@hellocoop/express 1.8.1 → 1.8.3

package/dist/auth.d.ts

@@ -0,0 +1,17 @@
+import { Router } from 'express';
+import { Auth } from '@hellocoop/types';
+import { Config } from '@hellocoop/router';
+export type HelloConfig = Config;
+declare global {
+    namespace Express {
+        interface Request {
+            auth?: Auth;
+            getAuth(): Promise<Auth>;
+        }
+        interface Response {
+            clearAuth(): void;
+        }
+    }
+}
+export declare const auth: (config: Config) => Router;
+//# sourceMappingURL=auth.d.ts.map

package/dist/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAmC,MAAM,SAAS,CAAA;AAGjE,OAAO,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAA;AACvC,OAAO,EAQH,MAAM,EAET,MAAM,mBAAmB,CAAA;AAE1B,MAAM,MAAM,WAAW,GAAG,MAAM,CAAA;AAmChC,OAAO,CAAC,MAAM,CAAC;IACX,UAAU,OAAO,CAAC;QAChB,UAAU,OAAO;YACf,IAAI,CAAC,EAAE,IAAI,CAAC;YACZ,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;SAC1B;QACD,UAAU,QAAQ;YAChB,SAAS,IAAI,IAAI,CAAC;SACnB;KACF;CACF;AAmBH,eAAO,MAAM,IAAI,WAAsB,MAAM,KAAG,MA2B/C,CAAA"}

package/dist/auth.js

@@ -0,0 +1,75 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.auth = void 0;
+const express_1 = require("express");
+const cookie_1 = require("cookie");
+const router_1 = require("@hellocoop/router");
+const convertToHelloRequest = (req) => {
+    return {
+        headers: () => req.headers,
+        query: req.query,
+        path: req.path,
+        getAuth: () => req.auth,
+        setAuth: (auth) => { req.auth = auth; },
+    };
+};
+const convertToHelloResponse = (res) => {
+    return {
+        clearAuth: () => {
+            const { name, value, options } = (0, router_1.clearAuthCookieParams)();
+            res.setHeader('Set-Cookie', (0, cookie_1.serialize)(name, value, options));
+        },
+        send: (data) => res.type('text/html').send(data),
+        json: (data) => res.json(data),
+        redirect: (url) => res.redirect(url),
+        setCookie: (name, value, options) => {
+            res.setHeader('Set-Cookie', (0, cookie_1.serialize)(name, value, options));
+        },
+        setHeader: (name, value) => res.setHeader(name, value),
+        status: (statusCode) => {
+            res.status(statusCode);
+            return {
+                send: (data) => res.send(data)
+            };
+        },
+    };
+};
+// // Express middleware for auth
+// app.use( async (req: Request, res: Response, next: NextFunction) => {
+//     const helloReq = convertToHelloRequest(req)
+//     req.auth = await getAuthfromCookies(helloReq)
+//     next()
+// })
+// // Express route
+// app.get('/api/hellocoop', async (req: Request, res: Response) => {
+//     const helloReq = convertToHelloRequest(req)
+//     const helloRes = convertToHelloResponse(res)
+//     return await router(helloReq, helloRes)
+// })
+// Configure plugin options if needed
+const auth = function (config) {
+    if (!router_1.isConfigured) {
+        (0, router_1.configure)(config);
+    }
+    console.log({ isConfigured: router_1.isConfigured, configuration: router_1.configuration });
+    const r = (0, express_1.Router)();
+    r.use(async (req, res, next) => {
+        const helloReq = convertToHelloRequest(req);
+        req.getAuth = async () => {
+            req.auth = await (0, router_1.getAuthfromCookies)(helloReq);
+            return req.auth;
+        };
+        res.clearAuth = () => {
+            const { name, value, options } = (0, router_1.clearAuthCookieParams)();
+            res.setHeader('Set-Cookie', (0, cookie_1.serialize)(name, value, options));
+        };
+        next();
+    });
+    r.get('/api/hellocoop', async (req, res) => {
+        const helloReq = convertToHelloRequest(req);
+        const helloRes = convertToHelloResponse(res);
+        await (0, router_1.router)(helloReq, helloRes);
+    });
+    return r;
+};
+exports.auth = auth;

package/dist/index.d.ts

@@ -1,4 +1,4 @@
-import { auth } from './handlers/config';
+import { auth, HelloConfig } from './auth';
 export default auth;
-export { auth as helloAuth };
+export { auth as helloAuth, HelloConfig };
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,mBAAmB,CAAA;AACxC,eAAe,IAAI,CAAA;AACnB,OAAO,EAAE,IAAI,IAAI,SAAS,EAAE,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAA;AAC1C,eAAe,IAAI,CAAA;AACnB,OAAO,EAAE,IAAI,IAAI,SAAS,EAAE,WAAW,EAAE,CAAA"}

package/dist/index.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.helloAuth = void 0;
-const config_1 = require("./handlers/config");
-Object.defineProperty(exports, "helloAuth", { enumerable: true, get: function () { return config_1.auth; } });
-exports.default = config_1.auth;
+const auth_1 = require("./auth");
+Object.defineProperty(exports, "helloAuth", { enumerable: true, get: function () { return auth_1.auth; } });
+exports.default = auth_1.auth;

