@forklaunch/core 0.14.14 → 0.14.16

package/lib/http/index.d.mts

@@ -1718,6 +1718,84 @@ declare function createHmacToken({ method, path, body, timestamp, nonce, secretK
     secretKey: string;
 }): string;
 
+/**
+ * Retrieves and caches the JSON Web Key Set (JWKS) from a given public key URL.
+ *
+ * This function fetches the JWKS from the specified URL and caches the result in memory
+ * to avoid unnecessary network requests. The cache is considered valid for a duration
+ * specified by the `cache-control` header in the JWKS HTTP response (in seconds), or
+ * falls back to a default TTL if the header is not present. If the cache is still valid,
+ * the cached keys are returned immediately.
+ *
+ * @param {string} jwksPublicKeyUrl - The URL to fetch the JWKS from.
+ * @returns {Promise<JWK[]>} A promise that resolves to an array of JWK objects.
+ *
+ * @example
+ * const jwks = await getCachedJwks('https://example.com/.well-known/jwks.json');
+ * // Use jwks for JWT verification, etc.
+ */
+declare function getCachedJwks(jwksPublicKeyUrl: string): Promise<JWK[]>;
+/**
+ * Discriminates between different authentication methods and returns a typed result.
+ *
+ * This function analyzes the provided authentication configuration and determines
+ * whether it uses basic authentication or JWT authentication. It returns a
+ * discriminated union type that includes the authentication type and the
+ * corresponding authentication configuration.
+ *
+ * @template SV - A type that extends AnySchemaValidator
+ * @template P - A type that extends ParamsDictionary
+ * @template ReqBody - A type that extends Record<string, unknown>
+ * @template ReqQuery - A type that extends ParsedQs
+ * @template ReqHeaders - A type that extends Record<string, unknown>
+ * @template BaseRequest - The base request type
+ *
+ * @param auth - The authentication methods configuration object
+ * @returns A discriminated union object with either:
+ *   - `{ type: 'basic', auth: BasicAuthMethods['basic'] }` for basic authentication
+ *   - `{ type: 'jwt', auth?: JwtAuthMethods['jwt'] }` for JWT authentication (auth is optional)
+ *
+ * @example
+ * ```typescript
+ * const authConfig = {
+ *   basic: {
+ *     login: (username: string, password: string) => boolean
+ *   }
+ * };
+ * const result = discriminateAuthMethod(authConfig);
+ * // result.type === 'basic'
+ * // result.auth === authConfig.basic
+ * ```
+ */
+declare function discriminateAuthMethod<SV extends AnySchemaValidator, P extends ParamsDictionary, ReqBody extends Record<string, unknown>, ReqQuery extends ParsedQs, ReqHeaders extends Record<string, string>, VersionedReqs extends VersionedRequests, BaseRequest>(auth: AuthMethods<SV, P, ReqBody, ReqQuery, ReqHeaders, VersionedReqs, BaseRequest>): Promise<{
+    type: 'basic';
+    auth: {
+        decodeResource?: DecodeResource;
+        login: BasicAuthMethods['basic']['login'];
+    };
+} | {
+    type: 'jwt';
+    auth: {
+        decodeResource?: DecodeResource;
+    } | {
+        verificationFunction: (token: string) => Promise<JWTPayload | undefined>;
+    };
+} | {
+    type: 'hmac';
+    auth: {
+        secretKeys: Record<string, string>;
+        verificationFunction: ({ body, path, method, timestamp, nonce, signature, secretKey }: {
+            method: string;
+            path: string;
+            body?: unknown;
+            timestamp: Date;
+            nonce: string;
+            signature: string;
+            secretKey: string;
+        }) => Promise<boolean | undefined>;
+    };
+}>;
+
 /**
  * Type guard that checks if an object is a Forklaunch request.
  * A Forklaunch request is an object that contains contract details and follows the Forklaunch request structure.
@@ -2189,4 +2267,4 @@ declare function logger(level: LevelWithSilentOrString, meta?: AnyValueMap): Pin
 
 declare function recordMetric<SV extends AnySchemaValidator, P extends ParamsDictionary, ReqBody extends Record<string, unknown>, ReqQuery extends ParsedQs, ResBodyMap extends Record<string, unknown>, ReqHeaders extends Record<string, string>, ResHeaders extends Record<string, unknown>, LocalsObj extends Record<string, unknown>, VersionedReqs extends VersionedRequests, SessionSchema extends Record<string, unknown>>(req: ForklaunchRequest<SV, P, ReqBody, ReqQuery, ReqHeaders, Extract<keyof VersionedReqs, string>, SessionSchema>, res: ForklaunchResponse<unknown, ResBodyMap, ResHeaders, LocalsObj, Extract<keyof VersionedReqs, string>>): void;
 
