diff --git a/lib/auth/authStore.js b/lib/auth/authStore.js
index f7743cc..c96d7a0 100644
--- a/lib/auth/authStore.js
+++ b/lib/auth/authStore.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _bcrypt=_interopRequireDefault(require("bcrypt")),_v=_interopRequireDefault(require("uuid/v4")),_authStoreInitializer=_interopRequireDefault(require("./authStoreInitializer"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function _slicedToArray(e,r){return _arrayWithHoles(e)||_iterableToArrayLimit(e,r)||_nonIterableRest()}function _nonIterableRest(){throw new TypeError("Invalid attempt to destructure non-iterable instance")}function _iterableToArrayLimit(e,r){var t=[],n=!0,a=!1,s=void 0;try{for(var u,o=e[Symbol.iterator]();!(n=(u=o.next()).done)&&(t.push(u.value),!r||t.length!==r);n=!0);}catch(e){a=!0,s=e}finally{try{n||null==o.return||o.return()}finally{if(a)throw s}}return t}function _arrayWithHoles(e){if(Array.isArray(e))return e}function _objectSpread(r){for(var e=1;e<arguments.length;e++){var t=null!=arguments[e]?arguments[e]:{},n=Object.keys(t);"function"==typeof Object.getOwnPropertySymbols&&(n=n.concat(Object.getOwnPropertySymbols(t).filter(function(e){return Object.getOwnPropertyDescriptor(t,e).enumerable}))),n.forEach(function(e){_defineProperty(r,e,t[e])})}return r}function asyncGeneratorStep(e,r,t,n,a,s,u){try{var o=e[s](u),i=o.value}catch(e){return void t(e)}o.done?r(i):Promise.resolve(i).then(n,a)}function _asyncToGenerator(o){return function(){var e=this,u=arguments;return new Promise(function(r,t){var n=o.apply(e,u);function a(e){asyncGeneratorStep(n,r,t,a,s,"next",e)}function s(e){asyncGeneratorStep(n,r,t,a,s,"throw",e)}a(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,t){return r in e?Object.defineProperty(e,r,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[r]=t,e}var saltRounds=10,AuthStore=function e(){var l=this;_classCallCheck(this,e),_defineProperty(this,"addUser",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,s,u,o,i,c,f,p;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,n=r.username,a=r.password,s=r.claims,u=r.updateClaims,o=void 0===u?function(e){return e}:u,i=r.status,c=void 0===i?"active":i,e.prev=1,e.next=4,_bcrypt.default.hash(a,saltRounds);case 4:return f=e.sent,e.next=7,l.Login.where({username:n}).fetch({columns:["id","userId","username","claims"]});case 7:if(p=e.sent){e.next=14;break}return console.log("adding new user",n),e.next=12,(new l.Login).save({userId:t,username:n,password:f,claims:JSON.stringify(_objectSpread({},s,o({}))),version:(0,_v.default)(),status:c});case 12:e.next=17;break;case 14:return console.log("updating user",n),e.next=17,p.save({userId:t,claims:JSON.stringify(_objectSpread({},p.get("claims"),s,o(p.get("claims")||{}))||{}),version:(0,_v.default)()},{patch:!0});case 17:e.next=23;break;case 19:throw e.prev=19,e.t0=e.catch(1),console.log("Failed to add login",e.t0),e.t0;case 23:case"end":return e.stop()}},e,this,[[1,19]])}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"getUser",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,s;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.username,n=r.version,e.prev=1,e.next=4,l.Login.where(n?{username:t,version:n}:{username:t}).query();case 4:return a=e.sent,(s=a.length&&a[0])&&(s.claims=s.claims||{roles:[]}),e.abrupt("return",s?l.getIdentity(s):null);case 10:return e.prev=10,e.t0=e.catch(1),console.log("Could not find user",e.t0),e.abrupt("return",null);case 14:case"end":return e.stop()}},e,this,[[1,10]])}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"removeUser",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,e.next=3,l.Login.where({userId:t}).fetch({columns:["id","userId","claims"]});case 3:return n=e.sent,e.next=6,n.save({userId:t,status:"suspended",claims:JSON.stringify(_objectSpread({},n.get("claims"),{organizations:{}})||{})},{patch:!0});case 6:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"removeUserFromOrg",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,s;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.organizationId,n=r.userId,e.next=3,l.Login.where({userId:n}).fetch({columns:["id","userId","claims"]});case 3:return a=e.sent,delete(s=_objectSpread({},a.get("claims").organizations))[t],e.next=8,a.save({userId:n,claims:JSON.stringify(_objectSpread({},a.get("claims"),{organizations:s})||{})},{patch:!0});case 8:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"checkLogin",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,s;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.username,n=r.password,e.next=3,l.Login.where({username:t}).where("status","<>","suspended").query();case 3:if(a=e.sent,s=a.length&&a[0],e.t0=s,e.t0)return e.next=9,_bcrypt.default.compare(n,s.password);e.next=10;break;case 9:e.t0=e.sent;case 10:if(e.t0)return e.abrupt("return",_objectSpread({},l.getIdentity(s),{status:s.status}));e.next=12;break;case 12:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"changePassword",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,s,u;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,n=r.password,a=r.status,e.next=3,_bcrypt.default.hash(n,saltRounds);case 3:return s=e.sent,e.next=6,l.Login.where({userId:t}).fetch();case 6:return u=e.sent,e.next=9,u.save({password:s,version:(0,_v.default)(),status:a||"active"},{patch:!0});case 9:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"enableUser",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,e.abrupt("return",l._setUserStatus({userId:t,status:"active"}));case 2:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"suspendUser",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,e.abrupt("return",l._setUserStatus({userId:t,status:"suspended"}));case 2:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"_setUserStatus",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,n=r.status,e.prev=1,e.next=4,l.Login.where({userId:t}).fetch();case 4:return a=e.sent,e.next=7,a.save({status:n,version:(0,_v.default)()},{patch:!0});case 7:e.next=13;break;case 9:throw e.prev=9,e.t0=e.catch(1),console.log("Error setting user status",e.t0),e.t0;case 13:case"end":return e.stop()}},e,this,[[1,9]])}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"count",function(){return l.Login.count()})};function merge(){var e=0<arguments.length&&void 0!==arguments[0]?arguments[0]:{},r=1<arguments.length&&void 0!==arguments[1]?arguments[1]:{};return Object.entries(r).reduce(function(e,r){var t=_slicedToArray(r,2),n=t[0],a=t[1];return e[n]=Array.isArray(a)?Array.from(new Set(e[n]?a.concat(e[n]):a)):a,e},e)}_defineProperty(exports.default=AuthStore,"create",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.db,n=r.identityMapper,e.next=3,_authStoreInitializer.default.assureTables(t);case 3:return(a=new AuthStore).getIdentity=function(e){return n(e)},a.Login=require("bookshelf")(t.knex("auth")).Model.extend({tableName:"logins"}),e.abrupt("return",a);case 7:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}());
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _bcrypt=_interopRequireDefault(require("bcrypt")),_v=_interopRequireDefault(require("uuid/v4")),_authStoreInitializer=_interopRequireDefault(require("./authStoreInitializer"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function _slicedToArray(e,r){return _arrayWithHoles(e)||_iterableToArrayLimit(e,r)||_nonIterableRest()}function _nonIterableRest(){throw new TypeError("Invalid attempt to destructure non-iterable instance")}function _iterableToArrayLimit(e,r){var t=[],n=!0,a=!1,s=void 0;try{for(var u,o=e[Symbol.iterator]();!(n=(u=o.next()).done)&&(t.push(u.value),!r||t.length!==r);n=!0);}catch(e){a=!0,s=e}finally{try{n||null==o.return||o.return()}finally{if(a)throw s}}return t}function _arrayWithHoles(e){if(Array.isArray(e))return e}function _objectSpread(r){for(var e=1;e<arguments.length;e++){var t=null!=arguments[e]?arguments[e]:{},n=Object.keys(t);"function"==typeof Object.getOwnPropertySymbols&&(n=n.concat(Object.getOwnPropertySymbols(t).filter(function(e){return Object.getOwnPropertyDescriptor(t,e).enumerable}))),n.forEach(function(e){_defineProperty(r,e,t[e])})}return r}function asyncGeneratorStep(e,r,t,n,a,s,u){try{var o=e[s](u),i=o.value}catch(e){return void t(e)}o.done?r(i):Promise.resolve(i).then(n,a)}function _asyncToGenerator(o){return function(){var e=this,u=arguments;return new Promise(function(r,t){var n=o.apply(e,u);function a(e){asyncGeneratorStep(n,r,t,a,s,"next",e)}function s(e){asyncGeneratorStep(n,r,t,a,s,"throw",e)}a(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,t){return r in e?Object.defineProperty(e,r,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[r]=t,e}var saltRounds=10,AuthStore=function e(){var p=this;_classCallCheck(this,e),_defineProperty(this,"addUser",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,s,u,o,i,c,f;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,n=r.username,a=r.password,s=r.claims,u=r.updateClaims,o=void 0===u?function(e){return e}:u,e.prev=1,e.next=4,_bcrypt.default.hash(a,saltRounds);case 4:return i=e.sent,e.next=7,p.Login.where({username:n}).fetch({columns:["id","userId","username","claims","status"]});case 7:if(c=e.sent){e.next=14;break}return f="onboard",e.next=12,(new p.Login).save({userId:t,username:n,password:i,claims:JSON.stringify(_objectSpread({},s,o({}))),version:(0,_v.default)(),status:f});case 12:e.next=17;break;case 14:return f=c.attributes.status,e.next=17,c.save({userId:t,claims:JSON.stringify(_objectSpread({},c.get("claims"),s,o(c.get("claims")||{}))||{}),status:"active",version:(0,_v.default)()},{patch:!0});case 17:return e.abrupt("return",{status:f});case 20:throw e.prev=20,e.t0=e.catch(1),console.log("Failed to add login",e.t0),e.t0;case 24:case"end":return e.stop()}},e,null,[[1,20]])}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"getUser",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,s;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.username,n=r.version,e.prev=1,e.next=4,p.Login.where(n?{username:t,version:n}:{username:t}).query();case 4:return a=e.sent,(s=a.length&&a[0])&&(s.claims=s.claims||{roles:[]}),e.abrupt("return",s?p.getIdentity(s):null);case 10:return e.prev=10,e.t0=e.catch(1),console.log("Could not find user",e.t0),e.abrupt("return",null);case 14:case"end":return e.stop()}},e,null,[[1,10]])}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"removeUser",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,e.next=3,p.Login.where({userId:t}).fetch({columns:["id","userId","claims","status"]});case 3:if("onboard"===(n=e.sent).attributes.status)return e.abrupt("return",p.Login.where({userId:n.attributes.userId}).destroy());e.next=6;break;case 6:return e.next=8,n.save({userId:t,status:"suspended",claims:JSON.stringify(_objectSpread({},n.get("claims"),{organizations:{}})||{})},{patch:!0});case 8:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"removeUserFromOrg",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,s;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.organizationId,n=r.userId,e.next=3,p.Login.where({userId:n}).fetch({columns:["id","userId","claims","status"]});case 3:if("onboard"===(a=e.sent).attributes.status)return e.abrupt("return",p.Login.where({userId:a.attributes.userId}).destroy());e.next=6;break;case 6:return delete(s=_objectSpread({},a.get("claims").organizations))[t],e.next=10,a.save({userId:n,claims:JSON.stringify(_objectSpread({},a.get("claims"),{organizations:s})||{})},{patch:!0});case 10:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"checkLogin",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,s;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.username,n=r.password,e.next=3,p.Login.where({username:t}).where("status","<>","suspended").query();case 3:if(a=e.sent,s=a.length&&a[0],e.t0=s,e.t0)return e.next=9,_bcrypt.default.compare(n,s.password);e.next=10;break;case 9:e.t0=e.sent;case 10:if(e.t0)return e.abrupt("return",_objectSpread({},p.getIdentity(s),{status:s.status}));e.next=12;break;case 12:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"changePassword",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,s,u;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,n=r.password,a=r.status,e.next=3,_bcrypt.default.hash(n,saltRounds);case 3:return s=e.sent,e.next=6,p.Login.where({userId:t}).fetch();case 6:return u=e.sent,e.next=9,u.save({password:s,version:(0,_v.default)(),status:a||"active"},{patch:!0});case 9:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"enableUser",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,e.abrupt("return",p._setUserStatus({userId:t,status:"active"}));case 2:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"suspendUser",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,e.abrupt("return",p._setUserStatus({userId:t,status:"suspended"}));case 2:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"_setUserStatus",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.userId,n=r.status,e.prev=1,e.next=4,p.Login.where({userId:t}).fetch();case 4:return a=e.sent,e.next=7,a.save({status:n,version:(0,_v.default)()},{patch:!0});case 7:e.next=13;break;case 9:throw e.prev=9,e.t0=e.catch(1),console.log("Error setting user status",e.t0),e.t0;case 13:case"end":return e.stop()}},e,null,[[1,9]])}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"count",function(){return p.Login.count()})};function merge(){var e=0<arguments.length&&void 0!==arguments[0]?arguments[0]:{},r=1<arguments.length&&void 0!==arguments[1]?arguments[1]:{};return Object.entries(r).reduce(function(e,r){var t=_slicedToArray(r,2),n=t[0],a=t[1];return e[n]=Array.isArray(a)?Array.from(new Set(e[n]?a.concat(e[n]):a)):a,e},e)}_defineProperty(exports.default=AuthStore,"create",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.db,n=r.identityMapper,e.next=3,_authStoreInitializer.default.assureTables(t);case 3:return(a=new AuthStore).getIdentity=function(e){return n(e)},a.Login=require("bookshelf")(t.knex("auth")).Model.extend({tableName:"logins"}),e.abrupt("return",a);case 7:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}());
