@docbrasil/api-systemmanager 1.1.83 → 1.1.84

package/doc/api.md

@@ -5403,7 +5403,7 @@ Api dispatch manager
     * [.errorOffline()](#Dispatch+errorOffline)
     * [.getContext(url, [session])](#Dispatch+getContext) ⇒ <code>Promise.&lt;object&gt;</code>
     * [.getClient()](#Dispatch+getClient) ⇒ <code>AxiosInstance</code>
-    * [.setAkamaiBaseUrl(url)](#Dispatch+setAkamaiBaseUrl)
+    * [.setAkamaiBaseUrl(url, [options])](#Dispatch+setAkamaiBaseUrl)
     * [.getAkamaiClient()](#Dispatch+getAkamaiClient) ⇒ <code>AxiosInstance</code>
 
 <a name="Dispatch+errorOffline"></a>
@@ -5436,8 +5436,12 @@ Get the Axios client.
 **Access**: public  
 <a name="Dispatch+setAkamaiBaseUrl"></a>
 
-### dispatch.setAkamaiBaseUrl(url)
+### dispatch.setAkamaiBaseUrl(url, [options])
 Create a dedicated Axios client for Akamai routes.
+In DEV there is no NGiNX to translate the Authorization JWT into the
+x-api-key / x-user-id / x-organization-id headers that Akamai expects.
+When an apiKey is supplied the client adds a request interceptor that
+decodes the JWT and sets those headers automatically.
 
 **Kind**: instance method of [<code>Dispatch</code>](#Dispatch)  
 **Access**: public  
@@ -5445,6 +5449,8 @@ Create a dedicated Axios client for Akamai routes.
 | Param | Type | Description |
 | --- | --- | --- |
 | url | <code>string</code> | The Akamai base URL (e.g., http://localhost:9008 in DEV). |
+| [options] | <code>object</code> | Optional configuration |
+| [options.apiKey] | <code>string</code> | API key for Akamai authentication.   When provided, the client will transform the Authorization JWT into   x-api-key, x-user-id and x-organization-id headers on every request. |
 
 <a name="Dispatch+getAkamaiClient"></a>
 

package/docs/Dispatch.html

@@ -387,7 +387,7 @@ for backward compatibility (e.g., PROD where NGiNX proxies all routes).
         <p class="tag-source">
             <a href="dispatch.js.html" class="button">View Source</a>
             <span>
-                <a href="dispatch.js.html">dispatch.js</a>, <a href="dispatch.js.html#line222">line 222</a>
+                <a href="dispatch.js.html">dispatch.js</a>, <a href="dispatch.js.html#line277">line 277</a>
             </span>
         </p>
     
@@ -808,7 +808,7 @@ for backward compatibility (e.g., PROD where NGiNX proxies all routes).
         
         <span class="code-name">
             
-                setAkamaiBaseUrl<span class="signature">(url)</span><span class="type-signature"></span>
+                setAkamaiBaseUrl<span class="signature">(url, options<span class="signature-attributes">opt</span>)</span><span class="type-signature"></span>
             
         </span>
     </h4>
@@ -818,6 +818,10 @@ for backward compatibility (e.g., PROD where NGiNX proxies all routes).
     
     <div class="description">
         Create a dedicated Axios client for Akamai routes.
+In DEV there is no NGiNX to translate the Authorization JWT into the
+x-api-key / x-user-id / x-organization-id headers that Akamai expects.
+When an apiKey is supplied the client adds a request interceptor that
+decodes the JWT and sets those headers automatically.
     </div>
     
 
@@ -842,6 +846,8 @@ for backward compatibility (e.g., PROD where NGiNX proxies all routes).
             <th>Type</th>
 
             
+            <th>Attributes</th>
+            
 
             
 
@@ -868,6 +874,14 @@ for backward compatibility (e.g., PROD where NGiNX proxies all routes).
   </td>
 
   
+      <td class="attributes">
+      
+
+      
+
+      
+      </td>
+  
 
   
 
@@ -876,6 +890,79 @@ for backward compatibility (e.g., PROD where NGiNX proxies all routes).
 
 
         
+
+            
+<tr class="deep-level-0">
+  
+      <td class="name"><code>options</code></td>
+  
+
+  <td class="type">
+  
+      
+<code class="param-type">object</code>
+
+
+  
+  </td>
+
+  
+      <td class="attributes">
+      
+          &lt;optional><br>
+      
+
+      
+
+      
+      </td>
+  
+
+  
+
+  <td class="description last">Optional configuration</td>
+</tr>
+
+  
+  
+    
+<tr class="deep-level-1">
+  
+      <td class="name"><code>apiKey</code></td>
+  
+
+  <td class="type">
+  
+      
+<code class="param-type">string</code>
+
+
+  
+  </td>
+
+  
+      <td class="attributes">
+      
+          &lt;optional><br>
+      
+
+      
+
+      
+      </td>
+  
+
+  
+
+  <td class="description last">API key for Akamai authentication.
+  When provided, the client will transform the Authorization JWT into
+  x-api-key, x-user-id and x-organization-id headers on every request.</td>
+</tr>
+
+  
+
+
+        
         </tbody>
     </table>
 </div>
@@ -919,7 +1006,7 @@ for backward compatibility (e.g., PROD where NGiNX proxies all routes).
         <p class="tag-source">
             <a href="dispatch.js.html" class="button">View Source</a>
             <span>
-                <a href="dispatch.js.html">dispatch.js</a>, <a href="dispatch.js.html#line207">line 207</a>
+                <a href="dispatch.js.html">dispatch.js</a>, <a href="dispatch.js.html#line236">line 236</a>
             </span>
         </p>
     

