@dofe/infra-clients 0.1.37 → 0.1.40

package/dist/internal/provider-verify/index.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Provider Verify 模块导出
+ */
+export * from './provider-verify.client';
+export { ProviderVerifyModule } from './provider-verify.module';
+//# sourceMappingURL=index.d.ts.map

package/dist/internal/provider-verify/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../packages/clients/src/internal/provider-verify/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,cAAc,0BAA0B,CAAC;AACzC,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC"}

package/dist/internal/provider-verify/index.js

@@ -0,0 +1,24 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ProviderVerifyModule = void 0;
+/**
+ * Provider Verify 模块导出
+ */
+__exportStar(require("./provider-verify.client"), exports);
+var provider_verify_module_1 = require("./provider-verify.module");
+Object.defineProperty(exports, "ProviderVerifyModule", { enumerable: true, get: function () { return provider_verify_module_1.ProviderVerifyModule; } });
+//# sourceMappingURL=index.js.map

package/dist/internal/provider-verify/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../packages/clients/src/internal/provider-verify/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;AAAA;;GAEG;AACH,2DAAyC;AACzC,mEAAgE;AAAvD,8HAAA,oBAAoB,OAAA"}

package/dist/internal/provider-verify/provider-verify.client.d.ts

@@ -0,0 +1,55 @@
+import { HttpService } from '@nestjs/axios';
+import { Logger } from 'winston';
+import type { VerifyProviderKeyInput, VerifyProviderKeyResponse } from '@dofe/infra-contracts';
+/**
+ * ProviderVerifyClient - Provider Key 验证客户端
+ *
+ * 负责调用各 AI 提供商的 API 验证密钥有效性并获取模型列表
+ * 支持 OpenAI 兼容 API 和 Anthropic API
+ */
+export declare class ProviderVerifyClient {
+    private readonly httpService;
+    private readonly logger;
+    constructor(httpService: HttpService, logger: Logger);
+    /**
+     * 判断是否是 DMXAPI 等第三方聚合平台
+     * 基于 effectiveHost 的域名进行匹配
+     */
+    private isAggregatorPlatform;
+    /**
+     * 获取 API 请求的 headers
+     * 根据平台类型动态调整：
+     * - DMXAPI 等聚合平台：Authorization 不需要 Bearer，需要 Rix-Api-User
+     * - 标准 OpenAI 兼容 API：Authorization 使用 Bearer 前缀
+     */
+    private getOpenAICompatibleHeaders;
+    /**
+     * Verify a provider key and get available models
+     */
+    verify(input: VerifyProviderKeyInput): Promise<VerifyProviderKeyResponse>;
+    /**
+     * Verify Anthropic API key
+     * Anthropic doesn't have a models endpoint, so we verify by calling messages endpoint
+     */
+    private verifyAnthropicKey;
+    /**
+     * Verify Google Gemini API key by calling /models endpoint
+     * Gemini API uses a different authentication method (API key in query param)
+     */
+    private verifyGeminiKey;
+    /**
+     * Verify Ollama API key by calling /api/tags endpoint
+     * Ollama uses a different endpoint structure
+     */
+    private verifyOllamaKey;
+    /**
+     * Verify OpenAI-compatible API key by calling /models endpoint
+     * 支持 DMXAPI 等第三方聚合平台的特殊 headers
+     */
+    private verifyOpenAICompatibleKey;
+    /**
+     * Handle errors and return appropriate response
+     */
+    private handleError;
+}
+//# sourceMappingURL=provider-verify.client.d.ts.map

package/dist/internal/provider-verify/provider-verify.client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-verify.client.d.ts","sourceRoot":"","sources":["../../../../../packages/clients/src/internal/provider-verify/provider-verify.client.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAE5C,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAEjC,OAAO,KAAK,EACV,sBAAsB,EACtB,yBAAyB,EAG1B,MAAM,uBAAuB,CAAC;AAe/B;;;;;GAKG;AACH,qBACa,oBAAoB;IAE7B,OAAO,CAAC,QAAQ,CAAC,WAAW;IACK,OAAO,CAAC,QAAQ,CAAC,MAAM;gBADvC,WAAW,EAAE,WAAW,EACS,MAAM,EAAE,MAAM;IAGlE;;;OAGG;IACH,OAAO,CAAC,oBAAoB;IAY5B;;;;;OAKG;IACH,OAAO,CAAC,0BAA0B;IAqBlC;;OAEG;IACG,MAAM,CACV,KAAK,EAAE,sBAAsB,GAC5B,OAAO,CAAC,yBAAyB,CAAC;IA4DrC;;;OAGG;YACW,kBAAkB;IA6BhC;;;OAGG;YACW,eAAe;IA6B7B;;;OAGG;YACW,eAAe;IA2B7B;;;OAGG;YACW,yBAAyB;IAwCvC;;OAEG;IACH,OAAO,CAAC,WAAW;CAuCpB"}

