npm - @cubist-labs/cubesigner-sdk - Versions diffs - 0.2.24 → 0.3.1 - Mend

@cubist-labs/cubesigner-sdk 0.2.24 → 0.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (147) hide show

package/README.md +30 -28
package/dist/cjs/package.json +41 -0
package/dist/cjs/spec/env/beta.json +9 -0
package/dist/cjs/spec/env/gamma.json +9 -0
package/dist/cjs/spec/env/prod.json +9 -0
package/dist/cjs/src/api.d.ts +634 -0
package/dist/cjs/src/api.js +1309 -0
package/dist/cjs/src/client.d.ts +575 -0
package/dist/cjs/src/client.js +378 -0
package/dist/cjs/src/env.d.ts +15 -0
package/dist/cjs/src/env.js +35 -0
package/dist/cjs/src/error.d.ts +29 -0
package/dist/cjs/src/error.js +36 -0
package/dist/cjs/src/events.d.ts +84 -0
package/dist/cjs/src/events.js +195 -0
package/dist/cjs/src/index.d.ts +203 -0
package/dist/cjs/src/index.js +298 -0
package/dist/cjs/src/key.d.ts +152 -0
package/dist/cjs/src/key.js +242 -0
package/dist/{src/fido.d.ts → cjs/src/mfa.d.ts} +33 -15
package/dist/cjs/src/mfa.js +169 -0
package/dist/cjs/src/org.d.ts +99 -0
package/dist/cjs/src/org.js +95 -0
package/dist/cjs/src/paginator.d.ts +76 -0
package/dist/cjs/src/paginator.js +99 -0
package/dist/cjs/src/response.d.ts +101 -0
package/dist/cjs/src/response.js +164 -0
package/dist/cjs/src/role.d.ts +283 -0
package/dist/cjs/src/role.js +253 -0
package/dist/cjs/src/schema.d.ts +6209 -0
package/dist/cjs/src/schema.js +7 -0
package/dist/cjs/src/schema_types.d.ts +113 -0
package/dist/cjs/src/schema_types.js +3 -0
package/dist/cjs/src/session/session_storage.d.ts +27 -0
package/dist/cjs/src/session/session_storage.js +47 -0
package/dist/cjs/src/session/signer_session_manager.d.ts +125 -0
package/dist/cjs/src/session/signer_session_manager.js +239 -0
package/dist/cjs/src/signer_session.d.ts +41 -0
package/dist/cjs/src/signer_session.js +77 -0
package/dist/cjs/src/user_export.d.ts +52 -0
package/dist/cjs/src/user_export.js +129 -0
package/dist/cjs/src/util.d.ts +56 -0
package/dist/cjs/src/util.js +86 -0
package/dist/esm/package.json +41 -0
package/dist/esm/spec/env/beta.json +9 -0
package/dist/esm/spec/env/gamma.json +9 -0
package/dist/esm/spec/env/prod.json +9 -0
package/dist/esm/src/api.d.ts +634 -0
package/dist/esm/src/api.js +1299 -0
package/dist/esm/src/client.d.ts +575 -0
package/dist/esm/src/client.js +374 -0
package/dist/esm/src/env.d.ts +15 -0
package/dist/esm/src/env.js +9 -0
package/dist/esm/src/error.d.ts +29 -0
package/dist/esm/src/error.js +31 -0
package/dist/esm/src/events.d.ts +84 -0
package/dist/esm/src/events.js +189 -0
package/dist/esm/src/index.d.ts +203 -0
package/dist/esm/src/index.js +276 -0
package/dist/esm/src/key.d.ts +152 -0
package/dist/esm/src/key.js +236 -0
package/dist/esm/src/mfa.d.ts +94 -0
package/dist/esm/src/mfa.js +163 -0
package/dist/esm/src/org.d.ts +99 -0
package/dist/esm/src/org.js +91 -0
package/dist/esm/src/paginator.d.ts +76 -0
package/dist/esm/src/paginator.js +94 -0
package/dist/esm/src/response.d.ts +101 -0
package/dist/esm/src/response.js +159 -0
package/dist/esm/src/role.d.ts +283 -0
package/dist/esm/src/role.js +248 -0
package/dist/esm/src/schema.d.ts +6209 -0
package/dist/esm/src/schema.js +6 -0
package/dist/esm/src/schema_types.d.ts +113 -0
package/dist/esm/src/schema_types.js +2 -0
