weave-typescript 0.33.0 → 0.35.0

package/dist/weavesql/weavedb/auth_identity_sql.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.deleteExpiredApplicationSessionsQuery = exports.markApplicationSessionOrganizationSessionStateQuery = exports.listApplicationSessionOrganizationSessionStatesQuery = exports.getApplicationSessionOrganizationSessionQuery = exports.upsertApplicationSessionOrganizationSessionQuery = exports.revokeApplicationSessionQuery = exports.setApplicationSessionActiveOrganizationQuery = exports.getApplicationSessionQuery = exports.createApplicationSessionQuery = exports.insertAuthAuditEventQuery = exports.endSupportAccessSessionQuery = exports.createSupportAccessSessionQuery = exports.createPlatformAdminGrantQuery = exports.listActivePlatformAdminGrantsForUserQuery = exports.listOrganizationMembersQuery = exports.listOrganizationMembershipsForUserQuery = exports.getOrganizationMembershipQuery = exports.upsertOrganizationMembershipQuery = exports.upsertOrganizationAuthLinkQuery = exports.getOrganizationAuthLinkByOrganizationIDQuery = exports.getOrganizationAuthLinkByStytchIDQuery = exports.upsertIdentityLinkQuery = exports.getIdentityLinkByStytchMemberQuery = exports.getUserProfileQuery = exports.upsertUserProfileQuery = exports.deleteOrganizationAuthDomainQuery = exports.listOrganizationAuthDomainsQuery = exports.upsertOrganizationAuthDomainQuery = exports.resolvePrimaryOrganizationAuthLinkByDomainQuery = exports.getUserPrimaryOrganizationAuthLinkQuery = exports.setUserPrimaryOrganizationQuery = exports.getUserByIDQuery = exports.createUserQuery = void 0;
+exports.deleteExpiredAuthInviteSessionsQuery = exports.revokeAuthInviteSessionsByMemberQuery = exports.markAuthInviteSessionRecoveryRequiredQuery = exports.markAuthInviteSessionCompletedQuery = exports.setAuthInviteSessionOAuthStateQuery = exports.getAuthInviteSessionQuery = exports.createAuthInviteSessionQuery = exports.deleteExpiredApplicationSessionsQuery = exports.markApplicationSessionOrganizationSessionStateQuery = exports.listApplicationSessionOrganizationSessionStatesQuery = exports.getApplicationSessionOrganizationSessionQuery = exports.upsertApplicationSessionOrganizationSessionQuery = exports.revokeApplicationSessionQuery = exports.setApplicationSessionActiveOrganizationQuery = exports.getApplicationSessionQuery = exports.createApplicationSessionQuery = exports.insertAuthAuditEventQuery = exports.endSupportAccessSessionQuery = exports.createSupportAccessSessionQuery = exports.createPlatformAdminGrantQuery = exports.listActivePlatformAdminGrantsForUserQuery = exports.listOrganizationMembersQuery = exports.listOrganizationMembershipsForUserQuery = exports.getOrganizationMembershipQuery = exports.upsertOrganizationMembershipQuery = exports.upsertOrganizationAuthLinkQuery = exports.getOrganizationAuthLinkByOrganizationIDQuery = exports.getOrganizationAuthLinkByStytchIDQuery = exports.upsertIdentityLinkQuery = exports.getIdentityLinkByStytchMemberQuery = exports.getUserProfileQuery = exports.upsertUserProfileQuery = exports.deleteOrganizationAuthDomainQuery = exports.listOrganizationAuthDomainsQuery = exports.upsertOrganizationAuthDomainQuery = exports.resolvePrimaryOrganizationAuthLinkByDomainQuery = exports.getUserPrimaryOrganizationAuthLinkQuery = exports.setUserPrimaryOrganizationQuery = exports.getUserByIDQuery = exports.createUserQuery = void 0;
 exports.createUser = createUser;
 exports.getUserByID = getUserByID;
 exports.setUserPrimaryOrganization = setUserPrimaryOrganization;
@@ -30,6 +30,11 @@ exports.upsertApplicationSessionOrganizationSession = upsertApplicationSessionOr
 exports.getApplicationSessionOrganizationSession = getApplicationSessionOrganizationSession;
 exports.listApplicationSessionOrganizationSessionStates = listApplicationSessionOrganizationSessionStates;
 exports.markApplicationSessionOrganizationSessionState = markApplicationSessionOrganizationSessionState;
+exports.createAuthInviteSession = createAuthInviteSession;
+exports.getAuthInviteSession = getAuthInviteSession;
+exports.setAuthInviteSessionOAuthState = setAuthInviteSessionOAuthState;
+exports.markAuthInviteSessionCompleted = markAuthInviteSessionCompleted;
