npm - @atproto/oauth-provider - Versions diffs - 0.1.1 → 0.1.2-rc.1 - Mend

@atproto/oauth-provider 0.1.1 → 0.1.2-rc.1

Files changed (17) hide show

package/CHANGELOG.md +7 -0
package/dist/assets/app/bundle-manifest.json +3 -3
package/dist/assets/app/main.css +1 -1
package/dist/assets/app/main.js +3 -3
package/dist/assets/app/main.js.map +1 -1
package/dist/output/send-authorize-page.d.ts +43 -0
package/dist/output/send-authorize-page.d.ts.map +1 -0
package/dist/output/send-authorize-page.js +49 -0
package/dist/output/send-authorize-page.js.map +1 -0
package/dist/output/send-error-page.d.ts +5 -0
package/dist/output/send-error-page.d.ts.map +1 -0
package/dist/output/send-error-page.js +31 -0
package/dist/output/send-error-page.js.map +1 -0
package/dist/token/token-store.d.ts +1 -1
package/package.json +4 -4
package/src/token/token-store.ts +1 -1
package/src/assets/app/components/error-card.tsx +0 -41

package/dist/output/send-authorize-page.d.ts ADDED Viewed

@@ -0,0 +1,43 @@
+/// <reference types="node" />
+import { OAuthAuthenticationRequestParameters, OAuthClientMetadata } from '@atproto/oauth-types';
+import { ServerResponse } from 'node:http';
+import { DeviceAccountInfo } from '../account/account-store.js';
+import { Account } from '../account/account.js';
+import { Client } from '../client/client.js';
+import { RequestUri } from '../request/request-uri.js';
+import { Customization } from './customization.js';
+export type AuthorizationResultAuthorize = {
+    issuer: string;
+    client: Client;
+    parameters: OAuthAuthenticationRequestParameters;
+    authorize: {
+        uri: RequestUri;
+        sessions: readonly {
+            account: Account;
+            info: DeviceAccountInfo;
+            selected: boolean;
+            loginRequired: boolean;
+            consentRequired: boolean;
+        }[];
+    };
+};
+type Session = {
+    account: Account;
+    info?: never;
+    selected: boolean;
+    loginRequired: boolean;
+    consentRequired: boolean;
+};
+export type AuthorizeData = {
+    clientId: string;
+    clientMetadata: OAuthClientMetadata;
+    clientTrusted: boolean;
+    requestUri: string;
+    csrfCookie: string;
+    loginHint?: string;
+    newSessionsRequireConsent: boolean;
+    sessions: Session[];
+};
+export declare function sendAuthorizePage(res: ServerResponse, data: AuthorizationResultAuthorize, customization?: Customization): Promise<void>;
+export {};
+//# sourceMappingURL=send-authorize-page.d.ts.map

package/dist/output/send-authorize-page.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"send-authorize-page.d.ts","sourceRoot":"","sources":["../../src/output/send-authorize-page.ts"],"names":[],"mappings":";AAAA,OAAO,EACL,oCAAoC,EACpC,mBAAmB,EACpB,MAAM,sBAAsB,CAAA;AAC7B,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAA;AAE1C,OAAO,EAAE,iBAAiB,EAAE,MAAM,6BAA6B,CAAA;AAC/D,OAAO,EAAE,OAAO,EAAE,MAAM,uBAAuB,CAAA;AAE/C,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAA;AAE5C,OAAO,EAAE,UAAU,EAAE,MAAM,2BAA2B,CAAA;AACtD,OAAO,EACL,aAAa,EAGd,MAAM,oBAAoB,CAAA;AAG3B,MAAM,MAAM,4BAA4B,GAAG;IACzC,MAAM,EAAE,MAAM,CAAA;IACd,MAAM,EAAE,MAAM,CAAA;IACd,UAAU,EAAE,oCAAoC,CAAA;IAChD,SAAS,EAAE;QACT,GAAG,EAAE,UAAU,CAAA;QACf,QAAQ,EAAE,SAAS;YACjB,OAAO,EAAE,OAAO,CAAA;YAChB,IAAI,EAAE,iBAAiB,CAAA;YAEvB,QAAQ,EAAE,OAAO,CAAA;YACjB,aAAa,EAAE,OAAO,CAAA;YACtB,eAAe,EAAE,OAAO,CAAA;SACzB,EAAE,CAAA;KACJ,CAAA;CACF,CAAA;AAKD,KAAK,OAAO,GAAG;IACb,OAAO,EAAE,OAAO,CAAA;IAChB,IAAI,CAAC,EAAE,KAAK,CAAA;IAEZ,QAAQ,EAAE,OAAO,CAAA;IACjB,aAAa,EAAE,OAAO,CAAA;IACtB,eAAe,EAAE,OAAO,CAAA;CACzB,CAAA;AAED,MAAM,MAAM,aAAa,GAAG;IAC1B,QAAQ,EAAE,MAAM,CAAA;IAChB,cAAc,EAAE,mBAAmB,CAAA;IACnC,aAAa,EAAE,OAAO,CAAA;IACtB,UAAU,EAAE,MAAM,CAAA;IAClB,UAAU,EAAE,MAAM,CAAA;IAClB,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,yBAAyB,EAAE,OAAO,CAAA;IAClC,QAAQ,EAAE,OAAO,EAAE,CAAA;CACpB,CAAA;AAsBD,wBAAsB,iBAAiB,CACrC,GAAG,EAAE,cAAc,EACnB,IAAI,EAAE,4BAA4B,EAClC,aAAa,CAAC,EAAE,aAAa,GAC5B,OAAO,CAAC,IAAI,CAAC,CA2Bf"}

