npm - @alien_org/sso-sdk-core - Versions diffs - 1.0.12 → 1.0.14 - Mend

@alien_org/sso-sdk-core 1.0.12 → 1.0.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (16) hide show

package/dist/index.cjs ADDED Viewed

@@ -0,0 +1 @@

+ "use strict";var d=(a,o,s)=>new Promise((n,r)=>{var t=i=>{try{h(s.next(i))}catch(g){r(g)}},c=i=>{try{h(s.throw(i))}catch(g){r(g)}},h=i=>i.done?n(i.value):Promise.resolve(i.value).then(t,c);h((s=s.apply(a,o)).next())});Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});const e=require("zod/v4-mini"),j=require("js-sha256"),S=e.z.object({code_challenge:e.z.string(),code_challenge_method:e.z.literal("S256")}),f=e.z.object({deep_link:e.z.string(),polling_code:e.z.string(),expired_at:e.z.number()}),_=e.z.object({polling_code:e.z.string()}),v=["pending","authorized","rejected","expired"],T=e.z.enum(v),m=e.z.object({status:T,authorization_code:e.z.optional(e.z.string())}),z=e.z.object({authorization_code:e.z.string(),code_verifier:e.z.string()}),y=e.z.object({access_token:e.z.string()}),R=e.z.object({access_token:e.z.string()}),k=e.z.object({is_valid:e.z.boolean(),access_token:e.z.optional(e.z.string())}),b=e.z.object({app_callback_session_address:e.z.string(),expired_at:e.z.number(),issued_at:e.z.number()});function w(a){return btoa(a).replace(/\+/g,"-").replace(/\//g,"_").replace(/=/g,"")}function u(a){let o=a.replace(/-/g,"+").replace(/_/g,"/");for(;o.length%4;)o+="=";return atob(o)}const C="https://sso.alien.com",E=5e3,l="alien-sso_",p=(a,o)=>new URL(o,a).toString(),A=e.z.object({ssoBaseUrl:e.z.url(),providerAddress:e.z.string(),pollingInterval:e.z.optional(e.z.number())});class P{constructor(o){this.config=A.parse(o),this.ssoBaseUrl=this.config.ssoBaseUrl||C,this.providerAddress=this.config.providerAddress,this.pollingInterval=this.config.pollingInterval||E}generateCodeVerifier(o=128){let s;const n=typeof window!="undefined"&&window.crypto;if(n&&n.getRandomValues)s=new Uint8Array(o),n.getRandomValues(s);else{s=new Uint8Array(o);for(let t=0;t<o;t++)s[t]=Math.floor(Math.random()*256)}let r="";for(let t=0;t<s.length;t++)r+=String.fromCharCode(s[t]);return w(r)}generateCodeChallenge(o){return j.sha256(o)}generateDeeplink(){return d(this,null,function*(){const o=this.generateCodeVerifier(),s=this.generateCodeChallenge(o);sessionStorage.setItem(l+"code_verifier",o);const n=`${this.config.ssoBaseUrl}/sso/authorize`,r={code_challenge:s,code_challenge_method:"S256"};S.parse(r);const c=yield(yield fetch(n,{method:"POST",headers:{"Content-Type":"application/json","X-PROVIDER-ADDRESS":this.providerAddress},body:JSON.stringify(r)})).json();return f.parse(c)})}pollAuth(o){return d(this,null,function*(){const s={polling_code:o};_.parse(s);const n=yield fetch(p(this.config.ssoBaseUrl,"/sso/poll"),{method:"POST",headers:{"Content-Type":"application/json","X-PROVIDER-ADDRESS":this.providerAddress},body:JSON.stringify(s)});if(!n.ok)throw new Error(`Poll failed: ${n.statusText}`);const r=yield n.json();return m.parse(r)})}exchangeToken(o){return d(this,null,function*(){const s=sessionStorage.getItem(l+"code_verifier");if(!s)throw new Error("Missing code verifier.");const n={authorization_code:o,code_verifier:s};z.parse(n);const r=yield fetch(p(this.config.ssoBaseUrl,"/sso/access_token/exchange"),{method:"POST",headers:{"Content-Type":"application/json","X-PROVIDER-ADDRESS":this.providerAddress},body:JSON.stringify(n)});if(!r.ok)throw new Error(`ExchangeCode failed: ${r.statusText}`);const t=yield r.json(),c=y.parse(t);if(c.access_token)return localStorage.setItem(l+"access_token",c.access_token),c.access_token;throw new Error("Exchange failed")})}verifyAuth(){return d(this,null,function*(){const o=this.getAccessToken();if(!o)return!1;const s={access_token:o};R.parse(s);const n=yield fetch(p(this.config.ssoBaseUrl,"/sso/access_token/verify"),{method:"POST",headers:{"Content-Type":"application/json","X-PROVIDER-ADDRESS":this.providerAddress},body:JSON.stringify(s)});if(!n.ok)return!1;const r=yield n.json(),t=k.parse(r);return t.access_token&&localStorage.setItem(l+"access_token",t.access_token),t.is_valid})}getAccessToken(){return localStorage.getItem(l+"access_token")}getAuthData(){const o=this.getAccessToken();if(!o)return null;const s=o.split(".");if(s.length!==3)return null;let n;try{const t=u(s[0]);n=JSON.parse(t)}catch(t){return null}if(n.alg!=="HS256"||n.typ!=="JWT")return null;let r;try{const t=JSON.parse(u(s[1]));r=b.parse(t)}catch(t){return null}return r}logout(){localStorage.removeItem(l+"access_token"),sessionStorage.removeItem(l+"code_verifier")}}exports.AlienSsoClient=P;exports.AlienSsoClientSchema=A;exports.AuthorizeRequestSchema=S;exports.AuthorizeResponseSchema=f;exports.ExchangeCodeRequestSchema=z;exports.ExchangeCodeResponseSchema=y;exports.PollRequestSchema=_;exports.PollResponseSchema=m;exports.TokenInfoSchema=b;exports.VerifyTokenRequestSchema=R;exports.VerifyTokenResponseSchema=k;