package/dist/middleware.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"middleware.d.ts","sourceRoot":"","sources":["../src/middleware.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAA;AAIzD,eAAO,MAAM,QAAQ,WAAqB,MAAM,WACxB,OAAO,OAAO,QAAQ,QAAQ,YAAY,kBAOjE,CAAA;AAED,eAAO,MAAM,YAAY,QAAgB,OAAO,OAAO,QAAQ,QAAQ,YAAY,kBAMlF,CAAA;AAED,eAAO,MAAM,OAAO,QAAgB,OAAO,OAAO,QAAQ,QAAQ,YAAY,kBAG7E,CAAA"}
+{"version":3,"file":"middleware.d.ts","sourceRoot":"","sources":["../src/middleware.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAA;AAKzD,eAAO,MAAM,QAAQ,WAAqB,MAAM,WACxB,OAAO,OAAO,QAAQ,QAAQ,YAAY,kBAOjE,CAAA;AAED,eAAO,MAAM,YAAY,QAAgB,OAAO,OAAO,QAAQ,QAAQ,YAAY,kBAMlF,CAAA;AAED,eAAO,MAAM,OAAO,QAAgB,OAAO,OAAO,QAAQ,QAAQ,YAAY,kBAG7E,CAAA"}

package/dist/middleware.js

@@ -1,10 +1,7 @@
 "use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.setAuth = exports.unauthorized = exports.redirect = void 0;
-const config_1 = __importDefault(require("./lib/config"));
+const router_1 = require("@hellocoop/router");
 const redirect = function (target) {
     return async (req, res, next) => {
         const auth = await req.getAuth();
@@ -20,7 +17,7 @@ const unauthorized = async (req, res, next) => {
     if (auth.isLoggedIn)
         next();
     else
-        res.setHeader('WWW-Authenticate', `Hello ${config_1.default.clientId}`).status(401).send();
+        res.setHeader('WWW-Authenticate', `Hello ${router_1.configuration.clientId}`).status(401).send();
 };
 exports.unauthorized = unauthorized;
 const setAuth = async (req, res, next) => {

package/dist/server.js

@@ -5,11 +5,12 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 // test server
 const express_1 = __importDefault(require("express"));
-const index_1 = __importDefault(require("./index"));
+const index_1 = require("./index");
 const middleware_1 = require("./middleware");
+const config = require('../hello.config.js');
 const app = (0, express_1.default)();
 const port = 8080; // default port to listen
-app.use((0, index_1.default)({ client_id: '90804992-8d01-474e-8a0c-59cddeb5a1a3' }));
+app.use((0, index_1.helloAuth)(config));
 app.get("/", async (req, res) => {
     res.json(await req.getAuth());
 });

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hellocoop/express",
-  "version": "1.8.1",
+  "version": "1.8.3",
   "description": "Express SDK for Hellō https://hello.dev",
   "repository": {
     "type": "git",
@@ -57,6 +57,7 @@
   },
   "dependencies": {
     "@hellocoop/core": "*",
+    "@hellocoop/router": "*",
     "@hellocoop/constants": "*",
     "cookie": "^0.5.0",
     "cors": "^2.8.5",

package/dist/handlers/auth.d.ts

@@ -1,10 +0,0 @@
-import { NextFunction, Request, Response } from 'express';
-import { Auth, Claims } from '@hellocoop/types';
-export type AuthUpdates = Claims & {
-    [key: string]: any;
-};
-export declare const handleAuth: (req: Request, res: Response) => Promise<void>;
-export declare const clearAuth: (res: Response) => Promise<void>;
-export declare const setAuthMiddleware: (req: Request, res: Response, next: NextFunction) => Promise<void>;
-export declare const updateAuth: (req: Request, res: Response, authUpdates: AuthUpdates) => Promise<Auth | null>;
-//# sourceMappingURL=auth.d.ts.map

package/dist/handlers/auth.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/handlers/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAIzD,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAA;AAO/C,MAAM,MAAM,WAAW,GACnB,MAAM,GAAG;IACL,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;CACtB,CAAA;AAEL,eAAO,MAAM,UAAU,QAAwB,OAAO,OAAO,QAAQ,kBAKpE,CAAA;AAED,eAAO,MAAM,SAAS,QAAyB,QAAQ,kBAEtD,CAAA;AAED,eAAO,MAAM,iBAAiB,QAAyB,OAAO,OAAO,QAAQ,QAAQ,YAAY,kBAYhG,CAAA;AAED,eAAO,MAAM,UAAU,QAAyB,OAAO,OAAO,QAAQ,eAAe,WAAW,KACtF,QAAQ,IAAI,GAAG,IAAI,CAc5B,CAAA"}

