ankhbayar/Assist_Design
1
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity
Assist_Design/packages/domain/auth/schema.ts

318 lines
10 KiB
TypeScript
Raw Normal View History

Refactor import paths in user mapping and authentication modules to align with the new domain structure, enhancing type safety and maintainability. Remove deprecated Freebit types and streamline integration services by utilizing updated provider methods for improved organization and consistency in data handling.
2025-10-03 16:37:52 +09:00
/**
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
* Auth Domain - Types
Enhance JWT handling and authentication flow - Introduced support for previous JWT secrets in the environment configuration to facilitate key rotation. - Refactored the JoseJwtService to manage multiple signing and verification keys, improving security during token validation. - Updated the AuthTokenService to include family identifiers for refresh tokens, enhancing session management and security. - Modified the PasswordWorkflowService and SignupWorkflowService to return session metadata instead of token strings, aligning with security best practices. - Improved error handling and token revocation logic in the TokenBlacklistService and AuthTokenService to prevent replay attacks. - Updated documentation to reflect changes in the authentication architecture and security model.
2025-12-12 15:29:58 +09:00
*
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
* Contains ONLY authentication mechanism types:
* - Login, Signup, Password Management
* - Token Management
* - MFA, SSO
Enhance JWT handling and authentication flow - Introduced support for previous JWT secrets in the environment configuration to facilitate key rotation. - Refactored the JoseJwtService to manage multiple signing and verification keys, improving security during token validation. - Updated the AuthTokenService to include family identifiers for refresh tokens, enhancing session management and security. - Modified the PasswordWorkflowService and SignupWorkflowService to return session metadata instead of token strings, aligning with security best practices. - Improved error handling and token revocation logic in the TokenBlacklistService and AuthTokenService to prevent replay attacks. - Updated documentation to reflect changes in the authentication architecture and security model.
2025-12-12 15:29:58 +09:00
*
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
* User entity types are in customer domain.
* Auth responses reference User from customer domain.
Refactor import paths in user mapping and authentication modules to align with the new domain structure, enhancing type safety and maintainability. Remove deprecated Freebit types and streamline integration services by utilizing updated provider methods for improved organization and consistency in data handling.
2025-10-03 16:37:52 +09:00
*/
import { z } from "zod";
Update TypeScript configurations and improve module imports - Changed TypeScript target and library settings in tsconfig files to align with ESNext standards. - Updated pnpm version in GitHub workflows for better dependency management. - Modified Dockerfile to reflect the updated pnpm version. - Adjusted import statements across various domain modules to include file extensions for consistency and compatibility. - Cleaned up TypeScript configuration files for improved clarity and organization.
2025-12-10 15:22:10 +09:00
import { emailSchema, nameSchema, passwordSchema, phoneSchema } from "../common/schema.js";
import { addressSchema, userSchema } from "../customer/schema.js";
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
// ============================================================================
// Authentication Request Schemas
// ============================================================================
Refactor import paths in user mapping and authentication modules to align with the new domain structure, enhancing type safety and maintainability. Remove deprecated Freebit types and streamline integration services by utilizing updated provider methods for improved organization and consistency in data handling.
2025-10-03 16:37:52 +09:00
const genderEnum = z.enum(["male", "female", "other"]);
Enhance user profile management and signup process - Added support for custom fields in WHMCS, including customer number, gender, and date of birth, to the environment validation schema. - Updated the signup workflow to handle new fields for date of birth and gender, ensuring they are included in the client creation process. - Implemented email update functionality in the user profile service, allowing users to change their email while ensuring uniqueness across the portal. - Enhanced the profile edit form to include fields for date of birth and gender, with appropriate validation. - Updated the UI to reflect changes in profile management, ensuring users can view and edit their information seamlessly. - Improved error handling and validation for user profile updates, ensuring a smoother user experience.
2025-12-15 17:29:28 +09:00
const isoDateOnlySchema = z
.string()
.regex(/^\d{4}-\d{2}-\d{2}$/, "Enter a valid date (YYYY-MM-DD)")
.refine(value => !Number.isNaN(Date.parse(value)), "Enter a valid date (YYYY-MM-DD)");
Refactor import paths in user mapping and authentication modules to align with the new domain structure, enhancing type safety and maintainability. Remove deprecated Freebit types and streamline integration services by utilizing updated provider methods for improved organization and consistency in data handling.
