@kaapi/oauth2-auth-design 0.0.14 → 0.0.15

package/lib/flows/auth-code/open-id.js

@@ -1,199 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.OpenIDAuthDesign = exports.OpenIDUserInfoRoute = exports.OpenIDJWKSRoute = exports.OpenIDAuthUtil = void 0;
-const tslib_1 = require("tslib");
-const api_doc_generator_1 = require("@novice1/api-doc-generator");
-const authentication_code_1 = require("../authentication-code");
-//#region OpenIDAuthUtil
-class OpenIDAuthUtil extends api_doc_generator_1.OAuth2Util {
-    setHost(host) {
-        super.setHost(host);
-        return this;
-    }
-    toOpenAPI() {
-        const host = this.getHost();
-        return {
-            [this.securitySchemeName]: {
-                type: 'openIdConnect',
-                openIdConnectUrl: `${host || ''}/.well-known/openid-configuration`
-            }
-        };
-    }
-}
-exports.OpenIDAuthUtil = OpenIDAuthUtil;
-class OpenIDJWKSRoute {
-    get path() {
-        return this._path;
-    }
-    get handler() {
-        return this._handler;
-    }
-    constructor(path, handler) {
-        this._path = path;
-        this._handler = handler;
-    }
-}
-exports.OpenIDJWKSRoute = OpenIDJWKSRoute;
-class OpenIDUserInfoRoute {
-    get path() {
-        return this._path;
-    }
-    get handler() {
-        return this._handler;
-    }
-    constructor(path, handler) {
-        this._path = path;
-        this._handler = handler;
-    }
-}
-exports.OpenIDUserInfoRoute = OpenIDUserInfoRoute;
-class OpenIDAuthDesign extends authentication_code_1.OAuth2AuthorizationCode {
-    constructor(params) {
-        const { strategyName, openidConfiguration, jwksRoute, userInfoRoute } = params, props = tslib_1.__rest(params, ["strategyName", "openidConfiguration", "jwksRoute", "userInfoRoute"]);
-        super(props);
-        this.openidConfiguration = {};
-        this.withPkce();
-        this.strategyName = strategyName || 'open-id-auth-design';
-        this.jwksRoute = jwksRoute;
-        this.userInfoRoute = userInfoRoute;
-        if (openidConfiguration)
-            this.openidConfiguration = openidConfiguration;
-    }
-    getScopes() {
-        let scopes = {
-            openid: 'enable OpenID Connect'
-        };
-        if (this.scopes) {
-            if ('openid' in this.scopes) {
-                scopes = this.scopes;
-            }
-            else {
-                scopes = Object.assign(Object.assign({}, this.scopes), scopes);
-            }
-        }
-        return scopes;
-    }
-    integrateHook(t) {
-        var _a, _b;
-        super.integrateHook(t);
-        const docs = this.docs();
-        const challengeAlgo = docs.getChallengeAlgorithm();
-        const host = ((_a = t.postman) === null || _a === void 0 ? void 0 : _a.getHost()[0]) || '';
-        t.route({
-            path: '/.well-known/openid-configuration',
-            method: 'GET',
-            options: {
-                plugins: {
-                    kaapi: {
-                        docs: false
-                    }
-                }
-            },
-            handler: () => {
-                var _a, _b, _c, _d;
-                const wellKnownOpenIDConfig = {
-                    issuer: host,
-                    authorization_endpoint: `${host}${this.authorizationRoute.path}`,
-                    token_endpoint: `${host}${this.tokenRoute.path}`,
-                    userinfo_endpoint: this.userInfoRoute ? `${host}${this.userInfoRoute.path}` : undefined,
-                    jwks_uri: `${host}${this.jwksRoute.path}`,
-                    claims_supported: [
-                        'aud',
-                        'exp',
-                        'iat',
-                        'iss',
-                        'sub'
-                    ],
