@atproto/oauth-types 0.1.5 → 0.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +18 -0
- package/dist/atproto-loopback-client-metadata.js +1 -2
- package/dist/atproto-loopback-client-metadata.js.map +1 -1
- package/dist/constants.d.ts +0 -6
- package/dist/constants.d.ts.map +1 -1
- package/dist/constants.js +1 -17
- package/dist/constants.js.map +1 -1
- package/dist/oauth-authorization-request-par.d.ts +3 -3
- package/dist/oauth-authorization-request-parameters.d.ts +3 -3
- package/dist/oauth-authorization-request-parameters.js +1 -1
- package/dist/oauth-authorization-request-parameters.js.map +1 -1
- package/dist/oauth-authorization-request-query.d.ts +3 -3
- package/dist/oauth-authorization-server-metadata.d.ts +6 -6
- package/dist/oauth-client-id-discoverable.js +3 -4
- package/dist/oauth-client-id-discoverable.js.map +1 -1
- package/dist/oauth-client-id-loopback.js +3 -4
- package/dist/oauth-client-id-loopback.js.map +1 -1
- package/dist/oauth-client-metadata.d.ts +90 -90
- package/dist/oauth-client-metadata.d.ts.map +1 -1
- package/dist/oauth-issuer-identifier.d.ts +2 -1
- package/dist/oauth-issuer-identifier.d.ts.map +1 -1
- package/dist/oauth-issuer-identifier.js +13 -12
- package/dist/oauth-issuer-identifier.js.map +1 -1
- package/dist/oauth-protected-resource-metadata.d.ts +2 -2
- package/dist/oauth-refresh-token-grant-token-request.d.ts +0 -3
- package/dist/oauth-refresh-token-grant-token-request.d.ts.map +1 -1
- package/dist/oauth-refresh-token-grant-token-request.js +0 -2
- package/dist/oauth-refresh-token-grant-token-request.js.map +1 -1
- package/dist/oauth-token-request.d.ts +0 -3
- package/dist/oauth-token-request.d.ts.map +1 -1
- package/dist/oauth-token-response.d.ts +3 -6
- package/dist/oauth-token-response.d.ts.map +1 -1
- package/dist/oauth-token-response.js +4 -2
- package/dist/oauth-token-response.js.map +1 -1
- package/dist/util.js +5 -6
- package/dist/util.js.map +1 -1
- package/package.json +2 -2
- package/src/constants.ts +0 -16
- package/src/oauth-authorization-request-parameters.ts +1 -1
- package/src/oauth-issuer-identifier.ts +17 -12
- package/src/oauth-refresh-token-grant-token-request.ts +0 -2
- package/src/oauth-token-response.ts +4 -2
- package/tsconfig.build.tsbuildinfo +1 -0
package/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,23 @@
|
|
|
1
1
|
# @atproto/oauth-types
|
|
2
2
|
|
|
3
|
+
## 0.2.0
|
|
4
|
+
|
|
5
|
+
### Minor Changes
|
|
6
|
+
|
|
7
|
+
- [#2874](https://github.com/bluesky-social/atproto/pull/2874) [`7f26b1765`](https://github.com/bluesky-social/atproto/commit/7f26b176526b9856a8f61faca6f065f0afd43abf) Thanks [@matthieusieben](https://github.com/matthieusieben)! - Allow oauthIssuerIdentifier to be an "http:" url. Make sure to manually check for "http:" issuers if you don't allow them.
|
|
8
|
+
|
|
9
|
+
- [#2874](https://github.com/bluesky-social/atproto/pull/2874) [`7f26b1765`](https://github.com/bluesky-social/atproto/commit/7f26b176526b9856a8f61faca6f065f0afd43abf) Thanks [@matthieusieben](https://github.com/matthieusieben)! - Remove ALLOW_UNSECURE_ORIGINS constant
|
|
10
|
+
|
|
11
|
+
- [#2871](https://github.com/bluesky-social/atproto/pull/2871) [`9d40ccbb6`](https://github.com/bluesky-social/atproto/commit/9d40ccbb69103fae9aae7e3cec31e9b3116f3ba2) Thanks [@matthieusieben](https://github.com/matthieusieben)! - Remove invalid `issuer` property from OAuthTokenResponse
|
|
12
|
+
|
|
13
|
+
### Patch Changes
|
|
14
|
+
|
|
15
|
+
