@atcute/oauth-crypto 0.1.0 → 1.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/client-assertion/create-client-assertion.d.ts +1 -1
- package/dist/client-assertion/create-client-assertion.d.ts.map +1 -1
- package/dist/client-assertion/create-client-assertion.js.map +1 -1
- package/dist/client-assertion/generate-key.d.ts +2 -2
- package/dist/client-assertion/generate-key.d.ts.map +1 -1
- package/dist/client-assertion/generate-key.js.map +1 -1
- package/dist/client-assertion/index.d.ts +4 -4
- package/dist/client-assertion/keys.d.ts +2 -2
- package/dist/client-assertion/keys.d.ts.map +1 -1
- package/dist/client-assertion/keys.js.map +1 -1
- package/dist/client-assertion/types.d.ts +1 -1
- package/dist/dpop/fetch.d.ts +2 -2
- package/dist/dpop/fetch.d.ts.map +1 -1
- package/dist/dpop/fetch.js.map +1 -1
- package/dist/dpop/generate-key.d.ts +2 -2
- package/dist/dpop/generate-key.d.ts.map +1 -1
- package/dist/dpop/generate-key.js +1 -1
- package/dist/dpop/generate-key.js.map +1 -1
- package/dist/dpop/index.d.ts +5 -5
- package/dist/dpop/proof.d.ts +2 -2
- package/dist/dpop/proof.d.ts.map +1 -1
- package/dist/dpop/proof.js.map +1 -1
- package/dist/dpop/types.d.ts +1 -1
- package/dist/dpop/verify.d.ts +10 -10
- package/dist/dpop/verify.d.ts.map +1 -1
- package/dist/dpop/verify.js +34 -26
- package/dist/dpop/verify.js.map +1 -1
- package/dist/hash/index.d.ts +2 -2
- package/dist/hash/pkce.d.ts +1 -1
- package/dist/hash/pkce.d.ts.map +1 -1
- package/dist/hash/pkce.js.map +1 -1
- package/dist/hash/sha256.d.ts.map +1 -1
- package/dist/hash/sha256.js.map +1 -1
- package/dist/index.d.ts +5 -5
- package/dist/internal/crypto.d.ts +5 -5
- package/dist/internal/crypto.d.ts.map +1 -1
- package/dist/internal/crypto.js.map +1 -1
- package/dist/internal/jwk.d.ts +5 -5
- package/dist/internal/jwk.d.ts.map +1 -1
- package/dist/internal/jwk.js.map +1 -1
- package/dist/internal/key-cache.d.ts +1 -1
- package/dist/internal/key-cache.d.ts.map +1 -1
- package/dist/internal/key-cache.js.map +1 -1
- package/dist/jwk/compute-jkt.d.ts +1 -1
- package/dist/jwk/compute-jkt.d.ts.map +1 -1
- package/dist/jwk/compute-jkt.js.map +1 -1
- package/dist/jwk/index.d.ts +4 -4
- package/dist/jwk/keys.d.ts +1 -1
- package/dist/jwk/keys.d.ts.map +1 -1
- package/dist/jwk/keys.js.map +1 -1
- package/dist/jwt/index.d.ts +2 -2
- package/dist/jwt/index.d.ts.map +1 -1
- package/dist/jwt/index.js.map +1 -1
- package/lib/client-assertion/create-client-assertion.ts +3 -3
- package/lib/client-assertion/generate-key.ts +5 -5
- package/lib/client-assertion/index.ts +4 -4
- package/lib/client-assertion/keys.ts +4 -4
- package/lib/client-assertion/types.ts +1 -1
- package/lib/dpop/fetch.ts +3 -3
- package/lib/dpop/generate-key.ts +6 -6
- package/lib/dpop/index.ts +5 -5
- package/lib/dpop/proof.ts +4 -4
- package/lib/dpop/types.ts +1 -1
- package/lib/dpop/verify.ts +41 -31
- package/lib/hash/index.ts +2 -2
- package/lib/hash/pkce.ts +1 -1
- package/lib/index.ts +5 -5
- package/lib/internal/crypto.ts +1 -1
- package/lib/internal/jwk.ts +2 -2
- package/lib/internal/key-cache.ts +2 -2
- package/lib/jwk/compute-jkt.ts +1 -1
- package/lib/jwk/index.ts +4 -4
- package/lib/jwk/keys.ts +3 -3
- package/lib/jwt/index.ts +2 -2
- package/package.json +9 -8
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"create-client-assertion.d.ts","sourceRoot":"","sources":["../../lib/client-assertion/create-client-assertion.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,yBAAyB,EAAE,MAAM,YAAY,CAAC;AAE5D,MAAM,WAAW,4BAA4B;IAC5C,gBAAgB;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,kCAAkC;IAClC,GAAG,EAAE,MAAM,CAAC;IACZ,kEAAkE;IAClE,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,mCAAmC;IACnC,GAAG,EAAE,yBAAyB,CAAC;CAC/B;AAED;;;;;GAKG;AACH,eAAO,MAAM,qBAAqB,
|
|
1
|
+
{"version":3,"file":"create-client-assertion.d.ts","sourceRoot":"","sources":["../../lib/client-assertion/create-client-assertion.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,yBAAyB,EAAE,MAAM,YAAY,CAAC;AAE5D,MAAM,WAAW,4BAA4B;IAC5C,gBAAgB;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,kCAAkC;IAClC,GAAG,EAAE,MAAM,CAAC;IACZ,kEAAkE;IAClE,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,mCAAmC;IACnC,GAAG,EAAE,yBAAyB,CAAC;CAC/B;AAED;;;;;GAKG;AACH,eAAO,MAAM,qBAAqB,YAAmB,4BAA4B,KAAG,OAAO,CAAC,MAAM,CAyBjG,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"create-client-assertion.js","sourceRoot":"","sources":["../../lib/client-assertion/create-client-assertion.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAEhC,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAChE,OAAO,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAe1C;;;;;GAKG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,KAAK,EAAE,OAAqC,EAAmB,EAAE
|
|
1
|
+
{"version":3,"file":"create-client-assertion.js","sourceRoot":"","sources":["../../lib/client-assertion/create-client-assertion.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAEhC,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAChE,OAAO,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAe1C;;;;;GAKG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,KAAK,EAAE,OAAqC,EAAmB,EAAE;IACrG,MAAM,EAAE,SAAS,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC;IAC7C,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,GAAG,CAAC;IACzB,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,oBAAoB,CAAC,GAAG,CAAC,CAAC;IAEtD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;IAC1C,MAAM,GAAG,GAAG,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IAEtC,OAAO,OAAO,CAAC;QACd,MAAM,EAAE;YACP,GAAG;YACH,GAAG;SACH;QACD,OAAO,EAAE;YACR,GAAG,EAAE,SAAS;YACd,GAAG,EAAE,SAAS;YACd,GAAG,EAAE,GAAG;YACR,GAAG,EAAE,MAAM,CAAC,EAAE,CAAC;YACf,GAAG,EAAE,GAAG;YACR,GAAG,EAAE,GAAG,GAAG,EAAE;YACb,GAAG;SACH;QACD,GAAG,EAAE,SAAS;QACd,GAAG;KACH,CAAC,CAAC;AACJ,CAAC,CAAC"}
|
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
import type { SigningAlgorithm } from '../jwk/types.
|
|
2
|
-
import type { ClientAssertionPrivateJwk } from './types.
|
|
1
|
+
import type { SigningAlgorithm } from '../jwk/types.ts';
|
|
2
|
+
import type { ClientAssertionPrivateJwk } from './types.ts';
|
|
3
3
|
/**
|
|
4
4
|
* generates a new client assertion private key.
|
|
5
5
|
*
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"generate-key.d.ts","sourceRoot":"","sources":["../../lib/client-assertion/generate-key.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAExD,OAAO,KAAK,EAAE,yBAAyB,EAAE,MAAM,YAAY,CAAC;AAE5D;;;;;;GAMG;AACH,eAAO,MAAM,0BAA0B,
|
|
1
|
+
{"version":3,"file":"generate-key.d.ts","sourceRoot":"","sources":["../../lib/client-assertion/generate-key.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAExD,OAAO,KAAK,EAAE,yBAAyB,EAAE,MAAM,YAAY,CAAC;AAE5D;;;;;;GAMG;AACH,eAAO,MAAM,0BAA0B,QACjC,MAAM,QACN,gBAAgB,KACnB,OAAO,CAAC,yBAAyB,CAQnC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"generate-key.js","sourceRoot":"","sources":["../../lib/client-assertion/generate-key.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,MAAM,uBAAuB,CAAC;AAC7D,OAAO,EAAE,uBAAuB,EAAE,MAAM,oBAAoB,CAAC;AAC7D,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAKhE;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,0BAA0B,GAAG,KAAK,EAC9C,GAAW,EACX,GAAG,GAAqB,OAAO,EACM,EAAE
|
|
1
|
+
{"version":3,"file":"generate-key.js","sourceRoot":"","sources":["../../lib/client-assertion/generate-key.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,MAAM,uBAAuB,CAAC;AAC7D,OAAO,EAAE,uBAAuB,EAAE,MAAM,oBAAoB,CAAC;AAC7D,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAKhE;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,0BAA0B,GAAG,KAAK,EAC9C,GAAW,EACX,GAAG,GAAqB,OAAO,EACM,EAAE;IACvC,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,oBAAoB,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC;IAClG,MAAM,GAAG,GAAG,CAAC,MAAM,uBAAuB,CAAC,IAAI,CAAC,UAAU,EAAE,GAAG,EAAE,GAAG,CAAC,CAA8B,CAAC;IAEpG,2CAA2C;IAC3C,oBAAoB,CAAC,GAAG,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC;IAE3C,OAAO,GAAG,CAAC;AACZ,CAAC,CAAC"}
|
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
export { createClientAssertion } from './create-client-assertion.
|
|
2
|
-
export { generateClientAssertionKey } from './generate-key.
|
|
3
|
-
export { importClientAssertionPkcs8 } from './keys.
|
|
4
|
-
export type { ClientAssertionPrivateJwk } from './types.
|
|
1
|
+
export { createClientAssertion } from './create-client-assertion.ts';
|
|
2
|
+
export { generateClientAssertionKey } from './generate-key.ts';
|
|
3
|
+
export { importClientAssertionPkcs8 } from './keys.ts';
|
|
4
|
+
export type { ClientAssertionPrivateJwk } from './types.ts';
|
|
5
5
|
//# sourceMappingURL=index.d.ts.map
|
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
import type { SigningAlgorithm } from '../jwk/types.
|
|
2
|
-
import type { ClientAssertionPrivateJwk } from './types.
|
|
1
|
+
import type { SigningAlgorithm } from '../jwk/types.ts';
|
|
2
|
+
import type { ClientAssertionPrivateJwk } from './types.ts';
|
|
3
3
|
/**
|
|
4
4
|
* imports a client assertion private key from a pkcs8 pem string.
|
|
5
5
|
*
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"keys.d.ts","sourceRoot":"","sources":["../../lib/client-assertion/keys.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAExD,OAAO,KAAK,EAAE,yBAAyB,EAAE,MAAM,YAAY,CAAC;AAE5D;;;;;;GAMG;AACH,eAAO,MAAM,0BAA0B
|
|
1
|
+
{"version":3,"file":"keys.d.ts","sourceRoot":"","sources":["../../lib/client-assertion/keys.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAExD,OAAO,KAAK,EAAE,yBAAyB,EAAE,MAAM,YAAY,CAAC;AAE5D;;;;;;GAMG;AACH,eAAO,MAAM,0BAA0B,QACjC,MAAM,WACF;IAAE,GAAG,EAAE,MAAM,CAAC;IAAC,GAAG,EAAE,gBAAgB,CAAA;CAAE,KAC7C,OAAO,CAAC,yBAAyB,CASnC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"keys.js","sourceRoot":"","sources":["../../lib/client-assertion/keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,uBAAuB,EAAE,qBAAqB,EAAE,MAAM,oBAAoB,CAAC;AACpF,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAKhE;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,0BAA0B,GAAG,KAAK,EAC9C,GAAW,EACX,OAA+C,EACV,EAAE
|
|
1
|
+
{"version":3,"file":"keys.js","sourceRoot":"","sources":["../../lib/client-assertion/keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,uBAAuB,EAAE,qBAAqB,EAAE,MAAM,oBAAoB,CAAC;AACpF,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAKhE;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,0BAA0B,GAAG,KAAK,EAC9C,GAAW,EACX,OAA+C,EACV,EAAE;IACvC,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC;IAC7B,MAAM,SAAS,GAAG,MAAM,qBAAqB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;IACxD,MAAM,GAAG,GAAG,CAAC,MAAM,uBAAuB,CAAC,SAAS,EAAE,GAAG,EAAE,GAAG,CAAC,CAA8B,CAAC;IAE9F,2CAA2C;IAC3C,oBAAoB,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;IAErC,OAAO,GAAG,CAAC;AACZ,CAAC,CAAC"}
|
package/dist/dpop/fetch.d.ts
CHANGED
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import type { DpopPrivateJwk, DpopNonceCache } from './types.
