npm - @dfns/sdk - Versions diffs - 0.6.12 → 0.7.0 - Mend

@dfns/sdk 0.6.12 → 0.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (24) hide show

package/baseAuthApi.d.ts +1 -8
package/dfnsApiClient.d.ts +1 -1
package/dfnsAuthenticator.d.ts +2 -2
package/dfnsDelegatedApiClient.d.ts +1 -1
package/generated/auth/client.d.ts +0 -5
package/generated/auth/client.js +0 -60
package/generated/auth/delegatedClient.d.ts +0 -10
package/generated/auth/delegatedClient.js +0 -135
package/generated/auth/types.d.ts +2 -212
package/generated/exchanges/types.d.ts +0 -2
package/generated/keys/types.d.ts +0 -3
package/generated/permissions/types.d.ts +2 -2
package/generated/policies/types.d.ts +594 -9
package/generated/staking/types.d.ts +0 -16
package/generated/wallets/types.d.ts +564 -9
package/package.json +2 -3
package/types/generic.d.ts +4 -4
package/utils/authToken.d.ts +5 -0
package/utils/authToken.js +20 -0
package/utils/fetch.js +5 -10
package/utils/index.d.ts +0 -1
package/utils/index.js +0 -1
package/utils/nonce.d.ts +0 -1
package/utils/nonce.js +0 -12

package/utils/authToken.js ADDED Viewed

@@ -0,0 +1,20 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.assertAuthTokenIsSameOrg = exports.JWT_CUSTOM_DATA_CLAIM = void 0;
+const base64_1 = require("./base64");
+exports.JWT_CUSTOM_DATA_CLAIM = 'https://custom/app_metadata';
+const assertAuthTokenIsSameOrg = ({ authToken, orgId }) => {
+    const tokenBody = authToken.split('.')?.[1] || '';
+    let decoded;
+    try {
+        decoded = JSON.parse((0, base64_1.fromBase64)(tokenBody).toString('utf-8'));
+    }
+    catch (error) {
+        throw new Error('Provided auth token could not be properly parsed');
+    }
+    const tokenOrgId = decoded?.[exports.JWT_CUSTOM_DATA_CLAIM]?.['orgId'];
+    if (tokenOrgId !== orgId) {
+        throw new Error(`Provided auth token is not scoped to org ID ${orgId}`);
+    }
+};
+exports.assertAuthTokenIsSameOrg = assertAuthTokenIsSameOrg;

package/utils/fetch.js CHANGED Viewed

@@ -2,10 +2,10 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.simpleFetch = exports.dfnsAuth = exports.catchPolicyPending = exports.errorHandler = exports.jsonSerializer = exports.fullUrl = void 0;
 const cross_fetch_1 = require("cross-fetch");
-const nonce_1 = require("./nonce");
 const dfnsError_1 = require("../dfnsError");
 const DEFAULT_DFNS_BASE_URL = 'https://api.dfns.io';
 const package_json_1 = require("../package.json");
+const authToken_1 = require("./authToken");
 const fullUrl = (fetch) => {
     return async (resource, options) => {
         const baseUrl = options.apiOptions.baseUrl || DEFAULT_DFNS_BASE_URL;
@@ -60,22 +60,17 @@ const catchPolicyPending = (fetch) => {
 exports.catchPolicyPending = catchPolicyPending;
 const dfnsAuth = (fetch) => {
     return async (resource, options) => {
-        const { appId, appSecret, authToken } = options.apiOptions;
+        const { orgId, authToken } = options.apiOptions;
+        if (authToken && orgId) {
+            (0, authToken_1.assertAuthTokenIsSameOrg)({ orgId, authToken });
+        }
         const authorization = authToken
             ? {
                 authorization: `Bearer ${authToken}`,
             }
             : {};
-        const dfnsAppSecret = appSecret
-            ? {
-                'x-dfns-appsecret': appSecret,
-            }
-            : {};
         options.headers = {
-            'x-dfns-appid': appId,
-            'x-dfns-nonce': (0, nonce_1.generateNonce)(),
             'x-dfns-sdk-version': package_json_1.version,
-            ...dfnsAppSecret,
             ...authorization,
             ...(options.headers ?? {}),
         };

package/utils/index.d.ts CHANGED Viewed

@@ -2,7 +2,6 @@ export * from './base64';
 export * from './bigint';
 export * from './crypto';
 export * from './fetch';
-export * from './nonce';
 export * from './string';
 export * from './url';
 export declare const generateRandom: (size: number) => Uint8Array;

package/utils/index.js CHANGED Viewed

@@ -19,7 +19,6 @@ __exportStar(require("./base64"), exports);
 __exportStar(require("./bigint"), exports);
 __exportStar(require("./crypto"), exports);
 __exportStar(require("./fetch"), exports);
-__exportStar(require("./nonce"), exports);
 __exportStar(require("./string"), exports);
 __exportStar(require("./url"), exports);
 const generateRandom = (size) => {

package/utils/nonce.d.ts DELETED Viewed

	@@ -1 +0,0 @@
1	- export declare const generateNonce: () => string;

package/utils/nonce.js DELETED Viewed

@@ -1,12 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.generateNonce = void 0;
-const uuid_1 = require("uuid");
-const base64_1 = require("./base64");
-const generateNonce = () => {
-    return (0, base64_1.toBase64Url)(JSON.stringify({
-        uuid: (0, uuid_1.v4)(),
-        date: new Date().toISOString(),
-    }));
-};
-exports.generateNonce = generateNonce;