@esri/arcgis-rest-developer-credentials 2.1.1-alpha.1 → 4.8.0

package/dist/bundled/developer-credentials.esm.min.js.map

@@ -1 +1 @@
-{"version":3,"file":"developer-credentials.esm.min.js","sources":["../../src/shared/getRegisteredAppInfo.ts","../../src/shared/helpers.ts","../../src/shared/generateApiKeyToken.ts","../../src/shared/registerApp.ts","../../src/createApiKey.ts","../../src/updateApiKey.ts","../../src/getApiKey.ts","../../src/invalidateApiKey.ts","../../src/getOAuthApp.ts","../../src/updateOAuthApp.ts","../../src/createOAuthApp.ts","../../src/shared/unregisterApp.ts"],"sourcesContent":["/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\nimport { request } from \"@esri/arcgis-rest-request\";\nimport { getPortalUrl } from \"@esri/arcgis-rest-portal\";\n\nimport {\n  IRegisteredAppResponse,\n  IGetAppInfoOptions,\n  IApp\n} from \"./types/appType.js\";\nimport { registeredAppResponseToApp } from \"./helpers.js\";\n\n/**\n * Used to retrieve registered app info. See the [REST Documentation](https://developers.arcgis.com/rest/users-groups-and-items/registered-app-info.htm) for more information.\n *\n * ```js\n * import { getRegisteredAppInfo, IApp } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * getRegisteredAppInfo({\n *   itemId: \"xyz_itemId\",\n *   authentication: authSession\n * }).then((registeredApp: IApp) => {\n *   // => {client_id: \"xyz_id\", client_secret: \"xyz_secret\", ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode getRegisteredAppInfo | getRegisteredAppInfo()}, including an itemId of which app to retrieve and an {@linkcode ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IApp} object representing successfully retrieved app.\n */\nexport async function getRegisteredAppInfo(\n  requestOptions: IGetAppInfoOptions\n): Promise<IApp> {\n  const userName = await requestOptions.authentication.getUsername();\n  const url =\n    getPortalUrl(requestOptions) +\n    `/content/users/${userName}/items/${requestOptions.itemId}/registeredAppInfo`;\n  requestOptions.httpMethod = \"POST\";\n\n  const registeredAppResponse: IRegisteredAppResponse = await request(url, {\n    ...requestOptions,\n    params: { f: \"json\" }\n  });\n\n  return registeredAppResponseToApp(registeredAppResponse);\n}\n","import {\n  IRequestOptions,\n  IAuthenticationManager\n} from \"@esri/arcgis-rest-request\";\nimport { IRegisteredAppResponse, IApp } from \"./types/appType.js\";\nimport { IApiKeyInfo } from \"./types/apiKeyType.js\";\nimport { IOAuthAppInfo } from \"./types/oAuthType.js\";\nimport { generateApiKeyToken } from \"./generateApiKeyToken.js\";\n\n/**\n * @internal\n * Encode special params value (e.g. array type...) in advance in order to make {@linkcode encodeParam} works correctly. Usage is case by case.\n */\nexport const stringifyArrays = (requestOptions: IRequestOptions) => {\n  Object.entries(requestOptions.params).forEach((entry) => {\n    const [key, value] = entry;\n    if (value.constructor.name === \"Array\") {\n      requestOptions.params[key] = JSON.stringify(value);\n    }\n  });\n};\n\n/**\n * @internal\n * Used to convert {@linkcode IRegisteredAppResponse} to {@linkcode IApp}.\n */\nexport function registeredAppResponseToApp(\n  response: IRegisteredAppResponse\n): IApp {\n  const omittedKeys = [\n    \"apnsProdCert\",\n    \"apnsSandboxCert\",\n    \"gcmApiKey\",\n    \"isBeta\",\n    \"customAppLoginShowTriage\"\n  ];\n  const dateKeys = [\"modified\", \"registered\"];\n\n  return Object.keys(response)\n    .filter((key) => !omittedKeys.includes(key))\n    .reduce((obj: any, key) => {\n      if (dateKeys.includes(key)) {\n        obj[key] = new Date((response as any)[key]);\n      } else {\n        obj[key] = (response as any)[key];\n      }\n      return obj;\n    }, {});\n}\n\n/**\n * @internal\n * Used to convert {@linkcode IApp} to {@linkcode IApiKeyInfo} only if `appType` is \"apikey\".\n */\nexport function appToApiKeyProperties(response: IApp): IApiKeyInfo {\n  delete response.client_secret;\n  delete response.redirect_uris;\n  delete response.appType;\n  delete (response as any).customAppLoginShowTriage;\n  delete response.apiKey;\n\n  return response as IApiKeyInfo;\n}\n\n/**\n * @internal\n * Used to convert {@linkcode IApp} to {@linkcode IOAuthAppInfo}.\n */\nexport function appToOAuthAppProperties(response: IApp): IOAuthAppInfo {\n  delete response.appType;\n  delete response.httpReferrers;\n  delete response.privileges;\n  delete response.apiKey;\n  delete (response as any).customAppLoginShowTriage;\n  delete response.isPersonalAPIToken;\n  delete response.apiToken1Active;\n  delete response.apiToken2Active;\n\n  return response as IOAuthAppInfo;\n}\n\n/**\n * @internal\n * Used to extract base request options from a hybrid option and exclude `params` and `authentication`.\n */\nexport function extractBaseRequestOptions<T extends IRequestOptions>(\n  options: T\n): Partial<IRequestOptions> {\n  const requestOptionsProperties: Array<keyof T> = [\n    \"credentials\",\n    \"headers\",\n    \"hideToken\",\n    \"httpMethod\",\n    \"maxUrlLength\",\n    \"portal\",\n    \"rawResponse\",\n    \"signal\",\n    \"suppressWarnings\"\n  ];\n\n  return filterKeys(options, requestOptionsProperties);\n}\n\n/**\n * @internal\n * Used to create a new object including only specified keys from another object.\n */\nexport function filterKeys<T extends object>(\n  object: T,\n  includedKeys: Array<keyof T>\n): any {\n  return includedKeys.reduce(\n    (obj: { [key: string | number | symbol]: any }, ele) => {\n      if (ele in object) {\n        obj[ele] = object[ele];\n      }\n      return obj;\n    },\n    {}\n  );\n}\n\n/**\n * Used to determine if a generated key is in slot 1 or slot 2 key. The full API key should be passed. `undefined` will be returned if the proper slot could not be identified.\n */\nexport function slotForKey(key: string) {\n  const slot = parseInt(key.substring(key.length - 10, key.length - 9));\n\n  if (slot === 1 || slot === 2) {\n    return slot;\n  }\n\n  return undefined;\n}\n\n/**\n * @internal\n * Used to determine which slot to invalidate a key in given a number or a full or patial key.\n */\nexport function slotForInvalidationKey(param: string | 1 | 2) {\n  if (param === 1 || param === 2) {\n    return param;\n  }\n\n  if (typeof param !== \"string\") {\n    return undefined;\n  }\n\n  const fullKeySlot = slotForKey(param);\n  if (fullKeySlot) {\n    return fullKeySlot;\n  }\n}\n\ninterface IGenerateApiKeyTokenOptions extends IRequestOptions {\n  authentication: IAuthenticationManager;\n}\n\n/**\n * @internal\n * Used to generate tokens in slot 1 and/or 2 of an API key.\n */\nexport function generateApiKeyTokens(\n  itemId: string,\n  slots: Array<1 | 2>,\n  requestOptions: IGenerateApiKeyTokenOptions\n) {\n  return Promise.all(\n    slots.map((slot) => {\n      return generateApiKeyToken({\n        itemId,\n        apiKey: slot,\n        ...requestOptions\n      });\n    })\n  ).then((responses) => {\n    return responses\n      .map((responses) => responses.access_token)\n      .reduce((obj, token, index) => {\n        obj[`accessToken${slotForKey(token)}`] = token;\n        return obj;\n      }, {} as { [key: string]: string });\n  });\n}\n\n/**\n * @internal\n * Convert boolean flags to an array of slots for {@linkcode generateApiKeyTokens}.\n */\nexport function generateOptionsToSlots(\n  generateToken1: boolean,\n  generateToken2: boolean\n): Array<1 | 2> {\n  const slots: Array<1 | 2> = [];\n  if (generateToken1) {\n    slots.push(1);\n  }\n  if (generateToken2) {\n    slots.push(2);\n  }\n  return slots;\n}\n\ntype expirationDateParams =\n  | {\n      apiToken1ExpirationDate: Date | -1;\n      apiToken2ExpirationDate: Date | -1;\n    }\n  | {\n      apiToken1ExpirationDate: Date | -1;\n    }\n  | {\n      apiToken2ExpirationDate: Date | -1;\n    }\n  | {};\n\n/**\n * @internal\n * Build params for updating expiration dates\n */\nexport function buildExpirationDateParams(\n  requestOptions: {\n    apiToken1ExpirationDate?: Date;\n    apiToken2ExpirationDate?: Date;\n  },\n  fillDefaults?: boolean\n): expirationDateParams {\n  const updateparams: any = {};\n  if (requestOptions.apiToken1ExpirationDate) {\n    updateparams.apiToken1ExpirationDate =\n      requestOptions.apiToken1ExpirationDate;\n  }\n\n  if (requestOptions.apiToken2ExpirationDate) {\n    updateparams.apiToken2ExpirationDate =\n      requestOptions.apiToken2ExpirationDate;\n  }\n\n  if (fillDefaults && !updateparams.apiToken1ExpirationDate) {\n    updateparams.apiToken1ExpirationDate = -1;\n  }\n\n  if (fillDefaults && !updateparams.apiToken2ExpirationDate) {\n    updateparams.apiToken2ExpirationDate = -1;\n  }\n  return updateparams;\n}\n","import {\n  request,\n  IRequestOptions,\n  IAuthenticationManager\n} from \"@esri/arcgis-rest-request\";\nimport { getRegisteredAppInfo } from \"./getRegisteredAppInfo.js\";\nimport { getPortalUrl } from \"@esri/arcgis-rest-portal\";\n\nexport interface IGenerateApiKeyTokenOptions extends IRequestOptions {\n  itemId: string;\n  apiKey: 1 | 2;\n  portal?: string;\n  authentication: IAuthenticationManager;\n}\n\nexport async function generateApiKeyToken(\n  options: IGenerateApiKeyTokenOptions\n): Promise<{ access_token: string; expires_in: number }> {\n  const portal = getPortalUrl(options);\n  const url = `${portal}/oauth2/token`;\n\n  const appInfo = await getRegisteredAppInfo({\n    itemId: options.itemId,\n    authentication: options.authentication\n  });\n\n  const params = {\n    client_id: appInfo.client_id,\n    client_secret: appInfo.client_secret,\n    apiToken: options.apiKey,\n    regenerateApiToken: true,\n    grant_type: \"client_credentials\"\n  };\n\n  // authentication is not being passed to the request because client_secret acts as the auth\n  return request(url, {\n    params\n  });\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport { request, appendCustomParams } from \"@esri/arcgis-rest-request\";\nimport { getPortalUrl } from \"@esri/arcgis-rest-portal\";\nimport {\n  IApp,\n  IRegisterAppOptions,\n  IRegisteredAppResponse\n} from \"./types/appType.js\";\nimport { stringifyArrays, registeredAppResponseToApp } from \"./helpers.js\";\n\n/**\n * Used to register an app. See the [REST Documentation](https://developers.arcgis.com/rest/users-groups-and-items/register-app.htm) for more information.