- [#2871](https://github.com/bluesky-social/atproto/pull/2871) [`9d40ccbb6`](https://github.com/bluesky-social/atproto/commit/9d40ccbb69103fae9aae7e3cec31e9b3116f3ba2) Thanks [@matthieusieben](https://github.com/matthieusieben)! - Add missing "wap" display request parameter value
|
|
16
|
+
|
|
17
|
+
- [#2871](https://github.com/bluesky-social/atproto/pull/2871) [`9d40ccbb6`](https://github.com/bluesky-social/atproto/commit/9d40ccbb69103fae9aae7e3cec31e9b3116f3ba2) Thanks [@matthieusieben](https://github.com/matthieusieben)! - Remove invalid `client_id` property from oauthRefreshTokenGrantTokenRequestSchema
|
|
18
|
+
|
|
19
|
+
- [#2874](https://github.com/bluesky-social/atproto/pull/2874) [`7f26b1765`](https://github.com/bluesky-social/atproto/commit/7f26b176526b9856a8f61faca6f065f0afd43abf) Thanks [@matthieusieben](https://github.com/matthieusieben)! - Improve typing of oauthIssuerIdentifierSchema
|
|
20
|
+
|
|
3
21
|
## 0.1.5
|
|
4
22
|
|
|
5
23
|
### Patch Changes
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.atprotoLoopbackClientMetadata =
|
|
3
|
+
exports.atprotoLoopbackClientMetadata = atprotoLoopbackClientMetadata;
|
|
4
4
|
const oauth_client_id_loopback_js_1 = require("./oauth-client-id-loopback.js");
|
|
5
5
|
function atprotoLoopbackClientMetadata(clientId) {
|
|
6
6
|
const { scope = 'atproto', redirect_uris = [`http://127.0.0.1/`, `http://[::1]/`], } = (0, oauth_client_id_loopback_js_1.parseOAuthLoopbackClientId)(clientId);
|
|
@@ -16,5 +16,4 @@ function atprotoLoopbackClientMetadata(clientId) {
|
|
|
16
16
|
dpop_bound_access_tokens: true,
|
|
17
17
|
};
|
|
18
18
|
}
|
|
19
|
-
exports.atprotoLoopbackClientMetadata = atprotoLoopbackClientMetadata;
|
|
20
19
|
//# sourceMappingURL=atproto-loopback-client-metadata.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"atproto-loopback-client-metadata.js","sourceRoot":"","sources":["../src/atproto-loopback-client-metadata.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"atproto-loopback-client-metadata.js","sourceRoot":"","sources":["../src/atproto-loopback-client-metadata.ts"],"names":[],"mappings":";;AAGA,sEAmBC;AAtBD,+EAA0E;AAG1E,SAAgB,6BAA6B,CAC3C,QAAgB;IAEhB,MAAM,EACJ,KAAK,GAAG,SAAS,EACjB,aAAa,GAAG,CAAC,mBAAmB,EAAE,eAAe,CAAC,GACvD,GAAG,IAAA,wDAA0B,EAAC,QAAQ,CAAC,CAAA;IAExC,OAAO;QACL,SAAS,EAAE,QAAQ;QACnB,KAAK;QACL,aAAa;QACb,WAAW,EAAE,iBAAiB;QAC9B,cAAc,EAAE,CAAC,MAAM,CAAC;QACxB,WAAW,EAAE,CAAC,oBAAoB,EAAE,eAAe,CAAC;QACpD,0BAA0B,EAAE,MAAM;QAClC,gBAAgB,EAAE,QAAQ;QAC1B,wBAAwB,EAAE,IAAI;KAC/B,CAAA;AACH,CAAC"}
|
package/dist/constants.d.ts
CHANGED
|
@@ -1,8 +1,2 @@
|
|
|
1
|
-
/**
|
|
2
|
-
* A variable that allows to determine if unsecure origins should be allowed
|
|
3
|
-
* in OAuth related URI's. This variable is only set to `true` when NODE_ENV
|
|
4
|
-
* is either `development` or `test`.
|
|
5
|
-
*/
|
|
6
|
-
export declare const ALLOW_UNSECURE_ORIGINS: boolean;
|
|
7
1
|
export declare const CLIENT_ASSERTION_TYPE_JWT_BEARER = "urn:ietf:params:oauth:client-assertion-type:jwt-bearer";
|
|
8
2
|
//# sourceMappingURL=constants.d.ts.map
|
package/dist/constants.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":"AAAA
|
|
1
|
+
{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,gCAAgC,2DACa,CAAA"}
|
package/dist/constants.js
CHANGED
|
@@ -1,21 +1,5 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.CLIENT_ASSERTION_TYPE_JWT_BEARER =
|
|
4
|
-
/**
|
|
5
|
-
* A variable that allows to determine if unsecure origins should be allowed
|
|
6
|
-
* in OAuth related URI's. This variable is only set to `true` when NODE_ENV
|
|
7
|
-
* is either `development` or `test`.
