@marktoflow/core 2.0.0-alpha.9 → 2.0.2

package/dist/oauth-manager.d.ts

@@ -0,0 +1,128 @@
+/**
+ * OAuth Token Manager for marktoflow.
+ *
+ * Manages OAuth2 token lifecycle:
+ * - Stores token expiry alongside credentials
+ * - Intercepts 401 responses and refreshes tokens automatically
+ * - Saves refreshed tokens back to the credential store
+ * - Emits events for token refresh (for audit logging)
+ *
+ * Supports Google OAuth2, Microsoft (MSAL), and generic OAuth2 refresh flows.
+ */
+import { EventEmitter } from 'node:events';
+import type { CredentialManager } from './credentials.js';
+/** Configuration for a service's OAuth2 refresh flow. */
+export interface OAuthServiceConfig {
+    clientId: string;
+    clientSecret: string;
+    refreshToken: string;
+    tokenEndpoint: string;
+    /** Additional parameters to include in the refresh request body. */
+    extraParams?: Record<string, string> | undefined;
+    /** Scope to request when refreshing (some providers require it). */
+    scope?: string | undefined;
+}
+/** Token data as stored/returned by the manager. */
+export interface OAuthTokenData {
+    accessToken: string;
+    refreshToken: string;
+    expiresAt: number;
+    tokenType?: string | undefined;
+    scope?: string | undefined;
+}
+/** Events emitted by OAuthTokenManager. */
+export interface OAuthTokenManagerEvents {
+    token_refreshed: [serviceName: string, tokenData: OAuthTokenData];
+    token_refresh_failed: [serviceName: string, error: Error];
+}
+export declare class OAuthTokenManager extends EventEmitter {
+    private serviceConfigs;
+    private credentialManager;
+    /** Track in-flight refresh promises to avoid concurrent refreshes for the same service. */
+    private refreshLocks;
+    constructor(credentialManager: CredentialManager);
+    emit<K extends keyof OAuthTokenManagerEvents>(event: K, ...args: OAuthTokenManagerEvents[K]): boolean;
+    on<K extends keyof OAuthTokenManagerEvents>(event: K, listener: (...args: OAuthTokenManagerEvents[K]) => void): this;
+    once<K extends keyof OAuthTokenManagerEvents>(event: K, listener: (...args: OAuthTokenManagerEvents[K]) => void): this;
+    /**
+     * Register OAuth2 configuration for a service.
+     */
+    registerService(serviceName: string, config: OAuthServiceConfig): void;
+    /**
+     * Register a Google OAuth2 service using standard Google token endpoint.
+     */
+    registerGoogleService(serviceName: string, config: Omit<OAuthServiceConfig, 'tokenEndpoint'>): void;
+    /**
+     * Register a Microsoft (MSAL) OAuth2 service.
+     * Optionally provide a tenant ID; defaults to "common".
+     */
+    registerMicrosoftService(serviceName: string, config: Omit<OAuthServiceConfig, 'tokenEndpoint'> & {
+        tenantId?: string | undefined;
+    }): void;
+    /**
+     * Remove a registered service configuration.
+     */
+    unregisterService(serviceName: string): boolean;
+    /**
+     * Get the configuration for a registered service.
+     */
+    getServiceConfig(serviceName: string): OAuthServiceConfig | undefined;
+    /**
+     * List all registered service names.
+     */
+    listServices(): string[];
+    /**
+     * Save token data for a service into the credential store.
+     */
+    saveToken(serviceName: string, tokenData: OAuthTokenData): void;
+    /**
+     * Load token data for a service from the credential store.
+     * Returns null if not found.
+     */
+    loadToken(serviceName: string): OAuthTokenData | null;
+    /**
+     * Check whether the token is expired (or close to expiry) and refresh if needed.
+     * Returns the current token data if still valid, or a refreshed token.
+     */
+    refreshIfNeeded(serviceName: string, tokenData: OAuthTokenData): Promise<OAuthTokenData>;
+    /**
+     * Handle an authentication error (e.g., 401 response).
+     * If the error looks like a 401/auth error, attempt a token refresh.
+     * Returns refreshed token data on success, or re-throws on failure.
+     */
+    handleAuthError(serviceName: string, tokenData: OAuthTokenData, error: unknown): Promise<OAuthTokenData>;
+    /**
+     * Force a token refresh regardless of expiry status.
+     */
+    forceRefresh(serviceName: string, tokenData: OAuthTokenData): Promise<OAuthTokenData>;
+    /**
+     * Check whether a token is expired or will expire within the buffer window.
+     */
+    isExpiredOrExpiring(tokenData: OAuthTokenData): boolean;
+    private credentialName;
+    /**
+     * Determine if an error represents an HTTP 401 / auth failure.
+     */
+    private isAuthError;
+    /**
+     * Perform the actual token refresh. Uses a lock to prevent concurrent
+     * refreshes for the same service.
+     */
+    private doRefresh;
+    /**
+     * Execute the HTTP call to the token endpoint.
+     */
+    private executeRefresh;
+}
+/**
+ * Create an OAuthTokenManager wired to the given CredentialManager.
+ */
+export declare function createOAuthTokenManager(credentialManager: CredentialManager): OAuthTokenManager;
+/**
+ * Well-known token endpoints for convenience.
