npm - @fraym/auth - Versions diffs - 0.6.0 → 0.6.1 - Mend

@fraym/auth 0.6.0 → 0.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -15,34 +15,12 @@ There is a sandbox available at `http://auth:3000/management/graphql/sandbox`.
 You need to add the `Tenant-Id` header in order to use the graphQL Endpoint and the sandbox.
-## CLI command
-Use the `auth` cli command to automatically apply your permissions to the auth service.
-You can specify the address (and port) of the auth service instance you use in the `AUTH_SERVER_ADDRESS` env variable (default: `127.0.0.1:9000`).
-In case of scopes api you need to configure the HTTP api:
--   `AUTH_HTTP_SERVER_ADDRESS`: Http api url of the auth service (default: `http://127.0.0.1`)
--   `AUTH_HTTP_API_TOKEN`: The value of that token has to match the token configured in the auth service
-The needed schema for auth is a simple enum containing all your permissions. Example:
-```graphql
-enum Permission {
-    USER_READ
-    USER_WRITE
-}
-```
 ### Config
 Use a `.env` file or env variables to configure cte clients and the command:
 ```env
 AUTH_SERVER_ADDRESS=127.0.0.1:9000
-AUTH_HTTP_SERVER_ADDRESS=http://127.0.0.1
-AUTH_HTTP_API_TOKEN=
 ```
 ## JWT functions
@@ -93,42 +71,10 @@ Parameters:
 ### Create the client
-management client:
 ```typescript
 const managementClient = await newManagementClient();
 ```
-## Get all scopes (permissions)
-The `clientId` paramenter is optional. If none is given the default client will be used.
-```typescript
-const scopes = await managementClient.getScopes();
-```
-Note: you need to configure `AUTH_HTTP_SERVER_ADDRESS` and `AUTH_HTTP_API_TOKEN` to use this function.
-## Create a scope (permission)
-The `clientId` paramenter is optional. If none is given the default client will be used.
-```typescript
-await managementClient.createScope("PERMISSION_NAME");
-```
-Note: you need to configure `AUTH_HTTP_SERVER_ADDRESS` and `AUTH_HTTP_API_TOKEN` to use this function.
-## Delete a scope (permission)
-The `clientId` paramenter is optional. If none is given the default client will be used.
-```typescript
-await managementClient.deleteScope("PERMISSION_NAME");
-```
-Note: you need to configure `AUTH_HTTP_SERVER_ADDRESS` and `AUTH_HTTP_API_TOKEN` to use this function.
 ## Get all roles
 ```typescript

package/dist/util/token.js CHANGED Viewed

@@ -26,7 +26,9 @@ exports.generateJwt = generateJwt;
 const addDataToJwt = async (appSecret, token, data) => {
     var _a;
     const secret = new TextEncoder().encode(appSecret);
-    const { payload, protectedHeader } = await (0, jose_1.jwtVerify)(token, secret);
+    const { payload, protectedHeader } = await (0, jose_1.jwtVerify)(token, secret, {
+        clockTolerance: "10 seconds",
+    });
     if (!payload.exp) {
         throw Error("expiration time is missing in JWT");
     }
@@ -42,7 +44,9 @@ exports.addDataToJwt = addDataToJwt;
 const getTokenData = async (appSecret, token, requireUserId = true) => {
     var _a, _b, _c;
     const secret = new TextEncoder().encode(appSecret);
-    const { payload } = await (0, jose_1.jwtVerify)(token, secret);
+    const { payload } = await (0, jose_1.jwtVerify)(token, secret, {
+        clockTolerance: "10 seconds",
+    });
     if (!payload.exp) {
         throw Error("expiration time is missing in JWT");
     }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
     "name": "@fraym/auth",
-    "version": "0.6.0",
+    "version": "0.6.1",
     "license": "MIT",
     "homepage": "https://github.com/fraym/auth-nodejs",
     "repository": {