@atproto/bsky 0.0.170 → 0.0.171
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +9 -0
- package/dist/api/app/bsky/unspecced/getAgeAssuranceState.d.ts +4 -0
- package/dist/api/app/bsky/unspecced/getAgeAssuranceState.d.ts.map +1 -0
- package/dist/api/app/bsky/unspecced/getAgeAssuranceState.js +36 -0
- package/dist/api/app/bsky/unspecced/getAgeAssuranceState.js.map +1 -0
- package/dist/api/app/bsky/unspecced/initAgeAssurance.d.ts +4 -0
- package/dist/api/app/bsky/unspecced/initAgeAssurance.d.ts.map +1 -0
- package/dist/api/app/bsky/unspecced/initAgeAssurance.js +59 -0
- package/dist/api/app/bsky/unspecced/initAgeAssurance.js.map +1 -0
- package/dist/api/external.d.ts +4 -0
- package/dist/api/external.d.ts.map +1 -0
- package/dist/api/external.js +47 -0
- package/dist/api/external.js.map +1 -0
- package/dist/api/index.d.ts +1 -0
- package/dist/api/index.d.ts.map +1 -1
- package/dist/api/index.js +6 -1
- package/dist/api/index.js.map +1 -1
- package/dist/api/kws/api.d.ts +4 -0
- package/dist/api/kws/api.d.ts.map +1 -0
- package/dist/api/kws/api.js +60 -0
- package/dist/api/kws/api.js.map +1 -0
- package/dist/api/kws/index.d.ts +4 -0
- package/dist/api/kws/index.d.ts.map +1 -0
- package/dist/api/kws/index.js +21 -0
- package/dist/api/kws/index.js.map +1 -0
- package/dist/api/kws/types.d.ts +100 -0
- package/dist/api/kws/types.d.ts.map +1 -0
- package/dist/api/kws/types.js +29 -0
- package/dist/api/kws/types.js.map +1 -0
- package/dist/api/kws/util.d.ts +21 -0
- package/dist/api/kws/util.d.ts.map +1 -0
- package/dist/api/kws/util.js +78 -0
- package/dist/api/kws/util.js.map +1 -0
- package/dist/api/kws/webhook.d.ts +5 -0
- package/dist/api/kws/webhook.d.ts.map +1 -0
- package/dist/api/kws/webhook.js +80 -0
- package/dist/api/kws/webhook.js.map +1 -0
- package/dist/config.d.ts +12 -0
- package/dist/config.d.ts.map +1 -1
- package/dist/config.js +40 -0
- package/dist/config.js.map +1 -1
- package/dist/context.d.ts +3 -0
- package/dist/context.d.ts.map +1 -1
- package/dist/context.js +3 -0
- package/dist/context.js.map +1 -1
- package/dist/data-plane/bsync/index.d.ts.map +1 -1
- package/dist/data-plane/bsync/index.js +52 -33
- package/dist/data-plane/bsync/index.js.map +1 -1
- package/dist/data-plane/server/db/migrations/20250627T025331240Z-add-actor-age-assurance-columns.d.ts +4 -0
- package/dist/data-plane/server/db/migrations/20250627T025331240Z-add-actor-age-assurance-columns.d.ts.map +1 -0
- package/dist/data-plane/server/db/migrations/20250627T025331240Z-add-actor-age-assurance-columns.js +22 -0
- package/dist/data-plane/server/db/migrations/20250627T025331240Z-add-actor-age-assurance-columns.js.map +1 -0
- package/dist/data-plane/server/db/migrations/index.d.ts +1 -0
- package/dist/data-plane/server/db/migrations/index.d.ts.map +1 -1
- package/dist/data-plane/server/db/migrations/index.js +2 -0
- package/dist/data-plane/server/db/migrations/index.js.map +1 -1
- package/dist/data-plane/server/db/tables/actor.d.ts +2 -0
- package/dist/data-plane/server/db/tables/actor.d.ts.map +1 -1
- package/dist/data-plane/server/db/tables/actor.js.map +1 -1
- package/dist/data-plane/server/routes/profile.d.ts.map +1 -1
- package/dist/data-plane/server/routes/profile.js +14 -1
- package/dist/data-plane/server/routes/profile.js.map +1 -1
- package/dist/feature-gates.d.ts +2 -1
- package/dist/feature-gates.d.ts.map +1 -1
- package/dist/feature-gates.js +1 -0
- package/dist/feature-gates.js.map +1 -1
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +5 -0
- package/dist/index.js.map +1 -1
- package/dist/kws.d.ts +16 -0
- package/dist/kws.d.ts.map +1 -0
- package/dist/kws.js +86 -0
- package/dist/kws.js.map +1 -0
- package/dist/lexicon/index.d.ts +6 -2
- package/dist/lexicon/index.d.ts.map +1 -1
- package/dist/lexicon/index.js +12 -4
- package/dist/lexicon/index.js.map +1 -1
- package/dist/lexicon/lexicons.d.ts +308 -82
- package/dist/lexicon/lexicons.d.ts.map +1 -1
- package/dist/lexicon/lexicons.js +157 -42
- package/dist/lexicon/lexicons.js.map +1 -1
- package/dist/lexicon/types/app/bsky/unspecced/defs.d.ts +32 -0
- package/dist/lexicon/types/app/bsky/unspecced/defs.d.ts.map +1 -1
- package/dist/lexicon/types/app/bsky/unspecced/defs.js +18 -0
- package/dist/lexicon/types/app/bsky/unspecced/defs.js.map +1 -1
- package/dist/lexicon/types/app/bsky/unspecced/getAgeAssuranceState.d.ts +18 -0
- package/dist/lexicon/types/app/bsky/unspecced/getAgeAssuranceState.d.ts.map +1 -0
- package/dist/lexicon/types/app/bsky/unspecced/getAgeAssuranceState.js +7 -0
- package/dist/lexicon/types/app/bsky/unspecced/getAgeAssuranceState.js.map +1 -0
- package/dist/lexicon/types/app/bsky/unspecced/initAgeAssurance.d.ts +28 -0
- package/dist/lexicon/types/app/bsky/unspecced/initAgeAssurance.d.ts.map +1 -0
- package/dist/lexicon/types/app/bsky/unspecced/initAgeAssurance.js +7 -0
- package/dist/lexicon/types/app/bsky/unspecced/initAgeAssurance.js.map +1 -0
- package/dist/proto/bsky_pb.d.ts +29 -0
- package/dist/proto/bsky_pb.d.ts.map +1 -1
- package/dist/proto/bsky_pb.js +97 -4
- package/dist/proto/bsky_pb.js.map +1 -1
- package/dist/stash.d.ts +1 -0
- package/dist/stash.d.ts.map +1 -1
- package/dist/stash.js +1 -0
- package/dist/stash.js.map +1 -1
- package/package.json +7 -4
- package/proto/bsky.proto +7 -0
- package/src/api/app/bsky/unspecced/getAgeAssuranceState.ts +46 -0
- package/src/api/app/bsky/unspecced/initAgeAssurance.ts +71 -0
- package/src/api/external.ts +13 -0
- package/src/api/index.ts +6 -0
- package/src/api/kws/api.ts +92 -0
- package/src/api/kws/index.ts +23 -0
- package/src/api/kws/types.ts +67 -0
- package/src/api/kws/util.ts +111 -0
- package/src/api/kws/webhook.ts +107 -0
- package/src/config.ts +59 -0
- package/src/context.ts +6 -0
- package/src/data-plane/bsync/index.ts +69 -33
- package/src/data-plane/server/db/migrations/20250627T025331240Z-add-actor-age-assurance-columns.ts +22 -0
- package/src/data-plane/server/db/migrations/index.ts +1 -0
- package/src/data-plane/server/db/tables/actor.ts +2 -0
- package/src/data-plane/server/routes/profile.ts +16 -1
- package/src/feature-gates.ts +1 -0
- package/src/index.ts +7 -1
- package/src/kws.ts +108 -0
- package/src/lexicon/index.ts +37 -11
- package/src/lexicon/lexicons.ts +166 -43