package/dist/index.d.ts CHANGED Viewed

@@ -1,3 +1,115 @@
-export * from './client';
-export * from './errors';
-export * from './schema';
+import { z } from 'zod/v4-mini';
+export declare class AlienSsoClient {
+    readonly config: AlienSsoClientConfig;
+    readonly pollingInterval: number;
+    readonly ssoBaseUrl: string;
+    readonly providerAddress: string;
+    constructor(config: AlienSsoClientConfig);
+    private generateCodeVerifier;
+    private generateCodeChallenge;
+    generateDeeplink(): Promise<AuthorizeResponse>;
+    pollAuth(pollingCode: string): Promise<PollResponse>;
+    exchangeToken(authorizationCode: string): Promise<string>;
+    verifyAuth(): Promise<boolean>;
+    getAccessToken(): string | null;
+    getAuthData(): TokenInfo | null;
+    logout(): void;
+}
+export declare type AlienSsoClientConfig = z.infer<typeof AlienSsoClientSchema>;
+export declare const AlienSsoClientSchema: z.ZodMiniObject<{
+    ssoBaseUrl: z.ZodMiniURL;
+    providerAddress: z.ZodMiniString<string>;
+    pollingInterval: z.ZodMiniOptional<z.ZodMiniNumber<number>>;
+}, z.core.$strip>;
+export declare type AuthorizeRequest = z.infer<typeof AuthorizeRequestSchema>;
+/**
+ * Authorize request/response schema
+ */
+export declare const AuthorizeRequestSchema: z.ZodMiniObject<{
+    code_challenge: z.ZodMiniString<string>;
+    code_challenge_method: z.ZodMiniLiteral<"S256">;
+}, z.core.$strip>;
+export declare type AuthorizeResponse = z.infer<typeof AuthorizeResponseSchema>;
+export declare const AuthorizeResponseSchema: z.ZodMiniObject<{
+    deep_link: z.ZodMiniString<string>;
+    polling_code: z.ZodMiniString<string>;
+    expired_at: z.ZodMiniNumber<number>;
+}, z.core.$strip>;
+export declare type ExchangeCodeRequest = z.infer<typeof ExchangeCodeRequestSchema>;
+/**
+ * ExchangeCode request/response schema
+ */
+export declare const ExchangeCodeRequestSchema: z.ZodMiniObject<{
+    authorization_code: z.ZodMiniString<string>;
+    code_verifier: z.ZodMiniString<string>;
+}, z.core.$strip>;
+export declare type ExchangeCodeResponse = z.infer<typeof ExchangeCodeResponseSchema>;
+export declare const ExchangeCodeResponseSchema: z.ZodMiniObject<{
+    access_token: z.ZodMiniString<string>;
+}, z.core.$strip>;
+export declare interface JWTHeader {
+    alg: string;
+    typ: string;
+}
+export declare type PollRequest = z.infer<typeof PollRequestSchema>;
+/**
+ * Poll request/response schema
+ */
+export declare const PollRequestSchema: z.ZodMiniObject<{
+    polling_code: z.ZodMiniString<string>;
+}, z.core.$strip>;
+export declare type PollResponse = z.infer<typeof PollResponseSchema>;
+export declare const PollResponseSchema: z.ZodMiniObject<{
+    status: z.ZodMiniEnum<{
+        pending: "pending";
+        authorized: "authorized";
+        rejected: "rejected";
+        expired: "expired";
+    }>;
+    authorization_code: z.ZodMiniOptional<z.ZodMiniString<string>>;
+}, z.core.$strip>;
+export declare type TokenInfo = z.infer<typeof TokenInfoSchema>;
+/**
+ * Token info schema
+ */
+export declare const TokenInfoSchema: z.ZodMiniObject<{
+    app_callback_session_address: z.ZodMiniString<string>;
+    expired_at: z.ZodMiniNumber<number>;
+    issued_at: z.ZodMiniNumber<number>;
+}, z.core.$strip>;
+export declare type VerifyTokenRequest = z.infer<typeof VerifyTokenRequestSchema>;
+/**
+ * VerifyToken request/response schema
+ */
+export declare const VerifyTokenRequestSchema: z.ZodMiniObject<{
+    access_token: z.ZodMiniString<string>;
+}, z.core.$strip>;
+export declare type VerifyTokenResponse = z.infer<typeof VerifyTokenResponseSchema>;
+export declare const VerifyTokenResponseSchema: z.ZodMiniObject<{
+    is_valid: z.ZodMiniBoolean<boolean>;
+    access_token: z.ZodMiniOptional<z.ZodMiniString<string>>;
+}, z.core.$strip>;
+export { }

