@marcelo-cheruti/jwtgcp-sdk 1.0.0

package/package.json

@@ -0,0 +1,19 @@
+{
+  "name": "@marcelo-cheruti/jwtgcp-sdk",
+  "version": "1.0.0",
+  "description": "",
+  "main": "src/authModule.js",
+  "files": [
+    "src/authModule.js"
+  ],  
+  "keywords": [],
+  "author": "Marcelo Cheruti Caetano",
+  "type": "module",
+  "dependencies": {
+    "axios": "^1.13.4",
+    "axios-retry": "^4.5.0",
+    "dotenv": "^17.2.3",
+    "jsonwebtoken": "^9.0.3",
+    "uuid": "^13.0.0"
+  }
+}

package/src/authModule.js

@@ -0,0 +1,126 @@
+import axios from "axios";
+import axiosRetry from "axios-retry";
+import jwt from "jsonwebtoken";
+import { v4 as uuidv4 } from "uuid";
+
+axiosRetry(axios, { retries: 3, retryDelay: axiosRetry.exponentialDelay });
+
+let GLOBAL_ACCESS_TOKEN = null;
+let _config = null;
+
+export function initAuth(config) {
+  const required = [
+    "clientId",
+    "clientSecret",
+    "apiKey",
+    "applicationId",
+    "companyId",
+    "userId",
+    "authorizeUrl",
+    "tokenUrl",
+  ];
+  const missing = required.filter((key) => !config[key]);
+
+  if (missing.length > 0) {
+    throw new Error(
+      `[Config Error] the rquired fields is missing ${missing.join(", ")}`,
+    );
+  }
+
+  _config = config;
+}
+
+export async function authFlow() {
+  if (!_config) {
+    throw new Error("[Config Error] the config is not initialized");
+  }
+
+  try {
+    const requestGuid = uuidv4();
+
+    // 1. Chamada para Authorize para obter o 'code'
+    const authRes = await axios.post(
+      _config.authorizeUrl,
+      {
+        clientId: _config.clientId,
+        clientSecret: _config.clientSecret,
+        grantType: "client_credentials",
+      },
+      {
+        headers: {
+          "X-Company-Id": _config.companyId,
+          "X-Application-Id": _config.applicationId,
+          "X-Trace-Id": requestGuid,
+          "X-User-Id": _config.userId,
+          "Content-Type": "application/json",
+        },
+        params: {
+          key: process.env.APIKEY,
+        },
+      },
+    );
+
+    const code = authRes.data.code;
+
+    // 2. Chamada para Token passando o 'code'
+    const tokenRes = await axios.post(
+      process.env.TOKEN_URL,
+      {
+        code: code,
+      },
+      {
+        headers: {
+          "X-Company-Id": _config.companyId,
+          "X-Application-Id": _config.applicationId,
+          "X-Trace-Id": requestGuid,
+          "X-User-Id": _config.userId,
+          "Content-Type": "application/json",
+        },
+        params: {
+          key: _config.apiKey,
+        },
+      },
+    );
+
+    const token = tokenRes.data.token;
+    return token;
+  } catch (error) {
+    console.error(
+      "Erro na autenticação:",
+      error.response?.data || error.message,
+    );
+  }
+}
+
+export async function getToken() {
+  if (!_config) {
+    throw new Error("[Config Error] the config is not initialized");
+  }
+
+  console.log("Valida token global");
+  if (GLOBAL_ACCESS_TOKEN) {
+    const decoded = jwt.decode(GLOBAL_ACCESS_TOKEN);
+
+    const now = Math.floor(Date.now() / 1000);
+
+    const hasExpValid = decoded.exp && decoded.exp > now;
+    //const hasIssValid = decoded.iss === process.env.JWT_ISSUER;
+    //const hasSubValid = decoded.sub === process.env.JWT_SUBJECT;
+    //const hasAudValid = decoded.aud === process.env.JWT_AUDIENCE;
+    //const hasCustomValid = decoded.minha_claim === "valor_esperado";
+
+    if (!hasExpValid) {
+      console.log("Claims inválidos ou token expirado.");
+      GLOBAL_ACCESS_TOKEN = await authFlow();
+      console.log("Novo token gerado e armazenado.");
+      return GLOBAL_ACCESS_TOKEN;
+    }
+
+    console.log("Usou o token do cache");
+    return GLOBAL_ACCESS_TOKEN;
+  } else {
+    GLOBAL_ACCESS_TOKEN = await authFlow();
+    console.log("Token inexistente, novo token gerado e armazenado.");
+    return GLOBAL_ACCESS_TOKEN;
+  }
+}