@connectid-tools/rp-nodejs-sdk 5.0.0 → 5.1.0

package/{src/model → model}/discovery-service.js

@@ -7,14 +7,24 @@
 export class DiscoveryService {
     /**
      * Fetches and parses an OIDC discovery document.
+     * Uses cache-aside pattern for performance optimization.
      *
      * @param discoveryUrl - URL to the .well-known/openid-configuration endpoint
      * @param httpAgent - Optional undici Agent for mTLS
+     * @param cache - Optional HTTP response cache
      * @returns Parsed issuer metadata
      * @throws Error if the discovery document cannot be fetched or parsed
      */
-    static async fetchDiscoveryDocument(discoveryUrl, httpAgent) {
+    static async fetchDiscoveryDocument(discoveryUrl, httpAgent, cache) {
         try {
+            // Check cache first
+            if (cache) {
+                const cachedContent = cache.get(discoveryUrl);
+                if (cachedContent) {
+                    return JSON.parse(cachedContent);
+                }
+            }
+            // Fetch from network
             const response = await fetch(discoveryUrl, {
                 method: 'GET',
                 headers: {
@@ -29,7 +39,12 @@ export class DiscoveryService {
             // Validate required fields
             this.validateDiscoveryDocument(metadata);
             // Apply mtls_endpoint_aliases if present
-            return this.applyMtlsAliases(metadata);
+            const processedMetadata = this.applyMtlsAliases(metadata);
+            // Cache successful response
+            if (cache && response.status >= 200 && response.status < 300) {
+                cache.put(discoveryUrl, JSON.stringify(processedMetadata));
+            }
+            return processedMetadata;
         }
         catch (error) {
             throw new Error(`Failed to fetch discovery document from ${discoveryUrl}: ${error instanceof Error ? error.message : String(error)}`);
@@ -37,14 +52,24 @@ export class DiscoveryService {
     }
     /**
      * Fetches and parses a JWKS document.
+     * Uses cache-aside pattern for performance optimization.
      *
      * @param jwksUri - URL to the JWKS endpoint
      * @param httpAgent - Optional HTTPS agent for mTLS
+     * @param cache - Optional HTTP response cache
      * @returns Parsed JWKS
      * @throws Error if the JWKS cannot be fetched or parsed
      */
-    static async fetchJwks(jwksUri, httpAgent) {
+    static async fetchJwks(jwksUri, httpAgent, cache) {
         try {
+            // Check cache first
+            if (cache) {
+                const cachedContent = cache.get(jwksUri);
+                if (cachedContent) {
+                    return JSON.parse(cachedContent);
+                }
+            }
+            // Fetch from network
             const response = await fetch(jwksUri, {
                 method: 'GET',
                 headers: {
@@ -60,6 +85,10 @@ export class DiscoveryService {
             if (!jwks.keys || !Array.isArray(jwks.keys)) {
                 throw new Error('Invalid JWKS: missing or invalid keys array');
             }
+            // Cache successful response
+            if (cache && response.status >= 200 && response.status < 300) {
+                cache.put(jwksUri, JSON.stringify(jwks));
+            }
             return jwks;
         }
         catch (error) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@connectid-tools/rp-nodejs-sdk",
-  "version": "5.0.0",
+  "version": "5.1.0",
   "description": "Digital Identity Relying Party Node SDK",
   "main": "relying-party-client-sdk.js",
   "types": "relying-party-client-sdk.d.ts",

