@backstage/plugin-auth-backend-module-aws-alb-provider 0.0.0-nightly-20260127025640 → 0.0.0-nightly-20260129030729

package/CHANGELOG.md

@@ -1,14 +1,27 @@
 # @backstage/plugin-auth-backend-module-aws-alb-provider
 
-## 0.0.0-nightly-20260127025640
+## 0.0.0-nightly-20260129030729
 
 ### Patch Changes
 
+- 7455dae: Use node prefix on native imports
 - 69d880e: Bump to latest zod to ensure it has the latest features
 - Updated dependencies
-  - @backstage/backend-plugin-api@0.0.0-nightly-20260127025640
-  - @backstage/plugin-auth-node@0.0.0-nightly-20260127025640
-  - @backstage/plugin-auth-backend@0.0.0-nightly-20260127025640
+  - @backstage/backend-plugin-api@0.0.0-nightly-20260129030729
+  - @backstage/plugin-auth-backend@0.0.0-nightly-20260129030729
+  - @backstage/plugin-auth-node@0.0.0-nightly-20260129030729
+  - @backstage/errors@1.2.7
+
+## 0.4.12-next.0
+
+### Patch Changes
+
+- 7455dae: Use node prefix on native imports
+- 69d880e: Bump to latest zod to ensure it has the latest features
+- Updated dependencies
+  - @backstage/backend-plugin-api@1.7.0-next.0
+  - @backstage/plugin-auth-backend@0.26.1-next.0
+  - @backstage/plugin-auth-node@0.6.12-next.0
   - @backstage/errors@1.2.7
 
 ## 0.4.11

package/dist/helpers.cjs.js

@@ -1,6 +1,6 @@
 'use strict';
 
-var crypto = require('crypto');
+var crypto = require('node:crypto');
 var jose = require('jose');
 var errors = require('@backstage/errors');
 

