npm - @authly/sdk - Versions diffs - 1.2.2 → 1.2.4 - Mend

@authly/sdk 1.2.2 → 1.2.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/globals/clients/AuthlyClient.d.ts +12 -6
package/dist/globals/clients/AuthlyClient.js +27 -14
package/dist/models/globals/clients/interfaces/IAuthlyClientOptions.d.ts +16 -9
package/package.json +1 -1

package/dist/globals/clients/AuthlyClient.d.ts CHANGED Viewed

@@ -24,17 +24,17 @@ declare class AuthlyClient {
      */
     private readonly issuer;
     /**
-     * @summary The authorize path of the client.
+     * @summary The resolved authorize endpoint URL.
      */
-    private readonly authorizePath;
+    private readonly authorizeEndpoint;
     /**
-     * @summary The token path of the client.
+     * @summary The resolved token endpoint URL.
      */
-    private readonly tokenPath;
+    private readonly tokenEndpoint;
     /**
-     * @summary The user info path of the client.
+     * @summary The resolved user info endpoint URL.
      */
-    private readonly userInfoPath;
+    private readonly userInfoEndpoint;
     /**
      * @summary The redirect URI for the client.
      */
@@ -52,6 +52,12 @@ declare class AuthlyClient {
      * @param options - The options for the client.
      */
     constructor(options: IAuthlyClientOptions);
+    /**
+     * @summary Resolves a path or full URL.
+     * @param pathOrUrl - The relative path or absolute URL.
+     * @returns The full URL.
+     */
+    private resolveUrl;
     /**
      * @summary Prepares the authorization request, stores PKCE state, and returns the URL.
      * @param options - Optional overrides for the authorization request.

package/dist/globals/clients/AuthlyClient.js CHANGED Viewed

@@ -27,17 +27,17 @@ class AuthlyClient {
      */
     issuer;
     /**
-     * @summary The authorize path of the client.
+     * @summary The resolved authorize endpoint URL.
      */
-    authorizePath;
+    authorizeEndpoint;
     /**
-     * @summary The token path of the client.
+     * @summary The resolved token endpoint URL.
      */
-    tokenPath;
+    tokenEndpoint;
     /**
-     * @summary The user info path of the client.
+     * @summary The resolved user info endpoint URL.
      */
-    userInfoPath;
+    userInfoEndpoint;
     /**
      * @summary The redirect URI for the client.
      */
@@ -57,21 +57,33 @@ class AuthlyClient {
     constructor(options) {
         this.issuer = options.issuer.replace(/\/$/, "");
         this.serviceId = options.serviceId;
-        this.authorizePath = options.authorizePath || AuthlyConfiguration_1.AuthlyConfiguration.DEFAULT_AUTHORIZE_PATH;
-        this.tokenPath = options.tokenPath || AuthlyConfiguration_1.AuthlyConfiguration.DEFAULT_TOKEN_PATH;
-        this.userInfoPath = options.userInfoPath || AuthlyConfiguration_1.AuthlyConfiguration.DEFAULT_USER_INFO_PATH;
         this.redirectUri = options.redirectUri;
         this.storage = options.storage;
         if (!this.storage && typeof window !== "undefined" && window.sessionStorage) {
             this.storage = window.sessionStorage;
         }
+        this.authorizeEndpoint = this.resolveUrl(options.authorizePath || AuthlyConfiguration_1.AuthlyConfiguration.DEFAULT_AUTHORIZE_PATH);
+        this.tokenEndpoint = this.resolveUrl(options.tokenPath || AuthlyConfiguration_1.AuthlyConfiguration.DEFAULT_TOKEN_PATH);
+        this.userInfoEndpoint = this.resolveUrl(options.userInfoPath || AuthlyConfiguration_1.AuthlyConfiguration.DEFAULT_USER_INFO_PATH);
+        const jwksUrl = this.resolveUrl(options.jwksPath || AuthlyConfiguration_1.AuthlyConfiguration.DEFAULT_JWKS_PATH);
         this.verifier = new JWTVerifier_1.JWTVerifier({
             issuer: this.issuer,
             audience: options.audience,
-            jwksUrl: `${this.issuer}${options.jwksPath || AuthlyConfiguration_1.AuthlyConfiguration.DEFAULT_JWKS_PATH}`,
+            jwksUrl: jwksUrl,
             algorithms: options.algorithms,
         });
     }
+    /**
+     * @summary Resolves a path or full URL.
+     * @param pathOrUrl - The relative path or absolute URL.
+     * @returns The full URL.
+     */
+    resolveUrl(pathOrUrl) {
+        if (pathOrUrl.startsWith("http://") || pathOrUrl.startsWith("https://")) {
+            return pathOrUrl;
+        }
+        return `${this.issuer}${pathOrUrl}`;
+    }
     /**
      * @summary Prepares the authorization request, stores PKCE state, and returns the URL.
      * @param options - Optional overrides for the authorization request.
@@ -103,7 +115,7 @@ class AuthlyClient {
      * @returns The full authorization URL.
      */
     getAuthorizeUrl(options) {
-        const url = new URL(`${this.issuer}${this.authorizePath}`);
+        const url = new URL(this.authorizeEndpoint);
         url.searchParams.set("client_id", this.serviceId);
         url.searchParams.set("redirect_uri", options.redirectUri);
         url.searchParams.set("response_type", options.responseType || "code");
@@ -174,7 +186,7 @@ class AuthlyClient {
      * @returns A promise that resolves to the new access token.
      */
     async refreshToken(refreshToken) {
-        const url = `${this.issuer}${this.tokenPath}`;
+        const url = this.tokenEndpoint;
         const body = {
             grant_type: "refresh_token",
             client_id: this.serviceId,
@@ -204,7 +216,7 @@ class AuthlyClient {
         if (!token)
             return null;
         const fetchInfo = async (currentBuffer) => {
-            return HttpClient_1.HttpClient.get(`${this.issuer}${this.userInfoPath}`, {
+            return HttpClient_1.HttpClient.get(this.userInfoEndpoint, {
                 headers: {
                     Authorization: `Bearer ${currentBuffer}`,
                 },
@@ -239,6 +251,7 @@ class AuthlyClient {
             const decoded = (0, jose_1.decodeJwt)(token);
             if (!decoded.exp)
                 return true;
+            // Check if token is expired with a 10s buffer
             const now = Math.floor(Date.now() / 1000);
             return decoded.exp > now + 10;
         }
@@ -263,7 +276,7 @@ class AuthlyClient {
      * @returns A promise that resolves to the token response.
      */
     async exchangeCodeForToken(code, redirectUri, codeVerifier) {
-        const url = `${this.issuer}${this.tokenPath}`;
+        const url = this.tokenEndpoint;
         const body = {
             grant_type: "authorization_code",
             client_id: this.serviceId,

