npm - @globus/sdk - Versions diffs - 4.2.0 → 4.3.1 - Mend

@globus/sdk 4.2.0 → 4.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (32) hide show

package/dist/cjs/index.js CHANGED Viewed

@@ -71,7 +71,7 @@ function toString(info2) {
 }
 // src/core/info/version.ts
-var VERSION = "4.2.0";
+var VERSION = "4.3.1";
 // src/core/info/index.ts
 var VERSION2 = VERSION;
@@ -867,7 +867,7 @@ var RedirectTransport = class _RedirectTransport {
   async send() {
     const verifier = generateCodeVerifier();
     const challenge = await generateCodeChallenge(verifier);
-    const state = generateState();
+    const state = this.#options.params?.["state"] ?? generateState();
     sessionStorage.setItem(KEYS.PKCE_CODE_VERIFIER, verifier);
     sessionStorage.setItem(KEYS.PKCE_STATE, state);
     const params = {
@@ -902,7 +902,9 @@ var RedirectTransport = class _RedirectTransport {
     const verifier = sessionStorage.getItem(KEYS.PKCE_CODE_VERIFIER);
     resetPKCE();
     if (params.get("state") !== state) {
-      throw new Error("Invalid State");
+      throw new Error(
+        'Invalid State. The received "state" parameter does not match the expected state.'
+      );
     }
     if (!verifier) {
       throw new Error("Invalid Code Verifier");
@@ -991,6 +993,41 @@ var TokenLookup = class {
     }, []);
     return entries.filter(isToken);
   }
+  /**
+   * Add a token to the storage.
+   */
+  add(token2) {
+    const created = Date.now();
+    const expires = created + token2.expires_in * 1e3;
+    getStorage().set(`${this.#manager.storageKeyPrefix}${token2.resource_server}`, {
+      ...token2,
+      /**
+       * Add metadata to the token to track when it was created and when it expires.
+       */
+      __metadata: {
+        created,
+        expires
+      }
+    });
+    if ("other_tokens" in token2) {
+      token2.other_tokens?.forEach((t) => {
+        this.add(t);
+      });
+    }
+  }
+  /**
+   * Determines whether or not a stored token is expired.
+   * @param token The token to check.
+   * @param augment An optional number of milliseconds to add to the current time when checking the expiration.
+   * @returns `true` if the token is expired, `false` if it is not expired, and `undefined` if the expiration status cannot be determined
+   * based on the token's metadata. This can happen if the token is missing the `__metadata` field or the `expires` field.
+   */
+  static isTokenExpired(token2, augment = 0) {
+    if (!token2 || !token2.__metadata || typeof token2.__metadata.expires !== "number") {
+      return void 0;
+    }
+    return Date.now() + augment >= token2.__metadata.expires;
+  }
 };
 // src/core/authorization/AuthorizationManager.ts
@@ -1129,7 +1166,7 @@ var AuthorizationManager = class {
    * Retrieve the Globus Auth token managed by the instance.
    */
   getGlobusAuthToken() {
-    const entry = getStorage().get(`${this.storageKeyPrefix}auth.globus.org`);
+    const entry = getStorage().get(`${this.storageKeyPrefix}${RESOURCE_SERVERS.AUTH}`);
     return entry ? JSON.parse(entry) : null;
   }
   #checkAuthorizationState() {
@@ -1181,6 +1218,10 @@ var AuthorizationManager = class {
   }
   /**
    * Initiate the login process by redirecting to the Globus Auth login page.
+   *
+   * **IMPORTANT**: This method will reset the instance state before initiating the login process,
+   * including clearing all tokens from storage. If you need to maintain the current state,
+   * use the `AuthorizationManager.prompt` method.
    */
   async login(options = { additionalParams: {} }) {
     log("debug", "AuthorizationManager.login");
@@ -1188,6 +1229,14 @@ var AuthorizationManager = class {
     const transport = this.#buildTransport({ params: options?.additionalParams });
     await transport.send();
   }
+  /**
+   * Prompt the user to authenticate with Globus Auth.
+   */
+  async prompt(options) {
+    log("debug", "AuthorizationManager.prompt");
+    const transport = this.#buildTransport(options);
+    await transport.send();
+  }
   /**
    * This method will attempt to complete the PKCE protocol flow.
    */
@@ -1279,10 +1328,7 @@ var AuthorizationManager = class {
    * consumers to add tokens to storage if necessary.
    */
   addTokenResponse = (token2) => {
-    getStorage().set(`${this.configuration.client}:${token2.resource_server}`, token2);
-    if ("other_tokens" in token2) {
-      token2.other_tokens?.forEach(this.addTokenResponse);
-    }
+    this.tokens.add(token2);
     this.#checkAuthorizationState();
   };
   /**