@imtbl/auth 2.10.7-alpha.5 → 2.10.7-alpha.6

package/src/authManager.ts

@@ -1,643 +0,0 @@
-import {
-  ErrorResponse,
-  ErrorTimeout,
-  InMemoryWebStorage,
-  User as OidcUser,
-  UserManager,
-  UserManagerSettings,
-  WebStorageStateStore,
-} from 'oidc-client-ts';
-import axios from 'axios';
-import jwt_decode from 'jwt-decode';
-import { getDetail, Detail } from '@imtbl/metrics';
-import localForage from 'localforage';
-import DeviceCredentialsManager from './storage/device_credentials_manager';
-import logger from './utils/logger';
-import { isAccessTokenExpiredOrExpiring } from './utils/token';
-import { PassportError, PassportErrorType, withPassportError } from './errors';
-import {
-  DirectLoginOptions,
-  PassportMetadata,
-  User,
-  DeviceTokenResponse,
-  IdTokenPayload,
-  OidcConfiguration,
-  UserZkEvm,
-  isUserZkEvm,
-} from './types';
-import { IAuthConfiguration } from './config';
-import LoginPopupOverlay from './overlay/loginPopupOverlay';
-import EmbeddedLoginPrompt from './login/embeddedLoginPrompt';
-import { LocalForageAsyncStorage } from './storage/LocalForageAsyncStorage';
-
-const LOGIN_POPUP_CLOSED_POLLING_DURATION = 500;
-
-const formUrlEncodedHeader = {
-  headers: {
-    'Content-Type': 'application/x-www-form-urlencoded',
-  },
-};
-
-const logoutEndpoint = '/v2/logout';
-const crossSdkBridgeLogoutEndpoint = '/im-logged-out';
-const authorizeEndpoint = '/authorize';
-
-const getLogoutEndpointPath = (crossSdkBridgeEnabled: boolean): string => (
-  crossSdkBridgeEnabled ? crossSdkBridgeLogoutEndpoint : logoutEndpoint
-);
-
-const getAuthConfiguration = (config: IAuthConfiguration): UserManagerSettings => {
-  const { authenticationDomain, oidcConfiguration } = config;
-
-  let store;
-  if (config.crossSdkBridgeEnabled) {
-    store = new LocalForageAsyncStorage('ImmutableSDKPassport', localForage.INDEXEDDB);
-  } else if (typeof window !== 'undefined') {
-    store = window.localStorage;
-  } else {
-    store = new InMemoryWebStorage();
-  }
-  const userStore = new WebStorageStateStore({ store });
-
-  const endSessionEndpoint = new URL(
-    getLogoutEndpointPath(config.crossSdkBridgeEnabled),
-    authenticationDomain.replace(/^(?:https?:\/\/)?(.*)/, 'https://$1'),
-  );
-  endSessionEndpoint.searchParams.set('client_id', oidcConfiguration.clientId);
-  if (oidcConfiguration.logoutRedirectUri) {
-    endSessionEndpoint.searchParams.set('returnTo', oidcConfiguration.logoutRedirectUri);
-  }
-
-  const baseConfiguration: UserManagerSettings = {
-    authority: authenticationDomain,
-    redirect_uri: oidcConfiguration.redirectUri,
-    popup_redirect_uri: oidcConfiguration.popupRedirectUri || oidcConfiguration.redirectUri,
-    client_id: oidcConfiguration.clientId,
-    metadata: {
-      authorization_endpoint: `${authenticationDomain}/authorize`,
-      token_endpoint: `${authenticationDomain}/oauth/token`,
-      userinfo_endpoint: `${authenticationDomain}/userinfo`,
-      end_session_endpoint: endSessionEndpoint.toString(),
-      revocation_endpoint: `${authenticationDomain}/oauth/revoke`,
-    },
-    automaticSilentRenew: false, // Disabled until https://github.com/authts/oidc-client-ts/issues/430 has been resolved
-    scope: oidcConfiguration.scope,
-    userStore,
-    revokeTokenTypes: ['refresh_token'],
-    extraQueryParams: {
-      ...(oidcConfiguration.audience ? { audience: oidcConfiguration.audience } : {}),
-    },
-  } as UserManagerSettings;
-
-  return baseConfiguration;
-};
-
-function base64URLEncode(str: ArrayBuffer | Uint8Array) {
-  return btoa(String.fromCharCode(...new Uint8Array(str)))
-    .replace(/\+/g, '-')
-    .replace(/\//g, '_')
-    .replace(/=/g, '');
-}
-
-async function sha256(buffer: string) {
-  const encoder = new TextEncoder();
-  const data = encoder.encode(buffer);
-  return await window.crypto.subtle.digest('SHA-256', data);
-}
-
-export default class AuthManager {
-  private userManager;
-
-  private deviceCredentialsManager: DeviceCredentialsManager;
-
-  private readonly config: IAuthConfiguration;
-
-  private readonly embeddedLoginPrompt: EmbeddedLoginPrompt;
-
-  private readonly logoutMode: Exclude<OidcConfiguration['logoutMode'], undefined>;
-
-  /**
-   * Promise that is used to prevent multiple concurrent calls to the refresh token endpoint.