- package/src/lexicon/types/app/bsky/unspecced/defs.ts +50 -0
- package/src/lexicon/types/app/bsky/unspecced/getAgeAssuranceState.ts +34 -0
- package/src/lexicon/types/app/bsky/unspecced/initAgeAssurance.ts +47 -0
- package/src/proto/bsky_pb.ts +79 -0
- package/src/stash.ts +3 -0
- package/tests/views/age-assurance.test.ts +425 -0
- package/tsconfig.build.tsbuildinfo +1 -1
- package/tsconfig.tests.tsbuildinfo +1 -1
package/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,14 @@
|
|
|
1
1
|
# @atproto/bsky
|
|
2
2
|
|
|
3
|
+
## 0.0.171
|
|
4
|
+
|
|
5
|
+
### Patch Changes
|
|
6
|
+
|
|
7
|
+
- [#4028](https://github.com/bluesky-social/atproto/pull/4028) [`88c136427`](https://github.com/bluesky-social/atproto/commit/88c136427451a20d21812a1aa88a70cf21904138) Thanks [@rafaelbsky](https://github.com/rafaelbsky)! - Age assurance compliance
|
|
8
|
+
|
|
9
|
+
- Updated dependencies [[`88c136427`](https://github.com/bluesky-social/atproto/commit/88c136427451a20d21812a1aa88a70cf21904138)]:
|
|
10
|
+
- @atproto/api@0.15.25
|
|
11
|
+
|
|
3
12
|
## 0.0.170
|
|
4
13
|
|
|
5
14
|
### Patch Changes
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"getAgeAssuranceState.d.ts","sourceRoot":"","sources":["../../../../../src/api/app/bsky/unspecced/getAgeAssuranceState.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAA;AAChD,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAA;AAG5C,MAAM,CAAC,OAAO,WAAW,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,UAAU,QAmBvD"}
|
|
@@ -0,0 +1,36 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.default = default_1;
|
|
4
|
+
const xrpc_server_1 = require("@atproto/xrpc-server");
|
|
5
|
+
function default_1(server, ctx) {
|
|
6
|
+
server.app.bsky.unspecced.getAgeAssuranceState({
|
|
7
|
+
auth: ctx.authVerifier.standard,
|
|
8
|
+
handler: async ({ auth }) => {
|
|
9
|
+
const viewer = auth.credentials.iss;
|
|
10
|
+
const actorInfo = await getAgeVerificationState(ctx, viewer);
|
|
11
|
+
return {
|
|
12
|
+
encoding: 'application/json',
|
|
13
|
+
body: {
|
|
14
|
+
lastInitiatedAt: actorInfo.ageAssuranceStatus?.lastInitiatedAt
|
|
15
|
+
?.toDate()
|
|
16
|
+
.toISOString() ?? undefined,
|
|
17
|
+
status: actorInfo.ageAssuranceStatus?.status ?? 'unknown',
|
|
18
|
+
},
|
|
19
|
+
};
|
|
20
|
+
},
|
|
21
|
+
});
|
|
22
|
+
}
|
|
23
|
+
const getAgeVerificationState = async (ctx, actorDid) => {
|
|
24
|
+
try {
|
|
25
|
+
const res = await ctx.dataplane.getActors({
|
|
26
|
+
dids: [actorDid],
|
|
27
|
+
returnAgeAssuranceForDids: [actorDid],
|
|
28
|
+
skipCacheForDids: [actorDid],
|
|
29
|
+
});
|
|
30
|
+
return res.actors[0];
|
|
31
|
+
}
|
|
32
|
+
catch (err) {
|
|
33
|
+
throw new xrpc_server_1.UpstreamFailureError('Cannot get current age assurance state', 'GetAgeAssuranceStateFailed', { cause: err });
|
|
34
|
+
}
|
|
35
|
+
};
|
|
36
|
+
//# sourceMappingURL=getAgeAssuranceState.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"getAgeAssuranceState.js","sourceRoot":"","sources":["../../../../../src/api/app/bsky/unspecced/getAgeAssuranceState.ts"],"names":[],"mappings":";;AAKA,4BAmBC;AAxBD,sDAA2D;AAK3D,mBAAyB,MAAc,EAAE,GAAe;IACtD,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC;QAC7C,IAAI,EAAE,GAAG,CAAC,YAAY,CAAC,QAAQ;QAC/B,OAAO,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE;YAC1B,MAAM,MAAM,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAA;YACnC,MAAM,SAAS,GAAG,MAAM,uBAAuB,CAAC,GAAG,EAAE,MAAM,CAAC,CAAA;YAE5D,OAAO;gBACL,QAAQ,EAAE,kBAAkB;gBAC5B,IAAI,EAAE;oBACJ,eAAe,EACb,SAAS,CAAC,kBAAkB,EAAE,eAAe;wBAC3C,EAAE,MAAM,EAAE;yBACT,WAAW,EAAE,IAAI,SAAS;oBAC/B,MAAM,EAAE,SAAS,CAAC,kBAAkB,EAAE,MAAM,IAAI,SAAS;iBAC1D;aACF,CAAA;QACH,CAAC;KACF,CAAC,CAAA;AACJ,CAAC;AAED,MAAM,uBAAuB,GAAG,KAAK,EACnC,GAAe,EACf,QAAgB,EACI,EAAE;IACtB,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,SAAS,CAAC,SAAS,CAAC;YACxC,IAAI,EAAE,CAAC,QAAQ,CAAC;YAChB,yBAAyB,EAAE,CAAC,QAAQ,CAAC;YACrC,gBAAgB,EAAE,CAAC,QAAQ,CAAC;SAC7B,CAAC,CAAA;QAEF,OAAO,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAA;IACtB,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,kCAAoB,CAC5B,wCAAwC,EACxC,4BAA4B,EAC5B,EAAE,KAAK,EAAE,GAAG,EAAE,CACf,CAAA;IACH,CAAC;AACH,CAAC,CAAA"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"initAgeAssurance.d.ts","sourceRoot":"","sources":["../../../../../src/api/app/bsky/unspecced/initAgeAssurance.ts"],"names":[],"mappings":"AAQA,OAAO,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAA;AAEhD,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAA;AAI5C,MAAM,CAAC,OAAO,WAAW,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,UAAU,QAwDvD"}
|
|
@@ -0,0 +1,59 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
5
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
+
exports.default = default_1;
|
|
7
|
+
const node_crypto_1 = __importDefault(require("node:crypto"));
|
|
8
|
+
const address_1 = require("@hapi/address");
|
|
9
|
+
const disposable_email_domains_js_1 = require("disposable-email-domains-js");
|
|
10
|
+
const xrpc_server_1 = require("@atproto/xrpc-server");
|
|
11
|
+
const feature_gates_1 = require("../../../../feature-gates");
|
|
12
|
+
const util_1 = require("../../../kws/util");
|
|
13
|
+
function default_1(server, ctx) {
|
|
14
|
+
server.app.bsky.unspecced.initAgeAssurance({
|
|
15
|
+
auth: ctx.authVerifier.standard,
|
|
16
|
+
handler: async ({ auth, input, req }) => {
|
|
17
|
+
if (!ctx.kwsClient) {
|
|
18
|
+
throw new xrpc_server_1.MethodNotImplementedError('This service is not configured to support age assurance.');
|
|
19
|
+
}
|
|
20
|
+
const actorDid = auth.credentials.iss;
|
|
21
|
+
const enabled = ctx.cfg.debugMode ||
|
|
22
|
+
ctx.featureGates.check({ userID: actorDid }, feature_gates_1.GateID.AgeAssurance);
|
|
23
|
+
if (!enabled) {
|
|
24
|
+
throw new xrpc_server_1.ForbiddenError();
|
|
25
|
+
}
|
|
26
|
+
const { email, language, countryCode } = input.body;
|
|
27
|
+
if (!(0, address_1.isEmailValid)(email) || (0, disposable_email_domains_js_1.isDisposableEmail)(email)) {
|
|
28
|
+
throw new xrpc_server_1.InvalidRequestError('This email address is not supported, please use a different email.');
|
|
29
|
+
}
|
|
30
|
+
const attemptId = node_crypto_1.default.randomUUID();
|
|
31
|
+
// Assumes `app.set('trust proxy', ...)` configured with `true` or specific values.
