npm - @hemia/auth-sdk - Versions diffs - 0.0.7 → 0.0.9 - Mend

@hemia/auth-sdk 0.0.7 → 0.0.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/hemia-auth-sdk.esm.js +58 -0
package/dist/hemia-auth-sdk.js +58 -0
package/dist/types/services/auth.service.d.ts +7 -1
package/dist/types/types/index.d.ts +1 -0
package/dist/types/types/session-access.interface.d.ts +20 -0
package/package.json +3 -3

package/dist/hemia-auth-sdk.esm.js CHANGED Viewed

@@ -238,6 +238,64 @@ let AuthService = class AuthService {
             throw new InvalidTokenFormatError();
         }
     }
+    /**
+     * Obtiene y valida los claims del access token de la sesión.
+     * @param sessionId Identificador de la sesión
+     * @returns Claims del access token o error si el token no es válido
+     */
+    async getSessionAccess(sessionId) {
+        const key = `x-session:${sessionId}`;
+        let session = await this.storage.get(key);
+        if (!session) {
+            throw new SessionNotFoundError();
+        }
+        if (session.expiresAt < Date.now()) {
+            throw new SessionExpiredError();
+        }
+        const timeUntilExpiry = session.expiresAt - Date.now();
+        if (timeUntilExpiry < 2 * 60 * 1000) {
+            try {
+                session = await this.refreshTokens(session, sessionId);
+            }
+            catch (error) {
+                throw new TokenRefreshFailedError();
+            }
+        }
+        try {
+            const verify = this.jwtManager.verify(session.accessToken);
+            if (!verify) {
+                throw new SessionInvalidError();
+            }
+            const claimsAccess = this.jwtManager.decode(session.accessToken, true);
+            if (!claimsAccess) {
+                throw new SessionInvalidError();
+            }
+            const claimsId = this.jwtManager.decode(session.idToken, true);
+            return {
+                aud: claimsAccess.aud,
+                iss: claimsAccess.iss || '',
+                exp: claimsAccess.exp || 0,
+                iat: claimsAccess.iat || 0,
+                sub: claimsAccess.sub || '',
+                user: {
+                    id: claimsId?.sub || '',
+                    name: claimsId?.name || '',
+                    email: claimsId?.email || '',
+                    given_name: claimsId?.given_name,
+                    family_name: claimsId?.family_name,
+                    picture: claimsId?.picture
+                },
+                permissions: claimsAccess.permissions,
+                context: {
+                    ...claimsAccess['https://hemia.mx/context'],
+                    ...claimsId?.['https://hemia.mx/context']
+                }
+            };
+        }
+        catch (e) {
+            throw new InvalidTokenFormatError();
+        }
+    }
     /**
      * Cierra la sesión del usuario tanto en el SSO como localmente.
      * @param sessionId Identificador de la sesión

package/dist/hemia-auth-sdk.js CHANGED Viewed

@@ -240,6 +240,64 @@ exports.AuthService = class AuthService {
             throw new InvalidTokenFormatError();
         }
     }
+    /**
+     * Obtiene y valida los claims del access token de la sesión.
+     * @param sessionId Identificador de la sesión
+     * @returns Claims del access token o error si el token no es válido
+     */
+    async getSessionAccess(sessionId) {
+        const key = `x-session:${sessionId}`;
+        let session = await this.storage.get(key);
+        if (!session) {
+            throw new SessionNotFoundError();
+        }
+        if (session.expiresAt < Date.now()) {
+            throw new SessionExpiredError();
+        }
+        const timeUntilExpiry = session.expiresAt - Date.now();
+        if (timeUntilExpiry < 2 * 60 * 1000) {
+            try {
+                session = await this.refreshTokens(session, sessionId);
+            }
+            catch (error) {
+                throw new TokenRefreshFailedError();
+            }
+        }
+        try {
+            const verify = this.jwtManager.verify(session.accessToken);
+            if (!verify) {
+                throw new SessionInvalidError();
+            }
+            const claimsAccess = this.jwtManager.decode(session.accessToken, true);
+            if (!claimsAccess) {
+                throw new SessionInvalidError();
+            }
+            const claimsId = this.jwtManager.decode(session.idToken, true);
+            return {
+                aud: claimsAccess.aud,
+                iss: claimsAccess.iss || '',
+                exp: claimsAccess.exp || 0,
+                iat: claimsAccess.iat || 0,
+                sub: claimsAccess.sub || '',
+                user: {
+                    id: claimsId?.sub || '',
+                    name: claimsId?.name || '',
+                    email: claimsId?.email || '',
+                    given_name: claimsId?.given_name,
+                    family_name: claimsId?.family_name,
+                    picture: claimsId?.picture
+                },
+                permissions: claimsAccess.permissions,
+                context: {
+                    ...claimsAccess['https://hemia.mx/context'],
+                    ...claimsId?.['https://hemia.mx/context']
+                }
+            };
+        }
+        catch (e) {
+            throw new InvalidTokenFormatError();
+        }
+    }
     /**
      * Cierra la sesión del usuario tanto en el SSO como localmente.
      * @param sessionId Identificador de la sesión