package/{src/relying-party-client-sdk.js → relying-party-client-sdk.js}

@@ -5,6 +5,7 @@ import { illegalPurposeChars, isValidCertificate, validatePurpose } from './vali
 import { CryptoLoader } from './crypto/crypto-loader.js';
 import { JwtHelper } from './crypto/jwt-helper.js';
 import { HttpClientFactory } from './http/http-client-factory.js';
+import { HttpResponseCache } from './cache/http-response-cache.js';
 import { ParticipantsEndpoint } from './endpoints/participants-endpoint.js';
 import { PushedAuthorisationRequestEndpoint } from './endpoints/pushed-authorisation-request-endpoint.js';
 import { RetrieveTokenEndpoint } from './endpoints/retrieve-token-endpoint.js';
@@ -27,7 +28,7 @@ export default class RelyingPartyClientSdk {
             throw new Error('Either ca_pem or ca_pem_content must be provided');
         }
         this.logger = getLogger(this.config.data.log_level);
-        this.logger.info(`Creating RelyingPartyClientSdk - version ${process.env.SDK_VERSION}`);
+        this.logger.info(`Creating RelyingPartyClientSdk - version 5.1.0`);
         // Validate and set purpose
         if (this.config.data.purpose) {
             const purposeValidation = validatePurpose(this.config.data.purpose);
@@ -73,11 +74,19 @@ export default class RelyingPartyClientSdk {
             caPem: getCertificate(this.config.data.ca_pem, this.config.data.ca_pem_content),
             clientId: this.config.data.client_id,
         });
+        // Initialize HTTP response cache
+        const cacheConfig = {
+            enabled: this.config.data.http_cache?.enabled ?? true,
+            ttlMinutes: this.config.data.http_cache?.ttl_minutes ?? 10,
+            maxEntries: this.config.data.http_cache?.max_entries ?? 100,
+            maxElementSizeBytes: this.config.data.http_cache?.max_element_size_bytes ?? 5242880,
+        };
+        const httpCache = new HttpResponseCache(cacheConfig, this.logger);
         // Initialize endpoints
-        this.participantsEndpoint = new ParticipantsEndpoint(this.config, new ParticipantFilters(), this.httpClient, this.logger, () => this.getCurrentDate());
-        this.pushedAuthorisationRequestEndpoint = new PushedAuthorisationRequestEndpoint(this.config, this.httpClient, this.jwtHelper, this.logger, this.participantsEndpoint);
-        this.retrieveTokenEndpoint = new RetrieveTokenEndpoint(this.config, this.httpClient, this.jwtHelper, this.logger, this.participantsEndpoint);
-        this.userInfoEndpoint = new UserInfoEndpoint(this.httpClient, this.logger, this.config.data.client_id, this.participantsEndpoint);
+        this.participantsEndpoint = new ParticipantsEndpoint(this.config, new ParticipantFilters(), this.httpClient, this.logger, () => this.getCurrentDate(), httpCache);
+        this.pushedAuthorisationRequestEndpoint = new PushedAuthorisationRequestEndpoint(this.config, this.httpClient, this.jwtHelper, this.logger, this.participantsEndpoint, httpCache);
+        this.retrieveTokenEndpoint = new RetrieveTokenEndpoint(this.config, this.httpClient, this.jwtHelper, this.logger, this.participantsEndpoint, httpCache);
+        this.userInfoEndpoint = new UserInfoEndpoint(this.httpClient, this.logger, this.config.data.client_id, this.participantsEndpoint, httpCache);
     }
     /**
      * Get the list of participating identity providers within the scheme.

package/{src/types.d.ts → types.d.ts}

@@ -2,6 +2,12 @@ import { IdTokenClaims } from './model/claims.js';
 export type { IdTokenClaims, AddressClaim, VerifiedClaims } from './model/claims.js';
 export type { CallbackParams } from './model/callback-params.js';
 export type { TokenResponse } from './model/token-response.js';
+export type HttpCacheConfig = {
+    enabled?: boolean;
+    ttl_minutes?: number;
+    max_entries?: number;
+    max_element_size_bytes?: number;
+};
 export type RelyingPartyClientSdkConfig = {
     data: {
         ca_pem?: string;
@@ -24,6 +30,7 @@ export type RelyingPartyClientSdkConfig = {
         enable_auto_compliance_verification: boolean;
         purpose?: string;
         client_id: string;
+        http_cache?: HttpCacheConfig;
     };
 };
 export type Participant = {

package/{src/utils → utils}/user-agent.d.ts

@@ -1,2 +1,2 @@
-export declare const packageJsonVersion = "5.0.0";
+export declare const packageJsonVersion = "5.1.0";
 export declare const buildUserAgent: (clientId: string) => string;

package/{src/utils → utils}/user-agent.js

@@ -1,4 +1,4 @@
 import { getSystemInformation } from './system-information.js';
 // important: Update this every time the package version changes
-export const packageJsonVersion = '5.0.0';
+export const packageJsonVersion = '5.1.0';
 export const buildUserAgent = (clientId) => `cid-rp-nodejs-sdk/${packageJsonVersion} ${getSystemInformation()} +${clientId}`;