2025-10-03 16:37:52 +09:00
export const loginRequestSchema = z.object({
email: emailSchema,
password: z.string().min(1, "Password is required"),
});
Remove deprecated documentation files related to architecture, validation, and integration processes. This cleanup enhances maintainability and reduces clutter in the repository, ensuring a more streamlined development environment.
2025-10-08 18:14:12 +09:00
/**
* Base signup input schema (before API transformation)
* Used by frontend forms - can be extended with UI-specific fields (e.g., confirmPassword)
*/
export const signupInputSchema = z.object({
email: emailSchema,
password: passwordSchema,
firstName: nameSchema,
lastName: nameSchema,
company: z.string().optional(),
phone: phoneSchema,
Implement Account Portal Restructuring and Component Updates - Introduced a new plan for restructuring the account portal, resulting in over 60 file operations including the addition of new components and the deletion of outdated routes. - Updated various components to enhance user experience, including the addition of AccountRouteGuard and AccountDashboardPage. - Refactored routing paths to align with the new account structure, ensuring seamless navigation across billing, orders, and support sections. - Enhanced the checkout process by integrating new components and improving error handling for better user feedback. - Updated public-facing features to streamline contact and support functionalities, improving accessibility for users.
2025-12-17 15:44:46 +09:00
sfNumber: z.string().trim().min(6, "Customer number must be at least 6 characters").optional(),
Remove deprecated documentation files related to architecture, validation, and integration processes. This cleanup enhances maintainability and reduces clutter in the repository, ensuring a more streamlined development environment.
2025-10-08 18:14:12 +09:00
address: addressSchema.optional(),
nationality: z.string().optional(),
Enhance user profile management and signup process - Added support for custom fields in WHMCS, including customer number, gender, and date of birth, to the environment validation schema. - Updated the signup workflow to handle new fields for date of birth and gender, ensuring they are included in the client creation process. - Implemented email update functionality in the user profile service, allowing users to change their email while ensuring uniqueness across the portal. - Enhanced the profile edit form to include fields for date of birth and gender, with appropriate validation. - Updated the UI to reflect changes in profile management, ensuring users can view and edit their information seamlessly. - Improved error handling and validation for user profile updates, ensuring a smoother user experience.
2025-12-15 17:29:28 +09:00
dateOfBirth: isoDateOnlySchema.optional(),
Remove deprecated documentation files related to architecture, validation, and integration processes. This cleanup enhances maintainability and reduces clutter in the repository, ensuring a more streamlined development environment.
2025-10-08 18:14:12 +09:00
gender: genderEnum.optional(),
acceptTerms: z.boolean(),
marketingConsent: z.boolean().optional(),
});
/**
* Signup request schema with API transformation
* Transforms camelCase fields to match WHMCS API expectations
*/
export const signupRequestSchema = signupInputSchema.transform(data => ({
...data,
firstname: data.firstName,
lastname: data.lastName,
companyname: data.company,
phonenumber: data.phone,
}));
Refactor import paths in user mapping and authentication modules to align with the new domain structure, enhancing type safety and maintainability. Remove deprecated Freebit types and streamline integration services by utilizing updated provider methods for improved organization and consistency in data handling.
2025-10-03 16:37:52 +09:00
export const passwordResetRequestSchema = z.object({ email: emailSchema });
export const passwordResetSchema = z.object({
token: z.string().min(1, "Reset token is required"),
password: passwordSchema,
});
export const setPasswordRequestSchema = z.object({
email: emailSchema,
password: passwordSchema,
});
export const changePasswordRequestSchema = z.object({
currentPassword: z.string().min(1, "Current password is required"),
newPassword: passwordSchema,
});
export const linkWhmcsRequestSchema = z.object({
email: emailSchema,
password: z.string().min(1, "Password is required"),
});
export const validateSignupRequestSchema = z.object({
Implement Account Portal Restructuring and Component Updates - Introduced a new plan for restructuring the account portal, resulting in over 60 file operations including the addition of new components and the deletion of outdated routes. - Updated various components to enhance user experience, including the addition of AccountRouteGuard and AccountDashboardPage. - Refactored routing paths to align with the new account structure, ensuring seamless navigation across billing, orders, and support sections. - Enhanced the checkout process by integrating new components and improving error handling for better user feedback. - Updated public-facing features to streamline contact and support functionalities, improving accessibility for users.
