npm - @janssenproject/cedarling_wasm - Versions diffs - 1.8.0 → 1.9.0 - Mend

@janssenproject/cedarling_wasm 1.8.0 → 1.9.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/README.md CHANGED Viewed

@@ -37,7 +37,7 @@ To run example using `index.html` you need execute following steps:
 1. Build wasm cedarling.
 2. Run webserver using `python3 -m http.server` or any other.
 3. Visit example app [localhost](http://localhost:8000/), on this app you will get log in browser console.
-    - Also you can try use cedarling with web app using [cedarling_app](http://localhost:8000/cedarling_app.html), using custom bootstrap properties and request.
+   - Also you can try use cedarling with web app using [cedarling_app](http://localhost:8000/cedarling_app.html), using custom bootstrap properties and request.
 ## WASM Usage
@@ -46,17 +46,17 @@ After building WASM bindings in folder `pkg` you can find where you can find `ce
 In `index.html` described simple usage of `cedarling wasm` API:
 ```js
-        import { BOOTSTRAP_CONFIG, REQUEST } from "/example_data.js" // Import js objects: bootstrap config and request
-        import initWasm, { init } from "/pkg/cedarling_wasm.js";
+import { BOOTSTRAP_CONFIG, REQUEST } from "/example_data.js"; // Import js objects: bootstrap config and request
+import initWasm, { init } from "/pkg/cedarling_wasm.js";
-        async function main() {
-            await initWasm(); // Initialize the WebAssembly module
+async function main() {
+  await initWasm(); // Initialize the WebAssembly module
-            let instance = await init(BOOTSTRAP_CONFIG);
-            let result = await instance.authorize(REQUEST);
-            console.log("result:", result);
-        }
-        main().catch(console.error);
+  let instance = await init(BOOTSTRAP_CONFIG);
+  let result = await instance.authorize(REQUEST);
+  console.log("result:", result);
+}
+main().catch(console.error);
 ```
 Before using any function from library you need initialize WASM runtime by calling `initWasm` function.
@@ -181,12 +181,12 @@ export class Diagnostics {
    *
    * The ids should be treated as unordered,
    */
-  readonly reason: (string)[];
+  readonly reason: string[];
   /**
    * Errors that occurred during authorization. The errors should be
    * treated as unordered, since policies may be evaluated in any order.
    */
-  readonly errors: (PolicyEvaluationError)[];
+  readonly errors: PolicyEvaluationError[];
 }
 /**
@@ -206,3 +206,34 @@ export class PolicyEvaluationError {
   readonly error: string;
 }
 ```
+## Configuration
+### ID Token Trust Mode
+The `CEDARLING_ID_TOKEN_TRUST_MODE` property controls how ID tokens are validated:
+- **`strict`** (default): Enforces strict validation rules
+  - ID token `aud` must match access token `client_id`
+  - If userinfo token is present, its `sub` must match the ID token `sub`
+- **`never`**: Disables ID token validation (useful for testing)
+- **`always`**: Always validates ID tokens when present
+- **`ifpresent`**: Validates ID tokens only if they are provided
+### Testing Configuration
+For testing scenarios, you may want to disable JWT validation. You can configure this in your bootstrap configuration:
+```javascript
+const BOOTSTRAP_CONFIG = {
+  CEDARLING_JWT_SIG_VALIDATION: "disabled",
+  CEDARLING_JWT_STATUS_VALIDATION: "disabled",
+  CEDARLING_ID_TOKEN_TRUST_MODE: "never",
+};
+```
+For complete configuration documentation, see [cedarling-properties.md](../../../docs/cedarling/cedarling-properties.md).