|
|
8
|
-
*/
|
|
9
|
-
exports.ALLOW_UNSECURE_ORIGINS = (() => {
|
|
10
|
-
// try/catch to support running in a browser, including when process.env is
|
|
11
|
-
// shimmed (e.g. by webpack)
|
|
12
|
-
try {
|
|
13
|
-
const env = process.env.NODE_ENV;
|
|
14
|
-
return env === 'development' || env === 'test';
|
|
15
|
-
}
|
|
16
|
-
catch {
|
|
17
|
-
return false;
|
|
18
|
-
}
|
|
19
|
-
})();
|
|
3
|
+
exports.CLIENT_ASSERTION_TYPE_JWT_BEARER = void 0;
|
|
20
4
|
exports.CLIENT_ASSERTION_TYPE_JWT_BEARER = 'urn:ietf:params:oauth:client-assertion-type:jwt-bearer';
|
|
21
5
|
//# sourceMappingURL=constants.js.map
|
package/dist/constants.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"constants.js","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":";;;
|
|
1
|
+
{"version":3,"file":"constants.js","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":";;;AAAa,QAAA,gCAAgC,GAC3C,wDAAwD,CAAA"}
|
|
@@ -27,7 +27,7 @@ export declare const oauthAuthorizationRequestParSchema: z.ZodUnion<[z.ZodObject
|
|
|
27
27
|
login_hint: z.ZodOptional<z.ZodString>;
|
|
28
28
|
ui_locales: z.ZodOptional<z.ZodString>;
|
|
29
29
|
id_token_hint: z.ZodOptional<z.ZodEffects<z.ZodEffects<z.ZodString, string, string>, `${string}.${string}.${string}`, string>>;
|
|
30
|
-
display: z.ZodOptional<z.ZodEnum<["page", "popup", "touch"]>>;
|
|
30
|
+
display: z.ZodOptional<z.ZodEnum<["page", "popup", "touch", "wap"]>>;
|
|
31
31
|
prompt: z.ZodOptional<z.ZodEnum<["none", "login", "consent", "select_account"]>>;
|
|
32
32
|
authorization_details: z.ZodOptional<z.ZodArray<z.ZodObject<{
|
|
33
33
|
type: z.ZodString;
|
|
@@ -71,7 +71,7 @@ export declare const oauthAuthorizationRequestParSchema: z.ZodUnion<[z.ZodObject
|
|
|
71
71
|
login_hint?: string | undefined;
|
|
72
72
|
ui_locales?: string | undefined;
|
|
73
73
|
id_token_hint?: `${string}.${string}.${string}` | undefined;
|
|
74
|
-
display?: "page" | "popup" | "touch" | undefined;
|
|
74
|
+
display?: "page" | "popup" | "touch" | "wap" | undefined;
|
|
75
75
|
prompt?: "none" | "login" | "consent" | "select_account" | undefined;
|
|
76
76
|
authorization_details?: {
|
|
77
77
|
type: string;
|
|
@@ -101,7 +101,7 @@ export declare const oauthAuthorizationRequestParSchema: z.ZodUnion<[z.ZodObject
|
|
|
101
101
|
login_hint?: string | undefined;
|
|
102
102
|
ui_locales?: string | undefined;
|
|
103
103
|
id_token_hint?: string | undefined;
|
|
104
|
-
display?: "page" | "popup" | "touch" | undefined;
|
|
104
|
+
display?: "page" | "popup" | "touch" | "wap" | undefined;
|
|
105
105
|
prompt?: "none" | "login" | "consent" | "select_account" | undefined;
|
|
106
106
|
authorization_details?: {
|
|
107
107
|
type: string;
|
|
@@ -30,7 +30,7 @@ export declare const oauthAuthorizationRequestParametersSchema: z.ZodObject<{
|
|
|
30
30
|
login_hint: z.ZodOptional<z.ZodString>;
|
|
31
31
|
ui_locales: z.ZodOptional<z.ZodString>;
|
|
32
32
|
id_token_hint: z.ZodOptional<z.ZodEffects<z.ZodEffects<z.ZodString, string, string>, `${string}.${string}.${string}`, string>>;
|
|
33
|
-
display: z.ZodOptional<z.ZodEnum<["page", "popup", "touch"]>>;
|
|
33
|
+
display: z.ZodOptional<z.ZodEnum<["page", "popup", "touch", "wap"]>>;
|
|
34
34
|
/**
|
|
35
35
|
* - "none" will only be allowed if the user already allowed the client on the same device
|
|
36
36
|
* - "login" will force the user to login again, unless he very recently logged in
|
|
@@ -80,7 +80,7 @@ export declare const oauthAuthorizationRequestParametersSchema: z.ZodObject<{