2025-12-17 15:44:46 +09:00
sfNumber: z.string().trim().min(1, "Customer number is required").optional(),
Refactor import paths in user mapping and authentication modules to align with the new domain structure, enhancing type safety and maintainability. Remove deprecated Freebit types and streamline integration services by utilizing updated provider methods for improved organization and consistency in data handling.
2025-10-03 16:37:52 +09:00
});
Refactor user and address handling across the application to align with the new domain structure. Update User model in Prisma schema to remove unnecessary fields and clarify authentication state. Streamline user mapping utilities to focus on authentication data only, deprecating old methods. Enhance WHMCS integration services by updating client detail retrieval methods to return Customer types, improving consistency in data handling. Update address management in various modules to reflect new address structure, ensuring better validation and organization.
2025-10-07 17:38:39 +09:00
/**
* Schema for updating customer profile in WHMCS (single source of truth)
* All fields optional - only send what needs to be updated
* Can update profile fields and/or address fields in a single request
*/
export const updateCustomerProfileRequestSchema = z.object({
// Basic profile
Enhance user profile management and signup process - Added support for custom fields in WHMCS, including customer number, gender, and date of birth, to the environment validation schema. - Updated the signup workflow to handle new fields for date of birth and gender, ensuring they are included in the client creation process. - Implemented email update functionality in the user profile service, allowing users to change their email while ensuring uniqueness across the portal. - Enhanced the profile edit form to include fields for date of birth and gender, with appropriate validation. - Updated the UI to reflect changes in profile management, ensuring users can view and edit their information seamlessly. - Improved error handling and validation for user profile updates, ensuring a smoother user experience.
2025-12-15 17:29:28 +09:00
email: emailSchema.optional(),
Refactor user and address handling across the application to align with the new domain structure. Update User model in Prisma schema to remove unnecessary fields and clarify authentication state. Streamline user mapping utilities to focus on authentication data only, deprecating old methods. Enhance WHMCS integration services by updating client detail retrieval methods to return Customer types, improving consistency in data handling. Update address management in various modules to reflect new address structure, ensuring better validation and organization.
2025-10-07 17:38:39 +09:00
firstname: nameSchema.optional(),
lastname: nameSchema.optional(),
companyname: z.string().max(100).optional(),
phonenumber: phoneSchema.optional(),
Enhance JWT handling and authentication flow - Introduced support for previous JWT secrets in the environment configuration to facilitate key rotation. - Refactored the JoseJwtService to manage multiple signing and verification keys, improving security during token validation. - Updated the AuthTokenService to include family identifiers for refresh tokens, enhancing session management and security. - Modified the PasswordWorkflowService and SignupWorkflowService to return session metadata instead of token strings, aligning with security best practices. - Improved error handling and token revocation logic in the TokenBlacklistService and AuthTokenService to prevent replay attacks. - Updated documentation to reflect changes in the authentication architecture and security model.
2025-12-12 15:29:58 +09:00
Refactor user and address handling across the application to align with the new domain structure. Update User model in Prisma schema to remove unnecessary fields and clarify authentication state. Streamline user mapping utilities to focus on authentication data only, deprecating old methods. Enhance WHMCS integration services by updating client detail retrieval methods to return Customer types, improving consistency in data handling. Update address management in various modules to reflect new address structure, ensuring better validation and organization.
2025-10-07 17:38:39 +09:00
// Address (optional fields for partial updates)
address1: z.string().max(200).optional(),
address2: z.string().max(200).optional(),
city: z.string().max(100).optional(),
state: z.string().max(100).optional(),
postcode: z.string().max(20).optional(),
country: z.string().length(2).optional(), // ISO country code
Enhance JWT handling and authentication flow - Introduced support for previous JWT secrets in the environment configuration to facilitate key rotation. - Refactored the JoseJwtService to manage multiple signing and verification keys, improving security during token validation. - Updated the AuthTokenService to include family identifiers for refresh tokens, enhancing session management and security. - Modified the PasswordWorkflowService and SignupWorkflowService to return session metadata instead of token strings, aligning with security best practices. - Improved error handling and token revocation logic in the TokenBlacklistService and AuthTokenService to prevent replay attacks. - Updated documentation to reflect changes in the authentication architecture and security model.