|
|
1
|
+
import type { DpopPrivateJwk, DpopNonceCache } from './types.ts';
|
|
2
2
|
export interface CreateDpopFetchOptions {
|
|
3
3
|
/** DPoP private key (JWK with `alg` set) */
|
|
4
4
|
key: DpopPrivateJwk;
|
|
@@ -20,5 +20,5 @@ export interface CreateDpopFetchOptions {
|
|
|
20
20
|
* @param options DPoP configuration
|
|
21
21
|
* @returns fetch function with DPoP support
|
|
22
22
|
*/
|
|
23
|
-
export declare const createDpopFetch: (options: CreateDpopFetchOptions) => typeof fetch;
|
|
23
|
+
export declare const createDpopFetch: (options: CreateDpopFetchOptions) => typeof globalThis.fetch;
|
|
24
24
|
//# sourceMappingURL=fetch.d.ts.map
|
package/dist/dpop/fetch.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"fetch.d.ts","sourceRoot":"","sources":["../../lib/dpop/fetch.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,cAAc,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAEjE,MAAM,WAAW,sBAAsB;IACtC,4CAA4C;IAC5C,GAAG,EAAE,cAAc,CAAC;IACpB,mCAAmC;IACnC,MAAM,EAAE,cAAc,CAAC;IACvB,iDAAiD;IACjD,aAAa,CAAC,EAAE,SAAS,MAAM,EAAE,CAAC;IAClC;;;OAGG;IACH,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,kCAAkC;IAClC,KAAK,CAAC,EAAE,OAAO,UAAU,CAAC,KAAK,CAAC;CAChC;AAED;;;;;GAKG;AACH,eAAO,MAAM,eAAe,
|
|
1
|
+
{"version":3,"file":"fetch.d.ts","sourceRoot":"","sources":["../../lib/dpop/fetch.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,cAAc,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAEjE,MAAM,WAAW,sBAAsB;IACtC,4CAA4C;IAC5C,GAAG,EAAE,cAAc,CAAC;IACpB,mCAAmC;IACnC,MAAM,EAAE,cAAc,CAAC;IACvB,iDAAiD;IACjD,aAAa,CAAC,EAAE,SAAS,MAAM,EAAE,CAAC;IAClC;;;OAGG;IACH,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,kCAAkC;IAClC,KAAK,CAAC,EAAE,OAAO,UAAU,CAAC,KAAK,CAAC;CAChC;AAED;;;;;GAKG;AACH,eAAO,MAAM,eAAe,YAAa,sBAAsB,KAAG,OAAO,UAAU,CAAC,KAmEnF,CAAC"}
|
package/dist/dpop/fetch.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"fetch.js","sourceRoot":"","sources":["../../lib/dpop/fetch.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAEpD,OAAO,EAAE,qBAAqB,EAAE,MAAM,YAAY,CAAC;AAmBnD;;;;;GAKG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,OAA+B,EAA2B,EAAE
|
|
1
|
+
{"version":3,"file":"fetch.js","sourceRoot":"","sources":["../../lib/dpop/fetch.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAEpD,OAAO,EAAE,qBAAqB,EAAE,MAAM,YAAY,CAAC;AAmBnD;;;;;GAKG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,OAA+B,EAA2B,EAAE;IAC3F,MAAM,EAAE,GAAG,EAAE,MAAM,EAAE,aAAa,EAAE,YAAY,EAAE,KAAK,GAAG,UAAU,CAAC,KAAK,EAAE,GAAG,OAAO,CAAC;IAEvF,YAAY,CAAC,GAAG,EAAE,aAAa,CAAC,CAAC;IACjC,MAAM,IAAI,GAAG,qBAAqB,CAAC,GAAG,CAAC,CAAC;IAExC,OAAO,KAAK,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;QAC5B,MAAM,OAAO,GAAY,IAAI,IAAI,IAAI,IAAI,KAAK,YAAY,OAAO,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QAErG,MAAM,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;QACxD,MAAM,GAAG,GAAG,UAAU,EAAE,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,MAAM,eAAe,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QAErG,MAAM,EAAE,MAAM,EAAE,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACxC,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC;QAC3B,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QAElC,IAAI,SAA6B,CAAC;QAClC,IAAI,CAAC;YACJ,SAAS,GAAG,MAAM,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACtC,CAAC;QAAC,MAAM,CAAC;YACR,oBAAoB;QACrB,CAAC;QAED,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;QACvD,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;QAEvC,MAAM,YAAY,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC,CAAC;QAE1C,MAAM,SAAS,GAAG,YAAY,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QACzD,IAAI,CAAC,SAAS,IAAI,SAAS,KAAK,SAAS,EAAE,CAAC;YAC3C,OAAO,YAAY,CAAC;QACrB,CAAC;QAED,IAAI,CAAC;YACJ,MAAM,MAAM,CAAC,GAAG,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;QACrC,CAAC;QAAC,MAAM,CAAC;YACR,oBAAoB;QACrB,CAAC;QAED,MAAM,WAAW,GAAG,MAAM,mBAAmB,CAAC,YAAY,EAAE,YAAY,CAAC,CAAC;QAC1E,IAAI,CAAC,WAAW,EAAE,CAAC;YAClB,OAAO,YAAY,CAAC;QACrB,CAAC;QAED,IAAI,KAAK,KAAK,OAAO,IAAI,IAAI,EAAE,IAAI,YAAY,cAAc,EAAE,CAAC;YAC/D,OAAO,YAAY,CAAC;QACrB,CAAC;QAED,MAAM,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,CAAC;QAElC,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;QACvD,MAAM,WAAW,GAAG,IAAI,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QAC7C,WAAW,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;QAE3C,MAAM,aAAa,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,CAAC;QAE/C,MAAM,UAAU,GAAG,aAAa,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAC3D,IAAI,UAAU,IAAI,UAAU,KAAK,SAAS,EAAE,CAAC;YAC5C,IAAI,CAAC;gBACJ,MAAM,MAAM,CAAC,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;YACtC,CAAC;YAAC,MAAM,CAAC;gBACR,oBAAoB;YACrB,CAAC;QACF,CAAC;QAED,OAAO,aAAa,CAAC;IACtB,CAAC,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,QAAQ,GAAG,CAAC,GAAW,EAAU,EAAE;IACxC,MAAM,WAAW,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IACrC,MAAM,QAAQ,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IAClC,MAAM,GAAG,GAAG,WAAW,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;IAE5G,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;AAC7C,CAAC,CAAC;AAEF,MAAM,YAAY,GAAG,CAAC,GAAmB,EAAE,aAAiC,EAAU,EAAE;IACvF,MAAM,MAAM,GAAG,GAAG,CAAC,GAAG,CAAC;IAEvB,IAAI,aAAa,EAAE,MAAM,EAAE,CAAC;QAC3B,IAAI,aAAa,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YACpC,OAAO,MAAM,CAAC;QACf,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,sBAAsB,MAAM,6BAA6B,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACtG,CAAC;IAED,OAAO,MAAM,CAAC;AACf,CAAC,CAAC;AAEF,MAAM,mBAAmB,GAAG,KAAK,EAAE,QAAkB,EAAE,YAAsB,EAAoB,EAAE;IAClG,IAAI,YAAY,KAAK,SAAS,IAAI,YAAY,KAAK,KAAK,EAAE,CAAC;QAC1D,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;YAC7B,MAAM,OAAO,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC;YACzD,IAAI,OAAO,EAAE,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;gBACjC,OAAO,OAAO,CAAC,QAAQ,CAAC,wBAAwB,CAAC,CAAC;YACnD,CAAC;QACF,CAAC;IACF,CAAC;IAED,IAAI,YAAY,KAAK,SAAS,IAAI,YAAY,KAAK,IAAI,EAAE,CAAC;QACzD,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;YAC7B,IAAI,CAAC;gBACJ,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,KAAK,EAAE,CAAC,IAAI,EAAE,CAAC;gBAC3C,OAAO,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,EAAE,KAAK,KAAK,gBAAgB,CAAC;YACrE,CAAC;YAAC,MAAM,CAAC;gBACR,OAAO,KAAK,CAAC;YACd,CAAC;QACF,CAAC;IACF,CAAC;IAED,OAAO,KAAK,CAAC;AACd,CAAC,CAAC"}
|
|
@@ -1,9 +1,9 @@
|
|
|
1
|
-
import type { DpopPrivateJwk } from './types.
|
|
1
|
+
import type { DpopPrivateJwk } from './types.ts';
|
|
2
2
|
/**
|
|
3
3
|
* generates a new DPoP private JWK with `alg` set.
|
|
4
4
|
*
|
|
5
5
|
* @param supportedAlgs server supported algorithms (optional)
|
|
6
6
|
* @returns private JWK (with cache pre-warmed)
|
|
7
7
|
*/
|
|
8
|
-
export declare const generateDpopKey: (supportedAlgs?: readonly string[]
|
|
8
|
+
export declare const generateDpopKey: (supportedAlgs?: readonly string[]) => Promise<DpopPrivateJwk>;
|
|
9
9
|
//# sourceMappingURL=generate-key.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"generate-key.d.ts","sourceRoot":"","sources":["../../lib/dpop/generate-key.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAoCjD;;;;;GAKG;AACH,eAAO,MAAM,eAAe,
|
|
1
|
+
{"version":3,"file":"generate-key.d.ts","sourceRoot":"","sources":["../../lib/dpop/generate-key.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAoCjD;;;;;GAKG;AACH,eAAO,MAAM,eAAe,mBAA0B,SAAS,MAAM,EAAE,KAAG,OAAO,CAAC,cAAc,CAwB/F,CAAC"}
|
|
@@ -16,7 +16,7 @@ const PREFERRED_ALGORITHMS = [
|
|
|
16
16
|
'RS512',
|
|
17
17
|
];
|
|
18
18
|
const sortAlgorithms = (algs) => {
|
|
19
|
-
return
|
|
19
|
+
return algs.toSorted((a, b) => {
|
|
20
20
|
const aIdx = PREFERRED_ALGORITHMS.indexOf(a);
|
|
21
21
|
const bIdx = PREFERRED_ALGORITHMS.indexOf(b);
|
|
22
22
|
if (aIdx === -1 && bIdx === -1) {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"generate-key.js","sourceRoot":"","sources":["../../lib/dpop/generate-key.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,MAAM,uBAAuB,CAAC;AAC7D,OAAO,EAAE,uBAAuB,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AACjF,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAKhE;;GAEG;AACH,MAAM,oBAAoB,GAAgC;IACzD,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;CACP,CAAC;AAEF,MAAM,cAAc,GAAG,CAAC,IAAiC,EAAsB,EAAE
|
|
1
|
+
{"version":3,"file":"generate-key.js","sourceRoot":"","sources":["../../lib/dpop/generate-key.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,MAAM,uBAAuB,CAAC;AAC7D,OAAO,EAAE,uBAAuB,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AACjF,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAKhE;;GAEG;AACH,MAAM,oBAAoB,GAAgC;IACzD,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;CACP,CAAC;AAEF,MAAM,cAAc,GAAG,CAAC,IAAiC,EAAsB,EAAE;IAChF,OAAO,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QAC7B,MAAM,IAAI,GAAG,oBAAoB,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;QAC7C,MAAM,IAAI,GAAG,oBAAoB,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;QAE7C,IAAI,IAAI,KAAK,CAAC,CAAC,IAAI,IAAI,KAAK,CAAC,CAAC,EAAE,CAAC;YAChC,OAAO,CAAC,CAAC;QACV,CAAC;QACD,IAAI,IAAI,KAAK,CAAC,CAAC,EAAE,CAAC;YACjB,OAAO,CAAC,CAAC;QACV,CAAC;QACD,IAAI,IAAI,KAAK,CAAC,CAAC,EAAE,CAAC;YACjB,OAAO,CAAC,CAAC,CAAC;QACX,CAAC;QAED,OAAO,IAAI,GAAG,IAAI,CAAC;IACpB,CAAC,CAAC,CAAC;AACJ,CAAC,CAAC;AAEF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,KAAK,EAAE,aAAiC,EAA2B,EAAE;IACnG,MAAM,UAAU,GAAG,aAAa,EAAE,MAAM,CAAC,kBAAkB,CAAC,IAAI,EAAE,CAAC;IACnE,IAAI,aAAa,EAAE,MAAM,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACtD,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;IACrD,CAAC;IAED,MAAM,IAAI,GAAuB,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;IAC5F,MAAM,MAAM,GAAc,EAAE,CAAC;IAE7B,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACxB,IAAI,CAAC;YACJ,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,oBAAoB,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC;YAClG,MAAM,GAAG,GAAG,CAAC,MAAM,uBAAuB,CAAC,IAAI,CAAC,UAAU,EAAE,GAAG,CAAC,CAAmB,CAAC;YAEpF,2CAA2C;YAC3C,oBAAoB,CAAC,GAAG,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC;YAE3C,OAAO,GAAG,CAAC;QACZ,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACd,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAClB,CAAC;IACF,CAAC;IAED,MAAM,IAAI,cAAc,CAAC,MAAM,EAAE,2CAA2C,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;AAChG,CAAC,CAAC"}
|
package/dist/dpop/index.d.ts
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
|
-
export { createDpopFetch } from './fetch.