package/dist/output/send-authorize-page.js ADDED Viewed

@@ -0,0 +1,49 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.sendAuthorizePage = void 0;
+const index_js_1 = require("../assets/index.js");
+const index_js_2 = require("../lib/html/index.js");
+const customization_js_1 = require("./customization.js");
+const send_web_page_js_1 = require("./send-web-page.js");
+function buildAuthorizeData(data) {
+    return {
+        clientId: data.client.id,
+        clientMetadata: data.client.metadata,
+        clientTrusted: data.client.info.isTrusted,
+        requestUri: data.authorize.uri,
+        csrfCookie: `csrf-${data.authorize.uri}`,
+        loginHint: data.parameters.login_hint,
+        newSessionsRequireConsent: data.parameters.prompt === 'consent',
+        sessions: data.authorize.sessions.map((session) => ({
+            account: session.account,
+            selected: session.selected,
+            loginRequired: session.loginRequired,
+            consentRequired: session.consentRequired,
+        })),
+    };
+}
+async function sendAuthorizePage(res, data, customization) {
+    res.setHeader('Cache-Control', 'no-store');
+    res.setHeader('Permissions-Policy', 'otp-credentials=*, document-domain=()');
+    const [jsAsset, cssAsset] = await Promise.all([
+        (0, index_js_1.getAsset)('main.js'),
+        (0, index_js_1.getAsset)('main.css'),
+    ]);
+    return (0, send_web_page_js_1.sendWebPage)(res, {
+        scripts: [
+            (0, send_web_page_js_1.declareBackendData)('__customizationData', (0, customization_js_1.buildCustomizationData)(customization)),
+            (0, send_web_page_js_1.declareBackendData)('__authorizeData', buildAuthorizeData(data)),
+            jsAsset, // Last (to be able to read the global variables)
+        ],
+        styles: [
+            cssAsset, // First (to be overridden by customization)
+            (0, index_js_2.cssCode)((0, customization_js_1.buildCustomizationCss)(customization)),
+        ],
+        links: customization?.links,
+        htmlAttrs: { lang: 'en' },
+        title: 'Authorize',
+        body: (0, index_js_2.html) `<div id="root"></div>`,
+    });
+}
+exports.sendAuthorizePage = sendAuthorizePage;
+//# sourceMappingURL=send-authorize-page.js.map