-                    grant_types_supported: [
-                        'authorization_code'
-                    ],
-                    response_types_supported: [
-                        'code',
-                        'token',
-                        'code token',
-                        'code token id_token'
-                    ],
-                    scopes_supported: Object.keys(docs.getScopes()),
-                    subject_types_supported: [
-                        'public'
-                    ],
-                    id_token_signing_alg_values_supported: [
-                        'RS256'
-                    ],
-                    code_challenge_methods_supported: challengeAlgo ? [
-                        challengeAlgo
-                    ] : [],
-                    token_endpoint_auth_methods_supported: this.getTokenEndpointAuthMethods()
-                };
-                if ((_b = (_a = this.clientAuthMethods.client_secret_jwt) === null || _a === void 0 ? void 0 : _a.algorithms) === null || _b === void 0 ? void 0 : _b.length) {
-                    wellKnownOpenIDConfig.token_endpoint_auth_signing_alg_values_supported = wellKnownOpenIDConfig.token_endpoint_auth_signing_alg_values_supported || [];
-                    wellKnownOpenIDConfig.token_endpoint_auth_signing_alg_values_supported = [
-                        ...wellKnownOpenIDConfig.token_endpoint_auth_signing_alg_values_supported,
-                        ...this.clientAuthMethods.client_secret_jwt.algorithms
-                    ];
-                }
-                if ((_d = (_c = this.clientAuthMethods.private_key_jwt) === null || _c === void 0 ? void 0 : _c.algorithms) === null || _d === void 0 ? void 0 : _d.length) {
-                    wellKnownOpenIDConfig.token_endpoint_auth_signing_alg_values_supported = wellKnownOpenIDConfig.token_endpoint_auth_signing_alg_values_supported || [];
-                    wellKnownOpenIDConfig.token_endpoint_auth_signing_alg_values_supported = [
-                        ...wellKnownOpenIDConfig.token_endpoint_auth_signing_alg_values_supported,
-                        ...this.clientAuthMethods.private_key_jwt.algorithms
-                    ];
-                }
-                return Object.assign(Object.assign({}, wellKnownOpenIDConfig), this.openidConfiguration);
-            }
-        });
-        t.route({
-            path: this.jwksRoute.path,
-            method: 'GET',
-            options: {
-                plugins: {
-                    kaapi: {
-                        docs: false
-                    }
-                }
-            },
-            handler: (req, h) => tslib_1.__awaiter(this, void 0, void 0, function* () {
-                const jwks = yield this.jwksGenerator.generateIfEmpty();
-                if (this.jwksRoute.handler) {
-                    return this.jwksRoute.handler({
-                        jwks
-                    }, req, h);
-                }
-                return jwks;
-            })
-        });
-        if ((_b = this.userInfoRoute) === null || _b === void 0 ? void 0 : _b.path) {
-            t.route({
-                path: this.userInfoRoute.path,
-                method: 'GET',
-                auth: true,
-                options: {
-                    auth: {
-                        strategy: this.strategyName,
-                        mode: 'required'
-                    }
-                },
-                handler: this.userInfoRoute.handler.bind(this.userInfoRoute)
-            });
-        }
-    }
-    docs() {
-        var _a;
-        const docs = new OpenIDAuthUtil(this.strategyName)
-            .setGrantType(this.isWithPkce() ? api_doc_generator_1.GrantType.authorizationCodeWithPkce : api_doc_generator_1.GrantType.authorizationCode)
