@agnostack/verifyd 1.0.0

package/CHANGELOG.md

@@ -0,0 +1,8 @@
+# 1.0.0 (2023-12-09)
+
+
+### Bug Fixes
+
+* initial commit ([150767d](https://github.com/agnostack/verifyd/commit/150767d7f258d18fa87412c45d8ddbb34464f694))
+* initial commit ([86ad844](https://github.com/agnostack/verifyd/commit/86ad8442946b5b293299d02f378511565e894d51))
+* initial commit ([1012dc3](https://github.com/agnostack/verifyd/commit/1012dc3806723e721c5786517f78eb6eb8abbf29))

package/CODE_OF_CONDUCT.md

@@ -0,0 +1,132 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+We as members, contributors, and leaders pledge to make participation in our
+community a harassment-free experience for everyone, regardless of age, body
+size, visible or invisible disability, ethnicity, sex characteristics, gender
+identity and expression, level of experience, education, socio-economic status,
+nationality, personal appearance, race, religion, or sexual identity
+and orientation.
+
+We pledge to act and interact in ways that contribute to an open, welcoming,
+diverse, inclusive, and healthy community.
+
+## Our Standards
+
+Examples of behavior that contributes to a positive environment for our
+community include:
+
+* Demonstrating empathy and kindness toward other people
+* Being respectful of differing opinions, viewpoints, and experiences
+* Giving and gracefully accepting constructive feedback
+* Accepting responsibility and apologizing to those affected by our mistakes,
+  and learning from the experience
+* Focusing on what is best not just for us as individuals, but for the
+  overall community
+
+Examples of unacceptable behavior include:
+
+* The use of sexualized language or imagery, and sexual attention or
+  advances of any kind
+* Trolling, insulting or derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or email
+  address, without their explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Enforcement Responsibilities
+
+Community leaders are responsible for clarifying and enforcing our standards of
+acceptable behavior and will take appropriate and fair corrective action in
+response to any behavior that they deem inappropriate, threatening, offensive,
+or harmful.
+
+Community leaders have the right and responsibility to remove, edit, or reject
+comments, commits, code, wiki edits, issues, and other contributions that are
+not aligned to this Code of Conduct, and will communicate reasons for moderation
+decisions when appropriate.
+
+## Scope
+
+This Code of Conduct applies within all community spaces, and also applies when
+an individual is officially representing the community in public spaces.
+Examples of representing our community include using an official e-mail address,
+posting via an official social media account, or acting as an appointed
+representative at an online or offline event.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported to the community leaders responsible for enforcement at info@agnostack.com.
+
+All complaints will be reviewed and investigated promptly and fairly.
+
+All community leaders are obligated to respect the privacy and security of the
+reporter of any incident.
+
+## Enforcement Guidelines
+
+Community leaders will follow these Community Impact Guidelines in determining
+the consequences for any action they deem in violation of this Code of Conduct:
+
+### 1. Correction
+
+**Community Impact**: Use of inappropriate language or other behavior deemed
+unprofessional or unwelcome in the community.
+
+**Consequence**: A private, written warning from community leaders, providing
+clarity around the nature of the violation and an explanation of why the
+behavior was inappropriate. A public apology may be requested.
+
+### 2. Warning
+
+**Community Impact**: A violation through a single incident or series
+of actions.
+
+**Consequence**: A warning with consequences for continued behavior. No
+interaction with the people involved, including unsolicited interaction with
+those enforcing the Code of Conduct, for a specified period of time. This
+includes avoiding interactions in community spaces as well as external channels
+like social media. Violating these terms may lead to a temporary or
+permanent ban.
+
+### 3. Temporary Ban
+
+**Community Impact**: A serious violation of community standards, including
+sustained inappropriate behavior.
+
+**Consequence**: A temporary ban from any sort of interaction or public
+communication with the community for a specified period of time. No public or
+private interaction with the people involved, including unsolicited interaction
+with those enforcing the Code of Conduct, is allowed during this period.
+Violating these terms may lead to a permanent ban.
+
+### 4. Permanent Ban
+
+**Community Impact**: Demonstrating a pattern of violation of community
+standards, including sustained inappropriate behavior,  harassment of an
+individual, or aggression toward or disparagement of classes of individuals.
+
+**Consequence**: A permanent ban from any sort of public interaction within
+the community.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage],
+version 2.0, available at
+[https://www.contributor-covenant.org/version/2/0/code_of_conduct.html][v2.0].
+
+Community Impact Guidelines were inspired by 
+[Mozilla's code of conduct enforcement ladder][Mozilla CoC].
+
+For answers to common questions about this code of conduct, see the FAQ at
+[https://www.contributor-covenant.org/faq][FAQ]. Translations are available 
+at [https://www.contributor-covenant.org/translations][translations].
+
+[homepage]: https://www.contributor-covenant.org
+[v2.0]: https://www.contributor-covenant.org/version/2/0/code_of_conduct.html
+[Mozilla CoC]: https://github.com/mozilla/diversity
+[FAQ]: https://www.contributor-covenant.org/faq
+[translations]: https://www.contributor-covenant.org/translations