package/dist/esm/src/session/session_storage.d.ts +27 -0
package/dist/esm/src/session/session_storage.js +43 -0
package/dist/esm/src/session/signer_session_manager.d.ts +125 -0
package/dist/esm/src/session/signer_session_manager.js +235 -0
package/dist/esm/src/signer_session.d.ts +41 -0
package/dist/esm/src/signer_session.js +72 -0
package/dist/esm/src/user_export.d.ts +52 -0
package/dist/esm/src/user_export.js +99 -0
package/dist/esm/src/util.d.ts +56 -0
package/dist/esm/src/util.js +76 -0
package/dist/package.json +13 -45
package/dist/src/api.d.ts +29 -18
package/dist/src/api.js +70 -17
package/dist/src/client.d.ts +35 -14
package/dist/src/client.js +12 -8
package/dist/src/error.d.ts +29 -0
package/dist/src/error.js +36 -0
package/dist/src/events.d.ts +1 -1
package/dist/src/events.js +1 -1
package/dist/src/index.d.ts +8 -11
package/dist/src/index.js +11 -25
package/dist/src/key.d.ts +18 -7
package/dist/src/key.js +52 -19
package/dist/src/role.d.ts +46 -3
package/dist/src/role.js +60 -8
package/dist/src/schema.d.ts +206 -72
package/dist/src/schema.js +1 -1
package/dist/src/schema_types.d.ts +3 -0
package/dist/src/schema_types.js +1 -1
package/dist/src/session/signer_session_manager.d.ts +49 -13
package/dist/src/session/signer_session_manager.js +104 -26
package/dist/src/util.d.ts +14 -0
package/dist/src/util.js +24 -27
package/package.json +19 -46
package/src/api.ts +81 -23
package/src/client.ts +12 -8
package/src/error.ts +42 -0
package/src/events.ts +3 -1
package/src/index.ts +12 -24
package/src/key.ts +36 -18
package/src/role.ts +78 -7
package/src/schema.ts +269 -110
package/src/schema_types.ts +3 -0
package/src/session/session_storage.ts +0 -32
package/src/session/signer_session_manager.ts +137 -28
package/src/util.ts +19 -10
package/tsconfig.json +1 -21
package/LICENSE-APACHE +0 -177
package/LICENSE-MIT +0 -25
package/NOTICE +0 -13
package/dist/examples/ethers.d.ts +0 -1
package/dist/examples/ethers.js +0 -142
package/dist/src/ethers/index.d.ts +0 -95
package/dist/src/ethers/index.js +0 -208
package/dist/src/fido.js +0 -148
package/dist/src/session/cognito_manager.d.ts +0 -71
package/dist/src/session/cognito_manager.js +0 -129
package/dist/src/session/generic.d.ts +0 -47
package/dist/src/session/generic.js +0 -3
package/dist/src/session/management_session_manager.d.ts +0 -59
package/dist/src/session/management_session_manager.js +0 -111
package/dist/src/session/oidc_session_manager.d.ts +0 -78
package/dist/src/session/oidc_session_manager.js +0 -142
package/dist/src/session/session_manager.d.ts +0 -99
package/dist/src/session/session_manager.js +0 -136
package/dist/src/sign.d.ts +0 -114
package/dist/src/sign.js +0 -248
package/dist/test/sessions.d.ts +0 -35
package/dist/test/sessions.js +0 -56
package/src/ethers/index.ts +0 -249
package/src/session/cognito_manager.ts +0 -161
package/src/session/session_manager.ts +0 -165

package/src/role.ts CHANGED Viewed

@@ -48,6 +48,13 @@ export type TxDepositPubkey = { TxDeposit: { kind: DepositContract; pubkey: stri
  */
 export type TxDepositRole = { TxDeposit: { kind: DepositContract; role_id: string } };
+/**
+ * Only allow connections from clients whose IP addresses match any of these IPv4 CIDR blocks.