-            .setScopes(this.getScopes())
-            .setAuthUrl(this.authorizationRoute.path)
-            .setAccessTokenUrl(this.tokenRoute.path || '')
-            .setChallengeAlgorithm(api_doc_generator_1.ChallengeAlgorithm.S256);
-        if ((_a = this.refreshTokenRoute) === null || _a === void 0 ? void 0 : _a.path) {
-            docs.setRefreshUrl(this.refreshTokenRoute.path);
-        }
-        if (this.description) {
-            docs.setDescription(this.description);
-        }
-        return docs;
-    }
-}
-exports.OpenIDAuthDesign = OpenIDAuthDesign;
-//#endregion OpenIDAuthDesign
-//# sourceMappingURL=open-id.js.map

package/lib/flows/auth-code/open-id.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"open-id.js","sourceRoot":"","sources":["../../../src/flows/auth-code/open-id.ts"],"names":[],"mappings":";;;;AACA,kEAAuF;AACvF,gEAA6F;AAI7F,wBAAwB;AAExB,MAAa,cAAe,SAAQ,8BAAU;IAE1C,OAAO,CAAC,IAAY;QAChB,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAA;QACnB,OAAO,IAAI,CAAA;IACf,CAAC;IAED,SAAS;QACL,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,EAAE,CAAA;QAC3B,OAAO;YACH,CAAC,IAAI,CAAC,kBAAkB,CAAC,EAAE;gBACvB,IAAI,EAAE,eAAe;gBACrB,gBAAgB,EAAE,GAAG,IAAI,IAAI,EAAE,mCAAmC;aACrE;SACJ,CAAA;IACL,CAAC;CACJ;AAhBD,wCAgBC;AAuBD,MAAa,eAAe;IAMxB,IAAI,IAAI;QACJ,OAAO,IAAI,CAAC,KAAK,CAAA;IACrB,CAAC;IAED,IAAI,OAAO;QACP,OAAO,IAAI,CAAC,QAAQ,CAAA;IACxB,CAAC;IAED,YACI,IAAY,EACZ,OAAiC;QAEjC,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QAClB,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;IAC5B,CAAC;CACJ;AArBD,0CAqBC;AAmBD,MAAa,mBAAmB;IAM5B,IAAI,IAAI;QACJ,OAAO,IAAI,CAAC,KAAK,CAAA;IACrB,CAAC;IAED,IAAI,OAAO;QACP,OAAO,IAAI,CAAC,QAAQ,CAAA;IACxB,CAAC;IAED,YACI,IAAY,EACZ,OAAoC;QAEpC,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QAClB,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;IAC5B,CAAC;CACJ;AArBD,kDAqBC;AAmBD,MAAa,gBAAiB,SAAQ,6CAAuB;IASzD,YACI,MAA2B;QAE3B,MAAM,EAAE,YAAY,EAAE,mBAAmB,EAAE,SAAS,EAAE,aAAa,KAAe,MAAM,EAAhB,KAAK,kBAAK,MAAM,EAAlF,qEAAyE,CAAS,CAAA;QAExF,KAAK,CAAC,KAAK,CAAC,CAAA;QAPN,wBAAmB,GAA4B,EAAE,CAAA;QASvD,IAAI,CAAC,QAAQ,EAAE,CAAA;QACf,IAAI,CAAC,YAAY,GAAG,YAAY,IAAI,qBAAqB,CAAA;QACzD,IAAI,CAAC,SAAS,GAAG,SAAS,CAAA;QAC1B,IAAI,CAAC,aAAa,GAAG,aAAa,CAAA;QAElC,IAAI,mBAAmB;YACnB,IAAI,CAAC,mBAAmB,GAAG,mBAAmB,CAAA;IACtD,CAAC;IAED,SAAS;QACL,IAAI,MAAM,GAA2B;YACjC,MAAM,EAAE,uBAAuB;SAClC,CAAA;QACD,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YACd,IAAI,QAAQ,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;gBAC1B,MAAM,GAAG,IAAI,CAAC,MAAM,CAAA;YACxB,CAAC;iBAAM,CAAC;gBACJ,MAAM,mCAAQ,IAAI,CAAC,MAAM,GAAK,MAAM,CAAE,CAAA;YAC1C,CAAC;QACL,CAAC;QACD,OAAO,MAAM,CAAA;IACjB,CAAC;IAED,aAAa,CAAC,CAAa;;QACvB,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,CAAA;QAEtB,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,EAAE,CAAA;QACxB,MAAM,aAAa,GAAG,IAAI,CAAC,qBAAqB,EAAE,CAAA;QAClD,MAAM,IAAI,GAAG,CAAA,MAAA,CAAC,CAAC,OAAO,0CAAE,OAAO,GAAG,CAAC,CAAC,KAAI,EAAE,CAAA;QAE1C,CAAC,CAAC,KAAK,CAAC;YACJ,IAAI,EAAE,mCAAmC;YACzC,MAAM,EAAE,KAAK;YACb,OAAO,EAAE;gBACL,OAAO,EAAE;oBACL,KAAK,EAAE;wBACH,IAAI,EAAE,KAAK;qBACd;iBACJ;aACJ;YACD,OAAO,EAAE,GAAG,EAAE;;gBACV,MAAM,qBAAqB,GAAkD;oBACzE,MAAM,EAAE,IAAI;oBACZ,sBAAsB,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC,kBAAkB,CAAC,IAAI,EAAE;oBAChE,cAAc,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,EAAE;oBAChD,iBAAiB,EAAE,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,GAAG,IAAI,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,SAAS;oBACvF,QAAQ,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE;oBACzC,gBAAgB,EAAE;wBACd,KAAK;wBACL,KAAK;wBACL,KAAK;wBACL,KAAK;wBACL,KAAK;qBACR;oBACD,qBAAqB,EAAE;wBACnB,oBAAoB;qBACvB;oBACD,wBAAwB,EAAE;wBACtB,MAAM;wBACN,OAAO;wBACP,YAAY;wBACZ,qBAAqB;qBACxB;oBACD,gBAAgB,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