@microsoft/agents-hosting 1.1.0-alpha.5 → 1.1.0-alpha.58

package/dist/src/app/authorization.js

@@ -1,387 +0,0 @@
-"use strict";
-/**
- * Copyright (c) Microsoft Corporation. All rights reserved.
- * Licensed under the MIT License.
- */
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Authorization = void 0;
-const logger_1 = require("@microsoft/agents-activity/logger");
-const oauth_1 = require("../oauth");
-const auth_1 = require("../auth");
-const jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
-const logger = (0, logger_1.debug)('agents:authorization');
-/**
- * Class responsible for managing authorization and OAuth flows.
- * Handles multiple OAuth providers and manages the complete authentication lifecycle.
- *
- * @remarks
- * The Authorization class provides a centralized way to handle OAuth authentication
- * flows within the agent application. It supports multiple authentication handlers,
- * token exchange, on-behalf-of flows, and provides event handlers for success/failure scenarios.
- *
- * Key features:
- * - Multiple OAuth provider support
- * - Token caching and exchange
- * - On-behalf-of (OBO) token flows
- * - Sign-in success/failure event handling
- * - Automatic configuration from environment variables
- *
- * @example
- * ```typescript
- * const auth = new Authorization(storage, {
- *   'microsoft': {
- *     name: 'Microsoft',
- *     title: 'Sign in with Microsoft',
- *     text: 'Please sign in'
- *   }
- * });
- *
- * auth.onSignInSuccess(async (context, state) => {
- *   await context.sendActivity('Welcome! You are now signed in.');
- * });
- * ```
- *
- */
-class Authorization {
-    /**
-     * Creates a new instance of Authorization.
-     *
-     * @remarks
-     * The constructor initializes all configured auth handlers and sets up OAuth flows.
-     * It automatically configures handler properties from environment variables if not provided:
-     * - Connection name: {handlerId}_connectionName
-     * - Connection title: {handlerId}_connectionTitle
-     * - Connection text: {handlerId}_connectionText
-     *
-     * @example
-     * ```typescript
-     * const auth = new Authorization(storage, {
-     *   'microsoft': {
-     *     name: 'Microsoft',
-     *     title: 'Sign in with Microsoft'
-     *   },
-     *   'google': {
-     *     // Will use GOOGLE_connectionName from env vars
-     *   }
-     * });
-     * ```
-     *
-     * @param storage - The storage system to use for state management.
-     * @param authHandlers - Configuration for OAuth providers.
-     * @throws {Error} If storage is null/undefined or no auth handlers are provided.
-     *
-     */
-    constructor(storage, authHandlers, userTokenClient) {
-        var _a, _b, _c, _d;
-        this.storage = storage;
-        /**
-         * Private handler for successful sign-in events.
-         * @private
-         */
-        this._signInSuccessHandler = null;
-        /**
-         * Private handler for failed sign-in events.
-         * @private
-         */
-        this._signInFailureHandler = null;
-        if (storage === undefined || storage === null) {
-            throw new Error('Storage is required for UserAuthorization');
-        }
-        if (authHandlers === undefined || Object.keys(authHandlers).length === 0) {
-            throw new Error('The authorization does not have any auth handlers');
-        }
-        this.authHandlers = authHandlers;
-        for (const ah in this.authHandlers) {
-            if (this.authHandlers[ah].name === undefined && process.env[ah + '_connectionName'] === undefined) {
-                throw new Error(`AuthHandler name ${ah}_connectionName not set in autorization and not found in env vars.`);
-            }
-            const currentAuthHandler = this.authHandlers[ah];
-            currentAuthHandler.name = (_a = currentAuthHandler.name) !== null && _a !== void 0 ? _a : process.env[ah + '_connectionName'];
-            currentAuthHandler.title = (_b = currentAuthHandler.title) !== null && _b !== void 0 ? _b : process.env[ah + '_connectionTitle'];
-            currentAuthHandler.text = (_c = currentAuthHandler.text) !== null && _c !== void 0 ? _c : process.env[ah + '_connectionText'];
-            currentAuthHandler.cnxPrefix = (_d = currentAuthHandler.cnxPrefix) !== null && _d !== void 0 ? _d : process.env[ah + '_cnxPrefix'];
-            currentAuthHandler.flow = new oauth_1.OAuthFlow(this.storage, currentAuthHandler.name, userTokenClient, currentAuthHandler.title, currentAuthHandler.text);
-        }
-        logger.info('Authorization handlers configured with', Object.keys(this.authHandlers).length, 'handlers');
-    }
-    /**
-     * Gets the token for a specific auth handler.
