@keycardai/oauth 0.8.0 → 0.8.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (9) hide show
  1. package/dist/cjs/discovery.d.ts +6 -0
  2. package/dist/cjs/discovery.d.ts.map +1 -1
  3. package/dist/cjs/discovery.js +21 -5
  4. package/dist/cjs/discovery.js.map +1 -1
  5. package/dist/esm/discovery.d.ts +6 -0
  6. package/dist/esm/discovery.d.ts.map +1 -1
  7. package/dist/esm/discovery.js +21 -5
  8. package/dist/esm/discovery.js.map +1 -1
  9. package/package.json +1 -1
package/dist/cjs/discovery.d.ts CHANGED
@@ -5,6 +5,8 @@ declare const OAuthAuthorizationServerMetadataSchema: z.ZodObject<{
5
5
  token_endpoint: z.ZodOptional<z.ZodString>;
6
6
  jwks_uri: z.ZodOptional<z.ZodString>;
7
7
  registration_endpoint: z.ZodOptional<z.ZodString>;
8
+ grant_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
9
+ response_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
8
10
  token_endpoint_auth_methods_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
9
11
  }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
10
12
  issuer: z.ZodString;
@@ -12,6 +14,8 @@ declare const OAuthAuthorizationServerMetadataSchema: z.ZodObject<{
12
14
  token_endpoint: z.ZodOptional<z.ZodString>;
13
15
  jwks_uri: z.ZodOptional<z.ZodString>;
14
16
  registration_endpoint: z.ZodOptional<z.ZodString>;
17
+ grant_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
18
+ response_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
15
19
  token_endpoint_auth_methods_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
16
20
  }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
17
21
  issuer: z.ZodString;
@@ -19,6 +23,8 @@ declare const OAuthAuthorizationServerMetadataSchema: z.ZodObject<{
19
23
  token_endpoint: z.ZodOptional<z.ZodString>;
20
24
  jwks_uri: z.ZodOptional<z.ZodString>;
21
25
  registration_endpoint: z.ZodOptional<z.ZodString>;
26
+ grant_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
27
+ response_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
22
28
  token_endpoint_auth_methods_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
23
29
  }, z.ZodTypeAny, "passthrough">>;
24
30
  export type OAuthAuthorizationServerMetadata = z.infer<typeof OAuthAuthorizationServerMetadataSchema>;
package/dist/cjs/discovery.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"discovery.d.ts","sourceRoot":"","sources":["../../src/discovery.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,QAAA,MAAM,sCAAsC;;;;;;;;;;;;;;;;;;;;;gCAO5B,CAAC;AAEjB,MAAM,MAAM,gCAAgC,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sCAAsC,CAAC,CAAC;AAEtG,wBAAsB,gCAAgC,CACpD,MAAM,EAAE,MAAM,EACd,OAAO,CAAC,EAAE;IAAE,MAAM,CAAC,EAAE,WAAW,CAAA;CAAE,GACjC,OAAO,CAAC,gCAAgC,CAAC,CAsB3C"}
1
+ {"version":3,"file":"discovery.d.ts","sourceRoot":"","sources":["../../src/discovery.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB,QAAA,MAAM,sCAAsC;;;;;;;;;;;;;;;;;;;;;;;;;;;gCAS5B,CAAC;AAEjB,MAAM,MAAM,gCAAgC,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sCAAsC,CAAC,CAAC;AAEtG,wBAAsB,gCAAgC,CACpD,MAAM,EAAE,MAAM,EACd,OAAO,CAAC,EAAE;IAAE,MAAM,CAAC,EAAE,WAAW,CAAA;CAAE,GACjC,OAAO,CAAC,gCAAgC,CAAC,CA4C3C"}
package/dist/cjs/discovery.js CHANGED
@@ -2,12 +2,15 @@
2
2
  Object.defineProperty(exports, "__esModule", { value: true });
3
3
  exports.fetchAuthorizationServerMetadata = fetchAuthorizationServerMetadata;
4
4
  const zod_1 = require("zod");
5
+ const errors_js_1 = require("./errors.js");
5
6
  const OAuthAuthorizationServerMetadataSchema = zod_1.z.object({
6
7
  issuer: zod_1.z.string(),
7
8
  authorization_endpoint: zod_1.z.string().optional(),
8
9
  token_endpoint: zod_1.z.string().optional(),
9
10
  jwks_uri: zod_1.z.string().optional(),
10
11
  registration_endpoint: zod_1.z.string().optional(),
12
+ grant_types_supported: zod_1.z.array(zod_1.z.string()).optional(),
13
+ response_types_supported: zod_1.z.array(zod_1.z.string()).optional(),
11
14
  token_endpoint_auth_methods_supported: zod_1.z.array(zod_1.z.string()).optional(),
12
15
  }).passthrough();
13
16
  async function fetchAuthorizationServerMetadata(issuer, options) {
@@ -19,12 +22,25 @@ async function fetchAuthorizationServerMetadata(issuer, options) {
19
22
  const url = new URL(`/.well-known/oauth-authorization-server${path}`, issuer);
20
23
  const response = await fetch(url, { signal: options?.signal });
21
24
  if (!response.ok) {
22
- throw new Error(`Failed to fetch OAuth authorization server metadata for "${issuer}"`);
25
+ throw new errors_js_1.HTTPError(`Failed to fetch OAuth authorization server metadata for "${issuer}" (HTTP ${response.status})`);
