strapi-identity 0.0.1-debug.0

package/dist/server/src/bootstrap.d.ts

@@ -0,0 +1,3 @@
+import type { Plugin } from '@strapi/types';
+declare const bootstrap: Plugin.LoadedPlugin['bootstrap'];
+export default bootstrap;

package/dist/server/src/config/index.d.ts

@@ -0,0 +1,3 @@
+import type { Plugin } from '@strapi/types';
+declare const config: Plugin.LoadedPlugin['config'];
+export default config;

package/dist/server/src/content-types/config/index.d.ts

@@ -0,0 +1,38 @@
+declare const _default: {
+    schema: {
+        kind: string;
+        collectionName: string;
+        info: {
+            singularName: string;
+            pluralName: string;
+            displayName: string;
+        };
+        options: {
+            draftAndPublish: boolean;
+        };
+        pluginOptions: {
+            "content-manager": {
+                visible: boolean;
+            };
+            "content-type-builder": {
+                visible: boolean;
+            };
+        };
+        attributes: {
+            enabled: {
+                type: string;
+                default: boolean;
+            };
+            enforce: {
+                type: string;
+                default: boolean;
+            };
+            issuer: {
+                type: string;
+                required: boolean;
+                default: string;
+            };
+        };
+    };
+};
+export default _default;

package/dist/server/src/content-types/index.d.ts

@@ -0,0 +1,3 @@
+import type { Plugin } from '@strapi/types';
+declare const contentTypes: Plugin.LoadedPlugin['contentTypes'];
+export default contentTypes;

package/dist/server/src/content-types/mfa/index.d.ts

@@ -0,0 +1,56 @@
+declare const _default: {
+    schema: {
+        kind: string;
+        collectionName: string;
+        info: {
+            singularName: string;
+            pluralName: string;
+            displayName: string;
+        };
+        options: {
+            draftAndPublish: boolean;
+        };
+        pluginOptions: {
+            "content-manager": {
+                visible: boolean;
+            };
+            "content-type-builder": {
+                visible: boolean;
+            };
+        };
+        attributes: {
+            admin_user: {
+                type: string;
+                relation: string;
+                target: string;
+            };
+            enabled: {
+                type: string;
+                default: boolean;
+            };
+            type: {
+                type: string;
+                enum: string[];
+                default: string;
+            };
+            secret: {
+                type: string;
+                required: boolean;
+                private: boolean;
+            };
+            counter: {
+                type: string;
+                default: string;
+            };
+            digits: {
+                type: string;
+                default: number;
+            };
+            recovery_codes: {
+                type: string;
+                private: boolean;
+            };
+        };
+    };
+};
+export default _default;

package/dist/server/src/content-types/temp-mfa/index.d.ts

@@ -0,0 +1,35 @@
+declare const _default: {
+    schema: {
+        kind: string;
+        collectionName: string;
+        info: {
+            singularName: string;
+            pluralName: string;
+            displayName: string;
+        };
+        options: {
+            draftAndPublish: boolean;
+        };
+        pluginOptions: {
+            "content-manager": {
+                visible: boolean;
+            };
+            "content-type-builder": {
+                visible: boolean;
+            };
+        };
+        attributes: {
+            admin_user: {
+                type: string;
+                relation: string;
+                target: string;
+            };
+            secret: {
+                type: string;
+                required: boolean;
+                private: boolean;
+            };
+        };
+    };
+};
+export default _default;

package/dist/server/src/controllers/admin.d.ts

@@ -0,0 +1,3 @@
+import type { Core } from '@strapi/strapi';
+declare const _default: Core.Controller;
+export default _default;

package/dist/server/src/controllers/config.d.ts

@@ -0,0 +1,3 @@
+import type { Core } from '@strapi/strapi';
+declare const _default: Core.Controller;
+export default _default;

package/dist/server/src/controllers/controller.d.ts

@@ -0,0 +1,3 @@
+import type { Core } from '@strapi/strapi';
+declare const _default: Core.Controller;
+export default _default;

package/dist/server/src/controllers/index.d.ts

@@ -0,0 +1,3 @@
+import type { Plugin } from '@strapi/strapi';
+declare const controllers: Plugin.LoadedPlugin['controllers'];
+export default controllers;

package/dist/server/src/destroy.d.ts

@@ -0,0 +1,3 @@
+import type { Plugin } from '@strapi/types';
+declare const destroy: Plugin.LoadedPlugin['destroy'];
+export default destroy;