-   */
-  private refreshingPromise: Promise<User | null> | null = null;
-
-  constructor(config: IAuthConfiguration, embeddedLoginPrompt: EmbeddedLoginPrompt) {
-    this.config = config;
-    this.userManager = new UserManager(getAuthConfiguration(config));
-    this.deviceCredentialsManager = new DeviceCredentialsManager();
-    this.embeddedLoginPrompt = embeddedLoginPrompt;
-    this.logoutMode = config.oidcConfiguration.logoutMode || 'redirect';
-  }
-
-  private static mapOidcUserToDomainModel = (oidcUser: OidcUser): User => {
-    let passport: PassportMetadata | undefined;
-    if (oidcUser.id_token) {
-      passport = jwt_decode<IdTokenPayload>(oidcUser.id_token)?.passport;
-    }
-
-    const user: User = {
-      expired: oidcUser.expired,
-      idToken: oidcUser.id_token,
-      accessToken: oidcUser.access_token,
-      refreshToken: oidcUser.refresh_token,
-      profile: {
-        sub: oidcUser.profile.sub,
-        email: oidcUser.profile.email,
-        nickname: oidcUser.profile.nickname,
-      },
-    };
-    if (passport?.zkevm_eth_address && passport?.zkevm_user_admin_address) {
-      user.zkEvm = {
-        ethAddress: passport.zkevm_eth_address,
-        userAdminAddress: passport.zkevm_user_admin_address,
-      };
-    }
-    return user;
-  };
-
-  private static mapDeviceTokenResponseToOidcUser = (tokenResponse: DeviceTokenResponse): OidcUser => {
-    const idTokenPayload: IdTokenPayload = jwt_decode(tokenResponse.id_token);
-
-    return new OidcUser({
-      id_token: tokenResponse.id_token,
-      access_token: tokenResponse.access_token,
-      refresh_token: tokenResponse.refresh_token,
-      token_type: tokenResponse.token_type,
-      profile: {
-        sub: idTokenPayload.sub,
-        iss: idTokenPayload.iss,
-        aud: idTokenPayload.aud,
-        exp: idTokenPayload.exp,
-        iat: idTokenPayload.iat,
-        email: idTokenPayload.email,
-        nickname: idTokenPayload.nickname,
-        passport: idTokenPayload.passport,
-      },
-    });
-  };
-
-  private buildExtraQueryParams(
-    directLoginOptions?: DirectLoginOptions,
-    imPassportTraceId?: string,
-  ): Record<string, string> {
-    const params: Record<string, string> = {
-      ...(this.userManager.settings?.extraQueryParams ?? {}),
-      rid: getDetail(Detail.RUNTIME_ID) || '',
-      third_party_a_id: '',
-    };
-
-    if (directLoginOptions) {
-      // If method is email, only include direct login params if email is valid
-      if (directLoginOptions.directLoginMethod === 'email') {
-        const emailValue = directLoginOptions.email;
-        if (emailValue) {
-          params.direct = directLoginOptions.directLoginMethod;
-          params.email = emailValue;
-        }
-        // If email method but no valid email, disregard both direct and email params
-      } else {
-        // For non-email methods (social login), always include direct param
-        params.direct = directLoginOptions.directLoginMethod;
-      }
-      if (directLoginOptions.marketingConsentStatus) {
-        params.marketingConsent = directLoginOptions.marketingConsentStatus;
-      }
-    }
-
-    if (imPassportTraceId) {
-      params.im_passport_trace_id = imPassportTraceId;
-    }
-
-    return params;
-  }
-
-  public async getClientId(): Promise<string> {
-    return this.config.oidcConfiguration.clientId;
-  }
-
-  public async loginWithRedirect(directLoginOptions?: DirectLoginOptions): Promise<void> {
-    await this.userManager.clearStaleState();
-    return withPassportError<void>(async () => {
-      const extraQueryParams = this.buildExtraQueryParams(directLoginOptions);
-
-      await this.userManager.signinRedirect({
-        extraQueryParams,
-      });
-    }, PassportErrorType.AUTHENTICATION_ERROR);
-  }
-
-  /**
-   * login
-   * @param directLoginOptions If provided, contains login method and marketing consent options
-   * @param directLoginOptions.directLoginMethod The login method to use (e.g., 'google', 'apple', 'email')
-   * @param directLoginOptions.marketingConsentStatus Marketing consent status ('opted_in' or 'unsubscribed')
-   * @param directLoginOptions.email Required when directLoginMethod is 'email'
-   */
-  public async login(directLoginOptions?: DirectLoginOptions): Promise<User> {
-    return withPassportError<User>(async () => {
-      // If directLoginOptions are provided, then the consumer has rendered their own initial login screen.