package/dist/types/services/auth.service.d.ts CHANGED Viewed

@@ -1,6 +1,6 @@
 import { HMNetworkServices } from '@hemia/network-services';
 import { JwtManager } from '@hemia/jwt-manager';
-import { IAuthConfig, ICallbackResponse, ILoginParams, ISessionStorage, ISessionUser, IStoredState } from '../types';
+import { IAuthConfig, ICallbackResponse, ILoginParams, ISessionStorage, ISessionUser, IStoredState, SessionAccess } from '../types';
 export declare class AuthService {
     private readonly config;
     private readonly storage;
@@ -28,6 +28,12 @@ export declare class AuthService {
      * @returns Información del usuario o error si la sesión no es válida
      */
     getSessionUser(sessionId: string): Promise<ISessionUser>;
+    /**
+     * Obtiene y valida los claims del access token de la sesión.
+     * @param sessionId Identificador de la sesión
+     * @returns Claims del access token o error si el token no es válido
+     */
+    getSessionAccess(sessionId: string): Promise<SessionAccess>;
     /**
      * Cierra la sesión del usuario tanto en el SSO como localmente.
      * @param sessionId Identificador de la sesión

package/dist/types/types/index.d.ts CHANGED Viewed

@@ -9,3 +9,4 @@ export * from "./jwt-manager.interface";
 export * from "./standard-claims.interface";
 export * from "./session-data.interface";
 export * from "./session-storage.interface";
+export * from "./session-access.interface";

package/dist/types/types/session-access.interface.d.ts ADDED Viewed

@@ -0,0 +1,20 @@
+export interface SessionAccess {
+    sub: string;
+    exp: number;
+    iat: number;
+    iss: string;
+    permissions?: string[];
+    context?: any;
+    user?: AccessUser;
+    [key: string]: any;
+}
+interface AccessUser {
+    id: string;
+    name?: string;
+    email?: string;
+    given_name?: string;
+    family_name?: string;
+    picture?: string;
+    [key: string]: any;
+}
+export {};

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@hemia/auth-sdk",
-  "version": "0.0.7",
+  "version": "0.0.9",
   "description": "Hemia SDK for authentication",
   "main": "dist/hemia-auth-sdk.js",
   "module": "dist/hemia-auth-sdk.esm.js",
@@ -15,7 +15,7 @@
   },
   "devDependencies": {
     "@hemia/cache-manager": "^0.0.5",
-    "@hemia/common": "^0.0.2",
+    "@hemia/common": "^0.0.5",
     "@hemia/jwt-manager": "^0.0.4",
     "@hemia/network-services": "^0.0.3",
     "@rollup/plugin-commonjs": "^26.0.1",
@@ -43,7 +43,7 @@
   ],
   "peerDependencies": {
     "@hemia/cache-manager": "^0.0.5",
-    "@hemia/common": "^0.0.2",
+    "@hemia/common": "^0.0.5",
     "@hemia/jwt-manager": "^0.0.4",
     "@hemia/network-services": "^0.0.3",
     "inversify": "^7.11.0",