+```
+```

package/cedarling_wasm.d.ts CHANGED Viewed

@@ -220,9 +220,9 @@ export interface InitOutput {
   readonly __externref_table_dealloc: (a: number) => void;
   readonly __externref_drop_slice: (a: number, b: number) => void;
   readonly __wbindgen_free: (a: number, b: number, c: number) => void;
-  readonly _dyn_core__ops__function__FnMut_____Output___R_as_wasm_bindgen__closure__WasmClosure___describe__invoke__hb6b52a9d17ca9899: (a: number, b: number) => void;
-  readonly closure508_externref_shim: (a: number, b: number, c: any) => void;
-  readonly closure1774_externref_shim: (a: number, b: number, c: any, d: any) => void;
+  readonly _dyn_core__ops__function__FnMut_____Output___R_as_wasm_bindgen__closure__WasmClosure___describe__invoke__h8e11c17984e20636: (a: number, b: number) => void;
+  readonly closure539_externref_shim: (a: number, b: number, c: any) => void;
+  readonly closure1819_externref_shim: (a: number, b: number, c: any, d: any) => void;
   readonly __wbindgen_start: () => void;
 }

package/cedarling_wasm.js CHANGED Viewed

@@ -231,15 +231,15 @@ function _assertClass(instance, klass) {
     }
 }
 function __wbg_adapter_50(arg0, arg1) {
-    wasm._dyn_core__ops__function__FnMut_____Output___R_as_wasm_bindgen__closure__WasmClosure___describe__invoke__hb6b52a9d17ca9899(arg0, arg1);
+    wasm._dyn_core__ops__function__FnMut_____Output___R_as_wasm_bindgen__closure__WasmClosure___describe__invoke__h8e11c17984e20636(arg0, arg1);
 }
 function __wbg_adapter_53(arg0, arg1, arg2) {
-    wasm.closure508_externref_shim(arg0, arg1, arg2);
+    wasm.closure539_externref_shim(arg0, arg1, arg2);
 }
 function __wbg_adapter_244(arg0, arg1, arg2, arg3) {
-    wasm.closure1774_externref_shim(arg0, arg1, arg2, arg3);
+    wasm.closure1819_externref_shim(arg0, arg1, arg2, arg3);
 }
 const __wbindgen_enum_RequestCredentials = ["omit", "same-origin", "include"];
@@ -835,7 +835,7 @@ function __wbg_get_imports() {
         const ret = Cedarling.__wrap(arg0);
         return ret;
     };
-    imports.wbg.__wbg_clearTimeout_b1115618e821c3b2 = function(arg0) {
+    imports.wbg.__wbg_clearTimeout_0b53d391c1b94dda = function(arg0) {
         const ret = clearTimeout(arg0);
         return ret;
     };
@@ -861,7 +861,7 @@ function __wbg_get_imports() {
     imports.wbg.__wbg_error_dc53417fcef5463a = function(arg0) {
         console.error(...arg0);
     };
-    imports.wbg.__wbg_fetch_3afbdcc7ddbf16fe = function(arg0) {
+    imports.wbg.__wbg_fetch_11bff8299d0ecd2b = function(arg0) {
         const ret = fetch(arg0);
         return ret;
     };
@@ -1100,7 +1100,7 @@ function __wbg_get_imports() {
         const ret = Promise.resolve(arg0);
         return ret;
     };
-    imports.wbg.__wbg_setTimeout_ca12ead8b48245e2 = function(arg0, arg1) {
+    imports.wbg.__wbg_setTimeout_73ce8df12de4f2f2 = function(arg0, arg1) {
         const ret = setTimeout(arg0, arg1);
         return ret;
     };
@@ -1232,12 +1232,12 @@ function __wbg_get_imports() {
         const ret = false;
         return ret;
     };
-    imports.wbg.__wbindgen_closure_wrapper3637 = function(arg0, arg1, arg2) {
-        const ret = makeMutClosure(arg0, arg1, 467, __wbg_adapter_50);
+    imports.wbg.__wbindgen_closure_wrapper3866 = function(arg0, arg1, arg2) {
+        const ret = makeMutClosure(arg0, arg1, 495, __wbg_adapter_50);
         return ret;
     };
-    imports.wbg.__wbindgen_closure_wrapper3788 = function(arg0, arg1, arg2) {
-        const ret = makeMutClosure(arg0, arg1, 509, __wbg_adapter_53);
+    imports.wbg.__wbindgen_closure_wrapper4018 = function(arg0, arg1, arg2) {
+        const ret = makeMutClosure(arg0, arg1, 540, __wbg_adapter_53);
         return ret;
     };
     imports.wbg.__wbindgen_debug_string = function(arg0, arg1) {

package/cedarling_wasm_bg.wasm CHANGED Viewed

Binary file

package/package.json CHANGED Viewed

@@ -2,7 +2,7 @@
   "name": "@janssenproject/cedarling_wasm",
   "type": "module",
   "description": "The Cedarling is a performant local authorization service that runs the Rust Cedar Engine",
-  "version": "1.8.0",
+  "version": "1.9.0",
   "license": "Apache-2.0",
   "repository": {
     "type": "git",