@hemia/auth-sdk 0.0.12 → 0.0.13

package/dist/hemia-auth-sdk.esm.js

@@ -143,7 +143,8 @@ let AuthService = class AuthService {
             state: state,
             code_challenge: codeChallenge,
             code_challenge_method: 'S256',
-            auto: auto
+            auto: auto,
+            aud: this.config.aud || ''
         });
         const loginUrl = `${this.config.ssoBaseUrl}${this.config.ssoAuthUrl}?${params.toString()}`;
         const tempState = {
@@ -262,7 +263,10 @@ let AuthService = class AuthService {
             }
         }
         try {
-            const verify = this.jwtManager.verify(session.accessToken);
+            const verify = this.jwtManager.verify(session.accessToken, this.config.clientSecret, {
+                issuer: this.config.iss,
+                audience: this.config.aud
+            });
             if (!verify) {
                 throw new SessionInvalidError();
             }
@@ -350,7 +354,8 @@ let AuthService = class AuthService {
             clientId: this.config.clientId,
             clientSecret: this.config.clientSecret,
             refreshToken: session.refreshToken,
-            sessionId: session.sessionId
+            sessionId: session.sessionId,
+            aud: this.config.aud || ''
         });
         if (response.status !== 200) {
             throw new CustomHttpError('Token refresh failed', response.status, 'token_refresh_failed');

package/dist/hemia-auth-sdk.js

@@ -145,7 +145,8 @@ exports.AuthService = class AuthService {
             state: state,
             code_challenge: codeChallenge,
             code_challenge_method: 'S256',
-            auto: auto
+            auto: auto,
+            aud: this.config.aud || ''
         });
         const loginUrl = `${this.config.ssoBaseUrl}${this.config.ssoAuthUrl}?${params.toString()}`;
         const tempState = {
@@ -264,7 +265,10 @@ exports.AuthService = class AuthService {
             }
         }
         try {
-            const verify = this.jwtManager.verify(session.accessToken);
+            const verify = this.jwtManager.verify(session.accessToken, this.config.clientSecret, {
+                issuer: this.config.iss,
+                audience: this.config.aud
+            });
             if (!verify) {
                 throw new SessionInvalidError();
             }
@@ -352,7 +356,8 @@ exports.AuthService = class AuthService {
             clientId: this.config.clientId,
             clientSecret: this.config.clientSecret,
             refreshToken: session.refreshToken,
-            sessionId: session.sessionId
+            sessionId: session.sessionId,
+            aud: this.config.aud || ''
         });
         if (response.status !== 200) {
             throw new common.CustomHttpError('Token refresh failed', response.status, 'token_refresh_failed');

package/dist/types/types/auth-config.interface.d.ts

@@ -9,4 +9,6 @@ export interface IAuthConfig {
     uiBaseUrl?: string;
     cookieDomain?: string;
     isProduction: boolean;
+    iss?: string;
+    aud?: string;
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hemia/auth-sdk",
-  "version": "0.0.12",
+  "version": "0.0.13",
   "description": "Hemia SDK for authentication",
   "main": "dist/hemia-auth-sdk.js",
   "module": "dist/hemia-auth-sdk.esm.js",
@@ -16,8 +16,8 @@
   },
   "devDependencies": {
     "@hemia/cache-manager": "^0.0.5",
-    "@hemia/common": "^0.0.12",
-    "@hemia/jwt-manager": "^0.0.4",
+    "@hemia/common": "^0.0.14",
+    "@hemia/jwt-manager": "^0.0.6",
     "@hemia/network-services": "^0.0.3",
     "@rollup/plugin-commonjs": "^26.0.1",
     "@rollup/plugin-json": "^6.1.0",
@@ -44,8 +44,8 @@
   ],
   "peerDependencies": {
     "@hemia/cache-manager": "^0.0.5",
-    "@hemia/common": "^0.0.12",
-    "@hemia/jwt-manager": "^0.0.5",
+    "@hemia/common": "^0.0.14",
+    "@hemia/jwt-manager": "^0.0.6",
     "@hemia/network-services": "^0.0.3",
     "inversify": "^7.11.0",
     "reflect-metadata": "^0.2.2"