2025-12-12 15:29:58 +09:00
Refactor user and address handling across the application to align with the new domain structure. Update User model in Prisma schema to remove unnecessary fields and clarify authentication state. Streamline user mapping utilities to focus on authentication data only, deprecating old methods. Enhance WHMCS integration services by updating client detail retrieval methods to return Customer types, improving consistency in data handling. Update address management in various modules to reflect new address structure, ensuring better validation and organization.
2025-10-07 17:38:39 +09:00
// Additional
language: z.string().max(10).optional(),
Refactor ESLint configuration and TypeScript paths to remove deprecated contracts and schemas packages, enhancing type safety and maintainability. Update import paths across various modules to align with the new domain structure, ensuring consistent data handling. Introduce new request and response schemas in the authentication domain, improving validation and organization. Streamline Freebit and WHMCS integration services by utilizing updated provider methods and removing obsolete types.
2025-10-03 17:33:39 +09:00
});
Refactor integration services and update import paths to align with the new domain structure, enhancing type safety and maintainability. Streamline Freebit and Salesforce integration by utilizing updated provider methods and removing deprecated types. Improve organization and consistency in data handling across various modules, including catalog and billing services, by adopting new schemas and types from the updated domain package.
2025-10-08 10:33:33 +09:00
export const updateProfileRequestSchema = updateCustomerProfileRequestSchema;
export const updateAddressRequestSchema = updateCustomerProfileRequestSchema;
Refactor import paths in user mapping and authentication modules to align with the new domain structure, enhancing type safety and maintainability. Remove deprecated Freebit types and streamline integration services by utilizing updated provider methods for improved organization and consistency in data handling.
2025-10-03 16:37:52 +09:00
export const accountStatusRequestSchema = z.object({
email: emailSchema,
});
export const ssoLinkRequestSchema = z.object({
destination: z.string().optional(),
});
export const checkPasswordNeededRequestSchema = z.object({
email: emailSchema,
});
export const refreshTokenRequestSchema = z.object({
refreshToken: z.string().min(1, "Refresh token is required").optional(),
deviceId: z.string().optional(),
});
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
// ============================================================================
// Token Schemas
// ============================================================================
feat(address): integrate AddressModule and optimize Japan address form handling
2026-01-14 13:54:01 +09:00
/**
* Password reset token payload schema
* Used for validating JWT payload structure in password reset tokens
*/
export const passwordResetTokenPayloadSchema = z.object({
/** User ID (standard JWT subject) */
sub: z.string().uuid(),
/** Unique token identifier for single-use tracking */
tokenId: z.string().uuid(),
/** Purpose claim to distinguish from other token types */
purpose: z.literal("password_reset"),
});
export type PasswordResetTokenPayload = z.infer<typeof passwordResetTokenPayloadSchema>;
Refactor import paths in user mapping and authentication modules to align with the new domain structure, enhancing type safety and maintainability. Remove deprecated Freebit types and streamline integration services by utilizing updated provider methods for improved organization and consistency in data handling.
2025-10-03 16:37:52 +09:00
export const authTokensSchema = z.object({
accessToken: z.string().min(1, "Access token is required"),
refreshToken: z.string().min(1, "Refresh token is required"),
expiresAt: z.string().min(1, "Access token expiry required"),
refreshExpiresAt: z.string().min(1, "Refresh token expiry required"),
tokenType: z.literal("Bearer"),
});
Enhance JWT handling and authentication flow - Introduced support for previous JWT secrets in the environment configuration to facilitate key rotation. - Refactored the JoseJwtService to manage multiple signing and verification keys, improving security during token validation. - Updated the AuthTokenService to include family identifiers for refresh tokens, enhancing session management and security. - Modified the PasswordWorkflowService and SignupWorkflowService to return session metadata instead of token strings, aligning with security best practices. - Improved error handling and token revocation logic in the TokenBlacklistService and AuthTokenService to prevent replay attacks. - Updated documentation to reflect changes in the authentication architecture and security model.
2025-12-12 15:29:58 +09:00
/**
* Auth session metadata returned to clients.
*
* Security note:
* - Token strings are stored in httpOnly cookies and MUST NOT be returned to the browser.
* - The client only needs expiry metadata for UX (timeout warnings, refresh scheduling).
*/
export const authSessionSchema = z.object({
expiresAt: z.string().min(1, "Access token expiry required"),
refreshExpiresAt: z.string().min(1, "Refresh token expiry required"),
tokenType: z.literal("Bearer"),
});
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
// ============================================================================
// Authentication Response Schemas (Reference User from Customer Domain)
// ============================================================================
/**
* Auth response - returns User from customer domain
*/
Refactor import paths in user mapping and authentication modules to align with the new domain structure, enhancing type safety and maintainability. Remove deprecated Freebit types and streamline integration services by utilizing updated provider methods for improved organization and consistency in data handling.