-export { ATTR_API_NAME, ATTR_CORRELATION_ID, type AuthMethods, type AuthMethodsBase, type BasicAuthMethods, type Body, type BodyObject, type ClusterConfig, type ConstrainedForklaunchRouter, type ContractDetails, type ContractDetailsExpressLikeSchemaHandler, type ContractDetailsOrMiddlewareOrTypedHandler, type DecodeResource, type DocsConfiguration, type ErrorContainer, type ExpressLikeApplicationOptions, type ExpressLikeAuthMapper, type ExpressLikeGlobalAuthOptions, type ExpressLikeHandler, type ExpressLikeRouter, type ExpressLikeRouterOptions, type ExpressLikeSchemaAuthMapper, type ExpressLikeSchemaGlobalAuthOptions, type ExpressLikeSchemaHandler, type ExpressLikeTypedHandler, type ExtractBody, type ExtractContentType, type ExtractLiveTypeFn, type ExtractResponseBody, type ExtractedParamsObject, type FetchFunction, type FileBody, type ForklaunchBaseRequest, ForklaunchExpressLikeApplication, ForklaunchExpressLikeRouter, type ForklaunchNextFunction, type ForklaunchRequest, type ForklaunchResErrors, type ForklaunchResHeaders, type ForklaunchResponse, type ForklaunchRoute, type ForklaunchRouter, type ForklaunchSendableData, type ForklaunchStatusResponse, HTTPStatuses, type HeadersObject, type HmacMethods, type HttpContractDetails, type HttpMethod, type JsonBody, type JwtAuthMethods, type LiveSdkFunction, type LiveTypeFunction, type LiveTypeFunctionRequestInit, type LiveTypeRouteDefinition, type LogFn, type LoggerMeta, type MapControllerToSdk, type MapParamsSchema, type MapReqBodySchema, type MapReqHeadersSchema, type MapReqQuerySchema, type MapResBodyMapSchema, type MapResHeadersSchema, type MapSchema, type MapSessionSchema, type MapToFetch, type MapToSdk, type MapVersionedReqsSchema, type MapVersionedRespsSchema, type Method, type MetricType, type MetricsDefinition, type MiddlewareContractDetails, type MiddlewareOrMiddlewareWithTypedHandler, type MultipartForm, type NestableRouterBasedHandler, type NumberOnlyObject, OPENAPI_DEFAULT_VERSION, OpenTelemetryCollector, type ParamsDictionary, type ParamsObject, type PathBasedHandler, type PathMatch, type PathOrMiddlewareBasedHandler, type PathParamHttpContractDetails, type PathParamMethod, type QueryObject, type RawTypedResponseBody, type RequestContext, type ResolvedForklaunchAuthRequest, type ResolvedForklaunchRequest, type ResolvedForklaunchResponse, type ResolvedSessionObject, type ResponseBody, type ResponseCompiledSchema, type ResponseShape, type ResponsesObject, type RouterMap, type RoutingStrategy, type SchemaAuthMethods, type SdkHandler, type SdkRouter, type ServerSentEventBody, type SessionObject, type StatusCode, type StringOnlyObject, type TelemetryOptions, type TextBody, type ToFetchMap, type TypedBody, type TypedHandler, type TypedMiddlewareDefinition, type TypedNestableMiddlewareDefinition, type TypedRequestBody, type TypedResponseBody, type UnknownBody, type UnknownResponseBody, type UrlEncodedForm, type VersionSchema, type VersionedRequests, type VersionedResponses, createHmacToken, delete_, discriminateBody, discriminateResponseBodies, enrichExpressLikeSend, evaluateTelemetryOptions, generateMcpServer, generateOpenApiSpecs, get, getCodeForStatus, head, httpRequestsTotalCounter, httpServerDurationHistogram, isClientError, isForklaunchRequest, isForklaunchRouter, isInformational, isPortBound, isRedirection, isServerError, isSuccessful, isValidStatusCode, logger, meta, metricsDefinitions, middleware, options, patch, post, put, recordMetric, sdkClient, sdkRouter, trace, typedAuthHandler, typedHandler };