|
|
|
80
80
|
login_hint?: string | undefined;
|
|
81
81
|
ui_locales?: string | undefined;
|
|
82
82
|
id_token_hint?: `${string}.${string}.${string}` | undefined;
|
|
83
|
-
display?: "page" | "popup" | "touch" | undefined;
|
|
83
|
+
display?: "page" | "popup" | "touch" | "wap" | undefined;
|
|
84
84
|
prompt?: "none" | "login" | "consent" | "select_account" | undefined;
|
|
85
85
|
authorization_details?: {
|
|
86
86
|
type: string;
|
|
@@ -110,7 +110,7 @@ export declare const oauthAuthorizationRequestParametersSchema: z.ZodObject<{
|
|
|
110
110
|
login_hint?: string | undefined;
|
|
111
111
|
ui_locales?: string | undefined;
|
|
112
112
|
id_token_hint?: string | undefined;
|
|
113
|
-
display?: "page" | "popup" | "touch" | undefined;
|
|
113
|
+
display?: "page" | "popup" | "touch" | "wap" | undefined;
|
|
114
114
|
prompt?: "none" | "login" | "consent" | "select_account" | undefined;
|
|
115
115
|
authorization_details?: {
|
|
116
116
|
type: string;
|
|
@@ -54,7 +54,7 @@ exports.oauthAuthorizationRequestParametersSchema = zod_1.z.object({
|
|
|
54
54
|
// Previous ID Token, should be provided when prompt=none is used
|
|
55
55
|
id_token_hint: jwk_1.signedJwtSchema.optional(),
|
|
56
56
|
// Type of UI the AS is displayed on
|
|
57
|
-
display: zod_1.z.enum(['page', 'popup', 'touch']).optional(),
|
|
57
|
+
display: zod_1.z.enum(['page', 'popup', 'touch', 'wap']).optional(),
|
|
58
58
|
/**
|
|
59
59
|
* - "none" will only be allowed if the user already allowed the client on the same device
|
|
60
60
|
* - "login" will force the user to login again, unless he very recently logged in
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"oauth-authorization-request-parameters.js","sourceRoot":"","sources":["../src/oauth-authorization-request-parameters.ts"],"names":[],"mappings":";;;AAAA,sCAA8C;AAC9C,6BAAuB;AAEvB,qFAAkF;AAClF,6DAA0D;AAC1D,qFAAiF;AACjF,qEAAkE;AAClE,qDAAmD;AACnD,yEAAsE;AACtE,2EAAwE;AACxE,+DAA4D;AAE5D;;GAEG;AACU,QAAA,yCAAyC,GAAG,OAAC,CAAC,MAAM,CAAC;IAChE,SAAS,EAAE,wCAAmB;IAC9B,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5B,YAAY,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;IACzC,KAAK,EAAE,iCAAgB,CAAC,QAAQ,EAAE;IAClC,aAAa,EAAE,gDAAuB;IAEtC,OAAO;IAEP,cAAc,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACrC,qBAAqB,EAAE,+DAA8B;SAClD,OAAO,CAAC,MAAM,CAAC;SACf,QAAQ,EAAE;IAEb,OAAO;IAEP,6DAA6D;IAC7D,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAE/B,OAAO;IAEP,kCAAkC;IAClC,aAAa,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,UAAU,EAAE,WAAW,CAAC,CAAC,CAAC,QAAQ,EAAE;IAEpE,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAE5B,0EAA0E;IAC1E,wEAAwE;IACxE,2EAA2E;IAC3E,6EAA6E;IAC7E,4EAA4E;IAC5E,yEAAyE;IACzE,2CAA2C;IAC3C,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAE3C,MAAM,EAAE,OAAC;SACN,MAAM,CACL,0CAAoB,EACpB,OAAC,CAAC,MAAM,CACN,oDAAyB,EACzB,OAAC,CAAC,KAAK,CAAC,CAAC,OAAC,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,sDAA0B,CAAC,CAAC,CACvD,CACF;SACA,QAAQ,EAAE;IAEb,8EAA8E;IAC9E,uCAAuC;IACvC,iDAAiD;IAEjD,UAAU,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAExC,UAAU,EAAE,OAAC;SACV,MAAM,EAAE;SACR,KAAK,CAAC,gDAAgD,CAAC,CAAC,cAAc;SACtE,QAAQ,EAAE;IAEb,iEAAiE;IACjE,aAAa,EAAE,qBAAe,CAAC,QAAQ,EAAE;IAEzC,oCAAoC;IACpC,OAAO,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC,QAAQ,EAAE;
|
|
1
|
+
