# @hsuite/auth-types - Authentication Type Definitions A comprehensive TypeScript library providing type-safe authentication, authorization, and user management type definitions for Web2 and Web3 applications within the HSuite ecosystem. ## Table of Contents * [Quick Start](#quick-start) * [Key Features](#key-features) * [Installation & Setup](#installation--setup) * [Usage Examples](#usage-examples) * [API Reference](#api-reference) * [Guides](#guides) * [Examples](#examples) * [Integration](#integration) *** ## Quick Start ```bash npm install @hsuite/auth-types ``` ```typescript import { IAuth, Auth } from '@hsuite/auth-types'; // Use interfaces for type checking const loginData: IAuth.ICredentials.IWeb2.IDto.ILogin = { username: "john_doe", email: "john@example.com", password: "securePassword123" }; // Use models for runtime logic const loginDto = new Auth.Credentials.Web2.Dto.Login(loginData); ``` *** ## Key Features ### Comprehensive TypeScript library for authentication and authorization type definitions Complete set of TypeScript interfaces, models, and decorators for implementing secure, type-safe authentication across applications within the HSuite ecosystem. *** ## 🏗️ Architecture ### Core Namespaces #### 🔒 **IAuth (Interfaces)** * **`ITwilio`** - Twilio service integration interfaces * **`ITwoFactor`** - Two-factor authentication interfaces * **`IConfiguration`** - System configuration interfaces * **`IWeb3`** - Blockchain authentication interfaces * **`IWeb2`** - Traditional authentication interfaces * **`ICredentials`** - Credential management interfaces * **`IUser`** - User entity and management interfaces #### 🏛️ **Auth (Models)** * **`Twilio`** - SMS and voice verification models * **`TwoFactor`** - TOTP and verification models * **`Configuration`** - Authentication system settings * **`Web3`** - Blockchain wallet authentication models * **`Web2`** - Traditional credential models * **`Credentials`** - Secure credential storage models #### 👥 **User (Models)** * **`User.Safe`** - Safe user entity model with public properties * User management type definitions * User entity interfaces and implementations #### 🎯 **Decorators** * **`@Roles()`** - Role-based access control * **`@Public()`** - Public route marker * **`@isTwoFactorAuth()`** - Two-factor authentication requirement * **`@bypassTokenGate()`** - Token gate bypass ### Module Structure ``` src/ ├── interfaces/ # IAuth namespace interfaces │ ├── namespaces/ │ │ ├── twilio/ # Twilio integration interfaces │ │ ├── two-factor/ # 2FA interfaces │ │ ├── configuration/ # Config interfaces │ │ ├── credentials/ # Credential interfaces │ │ └── auth.namespace.ts # Main IAuth namespace ├── models/ # Auth namespace models │ ├── namespaces/ │ │ ├── configuration/ # Config model implementations │ │ ├── credentials/ # Credential model implementations │ │ └── two-factor/ # 2FA model implementations ├── decorators/ # NestJS decorators └── index.ts # Public API exports ``` *** ## 🔧 API Reference ### Decorators #### @Roles(roles: string\[]) Role-based access control decorator using Reflector pattern. ```typescript @Roles(['admin', 'moderator']) @Get('admin-only') adminRoute() { return 'Access granted to admin or moderator'; } ``` #### @Public() Marks route as publicly accessible without authentication. ```typescript @Public() @Get('health') healthCheck() { return 'OK'; } ``` #### @isTwoFactorAuth() Enforces two-factor authentication requirement. ```typescript @isTwoFactorAuth() @Post('sensitive-data') sensitiveOperation() { return 'Access granted after 2FA verification'; } ``` #### @bypassTokenGate() Bypasses token gate verification checks. ```typescript @bypassTokenGate() @Get('unrestricted') unrestrictedAccess() { return 