@atproto/oauth-provider 0.13.0 → 0.13.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +23 -0
- package/dist/access-token/access-token-mode.js.map +1 -1
- package/dist/account/account-manager.js.map +1 -1
- package/dist/account/account-store.js.map +1 -1
- package/dist/account/sign-in-data.js.map +1 -1
- package/dist/account/sign-up-input.js.map +1 -1
- package/dist/client/client-auth.js.map +1 -1
- package/dist/client/client-data.js.map +1 -1
- package/dist/client/client-id.js.map +1 -1
- package/dist/client/client-info.js.map +1 -1
- package/dist/client/client-manager.d.ts.map +1 -1
- package/dist/client/client-manager.js +8 -1
- package/dist/client/client-manager.js.map +1 -1
- package/dist/client/client-store.js.map +1 -1
- package/dist/client/client-utils.js.map +1 -1
- package/dist/client/client.js.map +1 -1
- package/dist/constants.js.map +1 -1
- package/dist/customization/branding.js.map +1 -1
- package/dist/customization/build-customization-css.js.map +1 -1
- package/dist/customization/build-customization-data.js.map +1 -1
- package/dist/customization/colors.js.map +1 -1
- package/dist/customization/customization.js.map +1 -1
- package/dist/customization/links.js.map +1 -1
- package/dist/device/device-data.js.map +1 -1
- package/dist/device/device-id.js.map +1 -1
- package/dist/device/device-manager.d.ts +8 -8
- package/dist/device/device-manager.js.map +1 -1
- package/dist/device/device-store.js.map +1 -1
- package/dist/device/session-id.js.map +1 -1
- package/dist/dpop/dpop-manager.js.map +1 -1
- package/dist/dpop/dpop-nonce.js.map +1 -1
- package/dist/dpop/dpop-proof.js.map +1 -1
- package/dist/errors/access-denied-error.js.map +1 -1
- package/dist/errors/account-selection-required-error.js.map +1 -1
- package/dist/errors/authorization-error.js.map +1 -1
- package/dist/errors/consent-required-error.js.map +1 -1
- package/dist/errors/error-parser.js.map +1 -1
- package/dist/errors/handle-unavailable-error.js.map +1 -1
- package/dist/errors/invalid-authorization-details-error.js.map +1 -1
- package/dist/errors/invalid-client-error.js.map +1 -1
- package/dist/errors/invalid-client-id-error.js.map +1 -1
- package/dist/errors/invalid-client-metadata-error.js.map +1 -1
- package/dist/errors/invalid-dpop-key-binding-error.js.map +1 -1
- package/dist/errors/invalid-dpop-proof-error.js.map +1 -1
- package/dist/errors/invalid-grant-error.js.map +1 -1
- package/dist/errors/invalid-invite-code-error.js.map +1 -1
- package/dist/errors/invalid-redirect-uri-error.js.map +1 -1
- package/dist/errors/invalid-request-error.js.map +1 -1
- package/dist/errors/invalid-scope-error.js.map +1 -1
- package/dist/errors/invalid-token-error.js.map +1 -1
- package/dist/errors/login-required-error.js.map +1 -1
- package/dist/errors/oauth-error.js.map +1 -1
- package/dist/errors/second-authentication-factor-required-error.js.map +1 -1
- package/dist/errors/unauthorized-client-error.js.map +1 -1
- package/dist/errors/use-dpop-nonce-error.js.map +1 -1
- package/dist/errors/www-authenticate-error.js.map +1 -1
- package/dist/index.js.map +1 -1
- package/dist/lexicon/lexicon-data.js.map +1 -1
- package/dist/lexicon/lexicon-getter.js.map +1 -1
- package/dist/lexicon/lexicon-manager.js.map +1 -1
- package/dist/lexicon/lexicon-store.js.map +1 -1
- package/dist/lib/csp/index.js.map +1 -1
- package/dist/lib/hcaptcha.js.map +1 -1
- package/dist/lib/html/build-document.js.map +1 -1
- package/dist/lib/html/escapers.js.map +1 -1
- package/dist/lib/html/html.js.map +1 -1
- package/dist/lib/html/hydration-data.js.map +1 -1
- package/dist/lib/html/index.js.map +1 -1
- package/dist/lib/html/tags.js.map +1 -1
- package/dist/lib/html/util.js.map +1 -1
- package/dist/lib/http/accept.js.map +1 -1
- package/dist/lib/http/context.js.map +1 -1
- package/dist/lib/http/headers.js.map +1 -1
- package/dist/lib/http/index.js.map +1 -1
- package/dist/lib/http/method.js.map +1 -1
- package/dist/lib/http/middleware.js.map +1 -1
- package/dist/lib/http/parser.js.map +1 -1
- package/dist/lib/http/path.js.map +1 -1
- package/dist/lib/http/request.js.map +1 -1
- package/dist/lib/http/response.js.map +1 -1
- package/dist/lib/http/route.js.map +1 -1
- package/dist/lib/http/router.js.map +1 -1
- package/dist/lib/http/security-headers.js.map +1 -1
- package/dist/lib/http/stream.js.map +1 -1
- package/dist/lib/http/types.js.map +1 -1
- package/dist/lib/http/url.js.map +1 -1
- package/dist/lib/nsid.js.map +1 -1
- package/dist/lib/redis.js.map +1 -1
- package/dist/lib/send-web-page.js.map +1 -1
- package/dist/lib/util/authorization-header.js.map +1 -1
- package/dist/lib/util/cast.js.map +1 -1
- package/dist/lib/util/color.js.map +1 -1