|
|
2
|
-
export { generateDpopKey } from './generate-key.
|
|
3
|
-
export { createDpopProofSigner } from './proof.
|
|
4
|
-
export type { DpopNonceCache, DpopPrivateJwk } from './types.
|
|
5
|
-
export { DpopVerifyError, verifyDpopProof, type DpopClaims, type DpopVerifyOptions, type DpopVerifyResult, } from './verify.
|
|
1
|
+
export { createDpopFetch } from './fetch.ts';
|
|
2
|
+
export { generateDpopKey } from './generate-key.ts';
|
|
3
|
+
export { createDpopProofSigner } from './proof.ts';
|
|
4
|
+
export type { DpopNonceCache, DpopPrivateJwk } from './types.ts';
|
|
5
|
+
export { DpopVerifyError, verifyDpopProof, type DpopClaims, type DpopVerifyOptions, type DpopVerifyResult, } from './verify.ts';
|
|
6
6
|
//# sourceMappingURL=index.d.ts.map
|
package/dist/dpop/proof.d.ts
CHANGED
|
@@ -1,9 +1,9 @@
|
|
|
1
|
-
import type { DpopPrivateJwk } from './types.
|
|
1
|
+
import type { DpopPrivateJwk } from './types.ts';
|
|
2
2
|
/**
|
|
3
3
|
* creates a DPoP proof signer.
|
|
4
4
|
*
|
|
5
5
|
* @param jwk DPoP private JWK (with `alg` set)
|
|
6
6
|
* @returns signing function for DPoP proofs
|
|
7
7
|
*/
|
|
8
|
-
export declare const createDpopProofSigner: (jwk: DpopPrivateJwk) => (htm: string, htu: string, nonce?: string
|
|
8
|
+
export declare const createDpopProofSigner: (jwk: DpopPrivateJwk) => ((htm: string, htu: string, nonce?: string, ath?: string) => Promise<string>);
|
|
9
9
|
//# sourceMappingURL=proof.d.ts.map
|
package/dist/dpop/proof.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"proof.d.ts","sourceRoot":"","sources":["../../lib/dpop/proof.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAEjD;;;;;GAKG;AACH,eAAO,MAAM,qBAAqB,
|
|
1
|
+
{"version":3,"file":"proof.d.ts","sourceRoot":"","sources":["../../lib/dpop/proof.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAEjD;;;;;GAKG;AACH,eAAO,MAAM,qBAAqB,QAC5B,cAAc,KACjB,CAAC,CAAC,GAAG,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,EAAE,GAAG,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,CAAC,CA6B9E,CAAC"}
|
package/dist/dpop/proof.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"proof.js","sourceRoot":"","sources":["../../lib/dpop/proof.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAGhC,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAChE,OAAO,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAI1C;;;;;GAKG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,CACpC,GAAmB,EAC6D,EAAE
|
|
1
|
+
{"version":3,"file":"proof.js","sourceRoot":"","sources":["../../lib/dpop/proof.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAGhC,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAChE,OAAO,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAI1C;;;;;GAKG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,CACpC,GAAmB,EAC6D,EAAE;IAClF,MAAM,GAAG,GAAG,GAAG,CAAC,GAAG,CAAC;IAEpB,4CAA4C;IAC5C,IAAI,eAAuD,CAAC;IAE5D,OAAO,KAAK,EAAE,GAAW,EAAE,GAAW,EAAE,KAAc,EAAE,GAAY,EAAE,EAAE;QACvE,eAAe,KAAK,oBAAoB,CAAC,GAAG,CAAC,CAAC;QAC9C,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,GAAG,MAAM,eAAe,CAAC;QAEvD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC,CAAC;QAE3C,OAAO,OAAO,CAAC;YACd,MAAM,EAAE;gBACP,GAAG,EAAE,UAAU;gBACf,GAAG,EAAE,SAAS;aACd;YACD,OAAO,EAAE;gBACR,GAAG;gBACH,GAAG;gBACH,GAAG,EAAE,GAAG;gBACR,GAAG,EAAE,MAAM,CAAC,EAAE,CAAC;gBACf,KAAK;gBACL,GAAG;aACH;YACD,GAAG,EAAE,SAAS;YACd,GAAG;SACH,CAAC,CAAC;IACJ,CAAC,CAAC;AACH,CAAC,CAAC"}
|
package/dist/dpop/types.d.ts
CHANGED
package/dist/dpop/verify.d.ts
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
|
-
import * as v from '
|
|
2
|
-
import type { PublicJwk } from '../jwk/types.
|
|
3
|
-
import type { Awaitable } from './types.
|
|
4
|
-
declare const dpopPayloadSchema: v.
|
|
5
|
-
htm: v.
|
|
6
|
-
htu: v.
|
|
7
|
-
iat: v.
|
|
8
|
-
jti: v.
|
|
9
|
-
nonce: v.
|
|
1
|
+
import * as v from 'valibot';
|
|
2
|
+
import type { PublicJwk } from '../jwk/types.ts';
|
|
3
|
+
import type { Awaitable } from './types.ts';
|
|
4
|
+
declare const dpopPayloadSchema: v.LooseObjectSchema<{
|
|
5
|
+
readonly htm: v.StringSchema<undefined>;
|
|
6
|
+
readonly htu: v.StringSchema<undefined>;
|
|
7
|
+
readonly iat: v.NumberSchema<undefined>;
|
|
8
|
+
readonly jti: v.StringSchema<undefined>;
|
|
9
|
+
readonly nonce: v.OptionalSchema<v.StringSchema<undefined>, undefined>;
|
|
10
10
|
}, undefined>;
|
|
11
|
-
export type DpopClaims = v.
|
|
11
|
+
export type DpopClaims = v.InferOutput<typeof dpopPayloadSchema>;
|
|
12
12
|
export interface DpopVerifyResult {
|
|
13
13
|
claims: DpopClaims;
|
|
14
14
|
jkt: string;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"verify.d.ts","sourceRoot":"","sources":["../../lib/dpop/verify.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,CAAC,MAAM,
|
|
1
|
+
{"version":3,"file":"verify.d.ts","sourceRoot":"","sources":["../../lib/dpop/verify.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,CAAC,MAAM,SAAS,CAAC;AAI7B,OAAO,KAAK,EAAE,SAAS,EAAoB,MAAM,iBAAiB,CAAC;AAGnE,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AAyB5C,QAAA,MAAM,iBAAiB;;;;;;aAMrB,CAAC;AAEH,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,WAAW,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAGjE,MAAM,WAAW,gBAAgB;IAChC,MAAM,EAAE,UAAU,CAAC;IACnB,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,SAAS,CAAC;CACf;AAED,MAAM,WAAW,iBAAiB;IACjC,MAAM,EAAE,MAAM,CAAC;IACf,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,CAAC,EAAE;QAAE,KAAK,CAAC,KAAK,EAAE,MAAM,GAAG,SAAS,CAAC,OAAO,CAAC,CAAA;KAAE,CAAC;IACrD,YAAY,CAAC,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,qBAAa,eAAgB,SAAQ,KAAK;IACzC,IAAI,EAAE,SAAS,GAAG,SAAS,GAAG,SAAS,GAAG,gBAAgB,CAAC;IAE3D,YAAY,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,GAAG,SAAS,GAAG,SAAS,GAAG,gBAAgB,EAItF;CACD;AAED;;;;;;;GAOG;AACH,eAAO,MAAM,eAAe,eACf,MAAM,GAAG,IAAI,GAAG,SAAS,WAC5B,iBAAiB,KACxB,OAAO,CAAC,gBAAgB,CAkE1B,CAAC"}
|
package/dist/dpop/verify.js
CHANGED
|
@@ -1,30 +1,33 @@
|
|
|
1
1
|
import { fromBase64Url } from '@atcute/multibase';
|
|
2
2
|
import { decodeUtf8From } from '@atcute/uint8array';
|
|
3
|
-
import * as v from '
|
|
3
|
+
import * as v from 'valibot';
|
|
4
4
|
import { getImportAlgorithm } from '../internal/crypto.js';
|
|
5
5
|
import { computeJktFromJwk } from '../jwk/compute-jkt.js';
|
|
6
6
|
import { verifyJwt } from '../jwt/index.js';
|
|
7
|
-
const dpopJwkSchema = v.union(
|
|
8
|
-
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
7
|
+
const dpopJwkSchema = v.union([
|
|
8
|
+
v.looseObject({
|
|
9
|
+
kty: v.literal('EC'),
|
|
10
|
+
crv: v.picklist(['P-256', 'P-384', 'P-521']),
|
|
11
|
+
x: v.string(),
|
|
12
|
+
y: v.string(),
|
|
13
|
+
}),
|
|
14
|
+
v.looseObject({
|
|
15
|
+
kty: v.literal('RSA'),
|
|
16
|
+
e: v.string(),
|
|
17
|
+
n: v.string(),
|
|
18
|
+
}),
|
|
19
|
+
]);
|
|
20
|
+
const dpopHeaderSchema = v.looseObject({
|
|
18
21
|
typ: v.literal('dpop+jwt'),
|
|
19
|
-
alg: v.string().
|
|
22
|
+
alg: v.pipe(v.string(), v.check((alg) => alg !== 'none', 'alg must not be "none"')),
|
|
20
23
|
jwk: dpopJwkSchema,
|
|
21
24
|
});
|
|
22
|
-
const dpopPayloadSchema = v.
|
|
25
|
+
const dpopPayloadSchema = v.looseObject({
|
|
23
26
|
htm: v.string(),
|
|
24
27
|
htu: v.string(),
|
|
25
28
|
iat: v.number(),
|
|
26
29
|
jti: v.string(),
|
|
27
|
-
nonce: v.
|
|
30
|
+
nonce: v.optional(v.string()),
|
|
28
31
|
});
|
|
29
32
|
/**
|
|
30
33
|
* error thrown when dpop verification fails.