'Token gate check bypassed'; } ``` ### Core Interfaces #### IAuth.IConfiguration.IAuthentication ```typescript interface IAuthentication { enabled: boolean; commonOptions: IOptions; web2Options?: IWeb2.IOptions; web3Options?: IWeb3.IOptions; } ``` #### IAuth.ICredentials.IWeb2.IDto.ILogin ```typescript interface ILogin { username: string; email: string; password: string; } ``` #### IAuth.ICredentials.IWeb2.IDto.ISignup ```typescript interface ISignup { username: string; email: string; password: string; tags: Array; } ``` #### IAuth.ICredentials.IUser.IEntity ```typescript interface IEntity { username: string; email: string; created_at: number; updated_at: number; tags: Array; } ``` ### Model Classes #### Auth.Configuration.Authentication ```typescript class Authentication implements IAuth.IConfiguration.IAuthentication { public enabled: boolean; public commonOptions: IAuth.IConfiguration.IOptions; public web2Options: IAuth.IConfiguration.IWeb2.IOptions; public web3Options: IAuth.IConfiguration.IWeb3.IOptions; } ``` #### Auth.Credentials.Web2.Dto.Login ```typescript class Login implements IAuth.ICredentials.IWeb2.IDto.ILogin { public username: string; public email: string; public password: string; } ``` #### Auth.Credentials.Web3.Entity ```typescript class Entity implements IAuth.ICredentials.IWeb3.IEntity { public walletId: string; public publicKey: string; public balance: Array; } ``` #### Auth.TwoFactor.Auth ```typescript class Auth implements IAuth.ITwoFactor.IAuth { status: IAuth.ITwoFactor.IStatus; factorSid: string; identity: string; qr_code: string; } ``` *** ## 📖 Guides ### Decorator Usage Guide Learn how to use authentication decorators for route protection and access control. Implement role-based permissions, public endpoints, and advanced authentication patterns. ### Interface Reference Guide Complete reference for all authentication interfaces and type definitions. Understand the authentication system architecture and type contracts. ### Model Implementation Guide How to use model classes for type-safe authentication data handling. Learn about concrete implementations and runtime logic patterns. *** ## 🎯 Examples ### Role-Based Access Control ```typescript import { Controller, Get, Post, UseGuards } from '@nestjs/common'; import { Roles, Public, isTwoFactorAuth, bypassTokenGate } from '@hsuite/auth-types'; @Controller('api') export class SecureController { // Admin and moderator access @Roles(['admin', 'moderator']) @Get('admin-panel') getAdminPanel() { return { message: 'Welcome to admin panel' }; } // Admin only access @Roles(['admin']) @Post('delete-user') deleteUser() { return { message: 'User deleted by admin' }; } // Public endpoint (no auth required) @Public() @Get('public-info') getPublicInfo() { return { message: 'Public information' }; } // Requires 2FA verification @isTwoFactorAuth() @Roles(['admin']) @Post('critical-operation') criticalOperation() { return { message: 'Critical operation completed' }; } // Bypasses token gate @bypassTokenGate() @Get('no-token-gate') noTokenGate() { return { message: 'Token gate bypassed' }; } } ``` ### Web2 Authentication Models ```typescript import { Auth, IAuth } from '@hsuite/auth-types'; // Login credentials const loginDto = new Auth.Credentials.Web2.Dto.Login({ username: "john_doe", email: "john@example.com", password: "securePassword123" }); // Signup credentials const signupDto = new Auth.Credentials.Web2.Dto.Signup({ username: "jane_doe", email: "jane@example.com", password: "strongPassword456", tags: [{ key: "role", value: "user" }] }); // User entity const userEntity = new Auth.Credentials.User.Entity({ username: "john_doe", email: "john@example.com", created_at: Date.now(), updated_at: Date.now(), tags: [{ key: "status", value: "active" }] }); ``` ### Web3 Authentication Models ```typescript import { Auth, IAuth } from '@hsuite/auth-types'; // Web3 entity with wallet information const web3Entity = new Auth.Credentials.Web3.Entity({ walletId: "0.0.1234567", publicKey: "dhiueri7r4bxhbxwb", balance: [ { tokenId: "0.0.123", amount: "100" }, { tokenId: "0.0.456", amount: "200" } ] }); // Authentication request data const authData = new Auth.Credentials.Web3.Request.Authentication.Data({ token: "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..." }); // Signed data for authentication const signedData = new Auth.Credentials.Web3.Request.Authentication.SignedData({ signature: new Uint8Array([1, 2, 3, 4, 5]), serverSigningAccount: "0x1234567890abcdef" }); // Complete authentication request const authRequest = new Auth.Credentials.Web3.Request.Authentication.Authenticate({ signedData: signedData, payload: { url: "https://example.com/auth", node: "node-1", data: authData } }); ``` ### Two-Factor Authentication ```typescript import { Auth, IAuth } from '@hsuite/auth-types'; // Two-factor authentication setup const twoFactorAuth = new Auth.TwoFactor.Auth({ status: IAuth.ITwoFactor.IStatus.PENDING, factorSid: "YF1234567890abcdef1234567890abcdef", identity: "user@example.com", qr_code: "data:image/png;base64,iVBORw0KGgoAAAANSUhEUgA..." }); ``` ### User Types ```typescript import { User, IAuth } from '@hsuite/auth-types'; // Safe user model without sensitive data const safeUser = new User.Safe({ email: "user@example.com", username: "johndoe", created_at: Date.now(), updated_at: Date.now(), confirmed: true, type: IAuth.ICredentials.IUser.IType.STANDARD, role: 'user', tags: [ { key: 'api-key', value: 'your-api-key' }, { key: 'plan', value: 'premium' } ], banned: false, twoFactorAuth: { status: IAuth.ITwoFactor.IStatus.ENABLED, factorSid: "YF123...", identity: "user@example.com" } }); ``` ### Configuration Models ```typescript import { Auth, IAuth } from '@hsuite/auth-types'; // Complete authentication configuration const authConfig = new Auth.Configuration.Authentication({ enabled: true, commonOptions: { jwt: { secret: "your-secret-key", signOptions: { expiresIn: "24h" } }, passport: IAuth.IConfiguration.IPassportStrategy.JWT }, web2Options: { confirmation_required: true, admin_only: false, sendMailOptions: { confirm: { subject: "Confirm your account", template: "confirmation" } }, mailerOptions: { transport: { host: "smtp.example.com", port: 587, auth: { user: "your-email@example.com", pass: "your-password" } } } }, web3Options: { tokenGateOptions: { enabled: true, requiredTokens: ["0x123..."], minBalance: 1 } } }); ``` *** ## 🔗 Integration ### Required Dependencies ```json { "@nestjs/common": "^10.4.2", "@nestjs/core": "^10.4.2", "@hsuite/shared-types": "^2.0.0", "@hsuite/smart-network-types": "^2.0.0", "@hsuite/nestjs-swagger": "latest" } ``` ### TypeScript Configuration ```json { "compilerOptions": { "experimentalDecorators": true, "emitDecoratorMetadata": true, "strict": true, "strictPropertyInitialization": false } } ``` ### Metadata Keys ```typescript // Decorator metadata keys export const IS_PUBLIC = 'isPublic'; export const IS_TWO_FACTOR_AUTH = 'isTwoFactorAuth'; export const BYPASS_TOKEN_GATE = 'bypassTokenGate'; ``` *** **🔧 Type Safety**: All interfaces and models provide full TypeScript support with strict type checking and validation. **📐 Architecture**: Clean separation between interfaces (IAuth namespace) and implementations (Auth namespace) following SOLID principles. ## **🎯 Best Practice**: Use interfaces for type definitions and model classes for runtime validation and data transformation.

Built with ❤️ by the HSuite Team
Copyright © 2025 HSuite. All rights reserved.