|
|
32
|
+
const initIp = req.ip;
|
|
33
|
+
const initUa = (0, util_1.getClientUa)(req);
|
|
34
|
+
const externalPayload = { actorDid, attemptId };
|
|
35
|
+
await ctx.kwsClient.sendEmail({
|
|
36
|
+
countryCode,
|
|
37
|
+
email,
|
|
38
|
+
externalPayload,
|
|
39
|
+
language,
|
|
40
|
+
});
|
|
41
|
+
const event = await (0, util_1.createStashEvent)(ctx, {
|
|
42
|
+
actorDid,
|
|
43
|
+
attemptId,
|
|
44
|
+
email,
|
|
45
|
+
initIp,
|
|
46
|
+
initUa,
|
|
47
|
+
status: 'pending',
|
|
48
|
+
});
|
|
49
|
+
return {
|
|
50
|
+
encoding: 'application/json',
|
|
51
|
+
body: {
|
|
52
|
+
status: event.status,
|
|
53
|
+
lastInitiatedAt: event.createdAt,
|
|
54
|
+
},
|
|
55
|
+
};
|
|
56
|
+
},
|
|
57
|
+
});
|
|
58
|
+
}
|
|
59
|
+
//# sourceMappingURL=initAgeAssurance.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"initAgeAssurance.js","sourceRoot":"","sources":["../../../../../src/api/app/bsky/unspecced/initAgeAssurance.ts"],"names":[],"mappings":";;;;;AAcA,4BAwDC;AAtED,8DAAgC;AAChC,2CAA4C;AAC5C,6EAA+D;AAC/D,sDAI6B;AAE7B,6DAAkD;AAGlD,4CAAiE;AAEjE,mBAAyB,MAAc,EAAE,GAAe;IACtD,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,gBAAgB,CAAC;QACzC,IAAI,EAAE,GAAG,CAAC,YAAY,CAAC,QAAQ;QAC/B,OAAO,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,EAAE,EAAE,EAAE;YACtC,IAAI,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC;gBACnB,MAAM,IAAI,uCAAyB,CACjC,0DAA0D,CAC3D,CAAA;YACH,CAAC;YAED,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAA;YACrC,MAAM,OAAO,GACX,GAAG,CAAC,GAAG,CAAC,SAAS;gBACjB,GAAG,CAAC,YAAY,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,sBAAM,CAAC,YAAY,CAAC,CAAA;YACnE,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,IAAI,4BAAc,EAAE,CAAA;YAC5B,CAAC;YAED,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,WAAW,EAAE,GAAG,KAAK,CAAC,IAAI,CAAA;YACnD,IAAI,CAAC,IAAA,sBAAY,EAAC,KAAK,CAAC,IAAI,IAAA,+CAAiB,EAAC,KAAK,CAAC,EAAE,CAAC;gBACrD,MAAM,IAAI,iCAAmB,CAC3B,oEAAoE,CACrE,CAAA;YACH,CAAC;YAED,MAAM,SAAS,GAAG,qBAAM,CAAC,UAAU,EAAE,CAAA;YACrC,mFAAmF;YACnF,MAAM,MAAM,GAAG,GAAG,CAAC,EAAE,CAAA;YACrB,MAAM,MAAM,GAAG,IAAA,kBAAW,EAAC,GAAG,CAAC,CAAA;YAC/B,MAAM,eAAe,GAAuB,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAA;YAEnE,MAAM,GAAG,CAAC,SAAS,CAAC,SAAS,CAAC;gBAC5B,WAAW;gBACX,KAAK;gBACL,eAAe;gBACf,QAAQ;aACT,CAAC,CAAA;YAEF,MAAM,KAAK,GAAG,MAAM,IAAA,uBAAgB,EAAC,GAAG,EAAE;gBACxC,QAAQ;gBACR,SAAS;gBACT,KAAK;gBACL,MAAM;gBACN,MAAM;gBACN,MAAM,EAAE,SAAS;aAClB,CAAC,CAAA;YAEF,OAAO;gBACL,QAAQ,EAAE,kBAAkB;gBAC5B,IAAI,EAAE;oBACJ,MAAM,EAAE,KAAK,CAAC,MAAM;oBACpB,eAAe,EAAE,KAAK,CAAC,SAAS;iBACjC;aACF,CAAA;QACH,CAAC;KACF,CAAC,CAAA;AACJ,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"external.d.ts","sourceRoot":"","sources":["../../src/api/external.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAA;AAChC,OAAO,EAAE,UAAU,EAAE,MAAM,YAAY,CAAA;AAGvC,eAAO,MAAM,YAAY,GAAI,KAAK,UAAU,KAAG,MAQ9C,CAAA"}
|
|
@@ -0,0 +1,47 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
3
|
+
if (k2 === undefined) k2 = k;
|
|
4
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
5
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
6
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
7
|
+
}
|
|
8
|
+
Object.defineProperty(o, k2, desc);
|
|
9
|
+
}) : (function(o, m, k, k2) {
|
|
10
|
+
if (k2 === undefined) k2 = k;
|
|
11
|
+
o[k2] = m[k];
|
|
12
|
+
}));
|
|
13
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
14
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
15
|
+
}) : function(o, v) {
|
|
16
|
+
o["default"] = v;
|
|
17
|
+
});
|
|
18
|
+
var __importStar = (this && this.__importStar) || (function () {
|
|
19
|
+
var ownKeys = function(o) {
|
|
20
|
+
ownKeys = Object.getOwnPropertyNames || function (o) {
|
|
21
|
+
var ar = [];
|
|
22
|
+
for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
|
|
23
|
+
return ar;
|
|
24
|
+
};
|
|
25
|
+
return ownKeys(o);
|
|
26
|
+
};
|
|
27
|
+
return function (mod) {
|
|
28
|
+
if (mod && mod.__esModule) return mod;
|
|
29
|
+
var result = {};
|
|
30
|
+
if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
|
|
31
|
+
__setModuleDefault(result, mod);
|
|
32
|
+
return result;
|
|
33
|
+
};
|
|
34
|
+
})();
|
|
35
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
36
|
+
exports.createRouter = void 0;
|
|
37
|
+
const express_1 = require("express");
|
|
38
|
+
const kwsApi = __importStar(require("./kws"));
|
|
39
|
+
const createRouter = (ctx) => {
|
|
40
|
+
const router = (0, express_1.Router)();
|
|
41
|
+
if (ctx.kwsClient) {
|
|
42
|
+
router.use('/kws', kwsApi.createRouter(ctx));
|
|
43
|
+
}
|
|
44
|
+
return router;
|
|
45
|
+
};
|
|
46
|
+
exports.createRouter = createRouter;
|
|
47
|
+
//# sourceMappingURL=external.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"external.js","sourceRoot":"","sources":["../../src/api/external.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,qCAAgC;AAEhC,8CAA+B;AAExB,MAAM,YAAY,GAAG,CAAC,GAAe,EAAU,EAAE;IACtD,MAAM,MAAM,GAAG,IAAA,gBAAM,GAAE,CAAA;IAEvB,IAAI,GAAG,CAAC,SAAS,EAAE,CAAC;QAClB,MAAM,CAAC,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAA;IAC9C,CAAC;IAED,OAAO,MAAM,CAAA;AACf,CAAC,CAAA;AARY,QAAA,YAAY,gBAQxB"}
|
package/dist/api/index.d.ts
CHANGED
|
@@ -3,5 +3,6 @@ import { Server } from '../lexicon';
|
|
|
3
3
|
export * as health from './health';
|
|
4
4
|
export * as wellKnown from './well-known';
|
|
5
5
|
export * as blobResolver from './blob-resolver';
|
|
6
|
+
export * as external from './external';
|
|
6
7
|
export default function (server: Server, ctx: AppContext): Server;
|
|
7
8
|
//# sourceMappingURL=index.d.ts.map
|
