@cubist-labs/cubesigner-sdk 0.3.25 → 0.3.26
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/cjs/package.json +1 -1
- package/dist/cjs/src/env.js +9 -29
- package/dist/esm/package.json +1 -1
- package/dist/esm/src/env.js +4 -4
- package/package.json +1 -1
- package/src/env.ts +3 -3
- package/dist/cjs/src/org_event_processor.d.ts +0 -57
- package/dist/cjs/src/org_event_processor.js +0 -137
- package/dist/esm/src/org_event_processor.d.ts +0 -57
- package/dist/esm/src/org_event_processor.js +0 -133
- package/dist/package.json +0 -36
- package/dist/spec/env/beta.json +0 -9
- package/dist/spec/env/gamma.json +0 -9
- package/dist/spec/env/prod.json +0 -9
- package/dist/src/api.d.ts +0 -634
- package/dist/src/api.js +0 -1309
- package/dist/src/client.d.ts +0 -575
- package/dist/src/client.js +0 -381
- package/dist/src/env.d.ts +0 -15
- package/dist/src/env.js +0 -35
- package/dist/src/error.d.ts +0 -29
- package/dist/src/error.js +0 -36
- package/dist/src/events.d.ts +0 -84
- package/dist/src/events.js +0 -195
- package/dist/src/index.d.ts +0 -207
- package/dist/src/index.js +0 -308
- package/dist/src/key.d.ts +0 -152
- package/dist/src/key.js +0 -242
- package/dist/src/mfa.d.ts +0 -94
- package/dist/src/mfa.js +0 -169
- package/dist/src/org.d.ts +0 -99
- package/dist/src/org.js +0 -95
- package/dist/src/paginator.d.ts +0 -76
- package/dist/src/paginator.js +0 -99
- package/dist/src/response.d.ts +0 -101
- package/dist/src/response.js +0 -164
- package/dist/src/role.d.ts +0 -283
- package/dist/src/role.js +0 -253
- package/dist/src/schema.d.ts +0 -6209
- package/dist/src/schema.js +0 -7
- package/dist/src/schema_types.d.ts +0 -113
- package/dist/src/schema_types.js +0 -3
- package/dist/src/session/session_storage.d.ts +0 -47
- package/dist/src/session/session_storage.js +0 -76
- package/dist/src/session/signer_session_manager.d.ts +0 -125
- package/dist/src/session/signer_session_manager.js +0 -239
- package/dist/src/signer_session.d.ts +0 -41
- package/dist/src/signer_session.js +0 -77
- package/dist/src/user_export.d.ts +0 -52
- package/dist/src/user_export.js +0 -129
- package/dist/src/util.d.ts +0 -61
- package/dist/src/util.js +0 -97
package/dist/src/events.js
DELETED
|
@@ -1,195 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
var __classPrivateFieldSet = (this && this.__classPrivateFieldSet) || function (receiver, state, value, kind, f) {
|
|
3
|
-
if (kind === "m") throw new TypeError("Private method is not writable");
|
|
4
|
-
if (kind === "a" && !f) throw new TypeError("Private accessor was defined without a setter");
|
|
5
|
-
if (typeof state === "function" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError("Cannot write private member to an object whose class did not declare it");
|
|
6
|
-
return (kind === "a" ? f.call(receiver, value) : f ? f.value = value : state.set(receiver, value)), value;
|
|
7
|
-
};
|
|
8
|
-
var __classPrivateFieldGet = (this && this.__classPrivateFieldGet) || function (receiver, state, kind, f) {
|
|
9
|
-
if (kind === "a" && !f) throw new TypeError("Private accessor was defined without a getter");
|
|
10
|
-
if (typeof state === "function" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError("Cannot read private member from an object whose class did not declare it");
|
|
11
|
-
return kind === "m" ? f : kind === "a" ? f.call(receiver) : f ? f.value : state.get(receiver);
|
|
12
|
-
};
|
|
13
|
-
var _EventDispatcher_handlers, _Events_onError, _Events_onSessionExpired, _EventEmitter_events;
|
|
14
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
15
|
-
exports.GlobalEvents = exports.EventEmitter = exports.Events = exports.messageMatchesSessionExpired = void 0;
|
|
16
|
-
/**
|
|
17
|
-
* Dispatcher for a single event type.
