@logto/js 1.1.2 → 2.0.1

package/lib/utils/callback-uri.cjs

@@ -0,0 +1,36 @@
+'use strict';
+
+var essentials = require('@silverhand/essentials');
+var index = require('../consts/index.cjs');
+var errors = require('./errors.cjs');
+
+const parseUriParameters = (uri) => {
+    const [, queryString = ''] = uri.split('?');
+    return new URLSearchParams(queryString);
+};
+const verifyAndParseCodeFromCallbackUri = (callbackUri, redirectUri, state) => {
+    if (!callbackUri.startsWith(redirectUri)) {
+        throw new errors.LogtoError('callback_uri_verification.redirect_uri_mismatched');
+    }
+    const uriParameters = parseUriParameters(callbackUri);
+    const error = essentials.conditional(uriParameters.get(index.QueryKey.Error));
+    const errorDescription = essentials.conditional(uriParameters.get(index.QueryKey.ErrorDescription));
+    if (error) {
+        throw new errors.LogtoError('callback_uri_verification.error_found', new errors.OidcError(error, errorDescription));
+    }
+    const stateFromCallbackUri = uriParameters.get(index.QueryKey.State);
+    if (!stateFromCallbackUri) {
+        throw new errors.LogtoError('callback_uri_verification.missing_state');
+    }
+    if (stateFromCallbackUri !== state) {
+        throw new errors.LogtoError('callback_uri_verification.state_mismatched');
+    }
+    const code = uriParameters.get(index.QueryKey.Code);
+    if (!code) {
+        throw new errors.LogtoError('callback_uri_verification.missing_code');
+    }
+    return code;
+};
+
+exports.parseUriParameters = parseUriParameters;
+exports.verifyAndParseCodeFromCallbackUri = verifyAndParseCodeFromCallbackUri;

package/lib/utils/callback-uri.js

@@ -1,8 +1,6 @@
-'use strict';
-
-var essentials = require('@silverhand/essentials');
-var index = require('../consts/index.js');
-var errors = require('./errors.js');
+import { conditional } from '@silverhand/essentials';
+import { QueryKey } from '../consts/index.js';
+import { LogtoError, OidcError } from './errors.js';
 
 const parseUriParameters = (uri) => {
     const [, queryString = ''] = uri.split('?');
@@ -10,27 +8,26 @@ const parseUriParameters = (uri) => {
 };
 const verifyAndParseCodeFromCallbackUri = (callbackUri, redirectUri, state) => {
     if (!callbackUri.startsWith(redirectUri)) {
-        throw new errors.LogtoError('callback_uri_verification.redirect_uri_mismatched');
+        throw new LogtoError('callback_uri_verification.redirect_uri_mismatched');
     }
     const uriParameters = parseUriParameters(callbackUri);
-    const error = essentials.conditional(uriParameters.get(index.QueryKey.Error));
-    const errorDescription = essentials.conditional(uriParameters.get(index.QueryKey.ErrorDescription));
+    const error = conditional(uriParameters.get(QueryKey.Error));
+    const errorDescription = conditional(uriParameters.get(QueryKey.ErrorDescription));
     if (error) {
-        throw new errors.LogtoError('callback_uri_verification.error_found', new errors.OidcError(error, errorDescription));
+        throw new LogtoError('callback_uri_verification.error_found', new OidcError(error, errorDescription));
     }
-    const stateFromCallbackUri = uriParameters.get(index.QueryKey.State);
+    const stateFromCallbackUri = uriParameters.get(QueryKey.State);
     if (!stateFromCallbackUri) {
-        throw new errors.LogtoError('callback_uri_verification.missing_state');
+        throw new LogtoError('callback_uri_verification.missing_state');
     }
     if (stateFromCallbackUri !== state) {
-        throw new errors.LogtoError('callback_uri_verification.state_mismatched');
+        throw new LogtoError('callback_uri_verification.state_mismatched');
     }
-    const code = uriParameters.get(index.QueryKey.Code);
+    const code = uriParameters.get(QueryKey.Code);
     if (!code) {
-        throw new errors.LogtoError('callback_uri_verification.missing_code');
+        throw new LogtoError('callback_uri_verification.missing_code');
     }
     return code;
 };
 