package/dist/index.esm.js ADDED Viewed

@@ -0,0 +1,225 @@
+var d = (a, o, s) => new Promise((n, r) => {
+  var t = (i) => {
+    try {
+      h(s.next(i));
+    } catch (p) {
+      r(p);
+    }
+  }, c = (i) => {
+    try {
+      h(s.throw(i));
+    } catch (p) {
+      r(p);
+    }
+  }, h = (i) => i.done ? n(i.value) : Promise.resolve(i.value).then(t, c);
+  h((s = s.apply(a, o)).next());
+});
+import { z as e } from "zod/v4-mini";
+import { sha256 as f } from "js-sha256";
+const _ = e.object({
+  code_challenge: e.string(),
+  code_challenge_method: e.literal("S256")
+}), S = e.object({
+  deep_link: e.string(),
+  polling_code: e.string(),
+  expired_at: e.number()
+}), m = e.object({
+  polling_code: e.string()
+}), y = ["pending", "authorized", "rejected", "expired"], k = e.enum(y), b = e.object({
+  status: k,
+  authorization_code: e.optional(e.string())
+}), R = e.object({
+  authorization_code: e.string(),
+  code_verifier: e.string()
+}), A = e.object({
+  access_token: e.string()
+}), j = e.object({
+  access_token: e.string()
+}), v = e.object({
+  is_valid: e.boolean(),
+  access_token: e.optional(e.string())
+}), w = e.object({
+  app_callback_session_address: e.string(),
+  expired_at: e.number(),
+  issued_at: e.number()
+});
+function E(a) {
+  return btoa(a).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
+}
+function u(a) {
+  let o = a.replace(/-/g, "+").replace(/_/g, "/");
+  for (; o.length % 4; )
+    o += "=";
+  return atob(o);
+}
+const T = "https://sso.alien.com", C = 5e3, l = "alien-sso_", g = (a, o) => new URL(o, a).toString(), O = e.object({
+  ssoBaseUrl: e.url(),
+  providerAddress: e.string(),
+  pollingInterval: e.optional(e.number())
+});
+class x {
+  constructor(o) {
+    this.config = O.parse(o), this.ssoBaseUrl = this.config.ssoBaseUrl || T, this.providerAddress = this.config.providerAddress, this.pollingInterval = this.config.pollingInterval || C;
+  }
+  generateCodeVerifier(o = 128) {
+    let s;
+    const n = typeof window != "undefined" && window.crypto;
+    if (n && n.getRandomValues)
+      s = new Uint8Array(o), n.getRandomValues(s);
+    else {
+      s = new Uint8Array(o);
+      for (let t = 0; t < o; t++)
+        s[t] = Math.floor(Math.random() * 256);
+    }
+    let r = "";
+    for (let t = 0; t < s.length; t++)
+      r += String.fromCharCode(s[t]);
+    return E(r);
+  }
+  generateCodeChallenge(o) {
+    return f(o);
+  }
+  generateDeeplink() {
+    return d(this, null, function* () {
+      const o = this.generateCodeVerifier(), s = this.generateCodeChallenge(o);
+      sessionStorage.setItem(l + "code_verifier", o);
+      const n = `${this.config.ssoBaseUrl}/sso/authorize`, r = {
+        code_challenge: s,
+        code_challenge_method: "S256"
+      };
+      _.parse(r);
+      const c = yield (yield fetch(n, {
+        method: "POST",
+        headers: {
+          "Content-Type": "application/json",
+          "X-PROVIDER-ADDRESS": this.providerAddress
+        },
+        body: JSON.stringify(r)
+      })).json();
+      return S.parse(c);
+    });
+  }
+  pollAuth(o) {
+    return d(this, null, function* () {
+      const s = {
+        polling_code: o
+      };
+      m.parse(s);
+      const n = yield fetch(g(this.config.ssoBaseUrl, "/sso/poll"), {
+        method: "POST",
+        headers: {
+          "Content-Type": "application/json",
+          "X-PROVIDER-ADDRESS": this.providerAddress
+        },
+        body: JSON.stringify(s)
+      });
+      if (!n.ok)
+        throw new Error(`Poll failed: ${n.statusText}`);
+      const r = yield n.json();
+      return b.parse(r);
+    });
+  }
+  exchangeToken(o) {
+    return d(this, null, function* () {
+      const s = sessionStorage.getItem(l + "code_verifier");
+      if (!s) throw new Error("Missing code verifier.");
+      const n = {
+        authorization_code: o,
+        code_verifier: s
+      };
+      R.parse(n);
+      const r = yield fetch(
+        g(this.config.ssoBaseUrl, "/sso/access_token/exchange"),
+        {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+            "X-PROVIDER-ADDRESS": this.providerAddress
+          },
+          body: JSON.stringify(n)
+        }
+      );
+      if (!r.ok)
+        throw new Error(`ExchangeCode failed: ${r.statusText}`);
+      const t = yield r.json(), c = A.parse(t);
+      if (c.access_token)
+        return localStorage.setItem(
+          l + "access_token",
+          c.access_token
+        ), c.access_token;
+      throw new Error("Exchange failed");
+    });
+  }
+  verifyAuth() {
+    return d(this, null, function* () {
+      const o = this.getAccessToken();
+      if (!o)
+        return !1;
+      const s = {
+        access_token: o
+      };
+      j.parse(s);
+      const n = yield fetch(
+        g(this.config.ssoBaseUrl, "/sso/access_token/verify"),
+        {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+            "X-PROVIDER-ADDRESS": this.providerAddress
+          },
+          body: JSON.stringify(s)
+        }
+      );
+      if (!n.ok)
+        return !1;
+      const r = yield n.json(), t = v.parse(r);
+      return t.access_token && localStorage.setItem(
+        l + "access_token",
+        t.access_token
+      ), t.is_valid;
+    });
+  }
+  getAccessToken() {
+    return localStorage.getItem(l + "access_token");
+  }
+  getAuthData() {
+    const o = this.getAccessToken();
+    if (!o) return null;
+    const s = o.split(".");
+    if (s.length !== 3)
+      return null;
+    let n;
+    try {
+      const t = u(s[0]);
+      n = JSON.parse(t);
+    } catch (t) {
+      return null;
+    }
+    if (n.alg !== "HS256" || n.typ !== "JWT")
+      return null;
+    let r;
+    try {
+      const t = JSON.parse(u(s[1]));
+      r = w.parse(t);
+    } catch (t) {
+      return null;
+    }
+    return r;
+  }
+  logout() {
+    localStorage.removeItem(l + "access_token"), sessionStorage.removeItem(l + "code_verifier");
+  }
+}
+export {
+  x as AlienSsoClient,
+  O as AlienSsoClientSchema,
+  _ as AuthorizeRequestSchema,
+  S as AuthorizeResponseSchema,
+  R as ExchangeCodeRequestSchema,
+  A as ExchangeCodeResponseSchema,
+  m as PollRequestSchema,
+  b as PollResponseSchema,
+  w as TokenInfoSchema,
+  j as VerifyTokenRequestSchema,
+  v as VerifyTokenResponseSchema
+};