package/dist/internal/provider-verify/provider-verify.client.js

@@ -0,0 +1,284 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ProviderVerifyClient = void 0;
+const common_1 = require("@nestjs/common");
+const axios_1 = require("@nestjs/axios");
+const nest_winston_1 = require("nest-winston");
+const winston_1 = require("winston");
+const rxjs_1 = require("rxjs");
+const infra_contracts_1 = require("@dofe/infra-contracts");
+/**
+ * DMXAPI 等第三方聚合平台的域名特征
+ * 这些平台需要特殊的 headers：
+ * - Authorization 不需要 Bearer 前缀
+ * - 需要 Rix-Api-User header
+ */
+const AGGREGATOR_PLATFORM_DOMAINS = [
+    'dmxapi.com',
+    'dmxapi.cn',
+    'api.dmxapi.com',
+];
+/**
+ * ProviderVerifyClient - Provider Key 验证客户端
+ *
+ * 负责调用各 AI 提供商的 API 验证密钥有效性并获取模型列表
+ * 支持 OpenAI 兼容 API 和 Anthropic API
+ */
+let ProviderVerifyClient = class ProviderVerifyClient {
+    httpService;
+    logger;
+    constructor(httpService, logger) {
+        this.httpService = httpService;
+        this.logger = logger;
+    }
+    /**
+     * 判断是否是 DMXAPI 等第三方聚合平台
+     * 基于 effectiveHost 的域名进行匹配
+     */
+    isAggregatorPlatform(effectiveHost) {
+        try {
+            const url = new URL(effectiveHost);
+            const hostname = url.hostname.toLowerCase();
+            return AGGREGATOR_PLATFORM_DOMAINS.some((domain) => hostname.includes(domain));
+        }
+        catch {
+            return false;
+        }
+    }
+    /**
+     * 获取 API 请求的 headers
+     * 根据平台类型动态调整：
+     * - DMXAPI 等聚合平台：Authorization 不需要 Bearer，需要 Rix-Api-User
+     * - 标准 OpenAI 兼容 API：Authorization 使用 Bearer 前缀
+     */
+    getOpenAICompatibleHeaders(effectiveHost, secret) {
+        if (this.isAggregatorPlatform(effectiveHost)) {
+            // DMXAPI 等聚合平台的特殊 headers
+            const userId = process.env.DMXAPI_USER_ID || '20700';
+            return {
+                Authorization: secret, // 不需要 Bearer 前缀
+                Accept: 'application/json',
+                'Rix-Api-User': userId,
+            };
+        }
+        // 标准 OpenAI 兼容 API
+        return {
+            Authorization: `Bearer ${secret}`,
+            'Content-Type': 'application/json',
+        };
+    }
+    /**
+     * Verify a provider key and get available models
+     */
+    async verify(input) {
+        const startTime = Date.now();
+        const { vendor, apiKey: secret, baseUrl, apiType: inputApiType, extraConfig: metadata } = input;
+        // Get effective API host
+        let effectiveHost = (0, infra_contracts_1.getEffectiveApiHost)(vendor, baseUrl);
+        if (!effectiveHost) {
+            return {
+                valid: false,
+                error: 'No API host configured for this provider',
+            };
+        }
+        // Get provider config to determine API type
+        // Use input apiType if provided, otherwise fall back to provider config
+        const providerConfig = infra_contracts_1.PROVIDER_CONFIGS[vendor];
+        const apiType = inputApiType || providerConfig?.apiType || 'openai';
+        // MiniMax: append GroupId to host if provided in metadata
+        if (vendor === 'minimax' && metadata?.group_id) {
+            const separator = effectiveHost.includes('?') ? '&' : '?';
+            effectiveHost += `${separator}GroupId=${encodeURIComponent(String(metadata.group_id))}`;
+        }
+        this.logger.info(`[ProviderVerify] Verifying key for vendor=${vendor}, apiType=${apiType}, effectiveHost=${effectiveHost}`);
+        try {
+            let models = [];
+            // Handle different API types
+            if (apiType === 'anthropic') {
+                models = await this.verifyAnthropicKey(effectiveHost, secret, startTime);
+            }
+            else if (apiType === 'gemini') {
+                models = await this.verifyGeminiKey(effectiveHost, secret);
+            }
+            else if (apiType === 'ollama') {
+                models = await this.verifyOllamaKey(effectiveHost, secret);
+            }
+            else {
+                models = await this.verifyOpenAICompatibleKey(effectiveHost, secret);
+            }
+            const latency = Date.now() - startTime;
+            this.logger.info(`[ProviderVerify] Success: ${models.length} models found for ${vendor}`);
+            return {
+                valid: true,
+                latency,
+                models,
+            };
+        }
+        catch (error) {
+            return this.handleError(error, vendor, startTime);
+        }
+    }
+    /**
+     * Verify Anthropic API key
+     * Anthropic doesn't have a models endpoint, so we verify by calling messages endpoint
+     */
+    async verifyAnthropicKey(effectiveHost, secret, startTime) {
+        const response = await (0, rxjs_1.firstValueFrom)(this.httpService.get(`${effectiveHost}/v1/messages`, {
+            headers: {
+                'x-api-key': secret,
+                'anthropic-version': '2023-06-01',
+            },
+            timeout: 10000,
+            validateStatus: (status) => status < 500,
+        }));
+        // 401 means invalid key
+        if (response.status === 401) {
+            throw { response: { status: 401 } };
+        }
+        // Return predefined Anthropic models (latest Claude 4 series)
