@atproto/oauth-types 0.7.1 → 0.7.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +10 -0
- package/dist/atproto-oauth-scope.d.ts +1 -1
- package/dist/oauth-authorization-code-grant-token-request.d.ts +4 -4
- package/dist/oauth-authorization-request-par.d.ts +27 -27
- package/dist/oauth-authorization-request-parameters.d.ts +27 -27
- package/dist/oauth-authorization-request-query.d.ts +27 -27
- package/dist/oauth-authorization-server-metadata.d.ts +107 -107
- package/dist/oauth-client-id-loopback.d.ts +2 -2
- package/dist/oauth-client-metadata.d.ts +127 -127
- package/dist/oauth-client-metadata.d.ts.map +1 -1
- package/dist/oauth-endpoint-name.d.ts +1 -1
- package/dist/oauth-endpoint-name.d.ts.map +1 -1
- package/dist/oauth-issuer-identifier.d.ts +1 -1
- package/dist/oauth-par-response.d.ts +2 -2
- package/dist/oauth-password-grant-token-request.d.ts +2 -2
- package/dist/oauth-protected-resource-metadata.d.ts +15 -15
- package/dist/oauth-redirect-uri.d.ts +3 -3
- package/dist/oauth-refresh-token-grant-token-request.d.ts +2 -2
- package/dist/oauth-scope.d.ts.map +1 -1
- package/dist/oauth-token-identification.d.ts +2 -2
- package/dist/oauth-token-request.d.ts +8 -8
- package/dist/oidc-claims-properties.d.ts +2 -2
- package/dist/oidc-userinfo.d.ts +6 -6
- package/dist/uri.d.ts +2 -2
- package/dist/util.d.ts.map +1 -1
- package/package.json +5 -7
- package/tsconfig.build.json +2 -2
- package/tsconfig.build.tsbuildinfo +1 -1
- package/tsconfig.json +1 -1
|
@@ -10,7 +10,7 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
10
10
|
/**
|
|
11
11
|
* @note redirect_uris require additional validation
|
|
12
12
|
*/
|
|
13
|
-
redirect_uris: z.ZodArray<z.ZodEffects<z.ZodString,
|
|
13
|
+
redirect_uris: z.ZodArray<z.ZodEffects<z.ZodString, "http://127.0.0.1" | `${string}.${string}:/${string}` | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `https://${string}`, string>, "atleastone">;
|
|
14
14
|
response_types: z.ZodDefault<z.ZodArray<z.ZodEnum<["code", "token", "none", "code id_token token", "code id_token", "code token", "id_token token", "id_token"]>, "atleastone">>;
|
|
15
15
|
grant_types: z.ZodDefault<z.ZodArray<z.ZodEnum<["authorization_code", "implicit", "refresh_token", "password", "client_credentials", "urn:ietf:params:oauth:grant-type:jwt-bearer", "urn:ietf:params:oauth:grant-type:saml2-bearer"]>, "atleastone">>;
|
|
16
16
|
scope: z.ZodOptional<z.ZodEffects<z.ZodString, string, string>>;
|
|
@@ -18,19 +18,15 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
18
18
|
token_endpoint_auth_signing_alg: z.ZodOptional<z.ZodString>;
|
|
19
19
|
userinfo_signed_response_alg: z.ZodOptional<z.ZodString>;
|
|
20
20
|
userinfo_encrypted_response_alg: z.ZodOptional<z.ZodString>;
|
|
21
|
-
jwks_uri: z.ZodOptional<z.ZodEffects<z.ZodString,
|
|
21
|
+
jwks_uri: z.ZodOptional<z.ZodEffects<z.ZodString, "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}`, string>>;
|
|
22
22
|
jwks: z.ZodOptional<z.ZodObject<{
|
|
23
23
|
keys: z.ZodEffects<z.ZodArray<z.ZodUnknown, "many">, ((({
|
|
24
|
-
kty: "RSA";
|
|
25
|
-
n: string;
|
|
26
|
-
e: string;
|
|
27
|
-
alg?: "RS256" | "RS384" | "RS512" | "PS256" | "PS384" | "PS512" | undefined;
|
|
28
24
|
kid?: string | undefined;
|
|
29
|
-
use?: "
|
|
30
|
-
key_ops?: ("
|
|
25
|
+
use?: "enc" | "sig" | undefined;
|
|
26
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
31
27
|
x5c?: string[] | undefined;
|
|
32
28
|
x5t?: string | undefined;
|
|
33
|
-
|
|
29
|