+export { ATTR_API_NAME, ATTR_CORRELATION_ID, type AuthMethods, type AuthMethodsBase, type BasicAuthMethods, type Body, type BodyObject, type ClusterConfig, type ConstrainedForklaunchRouter, type ContractDetails, type ContractDetailsExpressLikeSchemaHandler, type ContractDetailsOrMiddlewareOrTypedHandler, type DecodeResource, type DocsConfiguration, type ErrorContainer, type ExpressLikeApplicationOptions, type ExpressLikeAuthMapper, type ExpressLikeGlobalAuthOptions, type ExpressLikeHandler, type ExpressLikeRouter, type ExpressLikeRouterOptions, type ExpressLikeSchemaAuthMapper, type ExpressLikeSchemaGlobalAuthOptions, type ExpressLikeSchemaHandler, type ExpressLikeTypedHandler, type ExtractBody, type ExtractContentType, type ExtractLiveTypeFn, type ExtractResponseBody, type ExtractedParamsObject, type FetchFunction, type FileBody, type ForklaunchBaseRequest, ForklaunchExpressLikeApplication, ForklaunchExpressLikeRouter, type ForklaunchNextFunction, type ForklaunchRequest, type ForklaunchResErrors, type ForklaunchResHeaders, type ForklaunchResponse, type ForklaunchRoute, type ForklaunchRouter, type ForklaunchSendableData, type ForklaunchStatusResponse, HTTPStatuses, type HeadersObject, type HmacMethods, type HttpContractDetails, type HttpMethod, type JsonBody, type JwtAuthMethods, type LiveSdkFunction, type LiveTypeFunction, type LiveTypeFunctionRequestInit, type LiveTypeRouteDefinition, type LogFn, type LoggerMeta, type MapControllerToSdk, type MapParamsSchema, type MapReqBodySchema, type MapReqHeadersSchema, type MapReqQuerySchema, type MapResBodyMapSchema, type MapResHeadersSchema, type MapSchema, type MapSessionSchema, type MapToFetch, type MapToSdk, type MapVersionedReqsSchema, type MapVersionedRespsSchema, type Method, type MetricType, type MetricsDefinition, type MiddlewareContractDetails, type MiddlewareOrMiddlewareWithTypedHandler, type MultipartForm, type NestableRouterBasedHandler, type NumberOnlyObject, OPENAPI_DEFAULT_VERSION, OpenTelemetryCollector, type ParamsDictionary, type ParamsObject, type PathBasedHandler, type PathMatch, type PathOrMiddlewareBasedHandler, type PathParamHttpContractDetails, type PathParamMethod, type QueryObject, type RawTypedResponseBody, type RequestContext, type ResolvedForklaunchAuthRequest, type ResolvedForklaunchRequest, type ResolvedForklaunchResponse, type ResolvedSessionObject, type ResponseBody, type ResponseCompiledSchema, type ResponseShape, type ResponsesObject, type RouterMap, type RoutingStrategy, type SchemaAuthMethods, type SdkHandler, type SdkRouter, type ServerSentEventBody, type SessionObject, type StatusCode, type StringOnlyObject, type TelemetryOptions, type TextBody, type ToFetchMap, type TypedBody, type TypedHandler, type TypedMiddlewareDefinition, type TypedNestableMiddlewareDefinition, type TypedRequestBody, type TypedResponseBody, type UnknownBody, type UnknownResponseBody, type UrlEncodedForm, type VersionSchema, type VersionedRequests, type VersionedResponses, createHmacToken, delete_, discriminateAuthMethod, discriminateBody, discriminateResponseBodies, enrichExpressLikeSend, evaluateTelemetryOptions, generateMcpServer, generateOpenApiSpecs, get, getCachedJwks, getCodeForStatus, head, httpRequestsTotalCounter, httpServerDurationHistogram, isClientError, isForklaunchRequest, isForklaunchRouter, isInformational, isPortBound, isRedirection, isServerError, isSuccessful, isValidStatusCode, logger, meta, metricsDefinitions, middleware, options, patch, post, put, recordMetric, sdkClient, sdkRouter, trace, typedAuthHandler, typedHandler };

