storemw-core-api 1.0.138 → 1.0.140

package/dist/services/utils/unuse/ChangePasswordUtilService.js

@@ -0,0 +1,78 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ChangePasswordUtilService = void 0;
+const utils_1 = require("../../../utils");
+const services_1 = require("../../../services");
+// import { config } from "../../../configs/config";
+const utils_2 = require("../../../utils");
+const ChangePasswordUtilService = (props) => {
+    const { secretKey, ...rest } = props;
+    const changePassword = async ({ authToken, currentPassword, confirmPassword, newPassword }) => {
+        // retrive core configuration
+        const coreConfig = (0, utils_1.getCoreConfiguration)();
+        // const authSecretKey = config.AUTH_SECRET_KEY
+        const authSecretKey = coreConfig.authSecretKey;
+        // validate the token
+        const jwtData = (0, utils_2.verifyAuthToken)(authToken, authSecretKey);
+        const accountId = jwtData?.account?.account_id ?? "";
+        const userId = jwtData?.user?.user_id ?? "";
+        const userType = jwtData?.user?.user_type ?? "";
+        if (!accountId && userType !== "operator") { // operator token do not have account id
+            (0, utils_1.throwError)(`Invalid or missing account id in auth token`);
+        }
+        if (!userId) {
+            (0, utils_1.throwError)(`Missing user id in auth token`);
+        }
+        if (!userType) {
+            (0, utils_1.throwError)(`Missing user type in auth token`);
+        }
+        const userService = (0, services_1.UserService)({ userType, ...rest });
+        const accountService = (0, services_1.AccountService)({ ...rest, isOperator: true });
+        const user = await userService.getUser({ id: Number(userId), datatypes: [], includePassword: true });
+        const account = await accountService.getAccount({ id: Number(accountId), datatypes: [] });
+        // console.log('jwtData', jwtData)
+        // console.log('user', user)
+        // console.log('account', account)
+        // const a = await hashPassword(user?.password)
+        // check the accountId / userId is valid
+        if (!user?.user_id) {
+            (0, utils_1.throwError)(`Invalid user id in auth token`);
+        }
+        if (Object.keys(account).length <= 0) { // must have account id record
+            (0, utils_1.throwError)(`Invalid account id in auth token`);
+        }
+        // new password cannot same with current password
+        if (newPassword === currentPassword) {
+            (0, utils_1.throwError)(`New and current password cannot be same`);
+        }
+        // new password must same with confirm
+        if (newPassword !== confirmPassword) {
+            (0, utils_1.throwError)(`New and confirm password not matched`);
+        }
+        // check the current password
+        try {
+            const decryptedPass = await (0, utils_2.verifyPassword)(currentPassword, user?.password);
+            // console.log('decryptedPass', decryptedPass)
+            if (!decryptedPass) {
+                throw Error(`Invalid current password`);
+            }
+        }
+        catch (error) {
+            (0, utils_1.throwError)(`Auth Token: ${error?.message}`);
+        }
+        // perform update credential
+        const responseUser = await userService.replacePassword({