|
|
18
|
-
*
|
|
19
|
-
* Provides methods for registering and unregistering handlers,
|
|
20
|
-
* as well as dispatching events to all registered handlers.
|
|
21
|
-
*/
|
|
22
|
-
class EventDispatcher {
|
|
23
|
-
/**
|
|
24
|
-
* Constructor.
|
|
25
|
-
*/
|
|
26
|
-
constructor() {
|
|
27
|
-
_EventDispatcher_handlers.set(this, void 0);
|
|
28
|
-
__classPrivateFieldSet(this, _EventDispatcher_handlers, [], "f");
|
|
29
|
-
}
|
|
30
|
-
/**
|
|
31
|
-
* Register a new handler.
|
|
32
|
-
*
|
|
33
|
-
* @param {EventHandler<T>} handler Event handler to register
|
|
34
|
-
* @return {EventDispatcher<T>} This instance to allow for chaining.
|
|
35
|
-
*/
|
|
36
|
-
register(handler) {
|
|
37
|
-
__classPrivateFieldGet(this, _EventDispatcher_handlers, "f").push(handler);
|
|
38
|
-
return this;
|
|
39
|
-
}
|
|
40
|
-
/**
|
|
41
|
-
* Unregister a handler. If {@link handler} is not already registered, it's a no-op.
|
|
42
|
-
*
|
|
43
|
-
* @param {EventHandler<T>} handler Event handler to unregister
|
|
44
|
-
* @return {boolean} Whether the handler was found (and unregistered).
|
|
45
|
-
*/
|
|
46
|
-
unregister(handler) {
|
|
47
|
-
const idx = __classPrivateFieldGet(this, _EventDispatcher_handlers, "f").indexOf(handler);
|
|
48
|
-
if (idx >= 0) {
|
|
49
|
-
__classPrivateFieldGet(this, _EventDispatcher_handlers, "f").splice(idx, 1);
|
|
50
|
-
return true;
|
|
51
|
-
}
|
|
52
|
-
else {
|
|
53
|
-
return false;
|
|
54
|
-
}
|
|
55
|
-
}
|
|
56
|
-
/**
|
|
57
|
-
* Dispatch an event to all registered handlers.
|
|
58
|
-
* @param {T} event Event to dispatch.
|
|
59
|
-
*/
|
|
60
|
-
async dispatch(event) {
|
|
61
|
-
await Promise.all(__classPrivateFieldGet(this, _EventDispatcher_handlers, "f").map((h) => h(event)));
|
|
62
|
-
}
|
|
63
|
-
}
|
|
64
|
-
_EventDispatcher_handlers = new WeakMap();
|
|
65
|
-
const SessionExpiredRegexes = [
|
|
66
|
-
/^Session '(?<purpose>[^']*)' for '(?<identity>[^']*)' has expired$/,
|
|
67
|
-
/^Session '(?<purpose>[^']*)' for '(?<identity>[^']*)' has been revoked$/,
|
|
68
|
-
/^Auth token for epoch (?<epoch>\d+) has expired$/,
|
|
69
|
-
/^Refresh token for epoch (?<epoch_num>\d+) has expired$/,
|
|
70
|
-
/^Outdated session$/,
|
|
71
|
-
];
|
|
72
|
-
/**
|
|
73
|
-
* Whether an error message matches one of several different "session expired" responses.
|
|
74
|
-
*
|
|
75
|
-
* @param {string} msg The string to test.
|
|
76
|
-
* @return {boolean} Whether the string matches.
|
|
77
|
-
* @internal Exported only so that it can be called from a unit test
|
|
78
|
-
*/
|
|
79
|
-
function messageMatchesSessionExpired(msg) {
|
|
80
|
-
return SessionExpiredRegexes.some((re) => re.test(msg));
|
|
81
|
-
}
|
|
82
|
-
exports.messageMatchesSessionExpired = messageMatchesSessionExpired;
|
|
83
|
-
/**
|
|
84
|
-
* Class for registering and unregistering event handlers.