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2021-present agnoStack, Inc. and Adam Grohs
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,93 @@
+# @agnostack/verifyd
+![Test](https://github.com/agnostack/verifyd/actions/workflows/test.yml/badge.svg)
+## Installation
+
+```bash
+yarn add @agnostack/verifyd
+# npm install @agnostack/verifyd
+```
+
+## Quickstart - TODO
+
+Inside of `next.config.js`, add the following:
+```js
+const { withShopify } = require('@agnostack/verifyd')
+
+const manifestTemplate = require('./manifestTemplate.json')
+
+const nextConfig = withShopify({
+  zendesk: { manifestTemplate },
+})
+
+```
+
+Also, create an api route (`pages/api/apps.js`) containing the following:
+```js
+import getConfig from 'next/config'
+import { withShopify } from '@agnostack/verifyd'
+
+const { serverRuntimeConfig } = getConfig() ?? {}
+
+export default withShopify(serverRuntimeConfig)
+```
+
+
+## Alternate Option #1
+
+Inside of `next.config.js`, add the following:
+```js
+const { withPlugins } = require('@agnostack/next-plugins')
+const { withShopify } = require('@agnostack/verifyd')
+
+const manifest = require('./manifest.json')
+
+const nextPlugins = [{
+  [withShopify]: {
+    manifestTemplate: manifest,
+    /* NOTE: add optionale below
+    apiRoute: '/api/my-custom-api-json-route', // (defaults to /api/apps)
+    interactive: true, // (defaults to false)
+    data: {
+      plan: 'silver',
+      app_id: 123,
+      installation_id: 12434234,
+      my_token: 'myValue',
+      parameters: {
+        someToken: 'fksjdhfb231435',
+        someSecret: 123,
+      },
+    },
+    routes: {
+      background: '/background'
+      user_sidebar: '/noTicket',
+      organization_sidebar: '/noTicket',
+      ticket_sidebar: '/ticket',
+      new_ticket_sidebar: '/ticket',
+    },
+    */
+  },
+}]
+
+const nextConfig = withPlugins({
+  /* NOTE: standard nextConfig goes in here
+  reactStrictMode: true,
+  experimental: {
+    esmExternals: false,
+  },
+  */
+}, [nextPlugins])
+
+```
+
+Also, create an api route (`pages/api/apps.js`) containing the following:
+```js
+import getConfig from 'next/config'
+import { withShopify } from '@agnostack/verifyd'
+
+const { publicRuntimeConfig } = getConfig() ?? {}
+
+export default withShopify(publicRuntimeConfig)
+```
+
+
+_Contact [Adam Grohs](https://agnostack.com/founding-team/adam-grohs) @ [agnoStack](https://agnostack.com/) for any questions._

package/SECURITY.md

@@ -0,0 +1,18 @@
+# Security Policy
+
+## Supported Versions
+
+We release patches for security vulnerabilities. Which versions are eligible
+receiving such patches depend on the CVSS v3.0 Rating:
+
+| CVSS v3.0 | Supported Versions                        |
+| --------- | ----------------------------------------- |
+| X.y.y     | Current Major Release                     |
+| X.y.z     | Recent Minor Releases                     |
+
+## Reporting a Vulnerability
+
+Please report (suspected) security vulnerabilities to
+**[info@agnostack.com](mailto:info@agnostack.com)**. If the issue is confirmed,
+we will release a patch as soon as possible depending on complexity but
+historically within a few days.