 //# sourceMappingURL=../maps/auth/authStore.js.map
diff --git a/lib/auth/authStoreInitializer.js b/lib/auth/authStoreInitializer.js
index a75cb68..eeaa2ff 100644
--- a/lib/auth/authStoreInitializer.js
+++ b/lib/auth/authStoreInitializer.js
@@ -1,2 +1,2 @@
-"use strict";function asyncGeneratorStep(e,n,t,r,a,o,i){try{var s=e[o](i),u=s.value}catch(e){return void t(e)}s.done?n(u):Promise.resolve(u).then(r,a)}function _asyncToGenerator(s){return function(){var e=this,i=arguments;return new Promise(function(n,t){var r=s.apply(e,i);function a(e){asyncGeneratorStep(r,n,t,a,o,"next",e)}function o(e){asyncGeneratorStep(r,n,t,a,o,"throw",e)}a(void 0)})}}function _classCallCheck(e,n){if(!(e instanceof n))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,n,t){return n in e?Object.defineProperty(e,n,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[n]=t,e}Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var AuthStoreInitializer=function e(){_classCallCheck(this,e)};_defineProperty(exports.default=AuthStoreInitializer,"assureTables",function(){var n=_asyncToGenerator(regeneratorRuntime.mark(function e(n){var t;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.next=2,n.knex().raw("CREATE DATABASE IF NOT EXISTS `auth`");case 2:return t=n.knex("auth"),e.next=5,t.schema.hasTable("logins");case 5:if(e.sent){e.next=8;break}return e.next=8,t.schema.createTable("logins",function(e){e.bigIncrements("id").primary().notNullable(),e.string("userId",36).notNullable(),e.string("username",255).notNullable(),e.string("password",128).notNullable(),e.specificType("claims","json"),e.string("status",36).notNullable().defaultTo("active"),e.string("version",36).notNullable(),e.unique("username")});case 8:case"end":return e.stop()}},e,this)}));return function(e){return n.apply(this,arguments)}}());
+"use strict";function asyncGeneratorStep(e,n,t,r,a,o,i){try{var s=e[o](i),u=s.value}catch(e){return void t(e)}s.done?n(u):Promise.resolve(u).then(r,a)}function _asyncToGenerator(s){return function(){var e=this,i=arguments;return new Promise(function(n,t){var r=s.apply(e,i);function a(e){asyncGeneratorStep(r,n,t,a,o,"next",e)}function o(e){asyncGeneratorStep(r,n,t,a,o,"throw",e)}a(void 0)})}}function _classCallCheck(e,n){if(!(e instanceof n))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,n,t){return n in e?Object.defineProperty(e,n,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[n]=t,e}Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var AuthStoreInitializer=function e(){_classCallCheck(this,e)};_defineProperty(exports.default=AuthStoreInitializer,"assureTables",function(){var n=_asyncToGenerator(regeneratorRuntime.mark(function e(n){var t;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.next=2,n.knex().raw("CREATE DATABASE IF NOT EXISTS `auth`");case 2:return t=n.knex("auth"),e.next=5,t.schema.hasTable("logins");case 5:if(e.sent){e.next=8;break}return e.next=8,t.schema.createTable("logins",function(e){e.bigIncrements("id").primary().notNullable(),e.string("userId",36).notNullable(),e.string("username",255).notNullable(),e.string("password",128).notNullable(),e.specificType("claims","json"),e.string("status",36).notNullable().defaultTo("active"),e.string("version",36).notNullable(),e.unique("username")});case 8:case"end":return e.stop()}},e)}));return function(e){return n.apply(this,arguments)}}());
 //# sourceMappingURL=../maps/auth/authStoreInitializer.js.map
diff --git a/lib/auth/authTokenMapper.js b/lib/auth/authTokenMapper.js
index 453b301..ae68a34 100644
--- a/lib/auth/authTokenMapper.js
+++ b/lib/auth/authTokenMapper.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _jsonwebtoken=_interopRequireDefault(require("jsonwebtoken"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function asyncGeneratorStep(e,t,r,n,o,i,u){try{var a=e[i](u),s=a.value}catch(e){return void r(e)}a.done?t(s):Promise.resolve(s).then(n,o)}function _asyncToGenerator(a){return function(){var e=this,u=arguments;return new Promise(function(t,r){var n=a.apply(e,u);function o(e){asyncGeneratorStep(n,t,r,o,i,"next",e)}function i(e){asyncGeneratorStep(n,t,r,o,i,"throw",e)}o(void 0)})}}function _defineProperties(e,t){for(var r=0;r<t.length;r++){var n=t[r];n.enumerable=n.enumerable||!1,n.configurable=!0,"value"in n&&(n.writable=!0),Object.defineProperty(e,n.key,n)}}function _createClass(e,t,r){return t&&_defineProperties(e.prototype,t),r&&_defineProperties(e,r),e}function _typeof(e){return(_typeof="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(e){return typeof e}:function(e){return e&&"function"==typeof Symbol&&e.constructor===Symbol&&e!==Symbol.prototype?"symbol":typeof e})(e)}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _possibleConstructorReturn(e,t){return!t||"object"!==_typeof(t)&&"function"!=typeof t?_assertThisInitialized(e):t}function _inherits(e,t){if("function"!=typeof t&&null!==t)throw new TypeError("Super expression must either be null or a function");e.prototype=Object.create(t&&t.prototype,{constructor:{value:e,writable:!0,configurable:!0}}),t&&_setPrototypeOf(e,t)}function _assertThisInitialized(e){if(void 0===e)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return e}function _wrapNativeSuper(e){var r="function"==typeof Map?new Map:void 0;return(_wrapNativeSuper=function(e){if(null===e||!_isNativeFunction(e))return e;if("function"!=typeof e)throw new TypeError("Super expression must either be null or a function");if(void 0!==r){if(r.has(e))return r.get(e);r.set(e,t)}function t(){return _construct(e,arguments,_getPrototypeOf(this).constructor)}return t.prototype=Object.create(e.prototype,{constructor:{value:t,enumerable:!1,writable:!0,configurable:!0}}),_setPrototypeOf(t,e)})(e)}function isNativeReflectConstruct(){if("undefined"==typeof Reflect||!Reflect.construct)return!1;if(Reflect.construct.sham)return!1;if("function"==typeof Proxy)return!0;try{return Date.prototype.toString.call(Reflect.construct(Date,[],function(){})),!0}catch(e){return!1}}function _construct(e,t,r){return(_construct=isNativeReflectConstruct()?Reflect.construct:function(e,t,r){var n=[null];n.push.apply(n,t);var o=new(Function.bind.apply(e,n));return r&&_setPrototypeOf(o,r.prototype),o}).apply(null,arguments)}function _isNativeFunction(e){return-1!==Function.toString.call(e).indexOf("[native code]")}function _setPrototypeOf(e,t){return(_setPrototypeOf=Object.setPrototypeOf||function(e,t){return e.__proto__=t,e})(e,t)}function _getPrototypeOf(e){return(_getPrototypeOf=Object.setPrototypeOf?Object.getPrototypeOf:function(e){return e.__proto__||Object.getPrototypeOf(e)})(e)}function _defineProperty(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}var TokenExpiredError=function(e){function i(){var e,t;_classCallCheck(this,i);for(var r=arguments.length,n=new Array(r),o=0;o<r;o++)n[o]=arguments[o];return _defineProperty(_assertThisInitialized(_assertThisInitialized(t=_possibleConstructorReturn(this,(e=_getPrototypeOf(i)).call.apply(e,[this].concat(n))))),"name","TokenExpiredError"),t}return _inherits(i,_wrapNativeSuper(Error)),i}(),AuthTokenMapper=function(){function i(e){var a=this,t=e.authStore,r=e.secret,n=e.expiration,o=e.identityMapper;_classCallCheck(this,i),_defineProperty(this,"verify",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r,n,o,i,u;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.next=2,_jsonwebtoken.default.verify(t,a.secret);case 2:return r=e.sent,n=r.identity,o=r.refresh,e.prev=5,e.t0=a,e.next=9,_jsonwebtoken.default.verify(n,a.secret);case 9:return e.t1=e.sent,i=e.t0.identityMapper.call(e.t0,e.t1),e.abrupt("return",{identity:i,token:t});case 14:if(e.prev=14,e.t2=e.catch(5),"TokenExpiredError"===e.t2.name)return e.next=19,a.authStore.getUser(o);e.next=23;break;case 19:if(u=e.sent){e.next=22;break}throw new TokenExpiredError;case 22:return e.abrupt("return",{identity:u,token:a.sign(u)});case 23:case"end":return e.stop()}},e,this,[[5,14]])}));return function(e){return t.apply(this,arguments)}}()),this.authStore=t,this.secret=r,this.expiration=n,this.identityMapper=o}return _createClass(i,[{key:"sign",value:function(e){return _jsonwebtoken.default.sign({identity:_jsonwebtoken.default.sign(e,this.secret,{expiresIn:this.expiration.identity}),refresh:{username:e.username,version:e.version}},this.secret,{expiresIn:this.expiration.refresh})}}]),i}();exports.default=AuthTokenMapper;
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _jsonwebtoken=_interopRequireDefault(require("jsonwebtoken"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function asyncGeneratorStep(e,t,r,n,o,i,u){try{var a=e[i](u),c=a.value}catch(e){return void r(e)}a.done?t(c):Promise.resolve(c).then(n,o)}function _asyncToGenerator(a){return function(){var e=this,u=arguments;return new Promise(function(t,r){var n=a.apply(e,u);function o(e){asyncGeneratorStep(n,t,r,o,i,"next",e)}function i(e){asyncGeneratorStep(n,t,r,o,i,"throw",e)}o(void 0)})}}function _defineProperties(e,t){for(var r=0;r<t.length;r++){var n=t[r];n.enumerable=n.enumerable||!1,n.configurable=!0,"value"in n&&(n.writable=!0),Object.defineProperty(e,n.key,n)}}function _createClass(e,t,r){return t&&_defineProperties(e.prototype,t),r&&_defineProperties(e,r),e}function _typeof(e){return(_typeof="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(e){return typeof e}:function(e){return e&&"function"==typeof Symbol&&e.constructor===Symbol&&e!==Symbol.prototype?"symbol":typeof e})(e)}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _possibleConstructorReturn(e,t){return!t||"object"!==_typeof(t)&&"function"!=typeof t?_assertThisInitialized(e):t}function _assertThisInitialized(e){if(void 0===e)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return e}function _inherits(e,t){if("function"!=typeof t&&null!==t)throw new TypeError("Super expression must either be null or a function");e.prototype=Object.create(t&&t.prototype,{constructor:{value:e,writable:!0,configurable:!0}}),t&&_setPrototypeOf(e,t)}function _wrapNativeSuper(e){var r="function"==typeof Map?new Map:void 0;return(_wrapNativeSuper=function(e){if(null===e||!_isNativeFunction(e))return e;if("function"!=typeof e)throw new TypeError("Super expression must either be null or a function");if(void 0!==r){if(r.has(e))return r.get(e);r.set(e,t)}function t(){return _construct(e,arguments,_getPrototypeOf(this).constructor)}return t.prototype=Object.create(e.prototype,{constructor:{value:t,enumerable:!1,writable:!0,configurable:!0}}),_setPrototypeOf(t,e)})(e)}function isNativeReflectConstruct(){if("undefined"==typeof Reflect||!Reflect.construct)return!1;if(Reflect.construct.sham)return!1;if("function"==typeof Proxy)return!0;try{return Date.prototype.toString.call(Reflect.construct(Date,[],function(){})),!0}catch(e){return!1}}function _construct(e,t,r){return(_construct=isNativeReflectConstruct()?Reflect.construct:function(e,t,r){var n=[null];n.push.apply(n,t);var o=new(Function.bind.apply(e,n));return r&&_setPrototypeOf(o,r.prototype),o}).apply(null,arguments)}function _isNativeFunction(e){return-1!==Function.toString.call(e).indexOf("[native code]")}function _setPrototypeOf(e,t){return(_setPrototypeOf=Object.setPrototypeOf||function(e,t){return e.__proto__=t,e})(e,t)}function _getPrototypeOf(e){return(_getPrototypeOf=Object.setPrototypeOf?Object.getPrototypeOf:function(e){return e.__proto__||Object.getPrototypeOf(e)})(e)}function _defineProperty(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}var TokenExpiredError=function(e){function i(){var e,t;_classCallCheck(this,i);for(var r=arguments.length,n=new Array(r),o=0;o<r;o++)n[o]=arguments[o];return _defineProperty(_assertThisInitialized(t=_possibleConstructorReturn(this,(e=_getPrototypeOf(i)).call.apply(e,[this].concat(n)))),"name","TokenExpiredError"),t}return _inherits(i,_wrapNativeSuper(Error)),i}(),AuthTokenMapper=function(){function i(e){var a=this,t=e.authStore,r=e.secret,n=e.expiration,o=e.identityMapper;_classCallCheck(this,i),_defineProperty(this,"verify",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r,n,o,i,u;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.next=2,_jsonwebtoken.default.verify(t,a.secret);case 2:return r=e.sent,n=r.identity,o=r.refresh,e.prev=5,e.t0=a,e.next=9,_jsonwebtoken.default.verify(n,a.secret);case 9:return e.t1=e.sent,i=e.t0.identityMapper.call(e.t0,e.t1),e.abrupt("return",{identity:i,token:t});case 14:if(e.prev=14,e.t2=e.catch(5),"TokenExpiredError"===e.t2.name)return e.next=19,a.authStore.getUser(o);e.next=23;break;case 19:if(u=e.sent){e.next=22;break}throw new TokenExpiredError;case 22:return e.abrupt("return",{identity:u,token:a.sign(u)});case 23:case"end":return e.stop()}},e,null,[[5,14]])}));return function(e){return t.apply(this,arguments)}}()),this.authStore=t,this.secret=r,this.expiration=n,this.identityMapper=o}return _createClass(i,[{key:"sign",value:function(e){return _jsonwebtoken.default.sign({identity:_jsonwebtoken.default.sign(e,this.secret,{expiresIn:this.expiration.identity}),refresh:{username:e.username,version:e.version}},this.secret,{expiresIn:this.expiration.refresh})}}]),i}();exports.default=AuthTokenMapper;