|
|
@@ -33,8 +36,8 @@ export class DpopVerifyError extends Error {
|
|
|
33
36
|
code;
|
|
34
37
|
constructor(message, code) {
|
|
35
38
|
super(message);
|
|
36
|
-
this.code = code;
|
|
37
39
|
this.name = 'DpopVerifyError';
|
|
40
|
+
this.code = code;
|
|
38
41
|
}
|
|
39
42
|
}
|
|
40
43
|
/**
|
|
@@ -54,29 +57,34 @@ export const verifyDpopProof = async (dpopHeader, options) => {
|
|
|
54
57
|
if (parts.length !== 3) {
|
|
55
58
|
throw new DpopVerifyError(`invalid dpop proof format`, 'invalid');
|
|
56
59
|
}
|
|
57
|
-
let
|
|
60
|
+
let decoded;
|
|
58
61
|
try {
|
|
59
|
-
|
|
62
|
+
decoded = decodeSegment(parts[0]);
|
|
60
63
|
}
|
|
61
64
|
catch {
|
|
62
65
|
throw new DpopVerifyError(`invalid dpop header`, 'invalid');
|
|
63
66
|
}
|
|
64
|
-
const
|
|
67
|
+
const headerResult = v.safeParse(dpopHeaderSchema, decoded);
|
|
68
|
+
if (!headerResult.success) {
|
|
69
|
+
throw new DpopVerifyError(`invalid dpop header`, 'invalid');
|
|
70
|
+
}
|
|
71
|
+
const { jwk, alg } = headerResult.output;
|
|
65
72
|
if (!isSigningAlgorithm(alg)) {
|
|
66
73
|
throw new DpopVerifyError(`unsupported dpop alg`, 'invalid');
|
|
67
74
|
}
|
|
68
|
-
let
|
|
75
|
+
let raw;
|
|
69
76
|
try {
|
|
70
77
|
const key = await importPublicKey(jwk, alg);
|
|
71
|
-
|
|
72
|
-
payload = dpopPayloadSchema.parse(raw, { mode: 'passthrough' });
|
|
78
|
+
raw = await verifyJwt(dpopHeader, { key, alg, typ: 'dpop+jwt' });
|
|
73
79
|
}
|
|
74
|
-
catch
|
|
75
|
-
if (err instanceof v.ValitaError) {
|
|
76
|
-
throw new DpopVerifyError(`invalid dpop payload`, 'invalid');
|
|
77
|
-
}
|
|
80
|
+
catch {
|
|
78
81
|
throw new DpopVerifyError(`dpop signature verification failed`, 'invalid');
|
|
79
82
|
}
|
|
83
|
+
const payloadResult = v.safeParse(dpopPayloadSchema, raw);
|
|
84
|
+
if (!payloadResult.success) {
|
|
85
|
+
throw new DpopVerifyError(`invalid dpop payload`, 'invalid');
|
|
86
|
+
}
|
|
87
|
+
const payload = payloadResult.output;
|
|
80
88
|
if (payload.htm !== method) {
|
|
81
89
|
throw new DpopVerifyError(`dpop htm mismatch: expected ${method}, got ${payload.htm}`, 'invalid');
|
|
82
90
|
}
|
package/dist/dpop/verify.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"verify.js","sourceRoot":"","sources":["../../lib/dpop/verify.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAClD,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAEpD,OAAO,KAAK,CAAC,MAAM,
|
|
1
|
+
{"version":3,"file":"verify.js","sourceRoot":"","sources":["../../lib/dpop/verify.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAClD,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAEpD,OAAO,KAAK,CAAC,MAAM,SAAS,CAAC;AAE7B,OAAO,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AAC3D,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAE1D,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAI5C,MAAM,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC;IAC7B,CAAC,CAAC,WAAW,CAAC;QACb,GAAG,EAAE,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC;QACpB,GAAG,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,OAAO,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;QAC5C,CAAC,EAAE,CAAC,CAAC,MAAM,EAAE;QACb,CAAC,EAAE,CAAC,CAAC,MAAM,EAAE;KACb,CAAC;IACF,CAAC,CAAC,WAAW,CAAC;QACb,GAAG,EAAE,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC;QACrB,CAAC,EAAE,CAAC,CAAC,MAAM,EAAE;QACb,CAAC,EAAE,CAAC,CAAC,MAAM,EAAE;KACb,CAAC;CACF,CAAC,CAAC;AAEH,MAAM,gBAAgB,GAAG,CAAC,CAAC,WAAW,CAAC;IACtC,GAAG,EAAE,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC;IAC1B,GAAG,EAAE,CAAC,CAAC,IAAI,CACV,CAAC,CAAC,MAAM,EAAE,EACV,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,KAAK,MAAM,EAAE,wBAAwB,CAAC,CAC1D;IACD,GAAG,EAAE,aAAa;CAClB,CAAC,CAAC;AAEH,MAAM,iBAAiB,GAAG,CAAC,CAAC,WAAW,CAAC;IACvC,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE;IACf,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE;IACf,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE;IACf,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE;IACf,KAAK,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC;CAC7B,CAAC,CAAC;AAkBH;;GAEG;AACH,MAAM,OAAO,eAAgB,SAAQ,KAAK;IACzC,IAAI,CAAuD;IAE3D,YAAY,OAAe,EAAE,IAA0D;QACtF,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,iBAAiB,CAAC;QAC9B,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IAClB,CAAC;CACD;AAED;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,KAAK,EACnC,UAAqC,EACrC,OAA0B,EACE,EAAE;IAC9B,IAAI,CAAC,UAAU,EAAE,CAAC;QACjB,MAAM,IAAI,eAAe,CAAC,qBAAqB,EAAE,SAAS,CAAC,CAAC;IAC7D,CAAC;IAED,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,SAAS,EAAE,YAAY,GAAG,EAAE,EAAE,GAAG,OAAO,CAAC;IACrE,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACpC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,eAAe,CAAC,2BAA2B,EAAE,SAAS,CAAC,CAAC;IACnE,CAAC;IAED,IAAI,OAAgB,CAAC;IACrB,IAAI,CAAC;QACJ,OAAO,GAAG,aAAa,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IACnC,CAAC;IAAC,MAAM,CAAC;QACR,MAAM,IAAI,eAAe,CAAC,qBAAqB,EAAE,SAAS,CAAC,CAAC;IAC7D,CAAC;IAED,MAAM,YAAY,GAAG,CAAC,CAAC,SAAS,CAAC,gBAAgB,EAAE,OAAO,CAAC,CAAC;IAC5D,IAAI,CAAC,YAAY,CAAC,OAAO,EAAE,CAAC;QAC3B,MAAM,IAAI,eAAe,CAAC,qBAAqB,EAAE,SAAS,CAAC,CAAC;IAC7D,CAAC;IAED,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,YAAY,CAAC,MAAM,CAAC;IACzC,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,EAAE,CAAC;QAC9B,MAAM,IAAI,eAAe,CAAC,sBAAsB,EAAE,SAAS,CAAC,CAAC;IAC9D,CAAC;IAED,IAAI,GAAY,CAAC;IACjB,IAAI,CAAC;QACJ,MAAM,GAAG,GAAG,MAAM,eAAe,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QAC5C,GAAG,GAAG,MAAM,SAAS,CAAC,UAAU,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,UAAU,EAAE,CAAC,CAAC;IAClE,CAAC;IAAC,MAAM,CAAC;QACR,MAAM,IAAI,eAAe,CAAC,oCAAoC,EAAE,SAAS,CAAC,CAAC;IAC5E,CAAC;IAED,MAAM,aAAa,GAAG,CAAC,CAAC,SAAS,CAAC,iBAAiB,EAAE,GAAG,CAAC,CAAC;IAC1D,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,CAAC;QAC5B,MAAM,IAAI,eAAe,CAAC,sBAAsB,EAAE,SAAS,CAAC,CAAC;IAC9D,CAAC;IACD,MAAM,OAAO,GAAG,aAAa,CAAC,MAAM,CAAC;IAErC,IAAI,OAAO,CAAC,GAAG,KAAK,MAAM,EAAE,CAAC;QAC5B,MAAM,IAAI,eAAe,CAAC,+BAA+B,MAAM,SAAS,OAAO,CAAC,GAAG,EAAE,EAAE,SAAS,CAAC,CAAC;IACnG,CAAC;IACD,IAAI,OAAO,CAAC,GAAG,KAAK,GAAG,EAAE,CAAC;QACzB,MAAM,IAAI,eAAe,CAAC,+BAA+B,GAAG,SAAS,OAAO,CAAC,GAAG,EAAE,EAAE,SAAS,CAAC,CAAC;IAChG,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;IAC1C,IAAI,OAAO,CAAC,GAAG,GAAG,GAAG,GAAG,YAAY,EAAE,CAAC;QACtC,MAAM,IAAI,eAAe,CAAC,iCAAiC,EAAE,SAAS,CAAC,CAAC;IACzE,CAAC;IACD,IAAI,OAAO,CAAC,GAAG,GAAG,GAAG,GAAG,YAAY,EAAE,CAAC;QACtC,MAAM,IAAI,eAAe,CAAC,oBAAoB,EAAE,SAAS,CAAC,CAAC;IAC5D,CAAC;IAED,IAAI,SAAS,EAAE,CAAC;QACf,IAAI,CAAC,OAAO,CAAC,KAAK,IAAI,CAAC,CAAC,MAAM,SAAS,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC;YAC/D,MAAM,IAAI,eAAe,CAAC,+BAA+B,EAAE,gBAAgB,CAAC,CAAC;QAC9E,CAAC;IACF,CAAC;IAED,MAAM,GAAG,GAAG,MAAM,iBAAiB,CAAC,GAAgB,CAAC,CAAC;IAEtD,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,EAAE,GAAc,EAAE,GAAG,EAAE,CAAC;AACtD,CAAC,CAAC;AAEF,MAAM,eAAe,GAAG,KAAK,EAAE,GAAc,EAAE,GAAqB,EAAsB,EAAE;IAC3F,MAAM,SAAS,GAAG,kBAAkB,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,KAAK,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;IAClF,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC;IACnF,IAAI,CAAC,CAAC,GAAG,YAAY,SAAS,CAAC,EAAE,CAAC;QACjC,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;IAC3D,CAAC;IAED,OAAO,GAAG,CAAC;AACZ,CAAC,CAAC;AAEF,MAAM,kBAAkB,GAAG,CAAC,GAAW,EAA2B,EAAE;IACnE,OAAO,CACN,GAAG,KAAK,OAAO;QACf,GAAG,KAAK,OAAO;QACf,GAAG,KAAK,OAAO;QACf,GAAG,KAAK,OAAO;QACf,GAAG,KAAK,OAAO;QACf,GAAG,KAAK,OAAO;QACf,GAAG,KAAK,OAAO;QACf,GAAG,KAAK,OAAO;QACf,GAAG,KAAK,OAAO,CACf,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,aAAa,GAAG,CAAC,OAAe,EAAW,EAAE;IAClD,MAAM,KAAK,GAAG,aAAa,CAAC,OAAO,CAAC,CAAC;IACrC,OAAO,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC;AAC1C,CAAC,CAAC"}
|
package/dist/hash/index.d.ts
CHANGED
|
@@ -1,3 +1,3 @@
|
|
|
1
|
-
export { generatePkce } from './pkce.
|
|
2
|
-
export { sha256Base64Url } from './sha256.
|
|
1
|
+
export { generatePkce } from './pkce.ts';
|
|
2
|
+
export { sha256Base64Url } from './sha256.ts';
|
|
3
3
|
//# sourceMappingURL=index.d.ts.map
|
package/dist/hash/pkce.d.ts
CHANGED
package/dist/hash/pkce.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"pkce.d.ts","sourceRoot":"","sources":["../../lib/hash/pkce.ts"],"names":[],"mappings":"AAIA;;;;;GAKG;AACH,eAAO,MAAM,YAAY
|
|
1
|
+
{"version":3,"file":"pkce.d.ts","sourceRoot":"","sources":["../../lib/hash/pkce.ts"],"names":[],"mappings":"AAIA;;;;;GAKG;AACH,eAAO,MAAM,YAAY,uBAEtB,OAAO,CAAC;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,SAAS,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAKjE,CAAC"}
|
package/dist/hash/pkce.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"pkce.js","sourceRoot":"","sources":["../../lib/hash/pkce.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAEhC,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAE9C;;;;;GAKG;AACH,MAAM,CAAC,MAAM,YAAY,GAAG,KAAK,EAChC,MAAM,GAAG,EAAE,EACwD,EAAE
|
|
1
|
+
{"version":3,"file":"pkce.js","sourceRoot":"","sources":["../../lib/hash/pkce.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAEhC,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAE9C;;;;;GAKG;AACH,MAAM,CAAC,MAAM,YAAY,GAAG,KAAK,EAChC,MAAM,GAAG,EAAE,EACwD,EAAE;IACrE,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC;IAChC,MAAM,SAAS,GAAG,MAAM,eAAe,CAAC,QAAQ,CAAC,CAAC;IAElD,OAAO,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC;AAChD,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sha256.d.ts","sourceRoot":"","sources":["../../lib/hash/sha256.ts"],"names":[],"mappings":"AAGA;;;;;GAKG;AACH,eAAO,MAAM,eAAe,
|
|
1
|
+
{"version":3,"file":"sha256.d.ts","sourceRoot":"","sources":["../../lib/hash/sha256.ts"],"names":[],"mappings":"AAGA;;;;;GAKG;AACH,eAAO,MAAM,eAAe,UAAiB,MAAM,KAAG,OAAO,CAAC,MAAM,CAInE,CAAC"}
|
package/dist/hash/sha256.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sha256.js","sourceRoot":"","sources":["../../lib/hash/sha256.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAChD,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAE1D;;;;;GAKG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,KAAK,EAAE,KAAa,EAAmB,EAAE
|
|
1
|
+
{"version":3,"file":"sha256.js","sourceRoot":"","sources":["../../lib/hash/sha256.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAChD,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAE1D;;;;;GAKG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,KAAK,EAAE,KAAa,EAAmB,EAAE;IACvE,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC;IAChC,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,CAAC;IACrC,OAAO,WAAW,CAAC,MAAM,CAAC,CAAC;AAC5B,CAAC,CAAC"}
|
package/dist/index.d.ts
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
|
-
export * from './client-assertion/index.
|
|
2
|
-
export * from './dpop/index.
|
|
3
|
-
export * from './hash/index.
|
|
4
|
-
export * from './jwk/index.
|
|
5
|
-
export * from './jwt/index.
|
|
1
|
+
export * from './client-assertion/index.ts';
|
|
2
|
+
export * from './dpop/index.ts';
|
|
3
|
+
export * from './hash/index.ts';
|
|
4
|
+
export * from './jwk/index.ts';
|
|
5
|
+
export * from './jwt/index.ts';
|
|
6
6
|
//# sourceMappingURL=index.d.ts.map
|
|
@@ -1,7 +1,7 @@
|
|
|
1
|
-
import type { SigningAlgorithm } from '../jwk/types.