package/dist/handlers/auth.js

@@ -1,46 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.updateAuth = exports.setAuthMiddleware = exports.clearAuth = exports.handleAuth = void 0;
-const auth_1 = require("../lib/auth");
-const constants_1 = require("@hellocoop/constants");
-const handleAuth = async function (req, res) {
-    res.setHeader('Cache-Control', 'no-store, no-cache, must-revalidate, proxy-revalidate');
-    res.setHeader('Pragma', 'no-cache');
-    res.setHeader('Expires', '0');
-    res.json(await req.getAuth());
-};
-exports.handleAuth = handleAuth;
-const clearAuth = async function (res) {
-    (0, auth_1.clearAuthCookie)(res);
-};
-exports.clearAuth = clearAuth;
-const setAuthMiddleware = async function (req, res, next) {
-    let auth = undefined;
-    req.getAuth = async () => {
-        if (req.auth)
-            return req.auth;
-        req.auth = await (0, auth_1.getAuthfromCookies)(req, res) || constants_1.NotLoggedIn;
-        return req.auth;
-    };
-    res.clearAuth = async () => {
-        await (0, exports.clearAuth)(res);
-    };
-    next();
-};
-exports.setAuthMiddleware = setAuthMiddleware;
-const updateAuth = async function (req, res, authUpdates) {
-    const auth = await (0, auth_1.getAuthfromCookies)(req, res);
-    if (!auth.isLoggedIn)
-        return auth;
-    const newAuth = {
-        ...auth,
-        ...authUpdates,
-        sub: auth.sub,
-        iat: auth.iat
-    };
-    const success = await (0, auth_1.saveAuthCookie)(res, newAuth);
-    if (success)
-        return newAuth;
-    return null;
-};
-exports.updateAuth = updateAuth;

package/dist/handlers/callback.d.ts

@@ -1,4 +0,0 @@
-import { Request, Response } from 'express';
-declare const handleCallback: (req: Request, res: Response) => Promise<void | Response<any, Record<string, any>>>;
-export default handleCallback;
-//# sourceMappingURL=callback.d.ts.map

package/dist/handlers/callback.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"callback.d.ts","sourceRoot":"","sources":["../../src/handlers/callback.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AA8B3C,QAAA,MAAM,cAAc,QAAe,OAAO,OAAO,QAAQ,uDAyHxD,CAAA;AAED,eAAe,cAAc,CAAA"}

package/dist/handlers/callback.js

@@ -1,127 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const config_1 = __importDefault(require("../lib/config"));
-const oidc_1 = require("../lib/oidc");
-const core_1 = require("@hellocoop/core");
-const auth_1 = require("../lib/auth");
-const sendErrorPage = (error, target_uri, req, res) => {
-    if (config_1.default.routes.error) {
-        const url = new URL(config_1.default.routes.error);
-        for (const key in error) {
-            if (key.startsWith('error')) {
-                // Append each error query parameter to the URL
-                url.searchParams.append(key, error[key]);
-            }
-        }
-        return res.redirect(url.toString());
-    }
-    const params = {
-        error: error.error,
-        error_description: error.error_description,
-        error_uri: error.error_uri,
-        target_uri
-    };
-    const page = (0, core_1.errorPage)(params);
-    res.end(page);
-};
-const handleCallback = async (req, res) => {
-    var _a;
-    const { code, error, same_site, wildcard_domain, app_name, } = req.query;
-    if (!same_site) // we need to bounce so we get cookies
-        return res.send((0, core_1.sameSiteCallback)());
-    const oidcState = await (0, oidc_1.getOidc)(req, res);
-    if (!oidcState)
-        return res.status(400).end('OpenID Connect cookie lost');
-    const { code_verifier, nonce, redirect_uri, } = oidcState;
-    let { target_uri = '/' } = oidcState;
-    if (error)
-        return sendErrorPage(req.query, target_uri, req, res);
-    if (!code)
-        return res.status(400).end('Missing code parameter');
-    if (Array.isArray(code))
-        return res.status(400).end('Received more than one code.');
-    if (!code_verifier) {
-        res.status(400).end('Missing code_verifier from session');
-        return;
-    }
-    try {
-        (0, oidc_1.clearOidcCookie)(res); // clear cookie so we don't try to use code again
-        const token = await (0, core_1.fetchToken)({
-            code: code.toString(),
-            wallet: config_1.default.helloWallet,
-            code_verifier,
-            redirect_uri,
-            client_id: config_1.default.clientId
-        });
-        const { payload } = (0, core_1.parseToken)(token);
-        if (payload.aud != config_1.default.clientId) {
-            return res.status(400).end('Wrong ID token audience.');
-        }
-        if (payload.nonce != nonce) {
-            return res.status(400).end('Wrong nonce in ID token.');
-        }
-        const currentTimeInt = Math.floor(Date.now() / 1000);
-        if (payload.exp < currentTimeInt) {
-            return res.status(400).end('The ID token has expired.');
-        }
-        if (payload.iat > currentTimeInt + 5) { // 5 seconds of clock skew
-            return res.status(400).end('The ID token is not yet valid.');
-        }
-        let auth = {
-            isLoggedIn: true,
-            sub: payload.sub,
-            iat: payload.iat
-        };
-        // hack TypeScript
-        const claims = payload;
-        payload.scope.forEach((scope) => {
-            const claim = claims[scope];
-            if (claim)
-                auth[scope] = claim;
-        });
-        if ((_a = config_1.default.callbacks) === null || _a === void 0 ? void 0 : _a.loggedIn) {
-            try {
-                const cb = await config_1.default.callbacks.loggedIn({ token, payload, req, res });
-                if (cb === null || cb === void 0 ? void 0 : cb.accessDenied) {
-                    auth = auth_1.NotLoggedIn;
-                    // TODO? set target_uri to not logged in setting?
-                }
-                else if (cb === null || cb === void 0 ? void 0 : cb.updatedAuth) {
-                    auth = {
-                        ...cb.updatedAuth,
-                        isLoggedIn: true,
-                        sub: payload.sub,
-                        iat: payload.iat
-                    };
-                }
-                target_uri = (cb === null || cb === void 0 ? void 0 : cb.target_uri) || target_uri;
-            }
-            catch (e) {
-                console.error(new Error('callback faulted'));
-                console.error(e);
-            }
-        }
-        if (wildcard_domain) {
-            // the redirect_uri is not registered at Hellō - prompt to add
-            const appName = app_name || 'Your App';
-            const queryString = new URLSearchParams({
-                uri: wildcard_domain,
-                appName,
-                redirectURI: redirect_uri,
-                targetURI: target_uri,
-                wildcard_console: 'true'
-            }).toString();
-            target_uri = config_1.default.apiRoute + '?' + queryString;
-        }
-        await (0, auth_1.saveAuthCookie)(res, auth);
-        res.json({ target_uri });
-    }
-    catch (error) {
-        (0, oidc_1.clearOidcCookie)(res);
-        return res.status(500).end(error.message);
-    }
-};
-exports.default = handleCallback;