 //# sourceMappingURL=../maps/auth/authTokenMapper.js.map
diff --git a/lib/commandHandling/commandExecutor.js b/lib/commandHandling/commandExecutor.js
index af60682..e717d12 100644
--- a/lib/commandHandling/commandExecutor.js
+++ b/lib/commandHandling/commandExecutor.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _nodeCqrsLib=require("@facetdev/node-cqrs-lib");function _objectSpread(r){for(var e=1;e<arguments.length;e++){var t=null!=arguments[e]?arguments[e]:{},n=Object.keys(t);"function"==typeof Object.getOwnPropertySymbols&&(n=n.concat(Object.getOwnPropertySymbols(t).filter(function(e){return Object.getOwnPropertyDescriptor(t,e).enumerable}))),n.forEach(function(e){_defineProperty(r,e,t[e])})}return r}function _objectWithoutProperties(e,r){if(null==e)return{};var t,n,o=_objectWithoutPropertiesLoose(e,r);if(Object.getOwnPropertySymbols){var a=Object.getOwnPropertySymbols(e);for(n=0;n<a.length;n++)t=a[n],0<=r.indexOf(t)||Object.prototype.propertyIsEnumerable.call(e,t)&&(o[t]=e[t])}return o}function _objectWithoutPropertiesLoose(e,r){if(null==e)return{};var t,n,o={},a=Object.keys(e);for(n=0;n<a.length;n++)t=a[n],0<=r.indexOf(t)||(o[t]=e[t]);return o}function asyncGeneratorStep(e,r,t,n,o,a,c){try{var s=e[a](c),i=s.value}catch(e){return void t(e)}s.done?r(i):Promise.resolve(i).then(n,o)}function _asyncToGenerator(s){return function(){var e=this,c=arguments;return new Promise(function(r,t){var n=s.apply(e,c);function o(e){asyncGeneratorStep(n,r,t,o,a,"next",e)}function a(e){asyncGeneratorStep(n,r,t,o,a,"throw",e)}o(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,t){return r in e?Object.defineProperty(e,r,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[r]=t,e}var CommandExecutor=function e(r){var p=this,t=r.name,n=r.handlers,o=r.repository;_classCallCheck(this,e),_defineProperty(this,"execute",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,o,a,c,s,i,u,f;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:if(t=r.aggregateId,n=r.commandType,o=r.command,a=p.handlers[n]&&p.handlers[n]()){e.next=4;break}throw new _nodeCqrsLib.CommandHandlerError({message:"Unknown command ".concat(n)});case 4:return e.prev=4,e.next=7,p.getAggregate(a,t);case 7:return c=e.sent,e.next=10,a.handle(o,c);case 10:return s=e.sent,u=(i=s||{}).events,f=_objectWithoutProperties(i,["events"]),e.next=14,p.repository.record(u);case 14:return e.abrupt("return",_objectSpread({id:c.id},f));case 17:throw e.prev=17,e.t0=e.catch(4),e.t0.handler=a,e.t0;case 21:case"end":return e.stop()}},e,this,[[4,17]])}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"getAggregate",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(r,t){var n;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:if(t){e.next=4;break}return e.next=3,p.repository.create();case 3:return e.abrupt("return",e.sent);case 4:return e.next=6,p.repository.get(t);case 6:if(e.t0=e.sent,e.t0){e.next=14;break}if(e.t1=r.isCreateHandler,e.t1)return e.next=12,p.repository.create(t);e.next=13;break;case 12:e.t1=e.sent;case 13:e.t0=e.t1;case 14:if(n=e.t0){e.next=17;break}throw new _nodeCqrsLib.CommandHandlerError({message:"".concat(p.name," ").concat(t," not found"),handler:r,aggregate:n});case 17:return e.abrupt("return",n);case 18:case"end":return e.stop()}},e,this)}));return function(e,r){return t.apply(this,arguments)}}()),this.name=t,this.handlers=n,this.repository=o};exports.default=CommandExecutor;
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _nodeCqrsLib=require("@facetdev/node-cqrs-lib");function _objectSpread(r){for(var e=1;e<arguments.length;e++){var t=null!=arguments[e]?arguments[e]:{},n=Object.keys(t);"function"==typeof Object.getOwnPropertySymbols&&(n=n.concat(Object.getOwnPropertySymbols(t).filter(function(e){return Object.getOwnPropertyDescriptor(t,e).enumerable}))),n.forEach(function(e){_defineProperty(r,e,t[e])})}return r}function _objectWithoutProperties(e,r){if(null==e)return{};var t,n,o=_objectWithoutPropertiesLoose(e,r);if(Object.getOwnPropertySymbols){var a=Object.getOwnPropertySymbols(e);for(n=0;n<a.length;n++)t=a[n],0<=r.indexOf(t)||Object.prototype.propertyIsEnumerable.call(e,t)&&(o[t]=e[t])}return o}function _objectWithoutPropertiesLoose(e,r){if(null==e)return{};var t,n,o={},a=Object.keys(e);for(n=0;n<a.length;n++)t=a[n],0<=r.indexOf(t)||(o[t]=e[t]);return o}function asyncGeneratorStep(e,r,t,n,o,a,c){try{var s=e[a](c),i=s.value}catch(e){return void t(e)}s.done?r(i):Promise.resolve(i).then(n,o)}function _asyncToGenerator(s){return function(){var e=this,c=arguments;return new Promise(function(r,t){var n=s.apply(e,c);function o(e){asyncGeneratorStep(n,r,t,o,a,"next",e)}function a(e){asyncGeneratorStep(n,r,t,o,a,"throw",e)}o(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,t){return r in e?Object.defineProperty(e,r,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[r]=t,e}var CommandExecutor=function e(r){var p=this,t=r.name,n=r.handlers,o=r.repository;_classCallCheck(this,e),_defineProperty(this,"execute",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,o,a,c,s,i,u,f;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:if(t=r.aggregateId,n=r.commandType,o=r.command,a=p.handlers[n]&&p.handlers[n]()){e.next=4;break}throw new _nodeCqrsLib.CommandHandlerError({message:"Unknown command ".concat(n)});case 4:return e.prev=4,e.next=7,p.getAggregate(a,t);case 7:return c=e.sent,e.next=10,a.handle(o,c);case 10:return s=e.sent,u=(i=s||{}).events,f=_objectWithoutProperties(i,["events"]),e.next=14,p.repository.record(u);case 14:return e.abrupt("return",_objectSpread({id:c.id},f));case 17:throw e.prev=17,e.t0=e.catch(4),e.t0.handler=a,e.t0;case 21:case"end":return e.stop()}},e,null,[[4,17]])}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"getAggregate",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(r,t){var n;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:if(t){e.next=4;break}return e.next=3,p.repository.create();case 3:return e.abrupt("return",e.sent);case 4:return e.next=6,p.repository.get(t);case 6:if(e.t0=e.sent,e.t0){e.next=14;break}if(e.t1=r.isCreateHandler,e.t1)return e.next=12,p.repository.create(t);e.next=13;break;case 12:e.t1=e.sent;case 13:e.t0=e.t1;case 14:if(n=e.t0){e.next=17;break}throw new _nodeCqrsLib.CommandHandlerError({message:"".concat(p.name," ").concat(t," not found"),handler:r,aggregate:n});case 17:return e.abrupt("return",n);case 18:case"end":return e.stop()}},e)}));return function(e,r){return t.apply(this,arguments)}}()),this.name=t,this.handlers=n,this.repository=o};exports.default=CommandExecutor;
 //# sourceMappingURL=../maps/commandHandling/commandExecutor.js.map
diff --git a/lib/commandHandling/passwordCommandHandler.js b/lib/commandHandling/passwordCommandHandler.js
index 320ed6e..144a707 100644
--- a/lib/commandHandling/passwordCommandHandler.js
+++ b/lib/commandHandling/passwordCommandHandler.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _nodeCqrsLib=require("@facetdev/node-cqrs-lib");function asyncGeneratorStep(e,r,n,t,o,a,s){try{var i=e[a](s),u=i.value}catch(e){return void n(e)}i.done?r(u):Promise.resolve(u).then(t,o)}function _asyncToGenerator(i){return function(){var e=this,s=arguments;return new Promise(function(r,n){var t=i.apply(e,s);function o(e){asyncGeneratorStep(t,r,n,o,a,"next",e)}function a(e){asyncGeneratorStep(t,r,n,o,a,"throw",e)}o(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,n){return r in e?Object.defineProperty(e,r,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[r]=n,e}var PasswordCommandHandler=function e(r,n){var i=this;_classCallCheck(this,e),_defineProperty(this,"handleResetCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.abrupt("return",i.handleCommand({ctx:r,commandType:"ResetPassword"}));case 1:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"handleChangeCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.abrupt("return",i.handleCommand({ctx:r,commandType:"ChangePassword"}));case 1:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"handleCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var n,t,o,a,s;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return n=r.ctx,t=r.commandType,(o=n.request.body).$identity=n.$identity,o.$position=n.$position,a=o.username,e.next=7,i.authStore.getUser({username:a});case 7:if(s=e.sent){e.next=13;break}return console.log("User not found or not enabled",a),n.body={error:"User not found or not enabled"},n.status=404,e.abrupt("return");case 13:return e.prev=13,e.next=16,i.domainCommandDeliverer.deliver({service:"user",target:s.userId,commandType:t,command:o});case 16:return n.body=e.sent,n.status=200,e.abrupt("return");case 21:e.prev=21,e.t0=e.catch(13),e.t0 instanceof _nodeCqrsLib.ValidationError?(console.log("Validation failure"),n.status=400):e.t0 instanceof _nodeCqrsLib.AuthorizationError?(console.log("Authorization failure"),n.status=403):(console.log("Unexpected exception"),n.status=500),n.body={error:null===e.t0||void 0===e.t0?void 0:e.t0.message},console.log(e.t0);case 26:case"end":return e.stop()}},e,this,[[13,21]])}));return function(e){return r.apply(this,arguments)}}()),this.domainCommandDeliverer=r,this.authStore=n};exports.default=PasswordCommandHandler;
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _nodeCqrsLib=require("@facetdev/node-cqrs-lib");function asyncGeneratorStep(e,r,n,t,o,a,s){try{var i=e[a](s),u=i.value}catch(e){return void n(e)}i.done?r(u):Promise.resolve(u).then(t,o)}function _asyncToGenerator(i){return function(){var e=this,s=arguments;return new Promise(function(r,n){var t=i.apply(e,s);function o(e){asyncGeneratorStep(t,r,n,o,a,"next",e)}function a(e){asyncGeneratorStep(t,r,n,o,a,"throw",e)}o(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,n){return r in e?Object.defineProperty(e,r,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[r]=n,e}var PasswordCommandHandler=function e(r,n){var i=this;_classCallCheck(this,e),_defineProperty(this,"handleResetCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.abrupt("return",i.handleCommand({ctx:r,commandType:"ResetPassword"}));case 1:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"handleChangeCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.abrupt("return",i.handleCommand({ctx:r,commandType:"ChangePassword"}));case 1:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"handleCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var n,t,o,a,s;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return n=r.ctx,t=r.commandType,(o=n.request.body).$identity=n.$identity,o.$position=n.$position,a=o.username,e.next=7,i.authStore.getUser({username:a});case 7:if(s=e.sent){e.next=13;break}return console.log("User not found or not enabled",a),n.body={error:"User not found or not enabled"},n.status=404,e.abrupt("return");case 13:return e.prev=13,e.next=16,i.domainCommandDeliverer.deliver({service:"user",target:s.userId,commandType:t,command:o});case 16:return n.body=e.sent,n.status=200,e.abrupt("return");case 21:e.prev=21,e.t0=e.catch(13),e.t0 instanceof _nodeCqrsLib.ValidationError?(console.log("Validation failure"),n.status=400):e.t0 instanceof _nodeCqrsLib.AuthorizationError?(console.log("Authorization failure"),n.status=403):(console.log("Unexpected exception"),n.status=500),n.body={error:null===e.t0||void 0===e.t0?void 0:e.t0.message},console.log(e.t0);case 26:case"end":return e.stop()}},e,null,[[13,21]])}));return function(e){return r.apply(this,arguments)}}()),this.domainCommandDeliverer=r,this.authStore=n};exports.default=PasswordCommandHandler;
 //# sourceMappingURL=../maps/commandHandling/passwordCommandHandler.js.map
diff --git a/lib/commandHandling/webCommandHandler.js b/lib/commandHandling/webCommandHandler.js
index b9ac09a..0dfd979 100644
--- a/lib/commandHandling/webCommandHandler.js
+++ b/lib/commandHandling/webCommandHandler.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _uuidValidate=_interopRequireDefault(require("uuid-validate")),_nodeCqrsLib=require("@facetdev/node-cqrs-lib");function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function asyncGeneratorStep(e,r,n,t,a,o,i){try{var s=e[o](i),u=s.value}catch(e){return void n(e)}s.done?r(u):Promise.resolve(u).then(t,a)}function _asyncToGenerator(s){return function(){var e=this,i=arguments;return new Promise(function(r,n){var t=s.apply(e,i);function a(e){asyncGeneratorStep(t,r,n,a,o,"next",e)}function o(e){asyncGeneratorStep(t,r,n,a,o,"throw",e)}a(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperties(e,r){for(var n=0;n<r.length;n++){var t=r[n];t.enumerable=t.enumerable||!1,t.configurable=!0,"value"in t&&(t.writable=!0),Object.defineProperty(e,t.key,t)}}function _createClass(e,r,n){return r&&_defineProperties(e.prototype,r),n&&_defineProperties(e,n),e}function _defineProperty(e,r,n){return r in e?Object.defineProperty(e,r,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[r]=n,e}var WebCommandHandler=function(){function r(e){var a=this;_classCallCheck(this,r),_defineProperty(this,"handleCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var n,t;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:if((n=r.request.body).$position=r.$position,n.$identity=r.$identity,n.$timestamp=new Date,(t=r.params.aggregateId)&&!(0,_uuidValidate.default)(t))return r.status=404,r.body={error:"".concat(t," is not a valid UUID")},e.abrupt("return");e.next=9;break;case 9:return e.prev=9,e.next=12,a.domainCommandDeliverer.deliver({service:r.params.service,target:t,commandType:r.params.commandType,command:n});case 12:return r.body=e.sent,r.status=200,e.abrupt("return");case 17:e.prev=17,e.t0=e.catch(9),a.handleError(r,e.t0);case 20:case"end":return e.stop()}},e,this,[[9,17]])}));return function(e){return r.apply(this,arguments)}}()),this.domainCommandDeliverer=e}return _createClass(r,[{key:"handleError",value:function(e,r){r instanceof _nodeCqrsLib.ValidationError?(console.log("Validation failure"),e.status=400):r instanceof _nodeCqrsLib.AuthorizationError?(console.log("Authorization failure"),e.status=403):(r instanceof _nodeCqrsLib.CommandHandlerError?console.log("Error handling command"):console.log("Unexpected exception"),e.status=500),e.body={error:null==r?void 0:r.message},console.log(r)}}]),r}();exports.default=WebCommandHandler;