package/src/conformance/config.json

@@ -1,60 +0,0 @@
-{
-    "alias": "conformancetest",
-    "client": {
-        "certificate": "-----BEGIN CERTIFICATE-----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\nX5lsYKc5Hf4Dll4t8Hb/fhjV\n-----END CERTIFICATE-----",
-        "client_id": "https://rp.directory.sandbox.connectid.com.au/openid_relying_party/280518db-9807-4824-b080-324d94b45f6a",
-        "jwks": {
-            "keys": [
-                {
-                    "kty": "RSA",
-                    "use": "sig",
-                    "x5c": [
-                        "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"
-                    ],
-                    "n": "t2eb7rTIFqQHzFmzLrWvDl5qqVqFOg5uugiJqKLdh4XYTpOE-Io2aZ7VB21NZNy89oV4o4_RdQwVcFOR94Oybimp8Pubjz89Wi2da4R7W-zSPkD8eehaAuFTzMPNWbS3hwXWt2oew19KtL35Hkkz6VCyTVauejZEXMmhWVM-Y4HslUZGcM9zgVW6juLRWlEdbRft5vQl2SSwPOuGz_S_f-ME2CRugQ89Uo19qqF1ptXlJwlZaq2QQFMd_3ioGpLJkSRjU4n8ugXG7myGMXy3IcArdFt5WQz5JwVWSru2oVL6tFZW1b8IgPtTZ48PVQz_e-Y5vKq7sCcTI0Lgrxie2w",
-                    "e": "AQAB",
-                    "kid": "lHf9shwoF1wEES2sB9TBafbs0AVrLiU-1_ntzCrBo8A",
-                    "x5u": "https://keystore.directory.sandbox.connectid.com.au/ab837240-9618-4953-966e-90fd1fa63999/280518db-9807-4824-b080-324d94b45f6a/lHf9shwoF1wEES2sB9TBafbs0AVrLiU-1_ntzCrBo8A.pem",
-                    "x5t#S256": "lHf9shwoF1wEES2sB9TBafbs0AVrLiU-1_ntzCrBo8A",
-                    "x5dn": "CN=280518db-9807-4824-b080-324d94b45f6a,OU=ab837240-9618-4953-966e-90fd1fa63999,O=connectid,C=AU"
-                },
-                {
-                    "kty": "RSA",
-                    "use": "sig",
-                    "x5c": [
-                        "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"
-                    ],
-                    "n": "ikku68s3okqL55DLEfiR02l0SMUn9UfZdhOUSGfkrEGBKRuf2ZeUJqGB6jG_bUOuvAL1HQjeddCNkaxpCTfRGKSI3D0p2fr-Aswq_Ms4J2jtkJ_bDL0Zdpjsf0hekKf1j1WCvCJK7zFQ6N7OA5oVp6UFtTFuT68ymeHB5lubKLSkjL4f5SbZBZ-jHw-zoIyiptd0y1KiXXCoIxEbd3Y5b_Dx5aG2YTVzidB0V-RUDoAKJYQbJMVYzlq30P3TkXWD5qwIa6GZr_CZpw6SncbkNqZMDQzgqFhd8J0KczVThXf-qlc4LNh0g0wbYjNcidQ6FDCHJESzDiZwECXT_XFc_w",
-                    "e": "AQAB",
-                    "kid": "6kWTo-i7nrIJrdl6jxfDyT0Nprw-aRT0mcZvxvXtKVE",
-                    "x5u": "https://keystore.directory.sandbox.connectid.com.au/ab837240-9618-4953-966e-90fd1fa63999/280518db-9807-4824-b080-324d94b45f6a/6kWTo-i7nrIJrdl6jxfDyT0Nprw-aRT0mcZvxvXtKVE.pem",