package/dist/api/index.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/api/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,YAAY,CAAA;AACvC,OAAO,EAAE,MAAM,EAAE,MAAM,YAAY,CAAA;
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/api/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,YAAY,CAAA;AACvC,OAAO,EAAE,MAAM,EAAE,MAAM,YAAY,CAAA;AAwEnC,OAAO,KAAK,MAAM,MAAM,UAAU,CAAA;AAElC,OAAO,KAAK,SAAS,MAAM,cAAc,CAAA;AAEzC,OAAO,KAAK,YAAY,MAAM,iBAAiB,CAAA;AAE/C,OAAO,KAAK,QAAQ,MAAM,YAAY,CAAA;AAEtC,MAAM,CAAC,OAAO,WAAW,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,UAAU,UA0EvD"}
|
package/dist/api/index.js
CHANGED
|
@@ -36,7 +36,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
|
36
36
|
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
37
37
|
};
|
|
38
38
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
39
|
-
exports.blobResolver = exports.wellKnown = exports.health = void 0;
|
|
39
|
+
exports.external = exports.blobResolver = exports.wellKnown = exports.health = void 0;
|
|
40
40
|
exports.default = default_1;
|
|
41
41
|
const getProfile_1 = __importDefault(require("./app/bsky/actor/getProfile"));
|
|
42
42
|
const getProfiles_1 = __importDefault(require("./app/bsky/actor/getProfiles"));
|
|
@@ -89,6 +89,7 @@ const putPreferences_1 = __importDefault(require("./app/bsky/notification/putPre
|
|
|
89
89
|
const putPreferencesV2_1 = __importDefault(require("./app/bsky/notification/putPreferencesV2"));
|
|
90
90
|
const registerPush_1 = __importDefault(require("./app/bsky/notification/registerPush"));
|
|
91
91
|
const updateSeen_1 = __importDefault(require("./app/bsky/notification/updateSeen"));
|
|
92
|
+
const getAgeAssuranceState_1 = __importDefault(require("./app/bsky/unspecced/getAgeAssuranceState"));
|
|
92
93
|
const getConfig_1 = __importDefault(require("./app/bsky/unspecced/getConfig"));
|
|
93
94
|
const getPopularFeedGenerators_1 = __importDefault(require("./app/bsky/unspecced/getPopularFeedGenerators"));
|
|
94
95
|
const getPostThreadOtherV2_1 = __importDefault(require("./app/bsky/unspecced/getPostThreadOtherV2"));
|
|
@@ -99,6 +100,7 @@ const getSuggestedUsers_1 = __importDefault(require("./app/bsky/unspecced/getSug
|
|
|
99
100
|
const getTaggedSuggestions_1 = __importDefault(require("./app/bsky/unspecced/getTaggedSuggestions"));
|
|
100
101
|
const getTrendingTopics_1 = __importDefault(require("./app/bsky/unspecced/getTrendingTopics"));
|
|
101
102
|
const getTrends_1 = __importDefault(require("./app/bsky/unspecced/getTrends"));
|
|
103
|
+
const initAgeAssurance_1 = __importDefault(require("./app/bsky/unspecced/initAgeAssurance"));
|
|
102
104
|
const getAccountInfos_1 = __importDefault(require("./com/atproto/admin/getAccountInfos"));
|
|
103
105
|
const getSubjectStatus_1 = __importDefault(require("./com/atproto/admin/getSubjectStatus"));
|
|
104
106
|
const updateSubjectStatus_1 = __importDefault(require("./com/atproto/admin/updateSubjectStatus"));
|
|
@@ -109,6 +111,7 @@ const fetchLabels_1 = __importDefault(require("./com/atproto/temp/fetchLabels"))
|
|
|
109
111
|
exports.health = __importStar(require("./health"));
|
|
110
112
|
exports.wellKnown = __importStar(require("./well-known"));
|
|
111
113
|
exports.blobResolver = __importStar(require("./blob-resolver"));
|
|
114
|
+
exports.external = __importStar(require("./external"));
|
|
112
115
|
function default_1(server, ctx) {
|
|
113
116
|
// app.bsky
|
|
114
117
|
(0, getTimeline_1.default)(server, ctx);
|
|
@@ -172,6 +175,8 @@ function default_1(server, ctx) {
|
|
|
172
175
|
(0, getConfig_1.default)(server, ctx);
|
|
173
176
|
(0, getPopularFeedGenerators_1.default)(server, ctx);
|
|
174
177
|
(0, getTaggedSuggestions_1.default)(server, ctx);
|
|
178
|
+
(0, getAgeAssuranceState_1.default)(server, ctx);
|
|
179
|
+
(0, initAgeAssurance_1.default)(server, ctx);
|
|
175
180
|
// com.atproto
|
|
176
181
|
(0, getSubjectStatus_1.default)(server, ctx);
|
|
177
182
|
(0, updateSubjectStatus_1.default)(server, ctx);
|
package/dist/api/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/api/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/api/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiFA,4BA0EC;AAzJD,6EAAoD;AACpD,+EAAsD;AACtD,qFAA4D;AAC5D,iFAAwD;AACxD,mGAA0E;AAC1E,kFAAyD;AACzD,kFAAyD;AACzD,kFAAyD;AACzD,sEAA6C;AAC7C,wFAA+D;AAC/D,0FAAiE;AACjE,wEAA+C;AAC/C,8EAAqD;AACrD,kFAAyD;AACzD,wEAA+C;AAC/C,0EAAiD;AACjD,kFAAyD;AACzD,0FAAiE;AACjE,8EAAqD;AACrD,8EAAqD;AACrD,iGAAwE;AACxE,2EAAkD;AAClD,iFAAwD;AACxD,6EAAoD;AACpD,2FAAkE;AAClE,uEAA8C;AAC9C,mFAA0D;AAC1D,iFAAwD;AACxD,yEAAgD;AAChD,yEAAgD;AAChD,yFAAgE;AAChE,qFAA4D;AAC5D,uFAA8D;AAC9D,6GAAoF;AACpF,2EAAkD;AAClD,mFAA0D;AAC1D,6EAAoD;AACpD,6FAAoE;AACpE,+EAAsD;AACtD,uFAA8D;AAC9D,iFAAwD;AACxD,iFAA+D;AAC/D,4FAAmE;AACnE,4FAAmE;AACnE,kHAAyF;AACzF,kGAAyE;AACzE,8GAAqF;AACrF,4FAAmE;AACnE,gGAAuE;AACvE,wFAA+D;AAC/D,oFAA2D;AAC3D,qGAA4E;AAC5E,+EAAsD;AACtD,6GAAoF;AACpF,qGAA4E;AAC5E,2FAAkE;AAClE,+FAA+E;AAC/E,6GAAoF;AACpF,+FAAsE;AACtE,qGAA4E;AAC5E,+FAAsE;AACtE,+EAAsD;AACtD,6FAAoE;AACpE,0FAAiE;AACjE,4FAAmE;AACnE,kGAAyE;AACzE,yFAAgE;AAChE,kFAAyD;AACzD,6EAAoD;AACpD,iFAAwD;AAExD,mDAAkC;AAElC,0DAAyC;AAEzC,gEAA+C;AAE/C,uDAAsC;AAEtC,mBAAyB,MAAc,EAAE,GAAe;IACtD,WAAW;IACX,IAAA,qBAAW,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACxB,IAAA,uBAAa,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC1B,IAAA,2BAAiB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC9B,IAAA,uBAAa,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC1B,IAAA,iBAAO,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACpB,IAAA,0BAAgB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC7B,IAAA,2BAAiB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC9B,IAAA,kBAAQ,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACrB,IAAA,qBAAW,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACxB,IAAA,mBAAS,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACtB,IAAA,uBAAa,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC1B,IAAA,8BAAoB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACjC,IAAA,yBAAe,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC5B,IAAA,kBAAQ,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACrB,IAAA,qBAAW,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACxB,IAAA,uBAAa,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC1B,IAAA,oBAAU,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACvB,IAAA,qBAAW,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACxB,IAAA,uBAAa,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC1B,IAAA,8BAAoB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACjC,IAAA,mBAAS,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACtB,IAAA,uBAAa,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC1B,IAAA,sBAAY,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACzB,IAAA,2BAAiB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC9B,IAAA,oBAAU,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACvB,IAAA,iBAAO,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACpB,IAAA,kBAAQ,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACrB,IAAA,sBAAY,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACzB,IAAA,kBAAQ,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACrB,IAAA,0BAAgB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC7B,IAAA,wBAAc,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC3B,IAAA,yBAAe,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC5B,IAAA,4BAAkB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC/B,IAAA,mBAAS,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACtB,IAAA,qBAAW,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACxB,IAAA,uBAAa,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC1B,IAAA,yBAAe,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC5B,IAAA,oBAAU,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACvB,IAAA,sBAAY,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACzB,IAAA,oCAA0B,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACvC,IAAA,2BAAiB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC9B,IAAA,mBAAS,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACtB,IAAA,kCAAwB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACrC,IAAA,2BAAiB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC9B,IAAA,2BAA0B,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACvC,IAAA,qBAAkB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC/B,IAAA,sBAAY,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACzB,IAAA,+BAAqB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAClC,IAAA,wBAAc,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC3B,IAAA,wBAAc,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC3B,IAAA,wBAAc,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC3B,IAAA,mCAAyB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACtC,IAAA,2BAAiB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC9B,IAAA,iCAAuB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACpC,IAAA,oBAAU,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACvB,IAAA,wBAAc,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC3B,IAAA,0BAAgB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC7B,IAAA,sBAAY,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACzB,IAAA,mBAAS,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACtB,IAAA,kCAAwB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACrC,IAAA,8BAAoB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACjC,IAAA,8BAAoB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACjC,IAAA,0BAAgB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC7B,cAAc;IACd,IAAA,0BAAgB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC7B,IAAA,6BAAmB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAChC,IAAA,yBAAe,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC5B,IAAA,uBAAa,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAC1B,IAAA,mBAAS,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACtB,IAAA,qBAAW,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACxB,IAAA,qBAAW,EAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACxB,OAAO,MAAM,CAAA;AACf,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"api.d.ts","sourceRoot":"","sources":["../../../src/api/kws/api.ts"],"names":[],"mappings":"AAAA,OAAgB,EAAE,cAAc,EAAE,MAAM,SAAS,CAAA;AAEjD,OAAO,EACL,uBAAuB,EAIxB,MAAM,SAAS,CAAA;AAsChB,eAAO,MAAM,mBAAmB,GAC7B,KAAK,uBAAuB,KAAG,cA6C/B,CAAA"}
|
|
@@ -0,0 +1,60 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.verificationHandler = void 0;
|
|
4
|
+
const logger_1 = require("../../logger");
|
|
5
|
+
const types_1 = require("./types");
|
|
6
|
+
const util_1 = require("./util");
|
|
7
|
+
const validateRequest = (ctx, req) => {
|
|
8
|
+
try {
|
|
9
|
+
const intermediate = types_1.verificationIntermediateQuerySchema.parse({
|
|
10
|
+
externalPayload: req.query.externalPayload,
|
|
11
|
+
signature: req.query.signature,
|
|
12
|
+
status: req.query.status,
|
|
13
|
+
});
|
|
14
|
+
const data = `${intermediate.status}:${intermediate.externalPayload}`;
|
|
15
|
+
(0, util_1.validateSignature)(ctx.cfg.kws.verificationSecret, data, intermediate.signature);
|
|
16
|
+
return {
|
|
17
|
+
...intermediate,
|
|
18
|
+
externalPayload: (0, util_1.parseExternalPayload)(intermediate.externalPayload),
|
|
19
|
+
status: (0, util_1.parseStatus)(intermediate.status),
|
|
20
|
+
};
|