- package/dist/lib/util/crypto.js.map +1 -1
- package/dist/lib/util/date.js.map +1 -1
- package/dist/lib/util/error.js.map +1 -1
- package/dist/lib/util/function.js.map +1 -1
- package/dist/lib/util/locale.js.map +1 -1
- package/dist/lib/util/redirect-uri.js.map +1 -1
- package/dist/lib/util/time.js.map +1 -1
- package/dist/lib/util/type.js.map +1 -1
- package/dist/lib/util/ui8.js.map +1 -1
- package/dist/lib/util/well-known.js.map +1 -1
- package/dist/lib/util/zod-error.js.map +1 -1
- package/dist/metadata/build-metadata.js.map +1 -1
- package/dist/oauth-client.js.map +1 -1
- package/dist/oauth-dpop.js.map +1 -1
- package/dist/oauth-errors.js.map +1 -1
- package/dist/oauth-hooks.js.map +1 -1
- package/dist/oauth-middleware.js.map +1 -1
- package/dist/oauth-provider.d.ts +128 -98
- package/dist/oauth-provider.d.ts.map +1 -1
- package/dist/oauth-provider.js.map +1 -1
- package/dist/oauth-store.js.map +1 -1
- package/dist/oauth-verifier.js.map +1 -1
- package/dist/oidc/sub.js.map +1 -1
- package/dist/replay/replay-manager.js.map +1 -1
- package/dist/replay/replay-store-memory.js.map +1 -1
- package/dist/replay/replay-store-redis.js.map +1 -1
- package/dist/replay/replay-store.js.map +1 -1
- package/dist/request/code.js.map +1 -1
- package/dist/request/request-data.js.map +1 -1
- package/dist/request/request-id.js.map +1 -1
- package/dist/request/request-manager.d.ts +18 -18
- package/dist/request/request-manager.d.ts.map +1 -1
- package/dist/request/request-manager.js.map +1 -1
- package/dist/request/request-store.js.map +1 -1
- package/dist/request/request-uri.js.map +1 -1
- package/dist/result/authorization-redirect-parameters.js.map +1 -1
- package/dist/result/authorization-result-authorize-page.js.map +1 -1
- package/dist/result/authorization-result-redirect.js.map +1 -1
- package/dist/router/assets/assets-manifest.js.map +1 -1
- package/dist/router/assets/assets.js.map +1 -1
- package/dist/router/assets/csrf.js.map +1 -1
- package/dist/router/assets/send-account-page.js.map +1 -1
- package/dist/router/assets/send-authorization-page.js.map +1 -1
- package/dist/router/assets/send-error-page.js.map +1 -1
- package/dist/router/create-account-page-middleware.js.map +1 -1
- package/dist/router/create-api-middleware.js.map +1 -1
- package/dist/router/create-authorization-page-middleware.js.map +1 -1
- package/dist/router/create-oauth-middleware.js.map +1 -1
- package/dist/router/error-handler.js.map +1 -1
- package/dist/router/middleware-options.js.map +1 -1
- package/dist/router/send-redirect.js.map +1 -1
- package/dist/signer/access-token-payload.d.ts +4113 -1362
- package/dist/signer/access-token-payload.d.ts.map +1 -1
- package/dist/signer/access-token-payload.js.map +1 -1
- package/dist/signer/api-token-payload.d.ts +3974 -1223
- package/dist/signer/api-token-payload.d.ts.map +1 -1
- package/dist/signer/api-token-payload.js.map +1 -1
- package/dist/signer/signer.d.ts +46 -26
- package/dist/signer/signer.d.ts.map +1 -1
- package/dist/signer/signer.js.map +1 -1
- package/dist/token/refresh-token.js.map +1 -1
- package/dist/token/token-claims.js.map +1 -1
- package/dist/token/token-data.js.map +1 -1
- package/dist/token/token-id.js.map +1 -1
- package/dist/token/token-manager.js.map +1 -1
- package/dist/token/token-store.js.map +1 -1
- package/dist/types/authorization-response-error.js.map +1 -1
- package/dist/types/color-hue.js.map +1 -1
- package/dist/types/email-otp.js.map +1 -1
- package/dist/types/email.js.map +1 -1
- package/dist/types/handle.js.map +1 -1
- package/dist/types/invite-code.js.map +1 -1
- package/dist/types/par-response-error.js.map +1 -1
- package/dist/types/password.js.map +1 -1
- package/dist/types/rgb-color.js.map +1 -1
- package/package.json +10 -10
- package/src/client/client-manager.ts +16 -2
|
@@ -176,10 +176,24 @@ export class ClientManager {
|
|
|
176
176
|
throw new InvalidClientMetadataError('Loopback clients are not allowed')
|
|
177
177
|
}
|
|
178
178
|
|
|
179
|
-
const
|
|
180
|
-
|
|
179
|
+
const metadataRaw = await callAsync(loopbackMetadata, clientId).catch(
|
|
180
|
+
(err) => {
|
|
181
|
+
throw InvalidClientMetadataError.from(
|
|
182
|
+
err,
|
|
183
|
+
`Invalid loopback client id "${clientId}"`,
|
|
184
|
+
)
|
|
185
|
+
},
|
|
181
186
|
)
|
|
182
187
|
|
|
188
|
+
const metadata = await oauthClientMetadataSchema
|
|
189
|
+
.parseAsync(metadataRaw)
|
|
190
|
+
.catch((err) => {
|
|
191
|
+
throw InvalidClientMetadataError.from(
|
|
192
|
+
err,
|
|
193
|
+
`Invalid loopback client metadata for "${clientId}"`,
|
|
194
|
+
)
|
|
195
|
+
})
|
|
196
|
+
|
|
183
197
|
return this.validateClientMetadata(clientId, metadata)
|
|
184
198
|
}
|
|
185
199
|
|