-     *
-     * @param context - The context object for the current turn.
-     * @param authHandlerId - ID of the auth handler to use.
-     * @returns A promise that resolves to the token response from the OAuth provider.
-     * @throws {Error} If the auth handler is not configured.
-     *
-     * @remarks
-     * This method retrieves an existing token for the specified auth handler.
-     * The token may be cached and will be retrieved from the OAuth provider if needed.
-     *
-     * @example
-     * ```typescript
-     * const tokenResponse = await auth.getToken(context, 'microsoft');
-     * if (tokenResponse.token) {
-     *   console.log('User is authenticated');
-     * }
-     * ```
-     *
-     * @public
-     */
-    async getToken(context, authHandlerId) {
-        var _a;
-        logger.info('getToken from user token service for authHandlerId:', authHandlerId);
-        const authHandler = this.getAuthHandlerOrThrow(authHandlerId);
-        return await ((_a = authHandler.flow) === null || _a === void 0 ? void 0 : _a.getUserToken(context));
-    }
-    /**
-     * Gets the auth handler by ID or throws an error if not found.
-     *
-     * @param authHandlerId - ID of the auth handler to retrieve.
-     * @returns The auth handler instance.
-     * @throws {Error} If the auth handler with the specified ID is not configured.
-     * @private
-     */
-    getAuthHandlerOrThrow(authHandlerId) {
-        if (!Object.prototype.hasOwnProperty.call(this.authHandlers, authHandlerId)) {
-            throw new Error(`AuthHandler with ID ${authHandlerId} not configured`);
-        }
-        return this.authHandlers[authHandlerId];
-    }
-    /**
-     * Exchanges a token for a new token with different scopes.
-     *
-     * @param context - The context object for the current turn.
-     * @param scopes - Array of scopes to request for the new token.
-     * @param authHandlerId - ID of the auth handler to use.
-     * @returns A promise that resolves to the exchanged token response.
-     * @throws {Error} If the auth handler is not configured.
-     *
-     * @remarks
-     * This method handles token exchange scenarios, particularly for on-behalf-of (OBO) flows.
-     * It checks if the current token is exchangeable (e.g., has audience starting with 'api://')
-     * and performs the appropriate token exchange using MSAL.
-     *
-     * @example
-     * ```typescript
-     * const exchangedToken = await auth.exchangeToken(
-     *   context,
-     *   ['https://graph.microsoft.com/.default'],
-     *   'microsoft'
-     * );
-     * ```
-     *
-     * @public
-     */
-    async exchangeToken(context, scopes, authHandlerId) {
-        var _a;
-        logger.info('exchangeToken from user token service for authHandlerId:', authHandlerId);
-        const authHandler = this.getAuthHandlerOrThrow(authHandlerId);
-        const tokenResponse = await ((_a = authHandler.flow) === null || _a === void 0 ? void 0 : _a.getUserToken(context));
-        if (this.isExchangeable(tokenResponse.token)) {
-            return await this.handleObo(context, tokenResponse.token, scopes, authHandler.cnxPrefix);
-        }
-        return tokenResponse;
-    }
-    /**
-     * Checks if a token is exchangeable for an on-behalf-of flow.
-     *
-     * @param token - The token to check.
-     * @returns True if the token is exchangeable, false otherwise.
-     * @private
-     */
-    isExchangeable(token) {
-        var _a;
-        if (!token || typeof token !== 'string') {
-            return false;
-        }
-        const payload = jsonwebtoken_1.default.decode(token);
-        return ((_a = payload === null || payload === void 0 ? void 0 : payload.aud) === null || _a === void 0 ? void 0 : _a.indexOf('api://')) === 0;
-    }
-    /**
-     * Handles on-behalf-of token exchange using MSAL.
-     *
-     * @param context - The context object for the current turn.
-     * @param token - The token to exchange.