-exports.parseUriParameters = parseUriParameters;
-exports.verifyAndParseCodeFromCallbackUri = verifyAndParseCodeFromCallbackUri;
+export { parseUriParameters, verifyAndParseCodeFromCallbackUri };

package/lib/utils/errors.cjs

@@ -0,0 +1,45 @@
+'use strict';
+
+var arbitraryObject = require('./arbitrary-object.cjs');
+
+const logtoErrorCodes = Object.freeze({
+    'id_token.invalid_iat': 'Invalid issued at time in the ID token',
+    'id_token.invalid_token': 'Invalid ID token',
+    'callback_uri_verification.redirect_uri_mismatched': 'The callback URI mismatches the redirect URI.',
+    'callback_uri_verification.error_found': 'Error found in the callback URI',
+    'callback_uri_verification.missing_state': 'Missing state in the callback URI',
+    'callback_uri_verification.state_mismatched': 'State mismatched in the callback URI',
+    'callback_uri_verification.missing_code': 'Missing code in the callback URI',
+    crypto_subtle_unavailable: 'Crypto.subtle is unavailable in insecure contexts (non-HTTPS).',
+    unexpected_response_error: 'Unexpected response error from the server.',
+});
+class LogtoError extends Error {
+    constructor(code, data) {
+        super(logtoErrorCodes[code]);
+        this.code = code;
+        this.data = data;
+    }
+}
+const isLogtoRequestError = (data) => {
+    if (!arbitraryObject.isArbitraryObject(data)) {
+        return false;
+    }
+    return typeof data.code === 'string' && typeof data.message === 'string';
+};
+class LogtoRequestError extends Error {
+    constructor(code, message) {
+        super(message);
+        this.code = code;
+    }
+}
+class OidcError {
+    constructor(error, errorDescription) {
+        this.error = error;
+        this.errorDescription = errorDescription;
+    }
+}
+
+exports.LogtoError = LogtoError;
+exports.LogtoRequestError = LogtoRequestError;
+exports.OidcError = OidcError;
+exports.isLogtoRequestError = isLogtoRequestError;

package/lib/utils/errors.d.ts

@@ -1,20 +1,15 @@
-import type { NormalizeKeyPaths } from '@silverhand/essentials';
 declare const logtoErrorCodes: Readonly<{
-    id_token: {
-        invalid_iat: string;
-        invalid_token: string;
-    };
-    callback_uri_verification: {
-        redirect_uri_mismatched: string;
-        error_found: string;
-        missing_state: string;
-        state_mismatched: string;
-        missing_code: string;
-    };
+    'id_token.invalid_iat': "Invalid issued at time in the ID token";
+    'id_token.invalid_token': "Invalid ID token";
+    'callback_uri_verification.redirect_uri_mismatched': "The callback URI mismatches the redirect URI.";
+    'callback_uri_verification.error_found': "Error found in the callback URI";
+    'callback_uri_verification.missing_state': "Missing state in the callback URI";
+    'callback_uri_verification.state_mismatched': "State mismatched in the callback URI";
+    'callback_uri_verification.missing_code': "Missing code in the callback URI";
     crypto_subtle_unavailable: "Crypto.subtle is unavailable in insecure contexts (non-HTTPS).";
     unexpected_response_error: "Unexpected response error from the server.";
 }>;
-export type LogtoErrorCode = NormalizeKeyPaths<typeof logtoErrorCodes>;
+export type LogtoErrorCode = keyof typeof logtoErrorCodes;
 export declare class LogtoError extends Error {
     code: LogtoErrorCode;
     data: unknown;

package/lib/utils/errors.js

@@ -1,44 +1,25 @@
-'use strict';
-
-var get = require('lodash.get');
-var arbitraryObject = require('./arbitrary-object.js');
-
-function _interopDefault (e) { return e && e.__esModule ? e : { default: e }; }
-
-var get__default = /*#__PURE__*/_interopDefault(get);
+import { isArbitraryObject } from './arbitrary-object.js';
 
