authing_ruby 1.0.6

data/lib/authing_ruby/test/js_sdk_test/node_modules/authing-js-sdk/build/module/lib/authentication/AuthenticationClient.js

@@ -0,0 +1,2795 @@
+var __assign = (this && this.__assign) || function () {
+    __assign = Object.assign || function(t) {
+        for (var s, i = 1, n = arguments.length; i < n; i++) {
+            s = arguments[i];
+            for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p))
+                t[p] = s[p];
+        }
+        return t;
+    };
+    return __assign.apply(this, arguments);
+};
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __generator = (this && this.__generator) || function (thisArg, body) {
+    var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g;
+    return g = { next: verb(0), "throw": verb(1), "return": verb(2) }, typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
+    function verb(n) { return function (v) { return step([n, v]); }; }
+    function step(op) {
+        if (f) throw new TypeError("Generator is already executing.");
+        while (_) try {
+            if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
+            if (y = 0, t) op = [op[0] & 2, t.value];
+            switch (op[0]) {
+                case 0: case 1: t = op; break;
+                case 4: _.label++; return { value: op[1], done: false };
+                case 5: _.label++; y = op[1]; op = [0]; continue;
+                case 7: op = _.ops.pop(); _.trys.pop(); continue;
+                default:
+                    if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
+                    if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
+                    if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
+                    if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
+                    if (t[2]) _.ops.pop();
+                    _.trys.pop(); continue;
+            }
+            op = body.call(thisArg, _);
+        } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
+        if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
+    }
+};
+import { AuthenticationTokenProvider } from './AuthenticationTokenProvider';
+import sha256 from 'crypto-js/sha256';
+import CryptoJS from 'crypto-js';
+import { bindEmail, bindPhone, checkLoginStatus, checkPasswordStrength, getUserRoles, listUserAuthorizedResources, loginByEmail, loginByPhoneCode, loginByPhonePassword, loginBySubAccount, loginByUsername, refreshToken, registerByEmail, registerByPhoneCode, registerByUsername, removeUdv, resetPassword, sendEmail, setUdv, setUdvBatch, udv, unbindEmail, unbindPhone, updateEmail, updatePassword, updatePhone, updateUser, user } from '../graphqlapi';
+import { GraphqlClient } from '../common/GraphqlClient';
+import { PasswordSecurityLevel } from './types';
+import { UdfTargetType } from '../../types/graphql.v2';
+import { QrCodeAuthenticationClient } from './QrCodeAuthenticationClient';
+import { MfaAuthenticationClient } from './MfaAuthenticationClient';
+import { HttpClient, NaiveHttpClient } from '../common/HttpClient';
+import { convertObjectToKeyValueList, convertUdv, convertUdvToKeyValuePair, encrypt, formatAuthorizedResources, generateRandomString, objectToQueryString, uploadFile } from '../utils';
+import jwtDecode from 'jwt-decode';
+import { SocialAuthenticationClient } from './SocialAuthenticationClient';
+import { PublicKeyManager } from '../common/PublicKeyManager';
+import { EnterpriseAuthenticationClient } from './EnterpriseAuthenticationClient';
+import { BaseAuthenticationClient } from './BaseAuthenticationClient';
+var DEFAULT_OPTIONS = {
+    appId: undefined,
+    appHost: undefined,
+    protocol: 'oidc',
+    tokenEndPointAuthMethod: 'client_secret_post',
+    introspectionEndPointAuthMethod: 'client_secret_post',
+    revocationEndPointAuthMethod: 'client_secret_post',
+    timeout: 10000,
+    onError: function (code, message, data) {
+        throw { code: code, message: message, data: data };
+    },
+    requestFrom: 'sdk',
+    encryptFunction: encrypt,
+    host: 'https://core.authing.cn'
+};
+/**
+ * @class AuthenticationClient 认证核心模块
+ * @description 此模块包含注册登录、重置手机号邮箱、修改账号信息等方法，是以你的终端用户（End User）的身份进行请求，适合在需要验证用户身份的情况下使用。
+ *
+ * @example
+ *
+ * 使用方法：
+ *
+ * \`\`\`javascript
+ * import { AuthenticationClient } from "authing-js-sdk"
+ * const authenticationClient = new AuthenticationClient({
+ *    appId: "YOUR_APP_ID",
+ * })
+ * authenticationClient.registerByEmail // 使用邮箱注册
+ * authenticationClient.loginByEmail // 使用邮箱登录
+ * \`\`\`
+ *
+ *
+ * @name AuthenticationClient
+ */
+var AuthenticationClient = /** @class */ (function () {
+    function AuthenticationClient(options) {
+        this.options = Object.assign({}, DEFAULT_OPTIONS, options);
+        this.baseClient = new BaseAuthenticationClient(this.options);
+        var graphqlEndpoint = this.baseClient.appHost + "/graphql/v2";
+        // 子模块初始化顺序: GraphqlClient -> ManagementTokenProvider -> Others
+        this.graphqlClient = new (this.options.graphqlClient || GraphqlClient)(graphqlEndpoint, this.options);
+        this.tokenProvider = new (this.options.tokenProvider ||
+            AuthenticationTokenProvider)(this.options);
+        this.httpClient = new (this.options.httpClient || HttpClient)(this.options, this.tokenProvider);
+        this.naiveHttpClient = new NaiveHttpClient(this.options, this.tokenProvider);
+        this.publicKeyManager = new PublicKeyManager(this.options, this.httpClient);
+        this.wxqrcode = new QrCodeAuthenticationClient(this.options, this.tokenProvider, this.httpClient, 'WXAPP_AUTH');
+        this.qrcode = new QrCodeAuthenticationClient(this.options, this.tokenProvider, this.httpClient, 'APP_AUTH');
+        this.mfa = new MfaAuthenticationClient(this.options, this.tokenProvider, this.httpClient);
+        this.social = new SocialAuthenticationClient(this.options, this.tokenProvider, this.httpClient);
+        this.enterprise = new EnterpriseAuthenticationClient(this.options, this.tokenProvider, this.httpClient);
+        if (this.options.token) {
+            this.setToken(this.options.token);
+        }
+    }
+    AuthenticationClient.prototype.checkLoggedIn = function () {
+        var _a;
+        var user = this.tokenProvider.getUser();
+        if (user) {
+            return user.id;
+        }
+        var token = this.tokenProvider.getToken();
+        if (!token) {
+            throw new Error('请先登录！');
+        }
+        var decoded = jwtDecode(token);
+        var userId = decoded.sub || ((_a = decoded.data) === null || _a === void 0 ? void 0 : _a.id);
+        if (!userId) {
+            throw new Error('不合法的 accessToken');
+        }
+        return userId;
+    };
+    AuthenticationClient.prototype.setCurrentUser = function (user) {
+        this.tokenProvider.setUser(user);
+    };
+    AuthenticationClient.prototype.setToken = function (token) {
+        this.tokenProvider.setToken(token);
+    };
+    /**
+     * @name registerByEmail
+     * @name_zh 使用邮箱注册
+     * @description 使用邮箱注册，此接口不要求用户对邮箱进行验证，用户注册之后 emailVerified 字段会为 false 。如果你希望邮箱未验证的用户不能进行登录，可以使用 pipeline 对此类请求进行拦截。
+     *
+     * @param {string} email 邮箱
+     * @param {string} password 密码
+     * @param {RegisterProfile} [profile] 用户资料
+     * @param {Object} [options]
+     * @param {boolean} [options.forceLogin] 是否走一遍完整的登录的，会触发登录前后的 pipeline 函数以及登录事件 webhook ，同时该用户的累计登录次数会加 1 。默认为 false 。
+     * @param {boolean} [options.generateToken] 是否为该用户生成 token，不会触发登录后的完整流程，用户的累计登录次数不会加 1。默认为 false 。
+     * @param {string} [options.clientIp] 客户端真实 IP，如果你在服务器端调用此接口，请务必将此参数设置为终端用户的真实 IP。
+     *
+     * @example
+     *
+     * authenticationClient.registerByEmail(
+     *  'test@example.com',
+     *  'passw0rd',
+     *  {
+     *    nickname: 'Nick'
+     *  },
+     *  {
+     *    generateToken: true
+     *  }
+     * )
+     *
+     * @example
+     * authenticationClient.registerByEmail('test@example.com', 'passw0rd')
+     *
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.registerByEmail = function (email, password, profile, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var _a, forceLogin, _b, generateToken, clientIp, params, context, customData, _c, _d, _e, extraParams, extraContext, user;
+            return __generator(this, function (_f) {
+                switch (_f.label) {
+                    case 0:
+                        options = options || {};
+                        profile = profile || {};
+                        _a = options.forceLogin, forceLogin = _a === void 0 ? false : _a, _b = options.generateToken, generateToken = _b === void 0 ? false : _b, clientIp = options.clientIp, params = options.params, context = options.context, customData = options.customData;
+                        _d = (_c = this.options).encryptFunction;
+                        _e = [password];
+                        return [4 /*yield*/, this.publicKeyManager.getPublicKey()];
+                    case 1: return [4 /*yield*/, _d.apply(_c, _e.concat([_f.sent()]))];
+                    case 2:
+                        password = _f.sent();
+                        extraParams = null;
+                        if (customData) {
+                            extraParams = JSON.stringify(convertObjectToKeyValueList(customData));
+                        }
+                        else if (params) {
+                            extraParams = JSON.stringify(params);
+                        }
+                        extraContext = null;
+                        if (context) {
+                            extraContext = JSON.stringify(context);
+                        }
+                        return [4 /*yield*/, registerByEmail(this.graphqlClient, this.tokenProvider, {
+                                input: {
+                                    email: email,
+                                    password: password,
+                                    profile: profile,
+                                    forceLogin: forceLogin,
+                                    generateToken: generateToken,
+                                    clientIp: clientIp,
+                                    params: extraParams,
+                                    context: extraContext
+                                }
+                            })];
+                    case 3:
+                        user = (_f.sent()).registerByEmail;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name registerByUsername
+     * @name_zh 使用用户名注册
+     * @description 使用用户名注册
+     *
+     * @param {string} username 用户名
+     * @param {string} password 密码
+     * @param {RegisterProfile} [profile] 用户资料
+     * @param {Object} [options]
+     * @param {boolean} [options.forceLogin] 是否走一遍完整的登录的，会触发登录前后的 pipeline 函数以及登录事件 webhook ，同时该用户的累计登录次数会加 1 。默认为 false 。
+     * @param {boolean} [options.generateToken] 是否为该用户生成 token，不会触发登录后的完整流程，用户的累计登录次数不会加 1。默认为 false 。
+     * @param {string} [options.clientIp] 客户端真实 IP，如果你在服务器端调用此接口，请务必将此参数设置为终端用户的真实 IP。
+     *
+     *
+     * @example
+     *
+     * authenticationClient.registerByUsername(
+     *  'bob',
+     *  'passw0rd',
+     *  {
+     *    nickname: 'Nick'
+     *  },
+     *  {
+     *    generateToken: true
+     *  }
+     * )
+     *
+     * @example
+     * authenticationClient.registerByUsername('bob', 'passw0rd')
+     *
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.registerByUsername = function (username, password, profile, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var _a, forceLogin, _b, generateToken, clientIp, params, context, customData, _c, _d, _e, extraParams, extraContext, user;
+            return __generator(this, function (_f) {
+                switch (_f.label) {
+                    case 0:
+                        options = options || {};
+                        profile = profile || {};
+                        _a = options.forceLogin, forceLogin = _a === void 0 ? false : _a, _b = options.generateToken, generateToken = _b === void 0 ? false : _b, clientIp = options.clientIp, params = options.params, context = options.context, customData = options.customData;
+                        _d = (_c = this.options).encryptFunction;
+                        _e = [password];
+                        return [4 /*yield*/, this.publicKeyManager.getPublicKey()];
+                    case 1: return [4 /*yield*/, _d.apply(_c, _e.concat([_f.sent()]))];
+                    case 2:
+                        password = _f.sent();
+                        extraParams = null;
+                        if (customData) {
+                            extraParams = JSON.stringify(convertObjectToKeyValueList(customData));
+                        }
+                        else if (params) {
+                            extraParams = JSON.stringify(params);
+                        }
+                        extraContext = null;
+                        if (context) {
+                            extraContext = JSON.stringify(context);
+                        }
+                        return [4 /*yield*/, registerByUsername(this.graphqlClient, this.tokenProvider, {
+                                input: {
+                                    username: username,
+                                    password: password,
+                                    profile: profile,
+                                    forceLogin: forceLogin,