23
26
  }
24
- const json = await response.json();
25
- const metadata = OAuthAuthorizationServerMetadataSchema.parse(json);
26
- if (metadata.issuer !== issuer) {
27
- throw new Error(`Issuer mismatch in OAuth authorization server metadata for "${issuer}"`);
27
+ let json;
28
+ try {
29
+ json = await response.json();
30
+ }
31
+ catch {
32
+ throw new errors_js_1.OAuthError("invalid_metadata", `Malformed JSON in OAuth authorization server metadata for "${issuer}"`);
33
+ }
34
+ let metadata;
35
+ try {
36
+ metadata = OAuthAuthorizationServerMetadataSchema.parse(json);
37
+ }
38
+ catch {
39
+ throw new errors_js_1.OAuthError("invalid_metadata", `Invalid OAuth authorization server metadata for "${issuer}"`);
40
+ }
41
+ // Compare ignoring a trailing slash, matching the Python SDK.
42
+ if (metadata.issuer.replace(/\/$/, "") !== issuer.replace(/\/$/, "")) {
43
+ throw new errors_js_1.OAuthError("issuer_mismatch", `Issuer mismatch in OAuth authorization server metadata for "${issuer}"`);
28
44
  }
29
45
  return metadata;
30
46
  }
package/dist/cjs/discovery.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"discovery.js","sourceRoot":"","sources":["../../src/discovery.ts"],"names":[],"mappings":";;AAaA,4EAyBC;AAtCD,6BAAwB;AAExB,MAAM,sCAAsC,GAAG,OAAC,CAAC,MAAM,CAAC;IACtD,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE;IAClB,sBAAsB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7C,cAAc,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACrC,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,qBAAqB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5C,qCAAqC,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;CACtE,CAAC,CAAC,WAAW,EAAE,CAAC;AAIV,KAAK,UAAU,gCAAgC,CACpD,MAAc,EACd,OAAkC;IAElC,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;IAClC,IAAI,IAAI,GAAG,SAAS,CAAC,QAAQ,CAAC;IAC9B,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QACvB,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAC3B,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,0CAA0C,IAAI,EAAE,EAAE,MAAM,CAAC,CAAC;IAC9E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;IAC/D,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CACb,4DAA4D,MAAM,GAAG,CACtE,CAAC;IACJ,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACnC,MAAM,QAAQ,GAAG,sCAAsC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACpE,IAAI,QAAQ,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,+DAA+D,MAAM,GAAG,CAAC,CAAC;IAC5F,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC"}
1
+ {"version":3,"file":"discovery.js","sourceRoot":"","sources":["../../src/discovery.ts"],"names":[],"mappings":";;AAgBA,4EA+CC;AA/DD,6BAAwB;AACxB,2CAAoD;AAEpD,MAAM,sCAAsC,GAAG,OAAC,CAAC,MAAM,CAAC;IACtD,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE;IAClB,sBAAsB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7C,cAAc,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACrC,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,qBAAqB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5C,qBAAqB,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACrD,wBAAwB,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACxD,qCAAqC,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;CACtE,CAAC,CAAC,WAAW,EAAE,CAAC;AAIV,KAAK,UAAU,gCAAgC,CACpD,MAAc,EACd,OAAkC;IAElC,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;IAClC,IAAI,IAAI,GAAG,SAAS,CAAC,QAAQ,CAAC;IAC9B,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QACvB,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAC3B,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,0CAA0C,IAAI,EAAE,EAAE,MAAM,CAAC,CAAC;IAC9E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;IAC/D,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,qBAAS,CACjB,4DAA4D,MAAM,WAAW,QAAQ,CAAC,MAAM,GAAG,CAChG,CAAC;IACJ,CAAC;IAED,IAAI,IAAa,CAAC;IAClB,IAAI,CAAC;QACH,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IAC/B,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,sBAAU,CAClB,kBAAkB,EAClB,8DAA8D,MAAM,GAAG,CACxE,CAAC;IACJ,CAAC;IAED,IAAI,QAA0C,CAAC;IAC/C,IAAI,CAAC;QACH,QAAQ,GAAG,sCAAsC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAChE,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,sBAAU,CAClB,kBAAkB,EAClB,oDAAoD,MAAM,GAAG,CAC9D,CAAC;IACJ,CAAC;IAED,8DAA8D;IAC9D,IAAI,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,EAAE,CAAC;QACrE,MAAM,IAAI,sBAAU,CAClB,iBAAiB,EACjB,+DAA+D,MAAM,GAAG,CACzE,CAAC;IACJ,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC"}
package/dist/esm/discovery.d.ts CHANGED
@@ -5,6 +5,8 @@ declare const OAuthAuthorizationServerMetadataSchema: z.ZodObject<{