 const logtoErrorCodes = Object.freeze({
-    id_token: {
-        invalid_iat: 'Invalid issued at time in the ID token',
-        invalid_token: 'Invalid ID token',
-    },
-    callback_uri_verification: {
-        redirect_uri_mismatched: 'The callback URI mismatches the redirect URI.',
-        error_found: 'Error found in the callback URI',
-        missing_state: 'Missing state in the callback URI',
-        state_mismatched: 'State mismatched in the callback URI',
-        missing_code: 'Missing code in the callback URI',
-    },
+    'id_token.invalid_iat': 'Invalid issued at time in the ID token',
+    'id_token.invalid_token': 'Invalid ID token',
+    'callback_uri_verification.redirect_uri_mismatched': 'The callback URI mismatches the redirect URI.',
+    'callback_uri_verification.error_found': 'Error found in the callback URI',
+    'callback_uri_verification.missing_state': 'Missing state in the callback URI',
+    'callback_uri_verification.state_mismatched': 'State mismatched in the callback URI',
+    'callback_uri_verification.missing_code': 'Missing code in the callback URI',
     crypto_subtle_unavailable: 'Crypto.subtle is unavailable in insecure contexts (non-HTTPS).',
     unexpected_response_error: 'Unexpected response error from the server.',
 });
-const getMessageByErrorCode = (errorCode) => {
-    // eslint-disable-next-line @typescript-eslint/no-unsafe-assignment
-    const message = get__default.default(logtoErrorCodes, errorCode);
-    if (typeof message === 'string') {
-        return message;
-    }
-    return errorCode;
-};
 class LogtoError extends Error {
     constructor(code, data) {
-        super(getMessageByErrorCode(code));
+        super(logtoErrorCodes[code]);
         this.code = code;
         this.data = data;
     }
 }
 const isLogtoRequestError = (data) => {
-    if (!arbitraryObject.isArbitraryObject(data)) {
+    if (!isArbitraryObject(data)) {
         return false;
     }
     return typeof data.code === 'string' && typeof data.message === 'string';
@@ -56,7 +37,4 @@ class OidcError {
     }
 }
 
-exports.LogtoError = LogtoError;
-exports.LogtoRequestError = LogtoRequestError;
-exports.OidcError = OidcError;
-exports.isLogtoRequestError = isLogtoRequestError;
+export { LogtoError, LogtoRequestError, OidcError, isLogtoRequestError };

package/lib/utils/{id-token.mjs → id-token.cjs}

@@ -1,7 +1,9 @@
-import { urlSafeBase64 } from '@silverhand/essentials';
-import { jwtVerify } from 'jose';
-import { isArbitraryObject } from './arbitrary-object.mjs';
-import { LogtoError } from './errors.mjs';
+'use strict';
+
+var essentials = require('@silverhand/essentials');
+var jose = require('jose');
+var arbitraryObject = require('./arbitrary-object.cjs');
+var errors = require('./errors.cjs');
 
 const issuedAtTimeTolerance = 60;
 /* eslint-disable complexity */
@@ -9,7 +11,7 @@ const issuedAtTimeTolerance = 60;
  * @link [ID Token](https://openid.net/specs/openid-connect-core-1_0.html#IDToken)
  */
 function assertIdTokenClaims(data) {
-    if (!isArbitraryObject(data)) {
+    if (!arbitraryObject.isArbitraryObject(data)) {
         throw new TypeError('IdToken is expected to be an object');
     }
     for (const key of ['iss', 'sub', 'aud']) {
@@ -41,20 +43,21 @@ function assertIdTokenClaims(data) {
 }
 /* eslint-enable complexity */
 const verifyIdToken = async (idToken, clientId, issuer, jwks) => {
-    const result = await jwtVerify(idToken, jwks, { audience: clientId, issuer });
+    const result = await jose.jwtVerify(idToken, jwks, { audience: clientId, issuer });
     if (Math.abs((result.payload.iat ?? 0) - Date.now() / 1000) > issuedAtTimeTolerance) {
-        throw new LogtoError('id_token.invalid_iat');
+        throw new errors.LogtoError('id_token.invalid_iat');
     }
 };
 const decodeIdToken = (token) => {
     const { 1: encodedPayload } = token.split('.');
     if (!encodedPayload) {
-        throw new LogtoError('id_token.invalid_token');
+        throw new errors.LogtoError('id_token.invalid_token');
     }
-    const json = urlSafeBase64.decode(encodedPayload);
+    const json = essentials.urlSafeBase64.decode(encodedPayload);
     const idTokenClaims = JSON.parse(json);
     assertIdTokenClaims(idTokenClaims);
     return idTokenClaims;
 };
 
