.ts

@@ -7,6 +7,7 @@ interface AuthService<Entity extends BaseEntity> {
     login(user: Entity): Promise<LoginResponse>;
     register(userToCreate: Partial<Entity>): Promise<LoginResponse>;
     getAccount(user: Entity): Promise<Entity>;
-    changePassword(userId: string, newPassword: string): Promise<LoginResponse>;
+    resetPassword(email: string): Promise<void>;
+    changePassword(resetPasswordToken: string, newPassword: string): Promise<void>;
 }
 export type { AuthService, LoginResponse };

package/src/modules/auth/mixins/auth-controller.mixin.d.ts

@@ -1,5 +1,5 @@
 import { Type } from '@nestjs/common';
 import { BaseEntity } from '../../../models';
-import { AuthControllerConstructor, DynamicApiRegisterOptions } from '../interfaces';
-declare function AuthControllerMixin<Entity extends BaseEntity>(userEntity: Type<Entity>, loginField: keyof Entity, passwordField: keyof Entity, additionalRequestFields?: (keyof Entity)[], { additionalFields: additionalRegisterFields, protected: registerProtected, abilityPredicate: registerAbilityPredicate, }?: DynamicApiRegisterOptions<Entity>): AuthControllerConstructor<Entity>;
+import { AuthControllerConstructor, DynamicApiRegisterOptions, DynamicApiResetPasswordOptions } from '../interfaces';
+declare function AuthControllerMixin<Entity extends BaseEntity>(userEntity: Type<Entity>, loginField: keyof Entity, passwordField: keyof Entity, additionalRequestFields?: (keyof Entity)[], { additionalFields: additionalRegisterFields, protected: registerProtected, abilityPredicate: registerAbilityPredicate, }?: DynamicApiRegisterOptions<Entity>, resetPasswordOptions?: DynamicApiResetPasswordOptions<Entity>): AuthControllerConstructor<Entity>;
 export { AuthControllerMixin };

package/src/modules/auth/mixins/auth-controller.mixin.js

@@ -19,9 +19,11 @@ const class_validator_1 = require("class-validator");
 const builders_1 = require("../../../builders");
 const decorators_1 = require("../../../decorators");
 const helpers_1 = require("../../../helpers");
+const change_password_dto_1 = require("../dtos/change-password.dto");
+const reset_password_dto_1 = require("../dtos/reset-password.dto");
 const guards_1 = require("../guards");
 const auth_register_policies_guard_mixin_1 = require("./auth-register-policies-guard.mixin");
-function AuthControllerMixin(userEntity, loginField, passwordField, additionalRequestFields = [], { additionalFields: additionalRegisterFields, protected: registerProtected, abilityPredicate: registerAbilityPredicate, } = {}) {
+function AuthControllerMixin(userEntity, loginField, passwordField, additionalRequestFields = [], { additionalFields: additionalRegisterFields, protected: registerProtected, abilityPredicate: registerAbilityPredicate, } = {}, resetPasswordOptions) {
     var _a;
     if (!loginField || !passwordField) {
         throw new Error('Login and password fields are required');
@@ -77,12 +79,18 @@ function AuthControllerMixin(userEntity, loginField, passwordField, additionalRe
         getAccount(req) {
             return this.service.getAccount(req.user);
         }
-        login(req, body) {
+        login(req, _) {
             return this.service.login(req.user);
         }
         register(body) {
             return this.service.register(body);
         }
+        resetPassword({ email }) {
+            return this.service.resetPassword(email);
+        }
+        changePassword({ resetPasswordToken, newPassword }) {
+            return this.service.changePassword(resetPasswordToken, newPassword);
+        }
     }
     __decorate([
         (0, swagger_1.ApiBearerAuth)(),
@@ -118,6 +126,24 @@ function AuthControllerMixin(userEntity, loginField, passwordField, additionalRe
         __metadata("design:paramtypes", [AuthRegisterDto]),
         __metadata("design:returntype", void 0)
     ], BaseAuthController.prototype, "register", null);
+    __decorate([
+        (0, decorators_1.ApiEndpointVisibility)(!!resetPasswordOptions, (0, decorators_1.Public)()),
+        (0, common_1.HttpCode)(common_1.HttpStatus.NO_CONTENT),
+        (0, common_1.Post)('reset-password'),
+        __param(0, (0, common_1.Body)()),
+        __metadata("design:type", Function),
+        __metadata("design:paramtypes", [reset_password_dto_1.ResetPasswordDto]),
+        __metadata("design:returntype", void 0)
+    ], BaseAuthController.prototype, "resetPassword", null);
+    __decorate([
+        (0, decorators_1.ApiEndpointVisibility)(!!resetPasswordOptions, (0, decorators_1.Public)()),
+        (0, common_1.HttpCode)(common_1.HttpStatus.NO_CONTENT),
+        (0, common_1.Patch)('change-password'),
+        __param(0, (0, common_1.Body)()),
+        __metadata("design:type", Function),
+        __metadata("design:paramtypes", [change_password_dto_1.ChangePasswordDto]),
+        __metadata("design:returntype", void 0)
+    ], BaseAuthController.prototype, "changePassword", null);
     return BaseAuthController;
 }
 exports.AuthControllerMixin = AuthControllerMixin;