|
21
|
+
}
|
|
22
|
+
catch (err) {
|
|
23
|
+
throw new Error('Invalid KWS API request', { cause: err });
|
|
24
|
+
}
|
|
25
|
+
};
|
|
26
|
+
const verificationHandler = (ctx) => async (req, res) => {
|
|
27
|
+
let actorDid;
|
|
28
|
+
try {
|
|
29
|
+
const query = validateRequest(ctx, req);
|
|
30
|
+
const { externalPayload, status: { verified }, } = query;
|
|
31
|
+
if (!verified) {
|
|
32
|
+
throw new Error('Unexpected KWS verification response call with unverified status');
|
|
33
|
+
}
|
|
34
|
+
const { actorDid: externalPayloadActorDid, attemptId } = externalPayload;
|
|
35
|
+
actorDid = externalPayloadActorDid;
|
|
36
|
+
// Assumes `app.set('trust proxy', ...)` configured with `true` or specific values.
|
|
37
|
+
const completeIp = req.ip;
|
|
38
|
+
const completeUa = (0, util_1.getClientUa)(req);
|
|
39
|
+
await (0, util_1.createStashEvent)(ctx, {
|
|
40
|
+
actorDid,
|
|
41
|
+
attemptId,
|
|
42
|
+
completeIp,
|
|
43
|
+
completeUa,
|
|
44
|
+
status: 'assured',
|
|
45
|
+
});
|
|
46
|
+
return res
|
|
47
|
+
.status(302)
|
|
48
|
+
.setHeader('Location', `${ctx.cfg.kws.redirectUrl}?${new URLSearchParams({ actorDid, result: 'success' })}`)
|
|
49
|
+
.end();
|
|
50
|
+
}
|
|
51
|
+
catch (err) {
|
|
52
|
+
logger_1.httpLogger.error({ err }, 'Failed to handle KWS verification response');
|
|
53
|
+
return res
|
|
54
|
+
.status(302)
|
|
55
|
+
.setHeader('Location', `${ctx.cfg.kws.redirectUrl}?${new URLSearchParams({ ...(actorDid ? { actorDid } : {}), result: 'unknown' })}`)
|
|
56
|
+
.end();
|
|
57
|
+
}
|
|
58
|
+
};
|
|
59
|
+
exports.verificationHandler = verificationHandler;
|
|
60
|
+
//# sourceMappingURL=api.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"api.js","sourceRoot":"","sources":["../../../src/api/kws/api.ts"],"names":[],"mappings":";;;AACA,yCAAgD;AAChD,mCAKgB;AAChB,iCAMe;AAEf,MAAM,eAAe,GAAG,CACtB,GAA4B,EAC5B,GAAoB,EACE,EAAE;IACxB,IAAI,CAAC;QACH,MAAM,YAAY,GAChB,2CAAmC,CAAC,KAAK,CAAC;YACxC,eAAe,EAAE,GAAG,CAAC,KAAK,CAAC,eAAe;YAC1C,SAAS,EAAE,GAAG,CAAC,KAAK,CAAC,SAAS;YAC9B,MAAM,EAAE,GAAG,CAAC,KAAK,CAAC,MAAM;SACzB,CAAC,CAAA;QAEJ,MAAM,IAAI,GAAG,GAAG,YAAY,CAAC,MAAM,IAAI,YAAY,CAAC,eAAe,EAAE,CAAA;QACrE,IAAA,wBAAiB,EACf,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,kBAAkB,EAC9B,IAAI,EACJ,YAAY,CAAC,SAAS,CACvB,CAAA;QAED,OAAO;YACL,GAAG,YAAY;YACf,eAAe,EAAE,IAAA,2BAAoB,EAAC,YAAY,CAAC,eAAe,CAAC;YACnE,MAAM,EAAE,IAAA,kBAAW,EAAC,YAAY,CAAC,MAAM,CAAC;SACzC,CAAA;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CAAC,yBAAyB,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAA;IAC5D,CAAC;AACH,CAAC,CAAA;AAEM,MAAM,mBAAmB,GAC9B,CAAC,GAA4B,EAAkB,EAAE,CACjD,KAAK,EAAE,GAAoB,EAAE,GAAqB,EAAE,EAAE;IACpD,IAAI,QAA4B,CAAA;IAChC,IAAI,CAAC;QACH,MAAM,KAAK,GAAG,eAAe,CAAC,GAAG,EAAE,GAAG,CAAC,CAAA;QACvC,MAAM,EACJ,eAAe,EACf,MAAM,EAAE,EAAE,QAAQ,EAAE,GACrB,GAAG,KAAK,CAAA;QACT,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,KAAK,CACb,kEAAkE,CACnE,CAAA;QACH,CAAC;QAED,MAAM,EAAE,QAAQ,EAAE,uBAAuB,EAAE,SAAS,EAAE,GAAG,eAAe,CAAA;QACxE,QAAQ,GAAG,uBAAuB,CAAA;QAClC,mFAAmF;QACnF,MAAM,UAAU,GAAG,GAAG,CAAC,EAAE,CAAA;QACzB,MAAM,UAAU,GAAG,IAAA,kBAAW,EAAC,GAAG,CAAC,CAAA;QACnC,MAAM,IAAA,uBAAgB,EAAC,GAAG,EAAE;YAC1B,QAAQ;YACR,SAAS;YACT,UAAU;YACV,UAAU;YACV,MAAM,EAAE,SAAS;SAClB,CAAC,CAAA;QACF,OAAO,GAAG;aACP,MAAM,CAAC,GAAG,CAAC;aACX,SAAS,CACR,UAAU,EACV,GAAG,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,WAAW,IAAI,IAAI,eAAe,CAAC,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,CAAC,EAAE,CACrF;aACA,GAAG,EAAE,CAAA;IACV,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,mBAAG,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,EAAE,4CAA4C,CAAC,CAAA;QAEhE,OAAO,GAAG;aACP,MAAM,CAAC,GAAG,CAAC;aACX,SAAS,CACR,UAAU,EACV,GAAG,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,WAAW,IAAI,IAAI,eAAe,CAAC,EAAE,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,MAAM,EAAE,SAAS,EAAE,CAAC,EAAE,CAC9G;aACA,GAAG,EAAE,CAAA;IACV,CAAC;AACH,CAAC,CAAA;AA9CU,QAAA,mBAAmB,uBA8C7B"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/api/kws/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAO,MAAM,SAAS,CAAA;AACrC,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAA;AAK1C,eAAO,MAAM,YAAY,GAAI,KAAK,UAAU,KAAG,MAQ9C,CAAA"}
|
|
@@ -0,0 +1,21 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.createRouter = void 0;
|
|
4
|
+
const express_1 = require("express");
|
|
5
|
+
const api_1 = require("./api");
|
|
6
|
+
const webhook_1 = require("./webhook");
|
|
7
|
+
const createRouter = (ctx) => {
|
|
8
|
+
assertAppContextWithAgeAssuranceClient(ctx);
|
|
9
|
+
const router = (0, express_1.Router)();
|
|
10
|
+
router.use((0, express_1.raw)({ type: 'application/json' }));
|
|
11
|
+
router.post('/age-assurance-webhook', (0, webhook_1.webhookAuth)(ctx), (0, webhook_1.webhookHandler)(ctx));
|
|
12
|
+
router.get('/age-assurance-verification', (0, api_1.verificationHandler)(ctx));
|
|
13
|
+
return router;
|
|
14
|
+
};
|
|
15
|
+
exports.createRouter = createRouter;
|
|
16
|
+
const assertAppContextWithAgeAssuranceClient = (ctx) => {
|
|
17
|
+
if (!ctx.kwsClient) {
|
|
18
|
+
throw new Error('Tried to set up KWS router without kwsClient configured.');
|
|
19
|
+
}
|
|
20
|
+
};
|
|
21
|
+
//# sourceMappingURL=index.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/api/kws/index.ts"],"names":[],"mappings":";;;AAAA,qCAAqC;AAErC,+BAA2C;AAE3C,uCAAuD;AAEhD,MAAM,YAAY,GAAG,CAAC,GAAe,EAAU,EAAE;IACtD,sCAAsC,CAAC,GAAG,CAAC,CAAA;IAE3C,MAAM,MAAM,GAAG,IAAA,gBAAM,GAAE,CAAA;IACvB,MAAM,CAAC,GAAG,CAAC,IAAA,aAAG,EAAC,EAAE,IAAI,EAAE,kBAAkB,EAAE,CAAC,CAAC,CAAA;IAC7C,MAAM,CAAC,IAAI,CAAC,wBAAwB,EAAE,IAAA,qBAAW,EAAC,GAAG,CAAC,EAAE,IAAA,wBAAc,EAAC,GAAG,CAAC,CAAC,CAAA;IAC5E,MAAM,CAAC,GAAG,CAAC,6BAA6B,EAAE,IAAA,yBAAmB,EAAC,GAAG,CAAC,CAAC,CAAA;IACnE,OAAO,MAAM,CAAA;AACf,CAAC,CAAA;AARY,QAAA,YAAY,gBAQxB;AAED,MAAM,sCAAsC,GAEE,CAAC,GAAe,EAAE,EAAE;IAChE,IAAI,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAA;IAC7E,CAAC;AACH,CAAC,CAAA"}