package/dist/lib/index.d.ts

@@ -0,0 +1,4 @@
+export * from '../shared';
+export * from './utils';
+export * from './verification';
+//# sourceMappingURL=index.d.ts.map

package/dist/lib/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/lib/index.ts"],"names":[],"mappings":"AAAA,cAAc,WAAW,CAAA;AACzB,cAAc,SAAS,CAAA;AACvB,cAAc,gBAAgB,CAAA"}

package/dist/lib/index.js

@@ -0,0 +1,20 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("../shared"), exports);
+__exportStar(require("./utils"), exports);
+__exportStar(require("./verification"), exports);
+//# sourceMappingURL=index.js.map

package/dist/lib/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/lib/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,4CAAyB;AACzB,0CAAuB;AACvB,iDAA8B"}

package/dist/lib/types.d.ts

@@ -0,0 +1 @@
+//# sourceMappingURL=types.d.ts.map

package/dist/lib/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/lib/types.ts"],"names":[],"mappings":""}

package/dist/lib/types.js

@@ -0,0 +1 @@
+//# sourceMappingURL=types.js.map

package/dist/lib/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/lib/types.ts"],"names":[],"mappings":""}

package/dist/lib/utils/errors.d.ts

@@ -0,0 +1,6 @@
+export class VerificationError extends Error {
+    constructor(message: any, _data: any);
+    code: any;
+    data: any;
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/lib/utils/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../../src/lib/utils/errors.js"],"names":[],"mappings":"AAAA;IACE,sCAOC;IAJC,UAAgB;IAChB,UAAgB;CAInB"}

package/dist/lib/utils/errors.js

@@ -0,0 +1,26 @@
+"use strict";
+var __rest = (this && this.__rest) || function (s, e) {
+    var t = {};
+    for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p) && e.indexOf(p) < 0)
+        t[p] = s[p];
+    if (s != null && typeof Object.getOwnPropertySymbols === "function")
+        for (var i = 0, p = Object.getOwnPropertySymbols(s); i < p.length; i++) {
+            if (e.indexOf(p[i]) < 0 && Object.prototype.propertyIsEnumerable.call(s, p[i]))
+                t[p[i]] = s[p[i]];
+        }
+    return t;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.VerificationError = void 0;
+class VerificationError extends Error {
+    constructor(message, _data) {
+        super(message);
+        const _a = _data !== null && _data !== void 0 ? _data : {}, { code = 500 } = _a, data = __rest(_a, ["code"]);
+        this.code = code;
+        this.data = data;
+        this.name = 'VerificationError';
+        Object.setPrototypeOf(this, VerificationError.prototype);
+    }
+}
+exports.VerificationError = VerificationError;
+//# sourceMappingURL=errors.js.map

package/dist/lib/utils/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../../../src/lib/utils/errors.js"],"names":[],"mappings":";;;;;;;;;;;;;;AAAA,MAAa,iBAAkB,SAAQ,KAAK;IAC1C,YAAY,OAAO,EAAE,KAAK;QACxB,KAAK,CAAC,OAAO,CAAC,CAAA;QACd,MAAM,KAA0B,KAAK,aAAL,KAAK,cAAL,KAAK,GAAI,EAAE,EAArC,EAAE,IAAI,GAAG,GAAG,OAAyB,EAApB,IAAI,cAArB,QAAuB,CAAc,CAAA;QAC3C,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;QAChB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;QAChB,IAAI,CAAC,IAAI,GAAG,mBAAmB,CAAA;QAC/B,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,iBAAiB,CAAC,SAAS,CAAC,CAAA;IAC1D,CAAC;CACF;AATD,8CASC"}