+
'x5t#S256'?: string | undefined;
|
|
34
30
|
x5u?: string | undefined;
|
|
35
31
|
ext?: boolean | undefined;
|
|
36
32
|
iat?: number | undefined;
|
|
@@ -40,6 +36,10 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
40
36
|
revoked_at: number;
|
|
41
37
|
reason?: string | undefined;
|
|
42
38
|
} | undefined;
|
|
39
|
+
kty: "RSA";
|
|
40
|
+
alg?: "PS256" | "PS384" | "PS512" | "RS256" | "RS384" | "RS512" | undefined;
|
|
41
|
+
n: string;
|
|
42
|
+
e: string;
|
|
43
43
|
d?: string | undefined;
|
|
44
44
|
p?: string | undefined;
|
|
45
45
|
q?: string | undefined;
|
|
@@ -47,24 +47,19 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
47
47
|
dq?: string | undefined;
|
|
48
48
|
qi?: string | undefined;
|
|
49
49
|
oth?: {
|
|
50
|
-
d?: string | undefined;
|
|
51
50
|
r?: string | undefined;
|
|
51
|
+
d?: string | undefined;
|
|
52
52
|
t?: string | undefined;
|
|
53
53
|
}[] | undefined;
|
|
54
54
|
} & {
|
|
55
|
-
kid:
|
|
55
|
+
kid: {};
|
|
56
56
|
}) | ({
|
|
57
|
-
kty: "EC";
|
|
58
|
-
crv: "P-256" | "P-384" | "P-521";
|
|
59
|
-
x: string;
|
|
60
|
-
y: string;
|
|
61
|
-
alg?: "ES256" | "ES384" | "ES512" | undefined;
|
|
62
57
|
kid?: string | undefined;
|
|
63
|
-
use?: "
|
|
64
|
-
key_ops?: ("
|
|
58
|
+
use?: "enc" | "sig" | undefined;
|
|
59
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
65
60
|
x5c?: string[] | undefined;
|
|
66
61
|
x5t?: string | undefined;
|
|
67
|
-
|
|
62
|
+
'x5t#S256'?: string | undefined;
|
|
68
63
|
x5u?: string | undefined;
|
|
69
64
|
ext?: boolean | undefined;
|
|
70
65
|
iat?: number | undefined;
|
|
@@ -74,21 +69,21 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
74
69
|
revoked_at: number;
|
|
75
70
|
reason?: string | undefined;
|
|
76
71
|
} | undefined;
|
|
77
|
-
d?: string | undefined;
|
|
78
|
-
} & {
|
|
79
|
-
kid: NonNullable<unknown>;
|
|
80
|
-
}) | ({
|
|
81
72
|
kty: "EC";
|
|
82
|
-
|
|
73
|
+
alg?: "ES256" | "ES384" | "ES512" | undefined;
|
|
74
|
+
crv: "P-256" | "P-384" | "P-521";
|
|
83
75
|
x: string;
|
|
84
76
|
y: string;
|
|
85
|
-
|
|
77
|
+
d?: string | undefined;
|
|
78
|
+
} & {
|
|
79
|
+
kid: {};
|
|
80
|
+
}) | ({
|
|
86
81
|
kid?: string | undefined;
|
|
87
|
-
use?: "
|
|
88
|
-
key_ops?: ("
|
|
82
|
+
use?: "enc" | "sig" | undefined;
|
|
83
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
89
84
|
x5c?: string[] | undefined;
|
|
90
85
|
x5t?: string | undefined;
|
|
91
|
-
|
|
86
|
+
'x5t#S256'?: string | undefined;
|
|
92
87
|
x5u?: string | undefined;
|
|
93
88
|
ext?: boolean | undefined;
|
|
94
89
|
iat?: number | undefined;
|
|
@@ -98,20 +93,21 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
98
93
|
revoked_at: number;
|
|
99
94
|
reason?: string | undefined;
|
|
100
95
|
} | undefined;
|
|
96
|
+
kty: "EC";
|
|
97
|
+
alg?: "ES256K" | undefined;
|
|
98
|
+
crv: "secp256k1";
|
|
99
|
+
x: string;
|
|
100
|
+
y: string;
|
|
101
101
|
d?: string | undefined;
|
|
102
102
|
} & {
|
|
103
|
-
kid:
|
|
103
|
+
kid: {};
|
|
104
104
|
}) | ({
|
|
105
|
-
kty: "OKP";
|
|
106
|
-
crv: "Ed25519" | "Ed448";
|
|
107
|
-
x: string;
|
|
108
|
-
alg?: "EdDSA" | undefined;
|
|
109
105
|
kid?: string | undefined;
|
|
110
|
-
use?: "
|
|
111
|
-
key_ops?: ("
|
|
106
|
+
use?: "enc" | "sig" | undefined;
|
|
107
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
112
108
|
x5c?: string[] | undefined;
|
|
113
109
|
x5t?: string | undefined;
|
|
114
|
-
|
|
110
|
+
'x5t#S256'?: string | undefined;
|
|
115
