@atproto/jwk 0.1.1 → 0.1.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +12 -0
- package/dist/alg.js +1 -2
- package/dist/alg.js.map +1 -1
- package/dist/index.d.ts +1 -0
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +6 -0
- package/dist/index.js.map +1 -1
- package/dist/jwt-decode.js +1 -2
- package/dist/jwt-decode.js.map +1 -1
- package/dist/jwt-verify.d.ts +3 -4
- package/dist/jwt-verify.d.ts.map +1 -1
- package/dist/jwt.d.ts +2611 -157
- package/dist/jwt.d.ts.map +1 -1
- package/dist/jwt.js +8 -4
- package/dist/jwt.js.map +1 -1
- package/dist/key.d.ts +15 -11
- package/dist/key.d.ts.map +1 -1
- package/dist/key.js +8 -7
- package/dist/key.js.map +1 -1
- package/dist/keyset.d.ts +1 -1
- package/dist/keyset.d.ts.map +1 -1
- package/dist/keyset.js.map +1 -1
- package/dist/util.d.ts +4 -4
- package/dist/util.d.ts.map +1 -1
- package/dist/util.js +3 -3
- package/dist/util.js.map +1 -1
- package/package.json +2 -2
- package/src/index.ts +5 -0
- package/src/jwt-verify.ts +3 -5
- package/src/jwt.ts +145 -141
- package/src/key.ts +23 -18
- package/src/keyset.ts +3 -6
- package/src/util.ts +6 -6
- package/tsconfig.build.tsbuildinfo +1 -0
package/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,17 @@
|
|
|
1
1
|
# @atproto/jwk
|
|
2
2
|
|
|
3
|
+
## 0.1.2
|
|
4
|
+
|
|
5
|
+
### Patch Changes
|
|
6
|
+
|
|
7
|
+
- [#2879](https://github.com/bluesky-social/atproto/pull/2879) [`2889c7699`](https://github.com/bluesky-social/atproto/commit/2889c76995ce3c569f595ac3c678218e9ce659f0) Thanks [@matthieusieben](https://github.com/matthieusieben)! - Mark jwk key fields as readonly
|
|
8
|
+
|
|
9
|
+
- [#2879](https://github.com/bluesky-social/atproto/pull/2879) [`2889c7699`](https://github.com/bluesky-social/atproto/commit/2889c76995ce3c569f595ac3c678218e9ce659f0) Thanks [@matthieusieben](https://github.com/matthieusieben)! - Remove unsafe type casting during JWT verification
|
|
10
|
+
|
|
11
|
+
- [#2879](https://github.com/bluesky-social/atproto/pull/2879) [`2889c7699`](https://github.com/bluesky-social/atproto/commit/2889c76995ce3c569f595ac3c678218e9ce659f0) Thanks [@matthieusieben](https://github.com/matthieusieben)! - Allow (passthrough) unknown properties in JWT payload & headers
|
|
12
|
+
|
|
13
|
+
- [#2879](https://github.com/bluesky-social/atproto/pull/2879) [`2889c7699`](https://github.com/bluesky-social/atproto/commit/2889c76995ce3c569f595ac3c678218e9ce659f0) Thanks [@matthieusieben](https://github.com/matthieusieben)! - Expose ValidationError to allow for proper error handling
|
|
14
|
+
|
|
3
15
|
## 0.1.1
|
|
4
16
|
|
|
5
17
|
### Patch Changes
|
package/dist/alg.js
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.jwkAlgorithms =
|
|
3
|
+
exports.jwkAlgorithms = jwkAlgorithms;