;oBAC/C,uBAAuB,EAAE;wBACrB,QAAQ;qBACX;oBACD,qCAAqC,EAAE;wBACnC,OAAO;qBACV;oBACD,gCAAgC,EAAE,aAAa,CAAC,CAAC,CAAC;wBAC9C,aAAa;qBAChB,CAAC,CAAC,CAAC,EAAE;oBACN,qCAAqC,EAAE,IAAI,CAAC,2BAA2B,EAAE;iBAC5E,CAAA;gBAED,IAAI,MAAA,MAAA,IAAI,CAAC,iBAAiB,CAAC,iBAAiB,0CAAE,UAAU,0CAAE,MAAM,EAAE,CAAC;oBAC/D,qBAAqB,CAAC,gDAAgD,GAAG,qBAAqB,CAAC,gDAAgD,IAAI,EAAE,CAAA;oBACrJ,qBAAqB,CAAC,gDAAgD,GAAG;wBACrE,GAAG,qBAAqB,CAAC,gDAAgD;wBACzE,GAAG,IAAI,CAAC,iBAAiB,CAAC,iBAAiB,CAAC,UAAU;qBACzD,CAAA;gBACL,CAAC;gBACD,IAAI,MAAA,MAAA,IAAI,CAAC,iBAAiB,CAAC,eAAe,0CAAE,UAAU,0CAAE,MAAM,EAAE,CAAC;oBAC7D,qBAAqB,CAAC,gDAAgD,GAAG,qBAAqB,CAAC,gDAAgD,IAAI,EAAE,CAAA;oBACrJ,qBAAqB,CAAC,gDAAgD,GAAG;wBACrE,GAAG,qBAAqB,CAAC,gDAAgD;wBACzE,GAAG,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAAC,UAAU;qBACvD,CAAA;gBACL,CAAC;gBAED,uCAAY,qBAAqB,GAAK,IAAI,CAAC,mBAAmB,EAAE;YACpE,CAAC;SACJ,CAAC,CAAA;QAEF,CAAC,CAAC,KAAK,CAAC;YACJ,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI;YACzB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE;gBACL,OAAO,EAAE;oBACL,KAAK,EAAE;wBACH,IAAI,EAAE,KAAK;qBACd;iBACJ;aACJ;YACD,OAAO,EAAE,CAAO,GAAG,EAAE,CAAC,EAAE,EAAE;gBAEtB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,eAAe,EAAU,CAAA;gBAE/D,IAAI,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC;oBACzB,OAAO,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;wBAC1B,IAAI;qBACP,EAAE,GAAG,EAAE,CAAC,CAAC,CAAA;gBACd,CAAC;gBAED,OAAO,IAAI,CAAA;YACf,CAAC,CAAA;SACJ,CAAC,CAAA;QAEF,IAAI,MAAA,IAAI,CAAC,aAAa,0CAAE,IAAI,EAAE,CAAC;YAC3B,CAAC,CAAC,KAAK,CAAC;gBACJ,IAAI,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI;gBAC7B,MAAM,EAAE,KAAK;gBACb,IAAI,EAAE,IAAI;gBACV,OAAO,EAAE;oBACL,IAAI,EAAE;wBACF,QAAQ,EAAE,IAAI,CAAC,YAAY;wBAC3B,IAAI,EAAE,UAAU;qBACnB;iBACJ;gBACD,OAAO,EAAE,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC;aAC/D,CAAC,CAAA;QACN,CAAC;IACL,CAAC;IAED,IAAI;;QACA,MAAM,IAAI,GAAG,IAAI,cAAc,CAAC,IAAI,CAAC,YAAY,CAAC;aAC7C,YAAY,CAAC,IAAI,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,6BAAS,CAAC,yBAAyB,CAAC,CAAC,CAAC,6BAAS,CAAC,iBAAiB,CAAC;aACnG,SAAS,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;aAC3B,UAAU,CAAC,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC;aACxC,iBAAiB,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,IAAI,EAAE,CAAC;aAC7C,qBAAqB,CAAC,sCAAkB,CAAC,IAAI,CAAC,CAAC;QAEpD,IAAI,MAAA,IAAI,CAAC,iBAAiB,0CAAE,IAAI,EAAE,CAAC;YAC/B,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAA;QACnD,CAAC;QAED,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACnB,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA;QACzC,CAAC;QAED,OAAO,IAAI,CAAA;IACf,CAAC;CACJ;AAzKD,4CAyKC;AAED,6BAA6B"}

package/lib/flows/auth-code.ts/open-id.d.ts

@@ -1,52 +0,0 @@
-import { SecuritySchemeObject } from '@novice1/api-doc-generator/lib/generators/openapi/definitions';
-import { OAuth2Util } from '@novice1/api-doc-generator';
-import { OAuth2AuthorizationCode, OAuth2AuthorizationCodeArg } from '../authentication-code';
-import { KaapiTools, Lifecycle, ReqRef, Request, ReqRefDefaults, ResponseToolkit } from '@kaapi/kaapi';
-import { JWKS } from '../../utils/jwks-store';
-export declare class OpenIDAuthUtil extends OAuth2Util {
-    toOpenAPI(): Record<string, SecuritySchemeObject>;
-}
-export interface OpenIDJWKSParams {
-    jwks: JWKS;
-}
-export type OpenIDJWKSHandler<Refs extends ReqRef = ReqRefDefaults, R extends Lifecycle.ReturnValue<any> = Lifecycle.ReturnValue<Refs>> = (params: OpenIDJWKSParams, request: Request<Refs>, h: ResponseToolkit<Refs>) => R;
-export interface IOpenIDJWKSRoute<Refs extends ReqRef = ReqRefDefaults> {
-    path: string;
-    handler?: OpenIDJWKSHandler<Refs>;
-}
-export declare class OpenIDJWKSRoute<Refs extends ReqRef = ReqRefDefaults> implements IOpenIDJWKSRoute<Refs> {
-    protected _path: string;
-    protected _handler: OpenIDJWKSHandler<Refs> | undefined;