package/dist/handlers/config.d.ts

@@ -1,31 +0,0 @@
-import { Router, Request, Response } from 'express';
-import { Claims, Scope, ProviderHint } from '@hellocoop/types';
-export { Claims, Scope };
-export type LoggedInParams = {
-    token: string;
-    payload: Claims;
-    req: Request;
-    res: Response;
-};
-export type LoggedInResponse = {
-    accessDenied?: boolean;
-    target_uri?: string;
-    updatedAuth?: {
-        [key: string]: any;
-    };
-};
-export type Config = {
-    client_id?: string;
-    scope?: Scope[];
-    provider_hint?: ProviderHint[];
-    callbacks?: {
-        loggedIn?: (params: LoggedInParams) => Promise<LoggedInResponse>;
-    };
-    routes?: {
-        loggedIn?: string;
-        loggedOut?: string;
-        error?: string;
-    };
-};
-export declare const auth: (config: Config) => Router;
-//# sourceMappingURL=config.d.ts.map

package/dist/handlers/config.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../../src/handlers/config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAInD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,MAAM,kBAAkB,CAAA;AAE9D,OAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,CAAA;AAEzB,MAAM,MAAM,cAAc,GAAG;IACzB,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;IAChB,GAAG,EAAE,OAAO,CAAC;IACb,GAAG,EAAE,QAAQ,CAAA;CAChB,CAAA;AAGD,MAAM,MAAM,gBAAgB,GAAG;IAC3B,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,WAAW,CAAC,EAAE;QAAC,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAA;KAAC,CAAA;CACrC,CAAA;AAGD,MAAM,MAAM,MAAM,GAAG;IACjB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,KAAK,EAAE,CAAC;IAChB,aAAa,CAAC,EAAE,YAAY,EAAE,CAAC;IAC/B,SAAS,CAAC,EAAE;QACR,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE,cAAc,KAAK,OAAO,CAAC,gBAAgB,CAAC,CAAA;KACnE,CAAC;IACF,MAAM,CAAC,EAAE;QACL,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,KAAK,CAAC,EAAE,MAAM,CAAA;KACjB,CAAA;CACJ,CAAA;AAED,eAAO,MAAM,IAAI,WAAsB,MAAM,KAAG,MAQ/C,CAAA"}

package/dist/handlers/config.js

@@ -1,21 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.auth = void 0;
-const express_1 = require("express");
-const cors_1 = __importDefault(require("cors"));
-const config_1 = require("../lib/config");
-const router_1 = __importDefault(require("./router"));
-const auth_1 = require("./auth");
-const auth = function (config) {
-    if (!config_1.isConfigured) {
-        (0, config_1.configure)(config);
-    }
-    const r = (0, express_1.Router)();
-    r.use(auth_1.setAuthMiddleware);
-    r.get('/api/hellocoop', (0, cors_1.default)(), router_1.default);
-    return r;
-};
-exports.auth = auth;

package/dist/handlers/login.d.ts

@@ -1,4 +0,0 @@
-import { Request, Response } from 'express';
-declare const handleLogin: (req: Request, res: Response) => Promise<Response<any, Record<string, any>> | undefined>;
-export default handleLogin;
-//# sourceMappingURL=login.d.ts.map

package/dist/handlers/login.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"login.d.ts","sourceRoot":"","sources":["../../src/handlers/login.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAU3C,QAAA,MAAM,WAAW,QAAe,OAAO,OAAO,QAAQ,4DAuDrD,CAAA;AAED,eAAe,WAAW,CAAA"}

