UNPKG

@syngrisi/syngrisi

Version:

Syngrisi - Visual Testing Tool

github.com/syngrisi/syngrisi/tree/main/packages/syngrisi

syngrisi/syngrisi

134 lines (115 loc) 3.19 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
/** * SSO Types and Interfaces * * Central type definitions for SSO providers */ import type { PassportStatic } from 'passport'; /** SSO protocol types */ export type SSOProtocol = 'oauth2' | 'saml' | 'google'; /** SSO provider types for user records (matches User model) */ export type SSOProviderType = 'local' | 'oauth' | 'saml'; /** Normalized user profile from any SSO provider */ export interface NormalizedProfile { /** Provider-specific user ID */ id: string; /** User's email address */ email?: string; /** Alternative email format (OAuth2 standard) */ emails?: { value: string }[]; /** User's name parts */ name?: { givenName?: string; familyName?: string; }; /** Full display name */ displayName?: string; /** Provider name */ provider?: string; /** Raw JSON response from provider */ _json?: any; } /** OAuth2 tokens from provider */ export interface SSOTokens { accessToken: string; refreshToken?: string; expiresIn?: number; tokenType?: string; idToken?: string; } /** SSO configuration from environment */ export interface SSOConfig { enabled: boolean; protocol: SSOProtocol | ''; // OAuth2 clientId: string; clientSecret: string; authorizationUrl: string; tokenUrl: string; userinfoUrl: string; callbackUrl: string; // SAML entryPoint: string; issuer: string; cert: string; idpIssuer: string; // User settings defaultRole: string; autoCreateUsers: boolean; allowAccountLinking: boolean; } /** Result of SSO user processing */ export interface SSOUserResult { user: any; // User document isNewUser: boolean; wasLinked: boolean; } /** SSO Provider interface - each provider implements this */ export interface SSOProvider { /** Provider name for identification */ readonly name: string; /** Protocol type */ readonly protocol: SSOProtocol; /** Initialize passport strategy */ initialize(passport: PassportStatic): Promise<void>; /** Check if provider is properly configured */ isConfigured(): boolean; /** Get strategy name for passport */ getStrategyName(): string; } /** SSO Provider factory interface */ export interface SSOProviderFactory { /** Create provider based on protocol */ create(protocol: SSOProtocol): SSOProvider | null; } /** SSO Event types */ export type SSOEventType = | 'user.sso.login' | 'user.sso.created' | 'user.sso.linked' | 'user.sso.unlinked' | 'user.sso.error'; /** SSO Event payload */ export interface SSOEvent { type: SSOEventType; timestamp: Date; userId?: string; email?: string; provider?: SSOProviderType; metadata?: Record<string, any>; error?: Error; } /** SSO Event handler */ export type SSOEventHandler = (event: SSOEvent) => void | Promise<void>; /** Account linking request */ export interface AccountLinkRequest { userId: string; provider: SSOProviderType; providerId: string; email: string; } /** Account linking result */ export interface AccountLinkResult { success: boolean; message: string; user?: any; }