{"version":3,"file":"oauth-authorization-request-parameters.js","sourceRoot":"","sources":["../src/oauth-authorization-request-parameters.ts"],"names":[],"mappings":";;;AAAA,sCAA8C;AAC9C,6BAAuB;AAEvB,qFAAkF;AAClF,6DAA0D;AAC1D,qFAAiF;AACjF,qEAAkE;AAClE,qDAAmD;AACnD,yEAAsE;AACtE,2EAAwE;AACxE,+DAA4D;AAE5D;;GAEG;AACU,QAAA,yCAAyC,GAAG,OAAC,CAAC,MAAM,CAAC;IAChE,SAAS,EAAE,wCAAmB;IAC9B,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5B,YAAY,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;IACzC,KAAK,EAAE,iCAAgB,CAAC,QAAQ,EAAE;IAClC,aAAa,EAAE,gDAAuB;IAEtC,OAAO;IAEP,cAAc,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACrC,qBAAqB,EAAE,+DAA8B;SAClD,OAAO,CAAC,MAAM,CAAC;SACf,QAAQ,EAAE;IAEb,OAAO;IAEP,6DAA6D;IAC7D,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAE/B,OAAO;IAEP,kCAAkC;IAClC,aAAa,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,UAAU,EAAE,WAAW,CAAC,CAAC,CAAC,QAAQ,EAAE;IAEpE,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAE5B,0EAA0E;IAC1E,wEAAwE;IACxE,2EAA2E;IAC3E,6EAA6E;IAC7E,4EAA4E;IAC5E,yEAAyE;IACzE,2CAA2C;IAC3C,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAE3C,MAAM,EAAE,OAAC;SACN,MAAM,CACL,0CAAoB,EACpB,OAAC,CAAC,MAAM,CACN,oDAAyB,EACzB,OAAC,CAAC,KAAK,CAAC,CAAC,OAAC,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,sDAA0B,CAAC,CAAC,CACvD,CACF;SACA,QAAQ,EAAE;IAEb,8EAA8E;IAC9E,uCAAuC;IACvC,iDAAiD;IAEjD,UAAU,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAExC,UAAU,EAAE,OAAC;SACV,MAAM,EAAE;SACR,KAAK,CAAC,gDAAgD,CAAC,CAAC,cAAc;SACtE,QAAQ,EAAE;IAEb,iEAAiE;IACjE,aAAa,EAAE,qBAAe,CAAC,QAAQ,EAAE;IAEzC,oCAAoC;IACpC,OAAO,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC,QAAQ,EAAE;IAE7D;;;;;OAKG;IACH,MAAM,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,gBAAgB,CAAC,CAAC,CAAC,QAAQ,EAAE;IAEzE,gDAAgD;IAChD,qBAAqB,EAAE,gEAA+B,CAAC,QAAQ,EAAE;CAClE,CAAC,CAAA"}
|
|
@@ -27,7 +27,7 @@ export declare const oauthAuthorizationRequestQuerySchema: z.ZodUnion<[z.ZodObje
|
|
|
27
27
|
login_hint: z.ZodOptional<z.ZodString>;
|
|
28
28
|
ui_locales: z.ZodOptional<z.ZodString>;
|
|
29
29
|
id_token_hint: z.ZodOptional<z.ZodEffects<z.ZodEffects<z.ZodString, string, string>, `${string}.${string}.${string}`, string>>;
|
|
30
|
-
display: z.ZodOptional<z.ZodEnum<["page", "popup", "touch"]>>;
|
|
30
|
+
display: z.ZodOptional<z.ZodEnum<["page", "popup", "touch", "wap"]>>;
|
|
31
31
|
prompt: z.ZodOptional<z.ZodEnum<["none", "login", "consent", "select_account"]>>;
|
|
32
32
|
authorization_details: z.ZodOptional<z.ZodArray<z.ZodObject<{
|
|
33
33
|
type: z.ZodString;
|
|
@@ -71,7 +71,7 @@ export declare const oauthAuthorizationRequestQuerySchema: z.ZodUnion<[z.ZodObje
|
|
|
71
71
|
login_hint?: string | undefined;
|
|
72
72
|
ui_locales?: string | undefined;
|
|
73
73
|
id_token_hint?: `${string}.${string}.${string}` | undefined;
|
|
74
|
-
display?: "page" | "popup" | "touch" | undefined;
|
|
74
|
+
display?: "page" | "popup" | "touch" | "wap" | undefined;
|
|
75
75
|
prompt?: "none" | "login" | "consent" | "select_account" | undefined;
|
|
76
76
|
authorization_details?: {
|
|
77
77
|
type: string;
|
|
@@ -101,7 +101,7 @@ export declare const oauthAuthorizationRequestQuerySchema: z.ZodUnion<[z.ZodObje
|
|
|
101
101
|
login_hint?: string | undefined;
|
|
102
102
|
ui_locales?: string | undefined;
|
|
103
103
|
id_token_hint?: string | undefined;
|
|
104
|
-
display?: "page" | "popup" | "touch" | undefined;
|
|
104
|
+
display?: "page" | "popup" | "touch" | "wap" | undefined;
|
|
105
105
|
prompt?: "none" | "login" | "consent" | "select_account" | undefined;
|
|
106
106
|
authorization_details?: {
|
|
107
107
|
type: string;
|
|
@@ -3,7 +3,7 @@ import { z } from 'zod';