package/dist/lib/utils/index.d.ts

@@ -0,0 +1,3 @@
+export * from "./errors";
+export * from "./rawbody";
+//# sourceMappingURL=index.d.ts.map

package/dist/lib/utils/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/lib/utils/index.js"],"names":[],"mappings":""}

package/dist/lib/utils/index.js

@@ -0,0 +1,19 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./errors"), exports);
+__exportStar(require("./rawbody"), exports);
+//# sourceMappingURL=index.js.map

package/dist/lib/utils/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/lib/utils/index.js"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CAAwB;AACxB,4CAAyB"}

package/dist/lib/utils/rawbody.d.ts

@@ -0,0 +1,2 @@
+export function ensureRawBody(req: any): Promise<any>;
+//# sourceMappingURL=rawbody.d.ts.map

package/dist/lib/utils/rawbody.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rawbody.d.ts","sourceRoot":"","sources":["../../../src/lib/utils/rawbody.js"],"names":[],"mappings":"AAgBO,sDAON"}

package/dist/lib/utils/rawbody.js

@@ -0,0 +1,60 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ensureRawBody = void 0;
+const getChunkedRawBody = (readable) => __awaiter(void 0, void 0, void 0, function* () {
+    if (readable === null || readable === void 0 ? void 0 : readable.rawBody) {
+        return readable.rawBody;
+    }
+    // TODO: move to req.text() after next 13.5: https://github.com/vercel/next.js/discussions/13405
+    try {
+        const getRawBody = (yield Promise.resolve().then(() => __importStar(require('raw-body')))).default;
+        return getRawBody(readable);
+    }
+    catch (error) {
+        console.error(`Failed to import 'raw-body', please ensure the dependency is installed`);
+        throw error;
+    }
+});
+// TODO: explore returning mutated request object adding on req.rawBody??
+const ensureRawBody = (req) => __awaiter(void 0, void 0, void 0, function* () {
+    return (getChunkedRawBody(req)
+        .then((_rawBody) => _rawBody.toString())
+        .catch((error) => {
+        console.error(`Error getting raw body for '${req === null || req === void 0 ? void 0 : req.url}'`, error);
+        throw error;
+    }));
+});
+exports.ensureRawBody = ensureRawBody;
+//# sourceMappingURL=rawbody.js.map

package/dist/lib/utils/rawbody.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rawbody.js","sourceRoot":"","sources":["../../../src/lib/utils/rawbody.js"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,MAAM,iBAAiB,GAAG,CAAO,QAAQ,EAAE,EAAE;IAC3C,IAAI,QAAQ,aAAR,QAAQ,uBAAR,QAAQ,CAAE,OAAO,EAAE;QACrB,OAAO,QAAQ,CAAC,OAAO,CAAA;KACxB;IAED,gGAAgG;IAChG,IAAI;QACF,MAAM,UAAU,GAAG,CAAC,wDAAa,UAAU,GAAC,CAAC,CAAC,OAAO,CAAA;QACrD,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAA;KAC5B;IAAC,OAAO,KAAK,EAAE;QACd,OAAO,CAAC,KAAK,CAAC,wEAAwE,CAAC,CAAA;QACvF,MAAM,KAAK,CAAA;KACZ;AACH,CAAC,CAAA,CAAA;AAED,yEAAyE;AAClE,MAAM,aAAa,GAAG,CAAO,GAAG,EAAE,EAAE;IAAC,OAAA,CAC1C,iBAAiB,CAAC,GAAG,CAAC;SACnB,IAAI,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC;SACvC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;QACf,OAAO,CAAC,KAAK,CAAC,+BAA+B,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,GAAG,GAAG,EAAE,KAAK,CAAC,CAAA;QAChE,MAAM,KAAK,CAAA;IACf,CAAC,CAAC,CACH,CAAA;EAAA,CAAA;AAPY,QAAA,aAAa,iBAOzB"}