+ */
+export declare const TOKEN_ENDPOINTS: {
+    readonly google: "https://oauth2.googleapis.com/token";
+    readonly microsoft: "https://login.microsoftonline.com/common/oauth2/v2.0/token";
+};
+//# sourceMappingURL=oauth-manager.d.ts.map

package/dist/oauth-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-manager.d.ts","sourceRoot":"","sources":["../src/oauth-manager.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAC3C,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,kBAAkB,CAAC;AAK1D,yDAAyD;AACzD,MAAM,WAAW,kBAAkB;IACjC,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,aAAa,EAAE,MAAM,CAAC;IACtB,oEAAoE;IACpE,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,SAAS,CAAC;IACjD,oEAAoE;IACpE,KAAK,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;CAC5B;AAED,oDAAoD;AACpD,MAAM,WAAW,cAAc;IAC7B,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC/B,KAAK,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;CAC5B;AAWD,2CAA2C;AAC3C,MAAM,WAAW,uBAAuB;IACtC,eAAe,EAAE,CAAC,WAAW,EAAE,MAAM,EAAE,SAAS,EAAE,cAAc,CAAC,CAAC;IAClE,oBAAoB,EAAE,CAAC,WAAW,EAAE,MAAM,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;CAC3D;AAaD,qBAAa,iBAAkB,SAAQ,YAAY;IACjD,OAAO,CAAC,cAAc,CAAyC;IAC/D,OAAO,CAAC,iBAAiB,CAAoB;IAC7C,2FAA2F;IAC3F,OAAO,CAAC,YAAY,CAA8C;gBAEtD,iBAAiB,EAAE,iBAAiB;IAOvC,IAAI,CAAC,CAAC,SAAS,MAAM,uBAAuB,EACnD,KAAK,EAAE,CAAC,EACR,GAAG,IAAI,EAAE,uBAAuB,CAAC,CAAC,CAAC,GAClC,OAAO;IAID,EAAE,CAAC,CAAC,SAAS,MAAM,uBAAuB,EACjD,KAAK,EAAE,CAAC,EACR,QAAQ,EAAE,CAAC,GAAG,IAAI,EAAE,uBAAuB,CAAC,CAAC,CAAC,KAAK,IAAI,GACtD,IAAI;IAIE,IAAI,CAAC,CAAC,SAAS,MAAM,uBAAuB,EACnD,KAAK,EAAE,CAAC,EACR,QAAQ,EAAE,CAAC,GAAG,IAAI,EAAE,uBAAuB,CAAC,CAAC,CAAC,KAAK,IAAI,GACtD,IAAI;IAMP;;OAEG;IACH,eAAe,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,kBAAkB,GAAG,IAAI;IAItE;;OAEG;IACH,qBAAqB,CACnB,WAAW,EAAE,MAAM,EACnB,MAAM,EAAE,IAAI,CAAC,kBAAkB,EAAE,eAAe,CAAC,GAChD,IAAI;IAOP;;;OAGG;IACH,wBAAwB,CACtB,WAAW,EAAE,MAAM,EACnB,MAAM,EAAE,IAAI,CAAC,kBAAkB,EAAE,eAAe,CAAC,GAAG;QAClD,QAAQ,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;KAC/B,GACA,IAAI;IAUP;;OAEG;IACH,iBAAiB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO;IAI/C;;OAEG;IACH,gBAAgB,CAAC,WAAW,EAAE,MAAM,GAAG,kBAAkB,GAAG,SAAS;IAIrE;;OAEG;IACH,YAAY,IAAI,MAAM,EAAE;IAMxB;;OAEG;IACH,SAAS,CAAC,WAAW,EAAE,MAAM,EAAE,SAAS,EAAE,cAAc,GAAG,IAAI;IAiB/D;;;OAGG;IACH,SAAS,CAAC,WAAW,EAAE,MAAM,GAAG,cAAc,GAAG,IAAI;IAerD;;;OAGG;IACG,eAAe,CACnB,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,cAAc,GACxB,OAAO,CAAC,cAAc,CAAC;IAO1B;;;;OAIG;IACG,eAAe,CACnB,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,cAAc,EACzB,KAAK,EAAE,OAAO,GACb,OAAO,CAAC,cAAc,CAAC;IAO1B;;OAEG;IACG,YAAY,CAChB,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,cAAc,GACxB,OAAO,CAAC,cAAc,CAAC;IAI1B;;OAEG;IACH,mBAAmB,CAAC,SAAS,EAAE,cAAc,GAAG,OAAO;IAMvD,OAAO,CAAC,cAAc;IAItB;;OAEG;IACH,OAAO,CAAC,WAAW;IA8BnB;;;OAGG;YACW,SAAS;IAqBvB;;OAEG;YACW,cAAc;CAiF7B;AAID;;GAEG;AACH,wBAAgB,uBAAuB,CACrC,iBAAiB,EAAE,iBAAiB,GACnC,iBAAiB,CAEnB;AAED;;GAEG;AACH,eAAO,MAAM,eAAe;;;CAGlB,CAAC"}

package/dist/oauth-manager.js

@@ -0,0 +1,291 @@
+/**
+ * OAuth Token Manager for marktoflow.
+ *
+ * Manages OAuth2 token lifecycle:
+ * - Stores token expiry alongside credentials
+ * - Intercepts 401 responses and refreshes tokens automatically
+ * - Saves refreshed tokens back to the credential store
+ * - Emits events for token refresh (for audit logging)
+ *
+ * Supports Google OAuth2, Microsoft (MSAL), and generic OAuth2 refresh flows.