|
|
2
|
-
export declare const getHashName: (alg: SigningAlgorithm) =>
|
|
3
|
-
export declare const getNamedCurve: (alg: SigningAlgorithm) =>
|
|
4
|
-
export declare const getSignAlgorithm: (alg: SigningAlgorithm) =>
|
|
5
|
-
export declare const getImportAlgorithm: (alg: SigningAlgorithm, curve?:
|
|
1
|
+
import type { SigningAlgorithm } from '../jwk/types.ts';
|
|
2
|
+
export declare const getHashName: (alg: SigningAlgorithm) => 'SHA-256' | 'SHA-384' | 'SHA-512';
|
|
3
|
+
export declare const getNamedCurve: (alg: SigningAlgorithm) => 'P-256' | 'P-384' | 'P-521' | null;
|
|
4
|
+
export declare const getSignAlgorithm: (alg: SigningAlgorithm) => AlgorithmIdentifier | EcdsaParams | RsaPssParams;
|
|
5
|
+
export declare const getImportAlgorithm: (alg: SigningAlgorithm, curve?: 'P-256' | 'P-384' | 'P-521') => EcKeyImportParams | RsaHashedImportParams;
|
|
6
6
|
export declare const getGenerateAlgorithm: (alg: SigningAlgorithm) => EcKeyGenParams | RsaHashedKeyGenParams;
|
|
7
7
|
//# sourceMappingURL=crypto.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"crypto.d.ts","sourceRoot":"","sources":["../../lib/internal/crypto.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AA0BxD,eAAO,MAAM,WAAW,
|
|
1
|
+
{"version":3,"file":"crypto.d.ts","sourceRoot":"","sources":["../../lib/internal/crypto.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AA0BxD,eAAO,MAAM,WAAW,QAAS,gBAAgB,KAAG,SAAS,GAAG,SAAS,GAAG,SAE3E,CAAC;AAEF,eAAO,MAAM,aAAa,QAAS,gBAAgB,KAAG,OAAO,GAAG,OAAO,GAAG,OAAO,GAAG,IAEnF,CAAC;AAEF,eAAO,MAAM,gBAAgB,QAAS,gBAAgB,KAAG,mBAAmB,GAAG,WAAW,GAAG,YAY5F,CAAC;AAEF,eAAO,MAAM,kBAAkB,QACzB,gBAAgB,UACb,OAAO,GAAG,OAAO,GAAG,OAAO,KACjC,iBAAiB,GAAG,qBActB,CAAC;AAEF,eAAO,MAAM,oBAAoB,QAAS,gBAAgB,KAAG,cAAc,GAAG,qBAa7E,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"crypto.js","sourceRoot":"","sources":["../../lib/internal/crypto.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,GAAgE;IAChF,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;CAChB,CAAC;AAEF,MAAM,YAAY,GAAiE;IAClF,KAAK,EAAE,OAAO;IACd,KAAK,EAAE,OAAO;IACd,KAAK,EAAE,OAAO;IACd,KAAK,EAAE,IAAI;IACX,KAAK,EAAE,IAAI;IACX,KAAK,EAAE,IAAI;IACX,KAAK,EAAE,IAAI;IACX,KAAK,EAAE,IAAI;IACX,KAAK,EAAE,IAAI;CACX,CAAC;AAEF,MAAM,CAAC,MAAM,WAAW,GAAG,CAAC,GAAqB,EAAqC,EAAE
|
|
1
|
+
{"version":3,"file":"crypto.js","sourceRoot":"","sources":["../../lib/internal/crypto.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,GAAgE;IAChF,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,SAAS;CAChB,CAAC;AAEF,MAAM,YAAY,GAAiE;IAClF,KAAK,EAAE,OAAO;IACd,KAAK,EAAE,OAAO;IACd,KAAK,EAAE,OAAO;IACd,KAAK,EAAE,IAAI;IACX,KAAK,EAAE,IAAI;IACX,KAAK,EAAE,IAAI;IACX,KAAK,EAAE,IAAI;IACX,KAAK,EAAE,IAAI;IACX,KAAK,EAAE,IAAI;CACX,CAAC;AAEF,MAAM,CAAC,MAAM,WAAW,GAAG,CAAC,GAAqB,EAAqC,EAAE;IACvF,OAAO,WAAW,CAAC,GAAG,CAAC,CAAC;AACzB,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,aAAa,GAAG,CAAC,GAAqB,EAAsC,EAAE;IAC1F,OAAO,YAAY,CAAC,GAAG,CAAC,CAAC;AAC1B,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,GAAqB,EAAoD,EAAE;IAC3G,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QAC1B,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,IAAI,EAAE,WAAW,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;IAC5D,CAAC;IACD,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QAC1B,OAAO;YACN,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,EAAE,IAAI,EAAE,WAAW,CAAC,GAAG,CAAC,EAAE;YAChC,UAAU,EAAE,aAAa,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;SAC3C,CAAC;IACH,CAAC;IACD,OAAO,EAAE,IAAI,EAAE,mBAAmB,EAAE,CAAC;AACtC,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,kBAAkB,GAAG,CACjC,GAAqB,EACrB,KAAmC,EACS,EAAE;IAC9C,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QAC1B,MAAM,UAAU,GAAG,KAAK,IAAI,aAAa,CAAC,GAAG,CAAC,CAAC;QAC/C,IAAI,CAAC,UAAU,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,iCAAiC,GAAG,EAAE,CAAC,CAAC;QACzD,CAAC;QACD,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,UAAU,EAAE,CAAC;IACtC,CAAC;IAED,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QAC1B,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,EAAE,IAAI,EAAE,WAAW,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;IAC9D,CAAC;IAED,OAAO,EAAE,IAAI,EAAE,mBAAmB,EAAE,IAAI,EAAE,EAAE,IAAI,EAAE,WAAW,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;AACxE,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,GAAqB,EAA0C,EAAE;IACrG,MAAM,KAAK,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC;IACjC,IAAI,KAAK,EAAE,CAAC;QACX,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,UAAU,EAAE,KAAK,EAAE,CAAC;IAC7C,CAAC;IAED,MAAM,IAAI,GAAG,EAAE,IAAI,EAAE,WAAW,CAAC,GAAG,CAAC,EAAE,CAAC;IACxC,OAAO;QACN,IAAI,EAAE,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,mBAAmB;QAC5D,IAAI;QACJ,aAAa,EAAE,IAAI;QACnB,cAAc,EAAE,IAAI,UAAU,CAAC,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;KAClD,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,aAAa,GAAG,CAAC,IAAuC,EAAU,EAAE;IACzE,QAAQ,IAAI,EAAE,CAAC;QACd,KAAK,SAAS;YACb,OAAO,EAAE,CAAC;QACX,KAAK,SAAS;YACb,OAAO,EAAE,CAAC;QACX,KAAK,SAAS;YACb,OAAO,EAAE,CAAC;IACZ,CAAC;AACF,CAAC,CAAC"}
|
package/dist/internal/jwk.d.ts
CHANGED
|
@@ -1,10 +1,10 @@
|
|
|
1
|
-
import type { PrivateJwk, PublicJwk, SigningAlgorithm } from '../jwk/types.
|
|
1
|
+
import type { PrivateJwk, PublicJwk, SigningAlgorithm } from '../jwk/types.ts';
|
|
2
2
|
export declare const isSigningAlgorithm: (alg: string) => alg is SigningAlgorithm;
|
|
3
|
-
export declare const parsePrivateJwkInput: (input:
|
|
4
|
-
export declare const resolveSigningAlgorithm: (jwk: PrivateJwk, override?: SigningAlgorithm
|
|
5
|
-
export declare const derivePublicJwk: (privateJwk: PrivateJwk, kid?: string
|
|
3
|
+
export declare const parsePrivateJwkInput: (input: PrivateJwk | string) => PrivateJwk;
|
|
4
|
+
export declare const resolveSigningAlgorithm: (jwk: PrivateJwk, override?: SigningAlgorithm) => SigningAlgorithm | undefined;
|
|
5
|
+
export declare const derivePublicJwk: (privateJwk: PrivateJwk, kid?: string, alg?: SigningAlgorithm) => PublicJwk;
|
|
6
6
|
export declare const importPrivateKeyFromJwk: (jwk: PrivateJwk, alg: SigningAlgorithm) => Promise<CryptoKey>;
|
|
7
|
-
export declare const exportPrivateJwkFromKey: (key: CryptoKey, alg: SigningAlgorithm, kid?: string
|
|
7
|
+
export declare const exportPrivateJwkFromKey: (key: CryptoKey, alg: SigningAlgorithm, kid?: string) => Promise<PrivateJwk>;
|
|
8
8
|
export declare const importPkcs8PrivateKey: (pem: string, alg: SigningAlgorithm) => Promise<CryptoKey>;
|
|
9
9
|
export declare const exportPkcs8PrivateKey: (key: CryptoKey) => Promise<string>;
|
|
10
10
|
//# sourceMappingURL=jwk.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"jwk.d.ts","sourceRoot":"","sources":["../../lib/internal/jwk.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAsB/E,eAAO,MAAM,kBAAkB,
|
|
1
|
+
{"version":3,"file":"jwk.d.ts","sourceRoot":"","sources":["../../lib/internal/jwk.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAsB/E,eAAO,MAAM,kBAAkB,QAAS,MAAM,KAAG,GAAG,IAAI,gBAEvD,CAAC;AAEF,eAAO,MAAM,oBAAoB,UAAW,UAAU,GAAG,MAAM,KAAG,UAejE,CAAC;AAEF,eAAO,MAAM,uBAAuB,QAC9B,UAAU,aACJ,gBAAgB,KACzB,gBAAgB,GAAG,SAkBrB,CAAC;AAEF,eAAO,MAAM,eAAe,eAAgB,UAAU,QAAQ,MAAM,QAAQ,gBAAgB,KAAG,SAY9F,CAAC;AAEF,eAAO,MAAM,uBAAuB,QAAe,UAAU,OAAO,gBAAgB,KAAG,OAAO,CAAC,SAAS,CAoBvG,CAAC;AAEF,eAAO,MAAM,uBAAuB,QAC9B,SAAS,OACT,gBAAgB,QACf,MAAM,KACV,OAAO,CAAC,UAAU,CAOpB,CAAC;AAEF,eAAO,MAAM,qBAAqB,QAAe,MAAM,OAAO,gBAAgB,KAAG,OAAO,CAAC,SAAS,CAWjG,CAAC;AAEF,eAAO,MAAM,qBAAqB,QAAe,SAAS,KAAG,OAAO,CAAC,MAAM,CAM1E,CAAC"}
|
package/dist/internal/jwk.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"jwk.js","sourceRoot":"","sources":["../../lib/internal/jwk.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAI/D,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAEjD,MAAM,kBAAkB,GAAgC;IACvD,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;CACP,CAAC;AAEF,MAAM,YAAY,GAAqC;IACtD,OAAO,EAAE,OAAO;IAChB,OAAO,EAAE,OAAO;IAChB,OAAO,EAAE,OAAO;CAChB,CAAC;AAEF,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,GAAW,EAA2B,EAAE
|
|
1
|
+
{"version":3,"file":"jwk.js","sourceRoot":"","sources":["../../lib/internal/jwk.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAI/D,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAEjD,MAAM,kBAAkB,GAAgC;IACvD,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;IACP,OAAO;CACP,CAAC;AAEF,MAAM,YAAY,GAAqC;IACtD,OAAO,EAAE,OAAO;IAChB,OAAO,EAAE,OAAO;IAChB,OAAO,EAAE,OAAO;CAChB,CAAC;AAEF,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,GAAW,EAA2B,EAAE;IAC1E,OAAQ,kBAAwC,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;AAChE,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,KAA0B,EAAc,EAAE;IAC9E,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC/B,IAAI,CAAC;YACJ,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,KAAK,CAAe,CAAC;YAC5C,OAAO,GAAG,CAAC;QACZ,CAAC;QAAC,MAAM,CAAC;YACR,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QACxC,CAAC;IACF,CAAC;IAED,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,IAAI,KAAK,EAAE,CAAC;QACnE,OAAO,KAAK,CAAC;IACd,CAAC;IAED,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAC;AACtE,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,uBAAuB,GAAG,CACtC,GAAe,EACf,QAA2B,EACI,EAAE;IACjC,IAAI,QAAQ,EAAE,CAAC;QACd,OAAO,QAAQ,CAAC;IACjB,CAAC;IAED,MAAM,GAAG,GAAG,GAAG,CAAC,GAAG,CAAC;IACpB,IAAI,GAAG,IAAI,kBAAkB,CAAC,GAAG,CAAC,EAAE,CAAC;QACpC,OAAO,GAAG,CAAC;IACZ,CAAC;IAED,IAAI,GAAG,CAAC,GAAG,KAAK,IAAI,EAAE,CAAC;QACtB,MAAM,QAAQ,GAAG,YAAY,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACvC,IAAI,QAAQ,EAAE,CAAC;YACd,OAAO,QAAQ,CAAC;QACjB,CAAC;IACF,CAAC;IAED,OAAO,SAAS,CAAC;AAClB,