+        return [
+            { id: 'claude-opus-4-6', name: 'Claude Opus 4.6' },
+            { id: 'claude-sonnet-4-5-20250929', name: 'Claude Sonnet 4.5' },
+            { id: 'claude-haiku-4-5-20251001', name: 'Claude Haiku 4.5' },
+        ];
+    }
+    /**
+     * Verify Google Gemini API key by calling /models endpoint
+     * Gemini API uses a different authentication method (API key in query param)
+     */
+    async verifyGeminiKey(effectiveHost, secret) {
+        const modelsUrl = `${effectiveHost}/models?key=${secret}`;
+        const response = await (0, rxjs_1.firstValueFrom)(this.httpService.get(modelsUrl, {
+            headers: {
+                'Content-Type': 'application/json',
+            },
+            timeout: 10000,
+        }));
+        const data = response.data;
+        let models = [];
+        if (data?.models && Array.isArray(data.models)) {
+            models = data.models
+                .filter((m) => m.name?.startsWith('models/gemini'))
+                .map((m) => ({
+                id: m.name?.replace('models/', '') || m.name,
+                name: m.displayName || m.name?.replace('models/', ''),
+            }));
+        }
+        return models;
+    }
+    /**
+     * Verify Ollama API key by calling /api/tags endpoint
+     * Ollama uses a different endpoint structure
+     */
+    async verifyOllamaKey(effectiveHost, _secret) {
+        // Ollama doesn't require authentication, just check if the server is running
+        // The endpoint is /api/tags for listing models
+        const baseHost = effectiveHost.replace(/\/v1$/, '');
+        const modelsUrl = `${baseHost}/api/tags`;
+        const response = await (0, rxjs_1.firstValueFrom)(this.httpService.get(modelsUrl, {
+            timeout: 10000,
+        }));
+        const data = response.data;
+        let models = [];
+        if (data?.models && Array.isArray(data.models)) {
+            models = data.models.map((m) => ({
+                id: m.name || m.model,
+                name: m.name || m.model,
+            }));
+        }
+        return models;
+    }
+    /**
+     * Verify OpenAI-compatible API key by calling /models endpoint
+     * 支持 DMXAPI 等第三方聚合平台的特殊 headers
+     */
+    async verifyOpenAICompatibleKey(effectiveHost, secret) {
+        const modelsUrl = `${effectiveHost}/models`;
+        const headers = this.getOpenAICompatibleHeaders(effectiveHost, secret);
+        this.logger.debug(`[ProviderVerify] Calling ${modelsUrl} with headers keys: ${Object.keys(headers).join(', ')}`);
+        const response = await (0, rxjs_1.firstValueFrom)(this.httpService.get(modelsUrl, {
+            headers,
+            timeout: 10000,
+        }));
+        const data = response.data;
+        let models = [];
+        if (data?.data && Array.isArray(data.data)) {
+            models = data.data.map((m) => ({
+                id: m.id,
+                name: m.name || m.id,
+                created: m.created,
+                owned_by: m.owned_by,
+            }));
+        }
+        else if (data?.models && Array.isArray(data.models)) {
+            // Some providers use 'models' instead of 'data'
+            models = data.models.map((m) => ({
+                id: m.id || m.name,
+                name: m.name || m.id,
+                created: m.created,
+                owned_by: m.owned_by,
+            }));
+        }
+        return models;
+    }
+    /**
+     * Handle errors and return appropriate response
+     */
+    handleError(error, vendor, startTime) {
+        const latency = Date.now() - startTime;
+        let errorMessage = 'Connection failed';
+        if (error.response) {
+            const status = error.response.status;
+            if (status === 401) {
+                errorMessage = 'Invalid API key';
+            }
+            else if (status === 403) {
+                errorMessage = 'Access denied';
+            }
+            else if (status === 404) {
+                errorMessage = 'API endpoint not found';
+            }
+            else if (status === 429) {
+                errorMessage = 'Rate limit exceeded';
+            }
+            else {
+                errorMessage = error.response.data?.error?.message || `HTTP ${status}`;
+            }
+        }
+        else if (error.code === 'ECONNREFUSED') {
+            errorMessage = 'Connection refused';
+        }
+        else if (error.code === 'ETIMEDOUT' || error.code === 'ECONNABORTED') {
+            errorMessage = 'Connection timeout';
+        }
+        else if (error.message) {
+            errorMessage = error.message;
+        }
+        this.logger.warn(`Provider key verification failed for ${vendor}: ${errorMessage}`);
+        return {
+            valid: false,
+            latency,
+            error: errorMessage,
+        };
+    }
+};
+exports.ProviderVerifyClient = ProviderVerifyClient;
+exports.ProviderVerifyClient = ProviderVerifyClient = __decorate([
+    (0, common_1.Injectable)(),
+    __param(1, (0, common_1.Inject)(nest_winston_1.WINSTON_MODULE_PROVIDER)),
+    __metadata("design:paramtypes", [axios_1.HttpService,
+        winston_1.Logger])
+], ProviderVerifyClient);
+//# sourceMappingURL=provider-verify.client.js.map