-                    "x5t#S256": "6kWTo-i7nrIJrdl6jxfDyT0Nprw-aRT0mcZvxvXtKVE",
-                    "x5dn": "CN=280518db-9807-4824-b080-324d94b45f6a,OU=ab837240-9618-4953-966e-90fd1fa63999,O=connectid,C=AU"
-                }
-            ]
-        },
-        "redirect_uri": "https://tpp.localhost/cb"
-    },
-    "consent": {},
-    "description": "NodeJS Conformance Test Template",
-    "server": {
-        "jwks": {
-            "keys": [
-                {
-                    "p": "9ROiJdNH4qHPe4K92GpxUpQY2T2EP2KjbdOp16TFaL6DmXdZLaJzaYEpinR4NtSnuEpO2nl441_kma1JP99p6VdtmLUvTRUeCEUJXdFh_bqhc0INfGHRuXNBeLLQFcrRRS5Vhi50IM_NqYmpO1GEshxNYfKCweTCTkEwsJzIZkM",
-                    "kty": "RSA",
-                    "q": "nluxAF8DH-LhGz8qB3qzVhBaD7y5JB_pZ3SMaYPCV92yWXRysgNvYx2CyaWOtrIPabfzTBauR1XXEiLccxzQRy2f8bQ7pwJZtQJJtmC4UwCnNnIcdQ1WsjzzHMqd0p45gJQVnXpxmPfThIZeotToW4f4CTHZjJW8fKbd2zDg61U",
-                    "d": "a6N1dGahEGBMd9KYBbwyuliqebughkoNsUeBRFDg29wReDYDfxsCx9nIqS-xNtkkVQYdG7t8FKL8IVapbuJGFcLKvu_w6kbJ7v2csTN71DETrIH4W1xHlor0QuCShYdKeUG_xZjkBznVv8m_2FwzpRNo4WaVHQGwNoiBU5cIBmeA9XxlaGuabaagU6F0z4ArJzl0DIR6XjLYH8DTxb4KFuMvouBS_o9eDw-t1ubU5ffD28nyOY7UvSTd2_kUw4xyWqfyCvN5oTvFNFaJ8EmgkaycvPDkxqWIWOBRoCEk2gAz0UV14t4iPCV75czuA5dc9HlzAh57Ds3k3frm8jAUoQ",
-                    "e": "AQAB",
-                    "use": "sig",
-                    "kid": "ruWVspGvgNx3V22h4ufR9yr64sjuOaaVwDB_i5rwdOM",
-                    "qi": "0dm4Eb27B9VAP8SoXfE7aUSp0RimmBN3LKlucdL5h1LGyaCFNeRgYHJHo6BL33TKL-tL8m9y0ztyePtVe_EMGtP0QEws6oti8-SUK0ynQ4cXet8fH5uqJx-ArGgW_KDi3xvTeScy4faK3toyzStPZCG4jFdWyv1f2vbv4qg4rDU",
-                    "dp": "8fkPmK8yA6bl17nvvbTi7LjCjAN8BqVaXT6mK_9I1jF8d9Lp3u_NafcYT9bNNr3iV0gu8PEMldsBN2Zrsz_gL36d_C-wYzgdbebT56irSryxWb522D8wth0BIK3UXB_jXZ3w3UoSaK8kDWeZCrNjBASDttidl9lIq8Eb1NUH3Ec",
-                    "alg": "PS256",
-                    "dq": "TTdAc4HgsCecxABkqgj2cTy_7XSEgkzdLojx_nE0zktXr67MTmjGY3n8T_7eO89PHKmJhMx6ZmZA3KMLA0ZFeK-SkfTkMWc__rcC4l7_AdoLrsyte5XpdDesA5n4or5sI3oRoBwYUBJnnPM4KgXO1vLRywn3nklVAyMKgtqukZE",
-                    "n": "l5nlgOnp5m-klhQGYjcxytnu-vM6CpPFyhzuLII31Y4JT2sJjpItN4DOWRVs5sWL7aj_otQNYWrBz9JJOUJJ2oGIQDq2UBn9nHDTKqCWCZ8r2Gtq9U7z-mFfHx8f67hY6KFmeuMdVcqCBcNN76ZHtCkvRiziglvtYkMpovWF2cGqeyCuunlTr0clMe2N_iA0wOgLwiYDBtvqLi8DBshRcGzTHHlncW-OLdspu0saOb2igGMEaBAuzY2EsL0E2jZODB5bfPfA3WDuo7Swi2FVqDuaudm3pJofOr02lDidJNQCOBJRJhHVH867vFK12_xtgCDAydWn9qNub19nDwl1Pw"
-                }
-            ]
-        }
-    }
-}