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,UAAsB,EAAE,GAAY,EAAE,GAAsB,EAAa,EAAE;IAC1G,IAAI,UAAU,CAAC,GAAG,KAAK,IAAI,EAAE,CAAC;QAC7B,MAAM,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,UAAU,CAAC;QACjC,OAAO,EAAE,GAAG,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;IACvD,CAAC;IAED,IAAI,UAAU,CAAC,GAAG,KAAK,KAAK,EAAE,CAAC;QAC9B,MAAM,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,UAAU,CAAC;QAC5B,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;IACnD,CAAC;IAED,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAC;AACzC,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,uBAAuB,GAAG,KAAK,EAAE,GAAe,EAAE,GAAqB,EAAsB,EAAE;IAC3G,IAAI,CAAC,CAAC,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC;QAC7B,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;IACnE,CAAC;IAED,IAAI,GAAG,CAAC,GAAG,KAAK,IAAI,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QAC/C,MAAM,IAAI,KAAK,CAAC,aAAa,GAAG,wBAAwB,CAAC,CAAC;IAC3D,CAAC;IACD,IAAI,GAAG,CAAC,GAAG,KAAK,KAAK,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QAC/C,MAAM,IAAI,KAAK,CAAC,aAAa,GAAG,yBAAyB,CAAC,CAAC;IAC5D,CAAC;IAED,MAAM,SAAS,GAAG,kBAAkB,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,KAAK,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;IAClF,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC;IAEjF,IAAI,CAAC,CAAC,GAAG,YAAY,SAAS,CAAC,EAAE,CAAC;QACjC,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;IAC3D,CAAC;IAED,OAAO,GAAG,CAAC;AACZ,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,uBAAuB,GAAG,KAAK,EAC3C,GAAc,EACd,GAAqB,EACrB,GAAY,EACU,EAAE;IACxB,MAAM,GAAG,GAAG,CAAC,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,EAAE,GAAG,CAAC,CAAe,CAAC;IACtE,GAAG,CAAC,GAAG,GAAG,GAAG,CAAC;IACd,IAAI,GAAG,EAAE,CAAC;QACT,GAAG,CAAC,GAAG,GAAG,GAAG,CAAC;IACf,CAAC;IACD,OAAO,GAAG,CAAC;AACZ,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,qBAAqB,GAAG,KAAK,EAAE,GAAW,EAAE,GAAqB,EAAsB,EAAE;IACrG,MAAM,KAAK,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC;IACjC,MAAM,SAAS,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;IAE1C,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC;IAErF,IAAI,CAAC,CAAC,GAAG,YAAY,SAAS,CAAC,EAAE,CAAC;QACjC,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;IAC3D,CAAC;IAED,OAAO,GAAG,CAAC;AACZ,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,qBAAqB,GAAG,KAAK,EAAE,GAAc,EAAmB,EAAE;IAC9E,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;IAC1D,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC;IACpC,MAAM,MAAM,GAAG,WAAW,CAAC,KAAK,CAAC,CAAC;IAElC,OAAO,CAAC,6BAA6B,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC,EAAE,2BAA2B,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACxG,CAAC,CAAC;AAEF,MAAM,aAAa,GAAG,CAAC,GAAW,EAAe,EAAE;IAClD,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,gEAAgE,CAAC,CAAC;IAC1F,IAAI,CAAC,KAAK,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CAAC,mBAAmB,CAAC,CAAC;IACtC,CAAC;IAED,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IAC5C,MAAM,KAAK,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;IACpC,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,UAAU,EAAE,KAAK,CAAC,UAAU,GAAG,KAAK,CAAC,UAAU,CAAC,CAAC;IACzF,OAAO,MAAM,CAAC;AACf,CAAC,CAAC;AAEF,MAAM,OAAO,GAAG,CAAC,KAAa,EAAY,EAAE;IAC3C,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC;QAC3C,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;IACrC,CAAC;IACD,OAAO,MAAM,CAAC;AACf,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"key-cache.d.ts","sourceRoot":"","sources":["../../lib/internal/key-cache.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAI7D;;GAEG;AACH,MAAM,WAAW,iBAAiB;IACjC,SAAS,EAAE,SAAS,CAAC;IACrB,SAAS,EAAE,SAAS,CAAC;CACrB;AAQD;;;;;GAKG;AACH,eAAO,MAAM,oBAAoB,
|
|
1
|
+
{"version":3,"file":"key-cache.d.ts","sourceRoot":"","sources":["../../lib/internal/key-cache.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAI7D;;GAEG;AACH,MAAM,WAAW,iBAAiB;IACjC,SAAS,EAAE,SAAS,CAAC;IACrB,SAAS,EAAE,SAAS,CAAC;CACrB;AAQD;;;;;GAKG;AACH,eAAO,MAAM,oBAAoB,QAAe,UAAU,KAAG,OAAO,CAAC,iBAAiB,CAcrF,CAAC;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,oBAAoB,QAAS,UAAU,aAAa,SAAS,KAAG,IAG5E,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"key-cache.js","sourceRoot":"","sources":["../../lib/internal/key-cache.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,eAAe,EAAE,uBAAuB,EAAE,MAAM,UAAU,CAAC;AAUpE;;;GAGG;AACH,MAAM,QAAQ,GAAG,IAAI,OAAO,EAAiC,CAAC;AAE9D;;;;;GAKG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAG,KAAK,EAAE,GAAe,EAA8B,EAAE
|
|
1
|
+
{"version":3,"file":"key-cache.js","sourceRoot":"","sources":["../../lib/internal/key-cache.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,eAAe,EAAE,uBAAuB,EAAE,MAAM,UAAU,CAAC;AAUpE;;;GAGG;AACH,MAAM,QAAQ,GAAG,IAAI,OAAO,EAAiC,CAAC;AAE9D;;;;;GAKG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAG,KAAK,EAAE,GAAe,EAA8B,EAAE;IACzF,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IACjC,IAAI,MAAM,EAAE,CAAC;QACZ,OAAO,MAAM,CAAC;IACf,CAAC;IAED,MAAM,EAAE,GAAG,EAAE,GAAG,GAAG,CAAC;IACpB,MAAM,SAAS,GAAG,MAAM,uBAAuB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;IAC1D,MAAM,SAAS,GAAG,eAAe,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;IACrD,MAAM,QAAQ,GAAsB,EAAE,SAAS,EAAE,SAAS,EAAE,CAAC;IAE7D,QAAQ,CAAC,GAAG,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;IAE5B,OAAO,QAAQ,CAAC;AACjB,CAAC,CAAC;AAEF;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,GAAe,EAAE,SAAoB,EAAQ,EAAE;IACnF,MAAM,SAAS,GAAG,eAAe,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,CAAC,CAAC;IACzD,QAAQ,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,SAAS,EAAE,CAAC,CAAC;AAC7C,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"compute-jkt.d.ts","sourceRoot":"","sources":["../../lib/jwk/compute-jkt.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AAE5C;;;;;GAKG;AACH,eAAO,MAAM,iBAAiB,
|
|
1
|
+
{"version":3,"file":"compute-jkt.d.ts","sourceRoot":"","sources":["../../lib/jwk/compute-jkt.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AAE5C;;;;;GAKG;AACH,eAAO,MAAM,iBAAiB,QAAe,SAAS,KAAG,OAAO,CAAC,MAAM,CAetE,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"compute-jkt.js","sourceRoot":"","sources":["../../lib/jwk/compute-jkt.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAChD,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAI1D;;;;;GAKG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG,KAAK,EAAE,GAAc,EAAmB,EAAE
|
|
1
|
+
{"version":3,"file":"compute-jkt.js","sourceRoot":"","sources":["../../lib/jwk/compute-jkt.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAChD,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAI1D;;;;;GAKG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG,KAAK,EAAE,GAAc,EAAmB,EAAE;IAC1E,IAAI,SAAiC,CAAC;IAEtC,IAAI,GAAG,CAAC,GAAG,KAAK,IAAI,EAAE,CAAC;QACtB,MAAM,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,GAAG,CAAC;QAC1B,SAAS,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC;IACzC,CAAC;SAAM,CAAC;QACP,MAAM,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,GAAG,CAAC;QACrB,SAAS,GAAG,EAAE,CAAC,EAAE,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC;IACpC,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;IAC7C,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC,CAAC;IAEpD,OAAO,WAAW,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC,CAAC"}
|
package/dist/jwk/index.d.ts
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
export { computeJktFromJwk } from './compute-jkt.
|
|
2
|
-
export { derivePublicJwk } from '../internal/jwk.
|
|
3
|
-
export { exportPkcs8PrivateKey } from './keys.
|
|
4
|
-
export type { EcPrivateJwk, EcPublicJwk, PrivateJwk, PublicJwk, RsaPrivateJwk, RsaPublicJwk, SigningAlgorithm, } from './types.
|
|
1
|
+
export { computeJktFromJwk } from './compute-jkt.ts';
|
|
2
|
+
export { derivePublicJwk } from '../internal/jwk.ts';
|
|
3
|
+
export { exportPkcs8PrivateKey } from './keys.ts';
|
|
4
|
+
export type { EcPrivateJwk, EcPublicJwk, PrivateJwk, PublicJwk, RsaPrivateJwk, RsaPublicJwk, SigningAlgorithm, } from './types.ts';
|
|
5
5
|
//# sourceMappingURL=index.d.ts.map
|
package/dist/jwk/keys.d.ts
CHANGED
package/dist/jwk/keys.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"keys.d.ts","sourceRoot":"","sources":["../../lib/jwk/keys.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAE7C;;;;;GAKG;AACH,eAAO,MAAM,qBAAqB,
|
|
1
|
+
{"version":3,"file":"keys.d.ts","sourceRoot":"","sources":["../../lib/jwk/keys.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAE7C;;;;;GAKG;AACH,eAAO,MAAM,qBAAqB,QAAe,UAAU,KAAG,OAAO,CAAC,MAAM,CAG3E,CAAC"}
|
package/dist/jwk/keys.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"keys.js","sourceRoot":"","sources":["../../lib/jwk/keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,qBAAqB,IAAI,WAAW,EAAE,MAAM,oBAAoB,CAAC;AAC1E,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAIhE;;;;;GAKG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,KAAK,EAAE,GAAe,EAAmB,EAAE
|
|
1
|
+
{"version":3,"file":"keys.js","sourceRoot":"","sources":["../../lib/jwk/keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,qBAAqB,IAAI,WAAW,EAAE,MAAM,oBAAoB,CAAC;AAC1E,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AAIhE;;;;;GAKG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,KAAK,EAAE,GAAe,EAAmB,EAAE;IAC/E,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,oBAAoB,CAAC,GAAG,CAAC,CAAC;IACtD,OAAO,WAAW,CAAC,SAAS,CAAC,CAAC;AAC/B,CAAC,CAAC"}
|
package/dist/jwt/index.d.ts
CHANGED
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import type { SigningAlgorithm } from '../jwk/types.
|
|
1
|
+
import type { SigningAlgorithm } from '../jwk/types.ts';
|
|
2
2
|
/**
|
|
3
3
|
* signs a jwt using webcrypto.