+ */
+import { EventEmitter } from 'node:events';
+import { CredentialType } from './credentials.js';
+// ── Well-known token endpoints ──────────────────────────────────────────────
+const GOOGLE_TOKEN_ENDPOINT = 'https://oauth2.googleapis.com/token';
+const MICROSOFT_TOKEN_ENDPOINT = 'https://login.microsoftonline.com/common/oauth2/v2.0/token';
+// ── Pre-expiry buffer (refresh 5 minutes before actual expiry) ──────────────
+const TOKEN_EXPIRY_BUFFER_MS = 5 * 60 * 1000;
+// ── OAuthTokenManager ───────────────────────────────────────────────────────
+export class OAuthTokenManager extends EventEmitter {
+    serviceConfigs = new Map();
+    credentialManager;
+    /** Track in-flight refresh promises to avoid concurrent refreshes for the same service. */
+    refreshLocks = new Map();
+    constructor(credentialManager) {
+        super();
+        this.credentialManager = credentialManager;
+    }
+    // ── typed emit / on helpers ─────────────────────────────────────────────
+    emit(event, ...args) {
+        return super.emit(event, ...args);
+    }
+    on(event, listener) {
+        return super.on(event, listener);
+    }
+    once(event, listener) {
+        return super.once(event, listener);
+    }
+    // ── Configuration ───────────────────────────────────────────────────────
+    /**
+     * Register OAuth2 configuration for a service.
+     */
+    registerService(serviceName, config) {
+        this.serviceConfigs.set(serviceName, config);
+    }
+    /**
+     * Register a Google OAuth2 service using standard Google token endpoint.
+     */
+    registerGoogleService(serviceName, config) {
+        this.registerService(serviceName, {
+            ...config,
+            tokenEndpoint: GOOGLE_TOKEN_ENDPOINT,
+        });
+    }
+    /**
+     * Register a Microsoft (MSAL) OAuth2 service.
+     * Optionally provide a tenant ID; defaults to "common".
+     */
+    registerMicrosoftService(serviceName, config) {
+        const tenant = config.tenantId ?? 'common';
+        const endpoint = `https://login.microsoftonline.com/${tenant}/oauth2/v2.0/token`;
+        const { tenantId: _unused, ...rest } = config;
+        this.registerService(serviceName, {
+            ...rest,
+            tokenEndpoint: endpoint,
+        });
+    }
+    /**
+     * Remove a registered service configuration.
+     */
+    unregisterService(serviceName) {
+        return this.serviceConfigs.delete(serviceName);
+    }
+    /**
+     * Get the configuration for a registered service.
+     */
+    getServiceConfig(serviceName) {
+        return this.serviceConfigs.get(serviceName);
+    }
+    /**
+     * List all registered service names.
+     */
+    listServices() {
+        return Array.from(this.serviceConfigs.keys());
+    }
+    // ── Token persistence helpers ───────────────────────────────────────────
+    /**
+     * Save token data for a service into the credential store.
+     */
+    saveToken(serviceName, tokenData) {
+        const credName = this.credentialName(serviceName);
+        this.credentialManager.set({
+            name: credName,
+            value: JSON.stringify(tokenData),
+            credentialType: CredentialType.OAUTH_TOKEN,
+            description: `OAuth2 token for ${serviceName}`,
+            metadata: {
+                serviceName,
+                expiresAt: tokenData.expiresAt,
+                tokenType: tokenData.tokenType ?? 'Bearer',
+            },
+            expiresAt: new Date(tokenData.expiresAt),
+            tags: ['oauth', serviceName],
+        });
+    }
+    /**
+     * Load token data for a service from the credential store.
+     * Returns null if not found.
+     */
+    loadToken(serviceName) {
+        const credName = this.credentialName(serviceName);
+        if (!this.credentialManager.exists(credName)) {
+            return null;
+        }
+        try {
+            const raw = this.credentialManager.get(credName, true);
+            return JSON.parse(raw);
+        }
+        catch {
+            return null;
+        }
+    }
+    // ── Core methods ────────────────────────────────────────────────────────
+    /**
+     * Check whether the token is expired (or close to expiry) and refresh if needed.
+     * Returns the current token data if still valid, or a refreshed token.
+     */
+    async refreshIfNeeded(serviceName, tokenData) {
+        if (!this.isExpiredOrExpiring(tokenData)) {
+            return tokenData;
+        }
+        return this.doRefresh(serviceName, tokenData);
+    }
+    /**
+     * Handle an authentication error (e.g., 401 response).
+     * If the error looks like a 401/auth error, attempt a token refresh.
+     * Returns refreshed token data on success, or re-throws on failure.
+     */
+    async handleAuthError(serviceName, tokenData, error) {
+        if (!this.isAuthError(error)) {
+            throw error;
+        }
+        return this.doRefresh(serviceName, tokenData);
+    }
+    /**
+     * Force a token refresh regardless of expiry status.
+     */
+    async forceRefresh(serviceName, tokenData) {
+        return this.doRefresh(serviceName, tokenData);
+    }
+    /**
+     * Check whether a token is expired or will expire within the buffer window.
+     */
+    isExpiredOrExpiring(tokenData) {
+        return Date.now() >= tokenData.expiresAt - TOKEN_EXPIRY_BUFFER_MS;
+    }
+    // ── Private helpers ─────────────────────────────────────────────────────
+    credentialName(serviceName) {
+        return `oauth:${serviceName}`;
+    }
+    /**
+     * Determine if an error represents an HTTP 401 / auth failure.