-      // If not, display the embedded login prompt and pass the returned direct login options and imPassportTraceId to the login popup.
-      let directLoginOptionsToUse: DirectLoginOptions | undefined;
-      let imPassportTraceId: string | undefined;
-      if (directLoginOptions) {
-        directLoginOptionsToUse = directLoginOptions;
-      } else if (!this.config.popupOverlayOptions?.disableHeadlessLoginPromptOverlay) {
-        const {
-          imPassportTraceId: embeddedLoginPromptImPassportTraceId,
-          ...embeddedLoginPromptDirectLoginOptions
-        } = await this.embeddedLoginPrompt.displayEmbeddedLoginPrompt();
-        directLoginOptionsToUse = embeddedLoginPromptDirectLoginOptions;
-        imPassportTraceId = embeddedLoginPromptImPassportTraceId;
-      }
-
-      const popupWindowTarget = window.crypto.randomUUID();
-      const signinPopup = async () => {
-        const extraQueryParams = this.buildExtraQueryParams(directLoginOptionsToUse, imPassportTraceId);
-
-        const userPromise = this.userManager.signinPopup({
-          extraQueryParams,
-          popupWindowFeatures: {
-            width: 410,
-            height: 450,
-          },
-          popupWindowTarget,
-        });
-
-        // ID-3950: https://github.com/authts/oidc-client-ts/issues/2043
-        // The promise returned from `signinPopup` no longer rejects when the popup is closed.
-        // We can prevent this from impacting consumers by obtaining a reference to the popup and rejecting the promise
-        // that is returned by this method if the popup is closed by the user.
-
-        // Attempt to get a reference to the popup window
-        const popupRef = window.open('', popupWindowTarget);
-        if (popupRef) {
-          // Create a promise that rejects when popup is closed
-          const popupClosedPromise = new Promise<never>((_, reject) => {
-            const timer = setInterval(() => {
-              if (popupRef.closed) {
-                clearInterval(timer);
-                reject(new Error('Popup closed by user'));
-              }
-            }, LOGIN_POPUP_CLOSED_POLLING_DURATION);
-
-            // Clean up timer when the user promise resolves/rejects
-            userPromise.finally(() => {
-              clearInterval(timer);
-              popupRef.close();
-            });
-          });
-
-          // Race between user authentication and popup being closed
-          return Promise.race([userPromise, popupClosedPromise]);
-        }
-
-        return userPromise;
-      };
-
-      // This promise attempts to open the signin popup, and displays the blocked popup overlay if necessary.
-      return new Promise((resolve, reject) => {
-        signinPopup()
-          .then((oidcUser) => {
-            resolve(AuthManager.mapOidcUserToDomainModel(oidcUser));
-          })
-          .catch((error: unknown) => {
-            // Reject with the error if it is not caused by a blocked popup
-            if (!(error instanceof Error) || error.message !== 'Attempted to navigate on a disposed window') {
-              reject(error);
-              return;
-            }
-
-            // Popup was blocked; append the blocked popup overlay to allow the user to try again.