-export { decodeIdToken, verifyIdToken };
+exports.decodeIdToken = decodeIdToken;
+exports.verifyIdToken = verifyIdToken;

package/lib/utils/id-token.js

@@ -1,9 +1,7 @@
-'use strict';
-
-var essentials = require('@silverhand/essentials');
-var jose = require('jose');
-var arbitraryObject = require('./arbitrary-object.js');
-var errors = require('./errors.js');
+import { urlSafeBase64 } from '@silverhand/essentials';
+import { jwtVerify } from 'jose';
+import { isArbitraryObject } from './arbitrary-object.js';
+import { LogtoError } from './errors.js';
 
 const issuedAtTimeTolerance = 60;
 /* eslint-disable complexity */
@@ -11,7 +9,7 @@ const issuedAtTimeTolerance = 60;
  * @link [ID Token](https://openid.net/specs/openid-connect-core-1_0.html#IDToken)
  */
 function assertIdTokenClaims(data) {
-    if (!arbitraryObject.isArbitraryObject(data)) {
+    if (!isArbitraryObject(data)) {
         throw new TypeError('IdToken is expected to be an object');
     }
     for (const key of ['iss', 'sub', 'aud']) {
@@ -43,21 +41,20 @@ function assertIdTokenClaims(data) {
 }
 /* eslint-enable complexity */
 const verifyIdToken = async (idToken, clientId, issuer, jwks) => {
-    const result = await jose.jwtVerify(idToken, jwks, { audience: clientId, issuer });
+    const result = await jwtVerify(idToken, jwks, { audience: clientId, issuer });
     if (Math.abs((result.payload.iat ?? 0) - Date.now() / 1000) > issuedAtTimeTolerance) {
-        throw new errors.LogtoError('id_token.invalid_iat');
+        throw new LogtoError('id_token.invalid_iat');
     }
 };
 const decodeIdToken = (token) => {
     const { 1: encodedPayload } = token.split('.');
     if (!encodedPayload) {
-        throw new errors.LogtoError('id_token.invalid_token');
+        throw new LogtoError('id_token.invalid_token');
     }
-    const json = essentials.urlSafeBase64.decode(encodedPayload);
+    const json = urlSafeBase64.decode(encodedPayload);
     const idTokenClaims = JSON.parse(json);
     assertIdTokenClaims(idTokenClaims);
     return idTokenClaims;
 };
 
-exports.decodeIdToken = decodeIdToken;
-exports.verifyIdToken = verifyIdToken;
+export { decodeIdToken, verifyIdToken };

package/lib/utils/index.d.ts

@@ -1,5 +1,5 @@
-export * from './callback-uri';
-export * from './errors';
-export * from './id-token';
-export * from './scopes';
-export * from './arbitrary-object';
+export * from './callback-uri.js';
+export * from './errors.js';
+export * from './id-token.js';
+export * from './scopes.js';
+export * from './arbitrary-object.js';

package/lib/utils/scopes.cjs

@@ -0,0 +1,15 @@
+'use strict';
+
+var index = require('../consts/index.cjs');
+
+/**
+ * @param originalScopes
+ * @return scopes should contain all default scopes (`openid`, `offline_access` and `profile`)
+ */
+const withDefaultScopes = (originalScopes) => {
+    const reservedScopes = Object.values(index.ReservedScope);
+    const uniqueScopes = new Set([...reservedScopes, index.UserScope.Profile, ...(originalScopes ?? [])]);
+    return Array.from(uniqueScopes).join(' ');
+};
+
+exports.withDefaultScopes = withDefaultScopes;

package/lib/utils/scopes.js

@@ -1,15 +1,13 @@
-'use strict';
-
-var index = require('../consts/index.js');
+import { ReservedScope, UserScope } from '../consts/index.js';
 
