npm - @adobe/aio-commerce-lib-auth - Versions diffs - 0.1.0 → 0.2.0 - Mend

@adobe/aio-commerce-lib-auth 0.1.0 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (18) hide show

package/.turbo/turbo-build.log +10 -10
package/CHANGELOG.md +16 -0
package/README.md +74 -13
package/dist/cjs/index.cjs +179 -86
package/dist/cjs/index.d.cts +79 -30
package/dist/es/index.d.ts +79 -30
package/dist/es/index.js +176 -86
package/package.json +5 -2
package/source/index.ts +23 -2
package/source/lib/ims-auth/provider.ts +160 -0
package/source/lib/ims-auth/schema.ts +87 -0
package/source/lib/integration-auth/provider.ts +145 -0
package/source/lib/integration-auth/schema.ts +87 -0
package/test/ims-auth.test.ts +119 -41
package/test/integration-auth.test.ts +97 -34
package/source/lib/ims-auth.ts +0 -95
package/source/lib/integration-auth.ts +0 -95
package/source/lib/params.ts +0 -34

package/source/lib/ims-auth.ts DELETED Viewed

@@ -1,95 +0,0 @@
-/*
- * Copyright 2025 Adobe. All rights reserved.
- * This file is licensed to you under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License. You may obtain a copy
- * of the License at http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software distributed under
- * the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR REPRESENTATIONS
- * OF ANY KIND, either express or implied. See the License for the specific language
- * governing permissions and limitations under the License.
- */
-import { context, getToken } from "@adobe/aio-lib-ims";
-import { allNonEmpty } from "./params";
-const IMS_AUTH_HEADERS = ["Authorization", "x-api-key"] as const;
-const IMS_AUTH_PARAMS = [
-  "AIO_COMMERCE_IMS_CLIENT_ID",
-  "AIO_COMMERCE_IMS_CLIENT_SECRETS",
-  "AIO_COMMERCE_IMS_TECHNICAL_ACCOUNT_ID",
-  "AIO_COMMERCE_IMS_TECHNICAL_ACCOUNT_EMAIL",
-  "AIO_COMMERCE_IMS_IMS_ORG_ID",
-  "AIO_COMMERCE_IMS_SCOPES",
-  "AIO_COMMERCE_IMS_ENV",
-  "AIO_COMMERCE_IMS_CTX",
-] as const;
-/** Defines a union of allowed IMS authentication parameters. */
-export type ImsAuthParam = (typeof IMS_AUTH_PARAMS)[number];
-/** Defines a key-value map of IMS authentication parameters. */
-export type ImsAuthParams = Partial<Record<ImsAuthParam, string>>;
-/** Defines a union of allowed IMS authentication headers. */
-export type ImsAuthHeader = (typeof IMS_AUTH_HEADERS)[number];
-/** Defines a key-value map of IMS authentication headers. */
-export type ImsAuthHeaders = Record<ImsAuthHeader, string>;
-type ImsAccessToken = string;
-/** Defines an authentication provider for Adobe IMS. */
-export interface ImsAuthProvider {
-  getHeaders: () => Promise<ImsAuthHeaders>;
-  getAccessToken: () => Promise<ImsAccessToken>;
-}
-/**
- * If the required IMS parameters are present, this function returns an {@link ImsAuthProvider}.
- * @param params includes IMS parameters
- */
-export async function getImsAuthProvider(params: ImsAuthParams) {
-  const config = resolveImsConfig(params);
-  if (config) {
-    const contextName = params.AIO_COMMERCE_IMS_CTX ?? "aio-commerce-sdk-creds";
-    await context.set(contextName, config);
-    return {
-      getAccessToken: async () => getToken(contextName, {}),
-      getHeaders: async () => {
-        const accessToken = await getToken(contextName, {});
-        return {
-          Authorization: `Bearer ${accessToken}`,
-          "x-api-key": config.client_id,
-        };
-      },
-    } satisfies ImsAuthProvider;
-  }
-}
-function resolveImsConfig(params: ImsAuthParams) {
-  if (
-    allNonEmpty(params, [
-      "AIO_COMMERCE_IMS_CLIENT_ID",
-      "AIO_COMMERCE_IMS_CLIENT_SECRETS",
-      "AIO_COMMERCE_IMS_TECHNICAL_ACCOUNT_ID",
-      "AIO_COMMERCE_IMS_TECHNICAL_ACCOUNT_EMAIL",
-      "AIO_COMMERCE_IMS_IMS_ORG_ID",
-      "AIO_COMMERCE_IMS_SCOPES",
-    ])
-  ) {
-    return {
-      client_id: params.AIO_COMMERCE_IMS_CLIENT_ID,
-      client_secrets: JSON.parse(
-        params.AIO_COMMERCE_IMS_CLIENT_SECRETS ?? "[]",
-      ) as string[],
-      technical_account_id: params.AIO_COMMERCE_IMS_TECHNICAL_ACCOUNT_ID,
-      technical_account_email: params.AIO_COMMERCE_IMS_TECHNICAL_ACCOUNT_EMAIL,
-      ims_org_id: params.AIO_COMMERCE_IMS_IMS_ORG_ID,
-      scopes: JSON.parse(params.AIO_COMMERCE_IMS_SCOPES ?? "[]") as string[],
-      environment: params.AIO_COMMERCE_IMS_ENV ?? "prod",
-    };
-  }
-}