-            let popupHasBeenOpened: boolean = false;
-            const overlay = new LoginPopupOverlay(this.config.popupOverlayOptions || {}, true);
-            overlay.append(
-              async () => {
-                try {
-                  if (!popupHasBeenOpened) {
-                    // The user is attempting to open the popup again. It's safe to assume that this will not fail,
-                    // as there are no async operations between the button interaction & the popup being opened.
-                    popupHasBeenOpened = true;
-                    const oidcUser = await signinPopup();
-                    overlay.remove();
-                    resolve(AuthManager.mapOidcUserToDomainModel(oidcUser));
-                  } else {
-                    // The popup has already been opened. By calling `window.open` with the same target as the
-                    // previously opened popup, no new window will be opened. Instead, the existing popup
-                    // will be focused. This works as expected in most browsers at the time of implementation, but
-                    // the following exceptions do exist:
-                    // - Safari: Only the initial call will focus the window, subsequent calls will do nothing.
-                    // - Firefox: The window will not be focussed, nothing will happen.
-                    window.open('', popupWindowTarget);
-                  }
-                } catch (retryError: unknown) {
-                  overlay.remove();
-                  reject(retryError);
-                }
-              },
-              () => {
-                overlay.remove();
-                reject(new Error('Popup closed by user'));
-              },
-            );
-          });
-      });
-    }, PassportErrorType.AUTHENTICATION_ERROR);
-  }
-
-  public async getUserOrLogin(): Promise<User> {
-    let user: User | null = null;
-    try {
-      user = await this.getUser();
-    } catch (err) {
-      logger.warn('Failed to retrieve a cached user session', err);
-    }
-
-    return user || this.login();
-  }
-
-  private static shouldUseSigninPopupCallback(): boolean {
-    // ID-3950: https://github.com/authts/oidc-client-ts/issues/2043
-    // Detect when the login was initiated via a popup
-    try {
-      const urlParams = new URLSearchParams(window.location.search);
-      const stateParam = urlParams.get('state');
-      const localStorageKey = `oidc.${stateParam}`;
-
-      const localStorageValue = localStorage.getItem(localStorageKey);
-      const loginState = JSON.parse(localStorageValue || '{}');
-
-      return loginState?.request_type === 'si:p';
-    } catch (err) {
-      return false;
-    }
-  }
-
-  public async loginCallback(): Promise<undefined | User> {
-    return withPassportError<undefined | User>(async () => {
-      // ID-3950: https://github.com/authts/oidc-client-ts/issues/2043
-      // When using `signinPopup` to initiate a login, call the `signinPopupCallback` method and
-      // set the `keepOpen` flag to `true`, as the `login` method is now responsible for closing the popup.
-      // See the comment in the `login` method for more details.
-      if (AuthManager.shouldUseSigninPopupCallback()) {
-        await this.userManager.signinPopupCallback(undefined, true);
-        return undefined;
-      }
-      const oidcUser = await this.userManager.signinCallback();
-      if (!oidcUser) {
-        return undefined;
-      }
-
-      return AuthManager.mapOidcUserToDomainModel(oidcUser);
-    }, PassportErrorType.AUTHENTICATION_ERROR);
-  }
-
-  public async getPKCEAuthorizationUrl(
-    directLoginOptions?: DirectLoginOptions,
-    imPassportTraceId?: string,
-  ): Promise<string> {
-    const verifier = base64URLEncode(window.crypto.getRandomValues(new Uint8Array(32)));
-    const challenge = base64URLEncode(await sha256(verifier));
-
-    // https://auth0.com/docs/secure/attack-protection/state-parameters
-    const state = base64URLEncode(window.crypto.getRandomValues(new Uint8Array(32)));
-
-    const {
-      redirectUri, scope, audience, clientId,
-    } = this.config.oidcConfiguration;
-
-    this.deviceCredentialsManager.savePKCEData({ state, verifier });
-
-    const pKCEAuthorizationUrl = new URL(authorizeEndpoint, this.config.authenticationDomain);
-    pKCEAuthorizationUrl.searchParams.set('response_type', 'code');
-    pKCEAuthorizationUrl.searchParams.set('code_challenge', challenge);
-    pKCEAuthorizationUrl.searchParams.set('code_challenge_method', 'S256');