package/dist/internal/provider-verify/provider-verify.client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-verify.client.js","sourceRoot":"","sources":["../../../../../packages/clients/src/internal/provider-verify/provider-verify.client.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAAoD;AACpD,yCAA4C;AAC5C,+CAAuD;AACvD,qCAAiC;AACjC,+BAAsC;AAOtC,2DAA8E;AAE9E;;;;;GAKG;AACH,MAAM,2BAA2B,GAAG;IAClC,YAAY;IACZ,WAAW;IACX,gBAAgB;CACjB,CAAC;AAEF;;;;;GAKG;AAEI,IAAM,oBAAoB,GAA1B,MAAM,oBAAoB;IAEZ;IACiC;IAFpD,YACmB,WAAwB,EACS,MAAc;QAD/C,gBAAW,GAAX,WAAW,CAAa;QACS,WAAM,GAAN,MAAM,CAAQ;IAC/D,CAAC;IAEJ;;;OAGG;IACK,oBAAoB,CAAC,aAAqB;QAChD,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,aAAa,CAAC,CAAC;YACnC,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC;YAC5C,OAAO,2BAA2B,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CACjD,QAAQ,CAAC,QAAQ,CAAC,MAAM,CAAC,CAC1B,CAAC;QACJ,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACK,0BAA0B,CAChC,aAAqB,EACrB,MAAc;QAEd,IAAI,IAAI,CAAC,oBAAoB,CAAC,aAAa,CAAC,EAAE,CAAC;YAC7C,0BAA0B;YAC1B,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,OAAO,CAAC;YACrD,OAAO;gBACL,aAAa,EAAE,MAAM,EAAE,gBAAgB;gBACvC,MAAM,EAAE,kBAAkB;gBAC1B,cAAc,EAAE,MAAM;aACvB,CAAC;QACJ,CAAC;QAED,mBAAmB;QACnB,OAAO;YACL,aAAa,EAAE,UAAU,MAAM,EAAE;YACjC,cAAc,EAAE,kBAAkB;SACnC,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAM,CACV,KAA6B;QAE7B,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC7B,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,QAAQ,EAAE,GAAG,KAAK,CAAC;QAEhG,yBAAyB;QACzB,IAAI,aAAa,GAAG,IAAA,qCAAmB,EAAC,MAAwB,EAAE,OAAO,CAAC,CAAC;QAC3E,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,OAAO;gBACL,KAAK,EAAE,KAAK;gBACZ,KAAK,EAAE,0CAA0C;aAClD,CAAC;QACJ,CAAC;QAED,4CAA4C;QAC5C,wEAAwE;QACxE,MAAM,cAAc,GAAG,kCAAgB,CAAC,MAAM,CAAC,CAAC;QAChD,MAAM,OAAO,GAAG,YAAY,IAAI,cAAc,EAAE,OAAO,IAAI,QAAQ,CAAC;QAEpE,0DAA0D;QAC1D,IAAI,MAAM,KAAK,SAAS,IAAI,QAAQ,EAAE,QAAQ,EAAE,CAAC;YAC/C,MAAM,SAAS,GAAG,aAAa,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;YAC1D,aAAa,IAAI,GAAG,SAAS,WAAW,kBAAkB,CAAC,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;QAC1F,CAAC;QAED,IAAI,CAAC,MAAM,CAAC,IAAI,CACd,6CAA6C,MAAM,aAAa,OAAO,mBAAmB,aAAa,EAAE,CAC1G,CAAC;QAEF,IAAI,CAAC;YACH,IAAI,MAAM,GAAoB,EAAE,CAAC;YAEjC,6BAA6B;YAC7B,IAAI,OAAO,KAAK,WAAW,EAAE,CAAC;gBAC5B,MAAM,GAAG,MAAM,IAAI,CAAC,kBAAkB,CACpC,aAAa,EACb,MAAM,EACN,SAAS,CACV,CAAC;YACJ,CAAC;iBAAM,IAAI,OAAO,KAAK,QAAQ,EAAE,CAAC;gBAChC,MAAM,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,aAAa,EAAE,MAAM,CAAC,CAAC;YAC7D,CAAC;iBAAM,IAAI,OAAO,KAAK,QAAQ,EAAE,CAAC;gBAChC,MAAM,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,aAAa,EAAE,MAAM,CAAC,CAAC;YAC7D,CAAC;iBAAM,CAAC;gBACN,MAAM,GAAG,MAAM,IAAI,CAAC,yBAAyB,CAAC,aAAa,EAAE,MAAM,CAAC,CAAC;YACvE,CAAC;YAED,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YACvC,IAAI,CAAC,MAAM,CAAC,IAAI,CACd,6BAA6B,MAAM,CAAC,MAAM,qBAAqB,MAAM,EAAE,CACxE,CAAC;YACF,OAAO;gBACL,KAAK,EAAE,IAAI;gBACX,OAAO;gBACP,MAAM;aACP,CAAC;QACJ,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YACpB,OAAO,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,MAAwB,EAAE,SAAS,CAAC,CAAC;QACtE,CAAC;IACH,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,kBAAkB,CAC9B,aAAqB,EACrB,MAAc,EACd,SAAiB;QAEjB,MAAM,QAAQ,GAAG,MAAM,IAAA,qBAAc,EACnC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,aAAa,cAAc,EAAE;YACnD,OAAO,EAAE;gBACP,WAAW,EAAE,MAAM;gBACnB,mBAAmB,EAAE,YAAY;aAClC;YACD,OAAO,EAAE,KAAK;YACd,cAAc,EAAE,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,GAAG,GAAG;SACzC,CAAC,CACH,CAAC;QAEF,wBAAwB;QACxB,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;YAC5B,MAAM,EAAE,QAAQ,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,CAAC;QACtC,CAAC;QAED,8DAA8D;QAC9D,OAAO;YACL,EAAE,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE,iBAAiB,EAAE;YAClD,EAAE,EAAE,EAAE,4BAA4B,EAAE,IAAI,EAAE,mBAAmB,EAAE;YAC/D,EAAE,EAAE,EAAE,2BAA2B,EAAE,IAAI,EAAE,kBAAkB,EAAE;SAC9D,CAAC;IACJ,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,eAAe,CAC3B,aAAqB,EACrB,MAAc;QAEd,MAAM,SAAS,GAAG,GAAG,aAAa,eAAe,MAAM,EAAE,CAAC;QAC1D,MAAM,QAAQ,GAAG,MAAM,IAAA,qBAAc,EACnC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,EAAE;YAC9B,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;aACnC;YACD,OAAO,EAAE,KAAK;SACf,CAAC,CACH,CAAC;QAEF,MAAM,IAAI,GAAG,QAAQ,CAAC,IAAI,CAAC;QAC3B,IAAI,MAAM,GAAoB,EAAE,CAAC;QAEjC,IAAI,IAAI,EAAE,MAAM,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;YAC/C,MAAM,GAAG,IAAI,CAAC,MAAM;iBACjB,MAAM,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,UAAU,CAAC,eAAe,CAAC,CAAC;iBACvD,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC;gBAChB,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,IAAI;gBAC5C,IAAI,EAAE,CAAC,CAAC,WAAW,IAAI,CAAC,CAAC,IAAI,EAAE,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC;aACtD,CAAC,CAAC,CAAC;QACR,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,eAAe,CAC3B,aAAqB,EACrB,OAAe;QAEf,6EAA6E;QAC7E,+CAA+C;QAC/C,MAAM,QAAQ,GAAG,aAAa,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;QACpD,MAAM,SAAS,GAAG,GAAG,QAAQ,WAAW,CAAC;QACzC,MAAM,QAAQ,GAAG,MAAM,IAAA,qBAAc,EACnC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,EAAE;YAC9B,OAAO,EAAE,KAAK;SACf,CAAC,CACH,CAAC;QAEF,MAAM,IAAI,GAAG,QAAQ,CAAC,IAAI,CAAC;QAC3B,IAAI,MAAM,GAAoB,EAAE,CAAC;QAEjC,IAAI,IAAI,EAAE,MAAM,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;YAC/C,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC;gBACpC,EAAE,EAAE,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,KAAK;gBACrB,IAAI,EAAE,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,KAAK;aACxB,CAAC,CAAC,CAAC;QACN,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,yBAAyB,CACrC,aAAqB,EACrB,MAAc;QAEd,MAAM,SAAS,GAAG,GAAG,aAAa,SAAS,CAAC;QAC5C,MAAM,OAAO,GAAG,IAAI,CAAC,0BAA0B,CAAC,aAAa,EAAE,MAAM,CAAC,CAAC;QAEvE,IAAI,CAAC,MAAM,CAAC,KAAK,CACf,4BAA4B,SAAS,uBAAuB,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAC9F,CAAC;QAEF,MAAM,QAAQ,GAAG,MAAM,IAAA,qBAAc,EACnC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,EAAE;YAC9B,OAAO;YACP,OAAO,EAAE,KAAK;SACf,CAAC,CACH,CAAC;QAEF,MAAM,IAAI,GAAG,QAAQ,CAAC,IAAI,CAAC;QAC3B,IAAI,MAAM,GAAoB,EAAE,CAAC;QAEjC,IAAI,IAAI,EAAE,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC3C,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC;gBAClC,EAAE,EAAE,CAAC,CAAC,EAAE;gBACR,IAAI,EAAE,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,EAAE;gBACpB,OAAO,EAAE,CAAC,CAAC,OAAO;gBAClB,QAAQ,EAAE,CAAC,CAAC,QAAQ;aACrB,CAAC,CAAC,CAAC;QACN,CAAC;aAAM,IAAI,IAAI,EAAE,MAAM,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;YACtD,gDAAgD;YAChD,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC;gBACpC,EAAE,EAAE,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,IAAI;gBAClB,IAAI,EAAE,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,EAAE;gBACpB,OAAO,EAAE,CAAC,CAAC,OAAO;gBAClB,QAAQ,EAAE,CAAC,CAAC,QAAQ;aACrB,CAAC,CAAC,CAAC;QACN,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACK,WAAW,CACjB,KAAU,EACV,MAAsB,EACtB,SAAiB;QAEjB,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QACvC,IAAI,YAAY,GAAG,mBAAmB,CAAC;QAEvC,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;YACnB,MAAM,MAAM,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC;YACrC,IAAI,MAAM,KAAK,GAAG,EAAE,CAAC;gBACnB,YAAY,GAAG,iBAAiB,CAAC;YACnC,CAAC;iBAAM,IAAI,MAAM,KAAK,GAAG,EAAE,CAAC;gBAC1B,YAAY,GAAG,eAAe,CAAC;YACjC,CAAC;iBAAM,IAAI,MAAM,KAAK,GAAG,EAAE,CAAC;gBAC1B,YAAY,GAAG,wBAAwB,CAAC;YAC1C,CAAC;iBAAM,IAAI,MAAM,KAAK,GAAG,EAAE,CAAC;gBAC1B,YAAY,GAAG,qBAAqB,CAAC;YACvC,CAAC;iBAAM,CAAC;gBACN,YAAY,GAAG,KAAK,CAAC,QAAQ,CAAC,IAAI,EAAE,KAAK,EAAE,OAAO,IAAI,QAAQ,MAAM,EAAE,CAAC;YACzE,CAAC;QACH,CAAC;aAAM,IAAI,KAAK,CAAC,IAAI,KAAK,cAAc,EAAE,CAAC;YACzC,YAAY,GAAG,oBAAoB,CAAC;QACtC,CAAC;aAAM,IAAI,KAAK,CAAC,IAAI,KAAK,WAAW,IAAI,KAAK,CAAC,IAAI,KAAK,cAAc,EAAE,CAAC;YACvE,YAAY,GAAG,oBAAoB,CAAC;QACtC,CAAC;aAAM,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;YACzB,YAAY,GAAG,KAAK,CAAC,OAAO,CAAC;QAC/B,CAAC;QAED,IAAI,CAAC,MAAM,CAAC,IAAI,CACd,wCAAwC,MAAM,KAAK,YAAY,EAAE,CAClE,CAAC;QAEF,OAAO;YACL,KAAK,EAAE,KAAK;YACZ,OAAO;YACP,KAAK,EAAE,YAAY;SACpB,CAAC;IACJ,CAAC;CACF,CAAA;AAzSY,oDAAoB;+BAApB,oBAAoB;IADhC,IAAA,mBAAU,GAAE;IAIR,WAAA,IAAA,eAAM,EAAC,sCAAuB,CAAC,CAAA;qCADF,mBAAW;QACiB,gBAAM;GAHvD,oBAAoB,CAyShC"}