+                                    generateToken: generateToken,
+                                    clientIp: clientIp,
+                                    params: extraParams,
+                                    context: extraContext
+                                }
+                            })];
+                    case 3:
+                        user = (_f.sent()).registerByUsername;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name registerByPhoneCode
+     * @name_zh 使用手机号注册
+     * @description 使用手机号注册，你可以同时设置该账号的初始密码。发送短信的接口请见 sendSmsCode
+     *
+     * @param {string} phone 手机号
+     * @param {string} code 短信验证码
+     * @param {string} password 初始密码
+     * @param {RegisterProfile} [profile] 用户资料
+     * @param {Object} [options]
+     * @param {boolean} [options.forceLogin] 是否走一遍完整的登录的，会触发登录前后的 pipeline 函数以及登录事件 webhook ，同时该用户的累计登录次数会加 1 。默认为 false 。
+     * @param {boolean} [options.generateToken] 是否为该用户生成 token，不会触发登录后的完整流程，用户的累计登录次数不会加 1。默认为 false 。
+     * @param {string} [options.clientIp] 客户端真实 IP，如果你在服务器端调用此接口，请务必将此参数设置为终端用户的真实 IP。
+     *
+     * @example
+     *
+     * authenticationClient.registerByPhoneCode(
+     *  '176xxxx7041',
+     *  '1234',
+     *  'passw0rd',
+     *  {
+     *    nickname: 'Nick'
+     *  },
+     *  {
+     *    generateToken: true
+     *  }
+     * )
+     *
+     * @example
+     * authenticationClient.registerByPhoneCode('176xxxx7041', '1234')
+     *
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.registerByPhoneCode = function (phone, code, password, profile, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var _a, forceLogin, _b, generateToken, clientIp, params, context, customData, _c, _d, _e, extraParams, extraContext, user;
+            return __generator(this, function (_f) {
+                switch (_f.label) {
+                    case 0:
+                        options = options || {};
+                        profile = profile || {};
+                        _a = options.forceLogin, forceLogin = _a === void 0 ? false : _a, _b = options.generateToken, generateToken = _b === void 0 ? false : _b, clientIp = options.clientIp, params = options.params, context = options.context, customData = options.customData;
+                        if (!password) return [3 /*break*/, 3];
+                        _d = (_c = this.options).encryptFunction;
+                        _e = [password];
+                        return [4 /*yield*/, this.publicKeyManager.getPublicKey()];
+                    case 1: return [4 /*yield*/, _d.apply(_c, _e.concat([_f.sent()]))];
+                    case 2:
+                        password = _f.sent();
+                        _f.label = 3;
+                    case 3:
+                        extraParams = null;
+                        if (customData) {
+                            extraParams = JSON.stringify(convertObjectToKeyValueList(customData));
+                        }
+                        else if (params) {
+                            extraParams = JSON.stringify(params);
+                        }
+                        extraContext = null;
+                        if (context) {
+                            extraContext = JSON.stringify(context);
+                        }
+                        return [4 /*yield*/, registerByPhoneCode(this.graphqlClient, this.tokenProvider, {
+                                input: {
+                                    phone: phone,
+                                    code: code,
+                                    password: password,
+                                    profile: profile,
+                                    forceLogin: forceLogin,
+                                    generateToken: generateToken,
+                                    clientIp: clientIp,
+                                    params: extraParams,
+                                    context: extraContext
+                                }
+                            })];
+                    case 4:
+                        user = (_f.sent()).registerByPhoneCode;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name checkPasswordStrength
+     * @name_zh 检查密码强度
+     * @description 检查密码强度，详情请见: https://docs.authing.co/v2/guides/security/config-password.html
+     *
+     * @param {string} password
+     * @example
+     * authenticationClient.checkPasswordStrength('weak')
+     *
+     * @example
+     * authenticationClient.checkPasswordStrength('strongPassw0rd!')
+     *
+     * @returns {Promise<CheckPasswordStrengthResult>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.checkPasswordStrength = function (password) {
+        return __awaiter(this, void 0, void 0, function () {
+            var result;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, checkPasswordStrength(this.graphqlClient, this.tokenProvider, { password: password })];
+                    case 1:
+                        result = (_a.sent()).checkPasswordStrength;
+                        return [2 /*return*/, result];
+                }
+            });
+        });
+    };
+    /**
+     * @name sendSmsCode
+     * @name_zh 发送短信验证码
+     * @description 发送短信验证码, 短信验证码的有效时间为 60 s。
+     *
+     * @param {string} phone
+     * @example
+     * authenticationClient.sendSmsCode('176xxxx6754')
+     *
+     * @returns {Promise<CommonMessage>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.sendSmsCode = function (phone) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, data;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        api = this.baseClient.appHost + "/api/v2/sms/send";
+                        return [4 /*yield*/, this.httpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: { phone: phone }
+                            })];
+                    case 1:
+                        data = _a.sent();
+                        return [2 /*return*/, data];
+                }
+            });
+        });
+    };
+    /**
+     * @name loginByEmail
+     * @name_zh 使用邮箱登录
+     * @description 使用邮箱登录，该接口默认不会限制未验证的邮箱进行登录，如果你希望邮箱未验证的用户不能进行登录，可以使用 pipeline 对此类请求进行拦截。
+     *
+     * 如果你的用户池配置了登录失败检测，当同一  IP 下登录多次失败的时候会要求用户输入图形验证码（code 为 2000)。
+     *
+     * @param {string} email 邮箱
+     * @param {string} password 密码
+     * @param {Object} [options]
+     * @param {boolean} [options.autoRegister] 是否自动注册。如果检测到用户不存在，会根据登录账密自动创建一个账号。
+     * @param {string} [options.captchaCode] 图形验证码
+     * @param {string} [options.clientIp] 客户端真实 IP，如果你在服务器端调用此接口，请务必将此参数设置为终端用户的真实 IP。
+     *
+     * @example
+     *
+     * authenticationClient.loginByEmail(
+     *  'test@example.com',
+     *  'passw0rd',
+     *  {
+     *    autoRegister: true，
+     *    captchaCode: 'xj72'
+     *  }
+     * )
+     *
+     * @example
+     * authenticationClient.loginByEmail('test@example.com', 'passw0rd')
+     *
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.loginByEmail = function (email, password, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var _a, autoRegister, captchaCode, clientIp, params, context, customData, _b, _c, _d, extraParams, extraContext, user;
+            return __generator(this, function (_e) {
+                switch (_e.label) {
+                    case 0:
+                        options = options || {};
+                        _a = options.autoRegister, autoRegister = _a === void 0 ? false : _a, captchaCode = options.captchaCode, clientIp = options.clientIp, params = options.params, context = options.context, customData = options.customData;
+                        _c = (_b = this.options).encryptFunction;
+                        _d = [password];
+                        return [4 /*yield*/, this.publicKeyManager.getPublicKey()];
+                    case 1: return [4 /*yield*/, _c.apply(_b, _d.concat([_e.sent()]))];
+                    case 2:
+                        password = _e.sent();
+                        extraParams = null;
+                        if (customData) {
+                            extraParams = JSON.stringify(convertObjectToKeyValueList(customData));
+                        }
+                        else if (params) {
+                            extraParams = JSON.stringify(params);
+                        }
+                        extraContext = null;
+                        if (context) {
+                            extraContext = JSON.stringify(context);
+                        }
+                        return [4 /*yield*/, loginByEmail(this.graphqlClient, this.tokenProvider, {
+                                input: {
+                                    email: email,
+                                    password: password,
+                                    autoRegister: autoRegister,
+                                    captchaCode: captchaCode,
+                                    clientIp: clientIp,
+                                    params: extraParams,
+                                    context: extraContext
+                                }
+                            })];
+                    case 3:
+                        user = (_e.sent()).loginByEmail;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name loginByUsername
+     * @name_zh 使用用户名登录
+     * @description 使用用户名登录。
+     *
+     * 如果你的用户池配置了登录失败检测，当同一  IP 下登录多次失败的时候会要求用户输入图形验证码（code 为 2000)。
+     *
+     * @param {string} username 用户名
+     * @param {string} password 密码
+     * @param {Object} [options]
+     * @param {boolean} [options.autoRegister] 是否自动注册。如果检测到用户不存在，会根据登录账密自动创建一个账号。
+     * @param {string} [options.captchaCode] 图形验证码
+     * @param {string} [options.clientIp] 客户端真实 IP，如果你在服务器端调用此接口，请务必将此参数设置为终端用户的真实 IP。
+     *
+     *
+     * @example
+     *
+     * authenticationClient.loginByEmail(
+     *  'test@example.com',
+     *  'passw0rd',
+     *  {
+     *    autoRegister: true，
+     *    captchaCode: 'xj72'
+     *  }
+     * )
+     *
+     * @example
+     * authenticationClient.loginByEmail('test@example.com', 'passw0rd')
+     *
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.loginByUsername = function (username, password, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var _a, autoRegister, captchaCode, clientIp, params, context, customData, _b, _c, _d, extraParams, extraContext, user;
+            return __generator(this, function (_e) {
+                switch (_e.label) {
+                    case 0:
+                        options = options || {};
+                        _a = options.autoRegister, autoRegister = _a === void 0 ? false : _a, captchaCode = options.captchaCode, clientIp = options.clientIp, params = options.params, context = options.context, customData = options.customData;
+                        _c = (_b = this.options).encryptFunction;
+                        _d = [password];
+                        return [4 /*yield*/, this.publicKeyManager.getPublicKey()];
+                    case 1: return [4 /*yield*/, _c.apply(_b, _d.concat([_e.sent()]))];
+                    case 2:
+                        password = _e.sent();
+                        extraParams = null;
+                        if (customData) {
+                            extraParams = JSON.stringify(convertObjectToKeyValueList(customData));
+                        }
+                        else if (params) {
+                            extraParams = JSON.stringify(params);
+                        }
+                        extraContext = null;
+                        if (context) {
+                            extraContext = JSON.stringify(context);
+                        }
+                        return [4 /*yield*/, loginByUsername(this.graphqlClient, this.tokenProvider, {
+                                input: {
+                                    username: username,
+                                    password: password,
+                                    autoRegister: autoRegister,
+                                    captchaCode: captchaCode,
+                                    clientIp: clientIp,
+                                    params: extraParams,
+                                    context: extraContext
+                                }
+                            })];
+                    case 3:
+                        user = (_e.sent()).loginByUsername;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name loginByPhoneCode
+     * @name_zh 使用手机号验证码登录
+     * @description 使用手机号验证码登录。
+     *
+     *
+     * @param {string} phone 手机号
+     * @param {string} code 短信验证码
+     * @param {string} [options.clientIp] 客户端真实 IP，如果你在服务器端调用此接口，请务必将此参数设置为终端用户的真实 IP。
+     *
+     * @example
+     *
+     * authenticationClient.loginByPhoneCode(
+     *  '176xxxx7041',
+     *  '1234',
+     * )
+     *
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.loginByPhoneCode = function (phone, code, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var clientIp, params, context, customData, extraParams, extraContext, user;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        options = options || {};
+                        clientIp = options.clientIp, params = options.params, context = options.context, customData = options.customData;
+                        extraParams = null;
+                        if (customData) {
+                            extraParams = JSON.stringify(convertObjectToKeyValueList(customData));