package/source/lib/integration-auth.ts DELETED Viewed

@@ -1,95 +0,0 @@
-/*
- * Copyright 2025 Adobe. All rights reserved.
- * This file is licensed to you under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License. You may obtain a copy
- * of the License at http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software distributed under
- * the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR REPRESENTATIONS
- * OF ANY KIND, either express or implied. See the License for the specific language
- * governing permissions and limitations under the License.
- */
-import crypto from "node:crypto";
-import OAuth1a from "oauth-1.0a";
-import { allNonEmpty } from "./params";
-const HTTP_METHODS = ["GET", "POST", "PUT", "PATCH", "DELETE"] as const;
-const INTEGRATION_AUTH_HEADERS = ["Authorization"] as const;
-const INTEGRATION_AUTH_PARAMS = [
-  "AIO_COMMERCE_INTEGRATIONS_CONSUMER_KEY",
-  "AIO_COMMERCE_INTEGRATIONS_CONSUMER_SECRET",
-  "AIO_COMMERCE_INTEGRATIONS_ACCESS_TOKEN",
-  "AIO_COMMERCE_INTEGRATIONS_ACCESS_TOKEN_SECRET",
-] as const;
-/** Defines a union of allowed integration authentication parameters. */
-export type IntegrationAuthParam = (typeof INTEGRATION_AUTH_PARAMS)[number];
-/** Defines a key-value map of integration authentication parameters. */
-export type IntegrationAuthParams = Partial<
-  Record<IntegrationAuthParam, string>
->;
-/** Defines a union of allowed integration authentication headers. */
-export type IntegrationAuthHeader = (typeof INTEGRATION_AUTH_HEADERS)[number];
-/** Defines a key-value map of integration authentication headers. */
-export type IntegrationAuthHeaders = Record<IntegrationAuthHeader, string>;
-type HttpMethod = (typeof HTTP_METHODS)[number];
-/** Defines an authentication provider for integration authentication. */
-export interface IntegrationAuthProvider {
-  getHeaders: (method: HttpMethod, url: string) => IntegrationAuthHeaders;
-}
-/**
- * If the required integration parameters are present, this function returns an {@link IntegrationAuthProvider}.
- * @param params includes integration parameters
- */
-export function getIntegrationAuthProvider(params: IntegrationAuthParams) {
-  const config = resolveIntegrationConfig(params);
-  if (config) {
-    const oauth = new OAuth1a({
-      consumer: {
-        key: config.consumerKey,
-        secret: config.consumerSecret,
-      },
-      signature_method: "HMAC-SHA256",
-      hash_function: (baseString, key) =>
-        crypto.createHmac("sha256", key).update(baseString).digest("base64"),
-    });
-    const oauthToken = {
-      key: config.accessToken,
-      secret: config.accessTokenSecret,
-    };
-    return {
-      getHeaders(method: HttpMethod, url: string) {
-        return oauth.toHeader(oauth.authorize({ url, method }, oauthToken));
-      },
-    } satisfies IntegrationAuthProvider;
-  }
-}
-function resolveIntegrationConfig(params: IntegrationAuthParams) {
-  if (
-    allNonEmpty(params, [
-      "AIO_COMMERCE_INTEGRATIONS_CONSUMER_KEY",
-      "AIO_COMMERCE_INTEGRATIONS_CONSUMER_SECRET",
-      "AIO_COMMERCE_INTEGRATIONS_ACCESS_TOKEN",
-      "AIO_COMMERCE_INTEGRATIONS_ACCESS_TOKEN_SECRET",
-    ])
-  ) {
-    return {
-      consumerKey: params.AIO_COMMERCE_INTEGRATIONS_CONSUMER_KEY,
-      consumerSecret: params.AIO_COMMERCE_INTEGRATIONS_CONSUMER_SECRET,
-      accessToken: params.AIO_COMMERCE_INTEGRATIONS_ACCESS_TOKEN,
-      accessTokenSecret: params.AIO_COMMERCE_INTEGRATIONS_ACCESS_TOKEN_SECRET,
-    };
-  }
-}

package/source/lib/params.ts DELETED Viewed

@@ -1,34 +0,0 @@
-/*
- * Copyright 2025 Adobe. All rights reserved.
- * This file is licensed to you under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License. You may obtain a copy
- * of the License at http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software distributed under
- * the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR REPRESENTATIONS
- * OF ANY KIND, either express or implied. See the License for the specific language
- * governing permissions and limitations under the License.
- */
-/**
- * Checks if the given value is non-empty.
- *
- * @param name of the parameter. Required because of `aio app dev` compatibility: inputs mapped to undefined env vars come as $<input_name> in dev mode, but as '' in prod mode.
- * @param value of the parameter.
- */
-export function nonEmpty(name: string, value: string | undefined) {
-  const v = value?.trim();
-  return v !== undefined && v !== `$${name}`;
-}
-/**
- * Checks if all required parameters are non-empty.
- * @param params action input parameters.
- * @param required list of required parameter names.
- */
-export function allNonEmpty<const T extends string>(
-  params: Record<string, string | undefined>,
-  required: T[],
-): params is Required<Record<T, string> & Record<string, string>> {
-  return required.every((name) => nonEmpty(name, params[name]));
-}