package/dist/server/src/index.d.ts

@@ -0,0 +1,26 @@
+declare const _default: {
+    register: ({ strapi }: {
+        strapi: import("@strapi/types/dist/core").Strapi;
+    }) => void | Promise<void>;
+    bootstrap: ({ strapi }: {
+        strapi: import("@strapi/types/dist/core").Strapi;
+    }) => void | Promise<void>;
+    destroy: ({ strapi }: {
+        strapi: import("@strapi/types/dist/core").Strapi;
+    }) => void | Promise<void>;
+    config: {
+        default: Record<string, unknown> | ((opts: {
+            env: import("@strapi/utils/dist/env-helper").Env;
+        }) => Record<string, unknown>);
+        validator: (config: Record<string, unknown>) => void;
+    };
+    controllers: Record<string, import("@strapi/types/dist/core").Controller>;
+    routes: Record<string, import("@strapi/types/dist/core").Router>;
+    services: Record<string, import("@strapi/types/dist/core").Service>;
+    contentTypes: Record<string, {
+        schema: import("@strapi/types/dist/struct").ContentTypeSchema;
+    }>;
+    policies: Record<string, import("@strapi/types/dist/core").Policy>;
+    middlewares: Record<string, import("@strapi/types/dist/core").Middleware>;
+};
+export default _default;

package/dist/server/src/middlewares/index.d.ts

@@ -0,0 +1,3 @@
+import type { Plugin } from '@strapi/types';
+declare const middlewares: Plugin.LoadedPlugin['middlewares'];
+export default middlewares;

package/dist/server/src/policies/has-mfa.d.ts

@@ -0,0 +1,3 @@
+import type { Plugin } from '@strapi/types';
+declare const policy: Plugin.LoadedPlugin['policies'][string];
+export default policy;

package/dist/server/src/policies/index.d.ts

@@ -0,0 +1,3 @@
+import type { Plugin } from '@strapi/types';
+declare const policies: Plugin.LoadedPlugin['policies'];
+export default policies;

package/dist/server/src/register.d.ts

@@ -0,0 +1,3 @@
+import type { Plugin } from '@strapi/types';
+declare const register: Plugin.LoadedPlugin['register'];
+export default register;

package/dist/server/src/routes/admin/index.d.ts

@@ -0,0 +1,2 @@
+declare const _default: import("@strapi/types/dist/core").Router;
+export default _default;

package/dist/server/src/routes/index.d.ts

@@ -0,0 +1,3 @@
+import type { Plugin } from '@strapi/types';
+declare const routes: Plugin.LoadedPlugin['routes'];
+export default routes;

package/dist/server/src/services/admin.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Check if 2FA is enabled for a user by looking for an associated MFA token.
+ * @param id the user's ID to check for an associated MFA token, indicating that 2FA is enabled for that user
+ * @returns a boolean indicating whether 2FA is enabled for the user (true if an MFA token exists, false otherwise)
+ */
+export declare const isEnabled: (id: string) => false | Promise<boolean>;
+/**
+ * Resets 2FA for a user by deleting any existing MFA token and temporary secret associated with that user.
+ * @param id the user's ID for which to reset 2FA, which will delete any associated MFA token and temporary secret, effectively disabling 2FA for that user until they set it up again
+ */
+export declare const reset: (id: string) => Promise<void>;

package/dist/server/src/services/config.d.ts

@@ -0,0 +1,28 @@
+/**
+ * Service for managing the Strapi Identity plugin configuration
+ * @returns an object containing functions to get and update the plugin configuration
+ */
+export declare const isEnabled: () => Promise<unknown>;
+/**
+ * Retrieves the current configuration for the Strapi Identity plugin
+ * @returns the current configuration
+ */
+export declare const getConfig: () => Promise<{
+    enabled: unknown;
+    enforce: unknown;
+    issuer: unknown;
+}>;
+/**
+ * Updates the Strapi Identity plugin configuration with the provided data
+ * @param data partial configuration data to update
+ * @returns  the updated configuration
+ */
+export declare const updateConfig: (data: Partial<{
+    enabled: boolean;
+    enforce: boolean;
+    issuer: string;
+}>) => Promise<{
+    enabled: unknown;
+    enforce: unknown;
+    issuer: unknown;
+}>;

package/dist/server/src/services/index.d.ts

@@ -0,0 +1,3 @@
+import type { Plugin } from '@strapi/types';
+declare const services: Plugin.LoadedPlugin['services'];
+export default services;