package/src/conformance/conformance.test.d.ts

@@ -1 +0,0 @@
-export {};

package/src/conformance/conformance.test.js

@@ -1,101 +0,0 @@
-import RelyingPartyClientSdk from '../relying-party-client-sdk.js';
-import { conformanceConfig } from './conformance-config.js';
-import config from './config.json';
-import variant from './variant.json';
-import packageJson from '../../package.json';
-import { parse } from 'url';
-import { ConformanceApi } from './api/conformance-api.js';
-import winston from 'winston';
-import { describe, before, it } from 'node:test';
-import assert from 'node:assert';
-const alias = 'conformance-nodejs-' + Date.now();
-const conformanceEnv = process.env.CONFORMANCE_ENV || 'production';
-const conformanceApiToken = process.env.CONFORMANCE_API_TOKEN || '';
-const conformanceNodeVersion = process.env.CONFORMANCE_NODE_VERSION || 'unknown';
-const participantsEnv = conformanceEnv === 'production' ? '' : conformanceEnv;
-conformanceConfig.data.registry_participants_uri = `https://api.sandbox.connectid.com.au/oidf-conformance/participants?alias=a/${alias}&env=${participantsEnv}`;
-const rpClient = new RelyingPartyClientSdk(conformanceConfig);
-const conformanceEnvUrls = new Map([
-    ['staging', 'https://staging.certification.openid.net/'],
-    ['production', 'https://www.certification.openid.net/']
-]);
-const conformanceBaseUrl = conformanceEnvUrls.get(conformanceEnv);
-console.log(`Selected environment ${conformanceEnv}, baseUrl: ${conformanceBaseUrl}`);
-const conformanceApi = new ConformanceApi(conformanceApiToken, conformanceBaseUrl);
-describe('Conformance Test', { timeout: 600000 }, () => {
-    let planInfo;
-    before(async () => {
-        const planName = 'fapi2-message-signing-id1-client-test-plan';
-        config.description = `NodeJS SDK ${packageJson.version} (NodeJS v${conformanceNodeVersion})`;
-        config.alias = alias;
-        planInfo = await conformanceApi.createPlan(planName, JSON.stringify(variant), config);
-    });
-    it('should execute the conformance test', async () => {
-        const testModules = planInfo.modules.map((module) => module.testModule);
-        for (const testName of testModules) {
-            console.log(`Executing test ${testName}`);
-            // We are mimicking an application log here.
-            const logger = createTestLogger(testName);
-            rpClient.logger = logger;
-            const testInstance = await conformanceApi.createTestFromPlan(planInfo.id, testName);
-            let testInformation = await conformanceApi.getTestInformation(testInstance.id);
-            logger.info(`Executing version ${testInformation.version} of ${testName}`);
-            console.log(`See ${conformanceBaseUrl}log-detail.html?log=${testInstance.id}`);
-            const idps = await rpClient.getParticipants();
-            const authorisationServerId = idps[0].AuthorisationServers[0].AuthorisationServerId;
-            logger.info(`Sending PAR to ${authorisationServerId}`);
-            const essentialClaims = ['given_name', 'middle_name', 'family_name', 'phone_number', 'email', 'address', 'birthdate', 'txn'];
-            const parResponse = await rpClient.sendPushedAuthorisationRequest(authorisationServerId, essentialClaims);
-            const response = await fetch(parResponse.authUrl, {
-                redirect: 'manual',
-            });
-            if (response.status !== 303) {
-                console.error(`Expected 303, got ${response.status}`);
-                throw new Error(`Expected 303, got ${response.status}`);
-            }
-            const location = response.headers.get('location');
-            if (!location) {
-                throw new Error('No location header');
-            }
-            const locationObj = parse(location, true);
-            logger.info(`Executing ${testName}`);
-            try {
-                logger.info('Getting tokens');
-                await rpClient.retrieveTokens(authorisationServerId, locationObj.query, parResponse.codeVerifier, parResponse.state, parResponse.nonce);
-                logger.info('Tokens successfully retrieved');
-            }
-            catch (e) {
-                logger.error('An error occured while getting tokens:' + getErrorMessage(e));
-                console.log(e);
-            }
-            while (testInformation.status !== 'FINISHED') {
-                await delay(250);
-                testInformation = await conformanceApi.getTestInformation(testInstance.id);
-            }
-            logger.info(`Test finished with result: ${testInformation.result}, status: ${testInformation.status}`);
-            console.log('Full test information:', JSON.stringify(testInformation, null, 2));
-            assert.ok(['WARNING', 'PASSED'].includes(testInformation.result));
-            if (testInformation.result === 'WARNING') {
-                console.log(`*** A warning occurred while executing ${testName}, please check the logs!!! ***`);
-            }
-            // TODO: download the logs and store them in Github
-        }
-    });
-});
-function delay(time) {
-    // @ts-ignore
-    return new Promise((resolve) => setTimeout(resolve, time));
-}
-function getErrorMessage(error) {
-    if (error instanceof Error)
-        return error.message;
-    return String(error);
-}
-function createTestLogger(testName) {
-    return winston.createLogger({
-        level: 'info',
-        format: winston.format.simple(),
-        defaultMeta: { service: 'conformance-test' },
-        transports: [new winston.transports.File({ filename: `logs/${testName}.log` })],
-    });
-}