111
|
x5u?: string | undefined;
|
|
116
112
|
ext?: boolean | undefined;
|
|
117
113
|
iat?: number | undefined;
|
|
@@ -121,24 +117,24 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
121
117
|
revoked_at: number;
|
|
122
118
|
reason?: string | undefined;
|
|
123
119
|
} | undefined;
|
|
120
|
+
kty: "OKP";
|
|
121
|
+
alg?: "EdDSA" | undefined;
|
|
122
|
+
crv: "Ed25519" | "Ed448";
|
|
123
|
+
x: string;
|
|
124
124
|
d?: string | undefined;
|
|
125
125
|
} & {
|
|
126
|
-
kid:
|
|
126
|
+
kid: {};
|
|
127
127
|
})) & {
|
|
128
128
|
d?: never;
|
|
129
129
|
})[], unknown[]>;
|
|
130
130
|
}, "strip", z.ZodTypeAny, {
|
|
131
131
|
keys: ((({
|
|
132
|
-
kty: "RSA";
|
|
133
|
-
n: string;
|
|
134
|
-
e: string;
|
|
135
|
-
alg?: "RS256" | "RS384" | "RS512" | "PS256" | "PS384" | "PS512" | undefined;
|
|
136
132
|
kid?: string | undefined;
|
|
137
|
-
use?: "
|
|
138
|
-
key_ops?: ("
|
|
133
|
+
use?: "enc" | "sig" | undefined;
|
|
134
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
139
135
|
x5c?: string[] | undefined;
|
|
140
136
|
x5t?: string | undefined;
|
|
141
|
-
|
|
137
|
+
'x5t#S256'?: string | undefined;
|
|
142
138
|
x5u?: string | undefined;
|
|
143
139
|
ext?: boolean | undefined;
|
|
144
140
|
iat?: number | undefined;
|
|
@@ -148,6 +144,10 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
148
144
|
revoked_at: number;
|
|
149
145
|
reason?: string | undefined;
|
|
150
146
|
} | undefined;
|
|
147
|
+
kty: "RSA";
|
|
148
|
+
alg?: "PS256" | "PS384" | "PS512" | "RS256" | "RS384" | "RS512" | undefined;
|
|
149
|
+
n: string;
|
|
150
|
+
e: string;
|
|
151
151
|
d?: string | undefined;
|
|
152
152
|
p?: string | undefined;
|
|
153
153
|
q?: string | undefined;
|
|
@@ -155,24 +155,19 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
155
155
|
dq?: string | undefined;
|
|
156
156
|
qi?: string | undefined;
|
|
157
157
|
oth?: {
|
|
158
|
-
d?: string | undefined;
|
|
159
158
|
r?: string | undefined;
|
|
159
|
+
d?: string | undefined;
|
|
160
160
|
t?: string | undefined;
|
|
161
161
|
}[] | undefined;
|
|
162
162
|
} & {
|
|
163
|
-
kid:
|
|
163
|
+
kid: {};
|
|
164
164
|
}) | ({
|
|
165
|
-
kty: "EC";
|
|
166
|
-
crv: "P-256" | "P-384" | "P-521";
|
|
167
|
-
x: string;
|
|
168
|
-
y: string;
|
|
169
|
-
alg?: "ES256" | "ES384" | "ES512" | undefined;
|
|
170
165
|
kid?: string | undefined;
|
|
171
|
-
use?: "
|
|
172
|
-
key_ops?: ("
|
|
166
|
+
use?: "enc" | "sig" | undefined;
|
|
167
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
173
168
|
x5c?: string[] | undefined;
|
|
174
169
|
x5t?: string | undefined;
|
|
175
|
-
|
|
170
|
+
'x5t#S256'?: string | undefined;
|
|
176
171
|
x5u?: string | undefined;
|
|
177
172
|
ext?: boolean | undefined;
|
|
178
173
|
iat?: number | undefined;
|
|
@@ -182,21 +177,21 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
182
177
|
revoked_at: number;
|
|
183
178
|
reason?: string | undefined;
|
|
184
179
|
} | undefined;
|
|
185
|
-
d?: string | undefined;
|
|
186
|
-
} & {
|
|
187
|
-
kid: NonNullable<unknown>;
|
|
188
|
-
}) | ({
|
|
189
180
|
kty: "EC";
|
|
190
|
-
|
|
181
|
+
alg?: "ES256" | "ES384" | "ES512" | undefined;
|
|
182
|
+
crv: "P-256" | "P-384" | "P-521";
|
|
191
183
|
x: string;
|
|
192
184
|
y: string;
|
|
193
|
-
|
|
185
|
+
d?: string | undefined;
|
|
186
|
+
} & {
|
|
187
|
+
kid: {};
|
|
188
|
+
}) | ({
|
|
194
189
|
kid?: string | undefined;
|
|
195
|
-
use?: "
|
|
196
|
-
key_ops?: ("
|
|
190
|
+