|
|
4
4
|
const errors_js_1 = require("./errors.js");
|
|
5
5
|
// Copy variable to prevent bundlers from automatically polyfilling "process" (e.g. parcel)
|
|
6
6
|
const { process } = globalThis;
|
|
@@ -88,5 +88,4 @@ function* jwkAlgorithms(jwk) {
|
|
|
88
88
|
throw new errors_js_1.JwkError(`Unsupported kty "${jwk.kty}"`);
|
|
89
89
|
}
|
|
90
90
|
}
|
|
91
|
-
exports.jwkAlgorithms = jwkAlgorithms;
|
|
92
91
|
//# sourceMappingURL=alg.js.map
|
package/dist/alg.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"alg.js","sourceRoot":"","sources":["../src/alg.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"alg.js","sourceRoot":"","sources":["../src/alg.ts"],"names":[],"mappings":";;AAQA,sCA0FC;AAlGD,2CAAsC;AAGtC,2FAA2F;AAC3F,MAAM,EAAE,OAAO,EAAE,GAAG,UAAU,CAAA;AAC9B,MAAM,eAAe,GACnB,OAAO,OAAO,KAAK,WAAW,IAAI,OAAO,OAAO,EAAE,QAAQ,EAAE,IAAI,KAAK,QAAQ,CAAA;AAE/E,QAAe,CAAC,CAAC,aAAa,CAAC,GAAQ;IACrC,kDAAkD;IAClD,uBAAuB;IACvB,IAAI,GAAG,CAAC,GAAG,EAAE,CAAC;QACZ,MAAM,GAAG,CAAC,GAAG,CAAA;QACb,OAAM;IACR,CAAC;IAED,QAAQ,GAAG,CAAC,GAAG,EAAE,CAAC;QAChB,KAAK,IAAI,CAAC,CAAC,CAAC;YACV,IAAI,GAAG,CAAC,GAAG,KAAK,KAAK,IAAI,GAAG,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;gBAC/C,MAAM,SAAS,CAAA;gBACf,MAAM,gBAAgB,CAAA;gBACtB,MAAM,gBAAgB,CAAA;gBACtB,MAAM,gBAAgB,CAAA;YACxB,CAAC;YAED,IAAI,GAAG,CAAC,GAAG,KAAK,KAAK,IAAI,GAAG,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;gBAC/C,MAAM,GAAG,GAAG,KAAK,IAAI,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAA;gBAC9C,QAAQ,GAAG,EAAE,CAAC;oBACZ,KAAK,OAAO,CAAC;oBACb,KAAK,OAAO;wBACV,MAAM,KAAK,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;wBAC1B,MAAK;oBACP,KAAK,OAAO;wBACV,MAAM,OAAO,CAAA;wBACb,MAAK;oBACP,KAAK,WAAW;wBACd,IAAI,eAAe;4BAAE,MAAM,QAAQ,CAAA;wBACnC,MAAK;oBACP;wBACE,MAAM,IAAI,oBAAQ,CAAC,oBAAoB,GAAG,GAAG,CAAC,CAAA;gBAClD,CAAC;YACH,CAAC;YAED,OAAM;QACR,CAAC;QAED,KAAK,KAAK,CAAC,CAAC,CAAC;YACX,IAAI,CAAC,GAAG,CAAC,GAAG;gBAAE,MAAM,IAAI,oBAAQ,CAAC,+BAA+B,CAAC,CAAA;YACjE,MAAM,SAAS,CAAA;YACf,MAAM,gBAAgB,CAAA;YACtB,MAAM,gBAAgB,CAAA;YACtB,MAAM,gBAAgB,CAAA;YACtB,OAAM;QACR,CAAC;QAED,KAAK,KAAK,CAAC,CAAC,CAAC;YACX,IAAI,GAAG,CAAC,GAAG,KAAK,KAAK,IAAI,GAAG,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;gBAC/C,MAAM,UAAU,CAAA;gBAChB,MAAM,cAAc,CAAA;gBACpB,MAAM,cAAc,CAAA;gBACpB,MAAM,cAAc,CAAA;gBACpB,IAAI,eAAe;oBAAE,MAAM,QAAQ,CAAA;YACrC,CAAC;YAED,IAAI,GAAG,CAAC,GAAG,KAAK,KAAK,IAAI,GAAG,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;gBAC/C,MAAM,OAAO,CAAA;gBACb,MAAM,OAAO,CAAA;gBACb,MAAM,OAAO,CAAA;gBACb,MAAM,OAAO,CAAA;gBACb,MAAM,OAAO,CAAA;gBACb,MAAM,OAAO,CAAA;YACf,CAAC;YAED,OAAM;QACR,CAAC;QAED,KAAK,KAAK,CAAC,CAAC,CAAC;YACX,IAAI,GAAG,CAAC,GAAG,KAAK,KAAK,IAAI,GAAG,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;gBAC/C,MAAM,WAAW,CAAA;gBACjB,MAAM,WAAW,CAAA;gBACjB,MAAM,WAAW,CAAA;gBACjB,MAAM,QAAQ,CAAA;gBACd,MAAM,QAAQ,CAAA;gBACd,MAAM,QAAQ,CAAA;YAChB,CAAC;YAED,IAAI,GAAG,CAAC,GAAG,KAAK,KAAK,IAAI,GAAG,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;gBAC/C,MAAM,OAAO,CAAA;gBACb,MAAM,OAAO,CAAA;gBACb,MAAM,OAAO,CAAA;YACf,CAAC;YAED,OAAM;QACR,CAAC;QAED;YACE,MAAM,IAAI,oBAAQ,CAAC,oBAAoB,GAAG,CAAC,GAAG,GAAG,CAAC,CAAA;IACtD,CAAC;AACH,CAAC"}