package/dist/internal/provider-verify/provider-verify.module.d.ts

@@ -0,0 +1,3 @@
+export declare class ProviderVerifyModule {
+}
+//# sourceMappingURL=provider-verify.module.d.ts.map

package/dist/internal/provider-verify/provider-verify.module.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-verify.module.d.ts","sourceRoot":"","sources":["../../../../../packages/clients/src/internal/provider-verify/provider-verify.module.ts"],"names":[],"mappings":"AAIA,qBAUa,oBAAoB;CAAG"}

package/dist/internal/provider-verify/provider-verify.module.js

@@ -0,0 +1,28 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ProviderVerifyModule = void 0;
+const common_1 = require("@nestjs/common");
+const axios_1 = require("@nestjs/axios");
+const provider_verify_client_1 = require("./provider-verify.client");
+let ProviderVerifyModule = class ProviderVerifyModule {
+};
+exports.ProviderVerifyModule = ProviderVerifyModule;
+exports.ProviderVerifyModule = ProviderVerifyModule = __decorate([
+    (0, common_1.Module)({
+        imports: [
+            axios_1.HttpModule.register({
+                timeout: 15000,
+                maxRedirects: 5,
+            }),
+        ],
+        providers: [provider_verify_client_1.ProviderVerifyClient],
+        exports: [provider_verify_client_1.ProviderVerifyClient],
+    })
+], ProviderVerifyModule);
+//# sourceMappingURL=provider-verify.module.js.map

package/dist/internal/provider-verify/provider-verify.module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-verify.module.js","sourceRoot":"","sources":["../../../../../packages/clients/src/internal/provider-verify/provider-verify.module.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAAwC;AACxC,yCAA2C;AAC3C,qEAAgE;AAYzD,IAAM,oBAAoB,GAA1B,MAAM,oBAAoB;CAAG,CAAA;AAAvB,oDAAoB;+BAApB,oBAAoB;IAVhC,IAAA,eAAM,EAAC;QACN,OAAO,EAAE;YACP,kBAAU,CAAC,QAAQ,CAAC;gBAClB,OAAO,EAAE,KAAK;gBACd,YAAY,EAAE,CAAC;aAChB,CAAC;SACH;QACD,SAAS,EAAE,CAAC,6CAAoB,CAAC;QACjC,OAAO,EAAE,CAAC,6CAAoB,CAAC;KAChC,CAAC;GACW,oBAAoB,CAAG"}

package/dist/internal/sso/index.d.ts

@@ -0,0 +1,5 @@
+export { SsoClientModule } from './sso.module';
+export { SsoMessageClient } from './sso-message.client';
+export { SsoMessageProxyService } from './sso-message-proxy.service';
+export { SsoAuthClient } from './sso-auth.client';
+//# sourceMappingURL=index.d.ts.map

package/dist/internal/sso/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../packages/clients/src/internal/sso/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAC/C,OAAO,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AACxD,OAAO,EAAE,sBAAsB,EAAE,MAAM,6BAA6B,CAAC;AACrE,OAAO,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC"}

package/dist/internal/sso/index.js

@@ -0,0 +1,12 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SsoAuthClient = exports.SsoMessageProxyService = exports.SsoMessageClient = exports.SsoClientModule = void 0;
+var sso_module_1 = require("./sso.module");
+Object.defineProperty(exports, "SsoClientModule", { enumerable: true, get: function () { return sso_module_1.SsoClientModule; } });
+var sso_message_client_1 = require("./sso-message.client");
+Object.defineProperty(exports, "SsoMessageClient", { enumerable: true, get: function () { return sso_message_client_1.SsoMessageClient; } });
+var sso_message_proxy_service_1 = require("./sso-message-proxy.service");
+Object.defineProperty(exports, "SsoMessageProxyService", { enumerable: true, get: function () { return sso_message_proxy_service_1.SsoMessageProxyService; } });
+var sso_auth_client_1 = require("./sso-auth.client");
+Object.defineProperty(exports, "SsoAuthClient", { enumerable: true, get: function () { return sso_auth_client_1.SsoAuthClient; } });
+//# sourceMappingURL=index.js.map