|
|
85
|
-
*/
|
|
86
|
-
class Events {
|
|
87
|
-
constructor() {
|
|
88
|
-
_Events_onError.set(this, new EventDispatcher());
|
|
89
|
-
_Events_onSessionExpired.set(this, new EventDispatcher());
|
|
90
|
-
}
|
|
91
|
-
/**
|
|
92
|
-
* Register a handler for {@link ErrorEvent}: triggered every time a request to
|
|
93
|
-
* a CubeSigner API endpoint returns a non-success response.
|
|
94
|
-
*
|
|
95
|
-
* @param {EventHandler<ErrorEvent>} handler The handler to register.
|
|
96
|
-
*/
|
|
97
|
-
onError(handler) {
|
|
98
|
-
__classPrivateFieldGet(this, _Events_onError, "f").register(handler);
|
|
99
|
-
}
|
|
100
|
-
/**
|
|
101
|
-
* Register a handler for {@link SessionExpiredEvent}: triggered every time a
|
|
102
|
-
* request to a CubeSigner API endpoint fails because of an expired session.
|
|
103
|
-
*
|
|
104
|
-
* @param {EventHandler<SessionExpiredEvent>} handler The handler to register.
|
|
105
|
-
*/
|
|
106
|
-
onSessionExpired(handler) {
|
|
107
|
-
__classPrivateFieldGet(this, _Events_onSessionExpired, "f").register(handler);
|
|
108
|
-
}
|
|
109
|
-
/**
|
|
110
|
-
* Unregister a handler for {@link ErrorEvent}.
|
|
111
|
-
*
|
|
112
|
-
* @param {EventHandler<ErrorEvent>} handler The handler to unregister.
|
|
113
|
-
* @return {boolean} Whether the handler was found (and unregistered).
|
|
114
|
-
*/
|
|
115
|
-
unregisterOnError(handler) {
|
|
116
|
-
return __classPrivateFieldGet(this, _Events_onError, "f").unregister(handler);
|
|
117
|
-
}
|
|
118
|
-
/**
|
|
119
|
-
* Unregister a handler for {@link SessionExpiredEvent}.
|
|
120
|
-
*
|
|
121
|
-
* @param {EventHandler<SessionExpiredEvent>} handler The handler to unregister.
|
|
122
|
-
* @return {boolean} Whether the handler was found (and unregistered).
|
|
123
|
-
*/
|
|
124
|
-
unregisterOnSessionExpired(handler) {
|
|
125
|
-
return __classPrivateFieldGet(this, _Events_onSessionExpired, "f").unregister(handler);
|
|
126
|
-
}
|
|
127
|
-
/** @internal */
|
|
128
|
-
async triggerSessionExpired() {
|
|
129
|
-
await __classPrivateFieldGet(this, _Events_onSessionExpired, "f").dispatch({});
|
|
130
|
-
}
|
|
131
|
-
/**
|
|
132
|
-
* @param {ErrorEvent} event Event to trigger
|
|
133
|
-
* @internal
|
|
134
|
-
*/
|
|
135
|
-
async triggerErrorEvent(event) {
|
|
136
|
-
await __classPrivateFieldGet(this, _Events_onError, "f").dispatch(event);
|
|
137
|
-
}
|
|
138
|
-
}
|
|
139
|
-
exports.Events = Events;
|
|
140
|
-
_Events_onError = new WeakMap(), _Events_onSessionExpired = new WeakMap();
|
|
141
|
-
/**
|
|
142
|
-
* Used to classify and emit events to one or more {@link Events} instances.
