import { BaseController } from "./Base"; import { User } from "../core/security/User"; import { JSONObject, ApiKey, ArgsDefault } from "../types"; import { RequestPayload } from "../types/RequestPayload"; /** * Auth controller * * @param kuzzle * @constructor */ export declare class AuthController extends BaseController { private _authenticationToken; /** * constructor * @param kuzzle */ constructor(kuzzle: any); /** * Authentication token in use */ get authenticationToken(): any | null; set authenticationToken(encodedJwt: any); /** * Do not add the token for the checkToken route, to avoid getting a token error when * a developer simply wishes to verify their token */ authenticateRequest(request: RequestPayload): void; /** * Creates a new API key for the currently logged user. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/create-api-key * * @param description API key description * @param options Additional options * - `_id` API key unique ID * - `refresh` If set to `wait_for`, Kuzzle will not respond until the API key is indexed * - `expiresIn` Expiration duration * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns The created API key */ createApiKey(description: string, options?: ArgsAuthControllerCreateApiKey): Promise; /** * Checks if an API action can be executed by the current user * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/check-rights * * @param requestPayload Request to check * @param options Additional Options * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected */ checkRights(requestPayload: RequestPayload, options?: ArgsAuthControllerCheckRights): Promise; /** * Deletes an API key for the currently logged user. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/delete-api-key * * @param id API key ID * @param options Additional options * - `refresh` If set to `wait_for`, Kuzzle will not respond until the API key is indexed * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected */ deleteApiKey(id: string, options?: ArgsAuthControllerDeleteApiKey): Promise; /** * Searches API keys for the currently logged user. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/search-api-keys * * @param query Search query * @param options Additional options * - `from` Offset of the first document to fetch * - `size` Maximum number of documents to retrieve per page * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns A search result object */ searchApiKeys(query?: JSONObject, options?: ArgsAuthControllerSearchApiKeys): Promise<{ /** * Array of found ApiKeys */ hits: Array; /** * Total number of API keys found */ total: number; }>; /** * Checks whether a given jwt token still represents a valid session in Kuzzle. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/check-token * * @param token The jwt token to check (default to current SDK token) * @param options Additional Options * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns A token validity object */ checkToken(token?: string, options?: ArgsAuthControllerCheckToken): Promise<{ /** * Tell if the token is valid or not */ valid: boolean; /** * Explain why the token is invalid */ state: string; /** * Token expiration timestamp */ expiresAt: number; /** * KUID of the user that the token belongs to */ kuid: string; }>; /** * Create credentials of the specified strategy for the current user. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/create-my-credentials * * @param strategy New credentials * @param credentials Name of the strategy to use * @param options Additional options * - `queuable` If true, queues the request during downtime, until connected to Kuzzle again * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns An object representing the new credentials. * The content depends on the authentication strategy */ createMyCredentials(strategy: string, credentials: JSONObject, options?: ArgsAuthControllerCreateMyCredentials): Promise; /** * Check the existence of the specified strategy's credentials for the current user. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/credentials-exist * * @param strategy Name of the strategy to use * @param options Additional options * - `queuable` If true, queues the request during downtime, until connected to Kuzzle again * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns A boolean indicating if the credentials exists */ credentialsExist(strategy: string, options?: ArgsAuthControllerCredentialsExist): Promise; /** * Delete credentials of the specified strategy for the current user. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/delete-my-credentials * * @param strategy Name of the strategy to use * @param options Additional options * - `queuable` If true, queues the request during downtime, until connected to Kuzzle again * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected */ deleteMyCredentials(strategy: string, options?: ArgsAuthControllerDeleteMyCredentials): Promise; /** * Fetches the current user. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/get-current-user * * @param options Additional options * - `queuable` If true, queues the request during downtime, until connected to Kuzzle again * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns Currently logged User */ getCurrentUser(options?: ArgsAuthControllerGetCurrentUser): Promise; /** * Get credential information of the specified strategy for the current user. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/get-my-credentials * * @param strategy Name of the strategy to use * @param options Additional options * - `queuable` If true, queues the request during downtime, until connected to Kuzzle again * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns An object representing the credentials for the provided authentication strategy. * Its content depends on the authentication strategy. */ getMyCredentials(strategy: string, options?: ArgsAuthControllerGetMyCredentials): Promise; /** * Gets the rights array of the currently logged user. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/get-my-rights * * @param options Additional options * - `queuable` If true, queues the request during downtime, until connected to Kuzzle again * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns An array containing user rights objects */ getMyRights(options?: ArgsAuthControllerGetMyRights): Promise>; /** * Get all the strategies registered in Kuzzle by all auth plugins * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/get-strategies * * @param options Additional options * - `queuable` If true, queues the request during downtime, until connected to Kuzzle again * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns An array of available strategies names */ getStrategies(options?: ArgsAuthControllerGetStrategies): Promise>; /** * Send login request to kuzzle with credentials * If cookieAuthentication is false and login succeeds, store the jwt into the kuzzle object * If cookieAuthentication is true and login succeeds, the token is stored in a cookie * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/login * * @param strategy Name of the strategy to use * @param credentials Credentials object for the strategy * @param expiresIn Expiration time in ms library format. (e.g. "2h") * * @returns The encrypted JSON Web Token */ login(strategy: string, credentials: JSONObject, expiresIn?: string | number, options?: ArgsAuthControllerLogin): Promise; /** * Send logout request to kuzzle with jwt. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/logout */ logout(options?: ArgsAuthControllerLogin): Promise; /** * Update credentials of the specified strategy for the current user. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/update-my-credentials * * @param strategy Name of the strategy to use * @param credentials Updated credentials * @param options Additional options * - `queuable` If true, queues the request during downtime, until connected to Kuzzle again * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns An object representing the updated credentials. * The content depends on the authentication strategy */ updateMyCredentials(strategy: string, credentials: JSONObject, options?: ArgsAuthControllerUpdateMyCredentials): Promise; /** * Update current user in Kuzzle. * This route cannot update the list of associated security profiles. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/update-self * * @param {object} content - User custom information * @param options Additional options * - `queuable` If true, queues the request during downtime, until connected to Kuzzle again * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns Currently logged User */ updateSelf(content: JSONObject, options?: ArgsAuthControllerUpdateSelf): Promise; /** * Validate credentials of the specified strategy for the current user. * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/validate-my-credentials * * @param strategy Name of the strategy to use * @param credentials Credentials to validate * @param options Additional options * - `queuable` If true, queues the request during downtime, until connected to Kuzzle again * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected */ validateMyCredentials(strategy: string, credentials: JSONObject, options?: ArgsAuthControllerValidateMyCredentials): Promise; /** * Refresh the SDK current authentication token * * @see https://docs.kuzzle.io/sdk/js/7/controllers/auth/refresh-token * * @param options Additional options * - `queuable` If true, queues the request during downtime, until connected to Kuzzle again * - `expiresIn` Expiration duration * - `timeout` Request Timeout in ms, after the delay if not resolved the promise will be rejected * * @returns The refreshed token */ refreshToken(options?: ArgsAuthControllerRefreshToken): Promise<{ /** * Token unique ID */ _id: string; /** * Expiration date in Epoch-millis format (-1 if the token never expires) */ expiresAt: number; /** * Authentication token associated with this API key */ jwt: string; /** * Original TTL in ms */ ttl: number; }>; } export interface ArgsAuthControllerCreateApiKey extends ArgsDefault { _id?: string; expiresIn?: number; refresh?: "wait_for" | "false"; } export type ArgsAuthControllerCheckRights = ArgsDefault; export interface ArgsAuthControllerDeleteApiKey extends ArgsDefault { refresh?: "wait_for" | "false"; } export interface ArgsAuthControllerSearchApiKeys extends ArgsDefault { from?: number; size?: number; lang?: string; } export type ArgsAuthControllerCheckToken = ArgsDefault; export type ArgsAuthControllerCreateMyCredentials = ArgsDefault; export type ArgsAuthControllerCredentialsExist = ArgsDefault; export type ArgsAuthControllerDeleteMyCredentials = ArgsDefault; export type ArgsAuthControllerGetCurrentUser = ArgsDefault; export type ArgsAuthControllerGetMyCredentials = ArgsDefault; export type ArgsAuthControllerGetMyRights = ArgsDefault; export type ArgsAuthControllerGetStrategies = ArgsDefault; export type ArgsAuthControllerUpdateMyCredentials = ArgsDefault; export type ArgsAuthControllerUpdateSelf = ArgsDefault; export type ArgsAuthControllerValidateMyCredentials = ArgsDefault; export type ArgsAuthControllerLogin = ArgsDefault; export type ArgsAuthControllerLogout = ArgsDefault; export interface ArgsAuthControllerRefreshToken extends ArgsDefault { expiresIn?: number | string; }