package/dist/internal/sso/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../packages/clients/src/internal/sso/index.ts"],"names":[],"mappings":";;;AAAA,2CAA+C;AAAtC,6GAAA,eAAe,OAAA;AACxB,2DAAwD;AAA/C,sHAAA,gBAAgB,OAAA;AACzB,yEAAqE;AAA5D,mIAAA,sBAAsB,OAAA;AAC/B,qDAAkD;AAAzC,gHAAA,aAAa,OAAA"}

package/dist/internal/sso/sso-auth.client.d.ts

@@ -0,0 +1,33 @@
+import { HttpService } from '@nestjs/axios';
+import { ConfigService } from '@nestjs/config';
+export declare class SsoAuthClient {
+    private readonly httpService;
+    private readonly configService;
+    constructor(httpService: HttpService, configService: ConfigService);
+    private get ssoInternalUrl();
+    private get ssoBaseUrl();
+    /**
+     * 验证 access token 有效性
+     */
+    verifyToken(accessToken: string): Promise<{
+        valid: boolean;
+        userId?: string;
+        expiresAt?: number;
+    }>;
+    /**
+     * 检查 SSO 会话状态（跨子域 cookie）
+     */
+    getSession(cookieHeader?: string): Promise<unknown>;
+    /**
+     * 按 ID 获取用户信息
+     */
+    getUser(userId: string): Promise<unknown>;
+    /**
+     * 获取 JWKS 公钥集合
+     */
+    getJwks(): Promise<{
+        keys: Array<Record<string, unknown>>;
+    }>;
+    private getServiceToken;
+}
+//# sourceMappingURL=sso-auth.client.d.ts.map

package/dist/internal/sso/sso-auth.client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-auth.client.d.ts","sourceRoot":"","sources":["../../../../../packages/clients/src/internal/sso/sso-auth.client.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAC5C,OAAO,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAG/C,qBACa,aAAa;IAEtB,OAAO,CAAC,QAAQ,CAAC,WAAW;IAC5B,OAAO,CAAC,QAAQ,CAAC,aAAa;gBADb,WAAW,EAAE,WAAW,EACxB,aAAa,EAAE,aAAa;IAG/C,OAAO,KAAK,cAAc,GAKzB;IAED,OAAO,KAAK,UAAU,GAKrB;IAED;;OAEG;IACG,WAAW,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAC9C,KAAK,EAAE,OAAO,CAAC;QACf,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,CAAC;IAiBF;;OAEG;IACG,UAAU,CAAC,YAAY,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAazD;;OAEG;IACG,OAAO,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAY/C;;OAEG;IACG,OAAO,IAAI,OAAO,CAAC;QAAE,IAAI,EAAE,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAA;KAAE,CAAC;IASlE,OAAO,CAAC,eAAe;CAGxB"}

package/dist/internal/sso/sso-auth.client.js

@@ -0,0 +1,89 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SsoAuthClient = void 0;
+const common_1 = require("@nestjs/common");
+const axios_1 = require("@nestjs/axios");
+const config_1 = require("@nestjs/config");
+const rxjs_1 = require("rxjs");
+let SsoAuthClient = class SsoAuthClient {
+    httpService;
+    configService;
+    constructor(httpService, configService) {
+        this.httpService = httpService;
+        this.configService = configService;
+    }
+    get ssoInternalUrl() {
+        return (this.configService.get('SSO_INTERNAL_API_URL') ||
+            'http://localhost:3102/api');
+    }
+    get ssoBaseUrl() {
+        return (this.configService.get('SSO_API_URL') ||
+            'http://localhost:3102/api');
+    }
+    /**
+     * 验证 access token 有效性
+     */
+    async verifyToken(accessToken) {
+        const response = await (0, rxjs_1.firstValueFrom)(this.httpService.post(`${this.ssoInternalUrl}/internal/verify-token`, { token: accessToken }, {
+            headers: {
+                'Authorization': `Bearer ${this.getServiceToken()}`,
+                'Content-Type': 'application/json',
+            },
+            timeout: 5000,
+        }));
+        return response.data;
+    }
+    /**
+     * 检查 SSO 会话状态（跨子域 cookie）
+     */
+    async getSession(cookieHeader) {
+        const headers = {};
+        if (cookieHeader)
+            headers['Cookie'] = cookieHeader;
+        const response = await (0, rxjs_1.firstValueFrom)(this.httpService.get(`${this.ssoBaseUrl}/auth/session`, {
+            headers,
+            timeout: 5000,
+        }));
+        return response.data;
+    }
+    /**
+     * 按 ID 获取用户信息
+     */
+    async getUser(userId) {
+        const response = await (0, rxjs_1.firstValueFrom)(this.httpService.get(`${this.ssoInternalUrl}/internal/users/${userId}`, {
+            headers: {
+                'Authorization': `Bearer ${this.getServiceToken()}`,
+            },
+            timeout: 5000,
+        }));
+        return response.data;
+    }
+    /**
+     * 获取 JWKS 公钥集合
+     */
+    async getJwks() {
+        const response = await (0, rxjs_1.firstValueFrom)(this.httpService.get(`${this.ssoBaseUrl}/.well-known/jwks.json`, {
+            timeout: 5000,
+        }));
+        return response.data;
+    }
+    getServiceToken() {
+        return this.configService.get('INTERNAL_API_SECRET') || '';
+    }
+};
+exports.SsoAuthClient = SsoAuthClient;
+exports.SsoAuthClient = SsoAuthClient = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [axios_1.HttpService,
+        config_1.ConfigService])
+], SsoAuthClient);
+//# sourceMappingURL=sso-auth.client.js.map