package/lib/http/index.d.ts

@@ -1718,6 +1718,84 @@ declare function createHmacToken({ method, path, body, timestamp, nonce, secretK
     secretKey: string;
 }): string;
 
+/**
+ * Retrieves and caches the JSON Web Key Set (JWKS) from a given public key URL.
+ *
+ * This function fetches the JWKS from the specified URL and caches the result in memory
+ * to avoid unnecessary network requests. The cache is considered valid for a duration
+ * specified by the `cache-control` header in the JWKS HTTP response (in seconds), or
+ * falls back to a default TTL if the header is not present. If the cache is still valid,
+ * the cached keys are returned immediately.
+ *
+ * @param {string} jwksPublicKeyUrl - The URL to fetch the JWKS from.
+ * @returns {Promise<JWK[]>} A promise that resolves to an array of JWK objects.
+ *
+ * @example
+ * const jwks = await getCachedJwks('https://example.com/.well-known/jwks.json');
+ * // Use jwks for JWT verification, etc.
+ */
+declare function getCachedJwks(jwksPublicKeyUrl: string): Promise<JWK[]>;
+/**
+ * Discriminates between different authentication methods and returns a typed result.
+ *
+ * This function analyzes the provided authentication configuration and determines
+ * whether it uses basic authentication or JWT authentication. It returns a
+ * discriminated union type that includes the authentication type and the
+ * corresponding authentication configuration.
+ *
+ * @template SV - A type that extends AnySchemaValidator
+ * @template P - A type that extends ParamsDictionary
+ * @template ReqBody - A type that extends Record<string, unknown>
+ * @template ReqQuery - A type that extends ParsedQs
+ * @template ReqHeaders - A type that extends Record<string, unknown>
+ * @template BaseRequest - The base request type
+ *
+ * @param auth - The authentication methods configuration object
+ * @returns A discriminated union object with either:
+ *   - `{ type: 'basic', auth: BasicAuthMethods['basic'] }` for basic authentication
+ *   - `{ type: 'jwt', auth?: JwtAuthMethods['jwt'] }` for JWT authentication (auth is optional)
+ *
+ * @example
+ * ```typescript
+ * const authConfig = {
+ *   basic: {
+ *     login: (username: string, password: string) => boolean
+ *   }
+ * };
+ * const result = discriminateAuthMethod(authConfig);
+ * // result.type === 'basic'
+ * // result.auth === authConfig.basic
+ * ```
+ */
+declare function discriminateAuthMethod<SV extends AnySchemaValidator, P extends ParamsDictionary, ReqBody extends Record<string, unknown>, ReqQuery extends ParsedQs, ReqHeaders extends Record<string, string>, VersionedReqs extends VersionedRequests, BaseRequest>(auth: AuthMethods<SV, P, ReqBody, ReqQuery, ReqHeaders, VersionedReqs, BaseRequest>): Promise<{
+    type: 'basic';
+    auth: {
+        decodeResource?: DecodeResource;
+        login: BasicAuthMethods['basic']['login'];
+    };
+} | {
+    type: 'jwt';
+    auth: {
+        decodeResource?: DecodeResource;
+    } | {
+        verificationFunction: (token: string) => Promise<JWTPayload | undefined>;
+    };
+} | {
+    type: 'hmac';
+    auth: {
+        secretKeys: Record<string, string>;
+        verificationFunction: ({ body, path, method, timestamp, nonce, signature, secretKey }: {
+            method: string;
+            path: string;
+            body?: unknown;
+            timestamp: Date;
+            nonce: string;
+            signature: string;
+            secretKey: string;
+        }) => Promise<boolean | undefined>;
+    };
+}>;
+
 /**
  * Type guard that checks if an object is a Forklaunch request.
  * A Forklaunch request is an object that contains contract details and follows the Forklaunch request structure.
@@ -2189,4 +2267,4 @@ declare function logger(level: LevelWithSilentOrString, meta?: AnyValueMap): Pin
 
 declare function recordMetric<SV extends AnySchemaValidator, P extends ParamsDictionary, ReqBody extends Record<string, unknown>, ReqQuery extends ParsedQs, ResBodyMap extends Record<string, unknown>, ReqHeaders extends Record<string, string>, ResHeaders extends Record<string, unknown>, LocalsObj extends Record<string, unknown>, VersionedReqs extends VersionedRequests, SessionSchema extends Record<string, unknown>>(req: ForklaunchRequest<SV, P, ReqBody, ReqQuery, ReqHeaders, Extract<keyof VersionedReqs, string>, SessionSchema>, res: ForklaunchResponse<unknown, ResBodyMap, ResHeaders, LocalsObj, Extract<keyof VersionedReqs, string>>): void;
 