|
package/dist/index.d.ts
CHANGED
package/dist/index.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,QAAQ,IAAI,eAAe,EAAE,MAAM,KAAK,CAAA;AAEjD,cAAc,UAAU,CAAA;AACxB,cAAc,aAAa,CAAA;AAC3B,cAAc,UAAU,CAAA;AACxB,cAAc,WAAW,CAAA;AACzB,cAAc,iBAAiB,CAAA;AAC/B,cAAc,iBAAiB,CAAA;AAC/B,cAAc,UAAU,CAAA;AACxB,cAAc,UAAU,CAAA;AACxB,cAAc,aAAa,CAAA;AAC3B,cAAc,WAAW,CAAA"}
|
package/dist/index.js
CHANGED
|
@@ -14,6 +14,12 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
|
|
|
14
14
|
for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
|
|
15
15
|
};
|
|
16
16
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
17
|
+
exports.ValidationError = void 0;
|
|
18
|
+
// Since we expose zod schemas, let's expose ZodError (under a generic name) so
|
|
19
|
+
// that dependents can catch schema parsing errors without requiring an explicit
|
|
20
|
+
// dependency on zod, or risking a conflict in case of mismatching zob versions.
|
|
21
|
+
var zod_1 = require("zod");
|
|
22
|
+
Object.defineProperty(exports, "ValidationError", { enumerable: true, get: function () { return zod_1.ZodError; } });
|
|
17
23
|
__exportStar(require("./alg.js"), exports);
|
|
18
24
|
__exportStar(require("./errors.js"), exports);
|
|
19
25
|
__exportStar(require("./jwk.js"), exports);
|
package/dist/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;AAAA,+EAA+E;AAC/E,gFAAgF;AAChF,gFAAgF;AAChF,2BAAiD;AAAxC,sGAAA,QAAQ,OAAmB;AAEpC,2CAAwB;AACxB,8CAA2B;AAC3B,2CAAwB;AACxB,4CAAyB;AACzB,kDAA+B;AAC/B,kDAA+B;AAC/B,2CAAwB;AACxB,2CAAwB;AACxB,8CAA2B;AAC3B,4CAAyB"}
|
package/dist/jwt-decode.js
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.unsafeDecodeJwt =
|
|
3
|
+
exports.unsafeDecodeJwt = unsafeDecodeJwt;
|
|
4
4
|
const errors_js_1 = require("./errors.js");
|
|
5
5
|
const jwt_js_1 = require("./jwt.js");
|
|
6
6
|
const util_js_1 = require("./util.js");
|
|
@@ -16,5 +16,4 @@ function unsafeDecodeJwt(jwt) {
|
|
|
16
16
|
const payload = jwt_js_1.jwtPayloadSchema.parse((0, util_js_1.parseB64uJson)(payloadEnc));
|
|
17
17
|
return { header, payload };
|
|
18
18
|
}
|
|
19
|
-
exports.unsafeDecodeJwt = unsafeDecodeJwt;
|
|
20
19
|
//# sourceMappingURL=jwt-decode.js.map
|