|
|
4
4
|
*
|
|
@@ -21,6 +21,6 @@ export declare const signJwt: (params: {
|
|
|
21
21
|
export declare const verifyJwt: (jwt: string, options: {
|
|
22
22
|
key: CryptoKey;
|
|
23
23
|
alg: SigningAlgorithm;
|
|
24
|
-
typ?: string
|
|
24
|
+
typ?: string;
|
|
25
25
|
}) => Promise<Record<string, unknown>>;
|
|
26
26
|
//# sourceMappingURL=index.d.ts.map
|
package/dist/jwt/index.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../lib/jwt/index.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAExD;;;;;GAKG;AACH,eAAO,MAAM,OAAO
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../lib/jwt/index.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAExD;;;;;GAKG;AACH,eAAO,MAAM,OAAO,WAAkB;IACrC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAChC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,GAAG,EAAE,SAAS,CAAC;IACf,GAAG,EAAE,gBAAgB,CAAC;CACtB,KAAG,OAAO,CAAC,MAAM,CAgBjB,CAAC;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,SAAS,QAChB,MAAM,WACF;IAAE,GAAG,EAAE,SAAS,CAAC;IAAC,GAAG,EAAE,gBAAgB,CAAC;IAAC,GAAG,CAAC,EAAE,MAAM,CAAA;CAAE,KAC9D,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CA+BjC,CAAC"}
|
package/dist/jwt/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../lib/jwt/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAC/D,OAAO,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAEhE,OAAO,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAC;AAGzD;;;;;GAKG;AACH,MAAM,CAAC,MAAM,OAAO,GAAG,KAAK,EAAE,MAK7B,EAAmB,EAAE
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../lib/jwt/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAC/D,OAAO,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAEhE,OAAO,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAC;AAGzD;;;;;GAKG;AACH,MAAM,CAAC,MAAM,OAAO,GAAG,KAAK,EAAE,MAK7B,EAAmB,EAAE;IACrB,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,MAAM,CAAC;IAC7C,MAAM,UAAU,GAAG,EAAE,GAAG,MAAM,EAAE,GAAG,EAAE,CAAC;IACtC,MAAM,aAAa,GAAG,aAAa,CAAC,UAAU,CAAC,CAAC;IAChD,MAAM,cAAc,GAAG,aAAa,CAAC,OAAO,CAAC,CAAC;IAC9C,MAAM,YAAY,GAAG,GAAG,aAAa,IAAI,cAAc,EAAE,CAAC;IAE1D,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,IAAI,CACzC,gBAAgB,CAAC,GAAG,CAAC,EACrB,GAAG,EACH,UAAU,CAAC,YAAY,CAA4B,CACnD,CAAC;IAEF,MAAM,gBAAgB,GAAG,WAAW,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC;IAEhE,OAAO,GAAG,YAAY,IAAI,gBAAgB,EAAE,CAAC;AAC9C,CAAC,CAAC;AAEF;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,SAAS,GAAG,KAAK,EAC7B,GAAW,EACX,OAAgE,EAC7B,EAAE;IACrC,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC;IAClC,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC7B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;IACvC,CAAC;IAED,MAAM,MAAM,GAAG,aAAa,CAA0B,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IAChE,IAAI,MAAM,CAAC,GAAG,KAAK,GAAG,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACpC,CAAC;IACD,IAAI,GAAG,IAAI,MAAM,CAAC,GAAG,KAAK,GAAG,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACpC,CAAC;IAED,MAAM,OAAO,GAAG,aAAa,CAA0B,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IACjE,MAAM,SAAS,GAAG,aAAa,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IAC1C,MAAM,YAAY,GAAG,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC;IAE/C,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CACpC,gBAAgB,CAAC,GAAG,CAAC,EACrB,GAAG,EACH,SAAS,EACT,UAAU,CAAC,YAAY,CAA4B,CACnD,CAAC;IAEF,IAAI,CAAC,EAAE,EAAE,CAAC;QACT,MAAM,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC1C,CAAC;IAED,OAAO,OAAO,CAAC;AAChB,CAAC,CAAC;AAEF,MAAM,aAAa,GAAG,CAAC,KAAc,EAAU,EAAE;IAChD,OAAO,WAAW,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;AACvD,CAAC,CAAC;AAEF,MAAM,aAAa,GAAG,CAAI,KAAa,EAAK,EAAE;IAC7C,MAAM,KAAK,GAAG,aAAa,CAAC,KAAK,CAAC,CAAC;IACnC,OAAO,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,KAAK,CAAC,CAAM,CAAC;AAC/C,CAAC,CAAC"}
|
|
@@ -1,9 +1,9 @@
|
|
|
1
1
|
import { nanoid } from 'nanoid';
|
|
2
2
|
|
|
3
|
-
import { getCachedKeyMaterial } from '../internal/key-cache.
|
|
4
|
-
import { signJwt } from '../jwt/index.
|
|
3
|
+
import { getCachedKeyMaterial } from '../internal/key-cache.ts';
|
|
4
|
+
import { signJwt } from '../jwt/index.ts';
|
|
5
5
|
|
|
6
|
-
import type { ClientAssertionPrivateJwk } from './types.
|
|
6
|
+
import type { ClientAssertionPrivateJwk } from './types.ts';
|
|
7
7
|
|
|
8
8
|
export interface CreateClientAssertionOptions {
|
|
9
9
|
/** client id */
|
|
@@ -1,9 +1,9 @@
|
|
|
1
|
-
import { getGenerateAlgorithm } from '../internal/crypto.
|
|
2
|
-
import { exportPrivateJwkFromKey } from '../internal/jwk.
|
|
3
|
-
import { setCachedKeyMaterial } from '../internal/key-cache.
|
|
4
|
-
import type { SigningAlgorithm } from '../jwk/types.
|
|
1
|
+
import { getGenerateAlgorithm } from '../internal/crypto.ts';
|
|
2
|
+
import { exportPrivateJwkFromKey } from '../internal/jwk.ts';
|
|
3
|
+
import { setCachedKeyMaterial } from '../internal/key-cache.ts';
|
|
4
|
+
import type { SigningAlgorithm } from '../jwk/types.ts';
|
|
5
5
|
|
|
6
|
-
import type { ClientAssertionPrivateJwk } from './types.
|
|
6
|
+
import type { ClientAssertionPrivateJwk } from './types.ts';
|
|
7
7
|
|
|
8
8
|
/**
|
|
9
9
|
* generates a new client assertion private key.
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
export { createClientAssertion } from './create-client-assertion.
|
|
2
|
-
export { generateClientAssertionKey } from './generate-key.
|
|
3
|
-
export { importClientAssertionPkcs8 } from './keys.
|
|
4
|
-
export type { ClientAssertionPrivateJwk } from './types.
|
|
1
|
+
export { createClientAssertion } from './create-client-assertion.ts';
|
|
2
|
+
export { generateClientAssertionKey } from './generate-key.ts';
|
|
3
|
+
export { importClientAssertionPkcs8 } from './keys.ts';
|
|
4
|
+
export type { ClientAssertionPrivateJwk } from './types.ts';
|
|
@@ -1,8 +1,8 @@
|
|
|
1
|
-
import { exportPrivateJwkFromKey, importPkcs8PrivateKey } from '../internal/jwk.
|
|
2
|
-
import { setCachedKeyMaterial } from '../internal/key-cache.
|
|
3
|
-
import type { SigningAlgorithm } from '../jwk/types.
|
|
1
|
+
import { exportPrivateJwkFromKey, importPkcs8PrivateKey } from '../internal/jwk.ts';
|
|
2
|
+
import { setCachedKeyMaterial } from '../internal/key-cache.ts';
|
|
3
|
+
import type { SigningAlgorithm } from '../jwk/types.ts';
|
|
4
4
|
|
|
5
|
-
import type { ClientAssertionPrivateJwk } from './types.
|
|
5
|
+
import type { ClientAssertionPrivateJwk } from './types.ts';
|
|
6
6
|
|
|
7
7
|
/**
|
|
8
8
|
* imports a client assertion private key from a pkcs8 pem string.
|
package/lib/dpop/fetch.ts
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
|
-
import { sha256Base64Url } from '../hash/sha256.
|
|
1
|
+
import { sha256Base64Url } from '../hash/sha256.ts';
|
|
2
2
|
|
|
3
|
-
import { createDpopProofSigner } from './proof.
|
|
4
|
-
import type { DpopPrivateJwk, DpopNonceCache } from './types.
|
|
3
|
+
import { createDpopProofSigner } from './proof.ts';
|
|
4
|
+
import type { DpopPrivateJwk, DpopNonceCache } from './types.ts';
|
|
5
5
|
|
|
6
6
|
export interface CreateDpopFetchOptions {
|
|
7
7
|
/** DPoP private key (JWK with `alg` set) */
|
package/lib/dpop/generate-key.ts
CHANGED
|
@@ -1,9 +1,9 @@
|
|
|
1
|
-
import { getGenerateAlgorithm } from '../internal/crypto.
|
|
2
|
-
import { exportPrivateJwkFromKey, isSigningAlgorithm } from '../internal/jwk.
|
|
3
|
-
import { setCachedKeyMaterial } from '../internal/key-cache.
|
|
4
|
-
import type { SigningAlgorithm } from '../jwk/types.
|
|
1
|
+
import { getGenerateAlgorithm } from '../internal/crypto.ts';
|
|
2
|
+
import { exportPrivateJwkFromKey, isSigningAlgorithm } from '../internal/jwk.ts';
|
|
3
|
+
import { setCachedKeyMaterial } from '../internal/key-cache.ts';
|
|
4
|
+
import type { SigningAlgorithm } from '../jwk/types.ts';
|
|
5
5
|
|
|
6
|
-
import type { DpopPrivateJwk } from './types.
|
|
6
|
+
import type { DpopPrivateJwk } from './types.ts';
|
|
7
7
|
|
|
8
8
|
/**
|
|
9
9
|
* preferred algorithm order for DPoP key generation.
|
|
@@ -21,7 +21,7 @@ const PREFERRED_ALGORITHMS: readonly SigningAlgorithm[] = [
|
|
|
21
21
|
];
|
|
22
22
|
|
|
23
23
|
const sortAlgorithms = (algs: readonly SigningAlgorithm[]): SigningAlgorithm[] => {
|
|
24
|
-
return
|
|
24
|
+
return algs.toSorted((a, b) => {
|
|
25
25
|
const aIdx = PREFERRED_ALGORITHMS.indexOf(a);
|
|
26
26
|
const bIdx = PREFERRED_ALGORITHMS.indexOf(b);
|
|
27
27
|
|
package/lib/dpop/index.ts
CHANGED
|
@@ -1,11 +1,11 @@
|
|
|
1
|
-
export { createDpopFetch } from './fetch.
|
|
2
|
-
export { generateDpopKey } from './generate-key.
|
|
3
|
-
export { createDpopProofSigner } from './proof.
|
|
4
|
-
export type { DpopNonceCache, DpopPrivateJwk } from './types.
|
|
1
|
+
export { createDpopFetch } from './fetch.ts';
|
|
2
|
+
export { generateDpopKey } from './generate-key.ts';
|
|
3
|
+
export { createDpopProofSigner } from './proof.ts';
|
|
4
|
+
export type { DpopNonceCache, DpopPrivateJwk } from './types.ts';
|
|
5
5
|
export {
|
|
6
6
|
DpopVerifyError,
|
|
7
7
|
verifyDpopProof,
|
|
8
8
|
type DpopClaims,
|
|
9
9
|
type DpopVerifyOptions,
|
|
10
10
|
type DpopVerifyResult,
|
|
11
|
-
} from './verify.
|
|
11
|
+
} from './verify.ts';
|
package/lib/dpop/proof.ts
CHANGED
|
@@ -1,10 +1,10 @@
|
|
|
1
1
|
import { nanoid } from 'nanoid';
|
|
2
2
|
|
|
3
|
-
import type { CachedKeyMaterial } from '../internal/key-cache.
|
|
4
|
-
import { getCachedKeyMaterial } from '../internal/key-cache.
|
|
5
|
-
import { signJwt } from '../jwt/index.
|
|
3
|
+
import type { CachedKeyMaterial } from '../internal/key-cache.ts';
|
|
4
|
+
import { getCachedKeyMaterial } from '../internal/key-cache.ts';
|
|
5
|
+
import { signJwt } from '../jwt/index.ts';
|
|
6
6
|
|
|
7
|
-
import type { DpopPrivateJwk } from './types.
|
|
7
|
+
import type { DpopPrivateJwk } from './types.ts';
|
|
8
8
|
|
|
9
9
|
/**
|
|
10
10
|
* creates a DPoP proof signer.
|
package/lib/dpop/types.ts
CHANGED
package/lib/dpop/verify.ts
CHANGED
|
@@ -1,45 +1,48 @@
|
|
|
1
1
|
import { fromBase64Url } from '@atcute/multibase';
|
|
2
2
|
import { decodeUtf8From } from '@atcute/uint8array';
|
|
3
3
|
|
|
4
|
-
import * as v from '
|
|
4
|
+
import * as v from 'valibot';
|
|
5
5
|
|
|
6
|
-
import { getImportAlgorithm } from '../internal/crypto.
|
|
7
|
-
import { computeJktFromJwk } from '../jwk/compute-jkt.
|
|
8
|
-
import type { PublicJwk, SigningAlgorithm } from '../jwk/types.
|
|
9
|
-
import { verifyJwt } from '../jwt/index.
|
|
6
|
+
import { getImportAlgorithm } from '../internal/crypto.ts';
|
|
7
|
+
import { computeJktFromJwk } from '../jwk/compute-jkt.ts';
|
|
8
|
+
import type { PublicJwk, SigningAlgorithm } from '../jwk/types.ts';
|
|
9
|
+
import { verifyJwt } from '../jwt/index.ts';
|
|
10
10
|
|
|
11
|
-
import type { Awaitable } from './types.
|
|
11
|
+
import type { Awaitable } from './types.ts';
|
|
12
12
|
|
|
13
|
-
const dpopJwkSchema = v.union(
|
|
14
|
-
v.
|
|
13
|
+
const dpopJwkSchema = v.union([
|
|
14
|
+
v.looseObject({
|
|
15
15
|
kty: v.literal('EC'),
|
|
16
|
-
crv: v.