 /**
  * @param originalScopes
  * @return scopes should contain all default scopes (`openid`, `offline_access` and `profile`)
  */
 const withDefaultScopes = (originalScopes) => {
-    const reservedScopes = Object.values(index.ReservedScope);
-    const uniqueScopes = new Set([...reservedScopes, index.UserScope.Profile, ...(originalScopes ?? [])]);
+    const reservedScopes = Object.values(ReservedScope);
+    const uniqueScopes = new Set([...reservedScopes, UserScope.Profile, ...(originalScopes ?? [])]);
     return Array.from(uniqueScopes).join(' ');
 };
 
-exports.withDefaultScopes = withDefaultScopes;
+export { withDefaultScopes };

package/package.json

@@ -1,14 +1,15 @@
 {
   "name": "@logto/js",
-  "version": "1.1.2",
-  "source": "./src/index.ts",
-  "main": "./lib/index.js",
+  "version": "2.0.1",
+  "type": "module",
+  "main": "./lib/index.cjs",
+  "module": "./lib/index.js",
+  "types": "./lib/index.d.ts",
   "exports": {
-    "require": "./lib/index.js",
-    "import": "./lib/index.mjs"
+    "types": "./lib/index.d.ts",
+    "require": "./lib/index.cjs",
+    "import": "./lib/index.js"
   },
-  "module": "./lib/index.mjs",
-  "types": "./lib/index.d.ts",
   "files": [
     "lib"
   ],
@@ -18,30 +19,17 @@
     "url": "https://github.com/logto-io/js.git",
     "directory": "packages/js"
   },
-  "scripts": {
-    "dev:tsc": "tsc -p tsconfig.build.json -w --preserveWatchOutput",
-    "precommit": "lint-staged",
-    "check": "tsc --noEmit",
-    "build": "rm -rf lib/ && tsc -p tsconfig.build.json --noEmit && rollup -c",
-    "lint": "eslint --ext .ts src",
-    "test": "jest",
-    "test:coverage": "jest --silent --env=jsdom && jest --silent",
-    "prepack": "pnpm test"
-  },
   "dependencies": {
-    "@silverhand/essentials": "^2.6.1",
+    "@silverhand/essentials": "^2.6.2",
     "camelcase-keys": "^7.0.1",
-    "jose": "^4.13.2",
-    "lodash.get": "^4.4.2"
+    "jose": "^4.13.2"
   },
   "devDependencies": {
-    "@jest/types": "^29.5.0",
-    "@silverhand/eslint-config": "^2.0.0",
-    "@silverhand/ts-config": "^1.0.0",
+    "@silverhand/eslint-config": "^3.0.1",
+    "@silverhand/ts-config": "^3.0.0",
     "@swc/core": "^1.3.50",
     "@swc/jest": "^0.2.24",
-    "@types/jest": "^29.5.0",
-    "@types/lodash.get": "^4.4.6",
+    "@types/jest": "^29.5.1",
     "@types/node": "^18.0.0",
     "eslint": "^8.38.0",
     "jest": "^29.5.0",
@@ -62,5 +50,13 @@
   "publishConfig": {
     "access": "public"
   },
-  "gitHead": "9e9a8b0887ef67baa7c3c564590bb06e7801d03e"
-}
+  "scripts": {
+    "dev:tsc": "tsc -p tsconfig.build.json -w --preserveWatchOutput",
+    "precommit": "lint-staged",
+    "check": "tsc --noEmit",
+    "build": "rm -rf lib/ && tsc -p tsconfig.build.json --noEmit && rollup -c",
+    "lint": "eslint --ext .ts src",
+    "test": "jest",
+    "test:coverage": "jest --silent --env=jsdom && jest --silent"
+  }
+}