2025-10-03 16:37:52 +09:00
export const authResponseSchema = z.object({
Enhance JWT handling and authentication flow - Introduced support for previous JWT secrets in the environment configuration to facilitate key rotation. - Refactored the JoseJwtService to manage multiple signing and verification keys, improving security during token validation. - Updated the AuthTokenService to include family identifiers for refresh tokens, enhancing session management and security. - Modified the PasswordWorkflowService and SignupWorkflowService to return session metadata instead of token strings, aligning with security best practices. - Improved error handling and token revocation logic in the TokenBlacklistService and AuthTokenService to prevent replay attacks. - Updated documentation to reflect changes in the authentication architecture and security model.
2025-12-12 15:29:58 +09:00
user: userSchema, // User from customer domain
session: authSessionSchema,
Refactor import paths in user mapping and authentication modules to align with the new domain structure, enhancing type safety and maintainability. Remove deprecated Freebit types and streamline integration services by utilizing updated provider methods for improved organization and consistency in data handling.
2025-10-03 16:37:52 +09:00
});
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
/**
* Signup result - returns User from customer domain
*/
export const signupResultSchema = z.object({
Enhance JWT handling and authentication flow - Introduced support for previous JWT secrets in the environment configuration to facilitate key rotation. - Refactored the JoseJwtService to manage multiple signing and verification keys, improving security during token validation. - Updated the AuthTokenService to include family identifiers for refresh tokens, enhancing session management and security. - Modified the PasswordWorkflowService and SignupWorkflowService to return session metadata instead of token strings, aligning with security best practices. - Improved error handling and token revocation logic in the TokenBlacklistService and AuthTokenService to prevent replay attacks. - Updated documentation to reflect changes in the authentication architecture and security model.
2025-12-12 15:29:58 +09:00
user: userSchema, // User from customer domain
session: authSessionSchema,
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
});
/**
* Password change result - returns User from customer domain
*/
export const passwordChangeResultSchema = z.object({
Enhance JWT handling and authentication flow - Introduced support for previous JWT secrets in the environment configuration to facilitate key rotation. - Refactored the JoseJwtService to manage multiple signing and verification keys, improving security during token validation. - Updated the AuthTokenService to include family identifiers for refresh tokens, enhancing session management and security. - Modified the PasswordWorkflowService and SignupWorkflowService to return session metadata instead of token strings, aligning with security best practices. - Improved error handling and token revocation logic in the TokenBlacklistService and AuthTokenService to prevent replay attacks. - Updated documentation to reflect changes in the authentication architecture and security model.
2025-12-12 15:29:58 +09:00
user: userSchema, // User from customer domain
session: authSessionSchema,
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
});
/**
* SSO link response
*/
export const ssoLinkResponseSchema = z.object({
url: z.url(),
expiresAt: z.string(),
});
/**
* Check password needed response
*/
export const checkPasswordNeededResponseSchema = z.object({
needsPasswordSet: z.boolean(),
userExists: z.boolean(),
email: z.email().optional(),
});
Refactor user management and validation integration - Replaced UsersService with UsersFacade across various modules for improved abstraction and consistency. - Updated validation imports to utilize the new @customer-portal/validation package, enhancing modularity. - Removed deprecated validation files and streamlined user-related logic in controllers and services. - Enhanced order processing by integrating field mappings for Salesforce orders, improving maintainability. - Improved error handling and response structures in authentication and user management workflows.
2025-11-04 13:28:36 +09:00
/**
* Link WHMCS response
*/
export const linkWhmcsResponseSchema = z.object({
user: userSchema,
needsPasswordSet: z.boolean(),
});
Refactor integration services and update import paths to align with the new domain structure, enhancing type safety and maintainability. Streamline Freebit and Salesforce integration by utilizing updated provider methods and removing deprecated types. Improve organization and consistency in data handling across various modules, including catalog and billing services, by adopting new schemas and types from the updated domain package.