-    pKCEAuthorizationUrl.searchParams.set('client_id', clientId);
-    pKCEAuthorizationUrl.searchParams.set('redirect_uri', redirectUri);
-    pKCEAuthorizationUrl.searchParams.set('state', state);
-
-    if (scope) pKCEAuthorizationUrl.searchParams.set('scope', scope);
-    if (audience) pKCEAuthorizationUrl.searchParams.set('audience', audience);
-
-    if (directLoginOptions) {
-      // If method is email, only include direct login params if email is valid
-      if (directLoginOptions.directLoginMethod === 'email') {
-        const emailValue = directLoginOptions.email;
-        if (emailValue) {
-          pKCEAuthorizationUrl.searchParams.set('direct', directLoginOptions.directLoginMethod);
-          pKCEAuthorizationUrl.searchParams.set('email', emailValue);
-        }
-      } else {
-        // For non-email methods (social login), always include direct param
-        pKCEAuthorizationUrl.searchParams.set('direct', directLoginOptions.directLoginMethod);
-      }
-      if (directLoginOptions.marketingConsentStatus) {
-        pKCEAuthorizationUrl.searchParams.set('marketingConsent', directLoginOptions.marketingConsentStatus);
-      }
-    }
-
-    if (imPassportTraceId) {
-      pKCEAuthorizationUrl.searchParams.set('im_passport_trace_id', imPassportTraceId);
-    }
-
-    return pKCEAuthorizationUrl.toString();
-  }
-
-  public async loginWithPKCEFlowCallback(authorizationCode: string, state: string): Promise<User> {
-    return withPassportError<User>(async () => {
-      const pkceData = this.deviceCredentialsManager.getPKCEData();
-      if (!pkceData) {
-        throw new Error('No code verifier or state for PKCE');
-      }
-
-      if (state !== pkceData.state) {
-        throw new Error('Provided state does not match stored state');
-      }
-
-      const tokenResponse = await this.getPKCEToken(authorizationCode, pkceData.verifier);
-      const oidcUser = AuthManager.mapDeviceTokenResponseToOidcUser(tokenResponse);
-      const user = AuthManager.mapOidcUserToDomainModel(oidcUser);
-      await this.userManager.storeUser(oidcUser);
-
-      return user;
-    }, PassportErrorType.AUTHENTICATION_ERROR);
-  }
-
-  private async getPKCEToken(authorizationCode: string, codeVerifier: string): Promise<DeviceTokenResponse> {
-    const response = await axios.post<DeviceTokenResponse>(
-      `${this.config.authenticationDomain}/oauth/token`,
-      {
-        client_id: this.config.oidcConfiguration.clientId,
-        grant_type: 'authorization_code',
-        code_verifier: codeVerifier,
-        code: authorizationCode,
-        redirect_uri: this.config.oidcConfiguration.redirectUri,
-      },
-      formUrlEncodedHeader,
-    );
-
-    return response.data;
-  }
-
-  public async storeTokens(tokenResponse: DeviceTokenResponse): Promise<User> {
-    return withPassportError<User>(async () => {
-      const oidcUser = AuthManager.mapDeviceTokenResponseToOidcUser(tokenResponse);
-      const user = AuthManager.mapOidcUserToDomainModel(oidcUser);
-      await this.userManager.storeUser(oidcUser);
-
-      return user;
-    }, PassportErrorType.AUTHENTICATION_ERROR);
-  }
-
-  public async logout(): Promise<void> {
-    return withPassportError<void>(async () => {
-      await this.userManager.revokeTokens(['refresh_token']);
-
-      if (this.logoutMode === 'silent') {
-        await this.userManager.signoutSilent();
-      } else {
-        await this.userManager.signoutRedirect();
-      }
-    }, PassportErrorType.LOGOUT_ERROR);
-  }
-
-  public async logoutSilentCallback(url: string): Promise<void> {
-    return this.userManager.signoutSilentCallback(url);
-  }
-
-  public async removeUser(): Promise<void> {
-    return this.userManager.removeUser();
-  }
-
-  public async getLogoutUrl(): Promise<string | null> {
-    const endSessionEndpoint = this.userManager.settings?.metadata?.end_session_endpoint;
-
-    if (!endSessionEndpoint) {
-      logger.warn('Failed to get logout URL');
-      return null;
-    }
-
-    return endSessionEndpoint;
-  }
-
-  public forceUserRefreshInBackground() {
-    this.refreshTokenAndUpdatePromise().catch((error) => {
-      logger.warn('Failed to refresh user token', error);
-    });
-  }
-
-  public async forceUserRefresh(): Promise<User | null> {
-    return this.refreshTokenAndUpdatePromise().catch((error) => {
-      logger.warn('Failed to refresh user token', error);
-      return null;
-    });
-  }
-
-  /**
-   * Refreshes the token and returns the user.