|
|
143
|
-
*/
|
|
144
|
-
class EventEmitter {
|
|
145
|
-
/**
|
|
146
|
-
*
|
|
147
|
-
* @param {Events[]} events Instances to which to emit events
|
|
148
|
-
* @param {boolean} skipGlobal Whether to include the global events instance {@link GlobalEvents}
|
|
149
|
-
*/
|
|
150
|
-
constructor(events, skipGlobal) {
|
|
151
|
-
_EventEmitter_events.set(this, void 0);
|
|
152
|
-
skipGlobal ??= false;
|
|
153
|
-
__classPrivateFieldSet(this, _EventEmitter_events, events, "f");
|
|
154
|
-
if (!skipGlobal) {
|
|
155
|
-
__classPrivateFieldGet(this, _EventEmitter_events, "f").push(exports.GlobalEvents);
|
|
156
|
-
}
|
|
157
|
-
}
|
|
158
|
-
/**
|
|
159
|
-
* Called by {@link CubeSignerApi} when an API response indicates an error.
|
|
160
|
-
*
|
|
161
|
-
* @param {ErrorEvent} err The error to dispatch.
|
|
162
|
-
* @internal
|
|
163
|
-
*/
|
|
164
|
-
async classifyAndEmitError(err) {
|
|
165
|
-
for (const ev of __classPrivateFieldGet(this, _EventEmitter_events, "f")) {
|
|
166
|
-
await ev.triggerErrorEvent(err);
|
|
167
|
-
}
|
|
168
|
-
// if status is 403 and error matches one of the SessionExpiredRegexes trigger onSessionExpired
|
|
169
|
-
//
|
|
170
|
-
// TODO: because errors returned by the authorizer lambda are not forwarded to the client
|
|
171
|
-
// we also trigger onSessionExpired when "signerSessionRefresh" fails
|
|
172
|
-
if (err.status === 403 &&
|
|
173
|
-
(messageMatchesSessionExpired(err.message) || err.operation == "signerSessionRefresh")) {
|
|
174
|
-
await this.emitSessionExpired();
|
|
175
|
-
}
|
|
176
|
-
}
|
|
177
|
-
/**
|
|
178
|
-
* Called by {@link SignerSessionManager} to notify that the session is expired
|
|
179
|
-
* beyond the possibility of refreshing, meaning that full re-login is required.
|
|
180
|
-
*
|
|
181
|
-
* @internal
|
|
182
|
-
*/
|
|
183
|
-
async emitSessionExpired() {
|
|
184
|
-
for (const e of __classPrivateFieldGet(this, _EventEmitter_events, "f")) {
|
|
185
|
-
await e.triggerSessionExpired();
|
|
186
|
-
}
|
|
187
|
-
}
|
|
188
|
-
}
|
|
189
|
-
exports.EventEmitter = EventEmitter;
|
|
190
|
-
_EventEmitter_events = new WeakMap();
|
|
191
|
-
/**
|
|
192
|
-
* Global events.
|
|
193
|
-
*/
|
|
194
|
-
exports.GlobalEvents = new Events();
|
|
195
|
-
//# sourceMappingURL=data:application/json;base64,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
|
package/dist/src/index.d.ts
DELETED
|
@@ -1,207 +0,0 @@
|
|
|
1
|
-
import { EnvInterface } from "./env";
|
|
2
|
-
import { Client } from "./api";
|
|
3
|
-
import { CubeSignerClient } from "./client";
|
|
4
|
-
import { Org } from "./org";
|
|
5
|
-
import { SignerSessionStorage, SignerSessionManager, SignerSessionData } from "./session/signer_session_manager";
|
|
6
|
-
import { CubeSignerResponse } from "./response";
|
|
7
|
-
import { SignerSession } from "./signer_session";
|
|
8
|
-
import { MfaReceipt } from "./mfa";
|
|
9
|
-
import { IdentityProof, MfaRequestInfo, RatchetConfig, UserInfo } from "./schema_types";
|
|
10
|
-
/** CubeSigner constructor options */
|
|
11
|
-
export interface CubeSignerOptions {
|
|
12
|
-
/** The environment to use */
|
|
13
|
-
env?: EnvInterface;
|
|
14
|
-
/** The management authorization token */
|
|
15
|
-
sessionMgr?: SignerSessionManager;
|
|
16
|
-
/** Optional organization id */
|
|
17
|
-
orgId?: string;
|
|
18
|
-
}
|
|
19
|
-
/**
|
|
20
|
-
* CubeSigner client
|
|
21
|
-
*
|
|
22
|
-
* @deprecated Use {@link Org} or {@link CubeSignerClient} instead.