\n *\n * Accepted app types:\n * - apikey\n * - multiple\n * - browser\n * - server\n * - native\n *\n * ```js\n * import { registerApp, IApp } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * registerApp({\n *   itemId: \"xyz_itemId\",\n *   appType: \"multiple\",\n *   redirect_uris: [\"http://localhost:3000/\"],\n *   httpReferrers: [\"http://localhost:3000/\"],\n *   privileges: [\"premium:user:geocode:temporary\", Privileges.FeatureReport],\n *   authentication: authSession\n * }).then((registeredApp: IApp) => {\n *   // => {client_id: \"xyz_id\", client_secret: \"xyz_secret\", ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode registerApp | registerApp()}, including necessary params to register an app and an {@linkcode ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IApp} object representing the newly registered app.\n */\nexport async function registerApp(\n  requestOptions: IRegisterAppOptions\n): Promise<IApp> {\n  // build params\n  const options = appendCustomParams(requestOptions, [\n    \"itemId\",\n    \"appType\",\n    \"redirect_uris\",\n    \"httpReferrers\",\n    \"privileges\"\n  ]);\n  // encode special params value (e.g. array type...) in advance in order to make encodeQueryString() works correctly\n  stringifyArrays(options);\n\n  const url = getPortalUrl(options) + \"/oauth2/registerApp\";\n  options.httpMethod = \"POST\";\n  options.params.f = \"json\";\n\n  const registeredAppResponse: IRegisteredAppResponse = await request(\n    url,\n    options\n  );\n\n  return registeredAppResponseToApp(registeredAppResponse);\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport {\n  ICreateItemOptions,\n  createItem,\n  getItem,\n  IItemAdd,\n  updateItem\n} from \"@esri/arcgis-rest-portal\";\nimport {\n  IApiKeyResponse,\n  ICreateApiKeyOptions\n} from \"./shared/types/apiKeyType.js\";\n\nimport { registerApp } from \"./shared/registerApp.js\";\nimport { IRegisterAppOptions } from \"./shared/types/appType.js\";\nimport {\n  appToApiKeyProperties,\n  filterKeys,\n  extractBaseRequestOptions,\n  generateApiKeyTokens,\n  generateOptionsToSlots,\n  buildExpirationDateParams\n} from \"./shared/helpers.js\";\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\n\n/**\n * Used to register an API key. See the [security and authentication](https://developers.arcgis.com/documentation/mapping-apis-and-services/security/api-keys/) for more information about API key.\n *\n * ```js\n * import { createApiKey, IApiKeyResponse } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * const threeDaysFromToday = new Date();\n * threeDaysFromToday.setDate(threeDaysFromToday.getDate() + 3);\n * threeDaysFromToday.setHours(23, 59, 59, 999);\n *\n * createApiKey({\n *   title: \"xyz_title\",\n *   description: \"xyz_desc\",\n *   tags: [\"xyz_tag1\", \"xyz_tag2\"],\n *   privileges: [\"premium:user:networkanalysis:routing\"],\n *   authentication: authSession,\n *   generateToken1: true, // optional,generate a new token\n *   apiToken1ExpirationDate: threeDaysFromToday  // optional, update expiration date\n * }).then((registeredAPIKey: IApiKeyResponse) => {\n *   // => {accessToken1: \"xyz_key\", item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode createApiKey | createApiKey()}, including necessary params to register an API key and an {@linkcode ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IApiKeyResponse} object representing the newly registered API key.\n */\nexport async function createApiKey(\n  requestOptions: ICreateApiKeyOptions\n): Promise<IApiKeyResponse> {\n  requestOptions.httpMethod = \"POST\";\n\n  // filter param buckets:\n  const baseRequestOptions = extractBaseRequestOptions(requestOptions); // snapshot of basic IRequestOptions before customized params being built into it\n\n  const itemAddProperties: Array<keyof IItemAdd> = [\n    \"categories\",\n    \"culture\",\n    \"description\",\n    \"documentation\",\n    \"extent\",\n    \"owner\",\n    \"properties\",\n    \"snippet\",\n    \"spatialReference\",\n    \"tags\",\n    \"title\",\n    \"type\",\n    \"typeKeywords\",\n    \"url\"\n  ];\n\n  /**\n   * step 1: create item\n   */\n  const createItemOption: ICreateItemOptions = {\n    item: {\n      ...filterKeys(requestOptions as any, itemAddProperties),\n      type: \"Application\"\n    },\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: {\n      f: \"json\"\n    }\n  };\n\n  const createItemResponse = await createItem(createItemOption);\n\n  /**\n   * getRegisteredAppInfoRoute\n   */\n  const registerAppOptions: IRegisterAppOptions = {\n    itemId: createItemResponse.id,\n    appType: \"multiple\",\n    redirect_uris: [\"urn:ietf:wg:oauth:2.0:oob\"],\n    httpReferrers: requestOptions.httpReferrers || [],\n    privileges: requestOptions.privileges,\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication\n  };\n\n  const registeredAppResponse = await registerApp(registerAppOptions);\n\n  /**\n   * step 3: update item with desired expiration dates\n   * you cannot set the expiration date propierties until you\n   * regiester the app so this has to be a seperate step\n   */\n  await updateItem({\n    ...baseRequestOptions,\n    item: {\n      id: createItemResponse.id,\n      ...buildExpirationDateParams(requestOptions, true)\n    },\n    authentication: requestOptions.authentication\n  });\n\n  /*\n   * step 4: get item info\n   */\n  const itemInfo = await getItem(registeredAppResponse.itemId, {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: { f: \"json\" }\n  });\n\n  /**\n   * step 5: generate tokens if requested\n   */\n  const generatedTokens = await generateApiKeyTokens(\n    itemInfo.id,\n    generateOptionsToSlots(\n      requestOptions.generateToken1,\n      requestOptions.generateToken2\n    ),\n    {\n      ...baseRequestOptions,\n      authentication: requestOptions.authentication\n    }\n  );\n\n  /**\n   * step 6: get registered app info to get updated active key status\n   */\n  const updatedRegisteredAppResponse = await getRegisteredAppInfo({\n    ...baseRequestOptions,\n    itemId: itemInfo.id,\n    authentication: requestOptions.authentication\n  });\n\n  return {\n    ...generatedTokens,\n    ...appToApiKeyProperties(updatedRegisteredAppResponse),\n    item: itemInfo\n  };\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport {\n  IApiKeyResponse,\n  IUpdateApiKeyOptions\n} from \"./shared/types/apiKeyType.js\";\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\nimport {\n  appToApiKeyProperties,\n  extractBaseRequestOptions,\n  stringifyArrays,\n  registeredAppResponseToApp,\n  generateApiKeyTokens,\n  generateOptionsToSlots,\n  buildExpirationDateParams\n} from \"./shared/helpers.js\";\nimport { getItem, getPortalUrl, updateItem } from \"@esri/arcgis-rest-portal\";\nimport { appendCustomParams, request } from \"@esri/arcgis-rest-request\";\nimport {\n  IApp,\n  IGetAppInfoOptions,\n  IRegisteredAppResponse\n} from \"./shared/types/appType.js\";\n\n/**\n * Used to update an API key.\n *\n * Notes about `privileges` and `httpReferrers` options:\n * 1. Provided option will override corresponding old option.\n * 2. Unprovided option will not trigger corresponding option updates.\n *\n * ```js\n * import { updateApiKey, IApiKeyResponse } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * const threeDaysFromToday = new Date();\n * threeDaysFromToday.setDate(threeDaysFromToday.getDate() + 3);\n * threeDaysFromToday.setHours(23, 59, 59, 999);\n *\n * updateApiKey({\n *   itemId: \"xyz_itemId\",\n *   privileges: [\"premium:user:geocode:temporary\"],\n *   httpReferrers: [], // httpReferrers will be set to be empty\n *   authentication: authSession\n *   generateToken1: true, // optional,generate a new token\n *   apiToken1ExpirationDate: threeDaysFromToday  // optional, update expiration date\n * }).then((updatedAPIKey: IApiKeyResponse) => {\n *   // => {accessToken1: \"xyz_key\", item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode updateApiKey | updateApiKey()}, including `itemId` of which API key to be operated on, optional new `privileges`, optional new `httpReferrers` and an {@linkcode ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IApiKeyResponse} object representing updated API key.\n */\nexport async function updateApiKey(\n  requestOptions: IUpdateApiKeyOptions\n): Promise<IApiKeyResponse> {\n  requestOptions.httpMethod = \"POST\";\n  const baseRequestOptions = extractBaseRequestOptions(requestOptions); // get base requestOptions snapshot\n\n  /**\n   * step 1: update expiration dates if provided. Build the object up to avoid overwriting any existing properties.\n   */\n  if (\n    requestOptions.apiToken1ExpirationDate ||\n    requestOptions.apiToken2ExpirationDate\n  ) {\n    const updateParams = buildExpirationDateParams(requestOptions);\n    await updateItem({\n      ...baseRequestOptions,\n      item: {\n        id: requestOptions.itemId,\n        ...updateParams\n      },\n      authentication: requestOptions.authentication\n    });\n  }\n\n  /**\n   * step 2: update privileges and httpReferrers if provided. Build the object up to avoid overwriting any existing properties.\n   */\n  if (requestOptions.privileges || requestOptions.httpReferrers) {\n    const getAppOption: IGetAppInfoOptions = {\n      ...baseRequestOptions,\n      authentication: requestOptions.authentication,\n      itemId: requestOptions.itemId\n    };\n    const appResponse = await getRegisteredAppInfo(getAppOption);\n    const clientId = appResponse.client_id;\n    const options = appendCustomParams(\n      { ...appResponse, ...requestOptions }, // object with the custom params to look in\n      [\"privileges\", \"httpReferrers\"] // keys you want copied to the params object\n    );\n    options.params.f = \"json\";\n\n    // encode special params value (e.g. array type...) in advance in order to make encodeQueryString() works correctly\n    stringifyArrays(options);\n\n    const url = getPortalUrl(options) + `/oauth2/apps/${clientId}/update`;\n\n    // Raw response from `/oauth2/apps/${clientId}/update`, apiKey not included because key is same.\n    const updateResponse: IRegisteredAppResponse = await request(url, {\n      ...options,\n      authentication: requestOptions.authentication\n    });\n  }\n\n  /**\n   * step 3: get the updated item info to return to the user.