-     * @param scopes - Array of scopes to request for the new token.
-     * @returns A promise that resolves to the exchanged token response.
-     * @private
-     */
-    async handleObo(context, token, scopes, cnxPrefix) {
-        const msalTokenProvider = new auth_1.MsalTokenProvider();
-        let authConfig = context.adapter.authConfig;
-        if (cnxPrefix) {
-            authConfig = (0, auth_1.loadAuthConfigFromEnv)(cnxPrefix);
-        }
-        const newToken = await msalTokenProvider.acquireTokenOnBehalfOf(authConfig, scopes, token);
-        return { token: newToken };
-    }
-    /**
-     * Begins or continues an OAuth flow.
-     *
-     * @param context - The context object for the current turn.
-     * @param state - The state object for the current turn.
-     * @param authHandlerId - ID of the auth handler to use.
-     * @returns A promise that resolves to the token response from the OAuth provider.
-     * @throws {Error} If the auth handler is not configured.
-     *
-     * @remarks
-     * This method manages the complete OAuth authentication flow:
-     * - If no flow is active, it begins a new OAuth flow and shows the sign-in card
-     * - If a flow is active, it continues the flow and processes the authentication response
-     * - Handles success/failure callbacks and updates the sign-in state accordingly
-     *
-     * The method automatically manages the sign-in state and continuation activities,
-     * allowing the conversation to resume after successful authentication.
-     *
-     * @example
-     * ```typescript
-     * const tokenResponse = await auth.beginOrContinueFlow(context, state, 'microsoft');
-     * if (tokenResponse && tokenResponse.token) {
-     *   // User is now authenticated
-     *   await context.sendActivity('Authentication successful!');
-     * }
-     * ```
-     *
-     * @public
-     */
-    async beginOrContinueFlow(context, state, authHandlerId, secRoute = true) {
-        var _a, _b, _c, _d, _e;
-        const authHandler = this.getAuthHandlerOrThrow(authHandlerId);
-        logger.info('beginOrContinueFlow for authHandlerId:', authHandlerId);
-        const signInState = state.getValue('user.__SIGNIN_STATE_') || { continuationActivity: undefined, handlerId: undefined, completed: false };
-        const flow = authHandler.flow;
-        let tokenResponse;
-        tokenResponse = await ((_a = authHandler.flow) === null || _a === void 0 ? void 0 : _a.getUserToken(context));
-        if ((tokenResponse === null || tokenResponse === void 0 ? void 0 : tokenResponse.token) && tokenResponse.token.length > 0) {
-            (_b = authHandler.flow) === null || _b === void 0 ? true : delete _b.state.eTag;
-            authHandler.flow.state.flowStarted = false;
-            await ((_c = authHandler.flow) === null || _c === void 0 ? void 0 : _c.setFlowState(context, authHandler.flow.state));
-            if (secRoute) {
-                return tokenResponse;
-            }
-        }
-        if (flow.state === null || ((_d = flow.state) === null || _d === void 0 ? void 0 : _d.flowStarted) === false || ((_e = flow.state) === null || _e === void 0 ? void 0 : _e.flowStarted) === undefined) {
-            tokenResponse = await flow.beginFlow(context);
-            if (secRoute && (tokenResponse === null || tokenResponse === void 0 ? void 0 : tokenResponse.token) === undefined) {
-                signInState.continuationActivity = context.activity;
-                signInState.handlerId = authHandlerId;
-                state.setValue('user.__SIGNIN_STATE_', signInState);
-            }
-        }
-        else {
-            tokenResponse = await flow.continueFlow(context);
-            if (tokenResponse && tokenResponse.token) {
-                if (this._signInSuccessHandler) {
-                    await this._signInSuccessHandler(context, state, authHandlerId);
-                }
-                if (secRoute) {
-                    state.deleteValue('user.__SIGNIN_STATE_');
-                }
-            }
-            else {
-                logger.warn('Failed to complete OAuth flow, no token received');
-                if (this._signInFailureHandler) {
-                    await this._signInFailureHandler(context, state, authHandlerId, 'Failed to complete the OAuth flow');
-                }
-                // signInState!.completed = false
-                // state.setValue('user.__SIGNIN_STATE_', signInState)
-            }
-        }
-        return tokenResponse;
-    }
-    /**
-     * Signs out the current user.