|
|
23
|
-
*/
|
|
24
|
-
export declare class CubeSigner {
|
|
25
|
-
#private;
|
|
26
|
-
readonly sessionMgr?: SignerSessionManager;
|
|
27
|
-
/**
|
|
28
|
-
* Underlying {@link CubeSignerClient} instance, if set; otherwise throws.
|
|
29
|
-
* @internal
|
|
30
|
-
*/
|
|
31
|
-
get csc(): CubeSignerClient;
|
|
32
|
-
/** @return {EnvInterface} The CubeSigner environment of this client */
|
|
33
|
-
get env(): EnvInterface;
|
|
34
|
-
/** Organization ID */
|
|
35
|
-
get orgId(): string;
|
|
36
|
-
/**
|
|
37
|
-
* Set the organization ID
|
|
38
|
-
* @param {string} orgId The new organization id.
|
|
39
|
-
*/
|
|
40
|
-
setOrgId(orgId: string): void;
|
|
41
|
-
/**
|
|
42
|
-
* Loads an existing management session and creates a CubeSigner instance.
|
|
43
|
-
*
|
|
44
|
-
* @param {SignerSessionStorage} storage Optional session storage to load
|
|
45
|
-
* the session from. If not specified, the management session from the config
|
|
46
|
-
* directory will be loaded.
|
|
47
|
-
* @return {Promise<CubeSigner>} New CubeSigner instance
|
|
48
|
-
*/
|
|
49
|
-
static loadManagementSession(storage?: SignerSessionStorage): Promise<CubeSigner>;
|
|
50
|
-
/**
|
|
51
|
-
* Loads a signer session from a session storage (e.g., session file).
|
|
52
|
-
* @param {SignerSessionStorage} storage Optional session storage to load
|
|
53
|
-
* the session from. If not specified, the signer session from the config
|
|
54
|
-
* directory will be loaded.
|
|
55
|
-
* @return {Promise<SignerSession>} New signer session
|
|
56
|
-
*/
|
|
57
|
-
static loadSignerSession(storage?: SignerSessionStorage): Promise<SignerSession>;
|
|
58
|
-
/**
|
|
59
|
-
* Create a new CubeSigner instance.
|
|
60
|
-
* @param {CubeSignerOptions} options The optional configuration options for the CubeSigner instance.
|
|
61
|
-
*/
|
|
62
|
-
constructor(options?: CubeSignerOptions);
|
|
63
|
-
/**
|
|
64
|
-
* Authenticate an OIDC user and create a new session manager for them.
|
|
65
|
-
*
|
|
66
|
-
* @param {string} oidcToken The OIDC token
|
|
67
|
-
* @param {string} orgId The id of the organization that the user is in
|
|
68
|
-
* @param {List<string>} scopes The scopes of the resulting session
|
|
69
|
-
* @param {RatchetConfig} lifetimes Lifetimes of the new session.
|
|
70
|
-
* @param {SignerSessionStorage?} storage Optional signer session storage (defaults to in-memory storage)
|
|
71
|
-
* @return {Promise<SignerSessionManager>} The signer session manager
|
|
72
|
-
*/
|
|
73
|
-
oidcAuth(oidcToken: string, orgId: string, scopes: Array<string>, lifetimes?: RatchetConfig, storage?: SignerSessionStorage): Promise<SignerSessionManager>;
|
|
74
|
-
/**
|
|
75
|
-
* Retrieves information about the current user.
|
|
76
|
-
*
|
|
77
|
-
* @return {Promise<UserInfo>} User information.
|
|
78
|
-
*/
|
|
79
|
-
aboutMe(): Promise<UserInfo>;
|
|
80
|
-
/**
|
|
81
|
-
* Retrieves existing MFA request.