+            id: Number(userId),
+            data: {
+                unhashLoginPassword: newPassword
+            },
+            isOperator: Boolean(userType === "operator")
+        });
+        return responseUser;
+    };
+    return {
+        changePassword
+    };
+};
+exports.ChangePasswordUtilService = ChangePasswordUtilService;
+//# sourceMappingURL=ChangePasswordUtilService.js.map

package/dist/services/utils/unuse/ChangePasswordUtilService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ChangePasswordUtilService.js","sourceRoot":"","sources":["../../../../src/services/utils/unuse/ChangePasswordUtilService.ts"],"names":[],"mappings":";;;AAAA,mCAAgF;AAChF,yCAGoB;AAEpB,6CAA6C;AAE7C,mCAAuE;AAahE,MAAM,yBAAyB,GAAG,CAAC,KAAqC,EAAE,EAAE;IAE/E,MAAM,EACF,SAAS,EACT,GAAG,IAAI,EACV,GAAG,KAAK,CAAA;IAET,MAAM,cAAc,GAAG,KAAK,EAAE,EAAE,SAAS,EAAE,eAAe,EAAE,eAAe,EAAE,WAAW,EAAiC,EAAE,EAAE;QAEzH,6BAA6B;QAC7B,MAAM,UAAU,GAAG,IAAA,4BAAoB,GAAE,CAAA;QAEzC,+CAA+C;QAC/C,MAAM,aAAa,GAAG,UAAU,CAAC,aAAa,CAAA;QAE9C,qBAAqB;QACrB,MAAM,OAAO,GAAG,IAAA,uBAAe,EAAC,SAAS,EAAE,aAAa,CAAC,CAAC;QAE1D,MAAM,SAAS,GAAG,OAAO,EAAE,OAAO,EAAE,UAAU,IAAI,EAAE,CAAC;QACrD,MAAM,MAAM,GAAG,OAAO,EAAE,IAAI,EAAE,OAAO,IAAI,EAAE,CAAC;QAC5C,MAAM,QAAQ,GAAG,OAAO,EAAE,IAAI,EAAE,SAAS,IAAI,EAAE,CAAC;QAEhD,IAAI,CAAC,SAAS,IAAI,QAAQ,KAAK,UAAU,EAAE,CAAC,CAAC,wCAAwC;YACjF,IAAA,kBAAU,EAAC,6CAA6C,CAAC,CAAA;QAC7D,CAAC;QAED,IAAI,CAAC,MAAM,EAAE,CAAC;YACV,IAAA,kBAAU,EAAC,+BAA+B,CAAC,CAAA;QAC/C,CAAC;QAED,IAAI,CAAC,QAAQ,EAAE,CAAC;YACZ,IAAA,kBAAU,EAAC,iCAAiC,CAAC,CAAA;QACjD,CAAC;QAED,MAAM,WAAW,GAAG,IAAA,sBAAW,EAAC,EAAE,QAAQ,EAAE,GAAG,IAAI,EAAE,CAAC,CAAA;QACtD,MAAM,cAAc,GAAG,IAAA,yBAAc,EAAC,EAAE,GAAG,IAAI,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CAAA;QAEpE,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,MAAM,CAAC,MAAM,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,eAAe,EAAE,IAAI,EAAE,CAAC,CAAA;QACpG,MAAM,OAAO,GAAG,MAAM,cAAc,CAAC,UAAU,CAAC,EAAE,EAAE,EAAE,MAAM,CAAC,SAAS,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC,CAAA;QAEzF,kCAAkC;QAClC,4BAA4B;QAC5B,kCAAkC;QAElC,+CAA+C;QAE/C,wCAAwC;QACxC,IAAI,CAAC,IAAI,EAAE,OAAO,EAAE,CAAC;YACjB,IAAA,kBAAU,EAAC,+BAA+B,CAAC,CAAA;QAC/C,CAAC;QAED,IAAI,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC,CAAC,8BAA8B;YAClE,IAAA,kBAAU,EAAC,kCAAkC,CAAC,CAAA;QAClD,CAAC;QAED,iDAAiD;QACjD,IAAI,WAAW,KAAK,eAAe,EAAE,CAAC;YAClC,IAAA,kBAAU,EAAC,yCAAyC,CAAC,CAAA;QACzD,CAAC;QAED,sCAAsC;QACtC,IAAI,WAAW,KAAK,eAAe,EAAE,CAAC;YAClC,IAAA,kBAAU,EAAC,sCAAsC,CAAC,CAAA;QACtD,CAAC;QAED,6BAA6B;QAC7B,IAAI,CAAC;YACD,MAAM,aAAa,GAAG,MAAM,IAAA,sBAAc,EAAC,eAAe,EAAE,IAAI,EAAE,QAAQ,CAAC,CAAA;YAC3E,8CAA8C;YAE9C,IAAI,CAAC,aAAa,EAAE,CAAC;gBACjB,MAAM,KAAK,CAAC,0BAA0B,CAAC,CAAA;YAC3C,CAAC;QAEL,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YAClB,IAAA,kBAAU,EAAC,eAAe,KAAK,EAAE,OAAO,EAAE,CAAC,CAAA;QAC/C,CAAC;QAED,4BAA4B;QAC5B,MAAM,YAAY,GAAG,MAAM,WAAW,CAAC,eAAe,CAAC;YACnD,EAAE,EAAE,MAAM,CAAC,MAAM,CAAC;YAClB,IAAI,EAAE;gBACF,mBAAmB,EAAE,WAAW;aACnC;YACD,UAAU,EAAE,OAAO,CAAC,QAAQ,KAAK,UAAU,CAAC;SAC/C,CAAC,CAAA;QAEF,OAAO,YAAY,CAAA;IAEvB,CAAC,CAAA;IAED,OAAO;QACH,cAAc;KACjB,CAAA;AAEL,CAAC,CAAA;AA/FY,QAAA,yBAAyB,6BA+FrC","sourcesContent":["import { DefaultServiceProps, getCoreConfiguration, throwError } from \"@/utils\";\nimport {\n    UserService,\n    AccountService,\n} from \"@/services\";\n\n// import { config } from \"@/configs/config\";\n\nimport { verifyPassword, verifyAuthToken, hashPassword } from \"@/utils\"\n\nexport type ChangePasswordUtilServiceProps = DefaultServiceProps & {\n    secretKey: string,\n};\n\nexport type ChangePasswordUtilChangeProps = {\n    authToken: string,\n    currentPassword: string\n    newPassword: string\n    confirmPassword: string\n};\n\nexport const ChangePasswordUtilService = (props: ChangePasswordUtilServiceProps) => {\n\n    const {\n        secretKey,\n        ...rest\n    } = props\n\n    const changePassword = async ({ authToken, currentPassword, confirmPassword, newPassword }: ChangePasswordUtilChangeProps) => {\n\n        // retrive core configuration\n        const coreConfig = getCoreConfiguration()\n\n        // const authSecretKey = config.AUTH_SECRET_KEY\n        const authSecretKey = coreConfig.authSecretKey\n\n        // validate the token\n        const jwtData = verifyAuthToken(authToken, authSecretKey);\n\n        const accountId = jwtData?.account?.account_id ?? \"\";\n        const userId = jwtData?.user?.user_id ?? \"\";\n        const userType = jwtData?.user?.user_type ?? \"\";\n\n        if (!accountId && userType !== \"operator\") { // operator token do not have account id\n            throwError(`Invalid or missing account id in auth token`)\n        }\n\n        if (!userId) {\n            throwError(`Missing user id in auth token`)\n        }\n\n        if (!userType) {\n            throwError(`Missing user type in auth token`)\n        }\n\n        const userService = UserService({ userType, ...rest })\n        const accountService = AccountService({ ...rest, isOperator: true })\n\n        const user = await userService.getUser({ id: Number(userId), datatypes: [], includePassword: true })\n        const account = await accountService.getAccount({ id: Number(accountId), datatypes: [] })\n\n        // console.log('jwtData', jwtData)\n        // console.log('user', user)\n        // console.log('account', account)\n\n        // const a = await hashPassword(user?.password)\n\n        // check the accountId / userId is valid\n        if (!user?.user_id) {\n            throwError(`Invalid user id in auth token`)\n        }\n\n        if (Object.keys(account).length <= 0) { // must have account id record\n            throwError(`Invalid account id in auth token`)\n        }\n\n        // new password cannot same with current password\n        if (newPassword === currentPassword) {\n            throwError(`New and current password cannot be same`)\n        }\n\n        // new password must same with confirm\n        if (newPassword !== confirmPassword) {\n            throwError(`New and confirm password not matched`)\n        }\n\n        // check the current password\n        try {\n            const decryptedPass = await verifyPassword(currentPassword, user?.password)\n            // console.log('decryptedPass', decryptedPass)\n\n            if (!decryptedPass) {\n                throw Error(`Invalid current password`)\n            }\n\n        } catch (error: any) {\n            throwError(`Auth Token: ${error?.message}`)\n        }\n\n        // perform update credential\n        const responseUser = await userService.replacePassword({\n            id: Number(userId),\n            data: {\n                unhashLoginPassword: newPassword\n            },\n            isOperator: Boolean(userType === \"operator\")\n        })\n\n        return responseUser\n\n    }\n\n    return {\n        changePassword\n    }\n\n}\n\n"]}