package/dist/output/send-authorize-page.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"send-authorize-page.js","sourceRoot":"","sources":["../../src/output/send-authorize-page.ts"],"names":[],"mappings":";;;AAQA,iDAA6C;AAE7C,mDAAoD;AAEpD,yDAI2B;AAC3B,yDAAoE;AA0CpE,SAAS,kBAAkB,CAAC,IAAkC;IAC5D,OAAO;QACL,QAAQ,EAAE,IAAI,CAAC,MAAM,CAAC,EAAE;QACxB,cAAc,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ;QACpC,aAAa,EAAE,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS;QACzC,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG;QAC9B,UAAU,EAAE,QAAQ,IAAI,CAAC,SAAS,CAAC,GAAG,EAAE;QACxC,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,UAAU;QACrC,yBAAyB,EAAE,IAAI,CAAC,UAAU,CAAC,MAAM,KAAK,SAAS;QAC/D,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,GAAG,CACnC,CAAC,OAAO,EAAW,EAAE,CAAC,CAAC;YACrB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,QAAQ,EAAE,OAAO,CAAC,QAAQ;YAC1B,aAAa,EAAE,OAAO,CAAC,aAAa;YACpC,eAAe,EAAE,OAAO,CAAC,eAAe;SACzC,CAAC,CACH;KACF,CAAA;AACH,CAAC;AAEM,KAAK,UAAU,iBAAiB,CACrC,GAAmB,EACnB,IAAkC,EAClC,aAA6B;IAE7B,GAAG,CAAC,SAAS,CAAC,eAAe,EAAE,UAAU,CAAC,CAAA;IAC1C,GAAG,CAAC,SAAS,CAAC,oBAAoB,EAAE,uCAAuC,CAAC,CAAA;IAE5E,MAAM,CAAC,OAAO,EAAE,QAAQ,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;QAC5C,IAAA,mBAAQ,EAAC,SAAS,CAAC;QACnB,IAAA,mBAAQ,EAAC,UAAU,CAAC;KACrB,CAAC,CAAA;IAEF,OAAO,IAAA,8BAAW,EAAC,GAAG,EAAE;QACtB,OAAO,EAAE;YACP,IAAA,qCAAkB,EAChB,qBAAqB,EACrB,IAAA,yCAAsB,EAAC,aAAa,CAAC,CACtC;YACD,IAAA,qCAAkB,EAAC,iBAAiB,EAAE,kBAAkB,CAAC,IAAI,CAAC,CAAC;YAC/D,OAAO,EAAE,iDAAiD;SAC3D;QACD,MAAM,EAAE;YACN,QAAQ,EAAE,4CAA4C;YACtD,IAAA,kBAAO,EAAC,IAAA,wCAAqB,EAAC,aAAa,CAAC,CAAC;SAC9C;QACD,KAAK,EAAE,aAAa,EAAE,KAAK;QAC3B,SAAS,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;QACzB,KAAK,EAAE,WAAW;QAClB,IAAI,EAAE,IAAA,eAAI,EAAA,uBAAuB;KAClC,CAAC,CAAA;AACJ,CAAC;AA/BD,8CA+BC"}

package/dist/output/send-error-page.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+/// <reference types="node" />
+import { ServerResponse } from 'node:http';
+import { Customization } from './customization.js';
+export declare function sendErrorPage(res: ServerResponse, err: unknown, customization?: Customization): Promise<void>;
+//# sourceMappingURL=send-error-page.d.ts.map

package/dist/output/send-error-page.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"send-error-page.d.ts","sourceRoot":"","sources":["../../src/output/send-error-page.ts"],"names":[],"mappings":";AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAA;AAK1C,OAAO,EACL,aAAa,EAGd,MAAM,oBAAoB,CAAA;AAG3B,wBAAsB,aAAa,CACjC,GAAG,EAAE,cAAc,EACnB,GAAG,EAAE,OAAO,EACZ,aAAa,CAAC,EAAE,aAAa,GAC5B,OAAO,CAAC,IAAI,CAAC,CAwBf"}

package/dist/output/send-error-page.js ADDED Viewed

@@ -0,0 +1,31 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.sendErrorPage = void 0;
+const index_js_1 = require("../assets/index.js");
+const index_js_2 = require("../lib/html/index.js");
+const build_error_payload_js_1 = require("./build-error-payload.js");
+const customization_js_1 = require("./customization.js");
+const send_web_page_js_1 = require("./send-web-page.js");
+async function sendErrorPage(res, err, customization) {
+    const [jsAsset, cssAsset] = await Promise.all([
+        (0, index_js_1.getAsset)('main.js'),
+        (0, index_js_1.getAsset)('main.css'),
+    ]);
+    return (0, send_web_page_js_1.sendWebPage)(res, {
+        status: (0, build_error_payload_js_1.buildErrorStatus)(err),
+        scripts: [
+            (0, send_web_page_js_1.declareBackendData)('__customizationData', (0, customization_js_1.buildCustomizationData)(customization)),
+            (0, send_web_page_js_1.declareBackendData)('__errorData', (0, build_error_payload_js_1.buildErrorPayload)(err)),
+            jsAsset, // Last (to be able to read the global variables)
+        ],
+        styles: [
+            cssAsset, // First (to be overridden by customization)
+            (0, index_js_2.cssCode)((0, customization_js_1.buildCustomizationCss)(customization)),
+        ],
+        htmlAttrs: { lang: 'en' },
+        title: 'Error',
+        body: (0, index_js_2.html) `<div id="root"></div>`,
+    });
+}
+exports.sendErrorPage = sendErrorPage;
+//# sourceMappingURL=send-error-page.js.map