\n   */\n  const updatedItemInfo = await getItem(requestOptions.itemId, {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: { f: \"json\" }\n  });\n\n  /**\n   * step 4: generate tokens if requested\n   */\n  const generatedTokens = await generateApiKeyTokens(\n    requestOptions.itemId,\n    generateOptionsToSlots(\n      requestOptions.generateToken1,\n      requestOptions.generateToken2\n    ),\n    {\n      ...baseRequestOptions,\n      authentication: requestOptions.authentication\n    }\n  );\n\n  /**\n   * step 5: get updated registered app info\n   */\n  const updatedRegisteredAppResponse = await getRegisteredAppInfo({\n    ...baseRequestOptions,\n    itemId: requestOptions.itemId,\n    authentication: requestOptions.authentication\n  });\n\n  return {\n    ...generatedTokens,\n    ...appToApiKeyProperties(updatedRegisteredAppResponse),\n    item: updatedItemInfo\n  };\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\nimport {\n  IApiKeyResponse,\n  IGetApiKeyOptions\n} from \"./shared/types/apiKeyType.js\";\nimport { getItem } from \"@esri/arcgis-rest-portal\";\nimport {\n  appToApiKeyProperties,\n  extractBaseRequestOptions\n} from \"./shared/helpers.js\";\n\n/**\n * Used to retrieve the API key with given `itemId`. See the [security and authentication](https://developers.arcgis.com/documentation/mapping-apis-and-services/security/api-keys/) for more information about API key.\n *\n * ```js\n * import { getApiKey, IApiKeyResponse } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * getApiKey({\n *   itemId: \"xyz_itemId\",\n *   authentication: authSession\n * }).then((retrievedAPIKey: IApiKeyResponse) => {\n *   // => {apiKey: \"xyz_key\", item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode getApiKey | getApiKey()}, including `itemId` of which API key to retrieve and an {@linkcode ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IApiKeyResponse} object representing successfully retrieved API key.\n */\nexport async function getApiKey(\n  requestOptions: IGetApiKeyOptions\n): Promise<IApiKeyResponse> {\n  const appResponse = await getRegisteredAppInfo(requestOptions);\n\n  const itemInfo = await getItem(requestOptions.itemId, {\n    ...extractBaseRequestOptions(requestOptions),\n    authentication: requestOptions.authentication\n  });\n\n  return {\n    ...appToApiKeyProperties(appResponse),\n    item: itemInfo\n  };\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport {\n  IInvalidateApiKeyOptions,\n  IInvalidateApiKeyResponse\n} from \"./shared/types/apiKeyType.js\";\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\nimport { getPortalUrl } from \"@esri/arcgis-rest-portal\";\nimport { request } from \"@esri/arcgis-rest-request\";\nimport { slotForInvalidationKey } from \"./shared/helpers.js\";\n\n/**\n * Used to invalidate an API key.\n *\n * ```js\n * import { invalidateApiKey } from \"@esri/arcgis-rest-developer-credentials\";\n *\n * invalidateApiKey({\n *   itemId: ITEM_ID,\n *   authentication,\n *   apiKey: 1, // invalidate the key in slot 1\n * }).then((response) => {\n *   // => {success: true}\n * }).catch(e => {\n *   // => an exception object\n * });\n */\nexport async function invalidateApiKey(\n  requestOptions: IInvalidateApiKeyOptions\n): Promise<IInvalidateApiKeyResponse> {\n  const portal = getPortalUrl(requestOptions);\n  const url = `${portal}/oauth2/revokeToken`;\n\n  const appInfo = await getRegisteredAppInfo({\n    itemId: requestOptions.itemId,\n    authentication: requestOptions.authentication\n  });\n\n  const params = {\n    client_id: appInfo.client_id,\n    client_secret: appInfo.client_secret,\n    apiToken: slotForInvalidationKey(requestOptions.apiKey),\n    regenerateApiToken: true,\n    grant_type: \"client_credentials\"\n  };\n\n  // authentication is not being passed to the request because client_secret acts as the auth\n  return request(url, {\n    params\n  });\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\nimport { getItem } from \"@esri/arcgis-rest-portal\";\nimport {\n  appToOAuthAppProperties,\n  extractBaseRequestOptions\n} from \"./shared/helpers.js\";\nimport { IGetOAuthAppOptions, IOAuthApp } from \"./shared/types/oAuthType.js\";\n\n/**\n * Used to retrieve the OAuth2.0 app with given `itemId`. See the [OAuth2.0](https://developers.arcgis.com/documentation/mapping-apis-and-services/security/oauth-2.0/) for more information.\n *\n * ```js\n * import { getOAuthApp, IOAuthApp } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * getOAuthApp({\n *   itemId: \"xyz_itemId\",\n *   authentication: authSession\n * }).then((retrievedOAuthApp: IOAuthApp) => {\n *   // => {redirect_uris: [\"http://localhost:3000/\"], item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode getOAuthApp | getOAuthApp()}, including `itemId` of which OAuth app to retrieve and an {@linkcode ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IOAuthApp} object representing successfully retrieved OAuth app.\n */\nexport async function getOAuthApp(\n  requestOptions: IGetOAuthAppOptions\n): Promise<IOAuthApp> {\n  const appResponse = await getRegisteredAppInfo(requestOptions);\n\n  const itemInfo = await getItem(requestOptions.itemId, {\n    ...extractBaseRequestOptions(requestOptions),\n    authentication: requestOptions.authentication\n  });\n\n  return {\n    ...appToOAuthAppProperties(appResponse),\n    item: itemInfo\n  };\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport {\n  extractBaseRequestOptions,\n  stringifyArrays,\n  registeredAppResponseToApp,\n  appToOAuthAppProperties\n} from \"./shared/helpers.js\";\nimport { getItem, getPortalUrl } from \"@esri/arcgis-rest-portal\";\nimport { appendCustomParams, request } from \"@esri/arcgis-rest-request\";\nimport {\n  IApp,\n  IGetAppInfoOptions,\n  IRegisteredAppResponse\n} from \"./shared/types/appType.js\";\nimport { IOAuthApp, IUpdateOAuthOptions } from \"./shared/types/oAuthType.js\";\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\n\n/**\n * Used to update an OAuth2.0 app.\n *\n * Notes about `redirect_uris` options:\n * 1. Provided option will override corresponding old option.\n * 2. Unprovided option will not trigger corresponding option updates.\n *\n * ```js\n * import { updateOAuthApp, IOAuthApp } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * updateOAuthApp({\n *   itemId: \"xyz_itemId\",\n *   authentication: authSession\n * }).then((updatedOAuthApp: IOAuthApp) => {\n *   // => This OAuth app will be not be updated because its redirect_uris is not provided.\n *   // => {redirect_uris: [\"http://localhost:3000/\"], item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode updateOAuthApp | updateOAuthApp()}, including `itemId` of which OAuth app to be operated on, optional new `redirect_uris` and an {@linkcode ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IOAuthApp} object representing updated OAuth app.\n */\nexport async function updateOAuthApp(\n  requestOptions: IUpdateOAuthOptions\n): Promise<IOAuthApp> {\n  requestOptions.httpMethod = \"POST\";\n\n  // get app\n  const baseRequestOptions = extractBaseRequestOptions(requestOptions); // get base requestOptions snapshot\n  const getAppOption: IGetAppInfoOptions = {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    itemId: requestOptions.itemId\n  };\n\n  const appResponse = await getRegisteredAppInfo(getAppOption);\n\n  if (appResponse.appType === \"apikey\") {\n    throw new Error(\"Item is not an OAuth 2.0 app.\");\n  }\n\n  const clientId = appResponse.client_id;\n  const options = appendCustomParams({ ...appResponse, ...requestOptions }, [\n    \"redirect_uris\"\n  ]);\n  options.params.f = \"json\";\n  options.params.appType = \"multiple\";\n\n  // encode special params value (e.g. array type...) in advance in order to make encodeQueryString() works correctly\n  stringifyArrays(options);\n\n  const url = getPortalUrl(options) + `/oauth2/apps/${clientId}/update`;\n\n  // Raw response from `/oauth2/apps/${clientId}/update`.\n  const updateResponse: IRegisteredAppResponse = await request(url, {\n    ...options,\n    authentication: requestOptions.authentication\n  });\n\n  const app: IApp = registeredAppResponseToApp(updateResponse);\n\n  const itemInfo = await getItem(requestOptions.itemId, {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: { f: \"json\" }\n  });\n\n  return {\n    ...appToOAuthAppProperties(app),\n    item: itemInfo\n  };\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport {\n  ICreateItemOptions,\n  createItem,\n  getItem,\n  IItemAdd\n} from \"@esri/arcgis-rest-portal\";\n\nimport { registerApp } from \"./shared/registerApp.js\";\nimport { IRegisterAppOptions } from \"./shared/types/appType.js\";\nimport {\n  filterKeys,\n  extractBaseRequestOptions,\n  appToOAuthAppProperties\n} from \"./shared/helpers.js\";\nimport { ICreateOAuthAppOption, IOAuthApp } from \"./shared/types/oAuthType.js\";\n\n/**\n * Used to register an OAuth2.0 app. See the [OAuth2.0](https://developers.arcgis.com/documentation/mapping-apis-and-services/security/oauth-2.0/) for more information.\n *\n * ```js\n * import { createOAuthApp, IOAuthApp } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * createOAuthApp({\n *   title: \"xyz_title\",\n *   description: \"xyz_desc\",\n *   tags: [\"xyz_tag1\", \"xyz_tag2\"],\n *   redirect_uris: [\"http://localhost:3000/\"],\n *   authentication: authSession\n * }).then((registeredOAuthApp: IOAuthApp) => {\n *   // => {redirect_uris: [\"http://localhost:3000/\"], item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode createOAuthApp | createOAuthApp()}, including necessary params to register an OAuth app and an {@linkcode ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IOAuthApp} object representing the newly registered OAuth app.\n */\nexport async function createOAuthApp(\n  requestOptions: ICreateOAuthAppOption\n): Promise<IOAuthApp> {\n  requestOptions.httpMethod = \"POST\";\n\n  // filter param buckets:\n\n  const baseRequestOptions = extractBaseRequestOptions(requestOptions);\n\n  const itemAddProperties: Array<keyof IItemAdd> = [\n    \"categories\",\n    \"culture\",\n    \"description\",\n    \"documentation\",\n    \"extent\",\n    \"owner\",\n    \"properties\",\n    \"snippet\",\n    \"spatialReference\",\n    \"tags\",\n    \"title\",\n    \"type\",\n    \"typeKeywords\",\n    \"url\"\n  ];\n\n  // step 1: add item\n  const createItemOption: ICreateItemOptions = {\n    item: {\n      ...filterKeys(requestOptions as any, itemAddProperties),\n      type: \"Application\"\n    },\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: {\n      f: \"json\"\n    }\n  };\n\n  const createItemResponse = await createItem(createItemOption);\n\n  // step 2: register app\n  const registerAppOption: IRegisterAppOptions = {\n    itemId: createItemResponse.id,\n    appType: \"multiple\",\n    redirect_uris: requestOptions.redirect_uris || [],\n    httpReferrers: [],\n    privileges: [],\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication\n  };\n\n  const registeredAppResponse = await registerApp(registerAppOption);\n  const itemInfo = await getItem(registeredAppResponse.itemId, {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: { f: \"json\" }\n  });\n\n  return {\n    ...appToOAuthAppProperties(registeredAppResponse),\n    item: itemInfo\n  };\n}\n","import {\n  IGetAppInfoOptions,\n  IUnregisterAppOptions,\n  IUnregisterAppResponse\n} from \"./types/appType.js\";\nimport { extractBaseRequestOptions } from \"./helpers.js\";\nimport { getRegisteredAppInfo } from \"./getRegisteredAppInfo.js\";\nimport { getPortalUrl } from \"@esri/arcgis-rest-portal\";\nimport { request } from \"@esri/arcgis-rest-request\";\n\n/**\n * Used to unregister the app with given `itemId`. See the [REST Documentation](https://developers.arcgis.com/rest/users-groups-and-items/unregister-app.htm) for more information.