package/dist/handlers/login.js

@@ -1,66 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const core_1 = require("@hellocoop/core");
-const config_1 = __importDefault(require("../lib/config"));
-const oidc_1 = require("../lib/oidc");
-var redirectURIs = {};
-// var callCount = 0 // DEBUG
-const handleLogin = async (req, res) => {
-    var _a;
-    const { provider_hint: providerParam, scope: scopeParam, target_uri, redirect_uri } = req.query;
-    if (!config_1.default.clientId) {
-        res.status(500).end('Missing HELLO_CLIENT_ID configuration');
-        return;
-    }
-    // callCount++
-    // console.log('login called:',callCount)
-    let redirectURI = config_1.default.redirectURI;
-    let host = (_a = req.headers) === null || _a === void 0 ? void 0 : _a.host;
-    if (!redirectURI) {
-        if (redirectURIs[host]) {
-            redirectURI = redirectURIs[host];
-        }
-        else {
-            if (redirect_uri) {
-                const redirectUriString = (Array.isArray(redirect_uri) ? redirect_uri[0] : redirect_uri);
-                const redirectHost = (new URL(redirectUriString)).host;
-                if (redirectHost != host) {
-                    // TBd -- this might happen if we are behind a proxy where our host and the browser host are different -- look at X-headerrs
-                    const err = `host from redirect_uri=${redirectHost}, expected ${host}`;
-                    console.error(err);
-                    return res.status(500).end(err);
-                }
-                redirectURIs[host] = redirectURI = redirect_uri;
-                console.log(`Hellō: RedirectURI for ${host} => ${redirectURI}`);
-            }
-            else {
-                console.log('Hellō: Discovering API RedirectURI route ...');
-                return res.end((0, core_1.redirectURIBounce)());
-            }
-        }
-    }
-    // parse out param strings
-    const targetURIstring = (Array.isArray(providerParam) ? providerParam[0] : providerParam);
-    const provider_hint = targetURIstring === null || targetURIstring === void 0 ? void 0 : targetURIstring.split(' ').map((s) => s.trim());
-    const scopeString = (Array.isArray(scopeParam) ? scopeParam[0] : scopeParam);
-    const scope = scopeString === null || scopeString === void 0 ? void 0 : scopeString.split(' ').map((s) => s.trim());
-    const request = {
-        redirect_uri: redirectURI,
-        client_id: config_1.default.clientId,
-        wallet: config_1.default.helloWallet,
-        scope,
-        provider_hint
-    };
-    const { url, nonce, code_verifier } = await (0, core_1.createAuthRequest)(request);
-    await (0, oidc_1.saveOidc)(req, res, {
-        nonce,
-        code_verifier,
-        redirect_uri: redirectURI,
-        target_uri: (Array.isArray(target_uri) ? target_uri[0] : target_uri) || config_1.default.routes.loggedIn
-    });
-    res.redirect(url);
-};
-exports.default = handleLogin;

package/dist/handlers/logout.d.ts

@@ -1,4 +0,0 @@
-import { Request, Response } from 'express';
-declare const handleLogout: (req: Request, res: Response) => Promise<void>;
-export default handleLogout;
-//# sourceMappingURL=logout.d.ts.map

package/dist/handlers/logout.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"logout.d.ts","sourceRoot":"","sources":["../../src/handlers/logout.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAI3C,QAAA,MAAM,YAAY,QAAe,OAAO,OAAO,QAAQ,kBAItD,CAAA;AAED,eAAe,YAAY,CAAA"}

package/dist/handlers/logout.js

@@ -1,13 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const auth_1 = require("../lib/auth");
-const config_1 = __importDefault(require("../lib/config"));
-const handleLogout = async (req, res) => {
-    const { target_uri } = req.query;
-    await (0, auth_1.clearAuthCookie)(res);
-    res.redirect(target_uri || config_1.default.routes.loggedOut);
-};
-exports.default = handleLogout;

package/dist/handlers/router.d.ts

@@ -1,4 +0,0 @@
-import { Request, Response } from 'express';
-declare const router: (req: Request, res: Response) => Response<any, Record<string, any>> | Promise<void | Response<any, Record<string, any>>> | undefined;
-export default router;
-//# sourceMappingURL=router.d.ts.map

package/dist/handlers/router.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"router.d.ts","sourceRoot":"","sources":["../../src/handlers/router.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AA6B3C,QAAA,MAAM,MAAM,QAAS,OAAO,OAAO,QAAQ,wGAsC1C,CAAA;AAED,eAAe,MAAM,CAAA"}

package/dist/handlers/router.js

@@ -1,57 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const config_1 = __importDefault(require("../lib/config"));
-const callback_1 = __importDefault(require("./callback"));
-const login_1 = __importDefault(require("./login"));
-const logout_1 = __importDefault(require("./logout"));
-const wildcard_1 = __importDefault(require("./wildcard"));
-const auth_1 = require("./auth");
-const constants_1 = require("@hellocoop/constants");
-// const  translateHandlerErrors = (handler: Router): Router =>
-//     async (req: Request, res: Response, next: NextFunction) => {
-//         try {
-//             await handler(req, res, next)
-//             next()
-//         } catch (error: any) {
-//             console.error(error)
-//             res.status(error?.status || 500).end(error.message)
-//         }
-//     }     
-// // console.log('config\n',JSON.stringify(config,null,4))   
-// const router = translateHandlerErrors((req: Request, res: Response, next: NextFunction ) => {
-//         const { query } = req
-// // console.log({query})     
-const router = (req, res) => {
-    const { query } = req;
-    if (query.auth || query.getAuth) { // get auth object
-        if (config_1.default.error) {
-            return res.end(constants_1.NotLoggedIn);
-        }
-        else {
-            return (0, auth_1.handleAuth)(req, res);
-        }
-    }
-    if (config_1.default.error) // not able to process requests
-        return res.status(500).end('Missing configuration:\n' + JSON.stringify(config_1.default.error, null, 4));
-    if (query.login) { // start login flow, redirect to Hellō
-        return (0, login_1.default)(req, res);
-    }
-    if (query.code || query.error) { // authorization response
-        return (0, callback_1.default)(req, res);
-    }
-    if (query.logout) { // logout user
-        return (0, logout_1.default)(req, res);
-    }
-    if (query.wildcard_console) {
-        return (0, wildcard_1.default)(req, res);
-    }
-    if (query.iss) { // IdP (Hellō) initiated login
-        // https://openid.net/specs/openid-connect-core-1_0.html#ThirdPartyInitiatedLogin
-        throw new Error('unimplemented');
-    }
-    res.status(500).end('Invalid hellocoop call:\n' + JSON.stringify(query, null, 4));
-};
-exports.default = router;