+                        }
+                        else if (params) {
+                            extraParams = JSON.stringify(params);
+                        }
+                        extraContext = null;
+                        if (context) {
+                            extraContext = JSON.stringify(context);
+                        }
+                        return [4 /*yield*/, loginByPhoneCode(this.graphqlClient, this.tokenProvider, {
+                                input: {
+                                    phone: phone,
+                                    code: code,
+                                    clientIp: clientIp,
+                                    params: extraParams,
+                                    context: extraContext
+                                }
+                            })];
+                    case 1:
+                        user = (_a.sent()).loginByPhoneCode;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name loginByPhonePassword
+     * @name_zh 使用手机号密码登录
+     * @description 使用手机号密码登录。
+     *
+     *
+     * @param {string} phone 手机号
+     * @param {string} password 密码
+     * @param {Object} [options]
+     * @param {string} [options.captchaCode] 图形验证码
+     * @param {string} [options.clientIp] 客户端真实 IP，如果你在服务器端调用此接口，请务必将此参数设置为终端用户的真实 IP。
+     *
+     * @example
+     *
+     * authenticationClient.loginByPhonePassword(
+     *  '176xxxx7041',
+     *  'passw0rd',
+     *  {
+     *    captchaCode: 'xj72'
+     *  }
+     * )
+     *
+     * @example
+     * authenticationClient.loginByPhonePassword('176xxxx7041', 'passw0rd')
+     *
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.loginByPhonePassword = function (phone, password, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var captchaCode, _a, autoRegister, clientIp, params, context, customData, _b, _c, _d, extraParams, extraContext, user;
+            return __generator(this, function (_e) {
+                switch (_e.label) {
+                    case 0:
+                        options = options || {};
+                        captchaCode = options.captchaCode, _a = options.autoRegister, autoRegister = _a === void 0 ? false : _a, clientIp = options.clientIp, params = options.params, context = options.context, customData = options.customData;
+                        _c = (_b = this.options).encryptFunction;
+                        _d = [password];
+                        return [4 /*yield*/, this.publicKeyManager.getPublicKey()];
+                    case 1: return [4 /*yield*/, _c.apply(_b, _d.concat([_e.sent()]))];
+                    case 2:
+                        password = _e.sent();
+                        extraParams = null;
+                        if (customData) {
+                            extraParams = JSON.stringify(convertObjectToKeyValueList(customData));
+                        }
+                        else if (params) {
+                            extraParams = JSON.stringify(params);
+                        }
+                        extraContext = null;
+                        if (context) {
+                            extraContext = JSON.stringify(context);
+                        }
+                        return [4 /*yield*/, loginByPhonePassword(this.graphqlClient, this.tokenProvider, {
+                                input: {
+                                    phone: phone,
+                                    password: password,
+                                    captchaCode: captchaCode,
+                                    autoRegister: autoRegister,
+                                    clientIp: clientIp,
+                                    params: extraParams,
+                                    context: extraContext
+                                }
+                            })];
+                    case 3:
+                        user = (_e.sent()).loginByPhonePassword;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype.loginBySubAccount = function (account, password, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var captchaCode, clientIp, _a, _b, _c, user;
+            return __generator(this, function (_d) {
+                switch (_d.label) {
+                    case 0:
+                        options = options || {};
+                        captchaCode = options.captchaCode, clientIp = options.clientIp;
+                        _b = (_a = this.options).encryptFunction;
+                        _c = [password];
+                        return [4 /*yield*/, this.publicKeyManager.getPublicKey()];
+                    case 1: return [4 /*yield*/, _b.apply(_a, _c.concat([_d.sent()]))];
+                    case 2:
+                        password = _d.sent();
+                        return [4 /*yield*/, loginBySubAccount(this.graphqlClient, this.tokenProvider, {
+                                account: account,
+                                password: password,
+                                captchaCode: captchaCode,
+                                clientIp: clientIp
+                            })];
+                    case 3:
+                        user = (_d.sent()).loginBySubAccount;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name checkLoginStatus
+     * @name_zh 检测 Token 登录状态
+     * @description 检测 Token 登录状态
+     *
+     * @param {string} token 用户的登录凭证 token
+     *
+     * @example
+     *
+     * authenticationClient.checkLoginStatus('TOKEN')
+     *
+     * @returns {Promise<JwtTokenStatus>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.checkLoginStatus = function (token) {
+        return __awaiter(this, void 0, void 0, function () {
+            var res;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, checkLoginStatus(this.graphqlClient, this.tokenProvider, {
+                            token: token
+                        })];
+                    case 1:
+                        res = _a.sent();
+                        return [2 /*return*/, res.checkLoginStatus];
+                }
+            });
+        });
+    };
+    /**
+     * @name sendEmail
+     * @name_zh 发送邮件
+     * @description 发送邮件
+     *
+     * @param {string} email 邮箱
+     * @param {EmailScene} scene 发送场景，可选值为 RESET_PASSWORD（发送重置密码邮件，邮件中包含验证码）、VerifyEmail（发送验证邮箱的邮件）、ChangeEmail（发送修改邮箱邮件，邮件中包含验证码）
+     *
+     * @example
+     *
+     * import { EmailScene } from "authing-js-sdk"
+     * authenticationClient.sendEmail('test@example.com', EmailScene.RESET_PASSWORD)
+     *
+     * @returns {Promise<CommonMessage>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.sendEmail = function (email, scene) {
+        return __awaiter(this, void 0, void 0, function () {
+            var data;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, sendEmail(this.graphqlClient, this.tokenProvider, { email: email, scene: scene })];
+                    case 1:
+                        data = (_a.sent()).sendEmail;
+                        return [2 /*return*/, data];
+                }
+            });
+        });
+    };
+    /**
+     * @name resetPasswordByPhoneCode
+     * @name_zh 通过短信验证码重置密码
+     * @description 通过短信验证码重置密码，你需要先调用 sendSmsCode 接口发送重置密码邮件。
+     *
+     * @param {string} phone 手机号
+     * @param {string} code 验证码
+     * @param {string} newPassword 新的密码
+     *
+     * @example
+     *
+     * authenticationClient.resetPasswordByPhoneCode('176xxxx7041', '1234', 'passw0rd')
+     *
+     * @returns {Promise<CommonMessage>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.resetPasswordByPhoneCode = function (phone, code, newPassword) {
+        return __awaiter(this, void 0, void 0, function () {
+            var _a, _b, _c, data;
+            return __generator(this, function (_d) {
+                switch (_d.label) {
+                    case 0:
+                        _b = (_a = this.options).encryptFunction;
+                        _c = [newPassword];
+                        return [4 /*yield*/, this.publicKeyManager.getPublicKey()];
+                    case 1: return [4 /*yield*/, _b.apply(_a, _c.concat([_d.sent()]))];
+                    case 2:
+                        newPassword = _d.sent();
+                        return [4 /*yield*/, resetPassword(this.graphqlClient, this.tokenProvider, {
+                                phone: phone,
+                                code: code,
+                                newPassword: newPassword
+                            })];
+                    case 3:
+                        data = (_d.sent()).resetPassword;
+                        return [2 /*return*/, data];
+                }
+            });
+        });
+    };
+    /**
+     * @name resetPasswordByEmailCode
+     * @name_zh 通过邮件验证码重置密码
+     * @description 通过邮件验证码重置密码，你需要先调用 sendEmail 接口发送重置密码邮件。
+     *
+     * @param {string} phone 手机号
+     * @param {string} code 验证码
+     * @param {string} newPassword 新的密码
+     *
+     * @example
+     *
+     * authenticationClient.resetPasswordByEmailCode('test@example.com', '1234', 'passw0rd')
+     *
+     * @returns {Promise<CommonMessage>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.resetPasswordByEmailCode = function (email, code, newPassword) {
+        return __awaiter(this, void 0, void 0, function () {
+            var _a, _b, _c, data;
+            return __generator(this, function (_d) {
+                switch (_d.label) {
+                    case 0:
+                        _b = (_a = this.options).encryptFunction;
+                        _c = [newPassword];
+                        return [4 /*yield*/, this.publicKeyManager.getPublicKey()];
+                    case 1: return [4 /*yield*/, _b.apply(_a, _c.concat([_d.sent()]))];
+                    case 2:
+                        newPassword = _d.sent();
+                        return [4 /*yield*/, resetPassword(this.graphqlClient, this.tokenProvider, {
+                                email: email,
+                                code: code,
+                                newPassword: newPassword
+                            })];
+                    case 3:
+                        data = (_d.sent()).resetPassword;
+                        return [2 /*return*/, data];
+                }
+            });
+        });
+    };
+    /**
+     * @name updateProfile
+     * @name_zh 修改用户资料
+     * @description 修改用户资料，此接口不能用于修改手机号、邮箱、密码，如果需要请调用 updatePhone、updateEmail、updatePassword 接口。
+     *
+     * @param {UpdateUserInput} updates 修改的用户资料
+     * @param {string} updates.username 用户名
+     * @param {string} updates.nickname 昵称
+     * @param {string} updates.photo 头像
+     * @param {string} updates.company 公司
+     * @param {string} updates.browser 浏览器
+     * @param {string} updates.device 设备
+     * @param {string} updates.lastIP 最近登录的 IP
+     * @param {string} updates.name Name
+     * @param {string} updates.givenName Given Name
+     * @param {string} updates.familyName Family Name
+     * @param {string} updates.middleName Middle Name
+     * @param {string} updates.profile Profile Url
+     * @param {string} updates.preferredUsername Preferred Name
+     * @param {string} updates.website 个人网站
+     * @param {string} updates.gender 性别, F 表示男性、W 表示女性、未知表示 U
+     * @param {string} updates.birthdate 生日
+     * @param {string} updates.zoneinfo 时区
+     * @param {string} updates.locale 语言
+     * @param {string} updates.address 地址
+     * @param {string} updates.streetAddress 街道地址
+     * @param {string} updates.locality
+     * @param {string} updates.region 地域
+     * @param {string} updates.postalCode 邮编
+     * @param {string} updates.city 城市
+     * @param {string} updates.province 省份
+     * @param {string} updates.country 国家
+     *
+     * @example
+     *
+     * authenticationClient.updateProfile({
+     *  nickname: "Nick",
+     *  lastIp: "111.111.111.111"
+     * })
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.updateProfile = function (updates) {
+        return __awaiter(this, void 0, void 0, function () {
+            var userId, updated;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        userId = this.checkLoggedIn();
+                        if (updates && updates.password) {
+                            delete updates.password;
+                        }
+                        return [4 /*yield*/, updateUser(this.graphqlClient, this.tokenProvider, {
+                                id: userId,
+                                input: updates
+                            })];
+                    case 1:
+                        updated = (_a.sent()).updateUser;
+                        this.setCurrentUser(updated);
+                        return [2 /*return*/, updated];
+                }
+            });
+        });
+    };
+    /**
+     * @name updatePassword
+     * @name_zh 更新用户密码
+     * @description 更新用户密码
+     *
+     * @param {string} newPassword 新密码
+     * @param {string} [oldPassword] 旧密码，如果用户没有设置密码，可以不填。
+     *
+     * @example
+     *
+     * authenticationClient.updatePassword('passw0rd') // 由手机号、社会化登录等其他方式注册的，首次没有设置密码，oldPassword 留空。
+     *
+     * @example
+     *
+     * authenticationClient.updatePassword('passw0rd', 'oldPassw0rd') // 用户之前设置了密码
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.updatePassword = function (newPassword, oldPassword) {
+        return __awaiter(this, void 0, void 0, function () {