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _uuidValidate=_interopRequireDefault(require("uuid-validate")),_nodeCqrsLib=require("@facetdev/node-cqrs-lib");function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function asyncGeneratorStep(e,r,n,t,a,o,i){try{var s=e[o](i),u=s.value}catch(e){return void n(e)}s.done?r(u):Promise.resolve(u).then(t,a)}function _asyncToGenerator(s){return function(){var e=this,i=arguments;return new Promise(function(r,n){var t=s.apply(e,i);function a(e){asyncGeneratorStep(t,r,n,a,o,"next",e)}function o(e){asyncGeneratorStep(t,r,n,a,o,"throw",e)}a(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperties(e,r){for(var n=0;n<r.length;n++){var t=r[n];t.enumerable=t.enumerable||!1,t.configurable=!0,"value"in t&&(t.writable=!0),Object.defineProperty(e,t.key,t)}}function _createClass(e,r,n){return r&&_defineProperties(e.prototype,r),n&&_defineProperties(e,n),e}function _defineProperty(e,r,n){return r in e?Object.defineProperty(e,r,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[r]=n,e}var WebCommandHandler=function(){function r(e){var a=this;_classCallCheck(this,r),_defineProperty(this,"handleCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var n,t;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:if((n=r.request.body).$position=r.$position,n.$identity=r.$identity,n.$timestamp=new Date,(t=r.params.aggregateId)&&!(0,_uuidValidate.default)(t))return r.status=404,r.body={error:"".concat(t," is not a valid UUID")},e.abrupt("return");e.next=9;break;case 9:return e.prev=9,e.next=12,a.domainCommandDeliverer.deliver({service:r.params.service,target:t,commandType:r.params.commandType,command:n});case 12:return r.body=e.sent,r.status=200,e.abrupt("return");case 17:e.prev=17,e.t0=e.catch(9),a.handleError(r,e.t0);case 20:case"end":return e.stop()}},e,null,[[9,17]])}));return function(e){return r.apply(this,arguments)}}()),this.domainCommandDeliverer=e}return _createClass(r,[{key:"handleError",value:function(e,r){r instanceof _nodeCqrsLib.ValidationError?(console.log("Validation failure"),e.status=400):r instanceof _nodeCqrsLib.AuthorizationError?(console.log("Authorization failure"),e.status=403):(r instanceof _nodeCqrsLib.CommandHandlerError?console.log("Error handling command"):console.log("Unexpected exception"),e.status=500),e.body={error:null==r?void 0:r.message},console.log(r)}}]),r}();exports.default=WebCommandHandler;
 //# sourceMappingURL=../maps/commandHandling/webCommandHandler.js.map
diff --git a/lib/eventing/eventStore.js b/lib/eventing/eventStore.js
index 945dba6..62012fd 100644
--- a/lib/eventing/eventStore.js
+++ b/lib/eventing/eventStore.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _eachSeries=_interopRequireDefault(require("async/eachSeries")),_bookshelf=_interopRequireDefault(require("bookshelf"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function _objectWithoutProperties(e,t){if(null==e)return{};var r,n,o=_objectWithoutPropertiesLoose(e,t);if(Object.getOwnPropertySymbols){var a=Object.getOwnPropertySymbols(e);for(n=0;n<a.length;n++)r=a[n],0<=t.indexOf(r)||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}function _objectWithoutPropertiesLoose(e,t){if(null==e)return{};var r,n,o={},a=Object.keys(e);for(n=0;n<a.length;n++)r=a[n],0<=t.indexOf(r)||(o[r]=e[r]);return o}function asyncGeneratorStep(e,t,r,n,o,a,s){try{var i=e[a](s),u=i.value}catch(e){return void r(e)}i.done?t(u):Promise.resolve(u).then(n,o)}function _asyncToGenerator(i){return function(){var e=this,s=arguments;return new Promise(function(t,r){var n=i.apply(e,s);function o(e){asyncGeneratorStep(n,t,r,o,a,"next",e)}function a(e){asyncGeneratorStep(n,t,r,o,a,"throw",e)}o(void 0)})}}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}var EventStore=function e(t){var i=this,r=t.mapper,n=t.db;_classCallCheck(this,e),_defineProperty(this,"getEvents",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r,n,o,a,s;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return r=t.aggregateType,n=t.aggregateId,e.prev=1,e.next=4,i.Snapshot.where({aggregate:r,aggregateId:n}).orderBy("version","desc").fetch();case 4:if(e.t1=o=e.sent,e.t0=null===e.t1,e.t0){e.next=8;break}e.t0=void 0===o;case 8:if(!e.t0){e.next=12;break}e.t2=void 0,e.next=13;break;case 12:e.t2=o.toJSON();case 13:return a=e.t2,s=i.Event.where({aggregate:r,aggregateId:n}),a&&(s=s.where("sequenceNumber",">",a.version)),e.next=18,s.orderBy("sequenceNumber","asc").query();case 18:return e.t3=function(e){return i.mapper.fromStoredEvent(e)},e.t4=e.sent.map(e.t3),e.t5=a&&{version:a.version,body:JSON.parse(a.body)},e.abrupt("return",{events:e.t4,snapshot:e.t5});case 24:throw e.prev=24,e.t6=e.catch(1),console.log("Error loading events: Aggregate ".concat(r," ").concat(n),e.t6),e.t6;case 28:case"end":return e.stop()}},e,this,[[1,24]])}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"record",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.next=2,(0,_eachSeries.default)(t,function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(t,r){return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.next=2,i.recordEvent(t);case 2:r();case 3:case"end":return e.stop()}},e,this)}));return function(e,t){return r.apply(this,arguments)}}());case 2:return e.abrupt("return",e.sent);case 3:case"end":return e.stop()}},e,this)}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"recordEvent",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return r=i.mapper.toStoredEvent(t),e.prev=1,e.t0=i.mapper,e.next=5,new i.Event(r).save();case 5:return e.t1=e.sent.toJSON(),e.abrupt("return",e.t0.fromStoredEvent.call(e.t0,e.t1));case 9:throw e.prev=9,e.t2=e.catch(1),console.log("Failed to save event",e.t2),e.t2;case 13:case"end":return e.stop()}},e,this,[[1,9]])}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"count",function(){return i.Event.count()}),_defineProperty(this,"saveSnapshot",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(t,r){var n,o,a;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return n=r.id,o=r.version,a=_objectWithoutProperties(r,["id","version"]),e.next=3,new i.Snapshot({aggregate:t,aggregateId:n,version:o,body:JSON.stringify(a)}).save();case 3:case"end":return e.stop()}},e,this)}));return function(e,t){return r.apply(this,arguments)}}()),this.mapper=r,this.Event=(0,_bookshelf.default)(n.knex("eventstore")).Model.extend({tableName:"events"}),this.Snapshot=(0,_bookshelf.default)(n.knex("eventstore")).Model.extend({tableName:"snapshots"})};exports.default=EventStore;
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _eachSeries=_interopRequireDefault(require("async/eachSeries")),_bookshelf=_interopRequireDefault(require("bookshelf"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function _objectWithoutProperties(e,t){if(null==e)return{};var r,n,o=_objectWithoutPropertiesLoose(e,t);if(Object.getOwnPropertySymbols){var a=Object.getOwnPropertySymbols(e);for(n=0;n<a.length;n++)r=a[n],0<=t.indexOf(r)||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}function _objectWithoutPropertiesLoose(e,t){if(null==e)return{};var r,n,o={},a=Object.keys(e);for(n=0;n<a.length;n++)r=a[n],0<=t.indexOf(r)||(o[r]=e[r]);return o}function asyncGeneratorStep(e,t,r,n,o,a,s){try{var u=e[a](s),i=u.value}catch(e){return void r(e)}u.done?t(i):Promise.resolve(i).then(n,o)}function _asyncToGenerator(u){return function(){var e=this,s=arguments;return new Promise(function(t,r){var n=u.apply(e,s);function o(e){asyncGeneratorStep(n,t,r,o,a,"next",e)}function a(e){asyncGeneratorStep(n,t,r,o,a,"throw",e)}o(void 0)})}}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}var EventStore=function e(t){var u=this,r=t.mapper,n=t.db;_classCallCheck(this,e),_defineProperty(this,"getEvents",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r,n,o,a,s;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return r=t.aggregateType,n=t.aggregateId,e.prev=1,e.next=4,u.Snapshot.where({aggregate:r,aggregateId:n}).orderBy("version","desc").fetch();case 4:if(e.t1=o=e.sent,e.t0=null===e.t1,e.t0){e.next=8;break}e.t0=void 0===o;case 8:if(!e.t0){e.next=12;break}e.t2=void 0,e.next=13;break;case 12:e.t2=o.toJSON();case 13:return a=e.t2,s=u.Event.where({aggregate:r,aggregateId:n}),a&&(s=s.where("sequenceNumber",">",a.version)),e.next=18,s.orderBy("sequenceNumber","asc").query();case 18:return e.t3=function(e){return u.mapper.fromStoredEvent(e)},e.t4=e.sent.map(e.t3),e.t5=a&&{version:a.version,body:JSON.parse(a.body)},e.abrupt("return",{events:e.t4,snapshot:e.t5});case 24:throw e.prev=24,e.t6=e.catch(1),console.log("Error loading events: Aggregate ".concat(r," ").concat(n),e.t6),e.t6;case 28:case"end":return e.stop()}},e,null,[[1,24]])}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"record",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.next=2,(0,_eachSeries.default)(t,function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(t,r){return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.next=2,u.recordEvent(t);case 2:r();case 3:case"end":return e.stop()}},e)}));return function(e,t){return r.apply(this,arguments)}}());case 2:return e.abrupt("return",e.sent);case 3:case"end":return e.stop()}},e)}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"recordEvent",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return r=u.mapper.toStoredEvent(t),e.prev=1,e.t0=u.mapper,e.next=5,new u.Event(r).save();case 5:return e.t1=e.sent.toJSON(),e.abrupt("return",e.t0.fromStoredEvent.call(e.t0,e.t1));case 9:throw e.prev=9,e.t2=e.catch(1),console.log("Failed to save event",e.t2),e.t2;case 13:case"end":return e.stop()}},e,null,[[1,9]])}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"count",function(){return u.Event.count()}),_defineProperty(this,"saveSnapshot",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(t,r){var n,o,a;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return n=r.id,o=r.version,a=_objectWithoutProperties(r,["id","version"]),e.next=3,new u.Snapshot({aggregate:t,aggregateId:n,version:o,body:JSON.stringify(a)}).save();case 3:case"end":return e.stop()}},e)}));return function(e,t){return r.apply(this,arguments)}}()),this.mapper=r,this.Event=(0,_bookshelf.default)(n.knex("eventstore")).Model.extend({tableName:"events"}),this.Snapshot=(0,_bookshelf.default)(n.knex("eventstore")).Model.extend({tableName:"snapshots"})};exports.default=EventStore;
 //# sourceMappingURL=../maps/eventing/eventStore.js.map
diff --git a/lib/eventing/eventStoreInitializer.js b/lib/eventing/eventStoreInitializer.js
index 454132b..3d76ca9 100644
--- a/lib/eventing/eventStoreInitializer.js
+++ b/lib/eventing/eventStoreInitializer.js
@@ -1,2 +1,2 @@
-"use strict";function asyncGeneratorStep(e,t,n,r,a,o,s){try{var i=e[o](s),l=i.value}catch(e){return void n(e)}i.done?t(l):Promise.resolve(l).then(r,a)}function _asyncToGenerator(i){return function(){var e=this,s=arguments;return new Promise(function(t,n){var r=i.apply(e,s);function a(e){asyncGeneratorStep(r,t,n,a,o,"next",e)}function o(e){asyncGeneratorStep(r,t,n,a,o,"throw",e)}a(void 0)})}}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,t,n){return t in e?Object.defineProperty(e,t,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[t]=n,e}Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var EventStoreInitializer=function e(){_classCallCheck(this,e)};_defineProperty(exports.default=EventStoreInitializer,"assureEventsTable",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var n;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.next=2,t.knex().raw("CREATE DATABASE IF NOT EXISTS `eventstore`");case 2:return n=t.knex("eventstore"),e.next=5,n.schema.hasTable("events");case 5:if(e.sent){e.next=8;break}return e.next=8,n.schema.createTable("events",function(e){e.bigIncrements("id").primary().notNullable(),e.string("aggregate",255).notNullable(),e.string("aggregateId",36).notNullable(),e.string("type",255).notNullable(),e.integer("sequenceNumber").notNullable(),e.dateTime("timestamp").defaultTo(n.raw("now()")),e.string("actor",255).notNullable(),e.text("position"),e.text("body").notNullable(),e.unique(["aggregateId","aggregate","sequenceNumber"])});case 8:return e.next=10,n.schema.hasTable("snapshots");case 10:if(e.sent){e.next=13;break}return e.next=13,n.schema.createTable("snapshots",function(e){e.bigIncrements("id").primary().notNullable(),e.string("aggregate",255).notNullable(),e.string("aggregateId",36).notNullable(),e.integer("version").notNullable(),e.dateTime("timestamp").defaultTo(n.raw("now()")),e.text("body","longtext").notNullable(),e.unique(["aggregateId","aggregate","version"])});case 13:case"end":return e.stop()}},e,this)}));return function(e){return t.apply(this,arguments)}}());