-export { ATTR_API_NAME, ATTR_CORRELATION_ID, type AuthMethods, type AuthMethodsBase, type BasicAuthMethods, type Body, type BodyObject, type ClusterConfig, type ConstrainedForklaunchRouter, type ContractDetails, type ContractDetailsExpressLikeSchemaHandler, type ContractDetailsOrMiddlewareOrTypedHandler, type DecodeResource, type DocsConfiguration, type ErrorContainer, type ExpressLikeApplicationOptions, type ExpressLikeAuthMapper, type ExpressLikeGlobalAuthOptions, type ExpressLikeHandler, type ExpressLikeRouter, type ExpressLikeRouterOptions, type ExpressLikeSchemaAuthMapper, type ExpressLikeSchemaGlobalAuthOptions, type ExpressLikeSchemaHandler, type ExpressLikeTypedHandler, type ExtractBody, type ExtractContentType, type ExtractLiveTypeFn, type ExtractResponseBody, type ExtractedParamsObject, type FetchFunction, type FileBody, type ForklaunchBaseRequest, ForklaunchExpressLikeApplication, ForklaunchExpressLikeRouter, type ForklaunchNextFunction, type ForklaunchRequest, type ForklaunchResErrors, type ForklaunchResHeaders, type ForklaunchResponse, type ForklaunchRoute, type ForklaunchRouter, type ForklaunchSendableData, type ForklaunchStatusResponse, HTTPStatuses, type HeadersObject, type HmacMethods, type HttpContractDetails, type HttpMethod, type JsonBody, type JwtAuthMethods, type LiveSdkFunction, type LiveTypeFunction, type LiveTypeFunctionRequestInit, type LiveTypeRouteDefinition, type LogFn, type LoggerMeta, type MapControllerToSdk, type MapParamsSchema, type MapReqBodySchema, type MapReqHeadersSchema, type MapReqQuerySchema, type MapResBodyMapSchema, type MapResHeadersSchema, type MapSchema, type MapSessionSchema, type MapToFetch, type MapToSdk, type MapVersionedReqsSchema, type MapVersionedRespsSchema, type Method, type MetricType, type MetricsDefinition, type MiddlewareContractDetails, type MiddlewareOrMiddlewareWithTypedHandler, type MultipartForm, type NestableRouterBasedHandler, type NumberOnlyObject, OPENAPI_DEFAULT_VERSION, OpenTelemetryCollector, type ParamsDictionary, type ParamsObject, type PathBasedHandler, type PathMatch, type PathOrMiddlewareBasedHandler, type PathParamHttpContractDetails, type PathParamMethod, type QueryObject, type RawTypedResponseBody, type RequestContext, type ResolvedForklaunchAuthRequest, type ResolvedForklaunchRequest, type ResolvedForklaunchResponse, type ResolvedSessionObject, type ResponseBody, type ResponseCompiledSchema, type ResponseShape, type ResponsesObject, type RouterMap, type RoutingStrategy, type SchemaAuthMethods, type SdkHandler, type SdkRouter, type ServerSentEventBody, type SessionObject, type StatusCode, type StringOnlyObject, type TelemetryOptions, type TextBody, type ToFetchMap, type TypedBody, type TypedHandler, type TypedMiddlewareDefinition, type TypedNestableMiddlewareDefinition, type TypedRequestBody, type TypedResponseBody, type UnknownBody, type UnknownResponseBody, type UrlEncodedForm, type VersionSchema, type VersionedRequests, type VersionedResponses, createHmacToken, delete_, discriminateBody, discriminateResponseBodies, enrichExpressLikeSend, evaluateTelemetryOptions, generateMcpServer, generateOpenApiSpecs, get, getCodeForStatus, head, httpRequestsTotalCounter, httpServerDurationHistogram, isClientError, isForklaunchRequest, isForklaunchRouter, isInformational, isPortBound, isRedirection, isServerError, isSuccessful, isValidStatusCode, logger, meta, metricsDefinitions, middleware, options, patch, post, put, recordMetric, sdkClient, sdkRouter, trace, typedAuthHandler, typedHandler };