+     */
+    isAuthError(error) {
+        if (error == null)
+            return false;
+        // Check for status / statusCode properties
+        if (typeof error === 'object') {
+            const obj = error;
+            if (obj['status'] === 401 || obj['statusCode'] === 401)
+                return true;
+            if (typeof obj['code'] === 'string' && obj['code'] === 'UNAUTHENTICATED')
+                return true;
+            // Nested response.status pattern (e.g. Axios errors)
+            if (typeof obj['response'] === 'object' &&
+                obj['response'] !== null &&
+                obj['response']['status'] === 401) {
+                return true;
+            }
+        }
+        // Check message string
+        if (error instanceof Error) {
+            const msg = error.message.toLowerCase();
+            if (msg.includes('401') || msg.includes('unauthorized') || msg.includes('unauthenticated')) {
+                return true;
+            }
+        }
+        return false;
+    }
+    /**
+     * Perform the actual token refresh. Uses a lock to prevent concurrent
+     * refreshes for the same service.
+     */
+    async doRefresh(serviceName, tokenData) {
+        // If there is already an in-flight refresh for this service, wait for it.
+        const existing = this.refreshLocks.get(serviceName);
+        if (existing) {
+            return existing;
+        }
+        const refreshPromise = this.executeRefresh(serviceName, tokenData);
+        this.refreshLocks.set(serviceName, refreshPromise);
+        try {
+            const result = await refreshPromise;
+            return result;
+        }
+        finally {
+            this.refreshLocks.delete(serviceName);
+        }
+    }
+    /**
+     * Execute the HTTP call to the token endpoint.
+     */
+    async executeRefresh(serviceName, tokenData) {
+        const config = this.serviceConfigs.get(serviceName);
+        if (!config) {
+            const err = new Error(`No OAuth configuration registered for service "${serviceName}"`);
+            this.emit('token_refresh_failed', serviceName, err);
+            throw err;
+        }
+        // Use the stored config's refreshToken as fallback
+        const refreshToken = tokenData.refreshToken || config.refreshToken;
+        // Build the form body
+        const params = new URLSearchParams({
+            grant_type: 'refresh_token',
+            client_id: config.clientId,
+            client_secret: config.clientSecret,
+            refresh_token: refreshToken,
+        });
+        if (config.scope) {
+            params.set('scope', config.scope);
+        }
+        if (config.extraParams) {
+            for (const [key, value] of Object.entries(config.extraParams)) {
+                params.set(key, value);
+            }
+        }
+        try {
+            const response = await fetch(config.tokenEndpoint, {
+                method: 'POST',
+                headers: {
+                    'Content-Type': 'application/x-www-form-urlencoded',
+                    Accept: 'application/json',
+                },
+                body: params.toString(),
+            });
+            if (!response.ok) {
+                const body = await response.text();
+                throw new Error(`Token refresh failed for "${serviceName}": HTTP ${response.status} - ${body}`);
+            }
+            const data = (await response.json());
+            const newTokenData = {
+                accessToken: data.access_token,
+                // Some providers rotate refresh tokens; use the new one if provided.
+                refreshToken: data.refresh_token ?? refreshToken,
+                expiresAt: Date.now() + data.expires_in * 1000,
+                tokenType: data.token_type ?? tokenData.tokenType,
+                scope: data.scope ?? tokenData.scope,
+            };
+            // Persist to credential store
+            this.saveToken(serviceName, newTokenData);
+            // Also update the service config's refresh token if it was rotated.
+            if (data.refresh_token && data.refresh_token !== config.refreshToken) {
+                config.refreshToken = data.refresh_token;
+            }
+            this.emit('token_refreshed', serviceName, newTokenData);
+            return newTokenData;
+        }
+        catch (error) {
+            const wrappedError = error instanceof Error
+                ? error
+                : new Error(`Token refresh failed: ${String(error)}`);
+            this.emit('token_refresh_failed', serviceName, wrappedError);
+            throw wrappedError;
+        }
+    }
+}
+// ── Factory helpers ─────────────────────────────────────────────────────────
+/**
+ * Create an OAuthTokenManager wired to the given CredentialManager.
+ */
+export function createOAuthTokenManager(credentialManager) {
+    return new OAuthTokenManager(credentialManager);
+}
+/**
+ * Well-known token endpoints for convenience.