5
5
  token_endpoint: z.ZodOptional<z.ZodString>;
6
6
  jwks_uri: z.ZodOptional<z.ZodString>;
7
7
  registration_endpoint: z.ZodOptional<z.ZodString>;
8
+ grant_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
9
+ response_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
8
10
  token_endpoint_auth_methods_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
9
11
  }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
10
12
  issuer: z.ZodString;
@@ -12,6 +14,8 @@ declare const OAuthAuthorizationServerMetadataSchema: z.ZodObject<{
12
14
  token_endpoint: z.ZodOptional<z.ZodString>;
13
15
  jwks_uri: z.ZodOptional<z.ZodString>;
14
16
  registration_endpoint: z.ZodOptional<z.ZodString>;
17
+ grant_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
18
+ response_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
15
19
  token_endpoint_auth_methods_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
16
20
  }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
17
21
  issuer: z.ZodString;
@@ -19,6 +23,8 @@ declare const OAuthAuthorizationServerMetadataSchema: z.ZodObject<{
19
23
  token_endpoint: z.ZodOptional<z.ZodString>;
20
24
  jwks_uri: z.ZodOptional<z.ZodString>;
21
25
  registration_endpoint: z.ZodOptional<z.ZodString>;
26
+ grant_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
27
+ response_types_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
22
28
  token_endpoint_auth_methods_supported: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
23
29
  }, z.ZodTypeAny, "passthrough">>;
24
30
  export type OAuthAuthorizationServerMetadata = z.infer<typeof OAuthAuthorizationServerMetadataSchema>;
package/dist/esm/discovery.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"discovery.d.ts","sourceRoot":"","sources":["../../src/discovery.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,QAAA,MAAM,sCAAsC;;;;;;;;;;;;;;;;;;;;;gCAO5B,CAAC;AAEjB,MAAM,MAAM,gCAAgC,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sCAAsC,CAAC,CAAC;AAEtG,wBAAsB,gCAAgC,CACpD,MAAM,EAAE,MAAM,EACd,OAAO,CAAC,EAAE;IAAE,MAAM,CAAC,EAAE,WAAW,CAAA;CAAE,GACjC,OAAO,CAAC,gCAAgC,CAAC,CAsB3C"}
1
+ {"version":3,"file":"discovery.d.ts","sourceRoot":"","sources":["../../src/discovery.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB,QAAA,MAAM,sCAAsC;;;;;;;;;;;;;;;;;;;;;;;;;;;gCAS5B,CAAC;AAEjB,MAAM,MAAM,gCAAgC,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sCAAsC,CAAC,CAAC;AAEtG,wBAAsB,gCAAgC,CACpD,MAAM,EAAE,MAAM,EACd,OAAO,CAAC,EAAE;IAAE,MAAM,CAAC,EAAE,WAAW,CAAA;CAAE,GACjC,OAAO,CAAC,gCAAgC,CAAC,CA4C3C"}
package/dist/esm/discovery.js CHANGED
@@ -1,10 +1,13 @@
1
1
  import { z } from "zod";
2
+ import { HTTPError, OAuthError } from "./errors.js";
2
3
  const OAuthAuthorizationServerMetadataSchema = z.object({
3
4
  issuer: z.string(),
4
5
  authorization_endpoint: z.string().optional(),
5
6
  token_endpoint: z.string().optional(),
6
7
  jwks_uri: z.string().optional(),
7
8
  registration_endpoint: z.string().optional(),
9
+ grant_types_supported: z.array(z.string()).optional(),
10
+ response_types_supported: z.array(z.string()).optional(),
8
11
  token_endpoint_auth_methods_supported: z.array(z.string()).optional(),
9
12
  }).passthrough();
10
13
  export async function fetchAuthorizationServerMetadata(issuer, options) {
@@ -16,12 +19,25 @@ export async function fetchAuthorizationServerMetadata(issuer, options) {
16
19
  const url = new URL(`/.well-known/oauth-authorization-server${path}`, issuer);
17
20
  const response = await fetch(url, { signal: options?.signal });
18
21
  if (!response.ok) {
19
- throw new Error(`Failed to fetch OAuth authorization server metadata for "${issuer}"`);
22
+ throw new HTTPError(`Failed to fetch OAuth authorization server metadata for "${issuer}" (HTTP ${response.status})`);
20
23
  }
21
- const json = await response.json();
22
- const metadata = OAuthAuthorizationServerMetadataSchema.parse(json);
23
- if (metadata.issuer !== issuer) {
24
- throw new Error(`Issuer mismatch in OAuth authorization server metadata for "${issuer}"`);
24
+ let json;
25
+ try {
26
+ json = await response.json();
27
+ }
28
+ catch {
29
+ throw new OAuthError("invalid_metadata", `Malformed JSON in OAuth authorization server metadata for "${issuer}"`);
30
+ }
31
+ let metadata;
32
+ try {
33
+ metadata = OAuthAuthorizationServerMetadataSchema.parse(json);
34
+ }
35
+ catch {
36
+ throw new OAuthError("invalid_metadata", `Invalid OAuth authorization server metadata for "${issuer}"`);
37
+ }
38
+ // Compare ignoring a trailing slash, matching the Python SDK.