package/dist/helpers.cjs.js.map

@@ -1 +1 @@
-{"version":3,"file":"helpers.cjs.js","sources":["../src/helpers.ts"],"sourcesContent":["/*\n * Copyright 2023 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\n\nimport { KeyObject } from 'crypto';\nimport * as crypto from 'crypto';\nimport { JWTHeaderParameters, decodeJwt } from 'jose';\nimport NodeCache from 'node-cache';\nimport { PassportProfile, ProfileInfo } from '@backstage/plugin-auth-node';\nimport { AuthenticationError } from '@backstage/errors';\n\nexport const makeProfileInfo = (\n  profile: PassportProfile,\n  idToken?: string,\n): ProfileInfo => {\n  let email: string | undefined = undefined;\n  if (profile.emails && profile.emails.length > 0) {\n    const [firstEmail] = profile.emails;\n    email = firstEmail.value;\n  }\n\n  let picture: string | undefined = undefined;\n  if (profile.avatarUrl) {\n    picture = profile.avatarUrl;\n  } else if (profile.photos && profile.photos.length > 0) {\n    const [firstPhoto] = profile.photos;\n    picture = firstPhoto.value;\n  }\n\n  let displayName: string | undefined =\n    profile.displayName ?? profile.username ?? profile.id;\n\n  if ((!email || !picture || !displayName) && idToken) {\n    try {\n      const decoded: Record<string, string> = decodeJwt(idToken) as {\n        email?: string;\n        picture?: string;\n        name?: string;\n      };\n      if (!email && decoded.email) {\n        email = decoded.email;\n      }\n      if (!picture && decoded.picture) {\n        picture = decoded.picture;\n      }\n      if (!displayName && decoded.name) {\n        displayName = decoded.name;\n      }\n    } catch (e) {\n      throw new Error(`Failed to parse id token and get profile info, ${e}`);\n    }\n  }\n\n  return {\n    email,\n    picture,\n    displayName,\n  };\n};\n\nconst getPublicKeyEndpoint = (region: string) => {\n  if (region.startsWith('us-gov')) {\n    return `https://s3-${encodeURIComponent(\n      region,\n    )}.amazonaws.com/aws-elb-public-keys-prod-${encodeURIComponent(region)}`;\n  }\n\n  return `https://public-keys.auth.elb.${encodeURIComponent(\n    region,\n  )}.amazonaws.com`;\n};\n\nexport const provisionKeyCache = (region: string, keyCache: NodeCache) => {\n  return async (header: JWTHeaderParameters): Promise<KeyObject> => {\n    if (!header.kid) {\n      throw new AuthenticationError('No key id was specified in header');\n    }\n    const optionalCacheKey = keyCache.get<KeyObject>(header.kid);\n    if (optionalCacheKey) {\n      return crypto.createPublicKey(optionalCacheKey);\n    }\n\n    const keyText: string = await fetch(\n      `${getPublicKeyEndpoint(region)}/${encodeURIComponent(header.kid)}`,\n    ).then(response => response.text());\n\n    const keyValue = crypto.createPublicKey(keyText);\n    keyCache.set(header.kid, keyValue.export({ format: 'pem', type: 'spki' }));\n    return keyValue;\n  };\n};\n"],"names":["decodeJwt","AuthenticationError","crypto"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAuBO,MAAM,eAAA,GAAkB,CAC7B,OAAA,EACA,OAAA,KACgB;AAChB,EAAA,IAAI,KAAA,GAA4B,MAAA;AAChC,EAAA,IAAI,OAAA,CAAQ,MAAA,IAAU,OAAA,CAAQ,MAAA,CAAO,SAAS,CAAA,EAAG;AAC/C,IAAA,MAAM,CAAC,UAAU,CAAA,GAAI,OAAA,CAAQ,MAAA;AAC7B,IAAA,KAAA,GAAQ,UAAA,CAAW,KAAA;AAAA,EACrB;AAEA,EAAA,IAAI,OAAA,GAA8B,MAAA;AAClC,EAAA,IAAI,QAAQ,SAAA,EAAW;AACrB,IAAA,OAAA,GAAU,OAAA,CAAQ,SAAA;AAAA,EACpB,WAAW,OAAA,CAAQ,MAAA,IAAU,OAAA,CAAQ,MAAA,CAAO,SAAS,CAAA,EAAG;AACtD,IAAA,MAAM,CAAC,UAAU,CAAA,GAAI,OAAA,CAAQ,MAAA;AAC7B,IAAA,OAAA,GAAU,UAAA,CAAW,KAAA;AAAA,EACvB;AAEA,EAAA,IAAI,WAAA,GACF,OAAA,CAAQ,WAAA,IAAe,OAAA,CAAQ,YAAY,OAAA,CAAQ,EAAA;AAErD,EAAA,IAAA,CAAK,CAAC,KAAA,IAAS,CAAC,OAAA,IAAW,CAAC,gBAAgB,OAAA,EAAS;AACnD,IAAA,IAAI;AACF,MAAA,MAAM,OAAA,GAAkCA,eAAU,OAAO,CAAA;AAKzD,MAAA,IAAI,CAAC,KAAA,IAAS,OAAA,CAAQ,KAAA,EAAO;AAC3B,QAAA,KAAA,GAAQ,OAAA,CAAQ,KAAA;AAAA,MAClB;AACA,MAAA,IAAI,CAAC,OAAA,IAAW,OAAA,CAAQ,OAAA,EAAS;AAC/B,QAAA,OAAA,GAAU,OAAA,CAAQ,OAAA;AAAA,MACpB;AACA,MAAA,IAAI,CAAC,WAAA,IAAe,OAAA,CAAQ,IAAA,EAAM;AAChC,QAAA,WAAA,GAAc,OAAA,CAAQ,IAAA;AAAA,MACxB;AAAA,IACF,SAAS,CAAA,EAAG;AACV,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,+CAAA,EAAkD,CAAC,CAAA,CAAE,CAAA;AAAA,IACvE;AAAA,EACF;AAEA,EAAA,OAAO;AAAA,IACL,KAAA;AAAA,IACA,OAAA;AAAA,IACA;AAAA,GACF;AACF;AAEA,MAAM,oBAAA,GAAuB,CAAC,MAAA,KAAmB;AAC/C,EAAA,IAAI,MAAA,CAAO,UAAA,CAAW,QAAQ,CAAA,EAAG;AAC/B,IAAA,OAAO,CAAA,WAAA,EAAc,kBAAA;AAAA,MACnB;AAAA,KACD,CAAA,wCAAA,EAA2C,kBAAA,CAAmB,MAAM,CAAC,CAAA,CAAA;AAAA,EACxE;AAEA,EAAA,OAAO,CAAA,6BAAA,EAAgC,kBAAA;AAAA,IACrC;AAAA,GACD,CAAA,cAAA,CAAA;AACH,CAAA;AAEO,MAAM,iBAAA,GAAoB,CAAC,MAAA,EAAgB,QAAA,KAAwB;AACxE,EAAA,OAAO,OAAO,MAAA,KAAoD;AAChE,IAAA,IAAI,CAAC,OAAO,GAAA,EAAK;AACf,MAAA,MAAM,IAAIC,2BAAoB,mCAAmC,CAAA;AAAA,IACnE;AACA,IAAA,MAAM,gBAAA,GAAmB,QAAA,CAAS,GAAA,CAAe,MAAA,CAAO,GAAG,CAAA;AAC3D,IAAA,IAAI,gBAAA,EAAkB;AACpB,MAAA,OAAOC,iBAAA,CAAO,gBAAgB,gBAAgB,CAAA;AAAA,IAChD;AAEA,IAAA,MAAM,UAAkB,MAAM,KAAA;AAAA,MAC5B,CAAA,EAAG,qBAAqB,MAAM,CAAC,IAAI,kBAAA,CAAmB,MAAA,CAAO,GAAG,CAAC,CAAA;AAAA,KACnE,CAAE,IAAA,CAAK,CAAA,QAAA,KAAY,QAAA,CAAS,MAAM,CAAA;AAElC,IAAA,MAAM,QAAA,GAAWA,iBAAA,CAAO,eAAA,CAAgB,OAAO,CAAA;AAC/C,IAAA,QAAA,CAAS,GAAA,CAAI,MAAA,CAAO,GAAA,EAAK,QAAA,CAAS,MAAA,CAAO,EAAE,MAAA,EAAQ,KAAA,EAAO,IAAA,EAAM,MAAA,EAAQ,CAAC,CAAA;AACzE,IAAA,OAAO,QAAA;AAAA,EACT,CAAA;AACF;;;;;"}
+{"version":3,"file":"helpers.cjs.js","sources":["../src/helpers.ts"],"sourcesContent":["/*\n * Copyright 2023 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\n\nimport { KeyObject } from 'node:crypto';\nimport * as crypto from 'node:crypto';\nimport { JWTHeaderParameters, decodeJwt } from 'jose';\nimport NodeCache from 'node-cache';\nimport { PassportProfile, ProfileInfo } from '@backstage/plugin-auth-node';\nimport { AuthenticationError } from '@backstage/errors';\n\nexport const makeProfileInfo = (\n  profile: PassportProfile,\n  idToken?: string,\n): ProfileInfo => {\n  let email: string | undefined = undefined;\n  if (profile.emails && profile.emails.length > 0) {\n    const [firstEmail] = profile.emails;\n    email = firstEmail.value;\n  }\n\n  let picture: string | undefined = undefined;\n  if (profile.avatarUrl) {\n    picture = profile.avatarUrl;\n  } else if (profile.photos && profile.photos.length > 0) {\n    const [firstPhoto] = profile.photos;\n    picture = firstPhoto.value;\n  }\n\n  let displayName: string | undefined =\n    profile.displayName ?? profile.username ?? profile.id;\n\n  if ((!email || !picture || !displayName) && idToken) {\n    try {\n      const decoded: Record<string, string> = decodeJwt(idToken) as {\n        email?: string;\n        picture?: string;\n        name?: string;\n      };\n      if (!email && decoded.email) {\n        email = decoded.email;\n      }\n      if (!picture && decoded.picture) {\n        picture = decoded.picture;\n      }\n      if (!displayName && decoded.name) {\n        displayName = decoded.name;\n      }\n    } catch (e) {\n      throw new Error(`Failed to parse id token and get profile info, ${e}`);\n    }\n  }\n\n  return {\n    email,\n    picture,\n    displayName,\n  };\n};\n\nconst getPublicKeyEndpoint = (region: string) => {\n  if (region.startsWith('us-gov')) {\n    return `https://s3-${encodeURIComponent(\n      region,\n    )}.amazonaws.com/aws-elb-public-keys-prod-${encodeURIComponent(region)}`;\n  }\n\n  return `https://public-keys.auth.elb.${encodeURIComponent(\n    region,\n  )}.amazonaws.com`;\n};\n\nexport const provisionKeyCache = (region: string, keyCache: NodeCache) => {\n  return async (header: JWTHeaderParameters): Promise<KeyObject> => {\n    if (!header.kid) {\n      throw new AuthenticationError('No key id was specified in header');\n    }\n    const optionalCacheKey = keyCache.get<KeyObject>(header.kid);\n    if (optionalCacheKey) {\n      return crypto.createPublicKey(optionalCacheKey);\n    }\n\n    const keyText: string = await fetch(\n      `${getPublicKeyEndpoint(region)}/${encodeURIComponent(header.kid)}`,\n    ).then(response => response.text());\n\n    const keyValue = crypto.createPublicKey(keyText);\n    keyCache.set(header.kid, keyValue.export({ format: 'pem', type: 'spki' }));\n    return keyValue;\n  };\n};\n"],"names":["decodeJwt","AuthenticationError","crypto"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAuBO,MAAM,eAAA,GAAkB,CAC7B,OAAA,EACA,OAAA,KACgB;AAChB,EAAA,IAAI,KAAA,GAA4B,MAAA;AAChC,EAAA,IAAI,OAAA,CAAQ,MAAA,IAAU,OAAA,CAAQ,MAAA,CAAO,SAAS,CAAA,EAAG;AAC/C,IAAA,MAAM,CAAC,UAAU,CAAA,GAAI,OAAA,CAAQ,MAAA;AAC7B,IAAA,KAAA,GAAQ,UAAA,CAAW,KAAA;AAAA,EACrB;AAEA,EAAA,IAAI,OAAA,GAA8B,MAAA;AAClC,EAAA,IAAI,QAAQ,SAAA,EAAW;AACrB,IAAA,OAAA,GAAU,OAAA,CAAQ,SAAA;AAAA,EACpB,WAAW,OAAA,CAAQ,MAAA,IAAU,OAAA,CAAQ,MAAA,CAAO,SAAS,CAAA,EAAG;AACtD,IAAA,MAAM,CAAC,UAAU,CAAA,GAAI,OAAA,CAAQ,MAAA;AAC7B,IAAA,OAAA,GAAU,UAAA,CAAW,KAAA;AAAA,EACvB;AAEA,EAAA,IAAI,WAAA,GACF,OAAA,CAAQ,WAAA,IAAe,OAAA,CAAQ,YAAY,OAAA,CAAQ,EAAA;AAErD,EAAA,IAAA,CAAK,CAAC,KAAA,IAAS,CAAC,OAAA,IAAW,CAAC,gBAAgB,OAAA,EAAS;AACnD,IAAA,IAAI;AACF,MAAA,MAAM,OAAA,GAAkCA,eAAU,OAAO,CAAA;AAKzD,MAAA,IAAI,CAAC,KAAA,IAAS,OAAA,CAAQ,KAAA,EAAO;AAC3B,QAAA,KAAA,GAAQ,OAAA,CAAQ,KAAA;AAAA,MAClB;AACA,MAAA,IAAI,CAAC,OAAA,IAAW,OAAA,CAAQ,OAAA,EAAS;AAC/B,QAAA,OAAA,GAAU,OAAA,CAAQ,OAAA;AAAA,MACpB;AACA,MAAA,IAAI,CAAC,WAAA,IAAe,OAAA,CAAQ,IAAA,EAAM;AAChC,QAAA,WAAA,GAAc,OAAA,CAAQ,IAAA;AAAA,MACxB;AAAA,IACF,SAAS,CAAA,EAAG;AACV,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,+CAAA,EAAkD,CAAC,CAAA,CAAE,CAAA;AAAA,IACvE;AAAA,EACF;AAEA,EAAA,OAAO;AAAA,IACL,KAAA;AAAA,IACA,OAAA;AAAA,IACA;AAAA,GACF;AACF;AAEA,MAAM,oBAAA,GAAuB,CAAC,MAAA,KAAmB;AAC/C,EAAA,IAAI,MAAA,CAAO,UAAA,CAAW,QAAQ,CAAA,EAAG;AAC/B,IAAA,OAAO,CAAA,WAAA,EAAc,kBAAA;AAAA,MACnB;AAAA,KACD,CAAA,wCAAA,EAA2C,kBAAA,CAAmB,MAAM,CAAC,CAAA,CAAA;AAAA,EACxE;AAEA,EAAA,OAAO,CAAA,6BAAA,EAAgC,kBAAA;AAAA,IACrC;AAAA,GACD,CAAA,cAAA,CAAA;AACH,CAAA;AAEO,MAAM,iBAAA,GAAoB,CAAC,MAAA,EAAgB,QAAA,KAAwB;AACxE,EAAA,OAAO,OAAO,MAAA,KAAoD;AAChE,IAAA,IAAI,CAAC,OAAO,GAAA,EAAK;AACf,MAAA,MAAM,IAAIC,2BAAoB,mCAAmC,CAAA;AAAA,IACnE;AACA,IAAA,MAAM,gBAAA,GAAmB,QAAA,CAAS,GAAA,CAAe,MAAA,CAAO,GAAG,CAAA;AAC3D,IAAA,IAAI,gBAAA,EAAkB;AACpB,MAAA,OAAOC,iBAAA,CAAO,gBAAgB,gBAAgB,CAAA;AAAA,IAChD;AAEA,IAAA,MAAM,UAAkB,MAAM,KAAA;AAAA,MAC5B,CAAA,EAAG,qBAAqB,MAAM,CAAC,IAAI,kBAAA,CAAmB,MAAA,CAAO,GAAG,CAAC,CAAA;AAAA,KACnE,CAAE,IAAA,CAAK,CAAA,QAAA,KAAY,QAAA,CAAS,MAAM,CAAA;AAElC,IAAA,MAAM,QAAA,GAAWA,iBAAA,CAAO,eAAA,CAAgB,OAAO,CAAA;AAC/C,IAAA,QAAA,CAAS,GAAA,CAAI,MAAA,CAAO,GAAA,EAAK,QAAA,CAAS,MAAA,CAAO,EAAE,MAAA,EAAQ,KAAA,EAAO,IAAA,EAAM,MAAA,EAAQ,CAAC,CAAA;AACzE,IAAA,OAAO,QAAA;AAAA,EACT,CAAA;AACF;;;;;"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@backstage/plugin-auth-backend-module-aws-alb-provider",
-  "version": "0.0.0-nightly-20260127025640",
+  "version": "0.0.0-nightly-20260129030729",
   "description": "The aws-alb provider module for the Backstage auth backend.",
   "backstage": {
     "role": "backend-plugin-module",
@@ -40,17 +40,17 @@
     "test": "backstage-cli package test"
   },
   "dependencies": {
-    "@backstage/backend-plugin-api": "0.0.0-nightly-20260127025640",
+    "@backstage/backend-plugin-api": "0.0.0-nightly-20260129030729",
     "@backstage/errors": "1.2.7",
-    "@backstage/plugin-auth-backend": "0.0.0-nightly-20260127025640",
-    "@backstage/plugin-auth-node": "0.0.0-nightly-20260127025640",
+    "@backstage/plugin-auth-backend": "0.0.0-nightly-20260129030729",
+    "@backstage/plugin-auth-node": "0.0.0-nightly-20260129030729",
     "jose": "^5.0.0",
     "node-cache": "^5.1.2",
     "zod": "^3.25.76"
   },
   "devDependencies": {
-    "@backstage/backend-test-utils": "0.0.0-nightly-20260127025640",
-    "@backstage/cli": "0.0.0-nightly-20260127025640",
+    "@backstage/backend-test-utils": "0.0.0-nightly-20260129030729",
+    "@backstage/cli": "0.0.0-nightly-20260129030729",
     "@backstage/config": "1.3.6",
     "@backstage/types": "1.2.2",
     "express": "^4.22.0",