package/dist/jwt-decode.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"jwt-decode.js","sourceRoot":"","sources":["../src/jwt-decode.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"jwt-decode.js","sourceRoot":"","sources":["../src/jwt-decode.ts"],"names":[],"mappings":";;AASA,0CAiBC;AA1BD,2CAA6D;AAC7D,qCAKiB;AACjB,uCAAyC;AAEzC,SAAgB,eAAe,CAAC,GAAW;IAIzC,MAAM,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,UAAU,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;IAC9D,IAAI,MAAM,GAAG,CAAC,IAAI,MAAM,GAAG,CAAC,EAAE,CAAC;QAC7B,MAAM,IAAI,0BAAc,CAAC,SAAS,EAAE,2BAAe,CAAC,CAAA;IACtD,CAAC;IAED,MAAM,MAAM,GAAG,wBAAe,CAAC,KAAK,CAAC,IAAA,uBAAa,EAAC,SAAU,CAAC,CAAC,CAAA;IAC/D,IAAI,MAAM,KAAK,CAAC,IAAI,MAAM,EAAE,GAAG,KAAK,MAAM,EAAE,CAAC;QAC3C,MAAM,IAAI,0BAAc,CAAC,SAAS,EAAE,2BAAe,CAAC,CAAA;IACtD,CAAC;IAED,MAAM,OAAO,GAAG,yBAAgB,CAAC,KAAK,CAAC,IAAA,uBAAa,EAAC,UAAW,CAAC,CAAC,CAAA;IAElE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,CAAA;AAC5B,CAAC"}
|
package/dist/jwt-verify.d.ts
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
import { JwtHeader, JwtPayload } from './jwt.js';
|
|
2
2
|
import { RequiredKey } from './util.js';
|
|
3
|
-
export type VerifyOptions<C extends string =
|
|
3
|
+
export type VerifyOptions<C extends string = never> = {
|
|
4
4
|
audience?: string | readonly string[];
|
|
5
5
|
/** in seconds */
|
|
6
6
|
clockTolerance?: number;
|
|
@@ -12,9 +12,8 @@ export type VerifyOptions<C extends string = string> = {
|
|
|
12
12
|
currentDate?: Date;
|
|
13
13
|
requiredClaims?: readonly C[];
|
|
14
14
|
};
|
|
15
|
-
export type
|
|
16
|
-
|
|
17
|
-
payload: RequiredKey<P & JwtPayload, C>;
|
|
15
|
+
export type VerifyResult<C extends string = never> = {
|
|
16
|
+
payload: RequiredKey<JwtPayload, C>;
|
|
18
17
|
protectedHeader: JwtHeader;
|
|
19
18
|
};
|
|
20
19
|
//# sourceMappingURL=jwt-verify.d.ts.map
|
package/dist/jwt-verify.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"jwt-verify.d.ts","sourceRoot":"","sources":["../src/jwt-verify.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,UAAU,CAAA;AAChD,OAAO,EAAE,WAAW,EAAE,MAAM,WAAW,CAAA;AAEvC,MAAM,MAAM,aAAa,CAAC,CAAC,SAAS,MAAM,GAAG,
|
|
1
|
+
{"version":3,"file":"jwt-verify.d.ts","sourceRoot":"","sources":["../src/jwt-verify.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,UAAU,CAAA;AAChD,OAAO,EAAE,WAAW,EAAE,MAAM,WAAW,CAAA;AAEvC,MAAM,MAAM,aAAa,CAAC,CAAC,SAAS,MAAM,GAAG,KAAK,IAAI;IACpD,QAAQ,CAAC,EAAE,MAAM,GAAG,SAAS,MAAM,EAAE,CAAA;IACrC,iBAAiB;IACjB,cAAc,CAAC,EAAE,MAAM,CAAA;IACvB,MAAM,CAAC,EAAE,MAAM,GAAG,SAAS,MAAM,EAAE,CAAA;IACnC,iBAAiB;IACjB,WAAW,CAAC,EAAE,MAAM,CAAA;IACpB,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,GAAG,CAAC,EAAE,MAAM,CAAA;IACZ,WAAW,CAAC,EAAE,IAAI,CAAA;IAClB,cAAc,CAAC,EAAE,SAAS,CAAC,EAAE,CAAA;CAC9B,CAAA;AAED,MAAM,MAAM,YAAY,CAAC,CAAC,SAAS,MAAM,GAAG,KAAK,IAAI;IACnD,OAAO,EAAE,WAAW,CAAC,UAAU,EAAE,CAAC,CAAC,CAAA;IACnC,eAAe,EAAE,SAAS,CAAA;CAC3B,CAAA"}
|