|
|
@@ -0,0 +1,100 @@
|
|
|
1
|
+
import { z } from 'zod';
|
|
2
|
+
import { KwsConfig, ServerConfig } from '../../config';
|
|
3
|
+
import { AppContext } from '../../context';
|
|
4
|
+
import { KwsClient } from '../../kws';
|
|
5
|
+
export type AppContextWithKwsClient = AppContext & {
|
|
6
|
+
kwsClient: KwsClient;
|
|
7
|
+
cfg: ServerConfig & {
|
|
8
|
+
kws: KwsConfig;
|
|
9
|
+
};
|
|
10
|
+
};
|
|
11
|
+
export type KwsExternalPayload = {
|
|
12
|
+
actorDid: string;
|
|
13
|
+
attemptId: string;
|
|
14
|
+
};
|
|
15
|
+
export declare const externalPayloadSchema: z.ZodObject<{
|
|
16
|
+
actorDid: z.ZodString;
|
|
17
|
+
attemptId: z.ZodString;
|
|
18
|
+
}, "strict", z.ZodTypeAny, {
|
|
19
|
+
actorDid: string;
|
|
20
|
+
attemptId: string;
|
|
21
|
+
}, {
|
|
22
|
+
actorDid: string;
|
|
23
|
+
attemptId: string;
|
|
24
|
+
}>;
|
|
25
|
+
export type KwsStatus = {
|
|
26
|
+
verified: boolean;
|
|
27
|
+
};
|
|
28
|
+
export type KwsVerificationIntermediateQuery = {
|
|
29
|
+
externalPayload: string;
|
|
30
|
+
status: string;
|
|
31
|
+
signature: string;
|
|
32
|
+
};
|
|
33
|
+
export declare const verificationIntermediateQuerySchema: z.ZodObject<{
|
|
34
|
+
externalPayload: z.ZodString;
|
|
35
|
+
signature: z.ZodString;
|
|
36
|
+
status: z.ZodString;
|
|
37
|
+
}, "strip", z.ZodTypeAny, {
|
|
38
|
+
status: string;
|
|
39
|
+
externalPayload: string;
|
|
40
|
+
signature: string;
|
|
41
|
+
}, {
|
|
42
|
+
status: string;
|
|
43
|
+
externalPayload: string;
|
|
44
|
+
signature: string;
|
|
45
|
+
}>;
|
|
46
|
+
export type KwsVerificationQuery = {
|
|
47
|
+
externalPayload: KwsExternalPayload;
|
|
48
|
+
signature: string;
|
|
49
|
+
status: KwsStatus;
|
|
50
|
+
};
|
|
51
|
+
export type KwsWebhookBody = {
|
|
52
|
+
payload: {
|
|
53
|
+
externalPayload: KwsExternalPayload;
|
|
54
|
+
status: KwsStatus;
|
|
55
|
+
};
|
|
56
|
+
};
|
|
57
|
+
export declare const statusSchema: z.ZodObject<{
|
|
58
|
+
verified: z.ZodBoolean;
|
|
59
|
+
}, "strip", z.ZodTypeAny, {
|
|
60
|
+
verified: boolean;
|
|
61
|
+
}, {
|
|
62
|
+
verified: boolean;
|
|
63
|
+
}>;
|
|
64
|
+
export declare const webhookBodyIntermediateSchema: z.ZodObject<{
|
|
65
|
+
payload: z.ZodObject<{
|
|
66
|
+
externalPayload: z.ZodString;
|
|
67
|
+
status: z.ZodObject<{
|
|
68
|
+
verified: z.ZodBoolean;
|
|
69
|
+
}, "strip", z.ZodTypeAny, {
|
|
70
|
+
verified: boolean;
|
|
71
|
+
}, {
|
|
72
|
+
verified: boolean;
|
|
73
|
+
}>;
|
|
74
|
+
}, "strip", z.ZodTypeAny, {
|
|
75
|
+
status: {
|
|
76
|
+
verified: boolean;
|
|
77
|
+
};
|
|
78
|
+
externalPayload: string;
|
|
79
|
+
}, {
|
|
80
|
+
status: {
|
|
81
|
+
verified: boolean;
|
|
82
|
+
};
|
|
83
|
+
externalPayload: string;
|
|
84
|
+
}>;
|
|
85
|
+
}, "strip", z.ZodTypeAny, {
|
|
86
|
+
payload: {
|
|
87
|
+
status: {
|
|
88
|
+
verified: boolean;
|
|
89
|
+
};
|
|
90
|
+
externalPayload: string;
|
|
91
|
+
};
|
|
92
|
+
}, {
|
|
93
|
+
payload: {
|
|
94
|
+
status: {
|
|
95
|
+
verified: boolean;
|
|
96
|
+
};
|
|
97
|
+
externalPayload: string;
|
|
98
|
+
};
|
|
99
|
+
}>;
|
|
100
|
+
//# sourceMappingURL=types.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/api/kws/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AACvB,OAAO,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,cAAc,CAAA;AACtD,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAA;AAC1C,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAA;AAErC,MAAM,MAAM,uBAAuB,GAAG,UAAU,GAAG;IACjD,SAAS,EAAE,SAAS,CAAA;IACpB,GAAG,EAAE,YAAY,GAAG;QAClB,GAAG,EAAE,SAAS,CAAA;KACf,CAAA;CACF,CAAA;AAED,MAAM,MAAM,kBAAkB,GAAG;IAC/B,QAAQ,EAAE,MAAM,CAAA;IAChB,SAAS,EAAE,MAAM,CAAA;CAClB,CAAA;AAGD,eAAO,MAAM,qBAAqB;;;;;;;;;EAKvB,CAAA;AAEX,MAAM,MAAM,SAAS,GAAG;IACtB,QAAQ,EAAE,OAAO,CAAA;CAClB,CAAA;AAED,MAAM,MAAM,gCAAgC,GAAG;IAC7C,eAAe,EAAE,MAAM,CAAA;IACvB,MAAM,EAAE,MAAM,CAAA;IACd,SAAS,EAAE,MAAM,CAAA;CAClB,CAAA;AAGD,eAAO,MAAM,mCAAmC;;;;;;;;;;;;EAI9C,CAAA;AAEF,MAAM,MAAM,oBAAoB,GAAG;IACjC,eAAe,EAAE,kBAAkB,CAAA;IACnC,SAAS,EAAE,MAAM,CAAA;IACjB,MAAM,EAAE,SAAS,CAAA;CAClB,CAAA;AAED,MAAM,MAAM,cAAc,GAAG;IAC3B,OAAO,EAAE;QACP,eAAe,EAAE,kBAAkB,CAAA;QACnC,MAAM,EAAE,SAAS,CAAA;KAClB,CAAA;CACF,CAAA;AAGD,eAAO,MAAM,YAAY;;;;;;EAEvB,CAAA;AAGF,eAAO,MAAM,6BAA6B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAKxC,CAAA"}
|
|
@@ -0,0 +1,29 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.webhookBodyIntermediateSchema = exports.statusSchema = exports.verificationIntermediateQuerySchema = exports.externalPayloadSchema = void 0;
|
|
4
|
+
const zod_1 = require("zod");
|
|
5
|
+
// `.strict()` because we control the payload structure.
|
|
6
|
+
exports.externalPayloadSchema = zod_1.z
|
|
7
|
+
.object({
|
|
8
|
+
actorDid: zod_1.z.string(),
|
|
9
|
+
attemptId: zod_1.z.string(),
|
|
10
|
+
})
|
|
11
|
+
.strict();
|
|
12
|
+
// Not `.strict()` to avoid breaking if KWS adds fields.
|
|
13
|
+
exports.verificationIntermediateQuerySchema = zod_1.z.object({
|
|
14
|
+
externalPayload: zod_1.z.string(),
|
|
15
|
+
signature: zod_1.z.string(),
|
|
16
|
+
status: zod_1.z.string(),
|
|
17
|
+
});
|
|
18
|
+
// Not `.strict()` to avoid breaking if KWS adds fields.
|
|
19
|
+
exports.statusSchema = zod_1.z.object({
|
|
20
|
+
verified: zod_1.z.boolean(),
|
|
21
|
+
});
|
|
22
|
+
// Not `.strict()` to avoid breaking if KWS adds fields.