package/dist/index.umd.js ADDED Viewed

@@ -0,0 +1 @@

package/package.json CHANGED Viewed

@@ -1,23 +1,27 @@
 {
   "name": "@alien_org/sso-sdk-core",
-  "version": "1.0.12",
+  "version": "1.0.14",
   "repository": {
     "type": "git",
     "url": "git+https://github.com/alien-id/sso-sdk-js.git"
   },
+  "main": "./dist/index.cjs",
+  "module": "./dist/index.esm.js",
+  "types": "./dist/index.d.ts",
   "exports": {
-    ".": "./dist/index.js",
-    "./*": "./dist/*.js"
-  },
-  "types": "./dist/types/index.d.ts",
-  "typesVersions": {
-    "*": {
-      "*": ["dist/types/*.d.ts"]
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.esm.js",
+      "require": "./dist/index.cjs"
     }
   },
-  "files": ["dist", "README.md"],
+  "files": [
+    "dist",
+    "README.md"
+  ],
   "scripts": {
-    "build": "tsc",
+    "build": "vite build",
+    "dev": "vite build --watch",
     "test": "jest",
     "test:unit": "jest tests/unit",
     "test:integration": "jest tests/integration",
@@ -26,7 +30,6 @@
     "prepublishOnly": "npm run build"
   },
   "devDependencies": {
-    "@types/crypto-js": "^4.2.2",
     "@types/express": "^5.0.3",
     "@types/jest": "^30.0.0",
     "@types/node": "^24.3.0",
@@ -42,12 +45,12 @@
     "nock": "^14.0.10",
     "prettier": "^3.6.2",
     "ts-jest": "^29.4.1",
-    "turbo": "^2.5.6"
+    "turbo": "^2.5.6",
+    "vite": "^7.1.12",
+    "vite-plugin-dts": "^4.5.4"
   },
   "dependencies": {
-    "@noble/ed25519": "^3.0.0",
-    "base64url": "^3.0.1",
-    "crypto-js": "^4.2.0",
+    "js-sha256": "^0.11.1",
     "zod": "^4.1.5"
   }
 }

