@campxdev/campx-web-utils 2.1.2 → 2.1.3

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@campxdev/campx-web-utils",
-  "version": "2.1.2",
+  "version": "2.1.3",
   "author": "CampX",
   "license": "MIT",
   "keywords": [
@@ -32,6 +32,7 @@
     "@hookform/resolvers": "^2.9.10",
     "axios": "^1.7.2",
     "cookie-js": "^0.0.1",
+    "crypto-js": "^4.2.0",
     "date-fns": "^4.1.0",
     "device-detector-js": "^3.0.3",
     "framer-motion": "^11.3.21",
@@ -73,6 +74,7 @@
     "@types/babel__template": "^7.4.4",
     "@types/babel__traverse": "^7.20.6",
     "@types/bonjour": "^3.5.13",
+    "@types/crypto-js": "^4.2.2",
     "@types/jest": "^27.0.1",
     "@types/js-cookie": "^3.0.2",
     "@types/lodash": "^4.17.5",

package/src/config/axios.ts

@@ -1,6 +1,7 @@
 import Axios from 'axios';
 import Cookies from 'js-cookie';
 import { ApplicationStore } from '../context/application-store';
+import { generateClientToken } from '../utils/client-auth-token';
 import {
   institutionCode,
   isDevelopment,
@@ -77,6 +78,16 @@ axios.interceptors.request.use(
       config.headers.set('campx_open_payments_key', openPaymentsKey);
     }
 
+    // Inject client authentication token
+    const campxClientId = process.env.REACT_APP_CLIENT_ID;
+    const campxClientSecret = process.env.REACT_APP_CAMPX_CLIENT_SECRET;
+    if (campxClientId && campxClientSecret) {
+      config.headers.set(
+        'x-campx-client',
+        generateClientToken(campxClientId, campxClientSecret),
+      );
+    }
+
     // Skip sending X-institution-code if the flag is set
     if (config.skipInstitutionCode) {
       config.headers.delete('x-institution-code');

package/src/config/nonWorkspaceAxios.ts

@@ -1,6 +1,7 @@
 import Axios from 'axios';
 import Cookies from 'js-cookie';
 import { ApplicationStore } from '../context/application-store';
+import { generateClientToken } from '../utils/client-auth-token';
 import { institutionCode, isDevelopment, tenantCode } from '../utils/constants';
 
 // Get base URL from environment variables
@@ -56,6 +57,16 @@ nonWorkspaceAxios.interceptors.request.use(
       config.headers.set('campx_open_payments_key', openPaymentsKey);
     }
 
+    // Inject client authentication token
+    const campxClientId = process.env.REACT_APP_CLIENT_ID;
+    const campxClientSecret = process.env.REACT_APP_CAMPX_CLIENT_SECRET;
+    if (campxClientId && campxClientSecret) {
+      config.headers.set(
+        'x-campx-client',
+        generateClientToken(campxClientId, campxClientSecret),
+      );
+    }
+
     // Skip sending X-institution-code if the flag is set
     if (config.skipInstitutionCode) {
       config.headers.delete('x-institution-code');

package/src/utils/client-auth-token.ts

@@ -0,0 +1,17 @@
+import CryptoJS from 'crypto-js';
+
+function toBase64Url(base64: string): string {
+  return base64.replace(/\+/g, '-').replace(/\//g, '_').replace(/=/g, '');
+}
+
+export function generateClientToken(clientId: string, secret: string): string {
+  const payload = { clientId, iat: Math.floor(Date.now() / 1000) };
+  const payloadBase64url = toBase64Url(btoa(JSON.stringify(payload)));
+
+  const signatureWordArray = CryptoJS.HmacSHA256(payloadBase64url, secret);
+  const signatureBase64url = toBase64Url(
+    CryptoJS.enc.Base64.stringify(signatureWordArray),
+  );
+
+  return `${payloadBase64url}.${signatureBase64url}`;
+}