+"use strict";function asyncGeneratorStep(e,t,n,r,a,o,s){try{var i=e[o](s),l=i.value}catch(e){return void n(e)}i.done?t(l):Promise.resolve(l).then(r,a)}function _asyncToGenerator(i){return function(){var e=this,s=arguments;return new Promise(function(t,n){var r=i.apply(e,s);function a(e){asyncGeneratorStep(r,t,n,a,o,"next",e)}function o(e){asyncGeneratorStep(r,t,n,a,o,"throw",e)}a(void 0)})}}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,t,n){return t in e?Object.defineProperty(e,t,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[t]=n,e}Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var EventStoreInitializer=function e(){_classCallCheck(this,e)};_defineProperty(exports.default=EventStoreInitializer,"assureEventsTable",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var n;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.next=2,t.knex().raw("CREATE DATABASE IF NOT EXISTS `eventstore`");case 2:return n=t.knex("eventstore"),e.next=5,n.schema.hasTable("events");case 5:if(e.sent){e.next=8;break}return e.next=8,n.schema.createTable("events",function(e){e.bigIncrements("id").primary().notNullable(),e.string("aggregate",255).notNullable(),e.string("aggregateId",36).notNullable(),e.string("type",255).notNullable(),e.integer("sequenceNumber").notNullable(),e.dateTime("timestamp").defaultTo(n.raw("now()")),e.string("actor",255).notNullable(),e.text("position"),e.text("body").notNullable(),e.unique(["aggregateId","aggregate","sequenceNumber"])});case 8:return e.next=10,n.schema.hasTable("snapshots");case 10:if(e.sent){e.next=13;break}return e.next=13,n.schema.createTable("snapshots",function(e){e.bigIncrements("id").primary().notNullable(),e.string("aggregate",255).notNullable(),e.string("aggregateId",36).notNullable(),e.integer("version").notNullable(),e.dateTime("timestamp").defaultTo(n.raw("now()")),e.text("body","longtext").notNullable(),e.unique(["aggregateId","aggregate","version"])});case 13:case"end":return e.stop()}},e)}));return function(e){return t.apply(this,arguments)}}());
 //# sourceMappingURL=../maps/eventing/eventStoreInitializer.js.map
diff --git a/lib/initialize.js b/lib/initialize.js
index 5bd1cf0..59585e1 100644
--- a/lib/initialize.js
+++ b/lib/initialize.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _awsSdk=_interopRequireDefault(require("aws-sdk")),_koaPassport=_interopRequireDefault(require("koa-passport")),_amqplib=_interopRequireDefault(require("amqplib")),_authenticationRouter=_interopRequireDefault(require("./routing/authenticationRouter")),_commandRouter=_interopRequireDefault(require("./routing/commandRouter")),_injectEventRouter=_interopRequireDefault(require("./routing/injectEventRouter")),_identityMiddleware=_interopRequireDefault(require("./routing/identityMiddleware")),_commandExecutor=_interopRequireDefault(require("./commandHandling/commandExecutor")),_webCommandHandler=_interopRequireDefault(require("./commandHandling/webCommandHandler")),_passwordCommandHandler=_interopRequireDefault(require("./commandHandling/passwordCommandHandler")),_domainCommandDeliverer=_interopRequireDefault(require("./commandHandling/domainCommandDeliverer")),_eventing=require("./eventing"),_services=require("./services"),_authTokenMapper=_interopRequireDefault(require("./auth/authTokenMapper")),_authStore=_interopRequireDefault(require("./auth/authStore")),_nodeCqrsLib=require("@facetdev/node-cqrs-lib"),_domainServices=_interopRequireDefault(require("./scheduling/domainServices"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function _objectSpread(r){for(var e=1;e<arguments.length;e++){var t=null!=arguments[e]?arguments[e]:{},n=Object.keys(t);"function"==typeof Object.getOwnPropertySymbols&&(n=n.concat(Object.getOwnPropertySymbols(t).filter(function(e){return Object.getOwnPropertyDescriptor(t,e).enumerable}))),n.forEach(function(e){_defineProperty(r,e,t[e])})}return r}function _slicedToArray(e,r){return _arrayWithHoles(e)||_iterableToArrayLimit(e,r)||_nonIterableRest()}function _nonIterableRest(){throw new TypeError("Invalid attempt to destructure non-iterable instance")}function _iterableToArrayLimit(e,r){var t=[],n=!0,a=!1,i=void 0;try{for(var o,u=e[Symbol.iterator]();!(n=(o=u.next()).done)&&(t.push(o.value),!r||t.length!==r);n=!0);}catch(e){a=!0,i=e}finally{try{n||null==u.return||u.return()}finally{if(a)throw i}}return t}function _arrayWithHoles(e){if(Array.isArray(e))return e}function asyncGeneratorStep(e,r,t,n,a,i,o){try{var u=e[i](o),s=u.value}catch(e){return void t(e)}u.done?r(s):Promise.resolve(s).then(n,a)}function _asyncToGenerator(u){return function(){var e=this,o=arguments;return new Promise(function(r,t){var n=u.apply(e,o);function a(e){asyncGeneratorStep(n,r,t,a,i,"next",e)}function i(e){asyncGeneratorStep(n,r,t,a,i,"throw",e)}a(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,t){return r in e?Object.defineProperty(e,r,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[r]=t,e}var Services=function e(){_classCallCheck(this,e)};_defineProperty(exports.default=Services,"initialize",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var a,i,t,n,o,u,s,c,d,l,p,f,m,_,v,y,b,w,h,g,S,q,R,x,k,C,A,D,E,T,j,P,O,H,I,M,L,N;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return j=function(t){return new Promise(function(r){!function e(){_amqplib.default.connect(t).then(function(e){console.log("Connected to rabbit"),r(e)}).catch(function(){setTimeout(e,500)})}()})},f=function(e){return Object.entries(e).map(function(e){var r=_slicedToArray(e,2),t=r[0],n=r[1];return{name:t,handler:function(){return a.resolve(n)}}}).reduce(function(e,r){return e[r.name]=r.handler,e},{})},a=r.container,i=r.config,t=r.db,n=r.bootstrap,o=r.domain,u=r.emailTemplates,s=r.emailSender,c=r.decorateUser,d=void 0===c?function(e){return e}:c,l=r.identityMapper,p=void 0===l?function(e){return new _nodeCqrsLib.Identity(e)}:l,e.next=5,_eventing.EventStoreInitializer.assureEventsTable(t);case 5:if(m=new _eventing.EventStore({db:t,mapper:new _eventing.EventMapper(Object.entries(o).reduce(function(e,r){var t=_slicedToArray(r,2),n=t[0],a=t[1];return e[n]=a.events,e},{}))}),e.t0=null==n?void 0:n.events,e.t0)return e.next=10,m.count();e.next=12;break;case 10:e.t1=e.sent,e.t0=0===e.t1;case 12:if(e.t0)return console.log("bootstrapping events"),_=n.events().reduce(function(e,r){return e.sequence[r.aggregateId]=(e.sequence[r.aggregateId]||0)+1,e.events.push(_objectSpread({},r,{actor:"bootstrap",sequenceNumber:e.sequence[r.aggregateId]})),e},{sequence:{},events:[]}).events,e.next=17,m.record(_.map(function(e){return _objectSpread({},e,{actor:"bootstrap"})}));e.next=17;break;case 17:return v=Object.entries(o).reduce(function(e,r){var t=_slicedToArray(r,2),n=t[0],a=t[1];return e[n]=new _nodeCqrsLib.Repository({eventStore:m,aggregateType:n,constructor:a.aggregate,snapshots:i("eventStore").snapshots}),e},{}),y=Object.entries(o).map(function(e){var r=_slicedToArray(e,2),t=r[0],n=r[1];return new _commandExecutor.default({name:t,handlers:f(n.handlers),repository:v[t]})}),e.next=21,_authStore.default.create({db:t,identityMapper:p});case 21:if(b=e.sent,e.t2=null==n?void 0:n.users,e.t2)return e.next=26,b.count();e.next=28;break;case 26:e.t3=e.sent,e.t2=0===e.t3;case 28:if(!e.t2){e.next=56;break}console.log("bootstrapping users"),h=!(w=!0),g=void 0,e.prev=33,S=n.users()[Symbol.iterator]();case 35:if(w=(q=S.next()).done){e.next=42;break}return R=q.value,e.next=39,b.addUser(R);case 39:w=!0,e.next=35;break;case 42:e.next=48;break;case 44:e.prev=44,e.t4=e.catch(33),h=!0,g=e.t4;case 48:e.prev=48,e.prev=49,w||null==S.return||S.return();case 51:if(e.prev=51,h)throw g;e.next=54;break;case 54:return e.finish(51);case 55:return e.finish(48);case 56:return x=new _authTokenMapper.default({authStore:b,secret:i.decrypt(i("authentication").secret),expiration:i("authentication").expiration,identityMapper:p}),a.register("systemIdentity",function(){return x.sign(_nodeCqrsLib.Identity.system)}),_awsSdk.default.config.update({region:i("aws").SNS_SES_region,accessKeyId:i("aws").AccessKey&&i.decrypt(i("aws").AccessKey),secretAccessKey:i("aws").SecretAccessKey&&i.decrypt(i("aws").SecretAccessKey)}),k=new _services.AwsSNS({applicationArns:{ios:i("aws").IOS_APP_ARN,android:i("aws").ANDROID_APP_ARN}}),a.register("PushNotifications",function(){return k}),C={sendEmail:function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:t=r.recipient,n=r.subject,a=r.body,console.log("Simulating Sending Email\n  ---------------------\n  ".concat(n,"\n  To: ").concat(t,"\n  ---------------------\n  ").concat(a.text));case 2:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()},A=new _services.Emailer({sender:s||((i("aws").Test||[]).includes("email")?C:new _services.AwsEmailSender({awsSes:new _awsSdk.default.SES,from:i("aws").SES_Source})),templateLibrary:u}),a.register("Emailer",function(){return A}),D=new _services.SecretCodes,a.register("SecretCodes",function(){return D}),a.register("AuthStore",function(){return b}),E=new _domainCommandDeliverer.default(y),T=new _nodeCqrsLib.RealWorldClock,e.next=71,j(i("scheduledCommands").store);case 71:return e.next=73,e.sent.createChannel();case 73:return P=e.sent,O=new _nodeCqrsLib.RabbitScheduler({channel:P,clock:T,deliverer:E}),H=new _domainServices.default({commandScheduler:O,repositories:v,clock:T}),a.register("DomainServices",function(){return H}),I=new _commandRouter.default({webHandler:new _webCommandHandler.default(E)}),M=new _passwordCommandHandler.default(E,b),L=new _authenticationRouter.default({passport:_koaPassport.default,authStore:b,decorateUser:d,authTokenMapper:x,passwordHandler:M}),N=new _injectEventRouter.default({repositories:v,eventStore:m}),e.abrupt("return",{routers:{command:I,auth:L,injectEvent:N},middleware:{identity:new _identityMiddleware.default(x).inject},authStore:b,repositories:v});case 82:case"end":return e.stop()}},e,this,[[33,44,48,56],[49,,51,55]])}));return function(e){return r.apply(this,arguments)}}());
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _awsSdk=_interopRequireDefault(require("aws-sdk")),_koaPassport=_interopRequireDefault(require("koa-passport")),_amqplib=_interopRequireDefault(require("amqplib")),_authenticationRouter=_interopRequireDefault(require("./routing/authenticationRouter")),_commandRouter=_interopRequireDefault(require("./routing/commandRouter")),_injectEventRouter=_interopRequireDefault(require("./routing/injectEventRouter")),_identityMiddleware=_interopRequireDefault(require("./routing/identityMiddleware")),_commandExecutor=_interopRequireDefault(require("./commandHandling/commandExecutor")),_webCommandHandler=_interopRequireDefault(require("./commandHandling/webCommandHandler")),_passwordCommandHandler=_interopRequireDefault(require("./commandHandling/passwordCommandHandler")),_domainCommandDeliverer=_interopRequireDefault(require("./commandHandling/domainCommandDeliverer")),_eventing=require("./eventing"),_services=require("./services"),_authTokenMapper=_interopRequireDefault(require("./auth/authTokenMapper")),_authStore=_interopRequireDefault(require("./auth/authStore")),_nodeCqrsLib=require("@facetdev/node-cqrs-lib"),_domainServices=_interopRequireDefault(require("./scheduling/domainServices"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function _objectSpread(r){for(var e=1;e<arguments.length;e++){var t=null!=arguments[e]?arguments[e]:{},n=Object.keys(t);"function"==typeof Object.getOwnPropertySymbols&&(n=n.concat(Object.getOwnPropertySymbols(t).filter(function(e){return Object.getOwnPropertyDescriptor(t,e).enumerable}))),n.forEach(function(e){_defineProperty(r,e,t[e])})}return r}function _slicedToArray(e,r){return _arrayWithHoles(e)||_iterableToArrayLimit(e,r)||_nonIterableRest()}function _nonIterableRest(){throw new TypeError("Invalid attempt to destructure non-iterable instance")}function _iterableToArrayLimit(e,r){var t=[],n=!0,a=!1,i=void 0;try{for(var o,u=e[Symbol.iterator]();!(n=(o=u.next()).done)&&(t.push(o.value),!r||t.length!==r);n=!0);}catch(e){a=!0,i=e}finally{try{n||null==u.return||u.return()}finally{if(a)throw i}}return t}function _arrayWithHoles(e){if(Array.isArray(e))return e}function asyncGeneratorStep(e,r,t,n,a,i,o){try{var u=e[i](o),s=u.value}catch(e){return void t(e)}u.done?r(s):Promise.resolve(s).then(n,a)}function _asyncToGenerator(u){return function(){var e=this,o=arguments;return new Promise(function(r,t){var n=u.apply(e,o);function a(e){asyncGeneratorStep(n,r,t,a,i,"next",e)}function i(e){asyncGeneratorStep(n,r,t,a,i,"throw",e)}a(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,t){return r in e?Object.defineProperty(e,r,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[r]=t,e}var Services=function e(){_classCallCheck(this,e)};_defineProperty(exports.default=Services,"initialize",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var a,i,t,n,o,u,s,c,d,l,p,f,m,_,v,y,b,w,h,g,S,q,R,x,k,C,A,D,E,T,j,P,O,H,I,M,L,N;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return j=function(t){return new Promise(function(r){!function e(){_amqplib.default.connect(t).then(function(e){console.log("Connected to rabbit"),r(e)}).catch(function(){setTimeout(e,500)})}()})},f=function(e){return Object.entries(e).map(function(e){var r=_slicedToArray(e,2),t=r[0],n=r[1];return{name:t,handler:function(){return a.resolve(n)}}}).reduce(function(e,r){return e[r.name]=r.handler,e},{})},a=r.container,i=r.config,t=r.db,n=r.bootstrap,o=r.domain,u=r.emailTemplates,s=r.emailSender,c=r.decorateUser,d=void 0===c?function(e){return e}:c,l=r.identityMapper,p=void 0===l?function(e){return new _nodeCqrsLib.Identity(e)}:l,e.next=5,_eventing.EventStoreInitializer.assureEventsTable(t);case 5:if(m=new _eventing.EventStore({db:t,mapper:new _eventing.EventMapper(Object.entries(o).reduce(function(e,r){var t=_slicedToArray(r,2),n=t[0],a=t[1];return e[n]=a.events,e},{}))}),e.t0=null==n?void 0:n.events,e.t0)return e.next=10,m.count();e.next=12;break;case 10:e.t1=e.sent,e.t0=0===e.t1;case 12:if(e.t0)return console.log("bootstrapping events"),_=n.events().reduce(function(e,r){return e.sequence[r.aggregateId]=(e.sequence[r.aggregateId]||0)+1,e.events.push(_objectSpread({},r,{actor:"bootstrap",sequenceNumber:e.sequence[r.aggregateId]})),e},{sequence:{},events:[]}).events,e.next=17,m.record(_.map(function(e){return _objectSpread({},e,{actor:"bootstrap"})}));e.next=17;break;case 17:return v=Object.entries(o).reduce(function(e,r){var t=_slicedToArray(r,2),n=t[0],a=t[1];return e[n]=new _nodeCqrsLib.Repository({eventStore:m,aggregateType:n,constructor:a.aggregate,snapshots:i("eventStore").snapshots}),e},{}),y=Object.entries(o).map(function(e){var r=_slicedToArray(e,2),t=r[0],n=r[1];return new _commandExecutor.default({name:t,handlers:f(n.handlers),repository:v[t]})}),e.next=21,_authStore.default.create({db:t,identityMapper:p});case 21:if(b=e.sent,e.t2=null==n?void 0:n.users,e.t2)return e.next=26,b.count();e.next=28;break;case 26:e.t3=e.sent,e.t2=0===e.t3;case 28:if(!e.t2){e.next=56;break}console.log("bootstrapping users"),h=!