|
|
|
3
3
|
* @see {@link https://datatracker.ietf.org/doc/html/rfc8414}
|
|
4
4
|
*/
|
|
5
5
|
export declare const oauthAuthorizationServerMetadataSchema: z.ZodObject<{
|
|
6
|
-
issuer: z.ZodEffects<z.ZodString, string
|
|
6
|
+
issuer: z.ZodEffects<z.ZodString, `http://${string}` | `https://${string}`, string>;
|
|
7
7
|
claims_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
|
|
8
8
|
claims_locales_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
|
|
9
9
|
claims_parameter_supported: z.ZodOptional<z.ZodBoolean>;
|
|
@@ -40,7 +40,7 @@ export declare const oauthAuthorizationServerMetadataSchema: z.ZodObject<{
|
|
|
40
40
|
protected_resources: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
|
|
41
41
|
client_id_metadata_document_supported: z.ZodOptional<z.ZodBoolean>;
|
|
42
42
|
}, "strip", z.ZodTypeAny, {
|
|
43
|
-
issuer: string
|
|
43
|
+
issuer: `http://${string}` | `https://${string}`;
|
|
44
44
|
authorization_endpoint: string;
|
|
45
45
|
token_endpoint: string;
|
|
46
46
|
jwks_uri?: string | undefined;
|
|
@@ -116,7 +116,7 @@ export declare const oauthAuthorizationServerMetadataSchema: z.ZodObject<{
|
|
|
116
116
|
}>;
|
|
117
117
|
export type OAuthAuthorizationServerMetadata = z.infer<typeof oauthAuthorizationServerMetadataSchema>;
|
|
118
118
|
export declare const oauthAuthorizationServerMetadataValidator: z.ZodEffects<z.ZodEffects<z.ZodObject<{
|
|
119
|
-
issuer: z.ZodEffects<z.ZodString, string
|
|
119
|
+
issuer: z.ZodEffects<z.ZodString, `http://${string}` | `https://${string}`, string>;
|
|
120
120
|
claims_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
|
|
121
121
|
claims_locales_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
|
|
122
122
|
claims_parameter_supported: z.ZodOptional<z.ZodBoolean>;
|
|
@@ -153,7 +153,7 @@ export declare const oauthAuthorizationServerMetadataValidator: z.ZodEffects<z.Z
|
|
|
153
153
|
protected_resources: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
|
|
154
154
|
client_id_metadata_document_supported: z.ZodOptional<z.ZodBoolean>;
|
|
155
155
|
}, "strip", z.ZodTypeAny, {
|
|
156
|
-
issuer: string
|
|
156
|
+
issuer: `http://${string}` | `https://${string}`;
|
|
157
157
|
authorization_endpoint: string;
|
|
158
158
|
token_endpoint: string;
|
|
159
159
|
jwks_uri?: string | undefined;
|
|
@@ -227,7 +227,7 @@ export declare const oauthAuthorizationServerMetadataValidator: z.ZodEffects<z.Z
|
|
|
227
227
|
protected_resources?: string[] | undefined;
|
|
228
228
|
client_id_metadata_document_supported?: boolean | undefined;
|
|
229
229
|
}>, {
|
|
230
|
-
issuer: string
|
|
230
|
+
issuer: `http://${string}` | `https://${string}`;
|
|
231
231
|
authorization_endpoint: string;
|
|
232
232
|
token_endpoint: string;
|
|
233
233
|
jwks_uri?: string | undefined;
|
|
@@ -301,7 +301,7 @@ export declare const oauthAuthorizationServerMetadataValidator: z.ZodEffects<z.Z
|
|
|
301
301
|
protected_resources?: string[] | undefined;
|
|
302
302
|
client_id_metadata_document_supported?: boolean | undefined;
|
|
303
303
|
}>, {
|
|
304
|
-
issuer: string
|
|
304
|
+
issuer: `http://${string}` | `https://${string}`;
|
|
305
305
|
authorization_endpoint: string;
|
|
306
306
|
token_endpoint: string;
|
|
307
307
|
jwks_uri?: string | undefined;
|
|
@@ -1,6 +1,8 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.
|
|
3
|
+
exports.isOAuthClientIdDiscoverable = isOAuthClientIdDiscoverable;
|
|
4
|
+
exports.assertOAuthDiscoverableClientId = assertOAuthDiscoverableClientId;