package/dist/output/send-error-page.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"send-error-page.js","sourceRoot":"","sources":["../../src/output/send-error-page.ts"],"names":[],"mappings":";;;AAEA,iDAA6C;AAC7C,mDAAoD;AACpD,qEAA8E;AAC9E,yDAI2B;AAC3B,yDAAoE;AAE7D,KAAK,UAAU,aAAa,CACjC,GAAmB,EACnB,GAAY,EACZ,aAA6B;IAE7B,MAAM,CAAC,OAAO,EAAE,QAAQ,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;QAC5C,IAAA,mBAAQ,EAAC,SAAS,CAAC;QACnB,IAAA,mBAAQ,EAAC,UAAU,CAAC;KACrB,CAAC,CAAA;IAEF,OAAO,IAAA,8BAAW,EAAC,GAAG,EAAE;QACtB,MAAM,EAAE,IAAA,yCAAgB,EAAC,GAAG,CAAC;QAC7B,OAAO,EAAE;YACP,IAAA,qCAAkB,EAChB,qBAAqB,EACrB,IAAA,yCAAsB,EAAC,aAAa,CAAC,CACtC;YACD,IAAA,qCAAkB,EAAC,aAAa,EAAE,IAAA,0CAAiB,EAAC,GAAG,CAAC,CAAC;YACzD,OAAO,EAAE,iDAAiD;SAC3D;QACD,MAAM,EAAE;YACN,QAAQ,EAAE,4CAA4C;YACtD,IAAA,kBAAO,EAAC,IAAA,wCAAqB,EAAC,aAAa,CAAC,CAAC;SAC9C;QACD,SAAS,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;QACzB,KAAK,EAAE,OAAO;QACd,IAAI,EAAE,IAAA,eAAI,EAAA,uBAAuB;KAClC,CAAC,CAAA;AACJ,CAAC;AA5BD,sCA4BC"}

package/dist/token/token-store.d.ts CHANGED Viewed

@@ -24,7 +24,7 @@ export interface TokenStore {
     rotateToken(tokenId: TokenId, newTokenId: TokenId, newRefreshToken: RefreshToken, newData: NewTokenData): Awaitable<void>;
     /**
      * Find a token by its refresh token. Note that previous refresh tokens
-     * should also return the token. The data model is reponsible for storing
+     * should also return the token. The data model is responsible for storing
      * old refresh tokens when a new one is issued.
      */
     findTokenByRefreshToken(refreshToken: RefreshToken): Awaitable<null | TokenInfo>;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@atproto/oauth-provider",
-  "version": "0.1.1",
+  "version": "0.1.2-rc.1",
   "license": "MIT",
   "description": "Generic OAuth2 and OpenID Connect provider for Node.js. Currently only supports features needed for Atproto.",
   "keywords": [
@@ -41,11 +41,11 @@
     "@atproto-labs/fetch": "0.1.0",
     "@atproto-labs/fetch-node": "0.1.0",
     "@atproto-labs/pipe": "0.1.0",
-    "@atproto-labs/simple-store-memory": "0.1.1",
     "@atproto-labs/simple-store": "0.1.1",
+    "@atproto/jwk-jose": "0.1.2-rc.0",
+    "@atproto/oauth-types": "0.1.2-rc.0",
     "@atproto/jwk": "0.1.1",
-    "@atproto/jwk-jose": "0.1.1",
-    "@atproto/oauth-types": "0.1.1"
+    "@atproto-labs/simple-store-memory": "0.1.1"
   },
   "devDependencies": {
     "@rollup/plugin-commonjs": "^25.0.7",

package/src/token/token-store.ts CHANGED Viewed

@@ -45,7 +45,7 @@ export interface TokenStore {
   /**
    * Find a token by its refresh token. Note that previous refresh tokens
-   * should also return the token. The data model is reponsible for storing
+   * should also return the token. The data model is responsible for storing
    * old refresh tokens when a new one is issued.
    */
   findTokenByRefreshToken(

package/src/assets/app/components/error-card.tsx DELETED Viewed

@@ -1,41 +0,0 @@
-import { HtmlHTMLAttributes } from 'react'
-import { clsx } from '../lib/clsx'
-export type ErrorCardProps = {
-  message?: null | string
-  role?: 'alert' | 'status'
-}
-export function ErrorCard({
-  message,
-  role = 'alert',
-  className,
-  ...attrs
-}: Partial<ErrorCardProps> &
-  Omit<HtmlHTMLAttributes<HTMLDivElement>, keyof ErrorCardProps | 'children'>) {
-  return (
-    <div
-      {...attrs}
-      className={clsx(
-        'flex items-center rounded bg-error py-1 px-2 text-white dark:text-black shadow-md',
-        className,
-      )}
-      role={role}
-    >
-      <svg
-        className="fill-current h-4 w-4"
-        xmlns="http://www.w3.org/2000/svg"
-        viewBox="0 0 20 20"
-      >
-        <path d="M2.93 17.07A10 10 0 1 1 17.07 2.93 10 10 0 0 1 2.93 17.07zm12.73-1.41A8 8 0 1 0 4.34 4.34a8 8 0 0 0 11.32 11.32zM9 11V9h2v6H9v-4zm0-6h2v2H9V5z" />
-      </svg>
-      <div className="ml-4">
-        <p>
-          {typeof message === 'string' ? message : 'An unknown error occurred'}
-        </p>
-      </div>
-    </div>
-  )
-}