package/dist/lib/verification.d.ts

@@ -0,0 +1,10 @@
+export function getVerificationHelpers({ keyPairs, crypto: _crypto, util: _util }?: {
+    keyPairs: any;
+    crypto: any;
+    util: any;
+}): (req: any, params: any) => Promise<{
+    rawBody: any;
+    requestBody: any;
+    processResponse: (response: any) => Promise<any>;
+}>;
+//# sourceMappingURL=verification.d.ts.map

package/dist/lib/verification.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"verification.d.ts","sourceRoot":"","sources":["../../src/lib/verification.js"],"names":[],"mappings":"AAgBO;;;;;;;;GA6FN"}

package/dist/lib/verification.js

@@ -0,0 +1,84 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getVerificationHelpers = void 0;
+const display_1 = require("../shared/display");
+const request_1 = require("../shared/request");
+const WebCrypto_1 = __importDefault(require("../shared/WebCrypto"));
+const utils_1 = require("./utils");
+const getVerificationHelpers = ({ keyPairs, crypto: _crypto, util: _util } = {}) => {
+    const webCrypto = new WebCrypto_1.default({ crypto: _crypto, util: _util });
+    return (req, params) => __awaiter(void 0, void 0, void 0, function* () {
+        var _a;
+        const { 'x-public-key': apiKey, 'x-ephemeral-key': ephemeralPublicKey, 'x-authorization-timestamp': customAuthTimestamp, 'x-authorization': customAuth, } = (_a = req.headers) !== null && _a !== void 0 ? _a : {};
+        const { uri: _uri, disableRecryption: _disableRecryption } = params !== null && params !== void 0 ? params : {};
+        const uri = _uri !== null && _uri !== void 0 ? _uri : req.url;
+        const disableRecryption = (0, display_1.isTrue)(_disableRecryption);
+        let isVerifiable;
+        try {
+            const [authProtocol, authSignature] = (0, display_1.ensureString)(customAuth).split(' ');
+            isVerifiable = (0, display_1.isTrue)(apiKey &&
+                ephemeralPublicKey &&
+                (keyPairs === null || keyPairs === void 0 ? void 0 : keyPairs.shared) &&
+                customAuthTimestamp &&
+                authSignature &&
+                (authProtocol === 'HMAC-SHA256'));
+            let verificationKeys;
+            const rawBody = yield (0, utils_1.ensureRawBody)(req);
+            // NOTE: requestBody should be wind up decrypted when isVerifiable (unless disableRecryption, then will pass through)
+            let requestBody = (0, display_1.safeParse)(rawBody);
+            // TEMP!!! remove isVerifiable check once webwidget moved to react
+            if (isVerifiable) {
+                if (!apiKey ||
+                    !ephemeralPublicKey ||
+                    !customAuthTimestamp ||
+                    !authSignature ||
+                    !(keyPairs === null || keyPairs === void 0 ? void 0 : keyPairs.shared) ||
+                    (apiKey !== keyPairs.shared.publicKey) ||
+                    (authProtocol !== 'HMAC-SHA256')) {
+                    throw new utils_1.VerificationError('Invalid or missing authorization', { code: 401 });
+                }
+                verificationKeys = yield webCrypto.getVerificationKeys({
+                    publicKey: ephemeralPublicKey,
+                    privateKey: keyPairs.shared.privateKey,
+                });
+                if (!verificationKeys) {
+                    throw new utils_1.VerificationError('Invalid or missing verification', { code: 412 });
+                }
+                const verificationPayload = (0, display_1.objectToSortedString)(Object.assign({ method: (0, request_1.getRequestMethod)(rawBody, req.method), timestamp: customAuthTimestamp, body: requestBody }, (0, request_1.normalizeURIParts)(uri)));
+                const isValid = yield webCrypto.verifyHMAC(verificationPayload, verificationKeys.derivedHMACKey, authSignature);
+                if (!isValid) {
+                    throw new utils_1.VerificationError('Invalid or missing verification', { code: 412 });
+                }
+                if (!disableRecryption && requestBody) {
+                    const decryptedMessage = yield webCrypto.decryptMessage(requestBody, verificationKeys.derivedSecretKey);
+                    requestBody = (0, display_1.safeParse)(decryptedMessage);
+                }
+            }
+            const processResponse = (response) => __awaiter(void 0, void 0, void 0, function* () {
+                if (!response || disableRecryption || !isVerifiable || !(verificationKeys === null || verificationKeys === void 0 ? void 0 : verificationKeys.derivedSecretKey)) {
+                    return response;
+                }
+                return webCrypto.encryptMessage(JSON.stringify(response), verificationKeys.derivedSecretKey);
+            });
+            return { rawBody, requestBody, processResponse };
+        }
+        catch (error) {
+            console.error(`Error handling request verification for '${uri}'`, { error, isVerifiable, disableRecryption });
+            throw error;
+        }
+    });
+};
+exports.getVerificationHelpers = getVerificationHelpers;
+//# sourceMappingURL=verification.js.map