package/dist/client.d.ts DELETED Viewed

@@ -1,28 +0,0 @@
-import { AuthorizeResponse, TokenInfo } from './schema';
-import { z } from 'zod/v4-mini';
-export interface JWTHeader {
-    alg: string;
-    typ: string;
-}
-export declare const AlienSsoSdkClientSchema: z.ZodMiniObject<{
-    ssoBaseUrl: z.ZodMiniURL;
-    providerAddress: z.ZodMiniString<string>;
-    pollingInterval: z.ZodMiniOptional<z.ZodMiniNumber<number>>;
-}, z.core.$strip>;
-export type AlienSsoSdkClientConfig = z.infer<typeof AlienSsoSdkClientSchema>;
-export declare class AlienSsoSdkClient {
-    readonly config: AlienSsoSdkClientConfig;
-    readonly pollingInterval: number;
-    readonly ssoBaseUrl: string;
-    readonly providerAddress: string;
-    constructor(config: AlienSsoSdkClientConfig);
-    private generateCodeVerifier;
-    private generateCodeChallenge;
-    getAuthDeeplink(): Promise<AuthorizeResponse>;
-    pollAuth(pollingCode: string): Promise<string>;
-    exchangeToken(authorizationCode: string): Promise<string>;
-    verifyAuth(): Promise<boolean>;
-    getAccessToken(): string | null;
-    getAuthData(): TokenInfo | null;
-    logout(): void;
-}