+exports.markAuthInviteSessionRecoveryRequired = markAuthInviteSessionRecoveryRequired;
 exports.createUserQuery = `-- name: CreateUser :one
 INSERT INTO weave.users (status)
 VALUES ($1)
@@ -1235,3 +1240,364 @@ exports.deleteExpiredApplicationSessionsQuery = `-- name: DeleteExpiredApplicati
 DELETE FROM weave.application_sessions
 WHERE expires_at <= now()
    OR status IN ('revoked', 'expired')`;
+exports.createAuthInviteSessionQuery = `-- name: CreateAuthInviteSession :one
+INSERT INTO weave.auth_invite_sessions (
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    return_url,
+    expires_at
+) VALUES (
+    $1,
+    $2,
+    $3,
+    $4,
+    $5,
+    $6,
+    $7,
+    $8,
+    $9,
+    $10,
+    $11,
+    $12
+)
+RETURNING
+    id,
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    status,
+    recovery_reason,
+    return_url,
+    oauth_provider,
+    oauth_state,
+    oauth_return_url,
+    expires_at,
+    completed_at,
+    revoked_at,
+    created_at,
+    updated_at`;
+async function createAuthInviteSession(client, args) {
+    const result = await client.query({
+        text: exports.createAuthInviteSessionQuery,
+        values: [args.organizationId, args.userId, args.identityLinkId, args.stytchOrganizationId, args.stytchMemberId, args.stytchMemberSessionId, args.stytchSessionTokenCiphertext, args.email, args.displayName, args.roleIds, args.returnUrl, args.expiresAt],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        identityLinkId: row[3],
+        stytchOrganizationId: row[4],
+        stytchMemberId: row[5],
+        stytchMemberSessionId: row[6],
+        stytchSessionTokenCiphertext: row[7],
+        email: row[8],
+        displayName: row[9],
+        roleIds: row[10],
+        status: row[11],
+        recoveryReason: row[12],
+        returnUrl: row[13],
+        oauthProvider: row[14],
+        oauthState: row[15],
+        oauthReturnUrl: row[16],
+        expiresAt: row[17],
+        completedAt: row[18],
+        revokedAt: row[19],
+        createdAt: row[20],
+        updatedAt: row[21]
+    };
+}
+exports.getAuthInviteSessionQuery = `-- name: GetAuthInviteSession :one
+SELECT
+    id,
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    status,
+    recovery_reason,
+    return_url,
+    oauth_provider,
+    oauth_state,
+    oauth_return_url,
+    expires_at,
+    completed_at,
+    revoked_at,
+    created_at,
+    updated_at
+FROM weave.auth_invite_sessions
+WHERE id = $1`;
+async function getAuthInviteSession(client, args) {
+    const result = await client.query({
+        text: exports.getAuthInviteSessionQuery,
+        values: [args.id],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        identityLinkId: row[3],
+        stytchOrganizationId: row[4],
+        stytchMemberId: row[5],
+        stytchMemberSessionId: row[6],
+        stytchSessionTokenCiphertext: row[7],
+        email: row[8],
+        displayName: row[9],
+        roleIds: row[10],
+        status: row[11],
+        recoveryReason: row[12],
+        returnUrl: row[13],
+        oauthProvider: row[14],
+        oauthState: row[15],
+        oauthReturnUrl: row[16],
+        expiresAt: row[17],
+        completedAt: row[18],
+        revokedAt: row[19],
+        createdAt: row[20],
+        updatedAt: row[21]
+    };
+}
+exports.setAuthInviteSessionOAuthStateQuery = `-- name: SetAuthInviteSessionOAuthState :one
+UPDATE weave.auth_invite_sessions
+SET
+    oauth_provider = $1,
+    oauth_state = $2,
+    oauth_return_url = $3,
+    updated_at = now()
+WHERE id = $4
+  AND status = 'ready'
+  AND expires_at > now()
+RETURNING
+    id,
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    status,
+    recovery_reason,
+    return_url,
+    oauth_provider,
+    oauth_state,
+    oauth_return_url,
+    expires_at,
+    completed_at,
+    revoked_at,
+    created_at,
+    updated_at`;
+async function setAuthInviteSessionOAuthState(client, args) {
+    const result = await client.query({
+        text: exports.setAuthInviteSessionOAuthStateQuery,
+        values: [args.oauthProvider, args.oauthState, args.oauthReturnUrl, args.id],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        identityLinkId: row[3],