+            var _a, _b, _c, _d, _e, _f, _g, _h, user;
+            return __generator(this, function (_j) {
+                switch (_j.label) {
+                    case 0:
+                        _a = newPassword;
+                        if (!_a) return [3 /*break*/, 3];
+                        _c = (_b = this.options).encryptFunction;
+                        _d = [newPassword];
+                        return [4 /*yield*/, this.publicKeyManager.getPublicKey()];
+                    case 1: return [4 /*yield*/, _c.apply(_b, _d.concat([_j.sent()]))];
+                    case 2:
+                        _a = (_j.sent());
+                        _j.label = 3;
+                    case 3:
+                        newPassword = _a;
+                        _e = oldPassword;
+                        if (!_e) return [3 /*break*/, 6];
+                        _g = (_f = this.options).encryptFunction;
+                        _h = [oldPassword];
+                        return [4 /*yield*/, this.publicKeyManager.getPublicKey()];
+                    case 4: return [4 /*yield*/, _g.apply(_f, _h.concat([_j.sent()]))];
+                    case 5:
+                        _e = (_j.sent());
+                        _j.label = 6;
+                    case 6:
+                        oldPassword = _e;
+                        return [4 /*yield*/, updatePassword(this.graphqlClient, this.tokenProvider, {
+                                newPassword: newPassword,
+                                oldPassword: oldPassword
+                            })];
+                    case 7:
+                        user = (_j.sent()).updatePassword;
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name updatePhone
+     * @name_zh 更新用户手机号
+     * @description 更新用户手机号。和修改邮箱一样，默认情况下，如果用户当前已经绑定了手机号，需要同时验证原有手机号（目前账号绑定的手机号）和当前邮箱（将要绑定的手机号）。
+     * 也就是说，用户 A 当前绑定的手机号为 15888888888，想修改为 15899999999，那么就需要同时验证这两个手机号。
+     * 开发者也可以选择不开启 “验证原有手机号“ ，可以在 Authing 控制台 的 设置目录下的安全信息模块进行关闭。
+     * 用户首次绑定手机号请使用 bindPhone 接口。
+     *
+     * @param {string} phone 新手机号
+     * @param {string} phoneCode 新手机号的验证码
+     * @param {string} [oldPhone] 旧手机号
+     * @param {string} [oldPhoneCode] 旧手机号的验证码
+     *
+     * @example
+     *
+     * authenticationClient.updatePhone('176xxxx7041', '1234') // 关闭了“验证原有手机号“选项
+     *
+     * @example
+     *
+     * authenticationClient.updatePhone('176xxxx7041', '1234', '156xxxx9876', '1234') // 开启了“验证原有手机号“选项
+     *
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.updatePhone = function (phone, phoneCode, oldPhone, oldPhoneCode) {
+        return __awaiter(this, void 0, void 0, function () {
+            var user;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, updatePhone(this.graphqlClient, this.tokenProvider, {
+                            phone: phone,
+                            phoneCode: phoneCode,
+                            oldPhone: oldPhone,
+                            oldPhoneCode: oldPhoneCode
+                        })];
+                    case 1:
+                        user = (_a.sent()).updatePhone;
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name updateEmail
+     * @name_zh 更新用户邮箱
+     * @description 如果用户已经绑定了邮箱，默认情况下，需要同时验证原有邮箱（目前账号绑定的邮箱）和当前邮箱（将要绑定的邮箱）。也就是说，用户 A 当前绑定的邮箱为 123456@qq.com，想修改为 1234567@qq.com，那么就需要同时验证这两个邮箱。
+     * 开发者也可以选择不开启 “验证原有邮箱“ ，可以在 Authing 控制台 的 设置目录下的安全信息模块进行关闭。
+     * 用户首次绑定手机号请使用 bindEmail 接口。
+     *
+     * @param {string} email 新邮箱
+     * @param {string} emailCode 新邮箱的验证码
+     * @param {string} [oldEmail] 旧邮箱
+     * @param {string} [oldEmailCode] 旧邮箱的验证码
+     *
+     * @example
+     *
+     * authenticationClient.updateEmail('test@example.com', '1234') // 关闭了“验证原有邮箱“选项
+     *
+     * @example
+     *
+     * authenticationClient.updateEmail('test@example.com', '1234', 'test2@example.com', '1234') // 开启了“验证原有邮箱“选项
+     *
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.updateEmail = function (email, emailCode, oldEmail, oldEmailCode) {
+        return __awaiter(this, void 0, void 0, function () {
+            var user;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, updateEmail(this.graphqlClient, this.tokenProvider, {
+                            email: email,
+                            emailCode: emailCode,
+                            oldEmail: oldEmail,
+                            oldEmailCode: oldEmailCode
+                        })];
+                    case 1:
+                        user = (_a.sent()).updateEmail;
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name refreshToken
+     * @name_zh 刷新当前用户的 token
+     * @description 刷新当前用户的 token，调用此接口要求先登录。
+     *
+     * @example
+     *
+     * authenticationClient.updateEmail()
+     *
+     * @returns {Promise<RefreshToken>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.refreshToken = function () {
+        return __awaiter(this, void 0, void 0, function () {
+            var data;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, refreshToken(this.graphqlClient, this.tokenProvider, {})];
+                    case 1:
+                        data = (_a.sent()).refreshToken;
+                        this.setToken(data.token);
+                        return [2 /*return*/, data];
+                }
+            });
+        });
+    };
+    /**
+     * @name linkAccount
+     * @name_zh 关联账号
+     * @description 将社交账号绑定到主账号（手机号、邮箱账号）。
+     *
+     * @param {Object} options
+     * @param {string} options.primaryUserToken 主账号 Token
+     * @param {string} options.secondaryUserToken 社交账号 Token
+     *
+     * @example
+     *
+     * authenticationClient.linkAccount({ primaryUserToken: '', secondaryUserToken: '' })
+     *
+     * @returns {{code: 200, message: "绑定成功"}}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.linkAccount = function (options) {
+        return __awaiter(this, void 0, void 0, function () {
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, this.httpClient.request({
+                            method: 'POST',
+                            url: this.baseClient.appHost + "/api/v2/users/link",
+                            data: {
+                                primaryUserToken: options.primaryUserToken,
+                                secondaryUserToken: options.secondaryUserToken
+                            }
+                        })];
+                    case 1:
+                        _a.sent();
+                        return [2 /*return*/, { code: 200, message: '绑定成功' }];
+                }
+            });
+        });
+    };
+    /**
+     * @name unLinkAccount
+     * @name_zh 解除账号绑定
+     * @description 将社交账号从主账号（手机号、邮箱账号）解绑。
+     *
+     * @param {Object} options
+     * @param {string} options.primaryUserToken 主账号 Token
+     * @param {string} options.provider 社交账号的提供商名称
+     *
+     * @example
+     *
+     * authenticationClient.unLinkAccount({ primaryUserToken: '', provider: 'wechat:pc' })
+     *
+     * @returns {{code: 200, message: "解绑成功"}}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.unLinkAccount = function (options) {
+        return __awaiter(this, void 0, void 0, function () {
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, this.httpClient.request({
+                            method: 'POST',
+                            url: this.baseClient.appHost + "/api/v2/users/unlink",
+                            data: {
+                                primaryUserToken: options.primaryUserToken,
+                                provider: options.provider
+                            }
+                        })];
+                    case 1:
+                        _a.sent();
+                        return [2 /*return*/, { code: 200, message: '解绑成功' }];
+                }
+            });
+        });
+    };
+    /**
+     * @name bindPhone
+     * @name_zh 绑定手机号
+     * @description 用户初次绑定手机号，如果需要修改手机号请使用 updatePhone 接口。
+     *
+     * @param {string} phone
+     * @param {string} phoneCode
+     *
+     * @example
+     *
+     * authenticationClient.bindPhone('176xxxx7041', '1234')
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.bindPhone = function (phone, phoneCode) {
+        return __awaiter(this, void 0, void 0, function () {
+            var user;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, bindPhone(this.graphqlClient, this.tokenProvider, {
+                            phone: phone,
+                            phoneCode: phoneCode
+                        })];
+                    case 1:
+                        user = (_a.sent()).bindPhone;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name unbindPhone
+     * @name_zh 解绑手机号
+     * @description 用户解绑手机号
+     *
+     * @example
+     *
+     * authenticationClient.unbindPhone()
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.unbindPhone = function () {
+        return __awaiter(this, void 0, void 0, function () {
+            var user;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, unbindPhone(this.graphqlClient, this.tokenProvider, {})];
+                    case 1:
+                        user = (_a.sent()).unbindPhone;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name bindEmail
+     * @name_zh 绑定邮箱号
+     * @description 用户邮箱号
+     *
+     * @param {string} email
+     * @param {string} emailCode
+     *
+     * @example
+     *
+     * authenticationClient.bindEmail('test@example.com', '1234')
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.bindEmail = function (email, emailCode) {
+        return __awaiter(this, void 0, void 0, function () {
+            var user;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, bindEmail(this.graphqlClient, this.tokenProvider, {
+                            email: email,
+                            emailCode: emailCode
+                        })];
+                    case 1:
+                        user = (_a.sent()).bindEmail;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name unbindEmail
+     * @name_zh 解绑邮箱号
+     * @description 用户解绑邮箱号
+     *
+     * @example
+     *
+     * authenticationClient.unbindPhone()
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.unbindEmail = function () {
+        return __awaiter(this, void 0, void 0, function () {
+            var user;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, unbindEmail(this.graphqlClient, this.tokenProvider, {})];
+                    case 1:
+                        user = (_a.sent()).unbindEmail;
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name getCurrentUser
+     * @name_zh 获取当前登录的用户信息
+     * @description 获取当前登录的用户信息
+     *
+     * @example
+     *
+     * authenticationClient.getCurrentUser()
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.getCurrentUser = function () {
+        return __awaiter(this, void 0, void 0, function () {
+            var data, _a;
+            return __generator(this, function (_b) {
+                switch (_b.label) {
+                    case 0:
+                        _b.trys.push([0, 2, , 3]);
+                        return [4 /*yield*/, user(this.graphqlClient, this.tokenProvider, {})];
+                    case 1:
+                        data = (_b.sent()).user;
+                        this.setCurrentUser(data);
+                        return [2 /*return*/, data];
+                    case 2:
+                        _a = _b.sent();
+                        return [2 /*return*/, null];
+                    case 3: return [2 /*return*/];
+                }
+            });
+        });
+    };
+    /**
+     * @name logout
+     * @name_zh 退出登录
+     * @description 退出登录，清空 localStorage 里的 user 和 token
+     *
+     * @example
+     *
+     * authenticationClient.logout()
+     *
+     * @returns {null}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.logout = function () {
+        return __awaiter(this, void 0, void 0, function () {
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, this.httpClient.request({
+                            method: 'GET',
+                            url: this.baseClient.appHost + "/api/v2/logout?app_id=" + this.options.appId,
+                            withCredentials: true
+                        })];
+                    case 1:
+                        _a.sent();
+                        this.tokenProvider.clearUser();
+                        return [2 /*return*/];
+                }
+            });
+        });
+    };
+    /**
+     * @name listUdv
+     * @name_zh 获取当前用户的自定义数据列表
+     * @description 获取当前用户的自定义数据列表
+     * @deprecated use getUdfValue instead
+     *
+     * @example
+     *
+     * authenticationClient.listUdv()
+     *
+     * @returns {Promise<Array<UserDefinedData>>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.listUdv = function () {
+        return __awaiter(this, void 0, void 0, function () {
+            var userId, list;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        userId = this.checkLoggedIn();
+                        return [4 /*yield*/, udv(this.graphqlClient, this.tokenProvider, {
+                                targetType: UdfTargetType.User,
+                                targetId: userId
+                            })];
+                    case 1:
+                        list = (_a.sent()).udv;
+                        return [2 /*return*/, convertUdv(list)];
+                }