package/src/conformance/variant.json

@@ -1 +0,0 @@
-{ "client_auth_type": "private_key_jwt", "fapi_request_method": "signed_non_repudiation", "fapi_client_type": "oidc", "sender_constrain": "mtls", "fapi_profile": "connectid_au", "fapi_response_mode": "plain_response" }

package/src/integration/integration.test.d.ts

@@ -1 +0,0 @@
-export {};

package/src/integration/integration.test.js

@@ -1,30 +0,0 @@
-import jsonPackage from '../../package.json';
-import { describe, it } from 'node:test';
-import assert from 'node:assert';
-import { config } from '../config.js';
-import RelyingPartyClientSdk from '../relying-party-client-sdk.js';
-describe('RelyingPartyClientSdk', () => {
-    it('should retrieve user agent and match details', async () => {
-        const version = jsonPackage.version;
-        const newConfig = {
-            ...config,
-            data: {
-                ...config.data,
-                registry_participants_uri: 'https://api.sandbox.connectid.com.au/useragent-responder/participants',
-            },
-        };
-        const participants = await new RelyingPartyClientSdk(newConfig).getParticipants();
-        const regex = /(.*?)\/(.*?)\s(\(.*?\))\s(\+.*)/;
-        const organisationName = participants[0].OrganisationName;
-        const match = organisationName.match(regex);
-        assert.ok(match, `Organisation name '${organisationName}' failed to match pattern '${regex.source}'`);
-        const namePart = match[1];
-        const versionPart = match[2];
-        const platformPart = match[3].trim();
-        const clientIdPart = match[4];
-        assert.strictEqual(namePart, 'cid-rp-nodejs-sdk');
-        assert.strictEqual(versionPart, version);
-        assert.match(platformPart, /\(.+; .+; .+\)/);
-        assert.strictEqual(clientIdPart, '+https://rp.directory.sandbox.connectid.com.au/openid_relying_party/280518db-9807-4824-b080-324d94b45f6a');
-    });
-});

package/src/tests/cert-utils.test.d.ts

@@ -1 +0,0 @@
-export {};

package/src/tests/cert-utils.test.js

@@ -1,13 +0,0 @@
-import test from 'node:test';
-import assert from 'node:assert';
-import { getCertificate } from '../utils/cert-utils.js';
-test('should use content when certificate content and path are passed', () => {
-    assert.strictEqual(getCertificate('.gitignore', 'abcdefg'), 'abcdefg');
-});
-test('should use path when content is falsy', () => {
-    assert.ok(getCertificate('.gitignore', '').toString().includes('# These are some examples of commonly ignored file patterns.'));
-    // @ts-ignore
-    assert.ok(getCertificate('.gitignore', 0).toString().includes('# These are some examples of commonly ignored file patterns.'));
-    // @ts-ignore
-    assert.ok(getCertificate('.gitignore', null).toString().includes('# These are some examples of commonly ignored file patterns.'));
-});

package/src/tests/functional-utils.test.d.ts

@@ -1 +0,0 @@
-export {};

package/src/tests/functional-utils.test.js

@@ -1,13 +0,0 @@
-import test from 'node:test';
-import { partition } from '../utils/functional-utils.js';
-import assert from 'node:assert';
-test('should partition list', () => {
-    const [odd, even] = partition([1, 2, 3, 4, 5], (input) => input % 2 == 1);
-    assert.deepEqual(odd, [1, 3, 5]);
-    assert.deepEqual(even, [2, 4]);
-});
-test('should partition empty list', () => {
-    const [odd, even] = partition([], (input) => input % 2 == 1);
-    assert.deepEqual(odd, []);
-    assert.deepEqual(even, []);
-});

package/src/tests/participant-filters.test.d.ts

@@ -1 +0,0 @@
-export {};

