AuthAuditEventType

Package: @nauth-toolkit/core Type: Enum

Complete enumeration of all authentication and security events recorded in the audit trail.

import { AuthAuditEventType } from '@nauth-toolkit/nestjs';

import { AuthAuditEventType } from '@nauth-toolkit/core';

import { AuthAuditEventType } from '@nauth-toolkit/core';

Value	Description
`LOGIN_ATTEMPT`	Login attempt initiated (credentials validated, risk assessed)
`LOGIN_SUCCESS`	User successfully authenticated
`LOGIN_FAILED`	Login attempt failed (invalid credentials, account locked)
`LOGIN_BLOCKED`	Login attempt blocked (account locked, IP blocked)

Session Events

Value	Description
`SESSION_CREATED`	New session created (after successful authentication)
`SESSION_REVOKED`	Session revoked (logout, security violation, admin action)
`GLOBAL_SIGNOUT`	All sessions revoked (global sign-out)

Value	Description
`PASSWORD_CHANGED`	User changed their password
`PASSWORD_RESET_REQUESTED`	Password reset requested (email/SMS sent)
`PASSWORD_RESET_COMPLETED`	Password reset completed successfully
`PASSWORD_FORCE_CHANGE_SET`	Force password change requirement set (by admin or policy)
`PASSWORD_FORCE_CHANGE_COMPLETED`	Force password change completed
`ADMIN_PASSWORD_RESET_INITIATED`	Admin-initiated password reset started
`ADMIN_PASSWORD_RESET_COMPLETED`	Admin-initiated password reset completed
`ADMIN_PASSWORD_RESET_FAILED`	Admin-initiated password reset failed

Value	Description
`MFA_ENABLED`	MFA enabled for user account
`MFA_DISABLED`	MFA disabled for user account
`MFA_DEVICE_ADDED`	New MFA device registered (TOTP, SMS, Passkey)
`MFA_DEVICE_REMOVED`	MFA device removed from account
`MFA_DEVICE_UPDATED`	MFA device updated (name changed, primary flag changed)
`MFA_VERIFICATION_SUCCESS`	MFA verification succeeded
`MFA_VERIFICATION_FAILED`	MFA verification failed (invalid code, expired)
`MFA_EXEMPTION_GRANTED`	MFA exemption granted (admin action)
`MFA_EXEMPTION_REVOKED`	MFA exemption revoked (admin action)
`MFA_BACKUP_CODES_GENERATED`	Backup codes generated for MFA recovery
`MFA_BACKUP_CODE_USED`	Backup code used for MFA verification
`MFA_PREFERRED_METHOD_UPDATED`	User's preferred MFA method updated
`DEVICE_TRUSTED`	Device trusted by user (remember device feature)
`DEVICE_UNTRUSTED`	Trusted device revoked (user untrusted device or device expired)

Value	Description
`ADAPTIVE_MFA_RISK_ASSESSED`	Risk assessment completed (for future adaptive MFA implementation)
`ADAPTIVE_MFA_TRIGGERED`	Adaptive MFA triggered due to risk factors (for future implementation)
`ADAPTIVE_MFA_BYPASSED`	Adaptive MFA bypassed due to low risk (for future implementation)

Value	Description
`EMAIL_VERIFIED`	Email address verified successfully
`EMAIL_VERIFICATION_REQUESTED`	Email verification code/link requested
`EMAIL_VERIFICATION_FAILED`	Email verification failed (invalid code, expired)
`PHONE_VERIFIED`	Phone number verified successfully
`PHONE_VERIFICATION_REQUESTED`	Phone verification code requested
`PHONE_VERIFICATION_FAILED`	Phone verification failed (invalid code, expired)

Value	Description
`ACCOUNT_CREATED`	New user account created (signup)
`ACCOUNT_ACTIVATED`	User account activated
`ACCOUNT_DEACTIVATED`	User account deactivated
`ACCOUNT_LOCKED`	User account locked (security measure)
`ACCOUNT_UNLOCKED`	User account unlocked (admin action or auto-unlock)
`ACCOUNT_DISABLED`	User account disabled by admin (permanent lock)
`ACCOUNT_ENABLED`	User account enabled by admin (unlock)
`ACCOUNT_DELETED`	User account deleted

Value	Description
`PROFILE_UPDATED`	User profile updated (general update)
`EMAIL_CHANGED`	User email address changed
`PHONE_CHANGED`	User phone number changed
`USERNAME_CHANGED`	User username changed
`EMAIL_VERIFICATION_STATUS_UPDATED`	Email verification status manually updated (admin action)
`PHONE_VERIFICATION_STATUS_UPDATED`	Phone verification status manually updated (admin action)

Value	Description
`SOCIAL_LOGIN`	User authenticated via social provider (Google, Apple, Facebook)
`SOCIAL_ACCOUNT_LINKED`	Social account linked to user account
`SOCIAL_ACCOUNT_UNLINKED`	Social account unlinked from user account

Value	Description
`CHALLENGE_CREATED`	Challenge session created (email verification, phone verification, MFA setup)
`CHALLENGE_COMPLETED`	Challenge completed successfully
`CHALLENGE_ATTEMPT_FAILED`	Challenge attempt failed (max attempts exceeded)

Value	Description
`SUSPICIOUS_ACTIVITY`	Suspicious activity detected (token reuse, impossible travel)