package/dist/models/globals/clients/interfaces/IAuthlyClientOptions.d.ts CHANGED Viewed

@@ -5,9 +5,16 @@ import type { IAuthlyStorage } from "./IAuthlyStorage";
 interface IAuthlyClientOptions {
     /**
      * @summary The base URL of the identity provider.
+     * @description Used for token validation (iss claim). If paths are relative, they are appended to this URL (or baseUrl if provided).
      * @example "https://auth.example.com"
      */
     readonly issuer: string;
+    /**
+     * @summary The base URL for API requests (optional).
+     * @description Use this if your API is hosted on a different URL than the issuer.
+     * @example "http://localhost:8000"
+     */
+    readonly baseUrl?: string;
     /**
      * @summary The expected audience claim (aud) in the token.
      * @example "https://app.example.com"
@@ -29,26 +36,26 @@ interface IAuthlyClientOptions {
      */
     readonly storage?: IAuthlyStorage;
     /**
-     * @summary The path to the JWKS endpoint relative to the issuer.
-     * @example "/.well-known/jwks.json"
+     * @summary The path or full URL to the JWKS endpoint.
+     * @example "/.well-known/jwks.json" or "http://localhost:8000/.well-known/jwks.json"
      * @default "/.well-known/jwks.json"
      */
     readonly jwksPath?: string;
     /**
-     * @summary The path to the authorize endpoint relative to the issuer.
-     * @example "/v1/oauth/authorize"
+     * @summary The path or full URL to the authorize endpoint.
+     * @example "/authorize" or "http://localhost:3000/login"
      * @default "/authorize"
      */
     readonly authorizePath?: string;
     /**
-     * @summary The path to the token endpoint relative to the issuer.
-     * @example "/v1/oauth/token"
-     * @default "/oauth/token"
+     * @summary The path or full URL to the token endpoint.
+     * @example "/oauth/token" or "http://localhost:8000/oauth/token"
+     * @default "/oauth2/token"
      */
     readonly tokenPath?: string;
     /**
-     * @summary The path to the user info endpoint relative to the issuer.
-     * @example "/v1/oauth/userinfo"
+     * @summary The path or full URL to the user info endpoint.
+     * @example "/v1/oauth/userinfo" or "http://localhost:8000/v1/oauth/userinfo"
      * @default "/v1/oauth/userinfo"
      */
     readonly userInfoPath?: string;

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
     "name": "@authly/sdk",
     "description": "A library for building authentication systems using Authly.",
-    "version": "1.2.2",
+    "version": "1.2.4",
     "author": {
         "name": "Anvoria",
         "url": "https://github.com/Anvoria"