package/dist/client.js DELETED Viewed

@@ -1,185 +0,0 @@
-import { AuthorizeResponseSchema, ExchangeCodeRequestSchema, ExchangeCodeResponseSchema, AuthorizeRequestSchema, PollRequestSchema, PollResponseSchema, TokenInfoSchema, VerifyTokenRequestSchema, VerifyTokenResponseSchema, } from './schema';
-import { z } from 'zod/v4-mini';
-import base64url from 'base64url';
-import CryptoJS from 'crypto-js';
-import { joinUrl } from './utils';
-const SSO_BASE_URL = 'https://sso.alien.com';
-const POLLING_INTERVAL = 5000;
-const STORAGE_KEY = 'alien-sso_';
-export const AlienSsoSdkClientSchema = z.object({
-    ssoBaseUrl: z.url(),
-    providerAddress: z.string(),
-    pollingInterval: z.optional(z.number()),
-});
-export class AlienSsoSdkClient {
-    constructor(config) {
-        this.config = AlienSsoSdkClientSchema.parse(config);
-        this.ssoBaseUrl = this.config.ssoBaseUrl || SSO_BASE_URL;
-        this.providerAddress = this.config.providerAddress;
-        this.pollingInterval = this.config.pollingInterval || POLLING_INTERVAL;
-    }
-    generateCodeVerifier(length = 128) {
-        let array;
-        const cryptoObj = typeof window !== 'undefined' && window.crypto;
-        if (cryptoObj && cryptoObj.getRandomValues) {
-            array = new Uint8Array(length);
-            cryptoObj.getRandomValues(array);
-        }
-        else {
-            array = new Uint8Array(length);
-            for (let i = 0; i < length; i++) {
-                array[i] = Math.floor(Math.random() * 256);
-            }
-        }
-        let str = '';
-        for (let i = 0; i < array.length; i++) {
-            str += String.fromCharCode(array[i]);
-        }
-        return base64url.encode(str);
-    }
-    async generateCodeChallenge(codeVerifier) {
-        return CryptoJS.SHA256(codeVerifier).toString(CryptoJS.enc.Hex);
-    }
-    async getAuthDeeplink() {
-        const codeVerifier = this.generateCodeVerifier();
-        const codeChallenge = await this.generateCodeChallenge(codeVerifier);
-        sessionStorage.setItem(STORAGE_KEY + 'code_verifier', codeVerifier);
-        const authorizeUrl = `${this.config.ssoBaseUrl}/sso/authorize`;
-        const authorizePayload = {
-            code_challenge: codeChallenge,
-            code_challenge_method: 'S256'
-        };
-        AuthorizeRequestSchema.parse(authorizePayload);
-        const response = await fetch(authorizeUrl, {
-            method: 'POST',
-            headers: {
-                'Content-Type': 'application/json',
-                'X-PROVIDER-ADDRESS': this.providerAddress,
-            },
-            body: JSON.stringify(authorizePayload),
-        });
-        const json = await response.json();
-        return AuthorizeResponseSchema.parse(json);
-    }
-    async pollAuth(pollingCode) {
-        const pollPayload = {
-            polling_code: pollingCode,
-        };
-        PollRequestSchema.parse(pollPayload);
-        while (true) {
-            const response = await fetch(joinUrl(this.config.ssoBaseUrl, '/sso/poll'), {
-                method: 'POST',
-                headers: {
-                    'Content-Type': 'application/json',
-                    'X-PROVIDER-ADDRESS': this.providerAddress,
-                },
-                body: JSON.stringify(pollPayload),
-            });
-            if (!response.ok) {
-                throw new Error(`Poll failed: ${response.statusText}`);
-            }
-            const json = await response.json();
-            const pollResponse = PollResponseSchema.parse(json);
-            if (pollResponse.status === 'authorized' &&
-                pollResponse.authorization_code) {
-                return pollResponse.authorization_code;
-            }
-            if (pollResponse.status === 'pending') {
-                await new Promise((resolve) => setTimeout(resolve, this.pollingInterval));
-            }
-            else {
-                throw new Error(`Poll failed`);
-            }
-        }
-    }
-    async exchangeToken(authorizationCode) {
-        const codeVerifier = sessionStorage.getItem(STORAGE_KEY + 'code_verifier');
-        if (!codeVerifier)
-            throw new Error('Missing code verifier.');
-        const exchangeCodePayload = {
-            authorization_code: authorizationCode,
-            code_verifier: codeVerifier,
-        };
-        ExchangeCodeRequestSchema.parse(exchangeCodePayload);
-        const response = await fetch(joinUrl(this.config.ssoBaseUrl, '/sso/access_token/exchange'), {
-            method: 'POST',
-            headers: {
-                'Content-Type': 'application/json',
-                'X-PROVIDER-ADDRESS': this.providerAddress,
-            },
-            body: JSON.stringify(exchangeCodePayload),
-        });
-        if (!response.ok) {
-            throw new Error(`ExchangeCode failed: ${response.statusText}`);
-        }
-        const json = await response.json();
-        const exchangeCodeResponse = ExchangeCodeResponseSchema.parse(json);
-        if (exchangeCodeResponse.access_token) {
-            localStorage.setItem(STORAGE_KEY + 'access_token', exchangeCodeResponse.access_token);
-            return exchangeCodeResponse.access_token;
-        }
-        else {
-            throw new Error('Exchange failed');
-        }
-    }
-    async verifyAuth() {
-        const access_token = this.getAccessToken();
-        if (!access_token) {
-            throw new Error('Access token is invalid.');
-        }
-        const verifyTokenPayload = {
-            access_token,
-        };
-        VerifyTokenRequestSchema.parse(verifyTokenPayload);
-        const response = await fetch(joinUrl(this.config.ssoBaseUrl, '/sso/access_token/verify'), {
-            method: 'POST',
-            headers: {
-                'Content-Type': 'application/json',
-                'X-PROVIDER-ADDRESS': this.providerAddress,
-            },
-            body: JSON.stringify(verifyTokenPayload),
-        });
-        if (!response.ok) {
-            throw new Error(`VerifyToken failed: ${response.statusText}`);
-        }
-        const json = await response.json();
-        const verifyTokenResponse = VerifyTokenResponseSchema.parse(json);
-        return verifyTokenResponse.is_valid;
-    }
-    getAccessToken() {
-        return localStorage.getItem(STORAGE_KEY + 'access_token');
-    }
-    getAuthData() {
-        const token = this.getAccessToken();
-        if (!token)
-            return null;
-        const tokenParts = token.split('.');
-        if (tokenParts.length !== 3) {
-            return null;
-        }
-        let header;
-        try {
-            const headerJson = base64url.decode(tokenParts[0]);
-            header = JSON.parse(headerJson);
-        }
-        catch {
-            return null;
-        }
-        if (header.alg !== 'HS256' || header.typ !== 'JWT') {
-            return null;
-        }
-        let payload;
-        try {
-            const payloadJson = JSON.parse(base64url.decode(tokenParts[1]));
-            payload = TokenInfoSchema.parse(payloadJson);
-        }
-        catch {
-            return null;
-        }
-        return payload;
-    }
-    logout() {
-        localStorage.removeItem(STORAGE_KEY + 'access_token');
-        sessionStorage.removeItem(STORAGE_KEY + 'code_verifier');
-    }
-}