+ *
+ * @example { SourceIpAllowlist: [ "123.456.78.9/16" ] }
+ */
+export type SourceIpAllowlist = { SourceIpAllowlist: string[] };
 /** All different kinds of sensitive operations. */
 export enum OperationKind {
   BlobSign = "BlobSign", // eslint-disable-line no-unused-vars
@@ -100,6 +107,17 @@ export type RequireMfa = {
 export const AllowRawBlobSigning = "AllowRawBlobSigning" as const;
 export type AllowRawBlobSigning = typeof AllowRawBlobSigning;
+/** Allow EIP-191 signing */
+export const AllowEip191Signing = "AllowEip191Signing" as const;
+export type AllowEip191Signing = typeof AllowEip191Signing;
+/** Allow EIP-712 signing */
+export const AllowEip712Signing = "AllowEip712Signing" as const;
+export type AllowEip712Signing = typeof AllowEip712Signing;
+/** Key policies that restrict the requests that the signing endpoints accept */
+type KeyDenyPolicy = TxReceiver | TxDeposit | SourceIpAllowlist | RequireMfa;
 /**
  * Key policy
  *
@@ -124,7 +142,15 @@ export type AllowRawBlobSigning = typeof AllowRawBlobSigning;
  *   }
  * ]
  */
-export type KeyPolicy = (TxReceiver | TxDeposit | RequireMfa | AllowRawBlobSigning)[];
+export type KeyPolicy = (
+  | KeyDenyPolicy
+  | AllowRawBlobSigning
+  | AllowEip191Signing
+  | AllowEip712Signing
+)[];
+/** Role policy */
+export type RolePolicy = KeyDenyPolicy[];
 /** A key guarded by a policy. */
 export class KeyWithPolicies {
@@ -154,15 +180,30 @@ export class KeyWithPolicies {
 /** Roles. */
 export class Role {
   readonly #csc: CubeSignerClient;
+  /** The role information */
+  #data: RoleInfo;
   /** Human-readable name for the role */
-  public readonly name?: string;
+  get name(): string | undefined {
+    return this.#data.name ?? undefined;
+  }
   /**
    * The ID of the role.
    * @example Role#bfe3eccb-731e-430d-b1e5-ac1363e6b06b
    */
-  readonly id: string;
+  get id(): string {
+    return this.#data.role_id;
+  }
+  /**
+   * @return {RoleInfo} the cached properties of this role. The cached properties
+   * reflect the state of the last fetch or update (e.g., after awaiting
+   * `Role.enabled()` or `Role.disable()`).
+   */
+  get cached(): RoleInfo {
+    return this.#data;
+  }
   /** Delete the role. */
   async delete(): Promise<void> {
@@ -185,6 +226,35 @@ export class Role {
     await this.update({ enabled: false });
   }
+  /**
+   * Set new policy (overwriting any policies previously set for this role)
+   * @param {RolePolicy} policy The new policy to set
+   */
+  async setPolicy(policy: RolePolicy) {
+    await this.update({ policy: policy as unknown as Record<string, never>[] });
+  }
+  /**
+   * Append to existing role policy. This append is not atomic---it uses
+   * {@link policy} to fetch the current policy and then {@link setPolicy}
+   * to set the policy---and should not be used in across concurrent sessions.
+   *
+   * @param {RolePolicy} policy The policy to append to the existing one.
+   */
+  async appendPolicy(policy: RolePolicy) {
+    const existing = await this.policy();
+    await this.setPolicy([...existing, ...policy]);
+  }
+  /**
+   * Get the policy for the role.
+   * @return {Promise<RolePolicy>} The policy for the role.
+   */
+  async policy(): Promise<RolePolicy> {
+    const data = await this.fetch();
+    return (data.policy ?? []) as unknown as RolePolicy;
+  }
   /**
    * The list of all users with access to the role.
    * @example [
@@ -301,8 +371,7 @@ export class Role {
    */
   constructor(csc: CubeSignerClient, data: RoleInfo) {
     this.#csc = csc;
-    this.id = data.role_id;
-    this.name = data.name ?? undefined;
+    this.#data = data;
   }
   /**
@@ -312,7 +381,8 @@ export class Role {
    * @return {Promise<RoleInfo>} The updated role information.
    */
   private async update(request: UpdateRoleRequest): Promise<RoleInfo> {
-    return await this.#csc.roleUpdate(this.id, request);
+    this.#data = await this.#csc.roleUpdate(this.id, request);
+    return this.#data;
   }
   /**
@@ -322,6 +392,7 @@ export class Role {
    * @internal
    */
   private async fetch(): Promise<RoleInfo> {
-    return await this.#csc.roleGet(this.id);
+    this.#data = await this.#csc.roleGet(this.id);
+    return this.#data;
   }
 }