package/dist/server/src/services/mfa.d.ts

@@ -0,0 +1,50 @@
+import { Secret } from 'otpauth';
+/**
+ * Validates a TOTP token against the temporary secret for a given user
+ * @param userId id of the user to validate against
+ * @param token TOTP token to validate
+ * @returns {Promise<boolean>} is the token valid
+ */
+export declare const validateTempToken: (userId: string, token: string) => Promise<boolean>;
+/**
+ * Validates a code against both the user's active TOTP secret and their recovery codes
+ * @param userId id of the user to validate against
+ * @param code code to validate (either TOTP token or recovery code)
+ * @returns {Promise<boolean>} is the code valid
+ */
+export declare const validateTokenOrRecoveryCode: (userId: string, code: string) => Promise<boolean>;
+/**
+ * Sets up a temporary secret for a user during MFA setup
+ * @param userId id of the user to set up MFA for
+ * @return {Promise<Secret>} the generated temporary secret
+ */
+export declare const setupTemporarySecret: (userId: string) => Promise<Secret>;
+/**
+ * Finalizes MFA setup by moving the temporary secret to the main token document and generating recovery codes
+ * @param userId id of the user to finalize MFA setup for
+ * @returns {Promise<string[]>} the generated recovery codes
+ */
+export declare const setupFullSecret: (userId: string) => Promise<string[]>;
+/**
+ * Disables MFA for a user after validating the provided TOTP token or recovery code
+ * @param userId id of the user to disable MFA for
+ * @param code a valid TOTP token or recovery code for the user
+ */
+export declare const disableSecret: (userId: string, code: string) => Promise<void>;
+/**
+ * Disables the temporary secret for a user, effectively canceling the MFA setup process
+ * @param userId id of the user to disable the temporary secret for
+ */
+export declare const disableTempSecret: (userId: string) => Promise<void>;
+/**
+ * Checks if MFA is currently enabled for a given user
+ * @param userId id of the user to check
+ * @returns {Promise<'full' | null>} is MFA enabled for the user
+ */
+export declare const isMFAEnabled: (userId: string) => Promise<'full' | null>;
+/**
+ * Generates a secure random recovery code of the specified length
+ * @param length length of the recovery code to generate (default: 8)
+ * @returns {string} the generated recovery code
+ */
+export declare const generateRecoveryCode: (length?: number) => string;

package/package.json

@@ -0,0 +1,88 @@
+{
+  "version": "0.0.1-debug.0",
+  "keywords": [
+    "strapi",
+    "plugin",
+    "authentication",
+    "2FA",
+    "MFA"
+  ],
+  "type": "commonjs",
+  "exports": {
+    "./package.json": "./package.json",
+    "./strapi-admin": {
+      "types": "./dist/admin/src/index.d.ts",
+      "source": "./admin/src/index.ts",
+      "import": "./dist/admin/index.mjs",
+      "require": "./dist/admin/index.js",
+      "default": "./dist/admin/index.js"
+    },
+    "./strapi-server": {
+      "types": "./dist/server/src/index.d.ts",
+      "source": "./server/src/index.ts",
+      "import": "./dist/server/index.mjs",
+      "require": "./dist/server/index.js",
+      "default": "./dist/server/index.js"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "strapi-plugin build",
+    "watch": "strapi-plugin watch",
+    "watch:link": "strapi-plugin watch:link",
+    "verify": "strapi-plugin verify",
+    "test:ts:front": "run -T tsc -p admin/tsconfig.json",
+    "test:ts:back": "run -T tsc -p server/tsconfig.json"
+  },
+  "dependencies": {
+    "input-otp": "^1.4.2",
+    "otpauth": "^9.5.0",
+    "react-qr-code": "^2.0.18",
+    "strapi-admin-portal": "^0.0.3"
+  },
+  "devDependencies": {
+    "@strapi/sdk-plugin": "^5.4.0",
+    "@strapi/strapi": "^5.35.0",
+    "@strapi/typescript-utils": "^5.35.0",
+    "@types/bcryptjs": "^2.4.6",
+    "@types/react": "^18.3.27",
+    "@types/react-dom": "^18.3.7",
+    "prettier": "^3.8.1",
+    "react": "^18.3.1",
+    "react-dom": "^18.3.1",
+    "react-router-dom": "^6.30.3",
+    "styled-components": "^6.3.8",
+    "typescript": "^5.9.3"
+  },
+  "peerDependencies": {
+    "@strapi/design-system": "^2.1.2",
+    "@strapi/icons": "^2.1.2",
+    "@strapi/sdk-plugin": "^5.4.0",
+    "@strapi/strapi": "^5.34.0",
+    "react": "^18.3.1",
+    "react-dom": "^18.3.1",
+    "react-intl": "^6.6.2",
+    "react-router-dom": "^6.30.3",
+    "styled-components": "^6.3.8"
+  },
+  "strapi": {
+    "kind": "plugin",
+    "name": "strapi-identity",
+    "displayName": "Strapi Identity",
+    "description": "Strapi plugin to add missing features to the strapi auth system"
+  },
+  "name": "strapi-identity",
+  "description": "Strapi plugin to add missing features to the strapi auth system",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+ssh://git@github.com/Link2Twenty/strapi-identity.git"
+  },
+  "bugs": {
+    "url": "https://github.com/Link2Twenty/strapi-identity/issues"
+  },
+  "homepage": "https://github.com/Link2Twenty/strapi-identity#readme",
+  "author": "Andrew Bone <AndrewB05+strapi@gmail.com>"
+}