package/lib/core/fetch-token.mjs

@@ -1,40 +0,0 @@
-import camelcaseKeys from 'camelcase-keys';
-import { QueryKey, TokenGrantType, ContentType } from '../consts/index.mjs';
-
-const fetchTokenByAuthorizationCode = async ({ clientId, tokenEndpoint, redirectUri, codeVerifier, code, resource, }, requester) => {
-    const parameters = new URLSearchParams();
-    parameters.append(QueryKey.ClientId, clientId);
-    parameters.append(QueryKey.Code, code);
-    parameters.append(QueryKey.CodeVerifier, codeVerifier);
-    parameters.append(QueryKey.RedirectUri, redirectUri);
-    parameters.append(QueryKey.GrantType, TokenGrantType.AuthorizationCode);
-    if (resource) {
-        parameters.append(QueryKey.Resource, resource);
-    }
-    const snakeCaseCodeTokenResponse = await requester(tokenEndpoint, {
-        method: 'POST',
-        headers: ContentType.formUrlEncoded,
-        body: parameters,
-    });
-    return camelcaseKeys(snakeCaseCodeTokenResponse);
-};
-const fetchTokenByRefreshToken = async ({ clientId, tokenEndpoint, refreshToken, resource, scopes }, requester) => {
-    const parameters = new URLSearchParams();
-    parameters.append(QueryKey.ClientId, clientId);
-    parameters.append(QueryKey.RefreshToken, refreshToken);
-    parameters.append(QueryKey.GrantType, TokenGrantType.RefreshToken);
-    if (resource) {
-        parameters.append(QueryKey.Resource, resource);
-    }
-    if (scopes?.length) {
-        parameters.append(QueryKey.Scope, scopes.join(' '));
-    }
-    const snakeCaseRefreshTokenTokenResponse = await requester(tokenEndpoint, {
-        method: 'POST',
-        headers: ContentType.formUrlEncoded,
-        body: parameters,
-    });
-    return camelcaseKeys(snakeCaseRefreshTokenTokenResponse);
-};
-
-export { fetchTokenByAuthorizationCode, fetchTokenByRefreshToken };

package/lib/core/oidc-config.mjs

@@ -1,6 +0,0 @@
-import camelcaseKeys from 'camelcase-keys';
-
-const discoveryPath = '/oidc/.well-known/openid-configuration';
-const fetchOidcConfig = async (endpoint, requester) => camelcaseKeys(await requester(endpoint));
-
-export { discoveryPath, fetchOidcConfig };

package/lib/core/revoke.mjs

@@ -1,12 +0,0 @@
-import { ContentType, QueryKey } from '../consts/index.mjs';
-
-const revoke = async (revocationEndpoint, clientId, token, requester) => requester(revocationEndpoint, {
-    method: 'POST',
-    headers: ContentType.formUrlEncoded,
-    body: new URLSearchParams({
-        [QueryKey.ClientId]: clientId,
-        [QueryKey.Token]: token,
-    }),
-});
-
-export { revoke };

package/lib/core/sign-in.mjs

@@ -1,30 +0,0 @@
-import { QueryKey, Prompt } from '../consts/index.mjs';
-import '@silverhand/essentials';
-import 'lodash.get';
-import 'jose';
-import { withDefaultScopes } from '../utils/scopes.mjs';
-
-const codeChallengeMethod = 'S256';
-const responseType = 'code';
-const generateSignInUri = ({ authorizationEndpoint, clientId, redirectUri, codeChallenge, state, scopes, resources, prompt, interactionMode, }) => {
-    const urlSearchParameters = new URLSearchParams({
-        [QueryKey.ClientId]: clientId,
-        [QueryKey.RedirectUri]: redirectUri,
-        [QueryKey.CodeChallenge]: codeChallenge,
-        [QueryKey.CodeChallengeMethod]: codeChallengeMethod,
-        [QueryKey.State]: state,
-        [QueryKey.ResponseType]: responseType,
-        [QueryKey.Prompt]: prompt ?? Prompt.Consent,
-        [QueryKey.Scope]: withDefaultScopes(scopes),
-    });
-    for (const resource of resources ?? []) {
-        urlSearchParameters.append(QueryKey.Resource, resource);
-    }
-    // Set interactionMode to signUp for a create account user experience
-    if (interactionMode) {
-        urlSearchParameters.append(QueryKey.InteractionMode, interactionMode);
-    }
-    return `${authorizationEndpoint}?${urlSearchParameters.toString()}`;
-};
-
-export { generateSignInUri };