package/docs/dispatch.js.html

@@ -286,18 +286,73 @@ class Dispatch {
     return this._client;
   }
 
+  /**
+   * @description Decode the payload of a JWT token (base64url → JSON).
+   * Does NOT verify the signature — used only to extract claims for header building.
+   * @param {string} token JWT token string
+   * @return {object|null} Decoded payload or null on failure
+   * @private
+   */
+  _decodeJwtPayload(token) {
+    try {
+      const parts = token.split('.');
+      if (parts.length !== 3) return null;
+      const base64 = parts[1].replace(/-/g, '+').replace(/_/g, '/');
+      const json = decodeURIComponent(
+        atob(base64).split('').map(c => '%' + ('00' + c.charCodeAt(0).toString(16)).slice(-2)).join('')
+      );
+      return JSON.parse(json);
+    } catch (e) {
+      return null;
+    }
+  }
+
   /**
    * @description Create a dedicated Axios client for Akamai routes.
+   * In DEV there is no NGiNX to translate the Authorization JWT into the
+   * x-api-key / x-user-id / x-organization-id headers that Akamai expects.
+   * When an apiKey is supplied the client adds a request interceptor that
+   * decodes the JWT and sets those headers automatically.
    * @param {string} url The Akamai base URL (e.g., http://localhost:9008 in DEV).
+   * @param {object} [options] Optional configuration
+   * @param {string} [options.apiKey] API key for Akamai authentication.
+   *   When provided, the client will transform the Authorization JWT into
+   *   x-api-key, x-user-id and x-organization-id headers on every request.
    * @public
    */
-  setAkamaiBaseUrl(url) {
+  setAkamaiBaseUrl(url, options = {}) {
     Joi.assert(url, Joi.string().required());
 
-    this._akamaiClient = Axios.create({
+    const self = this;
+
+    self._akamaiClient = Axios.create({
       baseURL: url,
       withCredentials: true
     });
+
+    // When an API key is provided, add interceptor to build Akamai headers from the JWT
+    if (options.apiKey) {
+      const apiKey = options.apiKey;
+
+      self._akamaiClient.interceptors.request.use((config) => {
+        const auth = config.headers && (config.headers.Authorization || config.headers.authorization);
+        if (auth) {
+          const payload = self._decodeJwtPayload(auth);
+          if (payload) {
+            config.headers['x-api-key'] = apiKey;
+            config.headers['x-user-id'] = payload._id || payload.userId;
+            config.headers['x-organization-id'] = payload.orgId || payload.organizationId;
+            if (payload.language) {
+              config.headers['x-country'] = payload.language;
+            }
+            // Remove the Authorization header — Akamai doesn't use it
+            delete config.headers.Authorization;
+            delete config.headers.authorization;
+          }
+        }
+        return config;
+      });
+    }
   }
 
   /**

package/index.js

@@ -87,17 +87,20 @@ class API {
 
     // If akamaiUri was provided in options, configure the Akamai client
     if (self.options.akamaiUri) {
-      self.dispatch.setAkamaiBaseUrl(self.options.akamaiUri);
+      self.dispatch.setAkamaiBaseUrl(self.options.akamaiUri, { apiKey: self.options.akamaiApiKey });
     }
   }
 
   /**
    * @description Set the Akamai base URL for agent/AI routes.
    * @param {string} url The Akamai base URL.
+   * @param {object} [options] Optional configuration
+   * @param {string} [options.apiKey] API key for Akamai authentication (required in DEV,
+   *   where there is no NGiNX to translate Authorization JWT into x-* headers).
    * @public
    */
-  setAkamaiBaseUrl(url) {
-    this.dispatch.setAkamaiBaseUrl(url);
+  setAkamaiBaseUrl(url, options = {}) {
+    this.dispatch.setAkamaiBaseUrl(url, options);
   }
 }
 

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@docbrasil/api-systemmanager",
   "description": "Module API System Manager",
-  "version": "1.1.83",
+  "version": "1.1.84",
   "scripts": {
     "htmldoc": "rm -rf docs && jsdoc api/** -d docs -t ./node_modules/better-docs",
     "doc": "rm -rf doc && mkdir doc && jsdoc2md api/**/* api/* > doc/api.md",