-   * If the token is already being refreshed, returns the existing promise.
-   */
-  private async refreshTokenAndUpdatePromise(): Promise<User | null> {
-    if (this.refreshingPromise) return this.refreshingPromise;
-
-    // eslint-disable-next-line no-async-promise-executor
-    this.refreshingPromise = new Promise(async (resolve, reject) => {
-      try {
-        const newOidcUser = await this.userManager.signinSilent();
-        if (newOidcUser) {
-          resolve(AuthManager.mapOidcUserToDomainModel(newOidcUser));
-          return;
-        }
-        resolve(null);
-      } catch (err) {
-        let passportErrorType = PassportErrorType.AUTHENTICATION_ERROR;
-        let errorMessage = 'Failed to refresh token';
-        let removeUser = true;
-
-        if (err instanceof ErrorTimeout) {
-          passportErrorType = PassportErrorType.SILENT_LOGIN_ERROR;
-          errorMessage = `${errorMessage}: ${err.message}`;
-          removeUser = false;
-        } else if (err instanceof ErrorResponse) {
-          passportErrorType = PassportErrorType.NOT_LOGGED_IN_ERROR;
-          errorMessage = `${errorMessage}: ${err.message || err.error_description}`;
-        } else if (err instanceof Error) {
-          errorMessage = `${errorMessage}: ${err.message}`;
-        } else if (typeof err === 'string') {
-          errorMessage = `${errorMessage}: ${err}`;
-        }
-
-        if (removeUser) {
-          try {
-            await this.userManager.removeUser();
-          } catch (removeUserError) {
-            if (removeUserError instanceof Error) {
-              errorMessage = `${errorMessage}: Failed to remove user: ${removeUserError.message}`;
-            }
-          }
-        }
-
-        reject(new PassportError(errorMessage, passportErrorType));
-      } finally {
-        this.refreshingPromise = null; // Reset the promise after completion
-      }
-    });
-
-    return this.refreshingPromise;
-  }
-
-  /**
-   *
-   * @param typeAssertion {(user: User) => boolean} - Optional. If provided, then the User will be checked against
-   * the typeAssertion. If the user meets the requirements, then it will be typed as T and returned. If the User
-   * does NOT meet the type assertion, then execution will continue, and we will attempt to obtain a User that does
-   * meet the type assertion.
-   *
-   * This function will attempt to obtain a User in the following order:
-   * 1. If the User is currently refreshing, wait for the refresh to complete.
-   * 2. Attempt to obtain a User from storage that has not expired.
-   * 3. Attempt to refresh the User if a refresh token is present.
-   * 4. Return null if no valid User can be obtained.
-   */
-  public async getUser<T extends User>(
-    typeAssertion: (user: User) => user is T = (user: User): user is T => true,
-  ): Promise<T | null> {
-    if (this.refreshingPromise) {
-      const user = await this.refreshingPromise;
-      if (user && typeAssertion(user)) {
-        return user;
-      }
-
-      return null;
-    }
-
-    const oidcUser = await this.userManager.getUser();
-    if (!oidcUser) return null;
-
-    // if the token is not expired or expiring in 30 seconds or less, return the user
-    if (!isAccessTokenExpiredOrExpiring(oidcUser)) {
-      const user = AuthManager.mapOidcUserToDomainModel(oidcUser);
-      if (user && typeAssertion(user)) {
-        return user;
-      }
-    }
-
-    // if the token is expired or expiring in 30 seconds or less, refresh the token
-    if (oidcUser.refresh_token) {
-      const user = await this.refreshTokenAndUpdatePromise();
-      if (user && typeAssertion(user)) {
-        return user;
-      }
-    }
-
-    return null;
-  }
-
-  public async getUserZkEvm(): Promise<UserZkEvm> {
-    const user = await this.getUser(isUserZkEvm);
-    if (!user) {
-      throw new Error('Failed to obtain a User with the required ZkEvm attributes');
-    }
-
-    return user;
-  }
-}