+ */
+export const TOKEN_ENDPOINTS = {
+    google: GOOGLE_TOKEN_ENDPOINT,
+    microsoft: MICROSOFT_TOKEN_ENDPOINT,
+};
+//# sourceMappingURL=oauth-manager.js.map

package/dist/oauth-manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-manager.js","sourceRoot":"","sources":["../src/oauth-manager.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAE3C,OAAO,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAwClD,+EAA+E;AAE/E,MAAM,qBAAqB,GAAG,qCAAqC,CAAC;AACpE,MAAM,wBAAwB,GAC5B,4DAA4D,CAAC;AAE/D,+EAA+E;AAC/E,MAAM,sBAAsB,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;AAE7C,+EAA+E;AAE/E,MAAM,OAAO,iBAAkB,SAAQ,YAAY;IACzC,cAAc,GAAG,IAAI,GAAG,EAA8B,CAAC;IACvD,iBAAiB,CAAoB;IAC7C,2FAA2F;IACnF,YAAY,GAAG,IAAI,GAAG,EAAmC,CAAC;IAElE,YAAY,iBAAoC;QAC9C,KAAK,EAAE,CAAC;QACR,IAAI,CAAC,iBAAiB,GAAG,iBAAiB,CAAC;IAC7C,CAAC;IAED,2EAA2E;IAElE,IAAI,CACX,KAAQ,EACR,GAAG,IAAgC;QAEnC,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,EAAE,GAAG,IAAI,CAAC,CAAC;IACpC,CAAC;IAEQ,EAAE,CACT,KAAQ,EACR,QAAuD;QAEvD,OAAO,KAAK,CAAC,EAAE,CAAC,KAAK,EAAE,QAAwC,CAAC,CAAC;IACnE,CAAC;IAEQ,IAAI,CACX,KAAQ,EACR,QAAuD;QAEvD,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,EAAE,QAAwC,CAAC,CAAC;IACrE,CAAC;IAED,2EAA2E;IAE3E;;OAEG;IACH,eAAe,CAAC,WAAmB,EAAE,MAA0B;QAC7D,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;IAC/C,CAAC;IAED;;OAEG;IACH,qBAAqB,CACnB,WAAmB,EACnB,MAAiD;QAEjD,IAAI,CAAC,eAAe,CAAC,WAAW,EAAE;YAChC,GAAG,MAAM;YACT,aAAa,EAAE,qBAAqB;SACrC,CAAC,CAAC;IACL,CAAC;IAED;;;OAGG;IACH,wBAAwB,CACtB,WAAmB,EACnB,MAEC;QAED,MAAM,MAAM,GAAG,MAAM,CAAC,QAAQ,IAAI,QAAQ,CAAC;QAC3C,MAAM,QAAQ,GAAG,qCAAqC,MAAM,oBAAoB,CAAC;QACjF,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,GAAG,IAAI,EAAE,GAAG,MAAM,CAAC;QAC9C,IAAI,CAAC,eAAe,CAAC,WAAW,EAAE;YAChC,GAAG,IAAI;YACP,aAAa,EAAE,QAAQ;SACxB,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,WAAmB;QACnC,OAAO,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IACjD,CAAC;IAED;;OAEG;IACH,gBAAgB,CAAC,WAAmB;QAClC,OAAO,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IAC9C,CAAC;IAED;;OAEG;IACH,YAAY;QACV,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC,CAAC;IAChD,CAAC;IAED,2EAA2E;IAE3E;;OAEG;IACH,SAAS,CAAC,WAAmB,EAAE,SAAyB;QACtD,MAAM,QAAQ,GAAG,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC;QAClD,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC;YACzB,IAAI,EAAE,QAAQ;YACd,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC;YAChC,cAAc,EAAE,cAAc,CAAC,WAAW;YAC1C,WAAW,EAAE,oBAAoB,WAAW,EAAE;YAC9C,QAAQ,EAAE;gBACR,WAAW;gBACX,SAAS,EAAE,SAAS,CAAC,SAAS;gBAC9B,SAAS,EAAE,SAAS,CAAC,SAAS,IAAI,QAAQ;aAC3C;YACD,SAAS,EAAE,IAAI,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC;YACxC,IAAI,EAAE,CAAC,OAAO,EAAE,WAAW,CAAC;SAC7B,CAAC,CAAC;IACL,CAAC;IAED;;;OAGG;IACH,SAAS,CAAC,WAAmB;QAC3B,MAAM,QAAQ,GAAG,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC;QAClD,IAAI,CAAC,IAAI,CAAC,iBAAiB,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC7C,OAAO,IAAI,CAAC;QACd,CAAC;QACD,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;YACvD,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAmB,CAAC;QAC3C,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,2EAA2E;IAE3E;;;OAGG;IACH,KAAK,CAAC,eAAe,CACnB,WAAmB,EACnB,SAAyB;QAEzB,IAAI,CAAC,IAAI,CAAC,mBAAmB,CAAC,SAAS,CAAC,EAAE,CAAC;YACzC,OAAO,SAAS,CAAC;QACnB,CAAC;QACD,OAAO,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;IAChD,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,eAAe,CACnB,WAAmB,EACnB,SAAyB,EACzB,KAAc;QAEd,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,EAAE,CAAC;YAC7B,MAAM,KAAK,CAAC;QACd,CAAC;QACD,OAAO,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY,CAChB,WAAmB,EACnB,SAAyB;QAEzB,OAAO,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,mBAAmB,CAAC,SAAyB;QAC3C,OAAO,IAAI,CAAC,GAAG,EAAE,IAAI,SAAS,CAAC,SAAS,GAAG,sBAAsB,CAAC;IACpE,CAAC;IAED,2EAA2E;IAEnE,cAAc,CAAC,WAAmB;QACxC,OAAO,SAAS,WAAW,EAAE,CAAC;IAChC,CAAC;IAED;;OAEG;IACK,WAAW,CAAC,KAAc;QAChC,IAAI,KAAK,IAAI,IAAI;YAAE,OAAO,KAAK,CAAC;QAEhC,2CAA2C;QAC3C,