-     *
-     * @param context - The context object for the current turn.
-     * @param state - The state object for the current turn.
-     * @param authHandlerId - Optional ID of the auth handler to use for sign out. If not provided, signs out from all handlers.
-     * @returns A promise that resolves when sign out is complete.
-     * @throws {Error} If the specified auth handler is not configured.
-     *
-     * @remarks
-     * This method clears the user's token and resets the authentication state.
-     * If no specific authHandlerId is provided, it signs out from all configured handlers.
-     * This ensures complete cleanup of authentication state across all providers.
-     *
-     * @example
-     * ```typescript
-     * // Sign out from specific handler
-     * await auth.signOut(context, state, 'microsoft');
-     *
-     * // Sign out from all handlers
-     * await auth.signOut(context, state);
-     * ```
-     *
-     * @public
-     */
-    async signOut(context, state, authHandlerId) {
-        var _a;
-        logger.info('signOut for authHandlerId:', authHandlerId);
-        if (authHandlerId === undefined) { // aw
-            for (const ah in this.authHandlers) {
-                const flow = this.authHandlers[ah].flow;
-                await (flow === null || flow === void 0 ? void 0 : flow.signOut(context));
-            }
-        }
-        else {
-            const authHandler = this.getAuthHandlerOrThrow(authHandlerId);
-            await ((_a = authHandler.flow) === null || _a === void 0 ? void 0 : _a.signOut(context));
-        }
-    }
-    /**
-     * Sets a handler to be called when sign-in is successfully completed.
-     *
-     * @param handler - The handler function to call on successful sign-in.
-     *
-     * @remarks
-     * This method allows you to register a callback that will be invoked whenever
-     * a user successfully completes the authentication process. The handler receives
-     * the turn context, state, and the ID of the auth handler that was used.
-     *
-     * @example
-     * ```typescript
-     * auth.onSignInSuccess(async (context, state, authHandlerId) => {
-     *   await context.sendActivity(`Welcome! You signed in using ${authHandlerId}.`);
-     *   // Perform any post-authentication setup
-     * });
-     * ```
-     *
-     * @public
-     */
-    onSignInSuccess(handler) {
-        this._signInSuccessHandler = handler;
-    }
-    /**
-     * Sets a handler to be called when sign-in fails.
-     *
-     * @param handler - The handler function to call on sign-in failure.
-     *
-     * @remarks
-     * This method allows you to register a callback that will be invoked whenever
-     * a user's authentication attempt fails. The handler receives the turn context,
-     * state, auth handler ID, and an optional error message describing the failure.
-     *
-     * Common failure scenarios include:
-     * - User cancels the authentication process
-     * - Invalid credentials or expired tokens
-     * - Network connectivity issues
-     * - OAuth provider errors
-     *
-     * @example
-     * ```typescript
-     * auth.onSignInFailure(async (context, state, authHandlerId, errorMessage) => {