+            });
+        });
+    };
+    /**
+     * @name setUdv
+     * @name_zh 添加自定义数据
+     * @description 添加自定义数据
+     *
+     * @param {string} key 自定义字段的 key
+     * @param {any} value 自定义数据的值，值的类型必须要和用户池定义的自定义字段类型一致。
+     *
+     * @example
+     *
+     * authenticationClient.setUdv('school', '清华大学') // 要求用户必须定义了 school 这个字段。
+     *
+     * @returns {Promise<Array<UserDefinedData>>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.setUdv = function (key, value) {
+        return __awaiter(this, void 0, void 0, function () {
+            var userId, list;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        userId = this.checkLoggedIn();
+                        value = JSON.stringify(value);
+                        return [4 /*yield*/, setUdv(this.graphqlClient, this.tokenProvider, {
+                                targetType: UdfTargetType.User,
+                                targetId: userId,
+                                key: key,
+                                value: value
+                            })];
+                    case 1:
+                        list = (_a.sent()).setUdv;
+                        return [2 /*return*/, convertUdv(list)];
+                }
+            });
+        });
+    };
+    /**
+     * @name removeUdv
+     * @name_zh 删除自定义数据
+     * @description 删除自定义数据
+     *
+     * @param key 自定义字段的 key
+     *
+     * @example
+     *
+     * authenticationClient.removeUdv('school')
+     *
+     *
+     * @returns {Promise<Array<UserDefinedData>>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.removeUdv = function (key) {
+        return __awaiter(this, void 0, void 0, function () {
+            var userId, list;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        userId = this.checkLoggedIn();
+                        return [4 /*yield*/, removeUdv(this.graphqlClient, this.tokenProvider, {
+                                targetType: UdfTargetType.User,
+                                targetId: userId,
+                                key: key
+                            })];
+                    case 1:
+                        list = (_a.sent()).removeUdv;
+                        return [2 /*return*/, convertUdv(list)];
+                }
+            });
+        });
+    };
+    /**
+     * @name listOrg
+     * @name_zh 获取用户所在组织机构
+     * @description 获取用户所在的组织机构立碑，以及他所属的节点在此组织机构内的完整路径。
+     *
+     * @example
+     *
+     * const data = await authenticationClient.listOrgs();
+     *
+     * @returns {Promise<UserOrgList>}
+     *
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.listOrgs = function () {
+        return __awaiter(this, void 0, void 0, function () {
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, this.httpClient.request({
+                            method: 'GET',
+                            url: this.baseClient.appHost + "/api/v2/users/me/orgs"
+                        })];
+                    case 1: return [2 /*return*/, _a.sent()];
+                }
+            });
+        });
+    };
+    /**
+     * @name loginByLdap
+     * @name_zh 使用 LDAP 用户名登录
+     * @description 使用 LDAP 用户名登录。
+     *
+     * 如果你的用户池配置了登录失败检测，当同一  IP 下登录多次失败的时候会要求用户输入图形验证码（code 为 2000)。
+     *
+     * @param {string} username 用户名
+     * @param {string} password 密码
+     * @param {Object} [options]
+     * @param {boolean} [options.autoRegister] 是否自动注册。如果检测到用户不存在，会根据登录账密自动创建一个账号。
+     * @param {string} [options.captchaCode] 图形验证码
+     * @param {string} [options.clientIp] 客户端真实 IP，如果你在服务器端调用此接口，请务必将此参数设置为终端用户的真实 IP。
+     *
+     *
+     * @example
+     * const authenticationClient = new AuthenticationClient({
+     *   appId: '应用 ID'
+     * })
+     *
+     * authenticationClient.loginByLdap(
+     *  'admin',
+     *  'admin',
+     * )
+     *
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.loginByLdap = function (username, password, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, user;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        options = options || {};
+                        api = this.baseClient.appHost + "/api/v2/ldap/verify-user";
+                        return [4 /*yield*/, this.httpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: {
+                                    username: username,
+                                    password: password
+                                }
+                            })];
+                    case 1:
+                        user = _a.sent();
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @name loginByAd
+     * @name_zh 使用 AD 用户名登录
+     * @description 使用 AD 用户名登录。
+     *
+     * @param {string} username 用户名
+     * @param {string} password 密码
+     *
+     *
+     * @example
+     * const authenticationClient = new AuthenticationClient({
+     *   appId: '应用 ID'
+     * })
+     *
+     * authenticationClient.loginByAd(
+     *  'admin',
+     *  'admin',
+     * )
+     *
+     * @returns {Promise<User>}
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.loginByAd = function (username, password) {
+        return __awaiter(this, void 0, void 0, function () {
+            var firstLevelDomain, websocketHost, api, user;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        firstLevelDomain = new URL(this.baseClient.appHost).hostname
+                            .split('.')
+                            .slice(1)
+                            .join('.');
+                        websocketHost = this.options.websocketHost || "https://ws." + firstLevelDomain;
+                        api = websocketHost + "/api/v2/ad/verify-user";
+                        return [4 /*yield*/, this.httpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: {
+                                    username: username,
+                                    password: password
+                                }
+                            })];
+                    case 1:
+                        user = _a.sent();
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @description 上传图片
+     */
+    AuthenticationClient.prototype.uploadPhoto = function (accept, cb) {
+        accept = accept || 'image/*';
+        var authing = this;
+        uploadFile({
+            accept: accept,
+            url: this.baseClient.appHost + "/api/v2/upload?folder=avatar"
+        })
+            .then(function (_a) {
+            var url = _a.url;
+            return cb(url);
+        })
+            .catch(function (_a) {
+            var code = _a.code, message = _a.message;
+            return authing.options.onError(code, message);
+        });
+    };
+    /**
+     * @deprecated use uploadAvatar instead
+     * @description 更新用户头像
+     */
+    AuthenticationClient.prototype.updateAvatar = function (options) {
+        return __awaiter(this, void 0, void 0, function () {
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, this.uploadAvatar(options)];
+                    case 1: return [2 /*return*/, _a.sent()];
+                }
+            });
+        });
+    };
+    /**
+     * @description 一键上传图片并更新用户头像
+     *
+     * @param {Object} options
+     * @param {string} options.accept 支持的图片格式，默认为 'image/*'
+     *
+     * @example
+     * const authenticationClient = new AuthenticationClient({
+     *   appId: 'APP_ID',
+     *   appHost: 'https://xxx.authing.cn'
+     * })
+     *
+     * // 会自动打开浏览器文件上传框，并自动完成图片文件上传 CDN、修改用户头像操作。
+     * authenticationClient.uploadAvatar()
+     *
+     * // 只支持 png 格式图片
+     * authenticationClient.uploadAvatar({
+     *   accept: '.png'
+     * })
+     *
+     * @returns
+     */
+    AuthenticationClient.prototype.uploadAvatar = function (options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var accept, task, src, user;
+            var _this = this;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        accept = (options || {}).accept;
+                        this.checkLoggedIn();
+                        task = new Promise(function (resolve) {
+                            _this.uploadPhoto(accept, function (src) {
+                                resolve(src);
+                            });
+                        });
+                        return [4 /*yield*/, task];
+                    case 1:
+                        src = _a.sent();
+                        return [4 /*yield*/, this.updateProfile({ photo: src })];
+                    case 2:
+                        user = _a.sent();
+                        this.setCurrentUser(user);
+                        return [2 /*return*/, user];
+                }
+            });
+        });
+    };
+    /**
+     * @description 获取当前用户的所有自定义数据
+     *
+     */
+    AuthenticationClient.prototype.getUdfValue = function () {
+        return __awaiter(this, void 0, void 0, function () {
+            var userId, list;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        userId = this.checkLoggedIn();
+                        return [4 /*yield*/, udv(this.graphqlClient, this.tokenProvider, {
+                                targetType: UdfTargetType.User,
+                                targetId: userId
+                            })];
+                    case 1:
+                        list = (_a.sent()).udv;
+                        return [2 /*return*/, convertUdvToKeyValuePair(list)];
+                }
+            });
+        });
+    };
+    /**
+     * @description 设置自定义字段值
+     *
+     */
+    AuthenticationClient.prototype.setUdfValue = function (data) {
+        return __awaiter(this, void 0, void 0, function () {
+            var userId;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        if (Object.keys(data).length === 0) {
+                            throw new Error('empty udf value list');
+                        }
+                        userId = this.checkLoggedIn();
+                        return [4 /*yield*/, setUdvBatch(this.graphqlClient, this.tokenProvider, {
+                                targetType: UdfTargetType.User,
+                                targetId: userId,
+                                udvList: Object.keys(data).map(function (key) { return ({
+                                    key: key,
+                                    value: JSON.stringify(data[key])
+                                }); })
+                            })];
+                    case 1:
+                        _a.sent();
+                        return [2 /*return*/];
+                }
+            });
+        });
+    };
+    /**
+     * @description 删除用户自定义数据
+     */
+    AuthenticationClient.prototype.removeUdfValue = function (key) {
+        return __awaiter(this, void 0, void 0, function () {
+            var userId;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        userId = this.checkLoggedIn();
+                        return [4 /*yield*/, removeUdv(this.graphqlClient, this.tokenProvider, {
+                                targetType: UdfTargetType.User,
+                                targetId: userId,
+                                key: key
+                            })];
+                    case 1:
+                        _a.sent();
+                        return [2 /*return*/];
+                }
+            });
+        });
+    };
+    /**
+     * @name getSecurityLevel
+     * @name_zh 用户安全等级
+     * @description 获取用户的安全等级评分
+     *
+     * @example
+     *
+     * const data = await authenticationClient.getSecurityLevel();
+     *
+     * @returns {Promise<SecurityLevel>}
+     *
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.getSecurityLevel = function () {
+        return __awaiter(this, void 0, void 0, function () {
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, this.httpClient.request({
+                            method: 'GET',
+                            url: this.baseClient.appHost + "/api/v2/users/me/security-level"
+                        })];
+                    case 1: return [2 /*return*/, _a.sent()];
+                }
+            });
+        });
+    };
+    /**
+     * @description 获取用户被授权的所有资源
+     *
+     * @param userId
+     * @param namespace
+     */
+    AuthenticationClient.prototype.listAuthorizedResources = function (namespace, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var userId, resourceType, user, _a, list, totalCount;
+            return __generator(this, function (_b) {
+                switch (_b.label) {
+                    case 0:
+                        userId = this.checkLoggedIn();
+                        resourceType = (options || {}).resourceType;
+                        return [4 /*yield*/, listUserAuthorizedResources(this.graphqlClient, this.tokenProvider, {
+                                id: userId,
+                                namespace: namespace,
+                                resourceType: resourceType
+                            })];
+                    case 1:
+                        user = (_b.sent()).user;
+                        if (!user) {
+                            throw new Error('用户不存在');
+                        }
+                        _a = user.authorizedResources, list = _a.list, totalCount = _a.totalCount;
+                        list = formatAuthorizedResources(list);
+                        return [2 /*return*/, {
+                                list: list,
+                                totalCount: totalCount