package/src/modules/auth/services/base-auth.service.d.ts

@@ -27,6 +27,7 @@ import { Model } from 'mongoose';
 import { DynamicApiServiceCallback } from '../../../interfaces';
 import { BaseEntity } from '../../../models';
 import { BaseService, BcryptService } from '../../../services';
+import { DynamicApiResetPasswordOptions } from '../interfaces';
 export declare abstract class BaseAuthService<Entity extends BaseEntity> extends BaseService<Entity> {
     protected readonly model: Model<Entity>;
     protected readonly jwtService: JwtService;
@@ -36,6 +37,9 @@ export declare abstract class BaseAuthService<Entity extends BaseEntity> extends
     protected additionalRequestFields: (keyof Entity)[];
     protected registerCallback: DynamicApiServiceCallback<Entity> | undefined;
     protected loginCallback: DynamicApiServiceCallback<Entity> | undefined;
+    protected resetPasswordOptions: DynamicApiResetPasswordOptions<Entity> | undefined;
+    private resetPasswordCallbackMethods;
+    private readonly logger;
     protected constructor(model: Model<Entity>, jwtService: JwtService, bcryptService: BcryptService);
     protected validateUser(login: string, pass: string): Promise<Entity>;
     protected login(user: Entity, fromMember?: boolean): Promise<{
@@ -45,8 +49,7 @@ export declare abstract class BaseAuthService<Entity extends BaseEntity> extends
         accessToken: string;
     }>;
     protected getAccount({ id }: Entity): Promise<Entity>;
-    protected changePassword(userId: string, newPassword: string): Promise<{
-        accessToken: string;
-    }>;
+    protected resetPassword(email: string): Promise<void>;
+    protected changePassword(resetPasswordToken: string, newPassword: string): Promise<void>;
     private buildUserFields;
 }

