npm - @jsforce/jsforce-node - Versions diffs - 3.8.0 → 3.8.2 - Mend

@jsforce/jsforce-node 3.8.0 → 3.8.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/lib/VERSION.d.ts CHANGED Viewed

@@ -1,2 +1,2 @@
-declare const _default: "3.8.0";
+declare const _default: "3.8.2";
 export default _default;

package/lib/VERSION.js CHANGED Viewed

@@ -1,3 +1,3 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.default = '3.8.0';
+exports.default = '3.8.2';

package/lib/soap.js CHANGED Viewed

@@ -11,6 +11,7 @@ exports.SOAP = exports.castTypeUsingSchema = void 0;
 const http_api_1 = __importDefault(require("./http-api"));
 const function_1 = require("./util/function");
 const get_body_size_1 = require("./util/get-body-size");
+const jwt_1 = require("./util/jwt");
 /**
  *
  */
@@ -180,6 +181,11 @@ class SOAP extends http_api_1.default {
     _xmlns;
     constructor(conn, options) {
         super(conn, options);
+        if (this._conn.accessToken && (0, jwt_1.isJWTToken)(this._conn.accessToken)) {
+            // We need to block SOAP requests with JWT tokens because the response is:
+            // statusCode=500 | body="INVALID_SESSION_ID" (xml), which triggers session refresh and enters in an infinite loop
+            throw new Error('SOAP API does not support JWT-based access tokens. You must disable the "Issue JSON Web Token (JWT)-based access tokens" setting in your Connected App or External Client App');
+        }
         this._endpointUrl = options.endpointUrl;
         this._xmlns = options.xmlns || 'urn:partner.soap.sforce.com';
     }

package/lib/util/jwt.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+/**
+ * Checks if a given access token is a JWT.
+ *
+ * @param {string} accessToken - The access token to check
+ * @returns {boolean} True if the token is a valid JWT token, false otherwise.
+ */
+export declare function isJWTToken(accessToken: string): boolean;

package/lib/util/jwt.js ADDED Viewed

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.isJWTToken = void 0;
+/**
+ * Checks if a given access token is a JWT.
+ *
+ * @param {string} accessToken - The access token to check
+ * @returns {boolean} True if the token is a valid JWT token, false otherwise.
+ */
+function isJWTToken(accessToken) {
+    const parts = accessToken.split('.');
+    if (parts.length !== 3)
+        return false;
+    const header = parts[0];
+    try {
+        JSON.parse(atob(header));
+        return true;
+    }
+    catch (err) {
+        return false;
+    }
+}
+exports.isJWTToken = isJWTToken;

package/package.json CHANGED Viewed

@@ -10,7 +10,7 @@
     "database.com"
   ],
   "homepage": "http://github.com/jsforce/jsforce",
-  "version": "3.8.0",
+  "version": "3.8.2",
   "repository": {
     "type": "git",
     "url": "git://github.com/jsforce/jsforce.git"
@@ -206,12 +206,12 @@
     "xml2js": "^0.6.2"
   },
   "devDependencies": {
-    "@babel/cli": "^7.24.8",
+    "@babel/cli": "^7.27.0",
     "@babel/core": "^7.26.10",
-    "@babel/plugin-transform-runtime": "^7.24.7",
-    "@babel/preset-env": "^7.22.20",
-    "@babel/preset-typescript": "^7.23.0",
-    "@babel/register": "^7.22.15",
+    "@babel/plugin-transform-runtime": "^7.26.10",
+    "@babel/preset-env": "^7.26.9",
+    "@babel/preset-typescript": "^7.27.0",
+    "@babel/register": "^7.25.9",
     "@types/inquirer": "^6.5.0",
     "@types/jest": "^29.5.5",
     "@types/multistream": "^2.1.1",
@@ -262,7 +262,7 @@
     "util": "^0.12.5",
     "webpack": "^5.97.1",
     "webpack-cli": "^5.0.2",
-    "wireit": "^0.14.7",
+    "wireit": "^0.14.12",
     "zx": "^7.2.3"
   },
   "overrides": {