package/src/tests/participant-filters.test.js

@@ -1,151 +0,0 @@
-import ParticipantFilter from '../filter/participant-filters.js';
-import { participantsTestData } from '../test-data/participants-test-data.js';
-import { describe, it } from 'node:test';
-import assert from 'node:assert';
-const participantsFilter = new ParticipantFilter();
-describe('removeOutOfDateCertifications', () => {
-    it('should remove all certifications as they are all after the specified date', () => {
-        const filteredParticipants = participantsFilter.removeOutOfDateCertifications(getParticipantsTestData(), new Date('2005-01-01'));
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers[0].AuthorisationServerCertifications.length, 0);
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers[1].AuthorisationServerCertifications.length, 0);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers[0].AuthorisationServerCertifications.length, 0);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers[0].AuthorisationServerCertifications.length, 0);
-    });
-    it('should keep all certification as they span the specified date', () => {
-        const filteredParticipants = participantsFilter.removeOutOfDateCertifications(getParticipantsTestData(), new Date('2024-01-01'));
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers[0].AuthorisationServerCertifications.length, 4);
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers[1].AuthorisationServerCertifications.length, 4);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers[0].AuthorisationServerCertifications.length, 4);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers[0].AuthorisationServerCertifications.length, 1);
-    });
-    it('should keep all certification that span the specified date', () => {
-        const filteredParticipants = participantsFilter.removeOutOfDateCertifications(getParticipantsTestData(), new Date('2024-05-20'));
-        const testData = getParticipantsTestData();
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers[0].AuthorisationServerCertifications.length, 3);
-        assert.ok(!filteredParticipants[0].AuthorisationServers[0].AuthorisationServerCertifications.includes(testData[0].AuthorisationServers[0].AuthorisationServerCertifications[0]));
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers[1].AuthorisationServerCertifications.length, 2);
-        assert.ok(!filteredParticipants[0].AuthorisationServers[1].AuthorisationServerCertifications.includes(testData[0].AuthorisationServers[1].AuthorisationServerCertifications[0]));
-        assert.ok(!filteredParticipants[0].AuthorisationServers[1].AuthorisationServerCertifications.includes(testData[0].AuthorisationServers[1].AuthorisationServerCertifications[1]));
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers[0].AuthorisationServerCertifications.length, 1);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers[0].AuthorisationServerCertifications.length, 0);
-    });
-    it('should remove all certifications as they are all before the specified date', () => {
-        const filteredParticipants = participantsFilter.removeOutOfDateCertifications(getParticipantsTestData(), new Date('2025-01-01'));
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers[0].AuthorisationServerCertifications.length, 0);
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers[1].AuthorisationServerCertifications.length, 0);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers[0].AuthorisationServerCertifications.length, 0);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers[0].AuthorisationServerCertifications.length, 0);
-    });
-});
-describe('removeUnofficialCertifications', () => {
-    it('should remove certifications that do not have status "Certified"', () => {
-        const filteredParticipants = participantsFilter.removeUnofficialCertifications(getParticipantsTestData());
-        const testData = getParticipantsTestData();
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers[0].AuthorisationServerCertifications.length, 3);
-        assert.ok(!filteredParticipants[0].AuthorisationServers[0].AuthorisationServerCertifications.includes(testData[0].AuthorisationServers[0].AuthorisationServerCertifications[3]));
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers[1].AuthorisationServerCertifications.length, 3);
-        assert.ok(!filteredParticipants[0].AuthorisationServers[1].AuthorisationServerCertifications.includes(testData[0].AuthorisationServers[1].AuthorisationServerCertifications[2]));
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers[0].AuthorisationServerCertifications.length, 0);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers[0].AuthorisationServerCertifications.length, 1);
-    });
-});
-describe('removeInactiveAuthServers', () => {
-    it('should remove Auth Servers that do not have the Redirect:FAPI certification', () => {
-        const filteredParticipants = participantsFilter.removeInactiveAuthServers(getParticipantsTestData());
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers.length, 2);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers.length, 0);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers.length, 0);
-    });
-});
-describe('removeParticipantsWithoutAuthServers', () => {
-    it('should remove Participants that do not have any auth servers', () => {
-        const participants = getParticipantsTestData();
-        participants[1].AuthorisationServers = [];
-        const filteredParticipants = participantsFilter.removeParticipantsWithoutAuthServers(participants);
-        assert.strictEqual(filteredParticipants.length, 2);
-        assert.ok(filteredParticipants.includes(participants[0]));
-        assert.ok(filteredParticipants.includes(participants[2]));
-    });