|
|
82
|
-
*
|
|
83
|
-
* @param {string} orgId Organization ID
|
|
84
|
-
* @param {string} mfaId MFA request ID
|
|
85
|
-
* @return {Promise<MfaRequestInfo>} MFA request information
|
|
86
|
-
*/
|
|
87
|
-
mfaGet(orgId: string, mfaId: string): Promise<MfaRequestInfo>;
|
|
88
|
-
/**
|
|
89
|
-
* List pending MFA requests accessible to the current user.
|
|
90
|
-
* @param {string} orgId Organization ID
|
|
91
|
-
* @return {Promise<MfaRequestInfo[]>} The MFA requests.
|
|
92
|
-
*/
|
|
93
|
-
mfaList(orgId: string): Promise<MfaRequestInfo[]>;
|
|
94
|
-
/**
|
|
95
|
-
* Approve a pending MFA request.
|
|
96
|
-
*
|
|
97
|
-
* @param {string} orgId The org id of the MFA request
|
|
98
|
-
* @param {string} mfaId The id of the MFA request
|
|
99
|
-
* @return {Promise<MfaRequestInfo>} The result of the MFA request
|
|
100
|
-
*/
|
|
101
|
-
mfaApprove(orgId: string, mfaId: string): Promise<MfaRequestInfo>;
|
|
102
|
-
/** Initiate adding a new FIDO device. MFA may be required. */
|
|
103
|
-
get addFidoStart(): (name: string, mfaReceipt?: MfaReceipt | undefined) => Promise<CubeSignerResponse<import("./mfa").AddFidoChallenge>>;
|
|
104
|
-
/**
|
|
105
|
-
* Creates a request to change user's TOTP. This request returns a new TOTP challenge
|
|
106
|
-
* that must be answered by calling `resetTotpComplete`
|
|
107
|
-
*/
|
|
108
|
-
get resetTotpStart(): (issuer?: string | undefined, mfaReceipt?: MfaReceipt | undefined) => Promise<CubeSignerResponse<import("./mfa").TotpChallenge>>;
|
|
109
|
-
/**
|
|
110
|
-
* Answer the TOTP challenge issued by `resetTotpStart`. If successful, user's
|
|
111
|
-
* TOTP configuration will be updated to that of the TOTP challenge.he TOTP configuration from the challenge.
|
|
112
|
-
*/
|
|
113
|
-
get resetTotpComplete(): (totpId: string, code: string) => Promise<void>;
|
|
114
|
-
/**
|
|
115
|
-
* Verifies a given TOTP code against the current user's TOTP configuration.
|
|
116
|
-
* Throws an error if the verification fails.
|
|
117
|
-
*/
|
|
118
|
-
get verifyTotp(): (code: string) => Promise<void>;
|
|
119
|
-
/**
|
|
120
|
-
* Retrieve information about an organization.
|
|
121
|
-
* @param {string} orgId The ID or name of the organization.
|
|
122
|
-
* @return {Org} The organization.
|
|
123
|
-
*/
|
|
124
|
-
getOrg(orgId?: string): Promise<Org>;
|
|
125
|
-
/**
|
|
126
|
-
* Deletes a given key.
|
|
127
|
-
* @param {string} orgId - Organization id
|
|
128
|
-
* @param {string} keyId - Key id
|
|
129
|
-
*/
|
|
130
|
-
deleteKey(orgId: string, keyId: string): Promise<void>;
|
|
131
|
-
/**
|
|
132
|
-
* Get the management client.
|
|
133
|
-
* @return {Client} The client.
|
|
134
|
-
* @internal
|
|
135
|
-
*/
|
|
136
|
-
management(): Promise<Client>;
|
|
137
|
-
/**
|
|
138
|
-
* Obtain a proof of authentication.