package/dist/utils/index.d.ts

@@ -12,6 +12,6 @@ export { getDefaultServiceProps, generateServiceProps } from "./serviceUtils";
 export { buildFullFieldName, groupPayloadInjectionFields } from "./injectionFieldUtils";
 export { generateAuthToken, verifyAuthToken } from "./authUtils";
 export { generateAccessKeyId, generateAccessKeySecret, hashAccessKeySecret, encryptAccessKeySecret, decryptAccessKeySecret } from "./accessKeyUtils";
-export { hashPassword, verifyPassword } from "./passwordUtils";
+export { loginPasswordFormatSchema, validateLoginPasswordFormat, hashPassword, verifyPassword } from "./passwordUtils";
 export { generateFileThumbnailBuffer } from "./fileThumbnail";
 export { validateFormatEmailAddress, validateFormatMobileNumber } from "./validateFormatUtils";

package/dist/utils/index.js

@@ -3,7 +3,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.validateFormatMobileNumber = exports.validateFormatEmailAddress = exports.generateFileThumbnailBuffer = exports.verifyPassword = exports.hashPassword = exports.decryptAccessKeySecret = exports.encryptAccessKeySecret = exports.hashAccessKeySecret = exports.generateAccessKeySecret = exports.generateAccessKeyId = exports.verifyAuthToken = exports.generateAuthToken = exports.groupPayloadInjectionFields = exports.buildFullFieldName = exports.generateServiceProps = exports.getDefaultServiceProps = exports.buildCommonStatusSchema = exports.getFormattedZodErrorsIntoString = exports.getFormattedZodErrors = exports.logError = exports.throwError = exports.logger = exports.normalizePublicScopeFromBody = exports.createPublicScopeSchema = exports.validateModelFieldsWithData = exports.convertPayloadByTableSchema = exports.validateMultipleSchemas = exports.validateWithSchema = exports.formatDisplayDateTime = exports.getCurrentDateTimeISO = exports.getCurrentDateTime = exports.dayjs = exports.sendSuccess = exports.sendError = exports.HTTP_STATUS = exports.sharp = exports._ = exports.getCoreConfiguration = void 0;
+exports.validateFormatMobileNumber = exports.validateFormatEmailAddress = exports.generateFileThumbnailBuffer = exports.verifyPassword = exports.hashPassword = exports.validateLoginPasswordFormat = exports.loginPasswordFormatSchema = exports.decryptAccessKeySecret = exports.encryptAccessKeySecret = exports.hashAccessKeySecret = exports.generateAccessKeySecret = exports.generateAccessKeyId = exports.verifyAuthToken = exports.generateAuthToken = exports.groupPayloadInjectionFields = exports.buildFullFieldName = exports.generateServiceProps = exports.getDefaultServiceProps = exports.buildCommonStatusSchema = exports.getFormattedZodErrorsIntoString = exports.getFormattedZodErrors = exports.logError = exports.throwError = exports.logger = exports.normalizePublicScopeFromBody = exports.createPublicScopeSchema = exports.validateModelFieldsWithData = exports.convertPayloadByTableSchema = exports.validateMultipleSchemas = exports.validateWithSchema = exports.formatDisplayDateTime = exports.getCurrentDateTimeISO = exports.getCurrentDateTime = exports.dayjs = exports.sendSuccess = exports.sendError = exports.HTTP_STATUS = exports.sharp = exports._ = exports.getCoreConfiguration = void 0;