-});
-describe('filterAuthServersForSupportedClaims', () => {
-    it('should filter auth servers that do not have the over25 required claims', () => {
-        const filteredParticipants = participantsFilter.filterAuthServersForSupportedClaims(getParticipantsTestData(), ['over25']);
-        const testData = getParticipantsTestData();
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers.length, 1);
-        assert.deepStrictEqual(filteredParticipants[0].AuthorisationServers[0], testData[0].AuthorisationServers[0]);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers.length, 0);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers.length, 0);
-    });
-    it('should filter auth servers that match multiple required claims', () => {
-        const filteredParticipants = participantsFilter.filterAuthServersForSupportedClaims(getParticipantsTestData(), ['address', 'over18']);
-        const testData = getParticipantsTestData();
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers.length, 0);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers.length, 1);
-        assert.deepStrictEqual(filteredParticipants[1].AuthorisationServers[0], testData[1].AuthorisationServers[0]);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers.length, 0);
-    });
-    it('should find auth servers with the name claim when asking for a name component', () => {
-        const filteredParticipants = participantsFilter.filterAuthServersForSupportedClaims(getParticipantsTestData(), ['given_name']);
-        const testData = getParticipantsTestData();
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers.length, 1);
-        assert.deepStrictEqual(filteredParticipants[0].AuthorisationServers[0], testData[0].AuthorisationServers[0]);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers.length, 0);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers.length, 0);
-    });
-});
-describe('removeFallbackIdentityServiceProvider', () => {
-    it('should filter out any manual verification auth servers', () => {
-        const filteredParticipants = participantsFilter.removeFallbackIdentityServiceProvider(getParticipantsTestData());
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers.length, 2);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers.length, 1);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers.length, 0);
-    });
-});
-describe('filterForFallbackIdentityServiceProviders', () => {
-    it('should return any auth servers that have the fallback provider certification', () => {
-        const filteredParticipants = participantsFilter.filterForFallbackIdentityServiceProviders(getParticipantsTestData());
-        const testData = getParticipantsTestData();
-        assert.strictEqual(filteredParticipants.length, 3);
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers.length, 0);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers.length, 0);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers.length, 1);
-        assert.deepStrictEqual(filteredParticipants[2], testData[2]);
-    });
-});
-describe('filterForRequiredCertifications', () => {
-    it('should return any auth servers that have the TDIF provider certification', () => {
-        const certificationFilters = [{ profileVariant: 'Identity Provider', profileType: 'TDIF Accreditation' }];
-        const filteredParticipants = participantsFilter.filterForRequiredCertifications(getParticipantsTestData(), certificationFilters);
-        const testData = getParticipantsTestData();
-        assert.deepStrictEqual(filteredParticipants[0].AuthorisationServers[0], testData[0].AuthorisationServers[1]);
-        assert.deepStrictEqual(filteredParticipants[1].AuthorisationServers[0], testData[1].AuthorisationServers[0]);
-        assert.strictEqual(filteredParticipants.length, 3);
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers.length, 1);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers.length, 1);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers.length, 0);
-    });
-    it('should return no auth servers when no auth servers have the requested certification', () => {
-        const certificationFilters = [{ profileType: 'Bad Profile', profileVariant: 'Bad Variant' }];
-        const filteredParticipants = participantsFilter.filterForRequiredCertifications(getParticipantsTestData(), certificationFilters);
-        assert.strictEqual(filteredParticipants.length, 3);
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers.length, 0);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers.length, 0);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers.length, 0);
-    });
-    it('should return only auth servers that have all matching certifications', () => {
-        const certificationFilters = [
-            { profileType: 'TDIF Accreditation', profileVariant: 'Identity Provider' },
-            { profileType: 'Channel', profileVariant: 'web' },
-        ];
-        const filteredParticipants = participantsFilter.filterForRequiredCertifications(getParticipantsTestData(), certificationFilters);
-        const testData = getParticipantsTestData();
-        assert.deepStrictEqual(filteredParticipants[0].AuthorisationServers[0], testData[0].AuthorisationServers[1]);
-        assert.strictEqual(filteredParticipants.length, 3);
-        assert.strictEqual(filteredParticipants[0].AuthorisationServers.length, 1);
-        assert.strictEqual(filteredParticipants[1].AuthorisationServers.length, 0);
-        assert.strictEqual(filteredParticipants[2].AuthorisationServers.length, 0);
-    });
-});
-function getParticipantsTestData() {
-    return JSON.parse(JSON.stringify(participantsTestData));
-}

package/src/tests/pushed-authorisation-request-endpoint.test.d.ts

@@ -1 +0,0 @@
-export {};