weave-typescript 0.34.0 → 0.36.0

package/dist/weavesql/weavedb/auth_identity_sql.js

@@ -1,10 +1,14 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.deleteExpiredApplicationSessionsQuery = exports.markApplicationSessionOrganizationSessionStateQuery = exports.listApplicationSessionOrganizationSessionStatesQuery = exports.getApplicationSessionOrganizationSessionQuery = exports.upsertApplicationSessionOrganizationSessionQuery = exports.revokeApplicationSessionQuery = exports.setApplicationSessionActiveOrganizationQuery = exports.getApplicationSessionQuery = exports.createApplicationSessionQuery = exports.insertAuthAuditEventQuery = exports.endSupportAccessSessionQuery = exports.createSupportAccessSessionQuery = exports.createPlatformAdminGrantQuery = exports.listActivePlatformAdminGrantsForUserQuery = exports.listOrganizationMembersQuery = exports.listOrganizationMembershipsForUserQuery = exports.getOrganizationMembershipQuery = exports.upsertOrganizationMembershipQuery = exports.upsertOrganizationAuthLinkQuery = exports.getOrganizationAuthLinkByOrganizationIDQuery = exports.getOrganizationAuthLinkByStytchIDQuery = exports.upsertIdentityLinkQuery = exports.getIdentityLinkByStytchMemberQuery = exports.getUserProfileQuery = exports.upsertUserProfileQuery = exports.deleteOrganizationAuthDomainQuery = exports.listOrganizationAuthDomainsQuery = exports.upsertOrganizationAuthDomainQuery = exports.resolvePrimaryOrganizationAuthLinkByDomainQuery = exports.getUserPrimaryOrganizationAuthLinkQuery = exports.setUserPrimaryOrganizationQuery = exports.getUserByIDQuery = exports.createUserQuery = void 0;
+exports.deleteExpiredAuthInviteSessionsQuery = exports.revokeAuthInviteSessionsByMemberQuery = exports.markAuthInviteSessionRecoveryRequiredQuery = exports.markAuthInviteSessionCompletedQuery = exports.setAuthInviteSessionOAuthStateQuery = exports.getAuthInviteSessionQuery = exports.createAuthInviteSessionQuery = exports.deleteExpiredApplicationSessionsQuery = exports.markApplicationSessionOrganizationSessionStateQuery = exports.listApplicationSessionOrganizationSessionStatesQuery = exports.getApplicationSessionOrganizationSessionQuery = exports.upsertApplicationSessionOrganizationSessionQuery = exports.revokeApplicationSessionQuery = exports.setApplicationSessionActiveOrganizationQuery = exports.getApplicationSessionQuery = exports.createApplicationSessionQuery = exports.insertAuthAuditEventQuery = exports.endSupportAccessSessionQuery = exports.createSupportAccessSessionQuery = exports.createPlatformAdminGrantQuery = exports.listActivePlatformAdminGrantsForUserQuery = exports.listOrganizationMembersQuery = exports.listOrganizationMembershipsForUserQuery = exports.getOrganizationMembershipQuery = exports.upsertOrganizationMembershipQuery = exports.upsertOrganizationAuthLinkQuery = exports.getOrganizationAuthLinkByOrganizationIDQuery = exports.getOrganizationAuthLinkByStytchIDQuery = exports.upsertIdentityLinkQuery = exports.getIdentityLinkByStytchMemberQuery = exports.getUserProfileQuery = exports.upsertUserProfileQuery = exports.deleteOrganizationAuthDomainQuery = exports.listOrganizationAuthDomainsQuery = exports.upsertOrganizationAuthDomainQuery = exports.resolvePrimaryOrganizationAuthLinkByDomainQuery = exports.updateUserProfileThemeQuery = exports.setUserOrganizationPagePositionQuery = exports.setUserLastOrganizationQuery = exports.getUserAuthPreferencesQuery = exports.getUserPrimaryOrganizationAuthLinkQuery = exports.setUserPrimaryOrganizationQuery = exports.getUserByIDQuery = exports.createUserQuery = void 0;
 exports.createUser = createUser;
 exports.getUserByID = getUserByID;
 exports.setUserPrimaryOrganization = setUserPrimaryOrganization;
 exports.getUserPrimaryOrganizationAuthLink = getUserPrimaryOrganizationAuthLink;
+exports.getUserAuthPreferences = getUserAuthPreferences;
+exports.setUserLastOrganization = setUserLastOrganization;
+exports.setUserOrganizationPagePosition = setUserOrganizationPagePosition;
+exports.updateUserProfileTheme = updateUserProfileTheme;
 exports.resolvePrimaryOrganizationAuthLinkByDomain = resolvePrimaryOrganizationAuthLinkByDomain;
 exports.upsertOrganizationAuthDomain = upsertOrganizationAuthDomain;
 exports.listOrganizationAuthDomains = listOrganizationAuthDomains;
@@ -30,6 +34,11 @@ exports.upsertApplicationSessionOrganizationSession = upsertApplicationSessionOr
 exports.getApplicationSessionOrganizationSession = getApplicationSessionOrganizationSession;