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,MAAM,GAAG,GAAG,KAAgC,CAAC;YAC7C,IAAI,GAAG,CAAC,QAAQ,CAAC,KAAK,GAAG,IAAI,GAAG,CAAC,YAAY,CAAC,KAAK,GAAG;gBAAE,OAAO,IAAI,CAAC;YACpE,IAAI,OAAO,GAAG,CAAC,MAAM,CAAC,KAAK,QAAQ,IAAI,GAAG,CAAC,MAAM,CAAC,KAAK,iBAAiB;gBACtE,OAAO,IAAI,CAAC;YACd,qDAAqD;YACrD,IACE,OAAO,GAAG,CAAC,UAAU,CAAC,KAAK,QAAQ;gBACnC,GAAG,CAAC,UAAU,CAAC,KAAK,IAAI;gBACvB,GAAG,CAAC,UAAU,CAA6B,CAAC,QAAQ,CAAC,KAAK,GAAG,EAC9D,CAAC;gBACD,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAED,uBAAuB;QACvB,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;YAC3B,MAAM,GAAG,GAAG,KAAK,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;YACxC,IAAI,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,cAAc,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,iBAAiB,CAAC,EAAE,CAAC;gBAC3F,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,SAAS,CACrB,WAAmB,EACnB,SAAyB;QAEzB,0EAA0E;QAC1E,MAAM,QAAQ,GAAG,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;QACpD,IAAI,QAAQ,EAAE,CAAC;YACb,OAAO,QAAQ,CAAC;QAClB,CAAC;QAED,MAAM,cAAc,GAAG,IAAI,CAAC,cAAc,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;QACnE,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;QAEnD,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC;YACpC,OAAO,MAAM,CAAC;QAChB,CAAC;gBAAS,CAAC;YACT,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,cAAc,CAC1B,WAAmB,EACnB,SAAyB;QAEzB,MAAM,MAAM,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;QACpD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,GAAG,GAAG,IAAI,KAAK,CACnB,kDAAkD,WAAW,GAAG,CACjE,CAAC;YACF,IAAI,CAAC,IAAI,CAAC,sBAAsB,EAAE,WAAW,EAAE,GAAG,CAAC,CAAC;YACpD,MAAM,GAAG,CAAC;QACZ,CAAC;QAED,mDAAmD;QACnD,MAAM,YAAY,GAAG,SAAS,CAAC,YAAY,IAAI,MAAM,CAAC,YAAY,CAAC;QAEnE,sBAAsB;QACtB,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;YACjC,UAAU,EAAE,eAAe;YAC3B,SAAS,EAAE,MAAM,CAAC,QAAQ;YAC1B,aAAa,EAAE,MAAM,CAAC,YAAY;YAClC,aAAa,EAAE,YAAY;SAC5B,CAAC,CAAC;QAEH,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;YACjB,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC;QACpC,CAAC;QAED,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;YACvB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC;gBAC9D,MAAM,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;YACzB,CAAC;QACH,CAAC;QAED,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,MAAM,CAAC,aAAa,EAAE;gBACjD,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,mCAAmC;oBACnD,MAAM,EAAE,kBAAkB;iBAC3B;gBACD,IAAI,EAAE,MAAM,CAAC,QAAQ,EAAE;aACxB,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;gBACnC,MAAM,IAAI,KAAK,CACb,6BAA6B,WAAW,WAAW,QAAQ,CAAC,MAAM,MAAM,IAAI,EAAE,CAC/E,CAAC;YACJ,CAAC;YAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA0B,CAAC;YAE9D,MAAM,YAAY,GAAmB;gBACnC,WAAW,EAAE,IAAI,CAAC,YAAY;gBAC9B,qEAAqE;gBACrE,YAAY,EAAE,IAAI,CAAC,aAAa,IAAI,YAAY;gBAChD,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,UAAU,GAAG,IAAI;gBAC9C,SAAS,EAAE,IAAI,CAAC,UAAU,IAAI,SAAS,CAAC,SAAS;gBACjD,KAAK,EAAE,IAAI,CAAC,KAAK,IAAI,SAAS,CAAC,KAAK;aACrC,CAAC;YAEF,8BAA8B;YAC9B,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,YAAY,CAAC,CAAC;YAE1C,oEAAoE;YACpE,IAAI,IAAI,CAAC,aAAa,IAAI,IAAI,CAAC,aAAa,KAAK,MAAM,CAAC,YAAY,EAAE,CAAC;gBACrE,MAAM,CAAC,YAAY,GAAG,IAAI,CAAC,aAAa,CAAC;YAC3C,CAAC;YAED,IAAI,CAAC,IAAI,CAAC,iBAAiB,EAAE,WAAW,EAAE,YAAY,CAAC,CAAC;YACxD,OAAO,YAAY,CAAC;QACtB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAChB,KAAK,YAAY,KAAK;gBACpB,CAAC,CAAC,KAAK;gBACP,CAAC,CAAC,IAAI,KAAK,CAAC,yBAAyB,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAC1D,IAAI,CAAC,IAAI,CAAC,sBAAsB,EAAE,WAAW,EAAE,YAAY,CAAC,CAAC;YAC7D,MAAM,YAAY,CAAC;QACrB,CAAC;IACH,CAAC;CACF;AAED,+EAA+E;AAE/E;;GAEG;AACH,MAAM,UAAU,uBAAuB,CACrC,iBAAoC;IAEpC,OAAO,IAAI,iBAAiB,CAAC,iBAAiB,CAAC,CAAC;AAClD,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG;IAC7B,MAAM,EAAE,qBAAqB;IAC7B,SAAS,EAAE,wBAAwB;CAC3B,CAAC"}

package/dist/oauth-refresh.d.ts

@@ -0,0 +1,37 @@
+/**
+ * OAuth Token Refresh Utilities
+ *
+ * Provides automatic token refresh for OAuth2 providers.