|
|
5
|
+
exports.parseOAuthDiscoverableClientId = parseOAuthDiscoverableClientId;
|
|
4
6
|
const util_js_1 = require("./util.js");
|
|
5
7
|
function isOAuthClientIdDiscoverable(clientId) {
|
|
6
8
|
try {
|
|
@@ -11,11 +13,9 @@ function isOAuthClientIdDiscoverable(clientId) {
|
|
|
11
13
|
return false;
|
|
12
14
|
}
|
|
13
15
|
}
|
|
14
|
-
exports.isOAuthClientIdDiscoverable = isOAuthClientIdDiscoverable;
|
|
15
16
|
function assertOAuthDiscoverableClientId(value) {
|
|
16
17
|
void parseOAuthDiscoverableClientId(value);
|
|
17
18
|
}
|
|
18
|
-
exports.assertOAuthDiscoverableClientId = assertOAuthDiscoverableClientId;
|
|
19
19
|
function parseOAuthDiscoverableClientId(clientId) {
|
|
20
20
|
const url = new URL(clientId);
|
|
21
21
|
if (url.protocol !== 'https:') {
|
|
@@ -47,5 +47,4 @@ function parseOAuthDiscoverableClientId(clientId) {
|
|
|
47
47
|
}
|
|
48
48
|
return url;
|
|
49
49
|
}
|
|
50
|
-
exports.parseOAuthDiscoverableClientId = parseOAuthDiscoverableClientId;
|
|
51
50
|
//# sourceMappingURL=oauth-client-id-discoverable.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"oauth-client-id-discoverable.js","sourceRoot":"","sources":["../src/oauth-client-id-discoverable.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"oauth-client-id-discoverable.js","sourceRoot":"","sources":["../src/oauth-client-id-discoverable.ts"],"names":[],"mappings":";;AAQA,kEASC;AAED,0EAIC;AAED,wEA2CC;AAnED,uCAAwD;AAOxD,SAAgB,2BAA2B,CACzC,QAAgB;IAEhB,IAAI,CAAC;QACH,8BAA8B,CAAC,QAAQ,CAAC,CAAA;QACxC,OAAO,IAAI,CAAA;IACb,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAA;IACd,CAAC;AACH,CAAC;AAED,SAAgB,+BAA+B,CAC7C,KAAa;IAEb,KAAK,8BAA8B,CAAC,KAAK,CAAC,CAAA;AAC5C,CAAC;AAED,SAAgB,8BAA8B,CAAC,QAAgB;IAC7D,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,CAAA;IAE7B,IAAI,GAAG,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAC9B,MAAM,IAAI,SAAS,CAAC,yCAAyC,CAAC,CAAA;IAChE,CAAC;IAED,IAAI,GAAG,CAAC,QAAQ,IAAI,GAAG,CAAC,QAAQ,EAAE,CAAC;QACjC,MAAM,IAAI,SAAS,CAAC,uCAAuC,CAAC,CAAA;IAC9D,CAAC;IAED,IAAI,GAAG,CAAC,IAAI,EAAE,CAAC;QACb,MAAM,IAAI,SAAS,CAAC,sCAAsC,CAAC,CAAA;IAC7D,CAAC;IAED,IAAI,GAAG,CAAC,QAAQ,KAAK,WAAW,EAAE,CAAC;QACjC,MAAM,IAAI,SAAS,CAAC,2CAA2C,CAAC,CAAA;IAClE,CAAC;IAED,IAAI,GAAG,CAAC,QAAQ,KAAK,GAAG,EAAE,CAAC;QACzB,MAAM,IAAI,SAAS,CACjB,uEAAuE,CACxE,CAAA;IACH,CAAC;IAED,IAAI,GAAG,CAAC,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,SAAS,CAAC,kDAAkD,CAAC,CAAA;IACzE,CAAC;IAED,IAAI,IAAA,sBAAY,EAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,SAAS,CAAC,6CAA6C,CAAC,CAAA;IACpE,CAAC;IAED,yEAAyE;IACzE,wEAAwE;IACxE,8EAA8E;IAC9E,IAAI,IAAA,wBAAc,EAAC,QAAQ,CAAC,KAAK,GAAG,CAAC,QAAQ,EAAE,CAAC;QAC9C,MAAM,IAAI,SAAS,CACjB,wCAAwC,GAAG,CAAC,IAAI,WAAW,QAAQ,IAAI,CACxE,CAAA;IACH,CAAC;IAED,OAAO,GAAG,CAAA;AACZ,CAAC"}
|
|
@@ -1,6 +1,8 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.
|
|
3
|
+
exports.isOAuthClientIdLoopback = isOAuthClientIdLoopback;
|
|
4
|
+
exports.assertOAuthLoopbackClientId = assertOAuthLoopbackClientId;
|
|
5
|
+
exports.parseOAuthLoopbackClientId = parseOAuthLoopbackClientId;
|
|
4
6
|
const oauth_scope_js_1 = require("./oauth-scope.js");
|
|
5
7
|
const util_js_1 = require("./util.js");
|
|
6
8
|
const OAUTH_CLIENT_ID_LOOPBACK_URL = 'http://localhost';
|
|
@@ -13,11 +15,9 @@ function isOAuthClientIdLoopback(clientId) {
|
|
|
13
15
|
return false;
|
|
14
16
|
}
|
|
15
17
|
}
|
|
16
|
-
exports.isOAuthClientIdLoopback = isOAuthClientIdLoopback;
|
|
17
18
|
function assertOAuthLoopbackClientId(clientId) {