-    get path(): string;
-    get handler(): OpenIDJWKSHandler<Refs, Lifecycle.ReturnValue<Refs>> | undefined;
-    constructor(path: string, handler?: OpenIDJWKSHandler<Refs>);
-}
-export type OpenIDUserInfoHandler<Refs extends ReqRef = ReqRefDefaults, R extends Lifecycle.ReturnValue<any> = Lifecycle.ReturnValue<Refs>> = (request: Request<Refs>, h: ResponseToolkit<Refs>) => R;
-export interface IOpenIDUserInfoRoute<Refs extends ReqRef = ReqRefDefaults> {
-    path: string;
-    handler?: OpenIDUserInfoHandler<Refs>;
-}
-export declare class OpenIDUserInfoRoute<Refs extends ReqRef = ReqRefDefaults> implements IOpenIDUserInfoRoute<Refs> {
-    protected _path: string;
-    protected _handler: OpenIDUserInfoHandler<Refs>;
-    get path(): string;
-    get handler(): OpenIDUserInfoHandler<Refs, Lifecycle.ReturnValue<Refs>>;
-    constructor(path: string, handler: OpenIDUserInfoHandler<Refs>);
-}
-export interface OpenIDAuthDesignArg extends OAuth2AuthorizationCodeArg {
-    jwksRoute: OpenIDJWKSRoute<any>;
-    userInfoRoute: OpenIDUserInfoRoute<any>;
-    /**
-     * Override the configuration served at /.well-known/openid-configuration
-     */
-    openidConfiguration?: Record<string, unknown>;
-}
-export declare class OpenIDAuthDesign extends OAuth2AuthorizationCode {
-    protected jwksRoute: OpenIDJWKSRoute<any>;
-    protected userInfoRoute: OpenIDUserInfoRoute<any>;
-    protected openidConfiguration: Record<string, unknown>;
-    constructor(params: OpenIDAuthDesignArg);
-    getScopes(): Record<string, string>;
-    integrateHook(t: KaapiTools): void;
-    docs(): OAuth2Util;
-}

package/lib/flows/auth-code.ts/open-id.js

@@ -1,169 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.OpenIDAuthDesign = exports.OpenIDUserInfoRoute = exports.OpenIDJWKSRoute = exports.OpenIDAuthUtil = void 0;
-const tslib_1 = require("tslib");
-const api_doc_generator_1 = require("@novice1/api-doc-generator");
-const authentication_code_1 = require("../authentication-code");
-//#region OpenIDAuthUtil
-class OpenIDAuthUtil extends api_doc_generator_1.OAuth2Util {
-    toOpenAPI() {
-        const host = this.getHost();
-        return {
-            [this.securitySchemeName]: {
-                type: 'openIdConnect',
-                openIdConnectUrl: `${host || ''}/.well-known/openid-configuration`
-            }
-        };
-    }
-}
-exports.OpenIDAuthUtil = OpenIDAuthUtil;
-class OpenIDJWKSRoute {
-    get path() {
-        return this._path;
-    }
-    get handler() {
-        return this._handler;
-    }
-    constructor(path, handler) {
-        this._path = path;
-        this._handler = handler;
-    }
-}
-exports.OpenIDJWKSRoute = OpenIDJWKSRoute;
-class OpenIDUserInfoRoute {
-    get path() {
-        return this._path;
-    }
-    get handler() {
-        return this._handler;
-    }
-    constructor(path, handler) {
-        this._path = path;
-        this._handler = handler;
-    }
-}
-exports.OpenIDUserInfoRoute = OpenIDUserInfoRoute;
-class OpenIDAuthDesign extends authentication_code_1.OAuth2AuthorizationCode {
-    constructor(params) {
-        const { strategyName, openidConfiguration, jwksRoute, userInfoRoute } = params, props = tslib_1.__rest(params, ["strategyName", "openidConfiguration", "jwksRoute", "userInfoRoute"]);
-        super(props);
-        this.openidConfiguration = {};
-        this.pkce = true;
-        this.strategyName = strategyName || 'open-id-auth-design';
-        this.jwksRoute = jwksRoute;
-        this.userInfoRoute = userInfoRoute;
-        if (openidConfiguration)
-            this.openidConfiguration = openidConfiguration;
-    }
-    getScopes() {
-        let scopes = {
-            openid: 'enable OpenID Connect'
-        };
-        if (this.scopes) {