use?: "enc" | "sig" | undefined;
|
|
191
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
197
192
|
x5c?: string[] | undefined;
|
|
198
193
|
x5t?: string | undefined;
|
|
199
|
-
|
|
194
|
+
'x5t#S256'?: string | undefined;
|
|
200
195
|
x5u?: string | undefined;
|
|
201
196
|
ext?: boolean | undefined;
|
|
202
197
|
iat?: number | undefined;
|
|
@@ -206,20 +201,21 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
206
201
|
revoked_at: number;
|
|
207
202
|
reason?: string | undefined;
|
|
208
203
|
} | undefined;
|
|
204
|
+
kty: "EC";
|
|
205
|
+
alg?: "ES256K" | undefined;
|
|
206
|
+
crv: "secp256k1";
|
|
207
|
+
x: string;
|
|
208
|
+
y: string;
|
|
209
209
|
d?: string | undefined;
|
|
210
210
|
} & {
|
|
211
|
-
kid:
|
|
211
|
+
kid: {};
|
|
212
212
|
}) | ({
|
|
213
|
-
kty: "OKP";
|
|
214
|
-
crv: "Ed25519" | "Ed448";
|
|
215
|
-
x: string;
|
|
216
|
-
alg?: "EdDSA" | undefined;
|
|
217
213
|
kid?: string | undefined;
|
|
218
|
-
use?: "
|
|
219
|
-
key_ops?: ("
|
|
214
|
+
use?: "enc" | "sig" | undefined;
|
|
215
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
220
216
|
x5c?: string[] | undefined;
|
|
221
217
|
x5t?: string | undefined;
|
|
222
|
-
|
|
218
|
+
'x5t#S256'?: string | undefined;
|
|
223
219
|
x5u?: string | undefined;
|
|
224
220
|
ext?: boolean | undefined;
|
|
225
221
|
iat?: number | undefined;
|
|
@@ -229,9 +225,13 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
229
225
|
revoked_at: number;
|
|
230
226
|
reason?: string | undefined;
|
|
231
227
|
} | undefined;
|
|
228
|
+
kty: "OKP";
|
|
229
|
+
alg?: "EdDSA" | undefined;
|
|
230
|
+
crv: "Ed25519" | "Ed448";
|
|
231
|
+
x: string;
|
|
232
232
|
d?: string | undefined;
|
|
233
233
|
} & {
|
|
234
|
-
kid:
|
|
234
|
+
kid: {};
|
|
235
235
|
})) & {
|
|
236
236
|
d?: never;
|
|
237
237
|
})[];
|
|
@@ -247,10 +247,10 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
247
247
|
authorization_encrypted_response_alg: z.ZodOptional<z.ZodString>;
|
|
248
248
|
client_id: z.ZodOptional<z.ZodString>;
|
|
249
249
|
client_name: z.ZodOptional<z.ZodString>;
|
|
250
|
-
client_uri: z.ZodOptional<z.ZodEffects<z.ZodString,
|
|
251
|
-
policy_uri: z.ZodOptional<z.ZodEffects<z.ZodString,
|
|
252
|
-
tos_uri: z.ZodOptional<z.ZodEffects<z.ZodString,
|
|
253
|
-
logo_uri: z.ZodOptional<z.ZodEffects<z.ZodString,
|
|
250
|
+
client_uri: z.ZodOptional<z.ZodEffects<z.ZodString, "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}`, string>>;
|
|
251
|
+
policy_uri: z.ZodOptional<z.ZodEffects<z.ZodString, "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}`, string>>;
|
|
252
|
+
tos_uri: z.ZodOptional<z.ZodEffects<z.ZodString, "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}`, string>>;
|
|
253
|
+
logo_uri: z.ZodOptional<z.ZodEffects<z.ZodString, "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}`, string>>;
|
|
254
254
|
/**
|
|
255
255
|
* Default Maximum Authentication Age. Specifies that the End-User MUST be
|
|
256
256
|
* actively authenticated if the End-User was authenticated longer ago than
|
|
@@ -265,30 +265,23 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
265
265
|
dpop_bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
|
|
266
266
|
authorization_details_types: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
|
|
267
267
|
}, "strip", z.ZodTypeAny, {
|
|
268
|
-
redirect_uris: [
|
|
269
|
-
response_types: ["code" | "
|
|
270
|
-
grant_types: ["authorization_code" | "
|
|
271
|
-