+export { ATTR_API_NAME, ATTR_CORRELATION_ID, type AuthMethods, type AuthMethodsBase, type BasicAuthMethods, type Body, type BodyObject, type ClusterConfig, type ConstrainedForklaunchRouter, type ContractDetails, type ContractDetailsExpressLikeSchemaHandler, type ContractDetailsOrMiddlewareOrTypedHandler, type DecodeResource, type DocsConfiguration, type ErrorContainer, type ExpressLikeApplicationOptions, type ExpressLikeAuthMapper, type ExpressLikeGlobalAuthOptions, type ExpressLikeHandler, type ExpressLikeRouter, type ExpressLikeRouterOptions, type ExpressLikeSchemaAuthMapper, type ExpressLikeSchemaGlobalAuthOptions, type ExpressLikeSchemaHandler, type ExpressLikeTypedHandler, type ExtractBody, type ExtractContentType, type ExtractLiveTypeFn, type ExtractResponseBody, type ExtractedParamsObject, type FetchFunction, type FileBody, type ForklaunchBaseRequest, ForklaunchExpressLikeApplication, ForklaunchExpressLikeRouter, type ForklaunchNextFunction, type ForklaunchRequest, type ForklaunchResErrors, type ForklaunchResHeaders, type ForklaunchResponse, type ForklaunchRoute, type ForklaunchRouter, type ForklaunchSendableData, type ForklaunchStatusResponse, HTTPStatuses, type HeadersObject, type HmacMethods, type HttpContractDetails, type HttpMethod, type JsonBody, type JwtAuthMethods, type LiveSdkFunction, type LiveTypeFunction, type LiveTypeFunctionRequestInit, type LiveTypeRouteDefinition, type LogFn, type LoggerMeta, type MapControllerToSdk, type MapParamsSchema, type MapReqBodySchema, type MapReqHeadersSchema, type MapReqQuerySchema, type MapResBodyMapSchema, type MapResHeadersSchema, type MapSchema, type MapSessionSchema, type MapToFetch, type MapToSdk, type MapVersionedReqsSchema, type MapVersionedRespsSchema, type Method, type MetricType, type MetricsDefinition, type MiddlewareContractDetails, type MiddlewareOrMiddlewareWithTypedHandler, type MultipartForm, type NestableRouterBasedHandler, type NumberOnlyObject, OPENAPI_DEFAULT_VERSION, OpenTelemetryCollector, type ParamsDictionary, type ParamsObject, type PathBasedHandler, type PathMatch, type PathOrMiddlewareBasedHandler, type PathParamHttpContractDetails, type PathParamMethod, type QueryObject, type RawTypedResponseBody, type RequestContext, type ResolvedForklaunchAuthRequest, type ResolvedForklaunchRequest, type ResolvedForklaunchResponse, type ResolvedSessionObject, type ResponseBody, type ResponseCompiledSchema, type ResponseShape, type ResponsesObject, type RouterMap, type RoutingStrategy, type SchemaAuthMethods, type SdkHandler, type SdkRouter, type ServerSentEventBody, type SessionObject, type StatusCode, type StringOnlyObject, type TelemetryOptions, type TextBody, type ToFetchMap, type TypedBody, type TypedHandler, type TypedMiddlewareDefinition, type TypedNestableMiddlewareDefinition, type TypedRequestBody, type TypedResponseBody, type UnknownBody, type UnknownResponseBody, type UrlEncodedForm, type VersionSchema, type VersionedRequests, type VersionedResponses, createHmacToken, delete_, discriminateAuthMethod, discriminateBody, discriminateResponseBodies, enrichExpressLikeSend, evaluateTelemetryOptions, generateMcpServer, generateOpenApiSpecs, get, getCachedJwks, getCodeForStatus, head, httpRequestsTotalCounter, httpServerDurationHistogram, isClientError, isForklaunchRequest, isForklaunchRouter, isInformational, isPortBound, isRedirection, isServerError, isSuccessful, isValidStatusCode, logger, meta, metricsDefinitions, middleware, options, patch, post, put, recordMetric, sdkClient, sdkRouter, trace, typedAuthHandler, typedHandler };