 exports.listApplicationSessionOrganizationSessionStates = listApplicationSessionOrganizationSessionStates;
 exports.markApplicationSessionOrganizationSessionState = markApplicationSessionOrganizationSessionState;
+exports.createAuthInviteSession = createAuthInviteSession;
+exports.getAuthInviteSession = getAuthInviteSession;
+exports.setAuthInviteSessionOAuthState = setAuthInviteSessionOAuthState;
+exports.markAuthInviteSessionCompleted = markAuthInviteSessionCompleted;
+exports.markAuthInviteSessionRecoveryRequired = markAuthInviteSessionRecoveryRequired;
 exports.createUserQuery = `-- name: CreateUser :one
 INSERT INTO weave.users (status)
 VALUES ($1)
@@ -144,6 +153,155 @@ async function getUserPrimaryOrganizationAuthLink(client, args) {
         updatedAt: row[9]
     };
 }
+exports.getUserAuthPreferencesQuery = `-- name: GetUserAuthPreferences :one
+SELECT
+    u.id AS user_id,
+    u.primary_organization_id AS default_organization_id,
+    default_org.slug AS default_organization_slug,
+    u.last_organization_id,
+    last_org.slug AS last_organization_slug,
+    u.organization_page_positions,
+    COALESCE(p.theme, 'system') AS theme,
+    u.updated_at
+FROM weave.users AS u
+LEFT JOIN weave.organizations AS default_org
+  ON default_org.id = u.primary_organization_id
+LEFT JOIN weave.organizations AS last_org
+  ON last_org.id = u.last_organization_id
+LEFT JOIN weave.user_profiles AS p
+  ON p.user_id = u.id
+WHERE u.id = $1
+  AND u.status = 'active'`;
+async function getUserAuthPreferences(client, args) {
+    const result = await client.query({
+        text: exports.getUserAuthPreferencesQuery,
+        values: [args.userId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        userId: row[0],
+        defaultOrganizationId: row[1],
+        defaultOrganizationSlug: row[2],
+        lastOrganizationId: row[3],
+        lastOrganizationSlug: row[4],
+        organizationPagePositions: row[5],
+        theme: row[6],
+        updatedAt: row[7]
+    };
+}
+exports.setUserLastOrganizationQuery = `-- name: SetUserLastOrganization :one
+UPDATE weave.users AS u
+SET
+    last_organization_id = o.id,
+    updated_at = now()
+FROM weave.organizations AS o
+JOIN weave.organization_memberships AS m
+  ON m.organization_id = o.id
+ AND m.user_id = $1
+ AND m.status = 'active'
+WHERE u.id = $1
+  AND u.status = 'active'
+  AND o.slug = $2
+RETURNING
+    u.id AS user_id,
+    o.id AS last_organization_id,
+    o.slug AS last_organization_slug,
+    u.updated_at`;
+async function setUserLastOrganization(client, args) {
+    const result = await client.query({
+        text: exports.setUserLastOrganizationQuery,
+        values: [args.userId, args.organizationSlug],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        userId: row[0],
+        lastOrganizationId: row[1],
+        lastOrganizationSlug: row[2],
+        updatedAt: row[3]
+    };
+}
+exports.setUserOrganizationPagePositionQuery = `-- name: SetUserOrganizationPagePosition :one
+UPDATE weave.users AS u
+SET
+    organization_page_positions =
+        u.organization_page_positions || jsonb_build_object(o.slug, $1::text),
+    updated_at = now()
+FROM weave.organizations AS o
+JOIN weave.organization_memberships AS m
+  ON m.organization_id = o.id
+ AND m.user_id = $2
+ AND m.status = 'active'
+WHERE u.id = $2
+  AND u.status = 'active'
+  AND o.slug = $3
+RETURNING
+    u.id AS user_id,
+    o.id AS organization_id,
+    o.slug AS organization_slug,
+    u.organization_page_positions,
+    u.updated_at`;
+async function setUserOrganizationPagePosition(client, args) {
+    const result = await client.query({
+        text: exports.setUserOrganizationPagePositionQuery,
+        values: [args.href, args.userId, args.organizationSlug],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        userId: row[0],
+        organizationId: row[1],
+        organizationSlug: row[2],
+        organizationPagePositions: row[3],
+        updatedAt: row[4]
+    };
+}
+exports.updateUserProfileThemeQuery = `-- name: UpdateUserProfileTheme :one
+UPDATE weave.user_profiles
+SET
+    theme = $1,
+    updated_at = now()
+WHERE user_id = $2
+RETURNING
+    user_id,
+    display_name,
+    job_title,
+    email,
+    avatar_url,
+    theme,
+    created_at,
+    updated_at`;
+async function updateUserProfileTheme(client, args) {
+    const result = await client.query({