package/dist/handlers/wildcard.d.ts

@@ -1,4 +0,0 @@
-import { Request, Response } from 'express';
-declare const handleCallback: (req: Request, res: Response) => Promise<void>;
-export default handleCallback;
-//# sourceMappingURL=wildcard.d.ts.map

package/dist/handlers/wildcard.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"wildcard.d.ts","sourceRoot":"","sources":["../../src/handlers/wildcard.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAG3C,QAAA,MAAM,cAAc,QAAe,OAAO,OAAO,QAAQ,kBAExD,CAAA;AACD,eAAe,cAAc,CAAA"}

package/dist/handlers/wildcard.js

@@ -1,7 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-const core_1 = require("@hellocoop/core");
-const handleCallback = async (req, res) => {
-    res.end((0, core_1.wildcardConsole)(req.query));
-};
-exports.default = handleCallback;

package/dist/lib/auth.d.ts

@@ -1,7 +0,0 @@
-import { Auth } from '@hellocoop/types';
-import { Request, Response } from 'express';
-export declare const saveAuthCookie: (res: Response, auth: Auth) => Promise<boolean>;
-export declare const clearAuthCookie: (res: Response) => Promise<void>;
-export declare const getAuthfromCookies: (req: Request, res: Response) => Promise<Auth>;
-export declare const NotLoggedIn: Auth;
-//# sourceMappingURL=auth.d.ts.map

package/dist/lib/auth.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/lib/auth.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAA;AACvC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAQ3C,eAAO,MAAM,cAAc,QAAgB,QAAQ,QAAQ,IAAI,KAAG,QAAQ,OAAO,CAgBhF,CAAA;AAED,eAAO,MAAM,eAAe,QAAgB,QAAQ,kBAKnD,CAAA;AAGD,eAAO,MAAM,kBAAkB,QAChB,OAAO,OAAO,QAAQ,KAC3B,QAAQ,IAAI,CAoBrB,CAAA;AAED,eAAO,MAAM,WAAW,EAAE,IAA2B,CAAA"}

package/dist/lib/auth.js

@@ -1,58 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.NotLoggedIn = exports.getAuthfromCookies = exports.clearAuthCookie = exports.saveAuthCookie = void 0;
-const core_1 = require("@hellocoop/core");
-const config_1 = __importDefault(require("./config"));
-const cookie_1 = require("cookie");
-const oidc_1 = require("./oidc");
-const { cookies: { authName, oidcName } } = config_1.default;
-const saveAuthCookie = async (res, auth) => {
-    try {
-        const encCookie = await (0, core_1.encryptObj)(auth, config_1.default.secret);
-        if (!encCookie)
-            return false;
-        res.appendHeader('Set-Cookie', (0, cookie_1.serialize)(authName, encCookie, {
-            httpOnly: true,
-            secure: config_1.default.production,
-            sameSite: 'lax',
-            path: '/' // let any server side route call getAuth
-        }));
-        return true;
-    }
-    catch (e) {
-        console.error(e);
-    }
-    return false;
-};
-exports.saveAuthCookie = saveAuthCookie;
-const clearAuthCookie = async (res) => {
-    res.appendHeader('Set-Cookie', (0, cookie_1.serialize)(authName, '', {
-        expires: new Date(0),
-        path: '/', // Specify the path
-    }));
-};
-exports.clearAuthCookie = clearAuthCookie;
-const getAuthfromCookies = async function (req, res) {
-    const cookies = (0, cookie_1.parse)(req.headers.cookie || '');
-    if (cookies[oidcName]) // clear OIDC cookie if still there
-        (0, oidc_1.clearOidcCookie)(res);
-    const authCookie = cookies[authName];
-    if (!authCookie)
-        return exports.NotLoggedIn;
-    try {
-        const auth = await (0, core_1.decryptObj)(authCookie, config_1.default.secret);
-        if (auth) {
-            return auth;
-        }
-    }
-    catch (e) {
-        await (0, exports.clearAuthCookie)(res);
-        console.error(e);
-    }
-    return exports.NotLoggedIn;
-};
-exports.getAuthfromCookies = getAuthfromCookies;
-exports.NotLoggedIn = { isLoggedIn: false };