|
|
18
19
|
void parseOAuthLoopbackClientId(clientId);
|
|
19
20
|
}
|
|
20
|
-
exports.assertOAuthLoopbackClientId = assertOAuthLoopbackClientId;
|
|
21
21
|
// @TODO: should we turn this into a zod schema? (more coherent error with other
|
|
22
22
|
// validation functions)
|
|
23
23
|
function parseOAuthLoopbackClientId(clientId) {
|
|
@@ -77,5 +77,4 @@ function parseOAuthLoopbackClientId(clientId) {
|
|
|
77
77
|
redirect_uris,
|
|
78
78
|
};
|
|
79
79
|
}
|
|
80
|
-
exports.parseOAuthLoopbackClientId = parseOAuthLoopbackClientId;
|
|
81
80
|
//# sourceMappingURL=oauth-client-id-loopback.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"oauth-client-id-loopback.js","sourceRoot":"","sources":["../src/oauth-client-id-loopback.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"oauth-client-id-loopback.js","sourceRoot":"","sources":["../src/oauth-client-id-loopback.ts"],"names":[],"mappings":";;AASA,0DASC;AAED,kEAIC;AAID,gEA6EC;AAxGD,qDAA+D;AAC/D,uCAAmD;AAEnD,MAAM,4BAA4B,GAAG,kBAAkB,CAAA;AAKvD,SAAgB,uBAAuB,CACrC,QAAgB;IAEhB,IAAI,CAAC;QACH,0BAA0B,CAAC,QAAQ,CAAC,CAAA;QACpC,OAAO,IAAI,CAAA;IACb,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAA;IACd,CAAC;AACH,CAAC;AAED,SAAgB,2BAA2B,CACzC,QAAgB;IAEhB,KAAK,0BAA0B,CAAC,QAAQ,CAAC,CAAA;AAC3C,CAAC;AAED,gFAAgF;AAChF,wBAAwB;AACxB,SAAgB,0BAA0B,CAAC,QAAgB;IAIzD,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,4BAA4B,CAAC,EAAE,CAAC;QACvD,MAAM,IAAI,SAAS,CACjB,sCAAsC,4BAA4B,GAAG,CACtE,CAAA;IACH,CAAC;SAAM,IAAI,QAAQ,CAAC,QAAQ,CAAC,GAAG,EAAE,4BAA4B,CAAC,MAAM,CAAC,EAAE,CAAC;QACvE,MAAM,IAAI,SAAS,CAAC,qDAAqD,CAAC,CAAA;IAC5E,CAAC;IAED,MAAM,cAAc,GAClB,QAAQ,CAAC,MAAM,GAAG,4BAA4B,CAAC,MAAM;QACrD,QAAQ,CAAC,4BAA4B,CAAC,MAAM,CAAC,KAAK,GAAG;QACnD,CAAC,CAAC,4BAA4B,CAAC,MAAM,GAAG,CAAC;QACzC,CAAC,CAAC,4BAA4B,CAAC,MAAM,CAAA;IAEzC,IAAI,QAAQ,CAAC,MAAM,KAAK,cAAc,EAAE,CAAC;QACvC,OAAO,EAAE,CAAA,CAAC,2BAA2B;IACvC,CAAC;IAED,IAAI,QAAQ,CAAC,cAAc,CAAC,KAAK,GAAG,EAAE,CAAC;QACrC,MAAM,IAAI,SAAS,CAAC,qDAAqD,CAAC,CAAA;IAC5E,CAAC;IAED,MAAM,YAAY,GAAG,IAAI,eAAe,CAAC,QAAQ,CAAC,KAAK,CAAC,cAAc,GAAG,CAAC,CAAC,CAAC,CAAA;IAE5E,KAAK,MAAM,IAAI,IAAI,YAAY,CAAC,IAAI,EAAE,EAAE,CAAC;QACvC,IAAI,IAAI,KAAK,cAAc,IAAI,IAAI,KAAK,OAAO,EAAE,CAAC;YAChD,MAAM,IAAI,SAAS,CAAC,4BAA4B,IAAI,gBAAgB,CAAC,CAAA;QACvE,CAAC;IACH,CAAC;IAED,MAAM,KAAK,GAAG,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,SAAS,CAAA;IACpD,IAAI,KAAK,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,YAAY,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5C,MAAM,IAAI,SAAS,CACjB,kEAAkE,CACnE,CAAA;QACH,CAAC;aAAM,IAAI,CAAC,iCAAgB,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,OAAO,EAAE,CAAC;YACtD,MAAM,IAAI,SAAS,CAAC,4CAA4C,CAAC,CAAA;QACnE,CAAC;IACH,CAAC;IAED,MAAM,aAAa,GAAG,YAAY,CAAC,GAAG,CAAC,cAAc,CAAC;QACpD,CAAC,CAAE,YAAY,CAAC,MAAM,CAAC,cAAc,CAA2B;QAChE,CAAC,CAAC,SAAS,CAAA;IAEb,IAAI,aAAa,EAAE,CAAC;QAClB,KAAK,MAAM,GAAG,IAAI,aAAa,EAAE,CAAC;YAChC,MAAM,GAAG,GAAG,IAAA,iBAAO,EAAC,GAAG,CAAC,CAAA;YACxB,IAAI,CAAC,GAAG,EAAE,CAAC;gBACT,MAAM,IAAI,SAAS,CAAC,sCAAsC,GAAG,EAAE,CAAC,CAAA;YAClE,CAAC;YACD,IAAI,GAAG,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;gBAC7B,MAAM,IAAI,SAAS,CACjB,0DAA0D,GAAG,GAAG,CACjE,CAAA;YACH,CAAC;YACD,IAAI,GAAG,CAAC,QAAQ,KAAK,WAAW,EAAE,CAAC;gBACjC,MAAM,IAAI,SAAS,CACjB,4EAA4E,GAAG,GAAG,CACnF,CAAA;YACH,CAAC;YACD,IAAI,CAAC,IAAA,wBAAc,EAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAClC,MAAM,IAAI,SAAS,CACjB,wEAAwE,GAAG,GAAG,CAC/E,CAAA;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO;QACL,KAAK;QACL,aAAa;KACd,CAAA;AACH,CAAC"}
|