token_endpoint_auth_method: "client_secret_basic" | "client_secret_jwt" | "client_secret_post" | "none" | "private_key_jwt" | "self_signed_tls_client_auth" | "tls_client_auth";
|
|
272
|
-
application_type: "web" | "native";
|
|
273
|
-
subject_type: "public" | "pairwise";
|
|
274
|
-
authorization_signed_response_alg: string;
|
|
268
|
+
redirect_uris: ["http://127.0.0.1" | `${string}.${string}:/${string}` | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `https://${string}`, ...("http://127.0.0.1" | `${string}.${string}:/${string}` | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `https://${string}`)[]];
|
|
269
|
+
response_types: ["code" | "code id_token" | "code id_token token" | "code token" | "id_token" | "id_token token" | "none" | "token", ...("code" | "code id_token" | "code id_token token" | "code token" | "id_token" | "id_token token" | "none" | "token")[]];
|
|
270
|
+
grant_types: ["authorization_code" | "client_credentials" | "implicit" | "password" | "refresh_token" | "urn:ietf:params:oauth:grant-type:jwt-bearer" | "urn:ietf:params:oauth:grant-type:saml2-bearer", ...("authorization_code" | "client_credentials" | "implicit" | "password" | "refresh_token" | "urn:ietf:params:oauth:grant-type:jwt-bearer" | "urn:ietf:params:oauth:grant-type:saml2-bearer")[]];
|
|
275
271
|
scope?: string | undefined;
|
|
272
|
+
token_endpoint_auth_method: "client_secret_basic" | "client_secret_jwt" | "client_secret_post" | "none" | "private_key_jwt" | "self_signed_tls_client_auth" | "tls_client_auth";
|
|
276
273
|
token_endpoint_auth_signing_alg?: string | undefined;
|
|
277
274
|
userinfo_signed_response_alg?: string | undefined;
|
|
278
275
|
userinfo_encrypted_response_alg?: string | undefined;
|
|
279
|
-
jwks_uri?:
|
|
276
|
+
jwks_uri?: "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}` | undefined;
|
|
280
277
|
jwks?: {
|
|
281
278
|
keys: ((({
|
|
282
|
-
kty: "RSA";
|
|
283
|
-
n: string;
|
|
284
|
-
e: string;
|
|
285
|
-
alg?: "RS256" | "RS384" | "RS512" | "PS256" | "PS384" | "PS512" | undefined;
|
|
286
279
|
kid?: string | undefined;
|
|
287
|
-
use?: "
|
|
288
|
-
key_ops?: ("
|
|
280
|
+
use?: "enc" | "sig" | undefined;
|
|
281
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
289
282
|
x5c?: string[] | undefined;
|
|
290
283
|
x5t?: string | undefined;
|
|
291
|
-
|
|
284
|
+
'x5t#S256'?: string | undefined;
|
|
292
285
|
x5u?: string | undefined;
|
|
293
286
|
ext?: boolean | undefined;
|
|
294
287
|
iat?: number | undefined;
|
|
@@ -298,6 +291,10 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
298
291
|
revoked_at: number;
|
|
299
292
|
reason?: string | undefined;
|
|
300
293
|
} | undefined;
|
|
294
|
+
kty: "RSA";
|
|
295
|
+
alg?: "PS256" | "PS384" | "PS512" | "RS256" | "RS384" | "RS512" | undefined;
|
|
296
|
+
n: string;
|
|
297
|
+
e: string;
|
|
301
298
|
d?: string | undefined;
|
|
302
299
|
p?: string | undefined;
|
|
303
300
|
q?: string | undefined;
|
|
@@ -305,24 +302,19 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
305
302
|
dq?: string | undefined;
|
|
306
303
|
qi?: string | undefined;
|
|
307
304
|
oth?: {
|
|
308
|
-
d?: string | undefined;
|
|
309
305
|
r?: string | undefined;
|
|
306
|
+
d?: string | undefined;
|
|
310
307
|
t?: string | undefined;
|
|
311
308
|
}[] | undefined;
|
|
312
309
|
} & {
|
|
313
|
-
kid:
|
|
310
|
+
kid: {};
|
|
314
311
|
}) | ({
|
|
315
|
-
kty: "EC";
|
|
316
|
-
crv: "P-256" | "P-384" | "P-521";
|
|
317
|
-
x: string;
|
|
318
|