(w=!0),g=void 0,e.prev=33,S=n.users()[Symbol.iterator]();case 35:if(w=(q=S.next()).done){e.next=42;break}return R=q.value,e.next=39,b.addUser(R);case 39:w=!0,e.next=35;break;case 42:e.next=48;break;case 44:e.prev=44,e.t4=e.catch(33),h=!0,g=e.t4;case 48:e.prev=48,e.prev=49,w||null==S.return||S.return();case 51:if(e.prev=51,h)throw g;e.next=54;break;case 54:return e.finish(51);case 55:return e.finish(48);case 56:return x=new _authTokenMapper.default({authStore:b,secret:i.decrypt(i("authentication").secret),expiration:i("authentication").expiration,identityMapper:p}),a.register("systemIdentity",function(){return x.sign(_nodeCqrsLib.Identity.system)}),_awsSdk.default.config.update({region:i("aws").SNS_SES_region,accessKeyId:i("aws").AccessKey&&i.decrypt(i("aws").AccessKey),secretAccessKey:i("aws").SecretAccessKey&&i.decrypt(i("aws").SecretAccessKey)}),k=new _services.AwsSNS({applicationArns:{ios:i("aws").IOS_APP_ARN,android:i("aws").ANDROID_APP_ARN}}),a.register("PushNotifications",function(){return k}),C={sendEmail:function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:t=r.recipient,n=r.subject,a=r.body,console.log("Simulating Sending Email\n  ---------------------\n  ".concat(n,"\n  To: ").concat(t,"\n  ---------------------\n  ").concat(a.text));case 2:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()},A=new _services.Emailer({sender:s||((i("aws").Test||[]).includes("email")?C:new _services.AwsEmailSender({awsSes:new _awsSdk.default.SES,from:i("aws").SES_Source})),templateLibrary:u}),a.register("Emailer",function(){return A}),D=new _services.SecretCodes,a.register("SecretCodes",function(){return D}),a.register("AuthStore",function(){return b}),E=new _domainCommandDeliverer.default(y),T=new _nodeCqrsLib.RealWorldClock,e.next=71,j(i("scheduledCommands").store);case 71:return e.next=73,e.sent.createChannel();case 73:return P=e.sent,O=new _nodeCqrsLib.RabbitScheduler({channel:P,clock:T,deliverer:E}),H=new _domainServices.default({commandScheduler:O,repositories:v,clock:T}),a.register("DomainServices",function(){return H}),I=new _commandRouter.default({webHandler:new _webCommandHandler.default(E)}),M=new _passwordCommandHandler.default(E,b),L=new _authenticationRouter.default({passport:_koaPassport.default,authStore:b,decorateUser:d,authTokenMapper:x,passwordHandler:M}),N=new _injectEventRouter.default({repositories:v,eventStore:m}),e.abrupt("return",{routers:{command:I,auth:L,injectEvent:N},middleware:{identity:new _identityMiddleware.default(x).inject},authStore:b,repositories:v});case 82:case"end":return e.stop()}},e,null,[[33,44,48,56],[49,,51,55]])}));return function(e){return r.apply(this,arguments)}}());
 //# sourceMappingURL=maps/initialize.js.map
diff --git a/lib/routing/authenticationRouter.js b/lib/routing/authenticationRouter.js
index 5629728..8c5fc3e 100644
--- a/lib/routing/authenticationRouter.js
+++ b/lib/routing/authenticationRouter.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _koaRouter=_interopRequireDefault(require("koa-router")),_passportLocal=require("passport-local");function _interopRequireDefault(t){return t&&t.__esModule?t:{default:t}}function _typeof(t){return(_typeof="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function _objectSpread(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{},n=Object.keys(r);"function"==typeof Object.getOwnPropertySymbols&&(n=n.concat(Object.getOwnPropertySymbols(r).filter(function(t){return Object.getOwnPropertyDescriptor(r,t).enumerable}))),n.forEach(function(t){_defineProperty(e,t,r[t])})}return e}function asyncGeneratorStep(t,e,r,n,o,a,u){try{var i=t[a](u),s=i.value}catch(t){return void r(t)}i.done?e(s):Promise.resolve(s).then(n,o)}function _asyncToGenerator(i){return function(){var t=this,u=arguments;return new Promise(function(e,r){var n=i.apply(t,u);function o(t){asyncGeneratorStep(n,e,r,o,a,"next",t)}function a(t){asyncGeneratorStep(n,e,r,o,a,"throw",t)}o(void 0)})}}function _classCallCheck(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}function _possibleConstructorReturn(t,e){return!e||"object"!==_typeof(e)&&"function"!=typeof e?_assertThisInitialized(t):e}function _getPrototypeOf(t){return(_getPrototypeOf=Object.setPrototypeOf?Object.getPrototypeOf:function(t){return t.__proto__||Object.getPrototypeOf(t)})(t)}function _inherits(t,e){if("function"!=typeof e&&null!==e)throw new TypeError("Super expression must either be null or a function");t.prototype=Object.create(e&&e.prototype,{constructor:{value:t,writable:!0,configurable:!0}}),e&&_setPrototypeOf(t,e)}function _setPrototypeOf(t,e){return(_setPrototypeOf=Object.setPrototypeOf||function(t,e){return t.__proto__=e,t})(t,e)}function _assertThisInitialized(t){if(void 0===t)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return t}function _defineProperty(t,e,r){return e in t?Object.defineProperty(t,e,{value:r,enumerable:!0,configurable:!0,writable:!0}):t[e]=r,t}var AuthenticationRouter=function(t){function o(t){var a,n=t.passport,e=t.authStore,u=t.decorateUser,i=t.authTokenMapper,r=t.passwordHandler;return _classCallCheck(this,o),_defineProperty(_assertThisInitialized(_assertThisInitialized(a=_possibleConstructorReturn(this,_getPrototypeOf(o).call(this)))),"authenticate",function(){var n=_asyncToGenerator(regeneratorRuntime.mark(function t(e,r,n){var o;return regeneratorRuntime.wrap(function(t){for(;;)switch(t.prev=t.next){case 0:return t.next=2,a.authStore.checkLogin({username:e,password:r});case 2:o=t.sent,n(!o&&"User not found",o);case 4:case"end":return t.stop()}},t,this)}));return function(t,e,r){return n.apply(this,arguments)}}()),a.authStore=e,n.use(new _passportLocal.Strategy({session:!1,passReqToCallback:!1},a.authenticate)),a.post("/resetPassword",r.handleResetCommand).post("/changePassword",r.handleChangeCommand).post("/login",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function t(o,e){return regeneratorRuntime.wrap(function(t){for(;;)switch(t.prev=t.next){case 0:return t.abrupt("return",n.authenticate("local",function(){var n=_asyncToGenerator(regeneratorRuntime.mark(function t(e,r,n){return regeneratorRuntime.wrap(function(t){for(;;)switch(t.prev=t.next){case 0:if(e)return console.log("Authentication failure",e),o.status=401,o.body={error:"Invalid username or password"},t.abrupt("return");t.next=5;break;case 5:return t.t0=_objectSpread,t.t1={},t.t2=r,t.t3={token:i.sign(r)},t.next=11,u(r);case 11:t.t4=t.sent,o.body=(0,t.t0)(t.t1,t.t2,t.t3,t.t4),o.status=200;case 14:case"end":return t.stop()}},t,this)}));return function(t,e,r){return n.apply(this,arguments)}}())(o,e));case 1:case"end":return t.stop()}},t,this)}));return function(t,e){return r.apply(this,arguments)}}()),a}return _inherits(o,_koaRouter.default),o}();exports.default=AuthenticationRouter;
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _koaRouter=_interopRequireDefault(require("koa-router")),_passportLocal=require("passport-local");function _interopRequireDefault(t){return t&&t.__esModule?t:{default:t}}function _typeof(t){return(_typeof="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function _objectSpread(e){for(var t=1;t<arguments.length;t++){var r=null!=arguments[t]?arguments[t]:{},n=Object.keys(r);"function"==typeof Object.getOwnPropertySymbols&&(n=n.concat(Object.getOwnPropertySymbols(r).filter(function(t){return Object.getOwnPropertyDescriptor(r,t).enumerable}))),n.forEach(function(t){_defineProperty(e,t,r[t])})}return e}function asyncGeneratorStep(t,e,r,n,o,a,u){try{var i=t[a](u),s=i.value}catch(t){return void r(t)}i.done?e(s):Promise.resolve(s).then(n,o)}function _asyncToGenerator(i){return function(){var t=this,u=arguments;return new Promise(function(e,r){var n=i.apply(t,u);function o(t){asyncGeneratorStep(n,e,r,o,a,"next",t)}function a(t){asyncGeneratorStep(n,e,r,o,a,"throw",t)}o(void 0)})}}function _classCallCheck(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}function _possibleConstructorReturn(t,e){return!e||"object"!==_typeof(e)&&"function"!=typeof e?_assertThisInitialized(t):e}function _getPrototypeOf(t){return(_getPrototypeOf=Object.setPrototypeOf?Object.getPrototypeOf:function(t){return t.__proto__||Object.getPrototypeOf(t)})(t)}function _assertThisInitialized(t){if(void 0===t)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return t}function _inherits(t,e){if("function"!=typeof e&&null!==e)throw new TypeError("Super expression must either be null or a function");t.prototype=Object.create(e&&e.prototype,{constructor:{value:t,writable:!0,configurable:!0}}),e&&_setPrototypeOf(t,e)}function _setPrototypeOf(t,e){return(_setPrototypeOf=Object.setPrototypeOf||function(t,e){return t.__proto__=e,t})(t,e)}function _defineProperty(t,e,r){return e in t?Object.defineProperty(t,e,{value:r,enumerable:!0,configurable:!0,writable:!0}):t[e]=r,t}var AuthenticationRouter=function(t){function o(t){var a,n=t.passport,e=t.authStore,u=t.decorateUser,i=t.authTokenMapper,r=t.passwordHandler;return _classCallCheck(this,o),_defineProperty(_assertThisInitialized(a=_possibleConstructorReturn(this,_getPrototypeOf(o).call(this))),"authenticate",function(){var n=_asyncToGenerator(regeneratorRuntime.mark(function t(e,r,n){var o;return regeneratorRuntime.wrap(function(t){for(;;)switch(t.prev=t.next){case 0:return t.next=2,a.authStore.checkLogin({username:e,password:r});case 2:o=t.sent,n(!o&&"User not found",o);case 4:case"end":return t.stop()}},t)}));return function(t,e,r){return n.apply(this,arguments)}}()),a.authStore=e,n.use(new _passportLocal.Strategy({session:!1,passReqToCallback:!1},a.authenticate)),a.post("/resetPassword",r.handleResetCommand).post("/changePassword",r.handleChangeCommand).post("/login",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function t(o,e){return regeneratorRuntime.wrap(function(t){for(;;)switch(t.prev=t.next){case 0:return t.abrupt("return",n.authenticate("local",function(){var n=_asyncToGenerator(regeneratorRuntime.mark(function t(e,r,n){return regeneratorRuntime.wrap(function(t){for(;;)switch(t.prev=t.next){case 0:if(e)return console.log("Authentication failure",e),o.status=401,o.body={error:"Invalid username or password"},t.abrupt("return");t.next=5;break;case 5:return t.t0=_objectSpread,t.t1={},t.t2=r,t.t3={token:i.sign(r)},t.next=11,u(r);case 11:t.t4=t.sent,o.body=(0,t.t0)(t.t1,t.t2,t.t3,t.t4),o.status=200;case 14:case"end":return t.stop()}},t)}));return function(t,e,r){return n.apply(this,arguments)}}())(o,e));case 1:case"end":return t.stop()}},t)}));return function(t,e){return r.apply(this,arguments)}}()),a}return _inherits(o,_koaRouter.default),o}();exports.default=AuthenticationRouter;
 //# sourceMappingURL=../maps/routing/authenticationRouter.js.map
diff --git a/lib/routing/identityMiddleware.js b/lib/routing/identityMiddleware.js
index 3d3116f..18c98e2 100644
--- a/lib/routing/identityMiddleware.js
+++ b/lib/routing/identityMiddleware.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _nodeCqrsLib=require("@facetdev/node-cqrs-lib");function asyncGeneratorStep(e,t,n,r,a,i,o){try{var s=e[i](o),c=s.value}catch(e){return void n(e)}s.done?t(c):Promise.resolve(c).then(r,a)}function _asyncToGenerator(s){return function(){var e=this,o=arguments;return new Promise(function(t,n){var r=s.apply(e,o);function a(e){asyncGeneratorStep(r,t,n,a,i,"next",e)}function i(e){asyncGeneratorStep(r,t,n,a,i,"throw",e)}a(void 0)})}}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,t,n){return t in e?Object.defineProperty(e,t,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[t]=n,e}var IdentityMiddleware=function e(t){var o=this;_classCallCheck(this,e),_defineProperty(this,"inject",function(){var n=_asyncToGenerator(regeneratorRuntime.mark(function e(t,n){var r,a,i;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.prev=0,e.next=3,o.getIdentity(t);case 3:return r=e.sent,a=r.identity,i=r.token,t.$identity=a,t.set("authorization",i),e.next=10,n();case 10:e.next=17;break;case 12:e.prev=12,e.t0=e.catch(0),console.log("Failed validating authentication token",e.t0),t.status=401,t.body={error:e.t0.name||"Failed validating authentication token"};case 17:case"end":return e.stop()}},e,this,[[0,12]])}));return function(e,t){return n.apply(this,arguments)}}()),_defineProperty(this,"getIdentity",function(e){var t=e.headers.authorization&&e.headers.authorization.split(" ")||[],n=t[0],r=t[1];return(r=r||n)?o.authTokenMapper.verify(r):{identity:_nodeCqrsLib.Identity.anonymous}}),this.authTokenMapper=t};exports.default=IdentityMiddleware;