\n *\n * ```js\n * import { unregisterApp, IUnregisterAppResponse } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * unregisterApp({\n *   itemId: \"xyz_itemId\",\n *   authentication: authSession\n * }).then((unregisteredApp: IUnregisterAppResponse) => {\n *   // => {itemId: \"xyz_itemId\", success: true}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode unregisterApp | unregisterApp()}, including `itemId` of which app to be un-registered and an {@linkcode ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IUnregisterAppResponse} object representing un-registration status.\n */\nexport async function unregisterApp(\n  requestOptions: IUnregisterAppOptions\n): Promise<IUnregisterAppResponse> {\n  requestOptions.httpMethod = \"POST\";\n\n  // get app\n  const baseRequestOptions = extractBaseRequestOptions(requestOptions);\n  const getAppOption: IGetAppInfoOptions = {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    itemId: requestOptions.itemId\n  };\n\n  const appResponse = await getRegisteredAppInfo(getAppOption);\n\n  const clientId = appResponse.client_id;\n\n  const url =\n    getPortalUrl(requestOptions) + `/oauth2/apps/${clientId}/unregister`;\n\n  const unregisterAppResponse: IUnregisterAppResponse = await request(url, {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: { f: \"json\" }\n  });\n  return unregisterAppResponse;\n}\n"],"names":["async","getRegisteredAppInfo","requestOptions","userName","authentication","getUsername","url","getPortalUrl","itemId","httpMethod","registeredAppResponseToApp","request","params","f","stringifyArrays","Object","entries","forEach","entry","key","value","constructor","name","JSON","stringify","response","omittedKeys","dateKeys","keys","filter","includes","reduce","obj","Date","appToApiKeyProperties","client_secret","redirect_uris","appType","customAppLoginShowTriage","apiKey","appToOAuthAppProperties","httpReferrers","privileges","isPersonalAPIToken","apiToken1Active","apiToken2Active","extractBaseRequestOptions","options","filterKeys","object","includedKeys","ele","slotForKey","slot","parseInt","substring","length","slotForInvalidationKey","param","fullKeySlot","generateApiKeyTokens","slots","Promise","all","map","appInfo","client_id","apiToken","regenerateApiToken","grant_type","generateApiKeyToken","then","responses","access_token","token","index","generateOptionsToSlots","generateToken1","generateToken2","push","buildExpirationDateParams","fillDefaults","updateparams","apiToken1ExpirationDate","apiToken2ExpirationDate","registerApp","appendCustomParams","createApiKey","baseRequestOptions","createItemOption","item","type","createItemResponse","createItem","registerAppOptions","id","registeredAppResponse","updateItem","itemInfo","getItem","generatedTokens","updatedRegisteredAppResponse","updateApiKey","updateParams","getAppOption","appResponse","clientId","updatedItemInfo","getApiKey","invalidateApiKey","getOAuthApp","updateOAuthApp","Error","app","createOAuthApp","registerAppOption","unregisterApp"],"mappings":";;;;;iLAqCOA,eAAeC,EACpBC,GAEA,MAAMC,QAAiBD,EAAeE,eAAeC,cAC/CC,EACJC,EAAaL,GACb,kBAAkBC,WAAkBD,EAAeM,2BACrDN,EAAeO,WAAa,OAO5B,OAAOC,QALqDC,EAAQL,iCAC/DJ,IACHU,OAAQ,CAAEC,EAAG,WAIjB,OCvCaC,EAAmBZ,IAC9Ba,OAAOC,QAAQd,EAAeU,QAAQK,SAASC,IAC7C,MAAOC,EAAKC,GAASF,EACU,UAA3BE,EAAMC,YAAYC,OACpBpB,EAAeU,OAAOO,GAAOI,KAAKC,UAAUJ,MAE9C,WAOYV,EACde,GAEA,MAAMC,EAAc,CAClB,eACA,kBACA,YACA,SACA,4BAEIC,EAAW,CAAC,WAAY,cAE9B,OAAOZ,OAAOa,KAAKH,GAChBI,QAAQV,IAASO,EAAYI,SAASX,KACtCY,QAAO,CAACC,EAAUb,KACbQ,EAASG,SAASX,GACpBa,EAAIb,GAAO,IAAIc,KAAMR,EAAiBN,IAEtCa,EAAIb,GAAQM,EAAiBN,GAExBa,IACN,GACP,UAMgBE,EAAsBT,GAOpC,cANOA,EAASU,qBACTV,EAASW,qBACTX,EAASY,eACRZ,EAAiBa,gCAClBb,EAASc,OAETd,CACT,UAMgBe,EAAwBf,GAUtC,cATOA,EAASY,eACTZ,EAASgB,qBACThB,EAASiB,kBACTjB,EAASc,cACRd,EAAiBa,gCAClBb,EAASkB,0BACTlB,EAASmB,uBACTnB,EAASoB,gBAETpB,CACT,UAMgBqB,EACdC,GAcA,OAAOC,EAAWD,EAZ+B,CAC/C,cACA,UACA,YACA,aACA,eACA,SACA,cACA,SACA,oBAIJ,UAMgBC,EACdC,EACAC,GAEA,OAAOA,EAAanB,QAClB,CAACC,EAA+CmB,KAC1CA,KAAOF,IACTjB,EAAImB,GAAOF,EAAOE,IAEbnB,IAET,GAEJ,UAKgBoB,EAAWjC,GACzB,MAAMkC,EAAOC,SAASnC,EAAIoC,UAAUpC,EAAIqC,OAAS,GAAIrC,EAAIqC,OAAS,IAElE,GAAa,IAATH,GAAuB,IAATA,EAChB,OAAOA,CAIX,UAMgBI,EAAuBC,GACrC,GAAc,IAAVA,GAAyB,IAAVA,EACjB,OAAOA,EAGT,GAAqB,iBAAVA,EACT,OAGF,MAAMC,EAAcP,EAAWM,GAC/B,OAAIC,QAAJ,CAGF,UAUgBC,EACdpD,EACAqD,EACA3D,GAEA,OAAO4D,QAAQC,IACbF,EAAMG,KAAKX,GCzJRrD,eACL+C,GAEA,MACMzC,EAAM,GADGC,EAAawC,kBAGtBkB,QAAgBhE,EAAqB,CACzCO,OAAQuC,EAAQvC,OAChBJ,eAAgB2C,EAAQ3C,iBAGpBQ,EAAS,CACbsD,UAAWD,EAAQC,UACnB/B,cAAe8B,EAAQ9B,cACvBgC,SAAUpB,EAAQR,OAClB6B,oBAAoB,EACpBC,WAAY,sBAId,OAAO1D,EAAQL,EAAK,CAClBM,UAEJ,CDmIa0D,gBACL9D,SACA+B,OAAQc,GACLnD,OAGPqE,MAAMC,GACCA,EACJR,KAAKQ,GAAcA,EAAUC,eAC7B1C,QAAO,CAACC,EAAK0C,EAAOC,KACnB3C,EAAI,cAAcoB,EAAWsB,MAAYA,EAClC1C,IACN,KAET,UAMgB4C,EACdC,EACAC,GAEA,MAAMjB,EAAsB,GAO5B,OANIgB,GACFhB,EAAMkB,KAAK,GAETD,GACFjB,EAAMkB,KAAK,GAENlB,CACT,UAmBgBmB,EACd9E,EAIA+E,GAEA,MAAMC,EAAoB,GAkB1B,OAjBIhF,EAAeiF,0BACjBD,EAAaC,wBACXjF,EAAeiF,yBAGfjF,EAAekF,0BACjBF,EAAaE,wBACXlF,EAAekF,yBAGfH,IAAiBC,EAAaC,0BAChCD,EAAaC,yBAA2B,GAGtCF,IAAiBC,EAAaE,0BAChCF,EAAaE,yBAA2B,GAEnCF,CACT,CEtMOlF,eAAeqF,EACpBnF,GAGA,MAAM6C,EAAUuC,EAAmBpF,EAAgB,CACjD,SACA,UACA,gBACA,gBACA,eAGFY,EAAgBiC,GAEhB,MAAMzC,EAAMC,EAAawC,GAAW,sBACpCA,EAAQtC,WAAa,OACrBsC,EAAQnC,OAAOC,EAAI,OAOnB,OAAOH,QALqDC,EAC1DL,EACAyC,GAIJ,CCXO/C,eAAeuF,EACpBrF,GAEAA,EAAeO,WAAa,OAG5B,MAAM+E,EAAqB1C,EAA0B5C,GAsB/CuF,+BACJC,oCACK1C,EAAW9C,EAtB+B,CAC/C,aACA,UACA,cACA,gBACA,SACA,QACA,aACA,UACA,mBACA,OACA,QACA,OACA,eACA,UASEyF,KAAM,iBAELH,IACHpF,eAAgBF,EAAeE,eAC/BQ,OAAQ,CACNC,EAAG,UAID+E,QAA2BC,EAAWJ,GAKtCK,+BACJtF,OAAQoF,EAAmBG,GAC3B1D,QAAS,WACTD,cAAe,CAAC,6BAChBK,cAAevC,EAAeuC,eAAiB,GAC/CC,WAAYxC,EAAewC,YACxB8C,IACHpF,eAAgBF,EAAeE,iBAG3B4F,QAA8BX,EAAYS,SAO1CG,iCACDT,IACHE,oBACEK,GAAIH,EAAmBG,IACpBf,EAA0B9E,GAAgB,IAE/CE,eAAgBF,EAAeE,kBAMjC,MAAM8F,QAAiBC,EAAQH,EAAsBxF,sCAChDgF,IACHpF,eAAgBF,EAAeE,eAC/BQ,OAAQ,CAAEC,EAAG,WAMTuF,QAAwBxC,EAC5BsC,EAASH,GACTnB,EACE1E,EAAe2E,eACf3E,EAAe4E,+CAGZU,IACHpF,eAAgBF,EAAeE,kBAO7BiG,QAAqCpG,iCACtCuF,IACHhF,OAAQ0F,EAASH,GACjB3F,eAAgBF,EAAeE,kBAGjC,oDACKgG,GACAlE,EAAsBmE,KACzBX,KAAMQ,GAEV,CC5GOlG,eAAesG,EACpBpG,GAEAA,EAAeO,WAAa,OAC5B,MAAM+E,EAAqB1C,EAA0B5C,GAKrD,GACEA,EAAeiF,yBACfjF,EAAekF,wBACf,CACA,MAAMmB,EAAevB,EAA0B9E,SACzC+F,iCACDT,IACHE,oBACEK,GAAI7F,EAAeM,QAChB+F,GAELnG,eAAgBF,EAAeE,kBAOnC,GAAIF,EAAewC,YAAcxC,EAAeuC,cAAe,CAC7D,MAAM+D,iCACDhB,IACHpF,eAAgBF,EAAeE,eAC/BI,OAAQN,EAAeM,SAEnBiG,QAAoBxG,EAAqBuG,GACzCE,EAAWD,EAAYvC,UACvBnB,EAAUuC,iCACTmB,GAAgBvG,GACrB,CAAC,aAAc,kBAEjB6C,EAAQnC,OAAOC,EAAI,OAGnBC,EAAgBiC,GAEhB,MAAMzC,EAAMC,EAAawC,GAAW,gBAAgB2D,iBAGC/F,EAAQL,iCACxDyC,IACH3C,eAAgBF,EAAeE,kBAOnC,MAAMuG,QAAwBR,EAAQjG,EAAeM,sCAChDgF,IACHpF,eAAgBF,EAAeE,eAC/BQ,OAAQ,CAAEC,EAAG,WAMTuF,QAAwBxC,EAC5B1D,EAAeM,OACfoE,EACE1E,EAAe2E,eACf3E,EAAe4E,+CAGZU,IACHpF,eAAgBF,EAAeE,kBAO7BiG,QAAqCpG,iCACtCuF,IACHhF,OAAQN,EAAeM,OACvBJ,eAAgBF,EAAeE,kBAGjC,oDACKgG,GACAlE,EAAsBmE,KACzBX,KAAMiB,GAEV,CClHO3G,eAAe4G,EACpB1G,GAEA,MAAMuG,QAAoBxG,EAAqBC,GAEzCgG,QAAiBC,EAAQjG,EAAeM,sCACzCsC,EAA0B5C,KAC7BE,eAAgBF,EAAeE,kBAGjC,sCACK8B,EAAsBuE,KACzBf,KAAMQ,GAEV,CCzBOlG,eAAe6G,EACpB3G,GAEA,MACMI,EAAM,GADGC,EAAaL,wBAGtB+D,QAAgBhE,EAAqB,CACzCO,OAAQN,EAAeM,OACvBJ,eAAgBF,EAAeE,iBAG3BQ,EAAS,CACbsD,UAAWD,EAAQC,UACnB/B,cAAe8B,EAAQ9B,cACvBgC,SAAUV,EAAuBvD,EAAeqC,QAChD6B,oBAAoB,EACpBC,WAAY,sBAId,OAAO1D,EAAQL,EAAK,CAClBM,UAEJ,CCfOZ,eAAe8G,EACpB5G,GAEA,MAAMuG,QAAoBxG,EAAqBC,GAEzCgG,QAAiBC,EAAQjG,EAAeM,sCACzCsC,EAA0B5C,KAC7BE,eAAgBF,EAAeE,kBAGjC,sCACKoC,EAAwBiE,KAC3Bf,KAAMQ,GAEV,CCDOlG,eAAe+G,EACpB7G,GAEAA,EAAeO,WAAa,OAG5B,MAAM+E,EAAqB1C,EAA0B5C,GAC/CsG,iCACDhB,IACHpF,eAAgBF,EAAeE,eAC/BI,OAAQN,EAAeM,SAGnBiG,QAAoBxG,EAAqBuG,GAE/C,GAA4B,WAAxBC,EAAYpE,QACd,MAAM,IAAI2E,MAAM,iCAGlB,MAAMN,EAAWD,EAAYvC,UACvBnB,EAAUuC,iCAAwBmB,GAAgBvG,GAAkB,CACxE,kBAEF6C,EAAQnC,OAAOC,EAAI,OACnBkC,EAAQnC,OAAOyB,QAAU,WAGzBvB,EAAgBiC,GAEhB,MAAMzC,EAAMC,EAAawC,GAAW,gBAAgB2D,WAQ9CO,EAAYvG,QALmCC,EAAQL,iCACxDyC,IACH3C,eAAgBF,EAAeE,mBAK3B8F,QAAiBC,EAAQjG,EAAeM,sCACzCgF,IACHpF,eAAgBF,EAAeE,eAC/BQ,OAAQ,CAAEC,EAAG,WAGf,sCACK2B,EAAwByE,KAC3BvB,KAAMQ,GAEV,CCnDOlG,eAAekH,EACpBhH,GAEAA,EAAeO,WAAa,OAI5B,MAAM+E,EAAqB1C,EAA0B5C,GAoB/CuF,+BACJC,oCACK1C,EAAW9C,EApB+B,CAC/C,aACA,UACA,cACA,gBACA,SACA,QACA,aACA,UACA,mBACA,OACA,QACA,OACA,eACA,UAOEyF,KAAM,iBAELH,IACHpF,eAAgBF,EAAeE,eAC/BQ,OAAQ,CACNC,EAAG,UAID+E,QAA2BC,EAAWJ,GAGtC0B,+BACJ3G,OAAQoF,EAAmBG,GAC3B1D,QAAS,WACTD,cAAelC,EAAekC,eAAiB,GAC/CK,cAAe,GACfC,WAAY,IACT8C,IACHpF,eAAgBF,EAAeE,iBAG3B4F,QAA8BX,EAAY8B,GAC1CjB,QAAiBC,EAAQH,EAAsBxF,sCAChDgF,IACHpF,eAAgBF,EAAeE,eAC/BQ,OAAQ,CAAEC,EAAG,WAGf,sCACK2B,EAAwBwD,KAC3BN,KAAMQ,GAEV,CC3EOlG,eAAeoH,EACpBlH,GAEAA,EAAeO,WAAa,OAG5B,MAAM+E,EAAqB1C,EAA0B5C,GAC/CsG,iCACDhB,IACHpF,eAAgBF,EAAeE,eAC/BI,OAAQN,EAAeM,SAKnBkG,SAFoBzG,EAAqBuG,IAElBtC,UAEvB5D,EACJC,EAAaL,GAAkB,gBAAgBwG,eAOjD,aAL4D/F,EAAQL,iCAC/DkF,IACHpF,eAAgBF,EAAeE,eAC/BQ,OAAQ,CAAEC,EAAG,UAGjB"}