package/dist/errors.d.ts DELETED Viewed

@@ -1,8 +0,0 @@
-declare class BaseError extends Error {
-    constructor(message: string);
-}
-export declare class ValidationError extends BaseError {
-}
-export declare class AuthenticationError extends BaseError {
-}
-export {};

package/dist/errors.js DELETED Viewed

@@ -1,13 +0,0 @@
-class BaseError extends Error {
-    constructor(message) {
-        super(message);
-        this.name = this.constructor.name;
-        if (Error.captureStackTrace) {
-            Error.captureStackTrace(this, this.constructor);
-        }
-    }
-}
-export class ValidationError extends BaseError {
-}
-export class AuthenticationError extends BaseError {
-}

package/dist/index.js DELETED Viewed

@@ -1,3 +0,0 @@
-export * from './client';
-export * from './errors';
-export * from './schema';

package/dist/schema.d.ts DELETED Viewed

@@ -1,62 +0,0 @@
-import { z } from 'zod/v4-mini';
-/**
- * Authorize request/response schema
- */
-export declare const AuthorizeRequestSchema: z.ZodMiniObject<{
-    code_challenge: z.ZodMiniString<string>;
-    code_challenge_method: z.ZodMiniLiteral<"S256">;
-}, z.core.$strip>;
-export type AuthorizeRequest = z.infer<typeof AuthorizeRequestSchema>;
-export declare const AuthorizeResponseSchema: z.ZodMiniObject<{
-    deep_link: z.ZodMiniString<string>;
-    polling_code: z.ZodMiniString<string>;
-    expired_at: z.ZodMiniNumber<number>;
-}, z.core.$strip>;
-export type AuthorizeResponse = z.infer<typeof AuthorizeResponseSchema>;
-/**
- * Poll request/response schema
- */
-export declare const PollRequestSchema: z.ZodMiniObject<{
-    polling_code: z.ZodMiniString<string>;
-}, z.core.$strip>;
-export type PollRequest = z.infer<typeof PollRequestSchema>;
-export declare const PollResponseSchema: z.ZodMiniObject<{
-    status: z.ZodMiniEnum<{
-        pending: "pending";
-        authorized: "authorized";
-    }>;
-    authorization_code: z.ZodMiniOptional<z.ZodMiniString<string>>;
-}, z.core.$strip>;
-export type PollResponse = z.infer<typeof PollResponseSchema>;
-/**
- * ExchangeCode request/response schema
- */
-export declare const ExchangeCodeRequestSchema: z.ZodMiniObject<{
-    authorization_code: z.ZodMiniString<string>;
-    code_verifier: z.ZodMiniString<string>;
-}, z.core.$strip>;
-export type ExchangeCodeRequest = z.infer<typeof ExchangeCodeRequestSchema>;
-export declare const ExchangeCodeResponseSchema: z.ZodMiniObject<{
-    access_token: z.ZodMiniString<string>;
-}, z.core.$strip>;
-export type ExchangeCodeResponse = z.infer<typeof ExchangeCodeResponseSchema>;
-/**
- * VerifyToken request/response schema
- */
-export declare const VerifyTokenRequestSchema: z.ZodMiniObject<{
-    access_token: z.ZodMiniString<string>;
-}, z.core.$strip>;
-export type VerifyTokenRequest = z.infer<typeof VerifyTokenRequestSchema>;
-export declare const VerifyTokenResponseSchema: z.ZodMiniObject<{
-    is_valid: z.ZodMiniBoolean<boolean>;
-}, z.core.$strip>;
-export type VerifyTokenResponse = z.infer<typeof VerifyTokenResponseSchema>;
-/**
- * Token info schema
- */
-export declare const TokenInfoSchema: z.ZodMiniObject<{
-    app_callback_session_address: z.ZodMiniString<string>;
-    expired_at: z.ZodMiniNumber<number>;
-    issued_at: z.ZodMiniNumber<number>;
-}, z.core.$strip>;
-export type TokenInfo = z.infer<typeof TokenInfoSchema>;

package/dist/schema.js DELETED Viewed

@@ -1,52 +0,0 @@
-import { z } from 'zod/v4-mini';
-/**
- * Authorize request/response schema
- */
-export const AuthorizeRequestSchema = z.object({
-    code_challenge: z.string(),
-    code_challenge_method: z.literal('S256'),
-});
-export const AuthorizeResponseSchema = z.object({
-    deep_link: z.string(),
-    polling_code: z.string(),
-    expired_at: z.number(),
-});
-/**
- * Poll request/response schema
- */
-export const PollRequestSchema = z.object({
-    polling_code: z.string(),
-});
-const status = ['pending', 'authorized'];
-const StatusEnum = z.enum(status);
-export const PollResponseSchema = z.object({
-    status: StatusEnum,
-    authorization_code: z.optional(z.string()),
-});
-/**
- * ExchangeCode request/response schema
- */
-export const ExchangeCodeRequestSchema = z.object({
-    authorization_code: z.string(),
-    code_verifier: z.string(),
-});
-export const ExchangeCodeResponseSchema = z.object({
-    access_token: z.string(),
-});
-/**
- * VerifyToken request/response schema
- */
-export const VerifyTokenRequestSchema = z.object({
-    access_token: z.string(),
-});
-export const VerifyTokenResponseSchema = z.object({
-    is_valid: z.boolean(),
-});
-/**
- * Token info schema
- */
-export const TokenInfoSchema = z.object({
-    app_callback_session_address: z.string(),
-    expired_at: z.number(),
-    issued_at: z.number(),
-});