-
y: string;
|
|
319
|
-
alg?: "ES256" | "ES384" | "ES512" | undefined;
|
|
320
312
|
kid?: string | undefined;
|
|
321
|
-
use?: "
|
|
322
|
-
key_ops?: ("
|
|
313
|
+
use?: "enc" | "sig" | undefined;
|
|
314
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
323
315
|
x5c?: string[] | undefined;
|
|
324
316
|
x5t?: string | undefined;
|
|
325
|
-
|
|
317
|
+
'x5t#S256'?: string | undefined;
|
|
326
318
|
x5u?: string | undefined;
|
|
327
319
|
ext?: boolean | undefined;
|
|
328
320
|
iat?: number | undefined;
|
|
@@ -332,21 +324,21 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
332
324
|
revoked_at: number;
|
|
333
325
|
reason?: string | undefined;
|
|
334
326
|
} | undefined;
|
|
335
|
-
d?: string | undefined;
|
|
336
|
-
} & {
|
|
337
|
-
kid: NonNullable<unknown>;
|
|
338
|
-
}) | ({
|
|
339
327
|
kty: "EC";
|
|
340
|
-
|
|
328
|
+
alg?: "ES256" | "ES384" | "ES512" | undefined;
|
|
329
|
+
crv: "P-256" | "P-384" | "P-521";
|
|
341
330
|
x: string;
|
|
342
331
|
y: string;
|
|
343
|
-
|
|
332
|
+
d?: string | undefined;
|
|
333
|
+
} & {
|
|
334
|
+
kid: {};
|
|
335
|
+
}) | ({
|
|
344
336
|
kid?: string | undefined;
|
|
345
|
-
use?: "
|
|
346
|
-
key_ops?: ("
|
|
337
|
+
use?: "enc" | "sig" | undefined;
|
|
338
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
347
339
|
x5c?: string[] | undefined;
|
|
348
340
|
x5t?: string | undefined;
|
|
349
|
-
|
|
341
|
+
'x5t#S256'?: string | undefined;
|
|
350
342
|
x5u?: string | undefined;
|
|
351
343
|
ext?: boolean | undefined;
|
|
352
344
|
iat?: number | undefined;
|
|
@@ -356,20 +348,21 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
356
348
|
revoked_at: number;
|
|
357
349
|
reason?: string | undefined;
|
|
358
350
|
} | undefined;
|
|
351
|
+
kty: "EC";
|
|
352
|
+
alg?: "ES256K" | undefined;
|
|
353
|
+
crv: "secp256k1";
|
|
354
|
+
x: string;
|
|
355
|
+
y: string;
|
|
359
356
|
d?: string | undefined;
|
|
360
357
|
} & {
|
|
361
|
-
kid:
|
|
358
|
+
kid: {};
|
|
362
359
|
}) | ({
|
|
363
|
-
kty: "OKP";
|
|
364
|
-
crv: "Ed25519" | "Ed448";
|
|
365
|
-
x: string;
|
|
366
|
-
alg?: "EdDSA" | undefined;
|
|
367
360
|
kid?: string | undefined;
|
|
368
|
-
use?: "
|
|
369
|
-
key_ops?: ("
|
|
361
|
+
use?: "enc" | "sig" | undefined;
|
|
362
|
+
key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
|
|
370
363
|
x5c?: string[] | undefined;
|
|
371
364
|
x5t?: string | undefined;
|
|
372
|
-
|
|
365
|
+
'x5t#S256'?: string | undefined;
|
|
373
366
|
x5u?: string | undefined;
|
|
374
367
|
ext?: boolean | undefined;
|
|
375
368
|
iat?: number | undefined;
|
|
@@ -379,23 +372,30 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
379
372
|
revoked_at: number;
|
|
380
373
|
reason?: string | undefined;
|
|
381
374
|
} | undefined;
|
|
375
|
+
kty: "OKP";
|
|
376
|
+
alg?: "EdDSA" | undefined;
|
|
377
|
+
crv: "Ed25519" | "Ed448";
|
|
378
|
+
x: string;
|
|
382
379
|
d?: string | undefined;
|
|
383
380
|
} & {
|
|
384
|
-
kid:
|
|
381
|
+
kid: {};
|
|
385
382
|
})) & {
|
|
386
383
|
d?: never;
|
|
387
384
|
})[];
|
|
388
385
|
} | undefined;
|
|
386
|
+
application_type: "native" | "web";
|
|
387
|
+
subject_type: "pairwise" | "public";
|
|
389
388
|
request_object_signing_alg?: string | undefined;
|
|
390
389
|
id_token_signed_response_alg?: string | undefined;
|
|
390
|
+
authorization_signed_response_alg: string;
|
|
391
391
|
authorization_encrypted_response_enc?: "A128CBC-HS256" | undefined;
|
|
392
392
|
