npm - @hemia/auth-sdk - Versions diffs - 0.0.12 → 0.0.14 - Mend

@hemia/auth-sdk 0.0.12 → 0.0.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/hemia-auth-sdk.esm.js +22 -21
package/dist/hemia-auth-sdk.js +22 -21
package/dist/types/types/auth-config.interface.d.ts +2 -0
package/package.json +5 -5

package/dist/hemia-auth-sdk.esm.js CHANGED Viewed

@@ -143,7 +143,8 @@ let AuthService = class AuthService {
             state: state,
             code_challenge: codeChallenge,
             code_challenge_method: 'S256',
-            auto: auto
+            auto: auto,
+            aud: this.config.aud || ''
         });
         const loginUrl = `${this.config.ssoBaseUrl}${this.config.ssoAuthUrl}?${params.toString()}`;
         const tempState = {
@@ -262,7 +263,10 @@ let AuthService = class AuthService {
             }
         }
         try {
-            const verify = this.jwtManager.verify(session.accessToken);
+            const verify = this.jwtManager.verify(session.accessToken, this.config.clientSecret, {
+                issuer: this.config.iss,
+                audience: this.config.aud
+            });
             if (!verify) {
                 throw new SessionInvalidError();
             }
@@ -272,23 +276,23 @@ let AuthService = class AuthService {
             }
             const claimsId = this.jwtManager.decode(session.idToken, true);
             return {
-                aud: claimsAccess.aud,
-                iss: claimsAccess.iss || '',
-                exp: claimsAccess.exp || 0,
-                iat: claimsAccess.iat || 0,
-                sub: claimsAccess.sub || '',
+                aud: claimsAccess.payload.aud,
+                iss: claimsAccess.payload.iss || '',
+                exp: claimsAccess.payload.exp || 0,
+                iat: claimsAccess.payload.iat || 0,
+                sub: claimsAccess.payload.sub || '',
                 user: {
-                    id: claimsId?.sub || '',
-                    name: claimsId?.name || '',
-                    email: claimsId?.email || '',
-                    given_name: claimsId?.given_name,
-                    family_name: claimsId?.family_name,
-                    picture: claimsId?.picture
+                    id: claimsId.payload.sub || '',
+                    name: claimsId.payload.name || '',
+                    email: claimsId.payload.email || '',
+                    given_name: claimsId.payload.given_name,
+                    family_name: claimsId.payload.family_name,
+                    picture: claimsId.payload?.picture
                 },
-                permissions: claimsAccess.permissions,
+                permissions: claimsAccess.payload.permissions,
                 context: {
-                    ...claimsAccess['https://hemia.mx/context'],
-                    ...claimsId?.['https://hemia.mx/context']
+                    ...claimsAccess.payload['https://hemia.mx/context'],
+                    ...claimsId.payload['https://hemia.mx/context']
                 }
             };
         }
@@ -350,7 +354,8 @@ let AuthService = class AuthService {
             clientId: this.config.clientId,
             clientSecret: this.config.clientSecret,
             refreshToken: session.refreshToken,
-            sessionId: session.sessionId
+            sessionId: session.sessionId,
+            aud: this.config.aud || ''
         });
         if (response.status !== 200) {
             throw new CustomHttpError('Token refresh failed', response.status, 'token_refresh_failed');
@@ -443,10 +448,6 @@ let AuthSDKController = class AuthSDKController {
     }
     async me(req, res) {
         const sessionId = req.cookies[this.COOKIE_NAME];
-        console.log(`🔍 [App Cookie Name]: ${this.COOKIE_NAME}`);
-        console.log('🔍 [App Port]:', req.headers.origin || 'unknown');
-        console.log('🔍 [SessionId]:', sessionId);
-        console.log('🔍 [All Cookies]:', req.cookies);
         if (!sessionId) {
             return res.status(401).json({
                 success: false,