2025-10-08 10:33:33 +09:00
// ============================================================================
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
// Inferred Types (Schema-First Approach)
Refactor integration services and update import paths to align with the new domain structure, enhancing type safety and maintainability. Streamline Freebit and Salesforce integration by utilizing updated provider methods and removing deprecated types. Improve organization and consistency in data handling across various modules, including catalog and billing services, by adopting new schemas and types from the updated domain package.
2025-10-08 10:33:33 +09:00
// ============================================================================
// Request types
export type LoginRequest = z.infer<typeof loginRequestSchema>;
export type SignupRequest = z.infer<typeof signupRequestSchema>;
export type PasswordResetRequest = z.infer<typeof passwordResetRequestSchema>;
export type ResetPasswordRequest = z.infer<typeof passwordResetSchema>;
export type SetPasswordRequest = z.infer<typeof setPasswordRequestSchema>;
export type ChangePasswordRequest = z.infer<typeof changePasswordRequestSchema>;
export type LinkWhmcsRequest = z.infer<typeof linkWhmcsRequestSchema>;
export type ValidateSignupRequest = z.infer<typeof validateSignupRequestSchema>;
export type UpdateCustomerProfileRequest = z.infer<typeof updateCustomerProfileRequestSchema>;
export type AccountStatusRequest = z.infer<typeof accountStatusRequestSchema>;
export type SsoLinkRequest = z.infer<typeof ssoLinkRequestSchema>;
export type CheckPasswordNeededRequest = z.infer<typeof checkPasswordNeededRequestSchema>;
export type RefreshTokenRequest = z.infer<typeof refreshTokenRequestSchema>;
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
// Token types
Refactor integration services and update import paths to align with the new domain structure, enhancing type safety and maintainability. Streamline Freebit and Salesforce integration by utilizing updated provider methods and removing deprecated types. Improve organization and consistency in data handling across various modules, including catalog and billing services, by adopting new schemas and types from the updated domain package.
2025-10-08 10:33:33 +09:00
export type AuthTokens = z.infer<typeof authTokensSchema>;
Enhance JWT handling and authentication flow - Introduced support for previous JWT secrets in the environment configuration to facilitate key rotation. - Refactored the JoseJwtService to manage multiple signing and verification keys, improving security during token validation. - Updated the AuthTokenService to include family identifiers for refresh tokens, enhancing session management and security. - Modified the PasswordWorkflowService and SignupWorkflowService to return session metadata instead of token strings, aligning with security best practices. - Improved error handling and token revocation logic in the TokenBlacklistService and AuthTokenService to prevent replay attacks. - Updated documentation to reflect changes in the authentication architecture and security model.
2025-12-12 15:29:58 +09:00
export type AuthSession = z.infer<typeof authSessionSchema>;
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
// Response types
Refactor integration services and update import paths to align with the new domain structure, enhancing type safety and maintainability. Streamline Freebit and Salesforce integration by utilizing updated provider methods and removing deprecated types. Improve organization and consistency in data handling across various modules, including catalog and billing services, by adopting new schemas and types from the updated domain package.
2025-10-08 10:33:33 +09:00
export type AuthResponse = z.infer<typeof authResponseSchema>;
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
export type SignupResult = z.infer<typeof signupResultSchema>;
export type PasswordChangeResult = z.infer<typeof passwordChangeResultSchema>;
export type SsoLinkResponse = z.infer<typeof ssoLinkResponseSchema>;
export type CheckPasswordNeededResponse = z.infer<typeof checkPasswordNeededResponseSchema>;
Refactor user management and validation integration - Replaced UsersService with UsersFacade across various modules for improved abstraction and consistency. - Updated validation imports to utilize the new @customer-portal/validation package, enhancing modularity. - Removed deprecated validation files and streamlined user-related logic in controllers and services. - Enhanced order processing by integrating field mappings for Salesforce orders, improving maintainability. - Improved error handling and response structures in authentication and user management workflows.
2025-11-04 13:28:36 +09:00
export type LinkWhmcsResponse = z.infer<typeof linkWhmcsResponseSchema>;
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
// ============================================================================
// Error Types
// ============================================================================
export interface AuthError {
Enhance JWT handling and authentication flow - Introduced support for previous JWT secrets in the environment configuration to facilitate key rotation. - Refactored the JoseJwtService to manage multiple signing and verification keys, improving security during token validation. - Updated the AuthTokenService to include family identifiers for refresh tokens, enhancing session management and security. - Modified the PasswordWorkflowService and SignupWorkflowService to return session metadata instead of token strings, aligning with security best practices. - Improved error handling and token revocation logic in the TokenBlacklistService and AuthTokenService to prevent replay attacks. - Updated documentation to reflect changes in the authentication architecture and security model.