+{"version":3,"file":"developer-credentials.esm.min.js","sources":["../../src/shared/getRegisteredAppInfo.ts","../../src/shared/helpers.ts","../../src/shared/generateApiKeyToken.ts","../../src/shared/registerApp.ts","../../src/createApiKey.ts","../../src/updateApiKey.ts","../../src/getApiKey.ts","../../src/invalidateApiKey.ts","../../src/getOAuthApp.ts","../../src/updateOAuthApp.ts","../../src/createOAuthApp.ts","../../src/shared/unregisterApp.ts"],"sourcesContent":["/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\nimport { request } from \"@esri/arcgis-rest-request\";\nimport { getPortalUrl } from \"@esri/arcgis-rest-portal\";\n\nimport {\n  IRegisteredAppResponse,\n  IGetAppInfoOptions,\n  IApp\n} from \"./types/appType.js\";\nimport { registeredAppResponseToApp } from \"./helpers.js\";\n\n/**\n * Used to retrieve registered app info. See the [REST Documentation](https://developers.arcgis.com/rest/users-groups-and-items/registered-app-info.htm) for more information.\n *\n * ```js\n * import { getRegisteredAppInfo, IApp } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * getRegisteredAppInfo({\n *   itemId: \"xyz_itemId\",\n *   authentication: authSession\n * }).then((registeredApp: IApp) => {\n *   // => {client_id: \"xyz_id\", client_secret: \"xyz_secret\", ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode getRegisteredAppInfo | getRegisteredAppInfo()}, including an itemId of which app to retrieve and an {@linkcode @esri/arcgis-rest-request!ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IApp} object representing successfully retrieved app.\n */\nexport async function getRegisteredAppInfo(\n  requestOptions: IGetAppInfoOptions\n): Promise<IApp> {\n  const userName = await requestOptions.authentication.getUsername();\n  const url =\n    getPortalUrl(requestOptions) +\n    `/content/users/${userName}/items/${requestOptions.itemId}/registeredAppInfo`;\n  requestOptions.httpMethod = \"POST\";\n\n  const registeredAppResponse: IRegisteredAppResponse = await request(url, {\n    ...requestOptions,\n    params: { f: \"json\" }\n  });\n\n  return registeredAppResponseToApp(registeredAppResponse);\n}\n","import {\n  IRequestOptions,\n  IAuthenticationManager\n} from \"@esri/arcgis-rest-request\";\nimport { IRegisteredAppResponse, IApp } from \"./types/appType.js\";\nimport { IApiKeyInfo } from \"./types/apiKeyType.js\";\nimport { IOAuthAppInfo } from \"./types/oAuthType.js\";\nimport { generateApiKeyToken } from \"./generateApiKeyToken.js\";\n\n/**\n * @internal\n * Encode special params value (e.g. array type...) in advance in order to make {@linkcode encodeParam} works correctly. Usage is case by case.\n */\nexport const stringifyArrays = (requestOptions: IRequestOptions) => {\n  Object.entries(requestOptions.params).forEach((entry) => {\n    const [key, value] = entry;\n    if (value.constructor.name === \"Array\") {\n      requestOptions.params[key] = JSON.stringify(value);\n    }\n  });\n};\n\n/**\n * @internal\n * Used to convert {@linkcode IRegisteredAppResponse} to {@linkcode IApp}.\n */\nexport function registeredAppResponseToApp(\n  response: IRegisteredAppResponse\n): IApp {\n  const omittedKeys = [\n    \"apnsProdCert\",\n    \"apnsSandboxCert\",\n    \"gcmApiKey\",\n    \"isBeta\",\n    \"customAppLoginShowTriage\"\n  ];\n  const dateKeys = [\"modified\", \"registered\"];\n\n  return Object.keys(response)\n    .filter((key) => !omittedKeys.includes(key))\n    .reduce((obj: any, key) => {\n      if (dateKeys.includes(key)) {\n        obj[key] = new Date((response as any)[key]);\n      } else {\n        obj[key] = (response as any)[key];\n      }\n      return obj;\n    }, {});\n}\n\n/**\n * @internal\n * Used to convert {@linkcode IApp} to {@linkcode IApiKeyInfo} only if `appType` is \"apikey\".\n */\nexport function appToApiKeyProperties(response: IApp): IApiKeyInfo {\n  delete response.client_secret;\n  delete response.redirect_uris;\n  delete response.appType;\n  delete (response as any).customAppLoginShowTriage;\n  delete response.apiKey;\n\n  return response as IApiKeyInfo;\n}\n\n/**\n * @internal\n * Used to convert {@linkcode IApp} to {@linkcode IOAuthAppInfo}.\n */\nexport function appToOAuthAppProperties(response: IApp): IOAuthAppInfo {\n  delete response.appType;\n  delete response.httpReferrers;\n  delete response.privileges;\n  delete response.apiKey;\n  delete (response as any).customAppLoginShowTriage;\n  delete response.isPersonalAPIToken;\n  delete response.apiToken1Active;\n  delete response.apiToken2Active;\n\n  return response as IOAuthAppInfo;\n}\n\n/**\n * @internal\n * Used to extract base request options from a hybrid option and exclude `params` and `authentication`.\n */\nexport function extractBaseRequestOptions<T extends IRequestOptions>(\n  options: T\n): Partial<IRequestOptions> {\n  const requestOptionsProperties: Array<keyof T> = [\n    \"credentials\",\n    \"headers\",\n    \"hideToken\",\n    \"httpMethod\",\n    \"maxUrlLength\",\n    \"portal\",\n    \"rawResponse\",\n    \"signal\",\n    \"suppressWarnings\"\n  ];\n\n  return filterKeys(options, requestOptionsProperties);\n}\n\n/**\n * @internal\n * Used to create a new object including only specified keys from another object.\n */\nexport function filterKeys<T extends object>(\n  object: T,\n  includedKeys: Array<keyof T>\n): any {\n  return includedKeys.reduce(\n    (obj: { [key: string | number | symbol]: any }, ele) => {\n      if (ele in object) {\n        obj[ele] = object[ele];\n      }\n      return obj;\n    },\n    {}\n  );\n}\n\n/**\n * Used to determine if a generated key is in slot 1 or slot 2 key. The full API key should be passed. `undefined` will be returned if the proper slot could not be identified.\n */\nexport function slotForKey(key: string) {\n  const slot = parseInt(key.substring(key.length - 10, key.length - 9));\n\n  if (slot === 1 || slot === 2) {\n    return slot;\n  }\n\n  return undefined;\n}\n\n/**\n * @internal\n * Used to determine which slot to invalidate a key in given a number or a full or patial key.\n */\nexport function slotForInvalidationKey(param: string | 1 | 2) {\n  if (param === 1 || param === 2) {\n    return param;\n  }\n\n  if (typeof param !== \"string\") {\n    return undefined;\n  }\n\n  const fullKeySlot = slotForKey(param);\n  if (fullKeySlot) {\n    return fullKeySlot;\n  }\n}\n\ninterface IGenerateApiKeyTokenOptions extends IRequestOptions {\n  authentication: IAuthenticationManager;\n}\n\n/**\n * @internal\n * Used to generate tokens in slot 1 and/or 2 of an API key.\n */\nexport function generateApiKeyTokens(\n  itemId: string,\n  slots: Array<1 | 2>,\n  requestOptions: IGenerateApiKeyTokenOptions\n) {\n  return Promise.all(\n    slots.map((slot) => {\n      return generateApiKeyToken({\n        itemId,\n        apiKey: slot,\n        ...requestOptions\n      });\n    })\n  ).then((responses) => {\n    return responses\n      .map((responses) => responses.access_token)\n      .reduce((obj, token, index) => {\n        obj[`accessToken${slotForKey(token)}`] = token;\n        return obj;\n      }, {} as { [key: string]: string });\n  });\n}\n\n/**\n * @internal\n * Convert boolean flags to an array of slots for {@linkcode generateApiKeyTokens}.\n */\nexport function generateOptionsToSlots(\n  generateToken1: boolean,\n  generateToken2: boolean\n): Array<1 | 2> {\n  const slots: Array<1 | 2> = [];\n  if (generateToken1) {\n    slots.push(1);\n  }\n  if (generateToken2) {\n    slots.push(2);\n  }\n  return slots;\n}\n\ntype expirationDateParams =\n  | {\n      apiToken1ExpirationDate: Date | -1;\n      apiToken2ExpirationDate: Date | -1;\n    }\n  | {\n      apiToken1ExpirationDate: Date | -1;\n    }\n  | {\n      apiToken2ExpirationDate: Date | -1;\n    }\n  | {};\n\n/**\n * @internal\n * Build params for updating expiration dates\n */\nexport function buildExpirationDateParams(\n  requestOptions: {\n    apiToken1ExpirationDate?: Date;\n    apiToken2ExpirationDate?: Date;\n  },\n  fillDefaults?: boolean\n): expirationDateParams {\n  const updateparams: any = {};\n  if (requestOptions.apiToken1ExpirationDate) {\n    updateparams.apiToken1ExpirationDate =\n      requestOptions.apiToken1ExpirationDate;\n  }\n\n  if (requestOptions.apiToken2ExpirationDate) {\n    updateparams.apiToken2ExpirationDate =\n      requestOptions.apiToken2ExpirationDate;\n  }\n\n  if (fillDefaults && !updateparams.apiToken1ExpirationDate) {\n    updateparams.apiToken1ExpirationDate = -1;\n  }\n\n  if (fillDefaults && !updateparams.apiToken2ExpirationDate) {\n    updateparams.apiToken2ExpirationDate = -1;\n  }\n  return updateparams;\n}\n","import {\n  request,\n  IRequestOptions,\n  IAuthenticationManager\n} from \"@esri/arcgis-rest-request\";\nimport { getRegisteredAppInfo } from \"./getRegisteredAppInfo.js\";\nimport { getPortalUrl } from \"@esri/arcgis-rest-portal\";\n\nexport interface IGenerateApiKeyTokenOptions extends IRequestOptions {\n  itemId: string;\n  apiKey: 1 | 2;\n  portal?: string;\n  authentication: IAuthenticationManager;\n}\n\nexport async function generateApiKeyToken(\n  options: IGenerateApiKeyTokenOptions\n): Promise<{ access_token: string; expires_in: number }> {\n  const portal = getPortalUrl(options);\n  const url = `${portal}/oauth2/token`;\n\n  const appInfo = await getRegisteredAppInfo({\n    itemId: options.itemId,\n    authentication: options.authentication\n  });\n\n  const params = {\n    client_id: appInfo.client_id,\n    client_secret: appInfo.client_secret,\n    apiToken: options.apiKey,\n    regenerateApiToken: true,\n    grant_type: \"client_credentials\"\n  };\n\n  // authentication is not being passed to the request because client_secret acts as the auth\n  return request(url, {\n    params\n  });\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport { request, appendCustomParams } from \"@esri/arcgis-rest-request\";\nimport { getPortalUrl } from \"@esri/arcgis-rest-portal\";\nimport {\n  IApp,\n  IRegisterAppOptions,\n  IRegisteredAppResponse\n} from \"./types/appType.js\";\nimport { stringifyArrays, registeredAppResponseToApp } from \"./helpers.js\";\n\n/**\n * Used to register an app. See the [REST Documentation](https://developers.arcgis.com/rest/users-groups-and-items/register-app.htm) for more information.\n *\n * Accepted app types:\n * - apikey\n * - multiple\n * - browser\n * - server\n * - native\n *\n * ```js\n * import { registerApp, IApp } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * registerApp({\n *   itemId: \"xyz_itemId\",\n *   appType: \"multiple\",\n *   redirect_uris: [\"http://localhost:3000/\"],\n *   httpReferrers: [\"http://localhost:3000/\"],\n *   privileges: [\"premium:user:geocode:temporary\", Privileges.FeatureReport],\n *   authentication: authSession\n * }).then((registeredApp: IApp) => {\n *   // => {client_id: \"xyz_id\", client_secret: \"xyz_secret\", ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode registerApp | registerApp()}, including necessary params to register an app and an {@linkcode @esri/arcgis-rest-request!ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IApp} object representing the newly registered app.