+        text: exports.updateUserProfileThemeQuery,
+        values: [args.theme, args.userId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        userId: row[0],
+        displayName: row[1],
+        jobTitle: row[2],
+        email: row[3],
+        avatarUrl: row[4],
+        theme: row[5],
+        createdAt: row[6],
+        updatedAt: row[7]
+    };
+}
 exports.resolvePrimaryOrganizationAuthLinkByDomainQuery = `-- name: ResolvePrimaryOrganizationAuthLinkByDomain :one
 SELECT
     o.id AS organization_id,
@@ -1235,3 +1393,364 @@ exports.deleteExpiredApplicationSessionsQuery = `-- name: DeleteExpiredApplicati
 DELETE FROM weave.application_sessions
 WHERE expires_at <= now()
    OR status IN ('revoked', 'expired')`;
+exports.createAuthInviteSessionQuery = `-- name: CreateAuthInviteSession :one
+INSERT INTO weave.auth_invite_sessions (
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    return_url,
+    expires_at
+) VALUES (
+    $1,
+    $2,
+    $3,
+    $4,
+    $5,
+    $6,
+    $7,
+    $8,
+    $9,
+    $10,
+    $11,
+    $12
+)
+RETURNING
+    id,
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    status,
+    recovery_reason,
+    return_url,
+    oauth_provider,
+    oauth_state,
+    oauth_return_url,
+    expires_at,
+    completed_at,
+    revoked_at,
+    created_at,
+    updated_at`;
+async function createAuthInviteSession(client, args) {
+    const result = await client.query({
+        text: exports.createAuthInviteSessionQuery,
+        values: [args.organizationId, args.userId, args.identityLinkId, args.stytchOrganizationId, args.stytchMemberId, args.stytchMemberSessionId, args.stytchSessionTokenCiphertext, args.email, args.displayName, args.roleIds, args.returnUrl, args.expiresAt],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        identityLinkId: row[3],
+        stytchOrganizationId: row[4],
+        stytchMemberId: row[5],
+        stytchMemberSessionId: row[6],
+        stytchSessionTokenCiphertext: row[7],
+        email: row[8],
+        displayName: row[9],
+        roleIds: row[10],
+        status: row[11],
+        recoveryReason: row[12],
+        returnUrl: row[13],
+        oauthProvider: row[14],
+        oauthState: row[15],
+        oauthReturnUrl: row[16],
+        expiresAt: row[17],
+        completedAt: row[18],
+        revokedAt: row[19],
+        createdAt: row[20],
+        updatedAt: row[21]
+    };
+}
+exports.getAuthInviteSessionQuery = `-- name: GetAuthInviteSession :one
+SELECT
+    id,
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    status,
+    recovery_reason,
+    return_url,
+    oauth_provider,
+    oauth_state,
+    oauth_return_url,
+    expires_at,
+    completed_at,
+    revoked_at,
+    created_at,
+    updated_at
+FROM weave.auth_invite_sessions
+WHERE id = $1`;
+async function getAuthInviteSession(client, args) {
+    const result = await client.query({
+        text: exports.getAuthInviteSessionQuery,
+        values: [args.id],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        identityLinkId: row[3],
+        stytchOrganizationId: row[4],
+        stytchMemberId: row[5],
+        stytchMemberSessionId: row[6],
+        stytchSessionTokenCiphertext: row[7],
+        email: row[8],
+        displayName: row[9],
+        roleIds: row[10],
+        status: row[11],
+        recoveryReason: row[12],
+        returnUrl: row[13],
+        oauthProvider: row[14],
+        oauthState: row[15],
+        oauthReturnUrl: row[16],
+        expiresAt: row[17],
+        completedAt: row[18],
+        revokedAt: row[19],
+        createdAt: row[20],
+        updatedAt: row[21]
+    };
+}
+exports.setAuthInviteSessionOAuthStateQuery = `-- name: SetAuthInviteSessionOAuthState :one
+UPDATE weave.auth_invite_sessions
+SET
+    oauth_provider = $1,
+    oauth_state = $2,
+    oauth_return_url = $3,
+    updated_at = now()
+WHERE id = $4
+  AND status = 'ready'
+  AND expires_at > now()
+RETURNING
+    id,
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    status,
+    recovery_reason,
+    return_url,
+    oauth_provider,
+    oauth_state,
+    oauth_return_url,
+    expires_at,
+    completed_at,
+    revoked_at,
+    created_at,
+    updated_at`;
+async function setAuthInviteSessionOAuthState(client, args) {
+    const result = await client.query({
+        text: exports.setAuthInviteSessionOAuthStateQuery,