package/lib/http/index.js

@@ -43,6 +43,7 @@ __export(http_exports, {
   OpenTelemetryCollector: () => OpenTelemetryCollector,
   createHmacToken: () => createHmacToken,
   delete_: () => delete_,
+  discriminateAuthMethod: () => discriminateAuthMethod,
   discriminateBody: () => discriminateBody,
   discriminateResponseBodies: () => discriminateResponseBodies,
   enrichExpressLikeSend: () => enrichExpressLikeSend,
@@ -50,6 +51,7 @@ __export(http_exports, {
   generateMcpServer: () => generateMcpServer,
   generateOpenApiSpecs: () => generateOpenApiSpecs,
   get: () => get,
+  getCachedJwks: () => getCachedJwks,
   getCodeForStatus: () => getCodeForStatus,
   head: () => head,
   httpRequestsTotalCounter: () => httpRequestsTotalCounter,
@@ -202,12 +204,26 @@ function isJwtAuthMethod(maybeJwtAuthMethod) {
 }
 
 // src/http/discriminateAuthMethod.ts
-var DEFAULT_TTL = 60 * 1e3 * 5;
-var memoizedJwks = {
+var DEFAULT_TTL = process.env.JWKS_TTL ? parseInt(process.env.JWKS_TTL) : 60 * 1e3 * 5;
+var cachedJwks = {
   value: null,
   lastUpdated: null,
   ttl: DEFAULT_TTL
 };
+async function getCachedJwks(jwksPublicKeyUrl) {
+  if (cachedJwks.value && cachedJwks.lastUpdated && Date.now() - cachedJwks.lastUpdated.getTime() < cachedJwks.ttl) {
+    return cachedJwks.value;
+  } else {
+    const jwksResponse = await fetch(jwksPublicKeyUrl);
+    const jwks = (await jwksResponse.json()).keys;
+    cachedJwks.value = jwks;
+    cachedJwks.lastUpdated = /* @__PURE__ */ new Date();
+    cachedJwks.ttl = parseInt(
+      jwksResponse.headers.get("cache-control")?.split("=")[1] ?? `${DEFAULT_TTL / 1e3}`
+    ) * 1e3;
+    return jwks;
+  }
+}
 async function discriminateAuthMethod(auth) {
   let authMethod;
   if (isBasicAuthMethod(auth)) {
@@ -232,17 +248,7 @@ async function discriminateAuthMethod(auth) {
     } else {
       let jwks;
       if ("jwksPublicKeyUrl" in jwt) {
-        if (memoizedJwks.value && memoizedJwks.lastUpdated && Date.now() - memoizedJwks.lastUpdated.getTime() < memoizedJwks.ttl) {
-          jwks = memoizedJwks.value;
-        } else {
-          const jwksResponse = await fetch(jwt.jwksPublicKeyUrl);
-          jwks = (await jwksResponse.json()).keys;
-          memoizedJwks.value = jwks;
-          memoizedJwks.lastUpdated = /* @__PURE__ */ new Date();
-          memoizedJwks.ttl = parseInt(
-            jwksResponse.headers.get("cache-control")?.split("=")[1] ?? `${DEFAULT_TTL / 1e3}`
-          ) * 1e3;
-        }
+        jwks = await getCachedJwks(jwt.jwksPublicKeyUrl);
       } else if ("jwksPublicKey" in jwt) {
         jwks = [jwt.jwksPublicKey];
       }
@@ -252,9 +258,9 @@ async function discriminateAuthMethod(auth) {
             const { payload } = await (0, import_jose.jwtVerify)(token, key);
             return payload;
           } catch {
-            memoizedJwks.value = null;
-            memoizedJwks.lastUpdated = null;
-            memoizedJwks.ttl = DEFAULT_TTL;
+            cachedJwks.value = null;
+            cachedJwks.lastUpdated = null;
+            cachedJwks.ttl = DEFAULT_TTL;
             continue;
           }
         }
@@ -4044,6 +4050,7 @@ function metricsDefinitions(metrics2) {
   OpenTelemetryCollector,
   createHmacToken,
   delete_,
+  discriminateAuthMethod,
   discriminateBody,
   discriminateResponseBodies,
   enrichExpressLikeSend,
@@ -4051,6 +4058,7 @@ function metricsDefinitions(metrics2) {
   generateMcpServer,
   generateOpenApiSpecs,
   get,
+  getCachedJwks,
   getCodeForStatus,
   head,
   httpRequestsTotalCounter,