\n */\nexport async function registerApp(\n  requestOptions: IRegisterAppOptions\n): Promise<IApp> {\n  // build params\n  const options = appendCustomParams(requestOptions, [\n    \"itemId\",\n    \"appType\",\n    \"redirect_uris\",\n    \"httpReferrers\",\n    \"privileges\"\n  ]);\n  // encode special params value (e.g. array type...) in advance in order to make encodeQueryString() works correctly\n  stringifyArrays(options);\n\n  const url = getPortalUrl(options) + \"/oauth2/registerApp\";\n  options.httpMethod = \"POST\";\n  options.params.f = \"json\";\n\n  const registeredAppResponse: IRegisteredAppResponse = await request(\n    url,\n    options\n  );\n\n  return registeredAppResponseToApp(registeredAppResponse);\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport {\n  ICreateItemOptions,\n  createItem,\n  getItem,\n  IItemAdd,\n  updateItem\n} from \"@esri/arcgis-rest-portal\";\nimport {\n  IApiKeyResponse,\n  ICreateApiKeyOptions\n} from \"./shared/types/apiKeyType.js\";\n\nimport { registerApp } from \"./shared/registerApp.js\";\nimport { IRegisterAppOptions } from \"./shared/types/appType.js\";\nimport {\n  appToApiKeyProperties,\n  filterKeys,\n  extractBaseRequestOptions,\n  generateApiKeyTokens,\n  generateOptionsToSlots,\n  buildExpirationDateParams\n} from \"./shared/helpers.js\";\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\n\n/**\n * Used to register an API key. See the [security and authentication](https://developers.arcgis.com/documentation/mapping-apis-and-services/security/api-keys/) for more information about API key.\n *\n * ```js\n * import { createApiKey, IApiKeyResponse } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * const threeDaysFromToday = new Date();\n * threeDaysFromToday.setDate(threeDaysFromToday.getDate() + 3);\n * threeDaysFromToday.setHours(23, 59, 59, 999);\n *\n * createApiKey({\n *   title: \"xyz_title\",\n *   description: \"xyz_desc\",\n *   tags: [\"xyz_tag1\", \"xyz_tag2\"],\n *   privileges: [\"premium:user:networkanalysis:routing\"],\n *   authentication: authSession,\n *   generateToken1: true, // optional,generate a new token\n *   apiToken1ExpirationDate: threeDaysFromToday  // optional, update expiration date\n * }).then((registeredAPIKey: IApiKeyResponse) => {\n *   // => {accessToken1: \"xyz_key\", item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode createApiKey | createApiKey()}, including necessary params to register an API key and an {@linkcode @esri/arcgis-rest-request!ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IApiKeyResponse} object representing the newly registered API key.\n */\nexport async function createApiKey(\n  requestOptions: ICreateApiKeyOptions\n): Promise<IApiKeyResponse> {\n  requestOptions.httpMethod = \"POST\";\n\n  // filter param buckets:\n  const baseRequestOptions = extractBaseRequestOptions(requestOptions); // snapshot of basic IRequestOptions before customized params being built into it\n\n  const itemAddProperties: Array<keyof IItemAdd> = [\n    \"categories\",\n    \"culture\",\n    \"description\",\n    \"documentation\",\n    \"extent\",\n    \"owner\",\n    \"properties\",\n    \"snippet\",\n    \"spatialReference\",\n    \"tags\",\n    \"title\",\n    \"type\",\n    \"typeKeywords\",\n    \"url\"\n  ];\n\n  /**\n   * step 1: create item\n   */\n  const createItemOption: ICreateItemOptions = {\n    item: {\n      ...filterKeys(requestOptions as any, itemAddProperties),\n      type: \"Application\"\n    },\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: {\n      f: \"json\"\n    }\n  };\n\n  const createItemResponse = await createItem(createItemOption);\n\n  /**\n   * getRegisteredAppInfoRoute\n   */\n  const registerAppOptions: IRegisterAppOptions = {\n    itemId: createItemResponse.id,\n    appType: \"multiple\",\n    redirect_uris: [\"urn:ietf:wg:oauth:2.0:oob\"],\n    httpReferrers: requestOptions.httpReferrers || [],\n    privileges: requestOptions.privileges,\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication\n  };\n\n  const registeredAppResponse = await registerApp(registerAppOptions);\n\n  /**\n   * step 3: update item with desired expiration dates\n   * you cannot set the expiration date propierties until you\n   * regiester the app so this has to be a seperate step\n   */\n  await updateItem({\n    ...baseRequestOptions,\n    item: {\n      id: createItemResponse.id,\n      ...buildExpirationDateParams(requestOptions, true)\n    },\n    authentication: requestOptions.authentication\n  });\n\n  /*\n   * step 4: get item info\n   */\n  const itemInfo = await getItem(registeredAppResponse.itemId, {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: { f: \"json\" }\n  });\n\n  /**\n   * step 5: generate tokens if requested\n   */\n  const generatedTokens = await generateApiKeyTokens(\n    itemInfo.id,\n    generateOptionsToSlots(\n      requestOptions.generateToken1,\n      requestOptions.generateToken2\n    ),\n    {\n      ...baseRequestOptions,\n      authentication: requestOptions.authentication\n    }\n  );\n\n  /**\n   * step 6: get registered app info to get updated active key status\n   */\n  const updatedRegisteredAppResponse = await getRegisteredAppInfo({\n    ...baseRequestOptions,\n    itemId: itemInfo.id,\n    authentication: requestOptions.authentication\n  });\n\n  return {\n    ...generatedTokens,\n    ...appToApiKeyProperties(updatedRegisteredAppResponse),\n    item: itemInfo\n  };\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport {\n  IApiKeyResponse,\n  IUpdateApiKeyOptions\n} from \"./shared/types/apiKeyType.js\";\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\nimport {\n  appToApiKeyProperties,\n  extractBaseRequestOptions,\n  stringifyArrays,\n  registeredAppResponseToApp,\n  generateApiKeyTokens,\n  generateOptionsToSlots,\n  buildExpirationDateParams\n} from \"./shared/helpers.js\";\nimport { getItem, getPortalUrl, updateItem } from \"@esri/arcgis-rest-portal\";\nimport { appendCustomParams, request } from \"@esri/arcgis-rest-request\";\nimport {\n  IApp,\n  IGetAppInfoOptions,\n  IRegisteredAppResponse\n} from \"./shared/types/appType.js\";\n\n/**\n * Used to update an API key.\n *\n * Notes about `privileges` and `httpReferrers` options:\n * 1. Provided option will override corresponding old option.\n * 2. Unprovided option will not trigger corresponding option updates.\n *\n * ```js\n * import { updateApiKey, IApiKeyResponse } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * const threeDaysFromToday = new Date();\n * threeDaysFromToday.setDate(threeDaysFromToday.getDate() + 3);\n * threeDaysFromToday.setHours(23, 59, 59, 999);\n *\n * updateApiKey({\n *   itemId: \"xyz_itemId\",\n *   privileges: [\"premium:user:geocode:temporary\"],\n *   httpReferrers: [], // httpReferrers will be set to be empty\n *   authentication: authSession\n *   generateToken1: true, // optional,generate a new token\n *   apiToken1ExpirationDate: threeDaysFromToday  // optional, update expiration date\n * }).then((updatedAPIKey: IApiKeyResponse) => {\n *   // => {accessToken1: \"xyz_key\", item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode updateApiKey | updateApiKey()}, including `itemId` of which API key to be operated on, optional new `privileges`, optional new `httpReferrers` and an {@linkcode @esri/arcgis-rest-request!ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IApiKeyResponse} object representing updated API key.\n */\nexport async function updateApiKey(\n  requestOptions: IUpdateApiKeyOptions\n): Promise<IApiKeyResponse> {\n  requestOptions.httpMethod = \"POST\";\n  const baseRequestOptions = extractBaseRequestOptions(requestOptions); // get base requestOptions snapshot\n\n  /**\n   * step 1: update expiration dates if provided. Build the object up to avoid overwriting any existing properties.\n   */\n  if (\n    requestOptions.apiToken1ExpirationDate ||\n    requestOptions.apiToken2ExpirationDate\n  ) {\n    const updateParams = buildExpirationDateParams(requestOptions);\n    await updateItem({\n      ...baseRequestOptions,\n      item: {\n        id: requestOptions.itemId,\n        ...updateParams\n      },\n      authentication: requestOptions.authentication\n    });\n  }\n\n  /**\n   * step 2: update privileges and httpReferrers if provided. Build the object up to avoid overwriting any existing properties.\n   */\n  if (requestOptions.privileges || requestOptions.httpReferrers) {\n    const getAppOption: IGetAppInfoOptions = {\n      ...baseRequestOptions,\n      authentication: requestOptions.authentication,\n      itemId: requestOptions.itemId\n    };\n    const appResponse = await getRegisteredAppInfo(getAppOption);\n    const clientId = appResponse.client_id;\n    const options = appendCustomParams(\n      { ...appResponse, ...requestOptions }, // object with the custom params to look in\n      [\"privileges\", \"httpReferrers\"] // keys you want copied to the params object\n    );\n    options.params.f = \"json\";\n\n    // encode special params value (e.g. array type...) in advance in order to make encodeQueryString() works correctly\n    stringifyArrays(options);\n\n    const url = getPortalUrl(options) + `/oauth2/apps/${clientId}/update`;\n\n    // Raw response from `/oauth2/apps/${clientId}/update`, apiKey not included because key is same.\n    const updateResponse: IRegisteredAppResponse = await request(url, {\n      ...options,\n      authentication: requestOptions.authentication\n    });\n  }\n\n  /**\n   * step 3: get the updated item info to return to the user.\n   */\n  const updatedItemInfo = await getItem(requestOptions.itemId, {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: { f: \"json\" }\n  });\n\n  /**\n   * step 4: generate tokens if requested\n   */\n  const generatedTokens = await generateApiKeyTokens(\n    requestOptions.itemId,\n    generateOptionsToSlots(\n      requestOptions.generateToken1,\n      requestOptions.generateToken2\n    ),\n    {\n      ...baseRequestOptions,\n      authentication: requestOptions.authentication\n    }\n  );\n\n  /**\n   * step 5: get updated registered app info\n   */\n  const updatedRegisteredAppResponse = await getRegisteredAppInfo({\n    ...baseRequestOptions,\n    itemId: requestOptions.itemId,\n    authentication: requestOptions.authentication\n  });\n\n  return {\n    ...generatedTokens,\n    ...appToApiKeyProperties(updatedRegisteredAppResponse),\n    item: updatedItemInfo\n  };\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\nimport {\n  IApiKeyResponse,\n  IGetApiKeyOptions\n} from \"./shared/types/apiKeyType.js\";\nimport { getItem } from \"@esri/arcgis-rest-portal\";\nimport {\n  appToApiKeyProperties,\n  extractBaseRequestOptions\n} from \"./shared/helpers.js\";\n\n/**\n * Used to retrieve the API key with given `itemId`. See the [security and authentication](https://developers.arcgis.com/documentation/mapping-apis-and-services/security/api-keys/) for more information about API key.\n *\n * ```js\n * import { getApiKey, IApiKeyResponse } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * getApiKey({\n *   itemId: \"xyz_itemId\",\n *   authentication: authSession\n * }).then((retrievedAPIKey: IApiKeyResponse) => {\n *   // => {apiKey: \"xyz_key\", item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode getApiKey | getApiKey()}, including `itemId` of which API key to retrieve and an {@linkcode @esri/arcgis-rest-request!ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IApiKeyResponse} object representing successfully retrieved API key.\n */\nexport async function getApiKey(\n  requestOptions: IGetApiKeyOptions\n): Promise<IApiKeyResponse> {\n  const appResponse = await getRegisteredAppInfo(requestOptions);\n\n  const itemInfo = await getItem(requestOptions.itemId, {\n    ...extractBaseRequestOptions(requestOptions),\n    authentication: requestOptions.authentication\n  });\n\n  return {\n    ...appToApiKeyProperties(appResponse),\n    item: itemInfo\n  };\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport {\n  IInvalidateApiKeyOptions,\n  IInvalidateApiKeyResponse\n} from \"./shared/types/apiKeyType.js\";\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\nimport { getPortalUrl } from \"@esri/arcgis-rest-portal\";\nimport { request } from \"@esri/arcgis-rest-request\";\nimport { slotForInvalidationKey } from \"./shared/helpers.js\";\n\n/**\n * Used to invalidate an API key.\n *\n * ```js\n * import { invalidateApiKey } from \"@esri/arcgis-rest-developer-credentials\";\n *\n * invalidateApiKey({\n *   itemId: ITEM_ID,\n *   authentication,\n *   apiKey: 1, // invalidate the key in slot 1\n * }).then((response) => {\n *   // => {success: true}\n * }).catch(e => {\n *   // => an exception object\n * });\n */\nexport async function invalidateApiKey(\n  requestOptions: IInvalidateApiKeyOptions\n): Promise<IInvalidateApiKeyResponse> {\n  const portal = getPortalUrl(requestOptions);\n  const url = `${portal}/oauth2/revokeToken`;\n\n  const appInfo = await getRegisteredAppInfo({\n    itemId: requestOptions.itemId,\n    authentication: requestOptions.authentication\n  });\n\n  const params = {\n    client_id: appInfo.client_id,\n    client_secret: appInfo.client_secret,\n    apiToken: slotForInvalidationKey(requestOptions.apiKey),\n    regenerateApiToken: true,\n    grant_type: \"client_credentials\"\n  };\n\n  // authentication is not being passed to the request because client_secret acts as the auth\n  return request(url, {\n    params\n  });\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\nimport { getItem } from \"@esri/arcgis-rest-portal\";\nimport {\n  appToOAuthAppProperties,\n  extractBaseRequestOptions\n} from \"./shared/helpers.js\";\nimport { IGetOAuthAppOptions, IOAuthApp } from \"./shared/types/oAuthType.js\";\n\n/**\n * Used to retrieve the OAuth2.0 app with given `itemId`. See the [OAuth2.0](https://developers.arcgis.com/documentation/mapping-apis-and-services/security/oauth-2.0/) for more information.\n *\n * ```js\n * import { getOAuthApp, IOAuthApp } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * getOAuthApp({\n *   itemId: \"xyz_itemId\",\n *   authentication: authSession\n * }).then((retrievedOAuthApp: IOAuthApp) => {\n *   // => {redirect_uris: [\"http://localhost:3000/\"], item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode getOAuthApp | getOAuthApp()}, including `itemId` of which OAuth app to retrieve and an {@linkcode @esri/arcgis-rest-request!ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IOAuthApp} object representing successfully retrieved OAuth app.\n */\nexport async function getOAuthApp(\n  requestOptions: IGetOAuthAppOptions\n): Promise<IOAuthApp> {\n  const appResponse = await getRegisteredAppInfo(requestOptions);\n\n  const itemInfo = await getItem(requestOptions.itemId, {\n    ...extractBaseRequestOptions(requestOptions),\n    authentication: requestOptions.authentication\n  });\n\n  return {\n    ...appToOAuthAppProperties(appResponse),\n    item: itemInfo\n  };\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport {\n  extractBaseRequestOptions,\n  stringifyArrays,\n  registeredAppResponseToApp,\n  appToOAuthAppProperties\n} from \"./shared/helpers.js\";\nimport { getItem, getPortalUrl } from \"@esri/arcgis-rest-portal\";\nimport { appendCustomParams, request } from \"@esri/arcgis-rest-request\";\nimport {\n  IApp,\n  IGetAppInfoOptions,\n  IRegisteredAppResponse\n} from \"./shared/types/appType.js\";\nimport { IOAuthApp, IUpdateOAuthOptions } from \"./shared/types/oAuthType.js\";\nimport { getRegisteredAppInfo } from \"./shared/getRegisteredAppInfo.js\";\n\n/**\n * Used to update an OAuth2.0 app.\n *\n * Notes about `redirect_uris` options:\n * 1. Provided option will override corresponding old option.\n * 2. Unprovided option will not trigger corresponding option updates.\n *\n * ```js\n * import { updateOAuthApp, IOAuthApp } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * updateOAuthApp({\n *   itemId: \"xyz_itemId\",\n *   authentication: authSession\n * }).then((updatedOAuthApp: IOAuthApp) => {\n *   // => This OAuth app will be not be updated because its redirect_uris is not provided.\n *   // => {redirect_uris: [\"http://localhost:3000/\"], item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode updateOAuthApp | updateOAuthApp()}, including `itemId` of which OAuth app to be operated on, optional new `redirect_uris` and an {@linkcode @esri/arcgis-rest-request!ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IOAuthApp} object representing updated OAuth app.\n */\nexport async function updateOAuthApp(\n  requestOptions: IUpdateOAuthOptions\n): Promise<IOAuthApp> {\n  requestOptions.httpMethod = \"POST\";\n\n  // get app\n  const baseRequestOptions = extractBaseRequestOptions(requestOptions); // get base requestOptions snapshot\n  const getAppOption: IGetAppInfoOptions = {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    itemId: requestOptions.itemId\n  };\n\n  const appResponse = await getRegisteredAppInfo(getAppOption);\n\n  if (appResponse.appType === \"apikey\") {\n    throw new Error(\"Item is not an OAuth 2.0 app.\");\n  }\n\n  const clientId = appResponse.client_id;\n  const options = appendCustomParams({ ...appResponse, ...requestOptions }, [\n    \"redirect_uris\"\n  ]);\n  options.params.f = \"json\";\n  options.params.appType = \"multiple\";\n\n  // encode special params value (e.g. array type...) in advance in order to make encodeQueryString() works correctly\n  stringifyArrays(options);\n\n  const url = getPortalUrl(options) + `/oauth2/apps/${clientId}/update`;\n\n  // Raw response from `/oauth2/apps/${clientId}/update`.\n  const updateResponse: IRegisteredAppResponse = await request(url, {\n    ...options,\n    authentication: requestOptions.authentication\n  });\n\n  const app: IApp = registeredAppResponseToApp(updateResponse);\n\n  const itemInfo = await getItem(requestOptions.itemId, {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: { f: \"json\" }\n  });\n\n  return {\n    ...appToOAuthAppProperties(app),\n    item: itemInfo\n  };\n}\n","/* Copyright (c) 2023 Environmental Systems Research Institute, Inc.\n * Apache-2.0 */\n\nimport {\n  ICreateItemOptions,\n  createItem,\n  getItem,\n  IItemAdd\n} from \"@esri/arcgis-rest-portal\";\n\nimport { registerApp } from \"./shared/registerApp.js\";\nimport { IRegisterAppOptions } from \"./shared/types/appType.js\";\nimport {\n  filterKeys,\n  extractBaseRequestOptions,\n  appToOAuthAppProperties\n} from \"./shared/helpers.js\";\nimport { ICreateOAuthAppOption, IOAuthApp } from \"./shared/types/oAuthType.js\";\n\n/**\n * Used to register an OAuth2.0 app. See the [OAuth2.0](https://developers.arcgis.com/documentation/mapping-apis-and-services/security/oauth-2.0/) for more information.\n *\n * ```js\n * import { createOAuthApp, IOAuthApp } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * createOAuthApp({\n *   title: \"xyz_title\",\n *   description: \"xyz_desc\",\n *   tags: [\"xyz_tag1\", \"xyz_tag2\"],\n *   redirect_uris: [\"http://localhost:3000/\"],\n *   authentication: authSession\n * }).then((registeredOAuthApp: IOAuthApp) => {\n *   // => {redirect_uris: [\"http://localhost:3000/\"], item: {tags: [\"xyz_tag1\", \"xyz_tag2\"], ...}, ...}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode createOAuthApp | createOAuthApp()}, including necessary params to register an OAuth app and an {@linkcode @esri/arcgis-rest-request!ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IOAuthApp} object representing the newly registered OAuth app.\n */\nexport async function createOAuthApp(\n  requestOptions: ICreateOAuthAppOption\n): Promise<IOAuthApp> {\n  requestOptions.httpMethod = \"POST\";\n\n  // filter param buckets:\n\n  const baseRequestOptions = extractBaseRequestOptions(requestOptions);\n\n  const itemAddProperties: Array<keyof IItemAdd> = [\n    \"categories\",\n    \"culture\",\n    \"description\",\n    \"documentation\",\n    \"extent\",\n    \"owner\",\n    \"properties\",\n    \"snippet\",\n    \"spatialReference\",\n    \"tags\",\n    \"title\",\n    \"type\",\n    \"typeKeywords\",\n    \"url\"\n  ];\n\n  // step 1: add item\n  const createItemOption: ICreateItemOptions = {\n    item: {\n      ...filterKeys(requestOptions as any, itemAddProperties),\n      type: \"Application\"\n    },\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: {\n      f: \"json\"\n    }\n  };\n\n  const createItemResponse = await createItem(createItemOption);\n\n  // step 2: register app\n  const registerAppOption: IRegisterAppOptions = {\n    itemId: createItemResponse.id,\n    appType: \"multiple\",\n    redirect_uris: requestOptions.redirect_uris || [],\n    httpReferrers: [],\n    privileges: [],\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication\n  };\n\n  const registeredAppResponse = await registerApp(registerAppOption);\n  const itemInfo = await getItem(registeredAppResponse.itemId, {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: { f: \"json\" }\n  });\n\n  return {\n    ...appToOAuthAppProperties(registeredAppResponse),\n    item: itemInfo\n  };\n}\n","import {\n  IGetAppInfoOptions,\n  IUnregisterAppOptions,\n  IUnregisterAppResponse\n} from \"./types/appType.js\";\nimport { extractBaseRequestOptions } from \"./helpers.js\";\nimport { getRegisteredAppInfo } from \"./getRegisteredAppInfo.js\";\nimport { getPortalUrl } from \"@esri/arcgis-rest-portal\";\nimport { request } from \"@esri/arcgis-rest-request\";\n\n/**\n * Used to unregister the app with given `itemId`. See the [REST Documentation](https://developers.arcgis.com/rest/users-groups-and-items/unregister-app.htm) for more information.\n *\n * ```js\n * import { unregisterApp, IUnregisterAppResponse } from '@esri/arcgis-rest-developer-credentials';\n * import { ArcGISIdentityManager } from \"@esri/arcgis-rest-request\";\n *\n * const authSession: ArcGISIdentityManager = await ArcGISIdentityManager.signIn({\n *   username: \"xyz_usrName\",\n *   password: \"xyz_pw\"\n * });\n *\n * unregisterApp({\n *   itemId: \"xyz_itemId\",\n *   authentication: authSession\n * }).then((unregisteredApp: IUnregisterAppResponse) => {\n *   // => {itemId: \"xyz_itemId\", success: true}\n * }).catch(e => {\n *   // => an exception object\n * });\n * ```\n *\n * @param requestOptions - Options for {@linkcode unregisterApp | unregisterApp()}, including `itemId` of which app to be un-registered and an {@linkcode @esri/arcgis-rest-request!ArcGISIdentityManager} authentication session.