package/dist/lib/config.d.ts

@@ -1,41 +0,0 @@
-import { Scope } from '@hellocoop/types';
-import { Config, LoggedInParams, LoggedInResponse } from '../handlers/config';
-import { ProviderHint } from '@hellocoop/types';
-export interface IConfig {
-    production: boolean;
-    error?: string[];
-    scope?: Scope[];
-    provider_hint?: ProviderHint[];
-    routes: {
-        loggedIn: string;
-        loggedOut: string;
-        error?: string;
-    };
-    cookies: {
-        authName: string;
-        oidcName: string;
-    };
-    callbacks: {
-        loggedIn?: (params: LoggedInParams) => Promise<LoggedInResponse>;
-    };
-    apiRoute: string;
-    authApiRoute: string;
-    loginApiRoute: string;
-    logoutApiRoute: string;
-    clientId: string;
-    host: string | undefined;
-    redirectURI: string | undefined;
-    helloDomain: string;
-    helloWallet: string;
-    secret?: string;
-}
-declare const _configuration: IConfig;
-export declare let isConfigured: boolean;
-export declare const configure: (config: Config) => void;
-export declare const getConfig: () => Promise<IConfig>;
-export declare const getLoginApiRoute: () => string;
-export declare const getLogoutApiRoute: () => string;
-export declare const getAuthApiRoute: () => string;
-export declare const getApiRoute: () => string;
-export default _configuration;
-//# sourceMappingURL=config.d.ts.map

package/dist/lib/config.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../../src/lib/config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,kBAAkB,CAAA;AACxC,OAAO,EAAE,MAAM,EAAE,cAAc,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAA;AAC7E,OAAO,EAAE,YAAY,EAAE,MAAM,kBAAkB,CAAA;AAM/C,MAAM,WAAW,OAAO;IACpB,UAAU,EAAE,OAAO,CAAC;IACpB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,KAAK,CAAC,EAAE,KAAK,EAAE,CAAC;IAChB,aAAa,CAAC,EAAE,YAAY,EAAE,CAAC;IAC/B,MAAM,EAAE;QACJ,QAAQ,EAAE,MAAM,CAAC;QACjB,SAAS,EAAE,MAAM,CAAC;QAClB,KAAK,CAAC,EAAE,MAAM,CAAA;KACjB,CAAC;IACF,OAAO,EAAE;QACL,QAAQ,EAAE,MAAM,CAAC;QACjB,QAAQ,EAAE,MAAM,CAAC;KACpB,CAAC;IACF,SAAS,EAAE;QACP,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE,cAAc,KAAK,OAAO,CAAC,gBAAgB,CAAC,CAAA;KACnE,CAAC;IAEF,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,CAAC;IACrB,aAAa,EAAE,MAAM,CAAC;IACtB,cAAc,EAAE,MAAM,CAAC;IAEvB,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,GAAG,SAAS,CAAE;IAC1B,WAAW,EAAE,MAAM,GAAG,SAAS,CAAC;IAEhC,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,MAAM,CAAA;CAClB;AAKD,QAAA,MAAM,cAAc,EAAE,OA+BrB,CAAA;AAED,eAAO,IAAI,YAAY,EAAE,OAAe,CAAA;AAKxC,eAAO,MAAM,SAAS,WAAsB,MAAM,SAuCjD,CAAA;AAED,eAAO,MAAM,SAAS,QAAe,QAAQ,OAAO,CAOnD,CAAA;AAED,eAAO,MAAM,gBAAgB,QAAM,MAA+C,CAAA;AAClF,eAAO,MAAM,iBAAiB,QAAM,MAAgD,CAAA;AACpF,eAAO,MAAM,eAAe,QAAM,MAA8C,CAAA;AAChF,eAAO,MAAM,WAAW,QAAM,MAA0C,CAAA;AAExE,eAAe,cAAc,CAAA"}