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _nodeCqrsLib=require("@facetdev/node-cqrs-lib");function asyncGeneratorStep(e,t,n,r,a,i,o){try{var s=e[i](o),c=s.value}catch(e){return void n(e)}s.done?t(c):Promise.resolve(c).then(r,a)}function _asyncToGenerator(s){return function(){var e=this,o=arguments;return new Promise(function(t,n){var r=s.apply(e,o);function a(e){asyncGeneratorStep(r,t,n,a,i,"next",e)}function i(e){asyncGeneratorStep(r,t,n,a,i,"throw",e)}a(void 0)})}}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,t,n){return t in e?Object.defineProperty(e,t,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[t]=n,e}var IdentityMiddleware=function e(t){var o=this;_classCallCheck(this,e),_defineProperty(this,"inject",function(){var n=_asyncToGenerator(regeneratorRuntime.mark(function e(t,n){var r,a,i;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.prev=0,e.next=3,o.getIdentity(t);case 3:return r=e.sent,a=r.identity,i=r.token,t.$identity=a,t.set("authorization",i),e.next=10,n();case 10:e.next=17;break;case 12:e.prev=12,e.t0=e.catch(0),console.log("Failed validating authentication token",e.t0),t.status=401,t.body={error:e.t0.name||"Failed validating authentication token"};case 17:case"end":return e.stop()}},e,null,[[0,12]])}));return function(e,t){return n.apply(this,arguments)}}()),_defineProperty(this,"getIdentity",function(e){var t=e.headers.authorization&&e.headers.authorization.split(" ")||[],n=t[0],r=t[1];return(r=r||n)?o.authTokenMapper.verify(r):{identity:_nodeCqrsLib.Identity.anonymous}}),this.authTokenMapper=t};exports.default=IdentityMiddleware;
 //# sourceMappingURL=../maps/routing/identityMiddleware.js.map
diff --git a/lib/routing/injectEventRouter.js b/lib/routing/injectEventRouter.js
index 1001f0a..13b2b1b 100644
--- a/lib/routing/injectEventRouter.js
+++ b/lib/routing/injectEventRouter.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _koaRouter=_interopRequireDefault(require("koa-router"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function _typeof(e){return(_typeof="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(e){return typeof e}:function(e){return e&&"function"==typeof Symbol&&e.constructor===Symbol&&e!==Symbol.prototype?"symbol":typeof e})(e)}function _objectSpread(t){for(var e=1;e<arguments.length;e++){var r=null!=arguments[e]?arguments[e]:{},n=Object.keys(r);"function"==typeof Object.getOwnPropertySymbols&&(n=n.concat(Object.getOwnPropertySymbols(r).filter(function(e){return Object.getOwnPropertyDescriptor(r,e).enumerable}))),n.forEach(function(e){_defineProperty(t,e,r[e])})}return t}function _defineProperty(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}function _objectWithoutProperties(e,t){if(null==e)return{};var r,n,o=_objectWithoutPropertiesLoose(e,t);if(Object.getOwnPropertySymbols){var u=Object.getOwnPropertySymbols(e);for(n=0;n<u.length;n++)r=u[n],0<=t.indexOf(r)||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}function _objectWithoutPropertiesLoose(e,t){if(null==e)return{};var r,n,o={},u=Object.keys(e);for(n=0;n<u.length;n++)r=u[n],0<=t.indexOf(r)||(o[r]=e[r]);return o}function asyncGeneratorStep(e,t,r,n,o,u,i){try{var a=e[u](i),c=a.value}catch(e){return void r(e)}a.done?t(c):Promise.resolve(c).then(n,o)}function _asyncToGenerator(a){return function(){var e=this,i=arguments;return new Promise(function(t,r){var n=a.apply(e,i);function o(e){asyncGeneratorStep(n,t,r,o,u,"next",e)}function u(e){asyncGeneratorStep(n,t,r,o,u,"throw",e)}o(void 0)})}}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _possibleConstructorReturn(e,t){return!t||"object"!==_typeof(t)&&"function"!=typeof t?_assertThisInitialized(e):t}function _assertThisInitialized(e){if(void 0===e)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return e}function _getPrototypeOf(e){return(_getPrototypeOf=Object.setPrototypeOf?Object.getPrototypeOf:function(e){return e.__proto__||Object.getPrototypeOf(e)})(e)}function _inherits(e,t){if("function"!=typeof t&&null!==t)throw new TypeError("Super expression must either be null or a function");e.prototype=Object.create(t&&t.prototype,{constructor:{value:e,writable:!0,configurable:!0}}),t&&_setPrototypeOf(e,t)}function _setPrototypeOf(e,t){return(_setPrototypeOf=Object.setPrototypeOf||function(e,t){return e.__proto__=t,e})(e,t)}var InjectEventRouter=function(e){function r(e){var t,s=e.repositories,f=e.eventStore;return _classCallCheck(this,r),(t=_possibleConstructorReturn(this,_getPrototypeOf(r).call(this))).post("/injectEvent",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r,n,o,u,i,a,c;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:if(r=t.request.body,n=r.aggregate,o=r.aggregateId,u=r.type,i=_objectWithoutProperties(r,["aggregate","aggregateId","type"]),t.$identity.rights.includes("injectEvent")){e.next=5;break}return t.status=401,e.abrupt("return",t.body={message:"User cannot call this endpoint"});case 5:return e.next=7,s[n].get(o);case 7:if(a=e.sent){e.next=11;break}return t.status=400,e.abrupt("return",t.body={message:"Aggregate target not found"});case 11:return c=_objectSpread({aggregate:n,aggregateId:o,type:u,actor:"injected",sequenceNumber:a.version+1},i),e.next=14,f.recordEvent(c);case 14:t.status=200,t.body={messager:"Saved"};case 16:case"end":return e.stop()}},e,this)}));return function(e){return t.apply(this,arguments)}}()),t}return _inherits(r,_koaRouter.default),r}();exports.default=InjectEventRouter;
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _koaRouter=_interopRequireDefault(require("koa-router"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function _typeof(e){return(_typeof="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(e){return typeof e}:function(e){return e&&"function"==typeof Symbol&&e.constructor===Symbol&&e!==Symbol.prototype?"symbol":typeof e})(e)}function _objectSpread(t){for(var e=1;e<arguments.length;e++){var r=null!=arguments[e]?arguments[e]:{},n=Object.keys(r);"function"==typeof Object.getOwnPropertySymbols&&(n=n.concat(Object.getOwnPropertySymbols(r).filter(function(e){return Object.getOwnPropertyDescriptor(r,e).enumerable}))),n.forEach(function(e){_defineProperty(t,e,r[e])})}return t}function _defineProperty(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}function _objectWithoutProperties(e,t){if(null==e)return{};var r,n,o=_objectWithoutPropertiesLoose(e,t);if(Object.getOwnPropertySymbols){var u=Object.getOwnPropertySymbols(e);for(n=0;n<u.length;n++)r=u[n],0<=t.indexOf(r)||Object.prototype.propertyIsEnumerable.call(e,r)&&(o[r]=e[r])}return o}function _objectWithoutPropertiesLoose(e,t){if(null==e)return{};var r,n,o={},u=Object.keys(e);for(n=0;n<u.length;n++)r=u[n],0<=t.indexOf(r)||(o[r]=e[r]);return o}function asyncGeneratorStep(e,t,r,n,o,u,i){try{var a=e[u](i),c=a.value}catch(e){return void r(e)}a.done?t(c):Promise.resolve(c).then(n,o)}function _asyncToGenerator(a){return function(){var e=this,i=arguments;return new Promise(function(t,r){var n=a.apply(e,i);function o(e){asyncGeneratorStep(n,t,r,o,u,"next",e)}function u(e){asyncGeneratorStep(n,t,r,o,u,"throw",e)}o(void 0)})}}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _possibleConstructorReturn(e,t){return!t||"object"!==_typeof(t)&&"function"!=typeof t?_assertThisInitialized(e):t}function _assertThisInitialized(e){if(void 0===e)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return e}function _getPrototypeOf(e){return(_getPrototypeOf=Object.setPrototypeOf?Object.getPrototypeOf:function(e){return e.__proto__||Object.getPrototypeOf(e)})(e)}function _inherits(e,t){if("function"!=typeof t&&null!==t)throw new TypeError("Super expression must either be null or a function");e.prototype=Object.create(t&&t.prototype,{constructor:{value:e,writable:!0,configurable:!0}}),t&&_setPrototypeOf(e,t)}function _setPrototypeOf(e,t){return(_setPrototypeOf=Object.setPrototypeOf||function(e,t){return e.__proto__=t,e})(e,t)}var InjectEventRouter=function(e){function r(e){var t,s=e.repositories,f=e.eventStore;return _classCallCheck(this,r),(t=_possibleConstructorReturn(this,_getPrototypeOf(r).call(this))).post("/injectEvent",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r,n,o,u,i,a,c;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:if(r=t.request.body,n=r.aggregate,o=r.aggregateId,u=r.type,i=_objectWithoutProperties(r,["aggregate","aggregateId","type"]),t.$identity.rights.includes("injectEvent")){e.next=5;break}return t.status=401,e.abrupt("return",t.body={message:"User cannot call this endpoint"});case 5:return e.next=7,s[n].get(o);case 7:if(a=e.sent){e.next=11;break}return t.status=400,e.abrupt("return",t.body={message:"Aggregate target not found"});case 11:return c=_objectSpread({aggregate:n,aggregateId:o,type:u,actor:"injected",sequenceNumber:a.version+1},i),e.next=14,f.recordEvent(c);case 14:t.status=200,t.body={messager:"Saved"};case 16:case"end":return e.stop()}},e)}));return function(e){return t.apply(this,arguments)}}()),t}return _inherits(r,_koaRouter.default),r}();exports.default=InjectEventRouter;
 //# sourceMappingURL=../maps/routing/injectEventRouter.js.map
diff --git a/lib/scheduling/domainServices.js b/lib/scheduling/domainServices.js
index e7ba507..885ec20 100644
--- a/lib/scheduling/domainServices.js
+++ b/lib/scheduling/domainServices.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _moment=_interopRequireDefault(require("moment")),_v=_interopRequireDefault(require("uuid/v4"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function asyncGeneratorStep(e,r,t,n,a,o,c){try{var i=e[o](c),u=i.value}catch(e){return void t(e)}i.done?r(u):Promise.resolve(u).then(n,a)}function _asyncToGenerator(i){return function(){var e=this,c=arguments;return new Promise(function(r,t){var n=i.apply(e,c);function a(e){asyncGeneratorStep(n,r,t,a,o,"next",e)}function o(e){asyncGeneratorStep(n,r,t,a,o,"throw",e)}a(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,t){return r in e?Object.defineProperty(e,r,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[r]=t,e}var DomainServices=function e(r){var u=this,t=r.commandScheduler,n=r.repositories,a=r.clock;_classCallCheck(this,e),_defineProperty(this,"get",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.service,n=r.id,e.abrupt("return",u.repositories[t].get(n));case 2:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"create",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,o;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.aggregate,n=r.target,a=r.command,o=n||(0,_v.default)(),e.next=4,u.executeCommand({service:t,target:o,command:a});case 4:return e.abrupt("return",o);case 5:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"scheduleCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,o,c,i;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.service,n=r.aggregate,a=r.target,o=r.command,c=r.due,i=r.seconds,e.next=3,u.commandScheduler.schedule({service:t||n,target:a,command:o,due:c||(0,_moment.default)(u.clock.now()).add(i||0,"seconds").toDate(),clock:u.clock});case 3:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"executeCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,o;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.service,n=r.aggregate,a=r.target,o=r.command,e.next=3,u.commandScheduler.execute({service:t||n,target:a,command:o});case 3:case"end":return e.stop()}},e,this)}));return function(e){return r.apply(this,arguments)}}()),this.commandScheduler=t,this.repositories=n,this.clock=a};exports.default=DomainServices;
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _moment=_interopRequireDefault(require("moment")),_v=_interopRequireDefault(require("uuid/v4"));function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function asyncGeneratorStep(e,r,t,n,a,o,c){try{var u=e[o](c),i=u.value}catch(e){return void t(e)}u.done?r(i):Promise.resolve(i).then(n,a)}function _asyncToGenerator(u){return function(){var e=this,c=arguments;return new Promise(function(r,t){var n=u.apply(e,c);function a(e){asyncGeneratorStep(n,r,t,a,o,"next",e)}function o(e){asyncGeneratorStep(n,r,t,a,o,"throw",e)}a(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,t){return r in e?Object.defineProperty(e,r,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[r]=t,e}var DomainServices=function e(r){var i=this,t=r.commandScheduler,n=r.repositories,a=r.clock;_classCallCheck(this,e),_defineProperty(this,"get",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.service,n=r.id,e.abrupt("return",i.repositories[t].get(n));case 2:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"create",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,o;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.aggregate,n=r.target,a=r.command,o=n||(0,_v.default)(),e.next=4,i.executeCommand({service:t,target:o,command:a});case 4:return e.abrupt("return",o);case 5:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"scheduleCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,o,c,u;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.service,n=r.aggregate,a=r.target,o=r.command,c=r.due,u=r.seconds,e.next=3,i.commandScheduler.schedule({service:t||n,target:a,command:o,due:c||(0,_moment.default)(i.clock.now()).add(u||0,"seconds").toDate(),clock:i.clock});case 3:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),_defineProperty(this,"executeCommand",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,o;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.service,n=r.aggregate,a=r.target,o=r.command,e.next=3,i.commandScheduler.execute({service:t||n,target:a,command:o});case 3:case"end":return e.stop()}},e)}));return function(e){return r.apply(this,arguments)}}()),this.commandScheduler=t,this.repositories=n,this.clock=a};exports.default=DomainServices;