-            if ('openid' in this.scopes) {
-                scopes = this.scopes;
-            }
-            else {
-                scopes = Object.assign(Object.assign({}, this.scopes), scopes);
-            }
-        }
-        return scopes;
-    }
-    integrateHook(t) {
-        var _a;
-        super.integrateHook(t);
-        const docs = this.docs();
-        const challengeAlgo = docs.getChallengeAlgorithm();
-        const host = ((_a = t.postman) === null || _a === void 0 ? void 0 : _a.getHost()[0]) || '';
-        t.route({
-            path: '/.well-known/openid-configuration',
-            method: 'GET',
-            options: {
-                plugins: {
-                    kaapi: {
-                        docs: false
-                    }
-                }
-            },
-            handler: () => {
-                return Object.assign({ issuer: host, authorization_endpoint: `${host}${this.authorizationRoute.path}`, token_endpoint: `${host}${this.tokenRoute.path}`, userinfo_endpoint: `${host}${this.userInfoRoute.path}`, jwks_uri: `${host}${this.jwksRoute.path}`, claims_supported: [
-                        'aud',
-                        'exp',
-                        'iat',
-                        'iss',
-                        'sub'
-                    ], grant_types_supported: [
-                        'authorization_code'
-                    ], response_types_supported: [
-                        'code',
-                        'token',
-                        'code token',
-                        'code token id_token'
-                    ], scopes_supported: Object.keys(docs.getScopes()), subject_types_supported: [
-                        'public'
-                    ], id_token_signing_alg_values_supported: [
-                        'RS256'
-                    ], code_challenge_methods_supported: challengeAlgo ? [
-                        challengeAlgo
-                    ] : [], token_endpoint_auth_methods_supported: [
-                        'client_secret_post'
-                    ] }, this.openidConfiguration);
-            }
-        });
-        t.route({
-            path: this.jwksRoute.path,
-            method: 'GET',
-            options: {
-                plugins: {
-                    kaapi: {
-                        docs: false
-                    }
-                }
-            },
-            handler: (req, h) => tslib_1.__awaiter(this, void 0, void 0, function* () {
-                const jwks = yield this.jwksGenerator.get();
-                if (this.jwksRoute.handler) {
-                    return this.jwksRoute.handler({
-                        jwks
-                    }, req, h);
-                }
-                return jwks;
-            })
-        });
-        t.route({
-            path: this.userInfoRoute.path,
-            method: 'GET',
-            options: {
-                auth: {
-                    strategy: this.strategyName,
-                    mode: 'required'
-                },
-                plugins: {
-                    kaapi: {
-                        docs: false
-                    }
-                }
-            },
-            handler: this.userInfoRoute.handler.bind(this.userInfoRoute)
-        });
-    }
-    docs() {
-        var _a;
-        const docs = new OpenIDAuthUtil(this.strategyName)
-            .setGrantType(this.isWithPkce() ? api_doc_generator_1.GrantType.authorizationCodeWithPkce : api_doc_generator_1.GrantType.authorizationCode)
-            .setScopes(this.getScopes())
-            .setAuthUrl(this.authorizationRoute.path)
-            .setAccessTokenUrl(this.tokenRoute.path || '')
-            .setChallengeAlgorithm(api_doc_generator_1.ChallengeAlgorithm.S256);