package/dist/hemia-auth-sdk.js CHANGED Viewed

@@ -145,7 +145,8 @@ exports.AuthService = class AuthService {
             state: state,
             code_challenge: codeChallenge,
             code_challenge_method: 'S256',
-            auto: auto
+            auto: auto,
+            aud: this.config.aud || ''
         });
         const loginUrl = `${this.config.ssoBaseUrl}${this.config.ssoAuthUrl}?${params.toString()}`;
         const tempState = {
@@ -264,7 +265,10 @@ exports.AuthService = class AuthService {
             }
         }
         try {
-            const verify = this.jwtManager.verify(session.accessToken);
+            const verify = this.jwtManager.verify(session.accessToken, this.config.clientSecret, {
+                issuer: this.config.iss,
+                audience: this.config.aud
+            });
             if (!verify) {
                 throw new SessionInvalidError();
             }
@@ -274,23 +278,23 @@ exports.AuthService = class AuthService {
             }
             const claimsId = this.jwtManager.decode(session.idToken, true);
             return {
-                aud: claimsAccess.aud,
-                iss: claimsAccess.iss || '',
-                exp: claimsAccess.exp || 0,
-                iat: claimsAccess.iat || 0,
-                sub: claimsAccess.sub || '',
+                aud: claimsAccess.payload.aud,
+                iss: claimsAccess.payload.iss || '',
+                exp: claimsAccess.payload.exp || 0,
+                iat: claimsAccess.payload.iat || 0,
+                sub: claimsAccess.payload.sub || '',
                 user: {
-                    id: claimsId?.sub || '',
-                    name: claimsId?.name || '',
-                    email: claimsId?.email || '',
-                    given_name: claimsId?.given_name,
-                    family_name: claimsId?.family_name,
-                    picture: claimsId?.picture
+                    id: claimsId.payload.sub || '',
+                    name: claimsId.payload.name || '',
+                    email: claimsId.payload.email || '',
+                    given_name: claimsId.payload.given_name,
+                    family_name: claimsId.payload.family_name,
+                    picture: claimsId.payload?.picture
                 },
-                permissions: claimsAccess.permissions,
+                permissions: claimsAccess.payload.permissions,
                 context: {
-                    ...claimsAccess['https://hemia.mx/context'],
-                    ...claimsId?.['https://hemia.mx/context']
+                    ...claimsAccess.payload['https://hemia.mx/context'],
+                    ...claimsId.payload['https://hemia.mx/context']
                 }
             };
         }
@@ -352,7 +356,8 @@ exports.AuthService = class AuthService {
             clientId: this.config.clientId,
             clientSecret: this.config.clientSecret,
             refreshToken: session.refreshToken,
-            sessionId: session.sessionId
+            sessionId: session.sessionId,
+            aud: this.config.aud || ''
         });
         if (response.status !== 200) {
             throw new common.CustomHttpError('Token refresh failed', response.status, 'token_refresh_failed');
@@ -445,10 +450,6 @@ exports.AuthSDKController = class AuthSDKController {
     }
     async me(req, res) {
         const sessionId = req.cookies[this.COOKIE_NAME];
-        console.log(`🔍 [App Cookie Name]: ${this.COOKIE_NAME}`);
-        console.log('🔍 [App Port]:', req.headers.origin || 'unknown');
-        console.log('🔍 [SessionId]:', sessionId);
-        console.log('🔍 [All Cookies]:', req.cookies);
         if (!sessionId) {
             return res.status(401).json({
                 success: false,

package/dist/types/types/auth-config.interface.d.ts CHANGED Viewed

@@ -9,4 +9,6 @@ export interface IAuthConfig {
     uiBaseUrl?: string;
     cookieDomain?: string;
     isProduction: boolean;
+    iss?: string;
+    aud?: string;
 }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@hemia/auth-sdk",
-  "version": "0.0.12",
+  "version": "0.0.14",
   "description": "Hemia SDK for authentication",
   "main": "dist/hemia-auth-sdk.js",
   "module": "dist/hemia-auth-sdk.esm.js",
@@ -16,8 +16,8 @@
   },
   "devDependencies": {
     "@hemia/cache-manager": "^0.0.5",
-    "@hemia/common": "^0.0.12",
-    "@hemia/jwt-manager": "^0.0.4",
+    "@hemia/common": "^0.0.15",
+    "@hemia/jwt-manager": "^0.0.6",
     "@hemia/network-services": "^0.0.3",
     "@rollup/plugin-commonjs": "^26.0.1",
     "@rollup/plugin-json": "^6.1.0",
@@ -44,8 +44,8 @@
   ],
   "peerDependencies": {
     "@hemia/cache-manager": "^0.0.5",
-    "@hemia/common": "^0.0.12",
-    "@hemia/jwt-manager": "^0.0.5",
+    "@hemia/common": "^0.0.15",
+    "@hemia/jwt-manager": "^0.0.6",
     "@hemia/network-services": "^0.0.3",
     "inversify": "^7.11.0",
     "reflect-metadata": "^0.2.2"