+                            }];
+                }
+            });
+        });
+    };
+    /**
+     * @name computedPasswordSecurityLevel
+     * @name_zh 计算密码安全等级
+     * @description 计算密码安全等级
+     *
+     * @example
+     *
+     * const data = authenticationClient.computedPasswordSecurityLevel('xxxxxxxx');
+     *
+     * @returns {PasswordSecurityLevel}
+     *
+     * @memberof AuthenticationClient
+     */
+    AuthenticationClient.prototype.computedPasswordSecurityLevel = function (password) {
+        if (typeof password !== 'string') {
+            throw 'password must be a `string`';
+        }
+        var highLevel = new RegExp(/^(?=.*[a-z])(?=.*[A-Z])(?=.*\d)[^]{12,}$/g);
+        var middleLevel = new RegExp(/^(?=.*[a-zA-Z])(?=.*\d)[^]{8,}$/g);
+        if (password.match(highLevel) !== null) {
+            return PasswordSecurityLevel.HIGH;
+        }
+        if (password.match(middleLevel) !== null) {
+            return PasswordSecurityLevel.MIDDLE;
+        }
+        return PasswordSecurityLevel.LOW;
+    };
+    AuthenticationClient.prototype._generateTokenRequest = function (params) {
+        var ret = {};
+        // 删掉所有 undefined 的 kv
+        Object.keys(params).map(function (key) {
+            if (typeof params[key] !== 'undefined') {
+                ret[key] = params[key];
+            }
+        });
+        var p = new URLSearchParams(ret);
+        return p.toString();
+    };
+    AuthenticationClient.prototype._generateBasicAuthToken = function (appId, secret) {
+        var id = appId || this.options.appId;
+        var s = secret || this.options.secret;
+        var token = 'Basic ' + Buffer.from(id + ':' + s).toString('base64');
+        return token;
+    };
+    /**
+     * @param {string} code 授权码 code
+     * @param {string} codeVerifier 校验码 codeVerifier
+     */
+    AuthenticationClient.prototype._getAccessTokenByCodeWithClientSecretPost = function (code, codeVerifier) {
+        return __awaiter(this, void 0, void 0, function () {
+            var qstr, api, tokenSet;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        qstr = this._generateTokenRequest({
+                            client_id: this.options.appId,
+                            client_secret: this.options.secret,
+                            grant_type: 'authorization_code',
+                            code: code,
+                            redirect_uri: this.options.redirectUri,
+                            code_verifier: codeVerifier
+                        });
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token";
+                        }
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: qstr,
+                                headers: {
+                                    'Content-Type': 'application/x-www-form-urlencoded'
+                                }
+                            })];
+                    case 1:
+                        tokenSet = _a.sent();
+                        return [2 /*return*/, tokenSet];
+                }
+            });
+        });
+    };
+    /**
+     * @param {string} code 授权码 code
+     * @param {string} codeVerifier 校验码 codeVerifier
+     */
+    AuthenticationClient.prototype._getAccessTokenByCodeWithClientSecretBasic = function (code, codeVerifier) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, qstr, tokenSet;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token";
+                        }
+                        qstr = this._generateTokenRequest({
+                            grant_type: 'authorization_code',
+                            code: code,
+                            redirect_uri: this.options.redirectUri,
+                            code_verifier: codeVerifier
+                        });
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                data: qstr,
+                                method: 'POST',
+                                url: api,
+                                headers: {
+                                    Authorization: this._generateBasicAuthToken()
+                                }
+                            })];
+                    case 1:
+                        tokenSet = _a.sent();
+                        return [2 /*return*/, tokenSet];
+                }
+            });
+        });
+    };
+    /**
+     * @param {string} code 授权码 code
+     * @param {string} codeVerifier 校验码 codeVerifier
+     */
+    AuthenticationClient.prototype._getAccessTokenByCodeWithNone = function (code, codeVerifier) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, qstr, tokenSet;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token";
+                        }
+                        qstr = this._generateTokenRequest({
+                            client_id: this.options.appId,
+                            grant_type: 'authorization_code',
+                            code: code,
+                            redirect_uri: this.options.redirectUri,
+                            code_verifier: codeVerifier
+                        });
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: qstr
+                            })];
+                    case 1:
+                        tokenSet = _a.sent();
+                        return [2 /*return*/, tokenSet];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype.getAccessTokenByCode = function (code, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        if (!['oauth', 'oidc'].includes(this.options.protocol)) {
+                            throw new Error('初始化 AuthenticationClient 时传入的 protocol 参数必须为 oauth 或 oidc，请检查参数');
+                        }
+                        if (!this.options.secret &&
+                            this.options.tokenEndPointAuthMethod !== 'none') {
+                            throw new Error('请在初始化 AuthenticationClient 时传入 appId 和 secret 参数');
+                        }
+                        if (!(this.options.tokenEndPointAuthMethod === 'client_secret_post')) return [3 /*break*/, 2];
+                        return [4 /*yield*/, this._getAccessTokenByCodeWithClientSecretPost(code, options === null || options === void 0 ? void 0 : options.codeVerifier)];
+                    case 1: return [2 /*return*/, _a.sent()];
+                    case 2:
+                        if (!(this.options.tokenEndPointAuthMethod === 'client_secret_basic')) return [3 /*break*/, 4];
+                        return [4 /*yield*/, this._getAccessTokenByCodeWithClientSecretBasic(code, options === null || options === void 0 ? void 0 : options.codeVerifier)];
+                    case 3: return [2 /*return*/, _a.sent()];
+                    case 4:
+                        if (!(this.options.tokenEndPointAuthMethod === 'none')) return [3 /*break*/, 6];
+                        return [4 /*yield*/, this._getAccessTokenByCodeWithNone(code, options === null || options === void 0 ? void 0 : options.codeVerifier)];
+                    case 5: return [2 /*return*/, _a.sent()];
+                    case 6: return [2 /*return*/];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype.generateCodeChallenge = function () {
+        return generateRandomString(43);
+    };
+    AuthenticationClient.prototype.getCodeChallengeDigest = function (options) {
+        if (!options) {
+            throw new Error('请提供 options 参数，options.codeChallenge 为一个长度大于等于 43 的字符串，options.method 可选值为 S256、plain');
+        }
+        if (!options.codeChallenge) {
+            throw new Error('请提供 options.codeChallenge，值为一个长度大于等于 43 的字符串');
+        }
+        var _a = options.method, method = _a === void 0 ? 'S256' : _a;
+        if (method === 'S256') {
+            // url safe base64
+            return sha256(options.codeChallenge)
+                .toString(CryptoJS.enc.Base64)
+                .replace(/\+/g, '-')
+                .replace(/\//g, '_')
+                .replace(/=/g, '');
+        }
+        if (method === 'plain') {
+            return options.codeChallenge;
+        }
+        throw new Error('不支持的 options.method，可选值为 S256、plain');
+    };
+    AuthenticationClient.prototype.getAccessTokenByClientCredentials = function (scope, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var i, s, qstr, api, tokenSet;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        if (!scope) {
+                            throw new Error('请传入 scope 参数，请看文档：https://docs.authing.cn/v2/guides/authorization/m2m-authz.html');
+                        }
+                        if (!options) {
+                            throw new Error('请在调用本方法时传入 { accessKey: string, accessSecret: string }，请看文档：https://docs.authing.cn/v2/guides/authorization/m2m-authz.html'
+                            // '请在初始化 AuthenticationClient 时传入 appId 和 secret 参数或者在调用本方法时传入 { accessKey: string, accessSecret: string }，请看文档：https://docs.authing.cn/v2/guides/authorization/m2m-authz.html'
+                            );
+                        }
+                        i = (options === null || options === void 0 ? void 0 : options.accessKey) || this.options.appId;
+                        s = (options === null || options === void 0 ? void 0 : options.accessSecret) || this.options.secret;
+                        qstr = this._generateTokenRequest({
+                            client_id: i,
+                            client_secret: s,
+                            grant_type: 'client_credentials',
+                            scope: scope
+                        });
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token";
+                        }
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: qstr,
+                                headers: {
+                                    'Content-Type': 'application/x-www-form-urlencoded'
+                                }
+                            })];
+                    case 1:
+                        tokenSet = _a.sent();
+                        return [2 /*return*/, tokenSet];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype.getUserInfoByAccessToken = function (accessToken, options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, userInfo, userInfo, userInfo, userInfo, userInfo, userInfo;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        if (options) {
+                            if (options.method && !['POST', 'GET'].includes(options.method)) {
+                                throw new Error('options.method 参数的可选值为 POST、GET，请检查输入');
+                            }
+                            if (options.tokenPlace &&
+                                !['query', 'header', 'body'].includes(options.tokenPlace)) {
+                                throw new Error('options.tokenPlace 参数的可选值为 query、header、body，请检查输入');
+                            }
+                            if (options.method === 'GET' && options.tokenPlace === 'body') {
+                                throw new Error('options.method 参数为 GET 时，options.tokenPlace 参数不能为 body');
+                            }
+                            options.method = options.method || 'GET';
+                            options.tokenPlace = options.tokenPlace || 'query';
+                        }
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/me";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/me";
+                        }
+                        if (!((options === null || options === void 0 ? void 0 : options.method) === 'POST')) return [3 /*break*/, 7];
+                        if (!((options === null || options === void 0 ? void 0 : options.tokenPlace) === 'header')) return [3 /*break*/, 2];
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                headers: {
+                                    Authorization: 'Bearer ' + accessToken
+                                }
+                            })];
+                    case 1:
+                        userInfo = _a.sent();
+                        return [2 /*return*/, userInfo];
+                    case 2:
+                        if (!((options === null || options === void 0 ? void 0 : options.tokenPlace) === 'query')) return [3 /*break*/, 4];
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                params: {
+                                    access_token: accessToken
+                                }
+                            })];
+                    case 3:
+                        userInfo = _a.sent();
+                        return [2 /*return*/, userInfo];
+                    case 4:
+                        if (!((options === null || options === void 0 ? void 0 : options.tokenPlace) === 'body')) return [3 /*break*/, 6];
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: objectToQueryString({
+                                    access_token: accessToken
+                                }).slice(1)
+                            })];
+                    case 5:
+                        userInfo = _a.sent();
+                        return [2 /*return*/, userInfo];
+                    case 6: return [3 /*break*/, 14];
+                    case 7:
+                        if (!((options === null || options === void 0 ? void 0 : options.method) === 'GET')) return [3 /*break*/, 12];
+                        if (!((options === null || options === void 0 ? void 0 : options.tokenPlace) === 'header')) return [3 /*break*/, 9];