authorization_encrypted_response_alg?: string | undefined;
|
|
393
393
|
client_id?: string | undefined;
|
|
394
394
|
client_name?: string | undefined;
|
|
395
|
-
client_uri?:
|
|
396
|
-
policy_uri?:
|
|
397
|
-
tos_uri?:
|
|
398
|
-
logo_uri?:
|
|
395
|
+
client_uri?: "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}` | undefined;
|
|
396
|
+
policy_uri?: "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}` | undefined;
|
|
397
|
+
tos_uri?: "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}` | undefined;
|
|
398
|
+
logo_uri?: "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}` | undefined;
|
|
399
399
|
default_max_age?: number | undefined;
|
|
400
400
|
require_auth_time?: boolean | undefined;
|
|
401
401
|
contacts?: string[] | undefined;
|
|
@@ -404,9 +404,9 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
404
404
|
authorization_details_types?: string[] | undefined;
|
|
405
405
|
}, {
|
|
406
406
|
redirect_uris: [string, ...string[]];
|
|
407
|
+
response_types?: ["code" | "code id_token" | "code id_token token" | "code token" | "id_token" | "id_token token" | "none" | "token", ...("code" | "code id_token" | "code id_token token" | "code token" | "id_token" | "id_token token" | "none" | "token")[]] | undefined;
|
|
408
|
+
grant_types?: ["authorization_code" | "client_credentials" | "implicit" | "password" | "refresh_token" | "urn:ietf:params:oauth:grant-type:jwt-bearer" | "urn:ietf:params:oauth:grant-type:saml2-bearer", ...("authorization_code" | "client_credentials" | "implicit" | "password" | "refresh_token" | "urn:ietf:params:oauth:grant-type:jwt-bearer" | "urn:ietf:params:oauth:grant-type:saml2-bearer")[]] | undefined;
|
|
407
409
|
scope?: string | undefined;
|
|
408
|
-
response_types?: ["code" | "none" | "token" | "code id_token token" | "code id_token" | "code token" | "id_token token" | "id_token", ...("code" | "none" | "token" | "code id_token token" | "code id_token" | "code token" | "id_token token" | "id_token")[]] | undefined;
|
|
409
|
-
grant_types?: ["authorization_code" | "implicit" | "refresh_token" | "password" | "client_credentials" | "urn:ietf:params:oauth:grant-type:jwt-bearer" | "urn:ietf:params:oauth:grant-type:saml2-bearer", ...("authorization_code" | "implicit" | "refresh_token" | "password" | "client_credentials" | "urn:ietf:params:oauth:grant-type:jwt-bearer" | "urn:ietf:params:oauth:grant-type:saml2-bearer")[]] | undefined;
|
|
410
410
|
token_endpoint_auth_method?: "client_secret_basic" | "client_secret_jwt" | "client_secret_post" | "none" | "private_key_jwt" | "self_signed_tls_client_auth" | "tls_client_auth" | undefined;
|
|
411
411
|
token_endpoint_auth_signing_alg?: string | undefined;
|
|
412
412
|
userinfo_signed_response_alg?: string | undefined;
|
|
@@ -415,8 +415,8 @@ export declare const oauthClientMetadataSchema: z.ZodObject<{
|
|
|
415
415
|
jwks?: {
|
|
416
416
|
keys: unknown[];
|
|
417
417
|
} | undefined;
|
|
418
|
-
application_type?: "
|
|
419
|
-
subject_type?: "
|
|
418
|
+
application_type?: "native" | "web" | undefined;
|
|
419
|
+
subject_type?: "pairwise" | "public" | undefined;
|
|
420
420
|
request_object_signing_alg?: string | undefined;
|
|
421
421
|
id_token_signed_response_alg?: string | undefined;
|
|
422
422
|
authorization_signed_response_alg?: string | undefined;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"oauth-client-metadata.d.ts","sourceRoot":"","sources":["../src/oauth-client-metadata.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AAUvB;;;;;;GAMG;AACH,eAAO,MAAM,yBAAyB;IACpC;;OAEG