 var coreConfigUtils_1 = require("./coreConfigUtils");
 Object.defineProperty(exports, "getCoreConfiguration", { enumerable: true, get: function () { return coreConfigUtils_1.getCoreConfiguration; } });
 var lodash_1 = require("lodash");
@@ -55,6 +55,8 @@ Object.defineProperty(exports, "hashAccessKeySecret", { enumerable: true, get: f
 Object.defineProperty(exports, "encryptAccessKeySecret", { enumerable: true, get: function () { return accessKeyUtils_1.encryptAccessKeySecret; } });
 Object.defineProperty(exports, "decryptAccessKeySecret", { enumerable: true, get: function () { return accessKeyUtils_1.decryptAccessKeySecret; } });
 var passwordUtils_1 = require("./passwordUtils");
+Object.defineProperty(exports, "loginPasswordFormatSchema", { enumerable: true, get: function () { return passwordUtils_1.loginPasswordFormatSchema; } });
+Object.defineProperty(exports, "validateLoginPasswordFormat", { enumerable: true, get: function () { return passwordUtils_1.validateLoginPasswordFormat; } });
 Object.defineProperty(exports, "hashPassword", { enumerable: true, get: function () { return passwordUtils_1.hashPassword; } });
 Object.defineProperty(exports, "verifyPassword", { enumerable: true, get: function () { return passwordUtils_1.verifyPassword; } });
 var fileThumbnail_1 = require("./fileThumbnail");

package/dist/utils/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":";;;;;;AAAA,qDAAyD;AAAhD,uHAAA,oBAAoB,OAAA;AAC7B,iCAAsC;AAA7B,4GAAA,OAAO,OAAK;AACrB,+BAAyC;AAAhC,+GAAA,OAAO,OAAS;AACzB,iDAAsE;AAA7D,4GAAA,WAAW,OAAA;AAAE,0GAAA,SAAS,OAAA;AAAE,4GAAA,WAAW,OAAA;AAC5C,yCAAsG;AAA7F,kGAAA,KAAK,OAAA;AAAE,+GAAA,kBAAkB,OAAA;AAAE,kHAAA,qBAAqB,OAAA;AAAE,kHAAA,qBAAqB,OAAA;AAChF,6CAA6L;AAApL,iHAAA,kBAAkB,OAAA;AAAE,sHAAA,uBAAuB,OAAA;AAAE,0HAAA,2BAA2B,OAAA;AAAE,0HAAA,2BAA2B,OAAA;AAAE,sHAAA,uBAAuB,OAAA;AAAE,2HAAA,4BAA4B,OAAA;AACrK,uCAA+C;AAAtC,mHAAA,OAAO,OAAU;AAC1B,mDAAwD;AAA/C,4GAAA,UAAU,OAAA;AAAE,0GAAA,QAAQ,OAAA;AAC7B,2CAA2C;AAC3C,wFAAwF;AACxF,mEAAmE;AACnE,mDAAmD;AACnD,uCAA4G;AAAnG,iHAAA,qBAAqB,OAAA;AAAE,2HAAA,+BAA+B,OAAA;AAAE,mHAAA,uBAAuB,OAAA;AAExF,+CAA6E;AAApE,sHAAA,sBAAsB,OAAA;AAAE,oHAAA,oBAAoB,OAAA;AACrD,6DAAuF;AAA9E,yHAAA,kBAAkB,OAAA;AAAE,kIAAA,2BAA2B,OAAA;AACxD,yCAAgE;AAAvD,8GAAA,iBAAiB,OAAA;AAAE,4GAAA,eAAe,OAAA;AAC3C,mDAAoJ;AAA3I,qHAAA,mBAAmB,OAAA;AAAE,yHAAA,uBAAuB,OAAA;AAAE,qHAAA,mBAAmB,OAAA;AAAE,wHAAA,sBAAsB,OAAA;AAAE,wHAAA,sBAAsB,OAAA;AAC1H,iDAA8D;AAArD,6GAAA,YAAY,OAAA;AAAE,+GAAA,cAAc,OAAA;AACrC,iDAA6D;AAApD,4HAAA,2BAA2B,OAAA;AACpC,6DAA8F;AAArF,iIAAA,0BAA0B,OAAA;AAAE,iIAAA,0BAA0B,OAAA","sourcesContent":["export { getCoreConfiguration } from \"./coreConfigUtils\";\nexport { default as _ } from \"lodash\";\nexport { default as sharp } from \"sharp\";\nexport { HTTP_STATUS, sendError, sendSuccess } from \"./responseUtils\";\nexport { dayjs, getCurrentDateTime, getCurrentDateTimeISO, formatDisplayDateTime } from \"./dateUtils\";\nexport { validateWithSchema, validateMultipleSchemas, convertPayloadByTableSchema, validateModelFieldsWithData, createPublicScopeSchema, normalizePublicScopeFromBody } from \"./schemaUtils\";\nexport { default as logger } from \"./logUtils\";\nexport { throwError, logError } from \"./exceptionUtils\";\n// export { getSwmAuth } from \"./smwUtils\";\n// export { getRequestHeaderLocCode, checkRequestContentIsEmpty } from \"./requestUtils\";\n// export { storeJwtInMemory, getJwtFromMemory } from \"./jwtUtils\";\n// export { resizeImageBuffer } from \"./shapeUtils\"\nexport { getFormattedZodErrors, getFormattedZodErrorsIntoString, buildCommonStatusSchema } from \"./zodUtils\"\nexport type { DefaultServiceProps } from \"./serviceUtils\"\nexport { getDefaultServiceProps, generateServiceProps } from \"./serviceUtils\"\nexport { buildFullFieldName, groupPayloadInjectionFields } from \"./injectionFieldUtils\"\nexport { generateAuthToken, verifyAuthToken } from \"./authUtils\"\nexport { generateAccessKeyId, generateAccessKeySecret, hashAccessKeySecret, encryptAccessKeySecret, decryptAccessKeySecret } from \"./accessKeyUtils\"\nexport { hashPassword, verifyPassword } from \"./passwordUtils\"\nexport { generateFileThumbnailBuffer } from \"./fileThumbnail\"\nexport { validateFormatEmailAddress, validateFormatMobileNumber } from \"./validateFormatUtils\""]}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":";;;;;;AAAA,qDAAyD;AAAhD,uHAAA,oBAAoB,OAAA;AAC7B,iCAAsC;AAA7B,4GAAA,OAAO,OAAK;AACrB,+BAAyC;AAAhC,+GAAA,OAAO,OAAS;AACzB,iDAAsE;AAA7D,4GAAA,WAAW,OAAA;AAAE,0GAAA,SAAS,OAAA;AAAE,4GAAA,WAAW,OAAA;AAC5C,yCAAsG;AAA7F,kGAAA,KAAK,OAAA;AAAE,+GAAA,kBAAkB,OAAA;AAAE,kHAAA,qBAAqB,OAAA;AAAE,kHAAA,qBAAqB,OAAA;AAChF,6CAA6L;AAApL,iHAAA,kBAAkB,OAAA;AAAE,sHAAA,uBAAuB,OAAA;AAAE,0HAAA,2BAA2B,OAAA;AAAE,0HAAA,2BAA2B,OAAA;AAAE,sHAAA,uBAAuB,OAAA;AAAE,2HAAA,4BAA4B,OAAA;AACrK,uCAA+C;AAAtC,mHAAA,OAAO,OAAU;AAC1B,mDAAwD;AAA/C,4GAAA,UAAU,OAAA;AAAE,0GAAA,QAAQ,OAAA;AAC7B,2CAA2C;AAC3C,wFAAwF;AACxF,mEAAmE;AACnE,mDAAmD;AACnD,uCAA4G;AAAnG,iHAAA,qBAAqB,OAAA;AAAE,2HAAA,+BAA+B,OAAA;AAAE,mHAAA,uBAAuB,OAAA;AAExF,+CAA6E;AAApE,sHAAA,sBAAsB,OAAA;AAAE,oHAAA,oBAAoB,OAAA;AACrD,6DAAuF;AAA9E,yHAAA,kBAAkB,OAAA;AAAE,kIAAA,2BAA2B,OAAA;AACxD,yCAAgE;AAAvD,8GAAA,iBAAiB,OAAA;AAAE,4GAAA,eAAe,OAAA;AAC3C,mDAAoJ;AAA3I,qHAAA,mBAAmB,OAAA;AAAE,yHAAA,uBAAuB,OAAA;AAAE,qHAAA,mBAAmB,OAAA;AAAE,wHAAA,sBAAsB,OAAA;AAAE,wHAAA,sBAAsB,OAAA;AAC1H,iDAAsH;AAA7G,0HAAA,yBAAyB,OAAA;AAAE,4HAAA,2BAA2B,OAAA;AAAE,6GAAA,YAAY,OAAA;AAAE,+GAAA,cAAc,OAAA;AAC7F,iDAA6D;AAApD,4HAAA,2BAA2B,OAAA;AACpC,6DAA8F;AAArF,iIAAA,0BAA0B,OAAA;AAAE,iIAAA,0BAA0B,OAAA","sourcesContent":["export { getCoreConfiguration } from \"./coreConfigUtils\";\nexport { default as _ } from \"lodash\";\nexport { default as sharp } from \"sharp\";\nexport { HTTP_STATUS, sendError, sendSuccess } from \"./responseUtils\";\nexport { dayjs, getCurrentDateTime, getCurrentDateTimeISO, formatDisplayDateTime } from \"./dateUtils\";\nexport { validateWithSchema, validateMultipleSchemas, convertPayloadByTableSchema, validateModelFieldsWithData, createPublicScopeSchema, normalizePublicScopeFromBody } from \"./schemaUtils\";\nexport { default as logger } from \"./logUtils\";\nexport { throwError, logError } from \"./exceptionUtils\";\n// export { getSwmAuth } from \"./smwUtils\";\n// export { getRequestHeaderLocCode, checkRequestContentIsEmpty } from \"./requestUtils\";\n// export { storeJwtInMemory, getJwtFromMemory } from \"./jwtUtils\";\n// export { resizeImageBuffer } from \"./shapeUtils\"\nexport { getFormattedZodErrors, getFormattedZodErrorsIntoString, buildCommonStatusSchema } from \"./zodUtils\"\nexport type { DefaultServiceProps } from \"./serviceUtils\"\nexport { getDefaultServiceProps, generateServiceProps } from \"./serviceUtils\"\nexport { buildFullFieldName, groupPayloadInjectionFields } from \"./injectionFieldUtils\"\nexport { generateAuthToken, verifyAuthToken } from \"./authUtils\"\nexport { generateAccessKeyId, generateAccessKeySecret, hashAccessKeySecret, encryptAccessKeySecret, decryptAccessKeySecret } from \"./accessKeyUtils\"\nexport { loginPasswordFormatSchema, validateLoginPasswordFormat, hashPassword, verifyPassword } from \"./passwordUtils\"\nexport { generateFileThumbnailBuffer } from \"./fileThumbnail\"\nexport { validateFormatEmailAddress, validateFormatMobileNumber } from \"./validateFormatUtils\""]}

package/dist/utils/passwordUtils.d.ts

@@ -1,2 +1,5 @@
+import z from "zod";
+export declare const loginPasswordFormatSchema: z.ZodString;
+export declare const validateLoginPasswordFormat: (loginPassword: string) => string;
 export declare function hashPassword(password: string): Promise<string>;
 export declare function verifyPassword(password: string, hash: string): Promise<boolean>;

package/dist/utils/passwordUtils.js

@@ -3,9 +3,31 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
+exports.validateLoginPasswordFormat = exports.loginPasswordFormatSchema = void 0;
 exports.hashPassword = hashPassword;
 exports.verifyPassword = verifyPassword;
 const bcrypt_1 = __importDefault(require("bcrypt"));
+const zod_1 = __importDefault(require("zod"));
+// Zod schema for password format
+exports.loginPasswordFormatSchema = zod_1.default
+    .string()
+    .min(8, { message: "Password must be at least 8 characters" })
+    .max(64, { message: "Password must be at most 64 characters" })
+    .regex(/[a-zA-Z]/, "Password must include at least one letter")
+    .regex(/[0-9!@#$%^&*()_\-+=]/, "Password must include at least one number or special character");
+const validateLoginPasswordFormat = (loginPassword) => {
+    try {
+        return exports.loginPasswordFormatSchema.parse(loginPassword); // throws if invalid
+    }
+    catch (err) {
+        if (err instanceof zod_1.default.ZodError) {
+            throw new Error(`Invalid login password criteria: "${loginPassword}". ` +
+                err.errors.map((e) => e.message).join("; "));
+        }
+        throw err;
+    }
+};
+exports.validateLoginPasswordFormat = validateLoginPasswordFormat;
 // Hash a password
 async function hashPassword(password) {
     const saltRounds = 12; // Adjust for security vs performance

package/dist/utils/passwordUtils.js.map

@@ -1 +1 @@
-{"version":3,"file":"passwordUtils.js","sourceRoot":"","sources":["../../src/utils/passwordUtils.ts"],"names":[],"mappings":";;;;;AAGA,oCAIC;AAGD,wCAMC;AAhBD,oDAA4B;AAE5B,kBAAkB;AACX,KAAK,UAAU,YAAY,CAAC,QAAgB;IAC/C,MAAM,UAAU,GAAG,EAAE,CAAC,CAAC,qCAAqC;IAC5D,MAAM,IAAI,GAAG,MAAM,gBAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;IACrD,OAAO,IAAI,CAAC;AAChB,CAAC;AAED,kBAAkB;AACX,KAAK,UAAU,cAAc,CAAC,QAAgB,EAAE,IAAY;IAC/D,IAAI,CAAC;QACD,OAAO,MAAM,gBAAM,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;IAChD,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACb,MAAM,KAAK,CAAC,8BAA8B,QAAQ,EAAE,CAAC,CAAA;IACzD,CAAC;AACL,CAAC","sourcesContent":["import bcrypt from \"bcrypt\";\n\n// Hash a password\nexport async function hashPassword(password: string): Promise<string> {\n    const saltRounds = 12; // Adjust for security vs performance\n    const hash = await bcrypt.hash(password, saltRounds);\n    return hash;\n}\n\n// Verify password\nexport async function verifyPassword(password: string, hash: string): Promise<boolean> {\n    try {\n        return await bcrypt.compare(password, hash);\n    } catch (error) {\n        throw Error(`Failed to verify password: ${password}`)\n    }\n}"]}