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'GET',
+                                url: api,
+                                headers: {
+                                    Authorization: 'Bearer ' + accessToken
+                                }
+                            })];
+                    case 8:
+                        userInfo = _a.sent();
+                        return [2 /*return*/, userInfo];
+                    case 9:
+                        if (!((options === null || options === void 0 ? void 0 : options.tokenPlace) === 'query')) return [3 /*break*/, 11];
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'GET',
+                                url: api,
+                                params: {
+                                    access_token: accessToken
+                                }
+                            })];
+                    case 10:
+                        userInfo = _a.sent();
+                        return [2 /*return*/, userInfo];
+                    case 11: return [3 /*break*/, 14];
+                    case 12: return [4 /*yield*/, this.naiveHttpClient.request({
+                            method: 'GET',
+                            url: api,
+                            params: {
+                                access_token: accessToken
+                            }
+                        })];
+                    case 13:
+                        userInfo = _a.sent();
+                        return [2 /*return*/, userInfo];
+                    case 14: return [2 /*return*/];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype.buildAuthorizeUrl = function (options) {
+        if (!this.baseClient.appHost) {
+            throw new Error('请在初始化 AuthenticationClient 时传入应用域名 appHost 参数，形如：https://app1.authing.cn');
+        }
+        if (this.options.protocol === 'oidc') {
+            return this._buildOidcAuthorizeUrl(options);
+        }
+        if (this.options.protocol === 'oauth') {
+            return this._buildOauthAuthorizeUrl(options);
+        }
+        if (this.options.protocol === 'saml') {
+            return this._buildSamlAuthorizeUrl();
+        }
+        if (this.options.protocol === 'cas') {
+            return this._buildCasAuthorizeUrl(options);
+        }
+        throw new Error('不支持的协议类型，请在初始化 AuthenticationClient 时传入 protocol 参数，可选值为 oidc、oauth、saml、cas');
+    };
+    AuthenticationClient.prototype._buildOidcAuthorizeUrl = function (options) {
+        var map = {
+            appId: 'client_id',
+            scope: 'scope',
+            state: 'state',
+            nonce: 'nonce',
+            responseMode: 'response_mode',
+            responseType: 'response_type',
+            redirectUri: 'redirect_uri',
+            codeChallenge: 'code_challenge',
+            codeChallengeMethod: 'code_challenge_method'
+        };
+        var res = {
+            nonce: Math.random()
+                .toString()
+                .slice(2),
+            state: Math.random()
+                .toString()
+                .slice(2),
+            scope: 'openid profile email phone address',
+            client_id: this.options.appId,
+            redirect_uri: this.options.redirectUri,
+            response_type: 'code'
+        };
+        Object.keys(map).forEach(function (k) {
+            if (options && options[k]) {
+                if (k === 'scope' && options.scope.includes('offline_access')) {
+                    res.prompt = 'consent';
+                }
+                res[map[k]] = options[k];
+            }
+        });
+        var params = new URLSearchParams(res);
+        var authorizeUrl = this.baseClient.appHost + '/oidc/auth?' + params.toString();
+        return authorizeUrl;
+    };
+    AuthenticationClient.prototype._buildOauthAuthorizeUrl = function (options) {
+        var map = {
+            appId: 'client_id',
+            scope: 'scope',
+            state: 'state',
+            responseType: 'response_type',
+            redirectUri: 'redirect_uri'
+        };
+        var res = {
+            state: Math.random()
+                .toString()
+                .slice(2),
+            scope: 'user',
+            client_id: this.options.appId,
+            redirect_uri: this.options.redirectUri,
+            response_type: 'code'
+        };
+        Object.keys(map).forEach(function (k) {
+            if (options && options[k]) {
+                res[map[k]] = options[k];
+            }
+        });
+        var params = new URLSearchParams(res);
+        var authorizeUrl = this.baseClient.appHost + '/oauth/auth?' + params.toString();
+        return authorizeUrl;
+    };
+    AuthenticationClient.prototype._buildSamlAuthorizeUrl = function () {
+        return this.baseClient.appHost + '/api/v2/saml-idp/' + this.options.appId;
+    };
+    AuthenticationClient.prototype._buildCasAuthorizeUrl = function (options) {
+        if (options === null || options === void 0 ? void 0 : options.service) {
+            return this.baseClient.appHost + "/cas-idp/" + this.options.appId + "?service=" + (options === null || options === void 0 ? void 0 : options.service);
+        }
+        return this.baseClient.appHost + "/cas-idp/" + this.options.appId;
+    };
+    AuthenticationClient.prototype._buildCasLogoutUrl = function (options) {
+        if (options === null || options === void 0 ? void 0 : options.redirectUri) {
+            return (this.baseClient.appHost + '/cas-idp/logout?url=' + options.redirectUri);
+        }
+        return this.baseClient.appHost + "/cas-idp/logout";
+    };
+    AuthenticationClient.prototype._buildOidcLogoutUrl = function (options) {
+        if (options && !(options.idToken && options.redirectUri)) {
+            throw new Error('必须同时传入 idToken 和 redirectUri 参数，或者同时都不传入');
+        }
+        if (options === null || options === void 0 ? void 0 : options.redirectUri) {
+            return this.baseClient.appHost + "/oidc/session/end?id_token_hint=" + options.idToken + "&post_logout_redirect_uri=" + options.redirectUri;
+        }
+        return this.baseClient.appHost + "/oidc/session/end";
+    };
+    AuthenticationClient.prototype._buildEasyLogoutUrl = function (options) {
+        if (options === null || options === void 0 ? void 0 : options.redirectUri) {
+            return this.baseClient.appHost + "/login/profile/logout?redirect_uri=" + options.redirectUri;
+        }
+        return this.baseClient.appHost + "/login/profile/logout";
+    };
+    AuthenticationClient.prototype.buildLogoutUrl = function (options) {
+        if (this.options.protocol === 'cas') {
+            return this._buildCasLogoutUrl(options);
+        }
+        if (this.options.protocol === 'oidc' && (options === null || options === void 0 ? void 0 : options.expert)) {
+            return this._buildOidcLogoutUrl(options);
+        }
+        return this._buildEasyLogoutUrl(options);
+    };
+    AuthenticationClient.prototype._getNewAccessTokenByRefreshTokenWithClientSecretPost = function (refreshToken) {
+        return __awaiter(this, void 0, void 0, function () {
+            var qstr, api, tokenSet;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        qstr = this._generateTokenRequest({
+                            client_id: this.options.appId,
+                            client_secret: this.options.secret,
+                            grant_type: 'refresh_token',
+                            refresh_token: refreshToken
+                        });
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token";
+                        }
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: qstr,
+                                headers: {
+                                    'Content-Type': 'application/x-www-form-urlencoded'
+                                }
+                            })];
+                    case 1:
+                        tokenSet = _a.sent();
+                        return [2 /*return*/, tokenSet];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype._getNewAccessTokenByRefreshTokenWithClientSecretBasic = function (refreshToken) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, qstr, tokenSet;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token";
+                        }
+                        qstr = this._generateTokenRequest({
+                            grant_type: 'refresh_token',
+                            refresh_token: refreshToken
+                        });
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                data: qstr,
+                                method: 'POST',
+                                url: api,
+                                headers: {
+                                    Authorization: this._generateBasicAuthToken()
+                                }
+                            })];
+                    case 1:
+                        tokenSet = _a.sent();
+                        return [2 /*return*/, tokenSet];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype._getNewAccessTokenByRefreshTokenWithNone = function (refreshToken) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, qstr, tokenSet;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token";
+                        }
+                        qstr = this._generateTokenRequest({
+                            client_id: this.options.appId,
+                            grant_type: 'refresh_token',
+                            refresh_token: refreshToken
+                        });
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: qstr
+                            })];
+                    case 1:
+                        tokenSet = _a.sent();
+                        return [2 /*return*/, tokenSet];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype.getNewAccessTokenByRefreshToken = function (refreshToken) {
+        return __awaiter(this, void 0, void 0, function () {
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        if (!['oauth', 'oidc'].includes(this.options.protocol)) {
+                            throw new Error('初始化 AuthenticationClient 时传入的 protocol 参数必须为 oauth 或 oidc，请检查参数');
+                        }
+                        if (!this.options.secret &&
+                            this.options.tokenEndPointAuthMethod !== 'none') {
+                            throw new Error('请在初始化 AuthenticationClient 时传入 appId 和 secret 参数');
+                        }
+                        if (!(this.options.tokenEndPointAuthMethod === 'client_secret_post')) return [3 /*break*/, 2];
+                        return [4 /*yield*/, this._getNewAccessTokenByRefreshTokenWithClientSecretPost(refreshToken)];
+                    case 1: return [2 /*return*/, _a.sent()];
+                    case 2:
+                        if (!(this.options.tokenEndPointAuthMethod === 'client_secret_basic')) return [3 /*break*/, 4];
+                        return [4 /*yield*/, this._getNewAccessTokenByRefreshTokenWithClientSecretBasic(refreshToken)];
+                    case 3: return [2 /*return*/, _a.sent()];
+                    case 4:
+                        if (!(this.options.tokenEndPointAuthMethod === 'none')) return [3 /*break*/, 6];
+                        return [4 /*yield*/, this._getNewAccessTokenByRefreshTokenWithNone(refreshToken)];
+                    case 5: return [2 /*return*/, _a.sent()];
+                    case 6: return [2 /*return*/];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype._revokeTokenWithClientSecretPost = function (token) {
+        return __awaiter(this, void 0, void 0, function () {
+            var qstr, api, tokenSet;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        qstr = this._generateTokenRequest({
+                            client_id: this.options.appId,
+                            client_secret: this.options.secret,
+                            token: token
+                        });
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token/revocation";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token/revocation";
+                        }
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: qstr,
+                                headers: {
+                                    'Content-Type': 'application/x-www-form-urlencoded'
+                                }
+                            })];
+                    case 1:
+                        tokenSet = _a.sent();
+                        return [2 /*return*/, tokenSet];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype._revokeTokenWithClientSecretBasic = function (token) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, qstr, result;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token/revocation";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            throw new Error('OAuth 2.0 暂不支持用 client_secret_basic 模式身份验证撤回 Token');
+                            api = this.baseClient.appHost + "/oauth/token/revocation";
+                        }
+                        qstr = this._generateTokenRequest({
+                            token: token
+                        });
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                data: qstr,
+                                method: 'POST',
+                                url: api,
+                                headers: {