package/dist/server.d.ts DELETED Viewed

@@ -1,14 +0,0 @@
-import { AuthorizeResponse } from './schema';
-import { z } from 'zod/v4-mini';
-export declare const AlienSsoSdkServerConfigSchema: z.ZodMiniObject<{
-    providerAddress: z.ZodMiniString<string>;
-    providerPrivateKey: z.ZodMiniString<string>;
-    ssoBaseUrl: z.ZodMiniURL;
-}, z.core.$strip>;
-export type AlienSsoSdkServerConfig = z.infer<typeof AlienSsoSdkServerConfigSchema>;
-export declare class AlienSsoSdkServer {
-    readonly config: AlienSsoSdkServerConfig;
-    readonly ssoBaseUrl: string;
-    constructor(config: AlienSsoSdkServerConfig);
-    authorize(codeChallenge: string): Promise<AuthorizeResponse | null>;
-}

package/dist/server.js DELETED Viewed

@@ -1,59 +0,0 @@
-import { AuthorizeResponseSchema, AuthorizeRequestSchema, } from './schema';
-import { z } from 'zod/v4-mini';
-import { signAsync } from '@noble/ed25519';
-import { AuthenticationError, ValidationError } from './errors';
-import { joinUrl } from './utils';
-const DEFAULT_SSO_BASE_URL = 'https://sso.alien-api.com';
-export const AlienSsoSdkServerConfigSchema = z.object({
-    providerAddress: z.string(),
-    providerPrivateKey: z.string(),
-    ssoBaseUrl: z.url(),
-});
-export class AlienSsoSdkServer {
-    constructor(config) {
-        const parsedConfig = AlienSsoSdkServerConfigSchema.parse(config);
-        this.config = parsedConfig;
-        this.ssoBaseUrl = parsedConfig.ssoBaseUrl || DEFAULT_SSO_BASE_URL;
-    }
-    async authorize(codeChallenge) {
-        if (!codeChallenge || codeChallenge.length !== 64) {
-            throw new ValidationError('Invalid code challenge');
-        }
-        // Note: order of fields important!
-        const signaturePayload = {
-            provider_address: this.config.providerAddress,
-            code_challenge: codeChallenge,
-            code_challenge_method: 'S256',
-        };
-        const message = JSON.stringify(signaturePayload);
-        const messageBytes = new TextEncoder().encode(message);
-        const privateKeyBytes = Buffer.from(this.config.providerPrivateKey, 'hex');
-        const signature = await signAsync(messageBytes, privateKeyBytes);
-        const authorizePayload = {
-            ...signaturePayload,
-            provider_signature: Buffer.from(signature).toString('hex'),
-        };
-        AuthorizeRequestSchema.parse(authorizePayload);
-        const response = await fetch(joinUrl(this.config.ssoBaseUrl, '/authorize'), {
-            method: 'POST',
-            headers: {
-                'Content-Type': 'application/json',
-            },
-            body: JSON.stringify(authorizePayload),
-        });
-        if (!response.ok) {
-            throw new AuthenticationError(`SSO Router Authorization failed: ${response.status} ${response.statusText} ${await response.text()}`);
-        }
-        const json = await response.json();
-        const { deep_link, polling_code, expired_at } = AuthorizeResponseSchema.parse(json);
-        const deepLinkBytes = Buffer.from(deep_link, 'utf8');
-        const deepLinkSignature = await signAsync(deepLinkBytes, privateKeyBytes);
-        const deepLinkUrl = new URL(deep_link);
-        deepLinkUrl.searchParams.set('link_signature', Buffer.from(deepLinkSignature).toString('hex'));
-        return {
-            deep_link: deepLinkUrl.toString(),
-            polling_code,
-            expired_at,
-        };
-    }
-}

package/dist/utils.d.ts DELETED Viewed

	@@ -1 +0,0 @@
1	- export declare const joinUrl: (base: string, path: string) => string;

package/dist/utils.js DELETED Viewed

@@ -1,3 +0,0 @@
-export const joinUrl = (base, path) => {
-    return new URL(path, base).toString();
-};