|
|
1
|
+
{"version":3,"file":"oauth-client-metadata.d.ts","sourceRoot":"","sources":["../src/oauth-client-metadata.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AAUvB;;;;;;GAMG;AACH,eAAO,MAAM,yBAAyB;IACpC;;OAEG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;IAuCH;;;;;;OAMG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAWH,CAAA;AAEF,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,yBAAyB,CAAC,CAAA;AAC3E,MAAM,MAAM,wBAAwB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,yBAAyB,CAAC,CAAA"}
|
|
@@ -1,3 +1,3 @@
|
|
|
1
|
-
export declare const OAUTH_ENDPOINT_NAMES: readonly [
|
|
1
|
+
export declare const OAUTH_ENDPOINT_NAMES: readonly ['token', 'revocation', 'introspection', 'pushed_authorization_request'];
|
|
2
2
|
export type OAuthEndpointName = (typeof OAUTH_ENDPOINT_NAMES)[number];
|
|
3
3
|
//# sourceMappingURL=oauth-endpoint-name.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"oauth-endpoint-name.d.ts","sourceRoot":"","sources":["../src/oauth-endpoint-name.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,oBAAoB,
|
|
1
|
+
{"version":3,"file":"oauth-endpoint-name.d.ts","sourceRoot":"","sources":["../src/oauth-endpoint-name.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,oBAAoB,YAC/B,OAAO,EACP,YAAY,EACZ,eAAe,EACf,8BAA8B,CACtB,CAAA;AAEV,MAAM,MAAM,iBAAiB,GAAG,CAAC,OAAO,oBAAoB,CAAC,CAAC,MAAM,CAAC,CAAA"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
1
|
import { z } from 'zod';
|
|
2
|
-
export declare const oauthIssuerIdentifierSchema: z.ZodEffects<z.ZodEffects<z.ZodString,
|
|
2
|
+
export declare const oauthIssuerIdentifierSchema: z.ZodEffects<z.ZodEffects<z.ZodString, "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}`, string>, "http://127.0.0.1" | "http://localhost" | `http://127.0.0.1#${string}` | `http://127.0.0.1/${string}` | `http://127.0.0.1:${string}` | `http://127.0.0.1?${string}` | `http://[::1]${string}` | `http://localhost#${string}` | `http://localhost/${string}` | `http://localhost:${string}` | `http://localhost?${string}` | `https://${string}`, string>;
|
|
3
3
|
export type OAuthIssuerIdentifier = z.infer<typeof oauthIssuerIdentifierSchema>;
|
|
4
4
|
//# sourceMappingURL=oauth-issuer-identifier.d.ts.map
|
|
@@ -3,11 +3,11 @@ export declare const oauthParResponseSchema: z.ZodObject<{
|
|
|
3
3
|
request_uri: z.ZodString;
|
|
4
4
|
expires_in: z.ZodNumber;
|
|
5
5
|
}, "strip", z.ZodTypeAny, {
|
|
6
|
-
expires_in: number;
|
|
7
6
|
request_uri: string;
|
|
8
|
-
}, {
|
|
9
7
|
expires_in: number;
|
|
8
|
+
}, {
|
|
10
9
|
request_uri: string;
|
|
10
|
+
expires_in: number;
|
|
11
11
|
}>;
|
|
12
12
|
export type OAuthParResponse = z.infer<typeof oauthParResponseSchema>;
|
|
13
13
|
//# sourceMappingURL=oauth-par-response.d.ts.map
|
|
@@ -4,13 +4,13 @@ export declare const oauthPasswordGrantTokenRequestSchema: z.ZodObject<{
|
|
|
4
4
|
username: z.ZodString;
|
|
5
5
|
password: z.ZodString;
|
|
6
6
|
}, "strip", z.ZodTypeAny, {
|
|
7
|
-
password: string;
|
|
8
7
|
grant_type: "password";
|
|
9
8
|
username: string;
|
|
10
|
-
}, {
|
|
11
9
|
password: string;
|
|
10
|
+
}, {
|
|
12
11
|
grant_type: "password";
|
|
13
12
|
username: string;
|
|
13
|
+
password: string;
|
|
14
14
|
}>;
|
|
15
15
|
export type OAuthPasswordGrantTokenRequest = z.infer<typeof oauthPasswordGrantTokenRequestSchema>;
|
|
16
16
|
//# sourceMappingURL=oauth-password-grant-token-request.d.ts.map
|