+        values: [args.oauthProvider, args.oauthState, args.oauthReturnUrl, args.id],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        identityLinkId: row[3],
+        stytchOrganizationId: row[4],
+        stytchMemberId: row[5],
+        stytchMemberSessionId: row[6],
+        stytchSessionTokenCiphertext: row[7],
+        email: row[8],
+        displayName: row[9],
+        roleIds: row[10],
+        status: row[11],
+        recoveryReason: row[12],
+        returnUrl: row[13],
+        oauthProvider: row[14],
+        oauthState: row[15],
+        oauthReturnUrl: row[16],
+        expiresAt: row[17],
+        completedAt: row[18],
+        revokedAt: row[19],
+        createdAt: row[20],
+        updatedAt: row[21]
+    };
+}
+exports.markAuthInviteSessionCompletedQuery = `-- name: MarkAuthInviteSessionCompleted :one
+UPDATE weave.auth_invite_sessions
+SET
+    status = 'completed',
+    completed_at = now(),
+    updated_at = now()
+WHERE id = $1
+  AND status = 'ready'
+  AND expires_at > now()
+RETURNING
+    id,
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    status,
+    recovery_reason,
+    return_url,
+    oauth_provider,
+    oauth_state,
+    oauth_return_url,
+    expires_at,
+    completed_at,
+    revoked_at,
+    created_at,
+    updated_at`;
+async function markAuthInviteSessionCompleted(client, args) {
+    const result = await client.query({
+        text: exports.markAuthInviteSessionCompletedQuery,
+        values: [args.id],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        identityLinkId: row[3],
+        stytchOrganizationId: row[4],
+        stytchMemberId: row[5],
+        stytchMemberSessionId: row[6],
+        stytchSessionTokenCiphertext: row[7],
+        email: row[8],
+        displayName: row[9],
+        roleIds: row[10],
+        status: row[11],
+        recoveryReason: row[12],
+        returnUrl: row[13],
+        oauthProvider: row[14],
+        oauthState: row[15],
+        oauthReturnUrl: row[16],
+        expiresAt: row[17],
+        completedAt: row[18],
+        revokedAt: row[19],
+        createdAt: row[20],
+        updatedAt: row[21]
+    };
+}
+exports.markAuthInviteSessionRecoveryRequiredQuery = `-- name: MarkAuthInviteSessionRecoveryRequired :one
+UPDATE weave.auth_invite_sessions
+SET
+    status = 'recovery_required',
+    recovery_reason = $1,
+    updated_at = now()
+WHERE id = $2
+  AND status IN ('ready', 'expired', 'recovery_required')
+RETURNING
+    id,
+    organization_id,
+    user_id,
+    identity_link_id,
+    stytch_organization_id,
+    stytch_member_id,
+    stytch_member_session_id,
+    stytch_session_token_ciphertext,
+    email,
+    display_name,
+    role_ids,
+    status,
+    recovery_reason,
+    return_url,
+    oauth_provider,
+    oauth_state,
+    oauth_return_url,
+    expires_at,
+    completed_at,
+    revoked_at,
+    created_at,
+    updated_at`;
+async function markAuthInviteSessionRecoveryRequired(client, args) {
+    const result = await client.query({
+        text: exports.markAuthInviteSessionRecoveryRequiredQuery,
+        values: [args.recoveryReason, args.id],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        identityLinkId: row[3],
+        stytchOrganizationId: row[4],
+        stytchMemberId: row[5],
+        stytchMemberSessionId: row[6],
+        stytchSessionTokenCiphertext: row[7],
+        email: row[8],
+        displayName: row[9],
+        roleIds: row[10],
+        status: row[11],
+        recoveryReason: row[12],
+        returnUrl: row[13],
+        oauthProvider: row[14],
+        oauthState: row[15],
+        oauthReturnUrl: row[16],
+        expiresAt: row[17],
+        completedAt: row[18],
+        revokedAt: row[19],
+        createdAt: row[20],
+        updatedAt: row[21]
+    };
+}
+exports.revokeAuthInviteSessionsByMemberQuery = `-- name: RevokeAuthInviteSessionsByMember :execrows
+UPDATE weave.auth_invite_sessions
+SET
+    status = 'revoked',
+    revoked_at = now(),
+    updated_at = now()
+WHERE stytch_organization_id = $1
+  AND stytch_member_id = $2
+  AND status = 'ready'`;
+exports.deleteExpiredAuthInviteSessionsQuery = `-- name: DeleteExpiredAuthInviteSessions :execrows
+DELETE FROM weave.auth_invite_sessions
+WHERE expires_at <= now()
+   OR status IN ('completed', 'expired', 'revoked')`;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "weave-typescript",
-  "version": "0.34.0",
+  "version": "0.36.0",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "files": [