npm - @forklaunch/core - Versions diffs - 0.17.3 → 0.18.1 - Mend

@forklaunch/core 0.17.3 → 0.18.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/lib/{contractDetails.types-BKkaBgAN.d.mts → apiDefinition.types-DnUkFmfT.d.mts} +905 -876
package/lib/{contractDetails.types-BKkaBgAN.d.ts → apiDefinition.types-DnUkFmfT.d.ts} +905 -876
package/lib/http/index.d.mts +2 -2
package/lib/http/index.d.ts +2 -2
package/lib/http/index.js +46 -0
package/lib/http/index.js.map +1 -1
package/lib/http/index.mjs +46 -0
package/lib/http/index.mjs.map +1 -1
package/lib/ws/index.d.mts +2 -2
package/lib/ws/index.d.ts +2 -2
package/package.json +12 -12

package/lib/http/index.mjs CHANGED Viewed

@@ -428,6 +428,11 @@ async function discriminateAuthMethod(auth, openTelemetryCollector) {
   return authMethod;
 }
+// src/http/guards/hasFeatureChecks.ts
+function hasFeatureChecks(maybeFeatureAuth) {
+  return typeof maybeFeatureAuth === "object" && maybeFeatureAuth !== null && "requiredFeatures" in maybeFeatureAuth && Array.isArray(maybeFeatureAuth.requiredFeatures) && maybeFeatureAuth.requiredFeatures.length > 0;
+}
 // src/http/guards/hasPermissionChecks.ts
 function hasPermissionChecks(maybePermissionedAuth) {
   return typeof maybePermissionedAuth === "object" && maybePermissionedAuth !== null && ("allowedPermissions" in maybePermissionedAuth || "forbiddenPermissions" in maybePermissionedAuth);
@@ -443,6 +448,11 @@ function hasScopeChecks(maybePermissionedAuth) {
   return typeof maybePermissionedAuth === "object" && maybePermissionedAuth !== null && "requiredScope" in maybePermissionedAuth && maybePermissionedAuth.requiredScope != null;
 }
+// src/http/guards/hasSubscriptionChecks.ts
+function hasSubscriptionChecks(maybeSubscriptionAuth) {
+  return typeof maybeSubscriptionAuth === "object" && maybeSubscriptionAuth !== null && "requireActiveSubscription" in maybeSubscriptionAuth && maybeSubscriptionAuth.requireActiveSubscription === true;
+}
 // src/http/telemetry/pinoLogger.ts
 import { isNever } from "@forklaunch/common";
 import { trace as trace2 } from "@opentelemetry/api";
@@ -625,6 +635,14 @@ var invalidAuthorizationTokenRoles = [
   403,
   "Invalid Authorization roles."
 ];
+var invalidAuthorizationTokenFeatures = [
+  403,
+  "Required features not available."
+];
+var invalidAuthorizationSubscription = [
+  403,
+  "Active subscription required."
+];
 var invalidAuthorizationToken = [
   403,
   "Invalid Authorization token."
@@ -832,6 +850,34 @@ async function checkAuthorizationToken(req, authorizationMethod, authorizationTo
   } else {
     return invalidAuthorizationMethod;
   }
+  if (hasSubscriptionChecks(collapsedAuthorizationMethod)) {
+    if (!collapsedAuthorizationMethod.surfaceSubscription) {
+      return [500, "No subscription surfacing function provided."];
+    }
+    const subscription = await collapsedAuthorizationMethod.surfaceSubscription(
+      sessionPayload,
+      req
+    );
+    if (!subscription) {
+      return invalidAuthorizationSubscription;
+    }
+  }
+  if (hasFeatureChecks(collapsedAuthorizationMethod)) {
+    if (!collapsedAuthorizationMethod.surfaceFeatures) {
+      return [500, "No features surfacing function provided."];
+    }
+    const availableFeatures = await collapsedAuthorizationMethod.surfaceFeatures(
+      sessionPayload,
+      req
+    );
+    const requiredFeatures = collapsedAuthorizationMethod.requiredFeatures ?? [];
+    const missingFeatures = requiredFeatures.filter(
+      (feature) => !availableFeatures.has(feature)
+    );
+    if (missingFeatures.length > 0) {
+      return invalidAuthorizationTokenFeatures;
+    }
+  }
 }
 async function parseRequestAuth(req, res, next) {
   const auth = req.contractDetails.auth;