+        stytchOrganizationId: row[4],
+        stytchMemberId: row[5],
+        stytchMemberSessionId: row[6],
+        stytchSessionTokenCiphertext: row[7],
+        email: row[8],
+        displayName: row[9],
+        roleIds: row[10],
+        status: row[11],
+        recoveryReason: row[12],
+        returnUrl: row[13],
+        oauthProvider: row[14],
+        oauthState: row[15],
+        oauthReturnUrl: row[16],
+        expiresAt: row[17],
+        completedAt: row[18],
+        revokedAt: row[19],
+        createdAt: row[20],
+        updatedAt: row[21]
+    };
+}
+exports.markAuthInviteSessionCompletedQuery = `-- name: MarkAuthInviteSessionCompleted :one
+UPDATE weave.auth_invite_sessions
+SET
+    status = 'completed',
+    completed_at = now(),
+    updated_at = now()
+WHERE id = $1
+  AND status = 'ready'
+  AND expires_at > now()
+RETURNING
+    id,
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    status,
+    recovery_reason,
+    return_url,
+    oauth_provider,
+    oauth_state,
+    oauth_return_url,
+    expires_at,
+    completed_at,
+    revoked_at,
+    created_at,
+    updated_at`;
+async function markAuthInviteSessionCompleted(client, args) {
+    const result = await client.query({
+        text: exports.markAuthInviteSessionCompletedQuery,
+        values: [args.id],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        identityLinkId: row[3],
+        stytchOrganizationId: row[4],
+        stytchMemberId: row[5],
+        stytchMemberSessionId: row[6],
+        stytchSessionTokenCiphertext: row[7],
+        email: row[8],
+        displayName: row[9],
+        roleIds: row[10],
+        status: row[11],
+        recoveryReason: row[12],
+        returnUrl: row[13],
+        oauthProvider: row[14],
+        oauthState: row[15],
+        oauthReturnUrl: row[16],
+        expiresAt: row[17],
+        completedAt: row[18],
+        revokedAt: row[19],
+        createdAt: row[20],
+        updatedAt: row[21]
+    };
+}
+exports.markAuthInviteSessionRecoveryRequiredQuery = `-- name: MarkAuthInviteSessionRecoveryRequired :one
+UPDATE weave.auth_invite_sessions
+SET
+    status = 'recovery_required',
+    recovery_reason = $1,
+    updated_at = now()
+WHERE id = $2
+  AND status IN ('ready', 'expired', 'recovery_required')
+RETURNING
+    id,
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    status,
+    recovery_reason,
+    return_url,
+    oauth_provider,
+    oauth_state,
+    oauth_return_url,
+    expires_at,
+    completed_at,
+    revoked_at,
+    created_at,
+    updated_at`;
+async function markAuthInviteSessionRecoveryRequired(client, args) {
+    const result = await client.query({
+        text: exports.markAuthInviteSessionRecoveryRequiredQuery,
+        values: [args.recoveryReason, args.id],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        identityLinkId: row[3],
+        stytchOrganizationId: row[4],
+        stytchMemberId: row[5],
+        stytchMemberSessionId: row[6],
+        stytchSessionTokenCiphertext: row[7],
+        email: row[8],
+        displayName: row[9],
+        roleIds: row[10],
+        status: row[11],
+        recoveryReason: row[12],
+        returnUrl: row[13],
+        oauthProvider: row[14],
+        oauthState: row[15],
+        oauthReturnUrl: row[16],
+        expiresAt: row[17],
+        completedAt: row[18],
+        revokedAt: row[19],
+        createdAt: row[20],
+        updatedAt: row[21]
+    };
+}
+exports.revokeAuthInviteSessionsByMemberQuery = `-- name: RevokeAuthInviteSessionsByMember :execrows
+UPDATE weave.auth_invite_sessions
+SET
+    status = 'revoked',
+    revoked_at = now(),
+    updated_at = now()
+WHERE stytch_organization_id = $1
+  AND stytch_member_id = $2
+  AND status = 'ready'`;
+exports.deleteExpiredAuthInviteSessionsQuery = `-- name: DeleteExpiredAuthInviteSessions :execrows
+DELETE FROM weave.auth_invite_sessions
+WHERE expires_at <= now()
+   OR status IN ('completed', 'expired', 'revoked')`;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "weave-typescript",
-  "version": "0.33.0",
+  "version": "0.35.0",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "files": [