package/dist/lib/verification.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"verification.js","sourceRoot":"","sources":["../../src/lib/verification.js"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,+CAK0B;AAC1B,+CAG0B;AAC1B,oEAA2C;AAC3C,mCAGgB;AAET,MAAM,sBAAsB,GAAG,CAAC,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAG,GAAG,EAAE,EAAE,EAAE;IACzF,MAAM,SAAS,GAAG,IAAI,mBAAS,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAA;IAEjE,OAAO,CAAO,GAAG,EAAE,MAAM,EAAE,EAAE;;QAC3B,MAAM,EACJ,cAAc,EAAE,MAAM,EACtB,iBAAiB,EAAE,kBAAkB,EACrC,2BAA2B,EAAE,mBAAmB,EAChD,iBAAiB,EAAE,UAAU,GAC9B,GAAG,MAAA,GAAG,CAAC,OAAO,mCAAI,EAAE,CAAA;QAErB,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,iBAAiB,EAAE,kBAAkB,EAAE,GAAG,MAAM,aAAN,MAAM,cAAN,MAAM,GAAI,EAAE,CAAA;QACzE,MAAM,GAAG,GAAG,IAAI,aAAJ,IAAI,cAAJ,IAAI,GAAI,GAAG,CAAC,GAAG,CAAA;QAC3B,MAAM,iBAAiB,GAAG,IAAA,gBAAM,EAAC,kBAAkB,CAAC,CAAA;QAEpD,IAAI,YAAY,CAAA;QAChB,IAAI;YACF,MAAM,CAAC,YAAY,EAAE,aAAa,CAAC,GAAG,IAAA,sBAAY,EAAC,UAAU,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;YACzE,YAAY,GAAG,IAAA,gBAAM,EACnB,MAAM;gBACN,kBAAkB;iBAClB,QAAQ,aAAR,QAAQ,uBAAR,QAAQ,CAAE,MAAM,CAAA;gBAChB,mBAAmB;gBACnB,aAAa;gBACb,CAAC,YAAY,KAAK,aAAa,CAAC,CACjC,CAAA;YAED,IAAI,gBAAgB,CAAA;YACpB,MAAM,OAAO,GAAG,MAAM,IAAA,qBAAa,EAAC,GAAG,CAAC,CAAA;YAExC,qHAAqH;YACrH,IAAI,WAAW,GAAG,IAAA,mBAAS,EAAC,OAAO,CAAC,CAAA;YAEpC,kEAAkE;YAClE,IAAI,YAAY,EAAE;gBAChB,IACE,CAAC,MAAM;oBACP,CAAC,kBAAkB;oBACnB,CAAC,mBAAmB;oBACpB,CAAC,aAAa;oBACd,CAAC,CAAA,QAAQ,aAAR,QAAQ,uBAAR,QAAQ,CAAE,MAAM,CAAA;oBACjB,CAAC,MAAM,KAAK,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC;oBACtC,CAAC,YAAY,KAAK,aAAa,CAAC,EAChC;oBACA,MAAM,IAAI,yBAAiB,CAAC,kCAAkC,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC,CAAA;iBAC/E;gBAED,gBAAgB,GAAG,MAAM,SAAS,CAAC,mBAAmB,CAAC;oBACrD,SAAS,EAAE,kBAAkB;oBAC7B,UAAU,EAAE,QAAQ,CAAC,MAAM,CAAC,UAAU;iBACvC,CAAC,CAAA;gBAEF,IAAI,CAAC,gBAAgB,EAAE;oBACrB,MAAM,IAAI,yBAAiB,CAAC,iCAAiC,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC,CAAA;iBAC9E;gBAED,MAAM,mBAAmB,GAAG,IAAA,8BAAoB,kBAC9C,MAAM,EAAE,IAAA,0BAAgB,EAAC,OAAO,EAAE,GAAG,CAAC,MAAM,CAAC,EAC7C,SAAS,EAAE,mBAAmB,EAC9B,IAAI,EAAE,WAAW,IACd,IAAA,2BAAiB,EAAC,GAAG,CAAC,EACzB,CAAA;gBAEF,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