+{"version":3,"file":"passwordUtils.js","sourceRoot":"","sources":["../../src/utils/passwordUtils.ts"],"names":[],"mappings":";;;;;;AA2BA,oCAIC;AAGD,wCAMC;AAxCD,oDAA4B;AAE5B,8CAAoB;AAEpB,iCAAiC;AACpB,QAAA,yBAAyB,GAAG,aAAC;KACrC,MAAM,EAAE;KACR,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,EAAE,wCAAwC,EAAE,CAAC;KAC7D,GAAG,CAAC,EAAE,EAAE,EAAE,OAAO,EAAE,wCAAwC,EAAE,CAAC;KAC9D,KAAK,CAAC,UAAU,EAAE,2CAA2C,CAAC;KAC9D,KAAK,CAAC,sBAAsB,EAAE,gEAAgE,CAAC,CAAC;AAE9F,MAAM,2BAA2B,GAAG,CAAC,aAAqB,EAAE,EAAE;IACjE,IAAI,CAAC;QACD,OAAO,iCAAyB,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,oBAAoB;IAC/E,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACX,IAAI,GAAG,YAAY,aAAC,CAAC,QAAQ,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CACX,qCAAqC,aAAa,KAAK;gBACvD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAC9C,CAAC;QACN,CAAC;QACD,MAAM,GAAG,CAAC;IACd,CAAC;AACL,CAAC,CAAC;AAZW,QAAA,2BAA2B,+BAYtC;AAEF,kBAAkB;AACX,KAAK,UAAU,YAAY,CAAC,QAAgB;IAC/C,MAAM,UAAU,GAAG,EAAE,CAAC,CAAC,qCAAqC;IAC5D,MAAM,IAAI,GAAG,MAAM,gBAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;IACrD,OAAO,IAAI,CAAC;AAChB,CAAC;AAED,kBAAkB;AACX,KAAK,UAAU,cAAc,CAAC,QAAgB,EAAE,IAAY;IAC/D,IAAI,CAAC;QACD,OAAO,MAAM,gBAAM,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;IAChD,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACb,MAAM,KAAK,CAAC,8BAA8B,QAAQ,EAAE,CAAC,CAAA;IACzD,CAAC;AACL,CAAC","sourcesContent":["import bcrypt from \"bcrypt\";\n\nimport z from \"zod\";\n\n// Zod schema for password format\nexport const loginPasswordFormatSchema = z\n    .string()\n    .min(8, { message: \"Password must be at least 8 characters\" })\n    .max(64, { message: \"Password must be at most 64 characters\" })\n    .regex(/[a-zA-Z]/, \"Password must include at least one letter\")\n    .regex(/[0-9!@#$%^&*()_\\-+=]/, \"Password must include at least one number or special character\");\n\nexport const validateLoginPasswordFormat = (loginPassword: string) => {\n    try {\n        return loginPasswordFormatSchema.parse(loginPassword); // throws if invalid\n    } catch (err) {\n        if (err instanceof z.ZodError) {\n            throw new Error(\n                `Invalid login password criteria: \"${loginPassword}\". ` +\n                err.errors.map((e) => e.message).join(\"; \")\n            );\n        }\n        throw err;\n    }\n};\n\n// Hash a password\nexport async function hashPassword(password: string): Promise<string> {\n    const saltRounds = 12; // Adjust for security vs performance\n    const hash = await bcrypt.hash(password, saltRounds);\n    return hash;\n}\n\n// Verify password\nexport async function verifyPassword(password: string, hash: string): Promise<boolean> {\n    try {\n        return await bcrypt.compare(password, hash);\n    } catch (error) {\n        throw Error(`Failed to verify password: ${password}`)\n    }\n}"]}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "storemw-core-api",
-  "version": "1.0.138",
+  "version": "1.0.140",
   "description": "STOREMW Core API",
   "main": "dist/app.js",
   "types": "dist/app.d.ts",