2025-12-12 15:29:58 +09:00
code:
| "INVALID_CREDENTIALS"
| "EMAIL_NOT_VERIFIED"
| "ACCOUNT_LOCKED"
| "MFA_REQUIRED"
| "INVALID_TOKEN"
| "TOKEN_EXPIRED"
| "PASSWORD_TOO_WEAK"
| "EMAIL_ALREADY_EXISTS"
| "WHMCS_ACCOUNT_NOT_FOUND"
| "SALESFORCE_ACCOUNT_NOT_FOUND"
| "LINKING_FAILED";
Refactor WHMCS integration and user management to align with updated domain structure. Removed deprecated validation utilities and types, enhancing type safety and maintainability. Streamlined import paths and module exports for consistency, ensuring clear separation of concerns in data handling. Updated user and address management to reflect new schemas, improving validation and organization across the application.
2025-10-08 16:31:42 +09:00
message: string;
details?: unknown;
}
feat: add address reconciliation queue service for Salesforce integration - Implement AddressReconcileQueueService to handle address reconciliation jobs between WHMCS and Salesforce. - Define job data structure and queue configuration for retries and error handling. - Add methods for enqueueing reconciliation jobs and retrieving queue health metrics. feat: create loading components for various services in the portal - Add loading skeletons for Internet, SIM, VPN, and public services configuration. - Implement loading states for account-related views including account details, services, and verification settings. - Introduce loading states for support case details and subscription actions. feat: implement OTP input component for user verification - Create OtpInput component to handle 6-digit OTP input with auto-focus and navigation. - Add LoginOtpStep component for OTP verification during login, including countdown timer and error handling. feat: define address domain constants for validation - Establish constants for address field length limits to ensure compliance with WHMCS API constraints. - Include maximum lengths for address fields and user input fields to maintain data integrity.
2026-02-03 11:48:49 +09:00
// ============================================================================
// Login OTP Flow Schemas
// ============================================================================
/**
* Response when OTP verification is required after valid credentials
* Returned by /api/auth/login when OTP is mandatory
*/
export const loginOtpRequiredResponseSchema = z.object({
requiresOtp: z.literal(true),
sessionToken: z.string(),
maskedEmail: z.string(),
expiresAt: z.string().datetime(),
});
/**
* Request to verify OTP code during login
* Sent to /api/auth/login/verify-otp
*/
export const loginVerifyOtpRequestSchema = z.object({
sessionToken: z.string().min(1, "Session token is required"),
code: z
.string()
.length(6, "Code must be 6 digits")
.regex(/^\d{6}$/, "Code must be 6 digits"),
feat: implement trusted device functionality for enhanced login experience
2026-02-03 19:21:48 +09:00
/** If true, remember this device and skip OTP on future logins for 7 days */
rememberDevice: z.boolean().optional(),
feat: add address reconciliation queue service for Salesforce integration - Implement AddressReconcileQueueService to handle address reconciliation jobs between WHMCS and Salesforce. - Define job data structure and queue configuration for retries and error handling. - Add methods for enqueueing reconciliation jobs and retrieving queue health metrics. feat: create loading components for various services in the portal - Add loading skeletons for Internet, SIM, VPN, and public services configuration. - Implement loading states for account-related views including account details, services, and verification settings. - Introduce loading states for support case details and subscription actions. feat: implement OTP input component for user verification - Create OtpInput component to handle 6-digit OTP input with auto-focus and navigation. - Add LoginOtpStep component for OTP verification during login, including countdown timer and error handling. feat: define address domain constants for validation - Establish constants for address field length limits to ensure compliance with WHMCS API constraints. - Include maximum lengths for address fields and user input fields to maintain data integrity.
2026-02-03 11:48:49 +09:00
});
/**
* Union type for login response: either OTP required or full auth response
*/
export const loginResponseSchema = z.union([loginOtpRequiredResponseSchema, authResponseSchema]);
export type LoginOtpRequiredResponse = z.infer<typeof loginOtpRequiredResponseSchema>;
export type LoginVerifyOtpRequest = z.infer<typeof loginVerifyOtpRequestSchema>;
export type LoginResponse = z.infer<typeof loginResponseSchema>;
Reference in New Issue Copy Permalink