+                                    Authorization: this._generateBasicAuthToken()
+                                }
+                            })];
+                    case 1:
+                        result = _a.sent();
+                        return [2 /*return*/, result];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype._revokeTokenWithNone = function (token) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, qstr, result;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token/revocation";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token/revocation";
+                        }
+                        qstr = this._generateTokenRequest({
+                            client_id: this.options.appId,
+                            token: token
+                        });
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: qstr
+                            })];
+                    case 1:
+                        result = _a.sent();
+                        return [2 /*return*/, result];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype.revokeToken = function (token) {
+        return __awaiter(this, void 0, void 0, function () {
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        if (!['oauth', 'oidc'].includes(this.options.protocol)) {
+                            throw new Error('初始化 AuthenticationClient 时传入的 protocol 参数必须为 oauth 或 oidc，请检查参数');
+                        }
+                        if (!this.options.secret &&
+                            this.options.revocationEndPointAuthMethod !== 'none') {
+                            throw new Error('请在初始化 AuthenticationClient 时传入 appId 和 secret 参数');
+                        }
+                        if (!(this.options.revocationEndPointAuthMethod === 'client_secret_post')) return [3 /*break*/, 2];
+                        return [4 /*yield*/, this._revokeTokenWithClientSecretPost(token)];
+                    case 1:
+                        _a.sent();
+                        return [2 /*return*/, true];
+                    case 2:
+                        if (!(this.options.revocationEndPointAuthMethod === 'client_secret_basic')) return [3 /*break*/, 4];
+                        return [4 /*yield*/, this._revokeTokenWithClientSecretBasic(token)];
+                    case 3:
+                        _a.sent();
+                        return [2 /*return*/, true];
+                    case 4:
+                        if (!(this.options.revocationEndPointAuthMethod === 'none')) return [3 /*break*/, 6];
+                        return [4 /*yield*/, this._revokeTokenWithNone(token)];
+                    case 5:
+                        _a.sent();
+                        return [2 /*return*/, true];
+                    case 6: throw new Error('初始化 AuthenticationClient 时传入的 revocationEndPointAuthMethod 参数可选值为 client_secret_base、client_secret_post、none，请检查参数');
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype._introspectTokenWithClientSecretPost = function (token) {
+        return __awaiter(this, void 0, void 0, function () {
+            var qstr, api, tokenSet;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        qstr = this._generateTokenRequest({
+                            client_id: this.options.appId,
+                            client_secret: this.options.secret,
+                            token: token
+                        });
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token/introspection";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token/introspection";
+                        }
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: qstr,
+                                headers: {
+                                    'Content-Type': 'application/x-www-form-urlencoded'
+                                }
+                            })];
+                    case 1:
+                        tokenSet = _a.sent();
+                        return [2 /*return*/, tokenSet];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype._introspectTokenWithClientSecretBasic = function (token) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, qstr, result;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token/introspection";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token/introspection";
+                        }
+                        qstr = this._generateTokenRequest({
+                            token: token
+                        });
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                data: qstr,
+                                method: 'POST',
+                                url: api,
+                                headers: {
+                                    Authorization: this._generateBasicAuthToken()
+                                }
+                            })];
+                    case 1:
+                        result = _a.sent();
+                        return [2 /*return*/, result];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype._introspectTokenWithNone = function (token) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, qstr, result;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        api = '';
+                        if (this.options.protocol === 'oidc') {
+                            api = this.baseClient.appHost + "/oidc/token/introspection";
+                        }
+                        else if (this.options.protocol === 'oauth') {
+                            api = this.baseClient.appHost + "/oauth/token/introspection";
+                        }
+                        qstr = this._generateTokenRequest({
+                            client_id: this.options.appId,
+                            token: token
+                        });
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'POST',
+                                url: api,
+                                data: qstr
+                            })];
+                    case 1:
+                        result = _a.sent();
+                        return [2 /*return*/, result];
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype.introspectToken = function (token) {
+        return __awaiter(this, void 0, void 0, function () {
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        if (!['oauth', 'oidc'].includes(this.options.protocol)) {
+                            throw new Error('初始化 AuthenticationClient 时传入的 protocol 参数必须为 oauth 或 oidc，请检查参数');
+                        }
+                        if (!this.options.secret &&
+                            this.options.introspectionEndPointAuthMethod !== 'none') {
+                            throw new Error('请在初始化 AuthenticationClient 时传入 appId 和 secret 参数');
+                        }
+                        if (!(this.options.introspectionEndPointAuthMethod === 'client_secret_post')) return [3 /*break*/, 2];
+                        return [4 /*yield*/, this._introspectTokenWithClientSecretPost(token)];
+                    case 1: return [2 /*return*/, _a.sent()];
+                    case 2:
+                        if (!(this.options.introspectionEndPointAuthMethod === 'client_secret_basic')) return [3 /*break*/, 4];
+                        return [4 /*yield*/, this._introspectTokenWithClientSecretBasic(token)];
+                    case 3: return [2 /*return*/, _a.sent()];
+                    case 4:
+                        if (!(this.options.introspectionEndPointAuthMethod === 'none')) return [3 /*break*/, 6];
+                        return [4 /*yield*/, this._introspectTokenWithNone(token)];
+                    case 5: return [2 /*return*/, _a.sent()];
+                    case 6: throw new Error('初始化 AuthenticationClient 时传入的 introspectionEndPointAuthMethod 参数可选值为 client_secret_base、client_secret_post、none，请检查参数');
+                }
+            });
+        });
+    };
+    AuthenticationClient.prototype.validateTicketV1 = function (ticket, service) {
+        return __awaiter(this, void 0, void 0, function () {
+            var api, result, _a, valid, username;
+            return __generator(this, function (_b) {
+                switch (_b.label) {
+                    case 0:
+                        api = this.baseClient.appHost + "/cas-idp/" + this.options.appId + "/validate";
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                method: 'GET',
+                                url: api,
+                                params: {
+                                    service: service,
+                                    ticket: ticket
+                                }
+                            })];
+                    case 1:
+                        result = _b.sent();
+                        _a = result.split('\n'), valid = _a[0], username = _a[1];
+                        return [2 /*return*/, __assign(__assign({ valid: valid === 'yes' }, (username && { username: username })), (valid !== 'yes' && { message: 'ticket 不合法' }))];
+                }
+            });
+        });
+    };
+    /**
+     * 判断 "我" 是否有某个角色
+     * @param roleCode 角色 Code
+     * @param namespace 权限分组 ID
+     */
+    AuthenticationClient.prototype.hasRole = function (roleCode, namespace) {
+        return __awaiter(this, void 0, void 0, function () {
+            var user, roleList, hasRole;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, getUserRoles(this.graphqlClient, this.tokenProvider, {
+                            id: this.checkLoggedIn(),
+                            namespace: namespace
+                        })];
+                    case 1:
+                        user = (_a.sent()).user;
+                        if (!user) {
+                            return [2 /*return*/, false];
+                        }
+                        roleList = user.roles;
+                        if (roleList.totalCount < 1) {
+                            return [2 /*return*/, false];
+                        }
+                        hasRole = false;
+                        roleList.list.forEach(function (item) {
+                            if (item.code === roleCode) {
+                                hasRole = true;
+                            }
+                        });
+                        return [2 /*return*/, hasRole];
+                }
+            });
+        });
+    };
+    /**
+     * @description 获取当前用户能够访问的应用
+     */
+    AuthenticationClient.prototype.listApplications = function (params) {
+        return __awaiter(this, void 0, void 0, function () {
+            var _a, _b, page, _c, limit, data;
+            return __generator(this, function (_d) {
+                switch (_d.label) {
+                    case 0:
+                        _a = params || {}, _b = _a.page, page = _b === void 0 ? 1 : _b, _c = _a.limit, limit = _c === void 0 ? 10 : _c;
+                        return [4 /*yield*/, this.httpClient.request({
+                                url: this.baseClient.appHost + "/api/v2/users/me/applications/allowed?page=" + page + "&limit=" + limit,
+                                method: 'GET'
+                            })];
+                    case 1:
+                        data = _d.sent();
+                        return [2 /*return*/, data];
+                }
+            });
+        });
+    };
+    /**
+     * @description 检验 idToken 或 accessToken
+     */
+    AuthenticationClient.prototype.validateToken = function (options) {
+        return __awaiter(this, void 0, void 0, function () {
+            var data, data;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        if (!options) {
+                            throw new Error('请在传入的参数对象中包含 accessToken 或 idToken 字段');
+                        }
+                        if (options.accessToken && options.idToken) {
+                            throw new Error('accessToken 和 idToken 只能传入一个，不能同时传入');
+                        }
+                        if (!options.idToken) return [3 /*break*/, 2];
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                url: this.baseClient.appHost + "/api/v2/oidc/validate_token",
+                                method: 'GET',
+                                params: {
+                                    id_token: options.idToken
+                                }
+                            })];
+                    case 1:
+                        data = _a.sent();
+                        return [2 /*return*/, data];
+                    case 2:
+                        if (!options.accessToken) return [3 /*break*/, 4];
+                        return [4 /*yield*/, this.naiveHttpClient.request({
+                                url: this.baseClient.appHost + "/api/v2/oidc/validate_token",
+                                method: 'GET',
+                                params: {
+                                    access_token: options.accessToken
+                                }
+                            })];
+                    case 3:
+                        data = _a.sent();
+                        return [2 /*return*/, data];
+                    case 4: return [2 /*return*/];
+                }
+            });
+        });
+    };
+    return AuthenticationClient;
+}());
+export { AuthenticationClient };
+//# sourceMappingURL=data:application/json;base64,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