\n * @returns A Promise that will resolve to an {@linkcode IUnregisterAppResponse} object representing un-registration status.\n */\nexport async function unregisterApp(\n  requestOptions: IUnregisterAppOptions\n): Promise<IUnregisterAppResponse> {\n  requestOptions.httpMethod = \"POST\";\n\n  // get app\n  const baseRequestOptions = extractBaseRequestOptions(requestOptions);\n  const getAppOption: IGetAppInfoOptions = {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    itemId: requestOptions.itemId\n  };\n\n  const appResponse = await getRegisteredAppInfo(getAppOption);\n\n  const clientId = appResponse.client_id;\n\n  const url =\n    getPortalUrl(requestOptions) + `/oauth2/apps/${clientId}/unregister`;\n\n  const unregisterAppResponse: IUnregisterAppResponse = await request(url, {\n    ...baseRequestOptions,\n    authentication: requestOptions.authentication,\n    params: { f: \"json\" }\n  });\n  return unregisterAppResponse;\n}\n"],"names":["async","getRegisteredAppInfo","requestOptions","userName","authentication","getUsername","url","getPortalUrl","itemId","httpMethod","registeredAppResponseToApp","request","Object","assign","params","f","stringifyArrays","entries","forEach","entry","key","value","constructor","name","JSON","stringify","response","omittedKeys","dateKeys","keys","filter","includes","reduce","obj","Date","appToApiKeyProperties","client_secret","redirect_uris","appType","customAppLoginShowTriage","apiKey","appToOAuthAppProperties","httpReferrers","privileges","isPersonalAPIToken","apiToken1Active","apiToken2Active","extractBaseRequestOptions","options","filterKeys","object","includedKeys","ele","slotForKey","slot","parseInt","substring","length","slotForInvalidationKey","param","fullKeySlot","generateApiKeyTokens","slots","Promise","all","map","appInfo","client_id","apiToken","regenerateApiToken","grant_type","generateApiKeyToken","then","responses","access_token","token","index","generateOptionsToSlots","generateToken1","generateToken2","push","buildExpirationDateParams","fillDefaults","updateparams","apiToken1ExpirationDate","apiToken2ExpirationDate","registerApp","appendCustomParams","createApiKey","baseRequestOptions","createItemOption","item","type","createItemResponse","createItem","registerAppOptions","id","registeredAppResponse","updateItem","itemInfo","getItem","generatedTokens","updatedRegisteredAppResponse","updateApiKey","updateParams","getAppOption","appResponse","clientId","updatedItemInfo","getApiKey","invalidateApiKey","getOAuthApp","updateOAuthApp","Error","app","createOAuthApp","registerAppOption","unregisterApp"],"mappings":";;;;;iLAqCOA,eAAeC,EACpBC,GAEA,MAAMC,QAAiBD,EAAeE,eAAeC,cAC/CC,EACJC,EAAaL,GACb,kBAAkBC,WAAkBD,EAAeM,2BACrDN,EAAeO,WAAa,OAO5B,OAAOC,QALqDC,EAAQL,EAAGM,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EAClEX,GAAc,CACjBY,OAAQ,CAAEC,EAAG,WAIjB,CCvCO,MAAMC,EAAmBd,IAC9BU,OAAOK,QAAQf,EAAeY,QAAQI,QAASC,IAC7C,MAAOC,EAAKC,GAASF,EACU,UAA3BE,EAAMC,YAAYC,OACpBrB,EAAeY,OAAOM,GAAOI,KAAKC,UAAUJ,OAS5C,SAAUX,EACdgB,GAEA,MAAMC,EAAc,CAClB,eACA,kBACA,YACA,SACA,4BAEIC,EAAW,CAAC,WAAY,cAE9B,OAAOhB,OAAOiB,KAAKH,GAChBI,OAAQV,IAASO,EAAYI,SAASX,IACtCY,OAAO,CAACC,EAAUb,KACbQ,EAASG,SAASX,GACpBa,EAAIb,GAAO,IAAIc,KAAMR,EAAiBN,IAEtCa,EAAIb,GAAQM,EAAiBN,GAExBa,GACN,CAAA,EACP,CAMM,SAAUE,EAAsBT,GAOpC,cANOA,EAASU,qBACTV,EAASW,qBACTX,EAASY,eACRZ,EAAiBa,gCAClBb,EAASc,OAETd,CACT,CAMM,SAAUe,EAAwBf,GAUtC,cATOA,EAASY,eACTZ,EAASgB,qBACThB,EAASiB,kBACTjB,EAASc,cACRd,EAAiBa,gCAClBb,EAASkB,0BACTlB,EAASmB,uBACTnB,EAASoB,gBAETpB,CACT,CAMM,SAAUqB,EACdC,GAcA,OAAOC,EAAWD,EAZ+B,CAC/C,cACA,UACA,YACA,aACA,eACA,SACA,cACA,SACA,oBAIJ,CAMM,SAAUC,EACdC,EACAC,GAEA,OAAOA,EAAanB,OAClB,CAACC,EAA+CmB,KAC1CA,KAAOF,IACTjB,EAAImB,GAAOF,EAAOE,IAEbnB,GAET,CAAA,EAEJ,CAKM,SAAUoB,EAAWjC,GACzB,MAAMkC,EAAOC,SAASnC,EAAIoC,UAAUpC,EAAIqC,OAAS,GAAIrC,EAAIqC,OAAS,IAElE,GAAa,IAATH,GAAuB,IAATA,EAChB,OAAOA,CAIX,CAMM,SAAUI,EAAuBC,GACrC,GAAc,IAAVA,GAAyB,IAAVA,EACjB,OAAOA,EAGT,GAAqB,iBAAVA,EACT,OAGF,MAAMC,EAAcP,EAAWM,GAC/B,OAAIC,QAAJ,CAGF,UAUgBC,EACdrD,EACAsD,EACA5D,GAEA,OAAO6D,QAAQC,IACbF,EAAMG,IAAKX,GCzJRtD,eACLgD,GAEA,MACM1C,EAAM,GADGC,EAAayC,kBAGtBkB,QAAgBjE,EAAqB,CACzCO,OAAQwC,EAAQxC,OAChBJ,eAAgB4C,EAAQ5C,iBAGpBU,EAAS,CACbqD,UAAWD,EAAQC,UACnB/B,cAAe8B,EAAQ9B,cACvBgC,SAAUpB,EAAQR,OAClB6B,oBAAoB,EACpBC,WAAY,sBAId,OAAO3D,EAAQL,EAAK,CAClBQ,UAEJ,CDmIayD,CAAmB3D,OAAAC,OAAA,CACxBL,SACAgC,OAAQc,GACLpD,MAGPsE,KAAMC,GACCA,EACJR,IAAKQ,GAAcA,EAAUC,cAC7B1C,OAAO,CAACC,EAAK0C,EAAOC,KACnB3C,EAAI,cAAcoB,EAAWsB,MAAYA,EAClC1C,GACN,CAAA,GAET,CAMM,SAAU4C,EACdC,EACAC,GAEA,MAAMjB,EAAsB,GAO5B,OANIgB,GACFhB,EAAMkB,KAAK,GAETD,GACFjB,EAAMkB,KAAK,GAENlB,CACT,CAmBM,SAAUmB,EACd/E,EAIAgF,GAEA,MAAMC,EAAoB,CAAA,EAkB1B,OAjBIjF,EAAekF,0BACjBD,EAAaC,wBACXlF,EAAekF,yBAGflF,EAAemF,0BACjBF,EAAaE,wBACXnF,EAAemF,yBAGfH,IAAiBC,EAAaC,0BAChCD,EAAaC,yBAA0B,GAGrCF,IAAiBC,EAAaE,0BAChCF,EAAaE,yBAA0B,GAElCF,CACT,CEtMOnF,eAAesF,EACpBpF,GAGA,MAAM8C,EAAUuC,EAAmBrF,EAAgB,CACjD,SACA,UACA,gBACA,gBACA,eAGFc,EAAgBgC,GAEhB,MAAM1C,EAAMC,EAAayC,GAAW,sBACpCA,EAAQvC,WAAa,OACrBuC,EAAQlC,OAAOC,EAAI,OAOnB,OAAOL,QALqDC,EAC1DL,EACA0C,GAIJ,CCXOhD,eAAewF,EACpBtF,GAEAA,EAAeO,WAAa,OAG5B,MAAMgF,EAAqB1C,EAA0B7C,GAsB/CwF,EAAgB9E,OAAAC,OAAAD,OAAAC,OAAA,CACpB8E,KAAI/E,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACCoC,EAAW/C,EAtB+B,CAC/C,aACA,UACA,cACA,gBACA,SACA,QACA,aACA,UACA,mBACA,OACA,QACA,OACA,eACA,SAQyD,CACvD0F,KAAM,iBAELH,GAAkB,CACrBrF,eAAgBF,EAAeE,eAC/BU,OAAQ,CACNC,EAAG,UAID8E,QAA2BC,EAAWJ,GAKtCK,EAAkBnF,OAAAC,OAAAD,OAAAC,OAAA,CACtBL,OAAQqF,EAAmBG,GAC3B1D,QAAS,WACTD,cAAe,CAAC,6BAChBK,cAAexC,EAAewC,eAAiB,GAC/CC,WAAYzC,EAAeyC,YACxB8C,IACHrF,eAAgBF,EAAeE,iBAG3B6F,QAA8BX,EAAYS,SAO1CG,EAAUtF,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACX4E,GAAkB,CACrBE,oBACEK,GAAIH,EAAmBG,IACpBf,EAA0B/E,GAAgB,IAE/CE,eAAgBF,EAAeE,kBAMjC,MAAM+F,QAAiBC,EAAQH,EAAsBzF,OAAMI,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACtD4E,GAAkB,CACrBrF,eAAgBF,EAAeE,eAC/BU,OAAQ,CAAEC,EAAG,WAMTsF,QAAwBxC,EAC5BsC,EAASH,GACTnB,EACE3E,EAAe4E,eACf5E,EAAe6E,gBAChBnE,OAAAC,OAAAD,OAAAC,OAAA,GAEI4E,GAAkB,CACrBrF,eAAgBF,EAAeE,kBAO7BkG,QAAqCrG,EAAoBW,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EAC1D4E,IACHjF,OAAQ2F,EAASH,GACjB5F,eAAgBF,EAAeE,kBAGjC,OAAAQ,OAAAC,OAAAD,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACKwF,GACAlE,EAAsBmE,IAA6B,CACtDX,KAAMQ,GAEV,CC5GOnG,eAAeuG,EACpBrG,GAEAA,EAAeO,WAAa,OAC5B,MAAMgF,EAAqB1C,EAA0B7C,GAKrD,GACEA,EAAekF,yBACflF,EAAemF,wBACf,CACA,MAAMmB,EAAevB,EAA0B/E,SACzCgG,iCACDT,GAAkB,CACrBE,KAAI/E,OAAAC,OAAA,CACFmF,GAAI9F,EAAeM,QAChBgG,GAELpG,eAAgBF,EAAeE,iBAEnC,CAKA,GAAIF,EAAeyC,YAAczC,EAAewC,cAAe,CAC7D,MAAM+D,EAAY7F,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACb4E,GAAkB,CACrBrF,eAAgBF,EAAeE,eAC/BI,OAAQN,EAAeM,SAEnBkG,QAAoBzG,EAAqBwG,GACzCE,EAAWD,EAAYvC,UACvBnB,EAAUuC,EAAkB3E,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EAC3B6F,GAAgBxG,GACrB,CAAC,aAAc,kBAEjB8C,EAAQlC,OAAOC,EAAI,OAGnBC,EAAgBgC,GAEhB,MAAM1C,EAAMC,EAAayC,GAAW,gBAAgB2D,iBAGChG,EAAQL,EAAGM,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EAC3DmC,GAAO,CACV5C,eAAgBF,EAAeE,iBAEnC,CAKA,MAAMwG,QAAwBR,EAAQlG,EAAeM,OAAMI,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACtD4E,GAAkB,CACrBrF,eAAgBF,EAAeE,eAC/BU,OAAQ,CAAEC,EAAG,WAMTsF,QAAwBxC,EAC5B3D,EAAeM,OACfqE,EACE3E,EAAe4E,eACf5E,EAAe6E,gBAChBnE,OAAAC,OAAAD,OAAAC,OAAA,GAEI4E,GAAkB,CACrBrF,eAAgBF,EAAeE,kBAO7BkG,QAAqCrG,EAAoBW,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EAC1D4E,IACHjF,OAAQN,EAAeM,OACvBJ,eAAgBF,EAAeE,kBAGjC,OAAAQ,OAAAC,OAAAD,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACKwF,GACAlE,EAAsBmE,IAA6B,CACtDX,KAAMiB,GAEV,CClHO5G,eAAe6G,EACpB3G,GAEA,MAAMwG,QAAoBzG,EAAqBC,GAEzCiG,QAAiBC,EAAQlG,EAAeM,OAAMI,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EAC/CkC,EAA0B7C,KAC7BE,eAAgBF,EAAeE,kBAGjC,OAAAQ,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACKsB,EAAsBuE,KACzBf,KAAMQ,GAEV,CCzBOnG,eAAe8G,EACpB5G,GAEA,MACMI,EAAM,GADGC,EAAaL,wBAGtBgE,QAAgBjE,EAAqB,CACzCO,OAAQN,EAAeM,OACvBJ,eAAgBF,EAAeE,iBAG3BU,EAAS,CACbqD,UAAWD,EAAQC,UACnB/B,cAAe8B,EAAQ9B,cACvBgC,SAAUV,EAAuBxD,EAAesC,QAChD6B,oBAAoB,EACpBC,WAAY,sBAId,OAAO3D,EAAQL,EAAK,CAClBQ,UAEJ,CCfOd,eAAe+G,EACpB7G,GAEA,MAAMwG,QAAoBzG,EAAqBC,GAEzCiG,QAAiBC,EAAQlG,EAAeM,OAAMI,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EAC/CkC,EAA0B7C,KAC7BE,eAAgBF,EAAeE,kBAGjC,OAAAQ,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACK4B,EAAwBiE,KAC3Bf,KAAMQ,GAEV,CCDOnG,eAAegH,EACpB9G,GAEAA,EAAeO,WAAa,OAG5B,MAAMgF,EAAqB1C,EAA0B7C,GAC/CuG,EAAY7F,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACb4E,GAAkB,CACrBrF,eAAgBF,EAAeE,eAC/BI,OAAQN,EAAeM,SAGnBkG,QAAoBzG,EAAqBwG,GAE/C,GAA4B,WAAxBC,EAAYpE,QACd,MAAM,IAAI2E,MAAM,iCAGlB,MAAMN,EAAWD,EAAYvC,UACvBnB,EAAUuC,iCAAwBmB,GAAgBxG,GAAkB,CACxE,kBAEF8C,EAAQlC,OAAOC,EAAI,OACnBiC,EAAQlC,OAAOwB,QAAU,WAGzBtB,EAAgBgC,GAEhB,MAAM1C,EAAMC,EAAayC,GAAW,gBAAgB2D,WAQ9CO,EAAYxG,QALmCC,EAAQL,EAAGM,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EAC3DmC,GAAO,CACV5C,eAAgBF,EAAeE,mBAK3B+F,QAAiBC,EAAQlG,EAAeM,OAAMI,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EAC/C4E,GAAkB,CACrBrF,eAAgBF,EAAeE,eAC/BU,OAAQ,CAAEC,EAAG,WAGf,OAAAH,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACK4B,EAAwByE,KAC3BvB,KAAMQ,GAEV,CCnDOnG,eAAemH,EACpBjH,GAEAA,EAAeO,WAAa,OAI5B,MAAMgF,EAAqB1C,EAA0B7C,GAoB/CwF,EAAgB9E,OAAAC,OAAAD,OAAAC,OAAA,CACpB8E,KAAI/E,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACCoC,EAAW/C,EApB+B,CAC/C,aACA,UACA,cACA,gBACA,SACA,QACA,aACA,UACA,mBACA,OACA,QACA,OACA,eACA,SAMyD,CACvD0F,KAAM,iBAELH,GAAkB,CACrBrF,eAAgBF,EAAeE,eAC/BU,OAAQ,CACNC,EAAG,UAID8E,QAA2BC,EAAWJ,GAGtC0B,EAAiBxG,OAAAC,OAAAD,OAAAC,OAAA,CACrBL,OAAQqF,EAAmBG,GAC3B1D,QAAS,WACTD,cAAenC,EAAemC,eAAiB,GAC/CK,cAAe,GACfC,WAAY,IACT8C,GAAkB,CACrBrF,eAAgBF,EAAeE,iBAG3B6F,QAA8BX,EAAY8B,GAC1CjB,QAAiBC,EAAQH,EAAsBzF,OAAMI,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACtD4E,GAAkB,CACrBrF,eAAgBF,EAAeE,eAC/BU,OAAQ,CAAEC,EAAG,WAGf,OAAAH,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACK4B,EAAwBwD,KAC3BN,KAAMQ,GAEV,CC3EOnG,eAAeqH,EACpBnH,GAEAA,EAAeO,WAAa,OAG5B,MAAMgF,EAAqB1C,EAA0B7C,GAC/CuG,EAAY7F,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EACb4E,GAAkB,CACrBrF,eAAgBF,EAAeE,eAC/BI,OAAQN,EAAeM,SAKnBmG,SAFoB1G,EAAqBwG,IAElBtC,UAEvB7D,EACJC,EAAaL,GAAkB,gBAAgByG,eAOjD,aAL4DhG,EAAQL,EAAGM,OAAAC,OAAAD,OAAAC,OAAA,CAAA,EAClE4E,GAAkB,CACrBrF,eAAgBF,EAAeE,eAC/BU,OAAQ,CAAEC,EAAG,UAGjB"}