+ */
+export interface OAuthTokens {
+    accessToken: string;
+    refreshToken?: string;
+    expiresIn?: number;
+    tokenType?: string;
+}
+export interface GoogleOAuthRefreshResponse {
+    access_token: string;
+    expires_in: number;
+    scope?: string;
+    token_type: string;
+}
+export interface MicrosoftOAuthRefreshResponse {
+    access_token: string;
+    expires_in: number;
+    ext_expires_in?: number;
+    token_type: string;
+    scope?: string;
+}
+/**
+ * Refresh Google OAuth2 access token using refresh token
+ */
+export declare function refreshGoogleToken(clientId: string, clientSecret: string, refreshToken: string): Promise<OAuthTokens>;
+/**
+ * Refresh Microsoft Graph OAuth2 access token using refresh token
+ */
+export declare function refreshMicrosoftToken(clientId: string, clientSecret: string, refreshToken: string, tenantId?: string): Promise<OAuthTokens>;
+/**
+ * Generic OAuth2 token refresh
+ */
+export declare function refreshOAuthToken(provider: 'google' | 'microsoft', clientId: string, clientSecret: string, refreshToken: string, tenantId?: string): Promise<OAuthTokens>;
+//# sourceMappingURL=oauth-refresh.d.ts.map

package/dist/oauth-refresh.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-refresh.d.ts","sourceRoot":"","sources":["../src/oauth-refresh.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,MAAM,WAAW,WAAW;IAC1B,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,0BAA0B;IACzC,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,6BAA6B;IAC5C,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED;;GAEG;AACH,wBAAsB,kBAAkB,CACtC,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,EACpB,YAAY,EAAE,MAAM,GACnB,OAAO,CAAC,WAAW,CAAC,CA2BtB;AAED;;GAEG;AACH,wBAAsB,qBAAqB,CACzC,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,EACpB,YAAY,EAAE,MAAM,EACpB,QAAQ,GAAE,MAAiB,GAC1B,OAAO,CAAC,WAAW,CAAC,CA4BtB;AAED;;GAEG;AACH,wBAAsB,iBAAiB,CACrC,QAAQ,EAAE,QAAQ,GAAG,WAAW,EAChC,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,EACpB,YAAY,EAAE,MAAM,EACpB,QAAQ,CAAC,EAAE,MAAM,GAChB,OAAO,CAAC,WAAW,CAAC,CAStB"}

package/dist/oauth-refresh.js

@@ -0,0 +1,76 @@
+/**
+ * OAuth Token Refresh Utilities
+ *
+ * Provides automatic token refresh for OAuth2 providers.
+ */
+/**
+ * Refresh Google OAuth2 access token using refresh token
+ */
+export async function refreshGoogleToken(clientId, clientSecret, refreshToken) {
+    const response = await fetch('https://oauth2.googleapis.com/token', {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/x-www-form-urlencoded',
+        },
+        body: new URLSearchParams({
+            client_id: clientId,
+            client_secret: clientSecret,
+            refresh_token: refreshToken,
+            grant_type: 'refresh_token',
+        }),
+    });
+    if (!response.ok) {
+        const error = await response.text();
+        throw new Error(`Failed to refresh Google token: ${response.status} ${error}`);
+    }
+    const data = (await response.json());
+    return {
+        accessToken: data.access_token,
+        refreshToken, // Google doesn't return a new refresh token
+        expiresIn: data.expires_in,
+        tokenType: data.token_type,
+    };
+}
+/**
+ * Refresh Microsoft Graph OAuth2 access token using refresh token
+ */
+export async function refreshMicrosoftToken(clientId, clientSecret, refreshToken, tenantId = 'common') {
+    const response = await fetch(`https://login.microsoftonline.com/${tenantId}/oauth2/v2.0/token`, {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/x-www-form-urlencoded',
+        },
+        body: new URLSearchParams({
+            client_id: clientId,
+            client_secret: clientSecret,
+            refresh_token: refreshToken,
+            grant_type: 'refresh_token',
+            scope: 'https://graph.microsoft.com/.default',
+        }),
+    });
+    if (!response.ok) {
+        const error = await response.text();
+        throw new Error(`Failed to refresh Microsoft token: ${response.status} ${error}`);
+    }
+    const data = (await response.json());
+    return {
+        accessToken: data.access_token,
+        refreshToken, // Microsoft may return a new refresh token in some flows
+        expiresIn: data.expires_in,
+        tokenType: data.token_type,
+    };
+}
+/**
+ * Generic OAuth2 token refresh
+ */