package/dist/internal/sso/sso-auth.client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-auth.client.js","sourceRoot":"","sources":["../../../../../packages/clients/src/internal/sso/sso-auth.client.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,2CAA4C;AAC5C,yCAA4C;AAC5C,2CAA+C;AAC/C,+BAAsC;AAG/B,IAAM,aAAa,GAAnB,MAAM,aAAa;IAEL;IACA;IAFnB,YACmB,WAAwB,EACxB,aAA4B;QAD5B,gBAAW,GAAX,WAAW,CAAa;QACxB,kBAAa,GAAb,aAAa,CAAe;IAC5C,CAAC;IAEJ,IAAY,cAAc;QACxB,OAAO,CACL,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,sBAAsB,CAAC;YACtD,2BAA2B,CAC5B,CAAC;IACJ,CAAC;IAED,IAAY,UAAU;QACpB,OAAO,CACL,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,aAAa,CAAC;YAC7C,2BAA2B,CAC5B,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,WAAmB;QAKnC,MAAM,QAAQ,GAAG,MAAM,IAAA,qBAAc,EACnC,IAAI,CAAC,WAAW,CAAC,IAAI,CACnB,GAAG,IAAI,CAAC,cAAc,wBAAwB,EAC9C,EAAE,KAAK,EAAE,WAAW,EAAE,EACtB;YACE,OAAO,EAAE;gBACP,eAAe,EAAE,UAAU,IAAI,CAAC,eAAe,EAAE,EAAE;gBACnD,cAAc,EAAE,kBAAkB;aACnC;YACD,OAAO,EAAE,IAAI;SACd,CACF,CACF,CAAC;QACF,OAAO,QAAQ,CAAC,IAAI,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU,CAAC,YAAqB;QACpC,MAAM,OAAO,GAA2B,EAAE,CAAC;QAC3C,IAAI,YAAY;YAAE,OAAO,CAAC,QAAQ,CAAC,GAAG,YAAY,CAAC;QAEnD,MAAM,QAAQ,GAAG,MAAM,IAAA,qBAAc,EACnC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,UAAU,eAAe,EAAE;YACtD,OAAO;YACP,OAAO,EAAE,IAAI;SACd,CAAC,CACH,CAAC;QACF,OAAO,QAAQ,CAAC,IAAI,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,MAAc;QAC1B,MAAM,QAAQ,GAAG,MAAM,IAAA,qBAAc,EACnC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,cAAc,mBAAmB,MAAM,EAAE,EAAE;YACtE,OAAO,EAAE;gBACP,eAAe,EAAE,UAAU,IAAI,CAAC,eAAe,EAAE,EAAE;aACpD;YACD,OAAO,EAAE,IAAI;SACd,CAAC,CACH,CAAC;QACF,OAAO,QAAQ,CAAC,IAAI,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO;QACX,MAAM,QAAQ,GAAG,MAAM,IAAA,qBAAc,EACnC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,UAAU,wBAAwB,EAAE;YAC/D,OAAO,EAAE,IAAI;SACd,CAAC,CACH,CAAC;QACF,OAAO,QAAQ,CAAC,IAAI,CAAC;IACvB,CAAC;IAEO,eAAe;QACrB,OAAO,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,qBAAqB,CAAC,IAAI,EAAE,CAAC;IACrE,CAAC;CACF,CAAA;AA1FY,sCAAa;wBAAb,aAAa;IADzB,IAAA,mBAAU,GAAE;qCAGqB,mBAAW;QACT,sBAAa;GAHpC,aAAa,CA0FzB"}

package/dist/internal/sso/sso-message-proxy.service.d.ts

@@ -0,0 +1,11 @@
+import { HttpService } from '@nestjs/axios';
+import { ConfigService } from '@nestjs/config';
+export declare class SsoMessageProxyService {
+    private readonly httpService;
+    private readonly configService;
+    constructor(httpService: HttpService, configService: ConfigService);
+    private get ssoBaseUrl();
+    forwardGet(path: string, params: Record<string, unknown>, authHeader?: string): Promise<any>;
+    forwardPatch(path: string, body: unknown, authHeader?: string): Promise<any>;
+}
+//# sourceMappingURL=sso-message-proxy.service.d.ts.map

package/dist/internal/sso/sso-message-proxy.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-message-proxy.service.d.ts","sourceRoot":"","sources":["../../../../../packages/clients/src/internal/sso/sso-message-proxy.service.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAC5C,OAAO,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAG/C,qBACa,sBAAsB;IAE/B,OAAO,CAAC,QAAQ,CAAC,WAAW;IAC5B,OAAO,CAAC,QAAQ,CAAC,aAAa;gBADb,WAAW,EAAE,WAAW,EACxB,aAAa,EAAE,aAAa;IAG/C,OAAO,KAAK,UAAU,GAKrB;IAEK,UAAU,CACd,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,UAAU,CAAC,EAAE,MAAM;IAWf,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,UAAU,CAAC,EAAE,MAAM;CAWpE"}