|
|
139
|
-
*
|
|
140
|
-
* @param {string} orgId The id of the organization that the user is in
|
|
141
|
-
* @return {Promise<IdentityProof>} Proof of authentication
|
|
142
|
-
*/
|
|
143
|
-
proveIdentity(orgId: string): Promise<IdentityProof>;
|
|
144
|
-
/**
|
|
145
|
-
* Exchange an OIDC token for a proof of authentication.
|
|
146
|
-
*
|
|
147
|
-
* @param {string} oidcToken The OIDC token
|
|
148
|
-
* @param {string} orgId The id of the organization that the user is in
|
|
149
|
-
* @return {Promise<IdentityProof>} Proof of authentication
|
|
150
|
-
*/
|
|
151
|
-
oidcProveIdentity(oidcToken: string, orgId: string): Promise<IdentityProof>;
|
|
152
|
-
/**
|
|
153
|
-
* Checks if a given identity proof is valid.
|
|
154
|
-
*
|
|
155
|
-
* @param {string} orgId The id of the organization that the user is in.
|
|
156
|
-
* @param {IdentityProof} identityProof The proof of authentication.
|
|
157
|
-
*/
|
|
158
|
-
verifyIdentity(orgId: string, identityProof: IdentityProof): Promise<void>;
|
|
159
|
-
/**
|
|
160
|
-
* Exchange an OIDC token for a CubeSigner session token.
|
|
161
|
-
* @param {string} oidcToken The OIDC token
|
|
162
|
-
* @param {string} orgId The id of the organization that the user is in
|
|
163
|
-
* @param {List<string>} scopes The scopes of the resulting session
|
|
164
|
-
* @param {RatchetConfig} lifetimes Lifetimes of the new session.
|
|
165
|
-
* @param {MfaReceipt} mfaReceipt Optional MFA receipt (id + confirmation code)
|
|
166
|
-
* @return {Promise<CubeSignerResponse<SignerSessionData>>} The session data.
|
|
167
|
-
*/
|
|
168
|
-
oidcLogin(oidcToken: string, orgId: string, scopes: Array<string>, lifetimes?: RatchetConfig, mfaReceipt?: MfaReceipt): Promise<CubeSignerResponse<SignerSessionData>>;
|
|
169
|
-
}
|
|
170
|
-
/** Errors */
|
|
171
|
-
export * from "./error";
|
|
172
|
-
/** API */
|
|
173
|
-
export * from "./api";
|
|
174
|
-
/** Client */
|
|
175
|
-
export * from "./client";
|
|
176
|
-
/** Callbacks */
|
|
177
|
-
export { Events, EventHandler, ErrorEvent, GlobalEvents, SessionExpiredEvent } from "./events";
|
|
178
|
-
/** Organizations */
|
|
179
|
-
export * from "./org";
|
|
180
|
-
/** Keys */
|
|
181
|
-
export * from "./key";
|
|
182
|
-
/** Roles */
|
|
183
|
-
export * from "./role";
|
|
184
|
-
/** Env */
|
|
185
|
-
export * from "./env";
|
|
186
|
-
/** Fido */
|
|
187
|
-
export * from "./mfa";
|
|
188
|
-
/** Pagination */
|
|
189
|
-
export * from "./paginator";
|
|
190
|
-
/** Response */
|
|
191
|
-
export * from "./response";
|
|
192
|
-
/** Types */
|
|
193
|
-
export * from "./schema_types";
|
|
194
|
-
/** Sessions */
|
|
195
|
-
export * from "./signer_session";
|
|
196
|
-
/** Session storage */
|
|
197
|
-
export * from "./session/session_storage";
|
|
198
|
-
/** Signer session manager */
|
|
199
|
-
export * from "./session/signer_session_manager";
|
|
200
|
-
/** Utils */
|
|
201
|
-
export * from "./util";
|
|
202
|
-
/** User-export decryption helper */
|
|
203
|
-
export { userExportDecrypt, userExportKeygen } from "./user_export";
|
|
204
|
-
/** CubeSigner SDK package name */
|
|
205
|
-
export declare const NAME: string;
|
|
206
|
-
/** CubeSigner SDK version */
|
|
207
|
-
export declare const VERSION: string;
|