-        if ((_a = this.refreshTokenRoute) === null || _a === void 0 ? void 0 : _a.path) {
-            docs.setRefreshUrl(this.refreshTokenRoute.path);
-        }
-        if (this.description) {
-            docs.setDescription(this.description);
-        }
-        return docs;
-    }
-}
-exports.OpenIDAuthDesign = OpenIDAuthDesign;
-//#endregion OpenIDAuthDesign
-//# sourceMappingURL=open-id.js.map

package/lib/flows/auth-code.ts/open-id.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"open-id.js","sourceRoot":"","sources":["../../../src/flows/auth-code.ts/open-id.ts"],"names":[],"mappings":";;;;AACA,kEAAuF;AACvF,gEAA6F;AAI7F,wBAAwB;AAExB,MAAa,cAAe,SAAQ,8BAAU;IAC1C,SAAS;QACL,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,EAAE,CAAA;QAC3B,OAAO;YACH,CAAC,IAAI,CAAC,kBAAkB,CAAC,EAAE;gBACvB,IAAI,EAAE,eAAe;gBACrB,gBAAgB,EAAE,GAAG,IAAI,IAAI,EAAE,mCAAmC;aACrE;SACJ,CAAA;IACL,CAAC;CACJ;AAVD,wCAUC;AAuBD,MAAa,eAAe;IAMxB,IAAI,IAAI;QACJ,OAAO,IAAI,CAAC,KAAK,CAAA;IACrB,CAAC;IAED,IAAI,OAAO;QACP,OAAO,IAAI,CAAC,QAAQ,CAAA;IACxB,CAAC;IAED,YACI,IAAY,EACZ,OAAiC;QAEjC,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QAClB,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;IAC5B,CAAC;CACJ;AArBD,0CAqBC;AAmBD,MAAa,mBAAmB;IAM5B,IAAI,IAAI;QACJ,OAAO,IAAI,CAAC,KAAK,CAAA;IACrB,CAAC;IAED,IAAI,OAAO;QACP,OAAO,IAAI,CAAC,QAAQ,CAAA;IACxB,CAAC;IAED,YACI,IAAY,EACZ,OAAoC;QAEpC,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QAClB,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;IAC5B,CAAC;CACJ;AArBD,kDAqBC;AAmBD,MAAa,gBAAiB,SAAQ,6CAAuB;IASzD,YACI,MAA2B;QAE3B,MAAM,EAAE,YAAY,EAAE,mBAAmB,EAAE,SAAS,EAAE,aAAa,KAAe,MAAM,EAAhB,KAAK,kBAAK,MAAM,EAAlF,qEAAyE,CAAS,CAAA;QAExF,KAAK,CAAC,KAAK,CAAC,CAAA;QAPN,wBAAmB,GAA4B,EAAE,CAAA;QASvD,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;QAChB,IAAI,CAAC,YAAY,GAAG,YAAY,IAAI,qBAAqB,CAAA;QACzD,IAAI,CAAC,SAAS,GAAG,SAAS,CAAA;QAC1B,IAAI,CAAC,aAAa,GAAG,aAAa,CAAA;QAElC,IAAI,mBAAmB;YACnB,IAAI,CAAC,mBAAmB,GAAG,mBAAmB,CAAA;IACtD,CAAC;IAED,SAAS;QACL,IAAI,MAAM,GAA2B;YACjC,MAAM,EAAE,uBAAuB;SAClC,CAAA;QACD,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YACd,IAAI,QAAQ,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;gBAC1B,MAAM,GAAG,IAAI,CAAC,MAAM,CAAA;YACxB,CAAC;iBAAM,CAAC;gBACJ,MAAM,mCAAQ,IAAI,CAAC,MAAM,GAAK,MAAM,CAAE,CAAA;YAC1C,CAAC;QACL,CAAC;QACD,OAAO,MAAM,CAAA;IACjB,CAAC;IAED,aAAa,CAAC,CAAa;;QACvB,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,CAAA;QAEtB,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,EAAE,CAAA;QACxB,MAAM,aAAa,GAAG,IAAI,CAAC,qBAAqB,EAAE,CAAA;QAClD,MAAM,IAAI,GAAG,CAAA,MAAA,CAAC,CAAC,OAAO,0CAAE,OAAO,GAAG,CAAC,CAAC,KAAI,EAAE,CAAA;QAE1C,CAAC,CAAC,KAAK,CAAC;YACJ,IAAI,EAAE,mCAAmC;YACzC,MAAM,EAAE,KAAK;YACb,OAAO,EAAE;gBACL,OAAO,EAAE;oBACL,KAAK,EAAE;wBACH,IAAI,EAAE,KAAK;qBACd;iBACJ;aACJ;YACD,OAAO,EAAE,GAAG,EAAE;gBACV,uBACI,MAAM,EAAE,IAAI,EACZ,sBAAsB,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC,kBAAkB,CAAC,IAAI,EAAE,EAChE,cAAc,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,EAAE,EAChD,iBAAiB,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,EAAE,EACtD,QAAQ,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,EACzC,gBAAgB,EAAE;wBACd,KAAK;wBACL,KAAK;wBACL,KAAK;wBACL,KAAK;wBACL,KAAK;qBACR,EACD,qBAAqB,EAAE;wBACnB,oBAAoB;qBACvB,EACD,wBAAwB,EAAE;wBACtB,MAAM;wBACN,OAAO;wBACP,YAAY;wBACZ,qBAAqB;qBACxB,EACD,gBAAgB,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC,EAC/C,uBAAuB,EAAE;wBACrB,QAAQ;qBACX,EACD,qCAAqC,EAAE;wBACnC,OAAO;qBACV,EACD,gCAAgC,EAAE,aAAa,CAAC,CAAC,CAAC;wBAC9C,aAAa;qBAChB,CAAC,CAAC,CAAC,EAAE,EACN,qCAAqC,EAAE;wBACnC,oBAAoB;qBACvB,IACE,IAAI,CAAC,mBAAmB,EAC9B;YACL,CAAC;SACJ,CAAC,CAAA;QAEF,CAAC,CAAC,KAAK,CAAC;YACJ,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI;YACzB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE;gBACL,OAAO,EAAE;oBACL,KAAK,EAAE;wBACH,IAAI,EAAE,KAAK;qBACd;iBACJ;aACJ;YACD,OAAO,EAAE,CAAO,GAAG,EAAE,CAAC,EAAE,EAAE;gBAEtB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,GAAG,EAAU,CAAA;gBAEnD,IAAI,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC;oBACzB,OAAO,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;wBAC1B,IAAI;qBACP,EAAE,GAAG,EAAE,CAAC,CAAC,CAAA;gBACd,CAAC;gBAED,OAAO,IAAI,CAAA;YACf,CAAC,CAAA;SACJ,CAAC,CAAA;QAEF,CAAC,CAAC,KAAK,CAAC;YACJ,IAAI,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI;YAC7B,MAAM,EAAE,KAAK;YACb,OAAO,EAAE;gBACL,IAAI,EAAE;oBACF,QAAQ,EAAE,IAAI,CAAC,YAAY;oBAC3B,IAAI,EAAE,UAAU;iBACnB;gBACD,OAAO,EAAE;oBACL,KAAK,EAAE;wBACH,IAAI,EAAE,KAAK;qBACd;iBACJ;aACJ;YACD,OAAO,EAAE,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC;SAC/D,CAAC,CAAA;IACN,CAAC;IAED,IAAI;;QACA,MAAM,IAAI,GAAG,IAAI,cAAc,CAAC,IAAI,CAAC,YAAY,CAAC;aAC7C,YAAY,CAAC,IAAI,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,6BAAS,CAAC,yBAAyB,CAAC,CAAC,CAAC,6BAAS,CAAC,iBAAiB,CAAC;aACnG,SAAS,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;aAC3B,UAAU,CAAC,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC;aACxC,iBAAiB,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,IAAI,EAAE,CAAC;aAC7C,qBAAqB,CAAC,sCAAkB,CAAC,IAAI,CAAC,CAAC;QAEpD,IAAI,MAAA,IAAI,CAAC,iBAAiB,0CAAE,IAAI,EAAE,CAAC;YAC/B,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAA;QACnD,CAAC;QAED,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACnB,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA;QACzC,CAAC;QAED,OAAO,IAAI,CAAA;IACf,CAAC;CACJ;AA7JD,4CA6JC;AAED,6BAA6B"}

package/lib/flows/authentication-code.d.ts

@@ -1,53 +0,0 @@
-import { KaapiTools } from '@kaapi/kaapi';
-import { OAuth2Util } from '@novice1/api-doc-generator';
-import { IOAuth2RefreshTokenRoute, OAuth2WithJWKSAuthDesign, OAuth2AuthOptions } from './common';
-import { JWKSStore } from '../utils/jwks-store';
-import { IOAuth2ACAuthorizationRoute } from './auth-code/authorization-route';
-import { IOAuth2ACTokenRoute } from './auth-code/token-route';
-export interface OAuth2AuthorizationCodeArg {
-    authorizationRoute: IOAuth2ACAuthorizationRoute<any, any>;
-    tokenRoute: IOAuth2ACTokenRoute<any>;
-    refreshTokenRoute?: IOAuth2RefreshTokenRoute<any>;
-    options?: OAuth2AuthOptions;
-    strategyName?: string;
-    jwksStore?: JWKSStore;
-}
-export declare class OAuth2AuthorizationCode extends OAuth2WithJWKSAuthDesign {
-    protected strategyName: string;
-    protected description?: string;
-    protected scopes?: Record<string, string>;
-    protected options: OAuth2AuthOptions;
-    protected pkce: boolean;
-    protected clientAuthenticationMethods: {
-        header: boolean;
-        body: boolean;
-    };
-    protected authorizationRoute: IOAuth2ACAuthorizationRoute<any, any>;
-    protected tokenRoute: IOAuth2ACTokenRoute<any>;
-    protected refreshTokenRoute?: IOAuth2RefreshTokenRoute<any>;
-    constructor({ authorizationRoute, tokenRoute, refreshTokenRoute, options, strategyName, jwksStore }: OAuth2AuthorizationCodeArg);
-    withPkce(): this;
-    withoutPkce(): this;
-    isWithPkce(): boolean;
-    noneAuthenticationMethod(): this;
-    setDescription(description: string): this;
-    /**
-     *
-     * @param scopes The scopes of the access request.
-     * A map between the scope name and a short description for it. The map MAY be empty.
-     * @returns
-     */
-    setScopes(scopes: Record<string, string>): this;
-    getScopes(): Record<string, string> | undefined;
-    getStrategyName(): string;
-    getDescription(): string | undefined;
-    /**
-     * Returns the schema used for the documentation
-     */
-    docs(): OAuth2Util;
-    /**
-     * Where authentication schemes and strategies are registered.
-     */
-    integrateStrategy(t: KaapiTools): void;
-    integrateHook(t: KaapiTools): void;
-}