Skip to content
Vendidit Auth

Interface: AuthenticatedUser

Interface: AuthenticatedUser

Defined in: auth-shared/src/jwt/principals.ts:15

Human user. Set on req.user (NestJS) after a user access token validates.

Properties

appCode?

optional appCode?: string

Defined in: auth-shared/src/jwt/principals.ts:44

appId?

optional appId?: string

Defined in: auth-shared/src/jwt/principals.ts:43

App scoping (AUDIT 8.3).

authProvider?

optional authProvider?: string

Defined in: auth-shared/src/jwt/principals.ts:37

displayName?

optional displayName?: string

Defined in: auth-shared/src/jwt/principals.ts:23

email

email: string

Defined in: auth-shared/src/jwt/principals.ts:20

firstName?

optional firstName?: string

Defined in: auth-shared/src/jwt/principals.ts:21

id

id: string

Defined in: auth-shared/src/jwt/principals.ts:19

User id (from uid JWT claim / id /me payload).

impersonatorEmail?

optional impersonatorEmail?: string

Defined in: auth-shared/src/jwt/principals.ts:50

impersonatorUserId?

optional impersonatorUserId?: string

Defined in: auth-shared/src/jwt/principals.ts:49

Impersonation stamps (AUDIT C7). Present when the token was minted by an admin acting as this user; the SDK can branch on this to surface a “you are impersonating” indicator.

jti?

optional jti?: string

Defined in: auth-shared/src/jwt/principals.ts:40

JWT ID — used for per-request revocation checks when enabled.

kind

kind: "user"

Defined in: auth-shared/src/jwt/principals.ts:16

lastName?

optional lastName?: string

Defined in: auth-shared/src/jwt/principals.ts:22

orgId?

optional orgId?: string

Defined in: auth-shared/src/jwt/principals.ts:26

Org context — present when the token was minted with an org scope.

orgName?

optional orgName?: string

Defined in: auth-shared/src/jwt/principals.ts:28

orgSlug?

optional orgSlug?: string

Defined in: auth-shared/src/jwt/principals.ts:27

permissions

permissions: string[]

Defined in: auth-shared/src/jwt/principals.ts:34

Permission codes (resource:action format, e.g. releases:create).

roles

roles: string[]

Defined in: auth-shared/src/jwt/principals.ts:31

Role codes (e.g. system_admin, org_admin, seller).

sessionId?

optional sessionId?: string

Defined in: auth-shared/src/jwt/principals.ts:36