package/src/modules/auth/services/base-auth.service.js

@@ -1,6 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.BaseAuthService = void 0;
+const common_1 = require("@nestjs/common");
 const services_1 = require("../../../services");
 class BaseAuthService extends services_1.BaseService {
     constructor(model, jwtService, bcryptService) {
@@ -11,6 +12,7 @@ class BaseAuthService extends services_1.BaseService {
         this.loginField = 'email';
         this.passwordField = 'password';
         this.additionalRequestFields = [];
+        this.logger = new common_1.Logger('AuthService');
     }
     async validateUser(login, pass) {
         const user = (await this.model.findOne({ [this.loginField]: login }).lean().exec());
@@ -33,7 +35,7 @@ class BaseAuthService extends services_1.BaseService {
         ];
         const payload = this.buildUserFields(user, fieldsToBuild);
         if (!fromMember && this.loginCallback) {
-            await this.loginCallback(payload, this.model);
+            await this.loginCallback(payload, this.callbackMethods);
         }
         return {
             accessToken: this.jwtService.sign(payload),
@@ -45,7 +47,7 @@ class BaseAuthService extends services_1.BaseService {
             const { _id } = await this.model.create({ ...userToCreate, [this.passwordField]: hashedPassword });
             const user = await this.findOneDocument(_id);
             if (this.registerCallback) {
-                await this.registerCallback(user, this.model);
+                await this.registerCallback(user, this.callbackMethods);
             }
             return this.login(user, true);
         }
@@ -62,11 +64,67 @@ class BaseAuthService extends services_1.BaseService {
         ];
         return this.buildUserFields(user, fieldsToBuild);
     }
-    async changePassword(userId, newPassword) {
+    async resetPassword(email) {
+        if (!this.resetPasswordOptions) {
+            return;
+        }
+        this.resetPasswordCallbackMethods = {
+            findUserByEmail: async (email) => {
+                const user = await this.model.findOne({ [this.resetPasswordOptions.emailField]: email })
+                    .lean()
+                    .exec();
+                if (!user) {
+                    return;
+                }
+                return this.buildInstance(user);
+            },
+            updateUserByEmail: async (email, data) => {
+                const user = await this.model.findOneAndUpdate({ [this.resetPasswordOptions.emailField]: email }, data, { new: true }).lean().exec();
+                if (!user) {
+                    this.handleDocumentNotFound();
+                }
+                return this.buildInstance(user);
+            },
+        };
+        const { resetPasswordCallback, expiresInMinutes } = this.resetPasswordOptions;
+        const resetPasswordToken = this.jwtService.sign({ email }, { expiresIn: expiresInMinutes * 60 });
+        await resetPasswordCallback({ resetPasswordToken, email }, this.resetPasswordCallbackMethods);
+    }
+    async changePassword(resetPasswordToken, newPassword) {
+        let email;
+        let exp;
+        try {
+            const decoded = this.jwtService.decode(resetPasswordToken);
+            email = decoded.email;
+            exp = decoded.exp;
+        }
+        catch (error) {
+            this.logger.warn('Invalid reset password token');
+        }
+        if (!email || !exp) {
+            throw new common_1.BadRequestException('Invalid reset password token. Please redo the reset password process.');
+        }
+        const now = Math.round(Date.now() / 1000);
+        if (exp <= now) {
+            throw new common_1.UnauthorizedException('Time to reset password has expired. Please redo the reset password process.');
+        }
+        let userId;
+        try {
+            const { _id } = await this.findOneDocument(undefined, { [this.resetPasswordOptions.emailField]: email });
+            userId = _id.toString();
+        }
+        catch (error) {
+            this.logger.warn('Invalid email, user not found');
+        }
+        if (!userId) {
+            return;
+        }
         const hashedPassword = await this.bcryptService.hashPassword(newPassword);
-        const { _id } = await this.model.findOneAndUpdate({ _id: userId }, { [this.passwordField]: hashedPassword }, { new: true });
-        const user = await this.findOneDocument(_id);
-        return this.login(user, true);
+        await this.model.updateOne({ _id: userId }, { [this.passwordField]: hashedPassword });
+        if (this.resetPasswordOptions?.changePasswordCallback) {
+            const user = await this.findOneDocument(userId);
+            await this.resetPasswordOptions.changePasswordCallback(this.buildInstance(user), this.callbackMethods);
+        }
     }
     buildUserFields(user, fieldsToBuild) {
         return this.buildInstance(fieldsToBuild.reduce((acc, field) => (user[field] !== undefined ? { ...acc, [field]: user[field] } : acc), {}));

package/src/routes/create-many/base-create-many.service.js

@@ -15,7 +15,7 @@ class BaseCreateManyService extends services_1.BaseService {
                 .lean()
                 .exec();
             if (this.callback && documents.length) {
-                await Promise.all(documents.map((document) => this.callback(document, this.model)));
+                await Promise.all(documents.map((document) => this.callback(document, this.callbackMethods)));
             }
             return documents.map((d) => this.buildInstance(d));
         }

package/src/routes/create-many/create-many-controller.mixin.js

@@ -16,11 +16,10 @@ exports.CreateManyControllerMixin = void 0;
 const common_1 = require("@nestjs/common");
 const builders_1 = require("../../builders");
 const helpers_1 = require("../../helpers");
-const controller_mixin_helper_1 = require("../../helpers/controller-mixin.helper");
 const mixins_1 = require("../../mixins");
 function CreateManyControllerMixin(entity, controllerOptions, routeConfig, version) {
     var _a;
-    const { routeType, description, isPublic, RouteBody, RoutePresenter, abilityPredicate, } = (0, controller_mixin_helper_1.getControllerMixinData)(entity, controllerOptions, routeConfig, version);
+    const { routeType, description, isPublic, RouteBody, RoutePresenter, abilityPredicate, } = (0, helpers_1.getControllerMixinData)(entity, controllerOptions, routeConfig, version);
     const routeDecoratorsBuilder = new builders_1.RouteDecoratorsBuilder(routeType, entity, version, description, isPublic, {
         body: RouteBody,
         presenter: RoutePresenter,