,UAAU,CACxC,mBAAmB,EACnB,gBAAgB,CAAC,cAAc,EAC/B,aAAa,CACd,CAAA;gBAED,IAAI,CAAC,OAAO,EAAE;oBACZ,MAAM,IAAI,yBAAiB,CAAC,iCAAiC,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC,CAAA;iBAC9E;gBAED,IAAI,CAAC,iBAAiB,IAAI,WAAW,EAAE;oBACrC,MAAM,gBAAgB,GAAG,MAAM,SAAS,CAAC,cAAc,CAAC,WAAW,EAAE,gBAAgB,CAAC,gBAAgB,CAAC,CAAA;oBACvG,WAAW,GAAG,IAAA,mBAAS,EAAC,gBAAgB,CAAC,CAAA;iBAC1C;aACF;YAED,MAAM,eAAe,GAAG,CAAO,QAAQ,EAAE,EAAE;gBACzC,IAAI,CAAC,QAAQ,IAAI,iBAAiB,IAAI,CAAC,YAAY,IAAI,CAAC,CAAA,gBAAgB,aAAhB,gBAAgB,uBAAhB,gBAAgB,CAAE,gBAAgB,CAAA,EAAE;oBAC1F,OAAO,QAAQ,CAAA;iBAChB;gBAED,OAAO,SAAS,CAAC,cAAc,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,gBAAgB,CAAC,gBAAgB,CAAC,CAAA;YAC9F,CAAC,CAAA,CAAA;YAED,OAAO,EAAE,OAAO,EAAE,WAAW,EAAE,eAAe,EAAE,CAAA;SACjD;QAAC,OAAO,KAAK,EAAE;YACd,OAAO,CAAC,KAAK,CAAC,4CAA4C,GAAG,GAAG,EAAE,EAAE,KAAK,EAAE,YAAY,EAAE,iBAAiB,EAAE,CAAC,CAAA;YAC7G,MAAM,KAAK,CAAA;SACZ;IACH,CAAC,CAAA,CAAA;AACH,CAAC,CAAA;AA7FY,QAAA,sBAAsB,0BA6FlC"}

package/dist/react/hooks/index.d.ts

@@ -0,0 +1,2 @@
+export * from "./useVerification";
+//# sourceMappingURL=index.d.ts.map

package/dist/react/hooks/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/react/hooks/index.js"],"names":[],"mappings":""}

package/dist/react/hooks/index.js

@@ -0,0 +1,18 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./useVerification"), exports);
+//# sourceMappingURL=index.js.map

package/dist/react/hooks/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/react/hooks/index.js"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,oDAAiC"}

package/dist/react/hooks/useVerification.d.ts

@@ -0,0 +1,8 @@
+export function useVerification({ publicKey, disableRecryption, ...params }?: {
+    publicKey: any;
+    disableRecryption: any;
+}): {
+    prepareVerification: (requestPath: any, requestOptions: any) => Promise<any[] | undefined>;
+    processResponse: (encryptedResponse: any, derivedSecretKey: any) => Promise<any>;
+};
+//# sourceMappingURL=useVerification.d.ts.map

package/dist/react/hooks/useVerification.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"useVerification.d.ts","sourceRoot":"","sources":["../../../src/react/hooks/useVerification.js"],"names":[],"mappings":"AAQO;;;;;;EA8BN"}