|
|
16
|
+
crv: v.picklist(['P-256', 'P-384', 'P-521']),
|
|
17
17
|
x: v.string(),
|
|
18
18
|
y: v.string(),
|
|
19
19
|
}),
|
|
20
|
-
v.
|
|
20
|
+
v.looseObject({
|
|
21
21
|
kty: v.literal('RSA'),
|
|
22
22
|
e: v.string(),
|
|
23
23
|
n: v.string(),
|
|
24
24
|
}),
|
|
25
|
-
);
|
|
25
|
+
]);
|
|
26
26
|
|
|
27
|
-
const dpopHeaderSchema = v.
|
|
27
|
+
const dpopHeaderSchema = v.looseObject({
|
|
28
28
|
typ: v.literal('dpop+jwt'),
|
|
29
|
-
alg: v.
|
|
29
|
+
alg: v.pipe(
|
|
30
|
+
v.string(),
|
|
31
|
+
v.check((alg) => alg !== 'none', 'alg must not be "none"'),
|
|
32
|
+
),
|
|
30
33
|
jwk: dpopJwkSchema,
|
|
31
34
|
});
|
|
32
35
|
|
|
33
|
-
const dpopPayloadSchema = v.
|
|
36
|
+
const dpopPayloadSchema = v.looseObject({
|
|
34
37
|
htm: v.string(),
|
|
35
38
|
htu: v.string(),
|
|
36
39
|
iat: v.number(),
|
|
37
40
|
jti: v.string(),
|
|
38
|
-
nonce: v.
|
|
41
|
+
nonce: v.optional(v.string()),
|
|
39
42
|
});
|
|
40
43
|
|
|
41
|
-
export type DpopClaims = v.
|
|
42
|
-
type DpopJwk = v.
|
|
44
|
+
export type DpopClaims = v.InferOutput<typeof dpopPayloadSchema>;
|
|
45
|
+
type DpopJwk = v.InferOutput<typeof dpopJwkSchema>;
|
|
43
46
|
|
|
44
47
|
export interface DpopVerifyResult {
|
|
45
48
|
claims: DpopClaims;
|
|
@@ -58,12 +61,12 @@ export interface DpopVerifyOptions {
|
|
|
58
61
|
* error thrown when dpop verification fails.
|
|
59
62
|
*/
|
|
60
63
|
export class DpopVerifyError extends Error {
|
|
61
|
-
|
|
62
|
-
|
|
63
|
-
|
|
64
|
-
) {
|
|
64
|
+
code: 'missing' | 'invalid' | 'expired' | 'nonce_required';
|
|
65
|
+
|
|
66
|
+
constructor(message: string, code: 'missing' | 'invalid' | 'expired' | 'nonce_required') {
|
|
65
67
|
super(message);
|
|
66
68
|
this.name = 'DpopVerifyError';
|
|
69
|
+
this.code = code;
|
|
67
70
|
}
|
|
68
71
|
}
|
|
69
72
|
|
|
@@ -89,30 +92,37 @@ export const verifyDpopProof = async (
|
|
|
89
92
|
throw new DpopVerifyError(`invalid dpop proof format`, 'invalid');
|
|
90
93
|
}
|
|
91
94
|
|
|
92
|
-
let
|
|
95
|
+
let decoded: unknown;
|
|
93
96
|
try {
|
|
94
|
-
|
|
97
|
+
decoded = decodeSegment(parts[0]);
|
|
95
98
|
} catch {
|
|
96
99
|
throw new DpopVerifyError(`invalid dpop header`, 'invalid');
|
|
97
100
|
}
|
|
98
101
|
|
|
99
|
-
const
|
|
102
|
+
const headerResult = v.safeParse(dpopHeaderSchema, decoded);
|
|
103
|
+
if (!headerResult.success) {
|
|
104
|
+
throw new DpopVerifyError(`invalid dpop header`, 'invalid');
|
|
105
|
+
}
|
|
106
|
+
|
|
107
|
+
const { jwk, alg } = headerResult.output;
|
|
100
108
|
if (!isSigningAlgorithm(alg)) {
|
|
101
109
|
throw new DpopVerifyError(`unsupported dpop alg`, 'invalid');
|
|
102
110
|
}
|
|
103
111
|
|
|
104
|
-
let
|
|
112
|
+
let raw: unknown;
|
|
105
113
|
try {
|
|
106
114
|
const key = await importPublicKey(jwk, alg);
|
|
107
|
-
|
|
108
|
-
|
|
109
|
-
} catch (err) {
|
|
110
|
-
if (err instanceof v.ValitaError) {
|
|
111
|
-
throw new DpopVerifyError(`invalid dpop payload`, 'invalid');
|
|
112
|
-
}
|
|
115
|
+
raw = await verifyJwt(dpopHeader, { key, alg, typ: 'dpop+jwt' });
|
|
116
|
+
} catch {
|
|
113
117
|
throw new DpopVerifyError(`dpop signature verification failed`, 'invalid');
|
|
114
118
|
}
|
|
115
119
|
|
|
120
|
+
const payloadResult = v.safeParse(dpopPayloadSchema, raw);
|
|
121
|
+
if (!payloadResult.success) {
|
|
122
|
+
throw new DpopVerifyError(`invalid dpop payload`, 'invalid');
|
|
123
|
+
}
|
|
124
|
+
const payload = payloadResult.output;
|
|
125
|
+
|
|
116
126
|
if (payload.htm !== method) {
|
|
117
127
|
throw new DpopVerifyError(`dpop htm mismatch: expected ${method}, got ${payload.htm}`, 'invalid');
|
|
118
128
|
}
|
package/lib/hash/index.ts
CHANGED
|
@@ -1,2 +1,2 @@
|
|
|
1
|
-
export { generatePkce } from './pkce.
|
|
2
|
-
export { sha256Base64Url } from './sha256.
|
|
1
|
+
export { generatePkce } from './pkce.ts';
|
|
2
|
+
export { sha256Base64Url } from './sha256.ts';
|
package/lib/hash/pkce.ts
CHANGED
package/lib/index.ts
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
export * from './client-assertion/index.
|
|
2
|
-
export * from './dpop/index.
|
|
3
|
-
export * from './hash/index.
|
|
4
|
-
export * from './jwk/index.
|
|
5
|
-
export * from './jwt/index.
|
|
1
|
+
export * from './client-assertion/index.ts';
|
|
2
|
+
export * from './dpop/index.ts';
|
|
3
|
+
export * from './hash/index.ts';
|
|
4
|
+
export * from './jwk/index.ts';
|
|
5
|
+
export * from './jwt/index.ts';
|
package/lib/internal/crypto.ts
CHANGED
package/lib/internal/jwk.ts
CHANGED
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
import { fromBase64Pad, toBase64Pad } from '@atcute/multibase';
|
|
2
2
|
|
|
3
|
-
import type { PrivateJwk, PublicJwk, SigningAlgorithm } from '../jwk/types.
|
|
3
|
+
import type { PrivateJwk, PublicJwk, SigningAlgorithm } from '../jwk/types.ts';
|
|
4
4
|
|
|
5
|
-
import { getImportAlgorithm } from './crypto.
|
|
5
|
+
import { getImportAlgorithm } from './crypto.ts';
|
|
6
6
|
|
|
7
7
|
const SIGNING_ALGORITHMS: readonly SigningAlgorithm[] = [
|
|
8
8
|
'ES256',
|
|
@@ -1,6 +1,6 @@
|
|
|
1
|
-
import type { PrivateJwk, PublicJwk } from '../jwk/types.
|
|
1
|
+
import type { PrivateJwk, PublicJwk } from '../jwk/types.ts';
|
|
2
2
|
|
|
3
|
-
import { derivePublicJwk, importPrivateKeyFromJwk } from './jwk.
|
|
3
|
+
import { derivePublicJwk, importPrivateKeyFromJwk } from './jwk.ts';
|
|
4
4
|
|
|
5
5
|
/**
|
|
6
6
|
* cached key material for a JWK.
|
package/lib/jwk/compute-jkt.ts
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
import { toBase64Url } from '@atcute/multibase';
|
|
2
2
|
import { encodeUtf8, toSha256 } from '@atcute/uint8array';
|
|
3
3
|
|
|
4
|
-
import type { PublicJwk } from './types.
|
|
4
|
+
import type { PublicJwk } from './types.ts';
|
|
5
5
|
|
|
6
6
|
/**
|
|
7
7
|
* computes the jwk thumbprint (rfc 7638) for a public key.
|
package/lib/jwk/index.ts
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
|
-
export { computeJktFromJwk } from './compute-jkt.
|
|
2
|
-
export { derivePublicJwk } from '../internal/jwk.
|
|
3
|
-
export { exportPkcs8PrivateKey } from './keys.
|
|
1
|
+
export { computeJktFromJwk } from './compute-jkt.ts';
|
|
2
|
+
export { derivePublicJwk } from '../internal/jwk.ts';
|
|
3
|
+
export { exportPkcs8PrivateKey } from './keys.ts';
|
|
4
4
|
export type {
|
|
5
5
|
EcPrivateJwk,
|
|
6
6
|
EcPublicJwk,
|
|
@@ -9,4 +9,4 @@ export type {
|
|
|
9
9
|
RsaPrivateJwk,
|
|
10
10
|
RsaPublicJwk,
|
|
11
11
|
SigningAlgorithm,
|
|
12
|
-
} from './types.
|
|
12
|
+
} from './types.ts';
|
package/lib/jwk/keys.ts
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
|
-
import { exportPkcs8PrivateKey as exportPkcs8 } from '../internal/jwk.
|
|
2
|
-
import { getCachedKeyMaterial } from '../internal/key-cache.
|
|
1
|
+
import { exportPkcs8PrivateKey as exportPkcs8 } from '../internal/jwk.ts';
|
|
2
|
+
import { getCachedKeyMaterial } from '../internal/key-cache.ts';
|
|
3
3
|
|
|
4
|
-
import type { PrivateJwk } from './types.
|
|
4
|
+
import type { PrivateJwk } from './types.ts';
|
|
5
5
|
|
|
6
6
|
/**
|
|
7
7
|
* exports a private JWK to PKCS8 PEM format.
|
package/lib/jwt/index.ts
CHANGED
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
import { fromBase64Url, toBase64Url } from '@atcute/multibase';
|
|
2
2
|
import { decodeUtf8From, encodeUtf8 } from '@atcute/uint8array';
|
|
3
3
|
|
|
4
|
-
import { getSignAlgorithm } from '../internal/crypto.
|
|
5
|
-
import type { SigningAlgorithm } from '../jwk/types.
|
|
4
|
+
import { getSignAlgorithm } from '../internal/crypto.ts';
|
|
5
|
+
import type { SigningAlgorithm } from '../jwk/types.ts';
|
|
6
6
|
|
|
7
7
|
/**
|
|
8
8
|
* signs a jwt using webcrypto.
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@atcute/oauth-crypto",
|
|
3
|
-
"version": "
|
|
3
|
+
"version": "1.0.0",
|
|
4
4
|
"description": "crypto helpers for AT Protocol OAuth",
|
|
5
5
|
"license": "0BSD",
|
|
6
6
|
"repository": {
|
|
@@ -11,7 +11,8 @@
|
|
|
11
11
|
"dist/",
|
|
12
12
|
"lib/",
|
|
13
13
|
"!lib/**/*.bench.ts",
|
|
14
|
-
"!lib/**/*.test.ts"
|
|
14
|
+
"!lib/**/*.test.ts",
|
|
15
|
+
"!dist/**/*.{test,bench}.*"
|
|
15
16
|
],
|
|
16
17
|
"type": "module",
|
|
17
18
|
"sideEffects": false,
|
|
@@ -22,16 +23,16 @@
|
|
|
22
23
|
"access": "public"
|
|
23
24
|
},
|
|
24
25
|
"dependencies": {
|
|
25
|
-
"
|
|
26
|
-
"
|
|
27
|
-
"@atcute/multibase": "^1.
|
|
28
|
-
"@atcute/uint8array": "^1.1.
|
|
26
|
+
"nanoid": "^5.1.11",
|
|
27
|
+
"valibot": "^1.4.0",
|
|
28
|
+
"@atcute/multibase": "^1.2.0",
|
|
29
|
+
"@atcute/uint8array": "^1.1.1"
|
|
29
30
|
},
|
|
30
31
|
"devDependencies": {
|
|
31
|
-
"vitest": "^4.
|
|
32
|
+
"vitest": "^4.1.5"
|
|
32
33
|
},
|
|
33
34
|
"scripts": {
|
|
34
|
-
"build": "tsgo
|
|
35
|
+
"build": "tsgo",
|
|
35
36
|
"test": "vitest",
|
|
36
37
|
"prepublish": "rm -rf dist; pnpm run build"
|
|
37
38
|
}
|