|
|
23
|
+
exports.webhookBodyIntermediateSchema = zod_1.z.object({
|
|
24
|
+
payload: zod_1.z.object({
|
|
25
|
+
externalPayload: zod_1.z.string(),
|
|
26
|
+
status: exports.statusSchema,
|
|
27
|
+
}),
|
|
28
|
+
});
|
|
29
|
+
//# sourceMappingURL=types.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/api/kws/types.ts"],"names":[],"mappings":";;;AAAA,6BAAuB;AAiBvB,wDAAwD;AAC3C,QAAA,qBAAqB,GAAG,OAAC;KACnC,MAAM,CAAC;IACN,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE;IACpB,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE;CACtB,CAAC;KACD,MAAM,EAAE,CAAA;AAYX,wDAAwD;AAC3C,QAAA,mCAAmC,GAAG,OAAC,CAAC,MAAM,CAAC;IAC1D,eAAe,EAAE,OAAC,CAAC,MAAM,EAAE;IAC3B,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE;IACrB,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE;CACnB,CAAC,CAAA;AAeF,wDAAwD;AAC3C,QAAA,YAAY,GAAG,OAAC,CAAC,MAAM,CAAC;IACnC,QAAQ,EAAE,OAAC,CAAC,OAAO,EAAE;CACtB,CAAC,CAAA;AAEF,wDAAwD;AAC3C,QAAA,6BAA6B,GAAG,OAAC,CAAC,MAAM,CAAC;IACpD,OAAO,EAAE,OAAC,CAAC,MAAM,CAAC;QAChB,eAAe,EAAE,OAAC,CAAC,MAAM,EAAE;QAC3B,MAAM,EAAE,oBAAY;KACrB,CAAC;CACH,CAAC,CAAA"}
|
|
@@ -0,0 +1,21 @@
|
|
|
1
|
+
import express from 'express';
|
|
2
|
+
import { AppContext } from '../../context';
|
|
3
|
+
import { AgeAssuranceEvent, AgeAssuranceState } from '../../lexicon/types/app/bsky/unspecced/defs';
|
|
4
|
+
import { KwsExternalPayload, KwsStatus } from './types';
|
|
5
|
+
export declare const createStashEvent: (ctx: AppContext, { actorDid, attemptId, email, initIp, initUa, completeIp, completeUa, status, }: {
|
|
6
|
+
actorDid: string;
|
|
7
|
+
attemptId: string;
|
|
8
|
+
email?: string;
|
|
9
|
+
initIp?: string;
|
|
10
|
+
initUa?: string;
|
|
11
|
+
completeIp?: string;
|
|
12
|
+
completeUa?: string;
|
|
13
|
+
status: AgeAssuranceState["status"];
|
|
14
|
+
}) => Promise<AgeAssuranceEvent>;
|
|
15
|
+
export declare const validateSignature: (key: string, data: string, signature: string) => void;
|
|
16
|
+
export declare const serializeExternalPayload: (value: KwsExternalPayload) => string;
|
|
17
|
+
export declare const parseExternalPayload: (serialized: string) => KwsExternalPayload;
|
|
18
|
+
export declare const parseStatus: (serialized: string) => KwsStatus;
|
|
19
|
+
export declare const kwsWwwAuthenticate: () => Record<string, string>;
|
|
20
|
+
export declare const getClientUa: (req: express.Request) => string | undefined;
|
|
21
|
+
//# sourceMappingURL=util.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"util.d.ts","sourceRoot":"","sources":["../../../src/api/kws/util.ts"],"names":[],"mappings":"AACA,OAAO,OAAO,MAAM,SAAS,CAAA;AAE7B,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAA;AAC1C,OAAO,EACL,iBAAiB,EACjB,iBAAiB,EAClB,MAAM,6CAA6C,CAAA;AAEpD,OAAO,EACL,kBAAkB,EAClB,SAAS,EAGV,MAAM,SAAS,CAAA;AAEhB,eAAO,MAAM,gBAAgB,GAC3B,KAAK,UAAU,EACf,iFASG;IACD,QAAQ,EAAE,MAAM,CAAA;IAChB,SAAS,EAAE,MAAM,CAAA;IACjB,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,MAAM,EAAE,iBAAiB,CAAC,QAAQ,CAAC,CAAA;CACpC,+BAoBF,CAAA;AAED,eAAO,MAAM,iBAAiB,GAC5B,KAAK,MAAM,EACX,MAAM,MAAM,EACZ,WAAW,MAAM,SAiBlB,CAAA;AAED,eAAO,MAAM,wBAAwB,GAAI,OAAO,kBAAkB,KAAG,MAEpE,CAAA;AAED,eAAO,MAAM,oBAAoB,GAC/B,YAAY,MAAM,KACjB,kBAOF,CAAA;AAED,eAAO,MAAM,WAAW,GAAI,YAAY,MAAM,KAAG,SAOhD,CAAA;AAED,eAAO,MAAM,kBAAkB,QAAO,MAAM,CAAC,MAAM,EAAE,MAAM,CAEzD,CAAA;AAEF,eAAO,MAAM,WAAW,GAAI,KAAK,OAAO,CAAC,OAAO,KAAG,MAAM,GAAG,SAE3D,CAAA"}
|
|
@@ -0,0 +1,78 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
5
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
+
exports.getClientUa = exports.kwsWwwAuthenticate = exports.parseStatus = exports.parseExternalPayload = exports.serializeExternalPayload = exports.validateSignature = exports.createStashEvent = void 0;
|
|
7
|
+
const node_crypto_1 = __importDefault(require("node:crypto"));
|
|
8
|
+
const common_1 = require("@atproto/common");
|
|
9
|
+
const stash_1 = require("../../stash");
|
|
10
|
+
const types_1 = require("./types");
|
|
11
|
+
const createStashEvent = async (ctx, { actorDid, attemptId, email, initIp, initUa, completeIp, completeUa, status, }) => {
|
|
12
|
+
const stashPayload = {
|
|
13
|
+
createdAt: new Date().toISOString(),
|
|
14
|
+
email,
|
|
15
|
+
status,
|
|
16
|
+
attemptId,
|
|
17
|
+
initIp,
|
|
18
|
+
initUa,
|
|
19
|
+
completeIp,
|
|
20
|
+
completeUa,
|
|
21
|
+
};
|
|
22
|
+
await ctx.stashClient.create({
|
|
23
|
+
actorDid,
|
|
24
|
+
namespace: stash_1.Namespaces.AppBskyUnspeccedDefsAgeAssuranceEvent,
|
|
25
|
+
key: common_1.TID.nextStr(),
|
|
26
|
+
payload: stashPayload,
|
|
27
|
+
});
|
|
28
|
+
return stashPayload;
|
|
29
|
+
};
|
|
30
|
+
exports.createStashEvent = createStashEvent;
|
|
31
|
+
const validateSignature = (key, data, signature) => {
|
|
32
|
+
const expectedSignature = node_crypto_1.default
|
|
33
|
+
.createHmac('sha256', key)
|
|
34
|
+
.update(data)
|
|
35
|
+
.digest('hex');
|
|
36
|
+
const expectedSignatureBuf = Buffer.from(expectedSignature, 'hex');
|
|
37
|
+
const actualSignatureBuf = Buffer.from(signature, 'hex');
|
|
38
|
+
if (expectedSignatureBuf.length !== actualSignatureBuf.length) {
|
|
39
|
+
throw new Error(`Signature mismatch`);
|
|
40
|
+
}
|
|
41
|
+
if (!node_crypto_1.default.timingSafeEqual(expectedSignatureBuf, actualSignatureBuf)) {
|
|
42
|
+
throw new Error(`Signature mismatch`);
|
|
43
|
+
}
|
|
44
|
+
};
|
|
45
|
+
exports.validateSignature = validateSignature;
|
|
46
|
+
const serializeExternalPayload = (value) => {
|
|
47
|
+
return JSON.stringify(value);
|
|
48
|
+
};
|
|
49
|
+
exports.serializeExternalPayload = serializeExternalPayload;
|
|
50
|
+
const parseExternalPayload = (serialized) => {
|
|
51
|
+
try {
|
|
52
|
+
const value = JSON.parse(serialized);
|
|
53
|
+
return types_1.externalPayloadSchema.parse(value);
|
|
54
|
+
}
|
|
55
|
+
catch (err) {
|
|
56
|
+
throw new Error(`Invalid external payload: ${serialized}`, { cause: err });
|
|
57
|
+
}
|
|
58
|
+
};
|
|
59
|
+
exports.parseExternalPayload = parseExternalPayload;
|
|
60
|
+
const parseStatus = (serialized) => {
|
|
61
|
+
try {
|
|
62
|
+
const value = JSON.parse(serialized);
|
|
63
|
+
return types_1.statusSchema.parse(value);
|
|
64
|
+
}
|
|
65
|
+
catch (err) {
|
|
66
|
+
throw new Error(`Invalid status: ${serialized}`, { cause: err });
|
|
67
|
+
}
|
|
68
|
+
};
|
|
69
|
+
exports.parseStatus = parseStatus;
|
|
70
|
+
const kwsWwwAuthenticate = () => ({
|
|
71
|
+
'www-authenticate': `Signature realm="kws"`,
|
|
72
|
+
});
|
|
73
|
+
exports.kwsWwwAuthenticate = kwsWwwAuthenticate;
|
|
74
|
+
const getClientUa = (req) => {
|
|
75
|
+
return req.headers['user-agent'];
|
|
76
|
+
};
|
|
77
|
+
exports.getClientUa = getClientUa;
|
|
78
|
+
//# sourceMappingURL=util.js.map
|