package/lib/core/sign-out.mjs

@@ -1,11 +0,0 @@
-import { QueryKey } from '../consts/index.mjs';
-
-const generateSignOutUri = ({ endSessionEndpoint, clientId, postLogoutRedirectUri, }) => {
-    const urlSearchParameters = new URLSearchParams({ [QueryKey.ClientId]: clientId });
-    if (postLogoutRedirectUri) {
-        urlSearchParameters.append(QueryKey.PostLogoutRedirectUri, postLogoutRedirectUri);
-    }
-    return `${endSessionEndpoint}?${urlSearchParameters.toString()}`;
-};
-
-export { generateSignOutUri };

package/lib/index.mjs

@@ -1,12 +0,0 @@
-export { fetchTokenByAuthorizationCode, fetchTokenByRefreshToken } from './core/fetch-token.mjs';
-export { discoveryPath, fetchOidcConfig } from './core/oidc-config.mjs';
-export { revoke } from './core/revoke.mjs';
-export { generateSignInUri } from './core/sign-in.mjs';
-export { generateSignOutUri } from './core/sign-out.mjs';
-export { fetchUserInfo } from './core/user-info.mjs';
-export { parseUriParameters, verifyAndParseCodeFromCallbackUri } from './utils/callback-uri.mjs';
-export { LogtoError, LogtoRequestError, OidcError, isLogtoRequestError } from './utils/errors.mjs';
-export { decodeIdToken, verifyIdToken } from './utils/id-token.mjs';
-export { withDefaultScopes } from './utils/scopes.mjs';
-export { isArbitraryObject } from './utils/arbitrary-object.mjs';
-export { ContentType, Prompt, QueryKey, ReservedScope, TokenGrantType, UserScope } from './consts/index.mjs';

package/lib/utils/callback-uri.mjs

@@ -1,33 +0,0 @@
-import { conditional } from '@silverhand/essentials';
-import { QueryKey } from '../consts/index.mjs';
-import { LogtoError, OidcError } from './errors.mjs';
-
-const parseUriParameters = (uri) => {
-    const [, queryString = ''] = uri.split('?');
-    return new URLSearchParams(queryString);
-};
-const verifyAndParseCodeFromCallbackUri = (callbackUri, redirectUri, state) => {
-    if (!callbackUri.startsWith(redirectUri)) {
-        throw new LogtoError('callback_uri_verification.redirect_uri_mismatched');
-    }
-    const uriParameters = parseUriParameters(callbackUri);
-    const error = conditional(uriParameters.get(QueryKey.Error));
-    const errorDescription = conditional(uriParameters.get(QueryKey.ErrorDescription));
-    if (error) {
-        throw new LogtoError('callback_uri_verification.error_found', new OidcError(error, errorDescription));
-    }
-    const stateFromCallbackUri = uriParameters.get(QueryKey.State);
-    if (!stateFromCallbackUri) {
-        throw new LogtoError('callback_uri_verification.missing_state');
-    }
-    if (stateFromCallbackUri !== state) {
-        throw new LogtoError('callback_uri_verification.state_mismatched');
-    }
-    const code = uriParameters.get(QueryKey.Code);
-    if (!code) {
-        throw new LogtoError('callback_uri_verification.missing_code');
-    }
-    return code;
-};
-
-export { parseUriParameters, verifyAndParseCodeFromCallbackUri };