package/dist/lib/config.js

@@ -1,98 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getApiRoute = exports.getAuthApiRoute = exports.getLogoutApiRoute = exports.getLoginApiRoute = exports.getConfig = exports.configure = exports.isConfigured = void 0;
-const core_1 = require("@hellocoop/core");
-const dotenv_1 = __importDefault(require("dotenv"));
-dotenv_1.default.config();
-const HELLO_API_ROUTE = process.env.HELLO_API_ROUTE || '/api/hellocoop';
-const HELLO_DOMAIN = process.env.HELLO_DOMAIN || 'hello.coop';
-const _configuration = {
-    production: process.env.NODE_ENV === 'production',
-    routes: {
-        loggedIn: '/',
-        loggedOut: '/',
-    },
-    cookies: {
-        authName: 'hellocoop_auth',
-        oidcName: 'hellocoop_oidc',
-    },
-    callbacks: {},
-    apiRoute: HELLO_API_ROUTE,
-    authApiRoute: HELLO_API_ROUTE + '?auth=true',
-    loginApiRoute: HELLO_API_ROUTE + '?login=true',
-    logoutApiRoute: HELLO_API_ROUTE + '?logout=true',
-    // configured only by process.env or .env
-    clientId: process.env.HELLO_CLIENT_ID,
-    secret: process.env.HELLO_COOKIE_SECRET,
-    host: undefined,
-    redirectURI: process.env.HELLO_REDIRECT_URI
-        || process.env.HELLO_HOST
-        ? `https://${process.env.HELLO_HOST}${HELLO_API_ROUTE}`
-        : undefined,
-    // for internal testing
-    helloDomain: HELLO_DOMAIN,
-    helloWallet: process.env.HELLO_WALLET
-        || 'https://wallet.' + HELLO_DOMAIN,
-};
-exports.isConfigured = false;
-const pendingConfigurations = [];
-const configure = function (config) {
-    _configuration.clientId = process.env.HELLO_CLIENT_ID || config.client_id;
-    if (config.routes) {
-        _configuration.routes = {
-            ..._configuration.routes,
-            ...config.routes
-        };
-    }
-    _configuration.callbacks = config.callbacks || {};
-    _configuration.scope = config.scope;
-    _configuration.provider_hint = config.provider_hint;
-    exports.isConfigured = true;
-    if (!_configuration.clientId) {
-        const message = 'No HELLO_CLIENT_ID was in environment or client_id in hello.config';
-        _configuration.error = [message];
-        console.error(message);
-        exports.isConfigured = false;
-    }
-    if (!_configuration.secret) {
-        const message = 'No HELLO_COOKIE_SECRET was in environment';
-        _configuration.error = [message];
-        console.error(message);
-        exports.isConfigured = false;
-    }
-    if (_configuration.secret && !(0, core_1.checkSecret)(_configuration.secret)) {
-        const message = 'HELLO_COOKIE_SECRET is not 16 hex digits';
-        _configuration.error = [message];
-        console.error(message);
-        exports.isConfigured = false;
-    }
-    while (pendingConfigurations.length > 0) {
-        const resolve = pendingConfigurations.pop();
-        if (resolve)
-            resolve(_configuration);
-    }
-    // console.log({isConfigured})
-    // console.log({_configuration})
-};
-exports.configure = configure;
-const getConfig = function () {
-    if (!exports.isConfigured) {
-        return new Promise((resolve) => {
-            pendingConfigurations.push(() => resolve(_configuration));
-        });
-    }
-    return Promise.resolve(_configuration);
-};
-exports.getConfig = getConfig;
-const getLoginApiRoute = () => { return _configuration.loginApiRoute; };
-exports.getLoginApiRoute = getLoginApiRoute;
-const getLogoutApiRoute = () => { return _configuration.logoutApiRoute; };
-exports.getLogoutApiRoute = getLogoutApiRoute;
-const getAuthApiRoute = () => { return _configuration.authApiRoute; };
-exports.getAuthApiRoute = getAuthApiRoute;
-const getApiRoute = () => { return _configuration.apiRoute; };
-exports.getApiRoute = getApiRoute;
-exports.default = _configuration;

package/dist/lib/oidc.d.ts

@@ -1,11 +0,0 @@
-import { Request, Response } from 'express';
-export type OIDC = {
-    code_verifier: string;
-    nonce: string;
-    redirect_uri: string;
-    target_uri: string;
-};
-export declare const getOidc: (req: Request, res: Response) => Promise<OIDC | undefined>;
-export declare const saveOidc: (req: Request, res: Response, oidc: OIDC) => Promise<void>;
-export declare const clearOidcCookie: (res: Response) => void;
-//# sourceMappingURL=oidc.d.ts.map

package/dist/lib/oidc.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"oidc.d.ts","sourceRoot":"","sources":["../../src/lib/oidc.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAO3C,MAAM,MAAM,IAAI,GAAG;IACf,aAAa,EAAE,MAAM,CAAC;IACtB,KAAK,EAAE,MAAM,CAAC;IACd,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAA;CACrB,CAAA;AAED,eAAO,MAAM,OAAO,QAAgB,OAAO,OAAO,QAAQ,KAAG,QAAQ,IAAI,GAAG,SAAS,CAepF,CAAA;AAID,eAAO,MAAM,QAAQ,QAAgB,OAAO,OAAO,QAAQ,QAAQ,IAAI,kBAetE,CAAA;AAED,eAAO,MAAM,eAAe,QAAU,QAAQ,SAK7C,CAAA"}

package/dist/lib/oidc.js

@@ -1,54 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.clearOidcCookie = exports.saveOidc = exports.getOidc = void 0;
-const config_1 = __importDefault(require("./config"));
-const cookie_1 = require("cookie");
-const core_1 = require("@hellocoop/core");
-const { cookies: { oidcName } } = config_1.default;
-const getOidc = async (req, res) => {
-    try {
-        const cookies = (0, cookie_1.parse)(req.headers.cookie || '');
-        const oidcCookie = cookies[oidcName];
-        if (!oidcCookie)
-            return undefined;
-        const oidc = await (0, core_1.decryptObj)(oidcCookie, config_1.default.secret);
-        if (oidc) {
-            return oidc;
-        }
-    }
-    catch (e) {
-        (0, exports.clearOidcCookie)(res);
-        console.error(e);
-    }
-    return undefined;
-};
-exports.getOidc = getOidc;
-let apiRoute = '/';
-const saveOidc = async (req, res, oidc) => {
-    if (apiRoute === '/')
-        apiRoute = req.path;
-    try {
-        const encCookie = await (0, core_1.encryptObj)(oidc, config_1.default.secret);
-        res.appendHeader('Set-Cookie', (0, cookie_1.serialize)(oidcName, encCookie, {
-            httpOnly: true,
-            secure: config_1.default.production,
-            sameSite: 'lax',
-            maxAge: 5 * 60,
-            path: apiRoute
-        }));
-    }
-    catch (e) {
-        console.error(e);
-    }
-};
-exports.saveOidc = saveOidc;
-const clearOidcCookie = (res) => {
-    res.appendHeader('Set-Cookie', (0, cookie_1.serialize)(oidcName, '', {
-        expires: new Date(0),
-        path: apiRoute
-    }));
-};
-exports.clearOidcCookie = clearOidcCookie;