39
+ if (metadata.issuer.replace(/\/$/, "") !== issuer.replace(/\/$/, "")) {
40
+ throw new OAuthError("issuer_mismatch", `Issuer mismatch in OAuth authorization server metadata for "${issuer}"`);
25
41
  }
26
42
  return metadata;
27
43
  }
package/dist/esm/discovery.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"discovery.js","sourceRoot":"","sources":["../../src/discovery.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,MAAM,sCAAsC,GAAG,CAAC,CAAC,MAAM,CAAC;IACtD,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE;IAClB,sBAAsB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7C,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACrC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,qBAAqB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5C,qCAAqC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;CACtE,CAAC,CAAC,WAAW,EAAE,CAAC;AAIjB,MAAM,CAAC,KAAK,UAAU,gCAAgC,CACpD,MAAc,EACd,OAAkC;IAElC,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;IAClC,IAAI,IAAI,GAAG,SAAS,CAAC,QAAQ,CAAC;IAC9B,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QACvB,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAC3B,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,0CAA0C,IAAI,EAAE,EAAE,MAAM,CAAC,CAAC;IAC9E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;IAC/D,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CACb,4DAA4D,MAAM,GAAG,CACtE,CAAC;IACJ,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACnC,MAAM,QAAQ,GAAG,sCAAsC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACpE,IAAI,QAAQ,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,+DAA+D,MAAM,GAAG,CAAC,CAAC;IAC5F,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC"}
1
+ {"version":3,"file":"discovery.js","sourceRoot":"","sources":["../../src/discovery.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAEpD,MAAM,sCAAsC,GAAG,CAAC,CAAC,MAAM,CAAC;IACtD,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE;IAClB,sBAAsB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7C,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACrC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,qBAAqB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5C,qBAAqB,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACrD,wBAAwB,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACxD,qCAAqC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;CACtE,CAAC,CAAC,WAAW,EAAE,CAAC;AAIjB,MAAM,CAAC,KAAK,UAAU,gCAAgC,CACpD,MAAc,EACd,OAAkC;IAElC,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;IAClC,IAAI,IAAI,GAAG,SAAS,CAAC,QAAQ,CAAC;IAC9B,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QACvB,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAC3B,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,0CAA0C,IAAI,EAAE,EAAE,MAAM,CAAC,CAAC;IAC9E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;IAC/D,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,SAAS,CACjB,4DAA4D,MAAM,WAAW,QAAQ,CAAC,MAAM,GAAG,CAChG,CAAC;IACJ,CAAC;IAED,IAAI,IAAa,CAAC;IAClB,IAAI,CAAC;QACH,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IAC/B,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,UAAU,CAClB,kBAAkB,EAClB,8DAA8D,MAAM,GAAG,CACxE,CAAC;IACJ,CAAC;IAED,IAAI,QAA0C,CAAC;IAC/C,IAAI,CAAC;QACH,QAAQ,GAAG,sCAAsC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAChE,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,UAAU,CAClB,kBAAkB,EAClB,oDAAoD,MAAM,GAAG,CAC9D,CAAC;IACJ,CAAC;IAED,8DAA8D;IAC9D,IAAI,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,EAAE,CAAC;QACrE,MAAM,IAAI,UAAU,CAClB,iBAAiB,EACjB,+DAA+D,MAAM,GAAG,CACzE,CAAC;IACJ,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC"}
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@keycardai/oauth",
3
- "version": "0.8.0",
3
+ "version": "0.8.2",
4
4
  "description": "[Preview] OAuth 2.0 primitives for Keycard: JWKS keyring, JWT signing/verification, server-tier token verifier, AccessContext, ClientSecret credentials, and impersonation via RFC 8693 token exchange",
5
5
  "license": "MIT",
6
6
  "repository": {