+export async function refreshOAuthToken(provider, clientId, clientSecret, refreshToken, tenantId) {
+    switch (provider) {
+        case 'google':
+            return refreshGoogleToken(clientId, clientSecret, refreshToken);
+        case 'microsoft':
+            return refreshMicrosoftToken(clientId, clientSecret, refreshToken, tenantId);
+        default:
+            throw new Error(`Unsupported OAuth provider: ${provider}`);
+    }
+}
+//# sourceMappingURL=oauth-refresh.js.map

package/dist/oauth-refresh.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-refresh.js","sourceRoot":"","sources":["../src/oauth-refresh.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAwBH;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,QAAgB,EAChB,YAAoB,EACpB,YAAoB;IAEpB,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,qCAAqC,EAAE;QAClE,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,mCAAmC;SACpD;QACD,IAAI,EAAE,IAAI,eAAe,CAAC;YACxB,SAAS,EAAE,QAAQ;YACnB,aAAa,EAAE,YAAY;YAC3B,aAAa,EAAE,YAAY;YAC3B,UAAU,EAAE,eAAe;SAC5B,CAAC;KACH,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,mCAAmC,QAAQ,CAAC,MAAM,IAAI,KAAK,EAAE,CAAC,CAAC;IACjF,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA+B,CAAC;IAEnE,OAAO;QACL,WAAW,EAAE,IAAI,CAAC,YAAY;QAC9B,YAAY,EAAE,4CAA4C;QAC1D,SAAS,EAAE,IAAI,CAAC,UAAU;QAC1B,SAAS,EAAE,IAAI,CAAC,UAAU;KAC3B,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,QAAgB,EAChB,YAAoB,EACpB,YAAoB,EACpB,WAAmB,QAAQ;IAE3B,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,qCAAqC,QAAQ,oBAAoB,EAAE;QAC9F,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,mCAAmC;SACpD;QACD,IAAI,EAAE,IAAI,eAAe,CAAC;YACxB,SAAS,EAAE,QAAQ;YACnB,aAAa,EAAE,YAAY;YAC3B,aAAa,EAAE,YAAY;YAC3B,UAAU,EAAE,eAAe;YAC3B,KAAK,EAAE,sCAAsC;SAC9C,CAAC;KACH,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,sCAAsC,QAAQ,CAAC,MAAM,IAAI,KAAK,EAAE,CAAC,CAAC;IACpF,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAkC,CAAC;IAEtE,OAAO;QACL,WAAW,EAAE,IAAI,CAAC,YAAY;QAC9B,YAAY,EAAE,yDAAyD;QACvE,SAAS,EAAE,IAAI,CAAC,UAAU;QAC1B,SAAS,EAAE,IAAI,CAAC,UAAU;KAC3B,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,QAAgC,EAChC,QAAgB,EAChB,YAAoB,EACpB,YAAoB,EACpB,QAAiB;IAEjB,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,QAAQ;YACX,OAAO,kBAAkB,CAAC,QAAQ,EAAE,YAAY,EAAE,YAAY,CAAC,CAAC;QAClE,KAAK,WAAW;YACd,OAAO,qBAAqB,CAAC,QAAQ,EAAE,YAAY,EAAE,YAAY,EAAE,QAAQ,CAAC,CAAC;QAC/E;YACE,MAAM,IAAI,KAAK,CAAC,+BAA+B,QAAQ,EAAE,CAAC,CAAC;IAC/D,CAAC;AACH,CAAC"}

package/dist/parser.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"parser.d.ts","sourceRoot":"","sources":["../src/parser.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,OAAO,EACL,QAAQ,EAOT,MAAM,aAAa,CAAC;AAMrB,MAAM,WAAW,WAAW;IAC1B,QAAQ,EAAE,QAAQ,CAAC;IACnB,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED,MAAM,WAAW,YAAY;IAC3B,0CAA0C;IAC1C,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,oDAAoD;IACpD,UAAU,CAAC,EAAE,OAAO,CAAC;CACtB;AAED,qBAAa,UAAW,SAAQ,KAAK;aAGjB,IAAI,CAAC,EAAE,MAAM;aACb,OAAO,CAAC,EAAE,OAAO;gBAFjC,OAAO,EAAE,MAAM,EACC,IAAI,CAAC,EAAE,MAAM,YAAA,EACb,OAAO,CAAC,EAAE,OAAO,YAAA;CAKpC;AASD;;GAEG;AACH,wBAAsB,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,GAAE,YAAiB,GAAG,OAAO,CAAC,WAAW,CAAC,CAG9F;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,GAAE,YAAiB,GAAG,WAAW,CAwCrF;AA8YD;;;GAGG;AACH,wBAAgB,yBAAyB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,EAAE,CAUpE;AAED;;GAEG;AACH,wBAAgB,0BAA0B,CAAC,QAAQ,EAAE,QAAQ,GAAG,MAAM,EAAE,CA8BvE"}
+{"version":3,"file":"parser.d.ts","sourceRoot":"","sources":["../src/parser.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,OAAO,EACL,QAAQ,EAOT,MAAM,aAAa,CAAC;AAMrB,MAAM,WAAW,WAAW;IAC1B,QAAQ,EAAE,QAAQ,CAAC;IACnB,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED,MAAM,WAAW,YAAY;IAC3B,0CAA0C;IAC1C,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,oDAAoD;IACpD,UAAU,CAAC,EAAE,OAAO,CAAC;CACtB;AAED,qBAAa,UAAW,SAAQ,KAAK;aAGjB,IAAI,CAAC,EAAE,MAAM;aACb,OAAO,CAAC,EAAE,OAAO;gBAFjC,OAAO,EAAE,MAAM,EACC,IAAI,CAAC,EAAE,MAAM,YAAA,EACb,OAAO,CAAC,EAAE,OAAO,YAAA;CAKpC;AASD;;GAEG;AACH,wBAAsB,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,GAAE,YAAiB,GAAG,OAAO,CAAC,WAAW,CAAC,CAG9F;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,GAAE,YAAiB,GAAG,WAAW,CAwCrF;AAygBD;;;GAGG;AACH,wBAAgB,yBAAyB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,EAAE,CAUpE;AAED;;GAEG;AACH,wBAAgB,0BAA0B,CAAC,QAAQ,EAAE,QAAQ,GAAG,MAAM,EAAE,CA8BvE"}