 //# sourceMappingURL=../maps/scheduling/domainServices.js.map
diff --git a/lib/services/awsSNS.js b/lib/services/awsSNS.js
index 2b5aeca..7e20160 100644
--- a/lib/services/awsSNS.js
+++ b/lib/services/awsSNS.js
@@ -1,2 +1,2 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _awsSdk=_interopRequireDefault(require("aws-sdk")),_es6Promisify=require("es6-promisify");function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function asyncGeneratorStep(e,t,r,n,a,s,i){try{var o=e[s](i),c=o.value}catch(e){return void r(e)}o.done?t(c):Promise.resolve(c).then(n,a)}function _asyncToGenerator(o){return function(){var e=this,i=arguments;return new Promise(function(t,r){var n=o.apply(e,i);function a(e){asyncGeneratorStep(n,t,r,a,s,"next",e)}function s(e){asyncGeneratorStep(n,t,r,a,s,"throw",e)}a(void 0)})}}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}var AwsSNS=function e(t){var a=this;_classCallCheck(this,e),_defineProperty(this,"createPlatformEndpoint",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r,n;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.prev=0,console.log("token for os",t.os),r="ios"===t.os?a.applicationArns.ios:a.applicationArns.android,e.next=5,(0,_es6Promisify.promisify)(a.SNS.createPlatformEndpoint.bind(a.SNS))({PlatformApplicationArn:r,Token:t.token});case 5:return n=e.sent,e.abrupt("return",n.EndpointArn);case 9:return e.prev=9,e.t0=e.catch(0),console.log("SNS Create Platform Endpoint Error",e.t0),e.abrupt("return","");case 13:case"end":return e.stop()}},e,this,[[0,9]])}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"dispatchNotification",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:r={MessageStructure:"json",Message:JSON.stringify({default:"You have a dispatch request",GCM:JSON.stringify({data:{message:"You have a dispatch request",type:"dispatch"}}),APNS_SANDBOX:JSON.stringify(apnsDispatch),APNS:JSON.stringify(apnsDispatch)}),Subject:"Dispatch Request",TargetArn:t},a.sendNotification(r);case 2:case"end":return e.stop()}},e,this)}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"dispatchClosed",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:r={MessageStructure:"json",Message:JSON.stringify({default:"The dispatch was accepted by another or canceled",GCM:JSON.stringify({data:{message:"The dispatch was accepted by another or canceled",type:"dispatchClosed"}}),APNS_SANDBOX:JSON.stringify(apnsClosed),APNS:JSON.stringify(apnsClosed)}),Subject:"Dispatch Canceled",TargetArn:t},a.sendNotification(r);case 2:case"end":return e.stop()}},e,this)}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"sendNotification",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.prev=0,e.next=3,(0,_es6Promisify.promisify)(a.SNS.publish.bind(a.SNS))(t);case 3:e.next=8;break;case 5:e.prev=5,e.t0=e.catch(0),console.log("SES setup error",e.t0.message);case 8:case"end":return e.stop()}},e,this,[[0,5]])}));return function(e){return t.apply(this,arguments)}}()),this.SNS=new _awsSdk.default.SNS,this.applicationArns=t.applicationArns};exports.default=AwsSNS;var apnsDispatch={aps:{alert:"You have a dispatch request",badge:6,sound:"default"},payload:{type:"dispatch"}},apnsClosed={aps:{alert:"The dispatch was accepted by another or canceled",badge:6,sound:"default"},payload:{type:"dispatchClosed"}};
+"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var _awsSdk=_interopRequireDefault(require("aws-sdk")),_es6Promisify=require("es6-promisify");function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}function asyncGeneratorStep(e,t,r,n,a,s,i){try{var o=e[s](i),c=o.value}catch(e){return void r(e)}o.done?t(c):Promise.resolve(c).then(n,a)}function _asyncToGenerator(o){return function(){var e=this,i=arguments;return new Promise(function(t,r){var n=o.apply(e,i);function a(e){asyncGeneratorStep(n,t,r,a,s,"next",e)}function s(e){asyncGeneratorStep(n,t,r,a,s,"throw",e)}a(void 0)})}}function _classCallCheck(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,t,r){return t in e?Object.defineProperty(e,t,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[t]=r,e}var AwsSNS=function e(t){var a=this;_classCallCheck(this,e),_defineProperty(this,"createPlatformEndpoint",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r,n;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.prev=0,console.log("token for os",t.os),r="ios"===t.os?a.applicationArns.ios:a.applicationArns.android,e.next=5,(0,_es6Promisify.promisify)(a.SNS.createPlatformEndpoint.bind(a.SNS))({PlatformApplicationArn:r,Token:t.token});case 5:return n=e.sent,e.abrupt("return",n.EndpointArn);case 9:return e.prev=9,e.t0=e.catch(0),console.log("SNS Create Platform Endpoint Error",e.t0),e.abrupt("return","");case 13:case"end":return e.stop()}},e,null,[[0,9]])}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"dispatchNotification",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:r={MessageStructure:"json",Message:JSON.stringify({default:"You have a dispatch request",GCM:JSON.stringify({data:{message:"You have a dispatch request",type:"dispatch"}}),APNS_SANDBOX:JSON.stringify(apnsDispatch),APNS:JSON.stringify(apnsDispatch)}),Subject:"Dispatch Request",TargetArn:t},a.sendNotification(r);case 2:case"end":return e.stop()}},e)}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"dispatchClosed",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){var r;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:r={MessageStructure:"json",Message:JSON.stringify({default:"The dispatch was accepted by another or canceled",GCM:JSON.stringify({data:{message:"The dispatch was accepted by another or canceled",type:"dispatchClosed"}}),APNS_SANDBOX:JSON.stringify(apnsClosed),APNS:JSON.stringify(apnsClosed)}),Subject:"Dispatch Canceled",TargetArn:t},a.sendNotification(r);case 2:case"end":return e.stop()}},e)}));return function(e){return t.apply(this,arguments)}}()),_defineProperty(this,"sendNotification",function(){var t=_asyncToGenerator(regeneratorRuntime.mark(function e(t){return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return e.prev=0,e.next=3,(0,_es6Promisify.promisify)(a.SNS.publish.bind(a.SNS))(t);case 3:e.next=8;break;case 5:e.prev=5,e.t0=e.catch(0),console.log("SES setup error",e.t0.message);case 8:case"end":return e.stop()}},e,null,[[0,5]])}));return function(e){return t.apply(this,arguments)}}()),this.SNS=new _awsSdk.default.SNS,this.applicationArns=t.applicationArns};exports.default=AwsSNS;var apnsDispatch={aps:{alert:"You have a dispatch request",badge:6,sound:"default"},payload:{type:"dispatch"}},apnsClosed={aps:{alert:"The dispatch was accepted by another or canceled",badge:6,sound:"default"},payload:{type:"dispatchClosed"}};
 //# sourceMappingURL=../maps/services/awsSNS.js.map
diff --git a/lib/services/emailer.js b/lib/services/emailer.js
index af5c3db..9340ded 100644
--- a/lib/services/emailer.js
+++ b/lib/services/emailer.js
@@ -1,2 +1,2 @@
-"use strict";function asyncGeneratorStep(e,r,t,n,a,i,o){try{var s=e[i](o),c=s.value}catch(e){return void t(e)}s.done?r(c):Promise.resolve(c).then(n,a)}function _asyncToGenerator(s){return function(){var e=this,o=arguments;return new Promise(function(r,t){var n=s.apply(e,o);function a(e){asyncGeneratorStep(n,r,t,a,i,"next",e)}function i(e){asyncGeneratorStep(n,r,t,a,i,"throw",e)}a(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,t){return r in e?Object.defineProperty(e,r,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[r]=t,e}Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var Emailer=function e(r){var u=this,t=r.sender,n=r.templateLibrary;_classCallCheck(this,e),_defineProperty(this,"sendEmail",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,i,o,s,c;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.recipient,n=r.template,a=r.data,i=u.templateLibrary.getTemplate(n),e.next=4,i.transform(a);case 4:return o=e.sent,s=o.subject,c=o.body,e.prev=7,e.next=10,u.sender.sendEmail({recipient:t,subject:s,body:c});case 10:e.next=15;break;case 12:e.prev=12,e.t0=e.catch(7),console.log("Emailing error",e.t0);case 15:case"end":return e.stop()}},e,this,[[7,12]])}));return function(e){return r.apply(this,arguments)}}()),this.sender=t,this.templateLibrary=n};exports.default=Emailer;
+"use strict";function asyncGeneratorStep(e,r,t,n,a,o,i){try{var s=e[o](i),c=s.value}catch(e){return void t(e)}s.done?r(c):Promise.resolve(c).then(n,a)}function _asyncToGenerator(s){return function(){var e=this,i=arguments;return new Promise(function(r,t){var n=s.apply(e,i);function a(e){asyncGeneratorStep(n,r,t,a,o,"next",e)}function o(e){asyncGeneratorStep(n,r,t,a,o,"throw",e)}a(void 0)})}}function _classCallCheck(e,r){if(!(e instanceof r))throw new TypeError("Cannot call a class as a function")}function _defineProperty(e,r,t){return r in e?Object.defineProperty(e,r,{value:t,enumerable:!0,configurable:!0,writable:!0}):e[r]=t,e}Object.defineProperty(exports,"__esModule",{value:!0}),exports.default=void 0;var Emailer=function e(r){var u=this,t=r.sender,n=r.templateLibrary;_classCallCheck(this,e),_defineProperty(this,"sendEmail",function(){var r=_asyncToGenerator(regeneratorRuntime.mark(function e(r){var t,n,a,o,i,s,c;return regeneratorRuntime.wrap(function(e){for(;;)switch(e.prev=e.next){case 0:return t=r.recipient,n=r.template,a=r.data,o=u.templateLibrary.getTemplate(n),e.next=4,o.transform(a);case 4:return i=e.sent,s=i.subject,c=i.body,e.prev=7,e.next=10,u.sender.sendEmail({recipient:t,subject:s,body:c});case 10:e.next=15;break;case 12:e.prev=12,e.t0=e.catch(7),console.log("Emailing error",e.t0);case 15:case"end":return e.stop()}},e,null,[[7,12]])}));return function(e){return r.apply(this,arguments)}}()),this.sender=t,this.templateLibrary=n};exports.default=Emailer;
 //# sourceMappingURL=../maps/services/emailer.js.map
diff --git a/src/auth/authStore.js b/src/auth/authStore.js
index d174a6f..828ce99 100644
--- a/src/auth/authStore.js
+++ b/src/auth/authStore.js
@@ -18,22 +18,31 @@ export default class AuthStore {
     return store;
   }
 
-  addUser = async ({ userId, username, password, claims, updateClaims = claims => claims, status = 'active' }) => {
+  addUser = async ({ userId, username, password, claims, updateClaims = claims => claims }) => {
     try {
       let hashedPassword = await bcrypt.hash(password, saltRounds);
-      let user = (await this.Login.where({ username }).fetch({ columns: ['id', 'userId', 'username', 'claims'] }));
+      // Determine if user already exists for update or creation.
+      let user = await this.Login.where({ username }).fetch({ columns: ['id', 'userId', 'username', 'claims', 'status'] });
+      let status;
       if (!user) {
-        console.log('adding new user', username);
+        // No records, create new user
+        status = 'onboard';
         await new this.Login().save({ userId, username, password: hashedPassword, claims: JSON.stringify({ ...claims, ...updateClaims({}) }), version: uuidV4(), status });
       }
       else {
-        console.log('updating user', username);
+        // User exists, so set their status back to active from a suspension.
+        // Or, we are inviting user to a second organization.
+
+        // Get users current status to determine if coming off a suspension or being re-invited to new organization.
+        status = user.attributes.status;
         await user.save({
           userId,
           claims: JSON.stringify({ ...user.get('claims'), ...claims, ...updateClaims(user.get('claims') || {}) } || {}),
+          status: 'active',
           version: uuidV4()
         }, { patch: true });
       }
+      return { status };
     }
     catch (e) {
       console.log('Failed to add login', e);
@@ -58,7 +67,11 @@ export default class AuthStore {
   }
 
   removeUser = async ({ userId }) => {
-    let user = await this.Login.where({ userId }).fetch({ columns: ['id', 'userId', 'claims'] });
+    let user = await this.Login.where({ userId }).fetch({ columns: ['id', 'userId', 'claims', 'status'] });
+    // NOTE: If removing a user that hasn't yet accepted their invite, just remove from db all together as they will never be able to login because initial random password is lost.
+    if (user.attributes.status === 'onboard') {
+      return this.Login.where({ userId: user.attributes.userId }).destroy();
+    }
     await user.save({
       userId,
       status: 'suspended',
@@ -67,7 +80,11 @@ export default class AuthStore {
   }
 
   removeUserFromOrg = async ({ organizationId, userId }) => {
-    let user = await this.Login.where({ userId }).fetch({ columns: ['id', 'userId', 'claims'] });
+    let user = await this.Login.where({ userId }).fetch({ columns: ['id', 'userId', 'claims', 'status'] });
+    // NOTE: If removing a user that hasn't yet accepted their invite, just remove from db all together as they will never be able to login because initial random password is lost.
+    if (user.attributes.status === 'onboard') {
+      return this.Login.where({ userId: user.attributes.userId }).destroy();
+    }
     const organizations = {
       ...user.get('claims').organizations
     };