-     *   await context.sendActivity(`Sign-in failed: ${errorMessage || 'Unknown error'}`);
-     *   await context.sendActivity('Please try signing in again.');
-     * });
-     * ```
-     *
-     * @public
-     */
-    onSignInFailure(handler) {
-        this._signInFailureHandler = handler;
-    }
-}
-exports.Authorization = Authorization;
-//# sourceMappingURL=authorization.js.map

package/dist/src/app/authorization.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"authorization.js","sourceRoot":"","sources":["../../../src/app/authorization.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;;;;AAGH,8DAAyD;AAGzD,oCAAoE;AACpE,kCAAqF;AACrF,gEAA8C;AAG9C,MAAM,MAAM,GAAG,IAAA,cAAK,EAAC,sBAAsB,CAAC,CAAA;AAuC5C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,MAAa,aAAa;IAOxB;;;;;;;;;;;;;;;;;;;;;;;;;;;OA2BG;IACH,YAAqB,OAAgB,EAAE,YAAmC,EAAE,eAAgC;;QAAvF,YAAO,GAAP,OAAO,CAAS;QAsPrC;;;WAGG;QACH,0BAAqB,GAA+F,IAAI,CAAA;QA0BxH;;;WAGG;QACH,0BAAqB,GAAsH,IAAI,CAAA;QAvR7I,IAAI,OAAO,KAAK,SAAS,IAAI,OAAO,KAAK,IAAI,EAAE,CAAC;YAC9C,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAA;QAC9D,CAAC;QACD,IAAI,YAAY,KAAK,SAAS,IAAI,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACzE,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAA;QACtE,CAAC;QACD,IAAI,CAAC,YAAY,GAAG,YAAY,CAAA;QAChC,KAAK,MAAM,EAAE,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACnC,IAAI,IAAI,CAAC,YAAa,CAAC,EAAE,CAAC,CAAC,IAAI,KAAK,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,GAAG,iBAAiB,CAAC,KAAK,SAAS,EAAE,CAAC;gBACnG,MAAM,IAAI,KAAK,CAAC,oBAAoB,EAAE,oEAAoE,CAAC,CAAA;YAC7G,CAAC;YACD,MAAM,kBAAkB,GAAG,IAAI,CAAC,YAAa,CAAC,EAAE,CAAC,CAAA;YACjD,kBAAkB,CAAC,IAAI,GAAG,MAAA,kBAAkB,CAAC,IAAI,mCAAI,OAAO,CAAC,GAAG,CAAC,EAAE,GAAG,iBAAiB,CAAW,CAAA;YAClG,kBAAkB,CAAC,KAAK,GAAG,MAAA,kBAAkB,CAAC,KAAK,mCAAI,OAAO,CAAC,GAAG,CAAC,EAAE,GAAG,kBAAkB,CAAW,CAAA;YACrG,kBAAkB,CAAC,IAAI,GAAG,MAAA,kBAAkB,CAAC,IAAI,mCAAI,OAAO,CAAC,GAAG,CAAC,EAAE,GAAG,iBAAiB,CAAW,CAAA;YAClG,kBAAkB,CAAC,SAAS,GAAG,MAAA,kBAAkB,CAAC,SAAS,mCAAI,OAAO,CAAC,GAAG,CAAC,EAAE,GAAG,YAAY,CAAW,CAAA;YACvG,kBAAkB,CAAC,IAAI,GAAG,IAAI,iBAAS,CAAC,IAAI,CAAC,OAAO,EAAE,kBAAkB,CAAC,IAAI,EAAE,eAAe,EAAE,kBAAkB,CAAC,KAAK,EAAE,kBAAkB,CAAC,IAAI,CAAC,CAAA;QACpJ,CAAC;QACD,MAAM,CAAC,IAAI,CAAC,wCAAwC,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,MAAM,EAAE,UAAU,CAAC,CAAA;IAC1G,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;OAqBG;IACI,KAAK,CAAC,QAAQ,CAAE,OAAoB,EAAE,aAAqB;;QAChE,MAAM,CAAC,IAAI,CAAC,qDAAqD,EAAE,aAAa,CAAC,CAAA;QACjF,MAAM,WAAW,GAAG,IAAI,CAAC,qBAAqB,CAAC,aAAa,CAAC,CAAA;QAC7D,OAAO,MAAM,CAAA,MAAA,WAAW,CAAC,IAAI,0CAAE,YAAY,CAAC,OAAO,CAAE,CAAA,CAAA;IACvD,CAAC;IAED;;;;;;;OAOG;IACK,qBAAqB,CAAE,aAAqB;QAClD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,aAAa,CAAC,EAAE,CAAC;YAC5E,MAAM,IAAI,KAAK,CAAC,uBAAuB,aAAa,iBAAiB,CAAC,CAAA;QACxE,CAAC;QACD,OAAO,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC,CAAA;IACzC,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;;OAwBG;IACI,KAAK,CAAC,aAAa,CAAE,OAAoB,EAAE,MAAgB,EAAE,aAAqB;;QACvF,MAAM,CAAC,IAAI,CAAC,0DAA0D,EAAE,aAAa,CAAC,CAAA;QACtF,MAAM,WAAW,GAAG,IAAI,CAAC,qBAAqB,CAAC,aAAa,CAAC,CAAA;QAC7D,MAAM,aAAa,GAAG,MAAM,CAAA,MAAA,WAAW,CAAC,IAAI,0CAAE,YAAY,CAAC,OAAO,CAAE,CAAA,CAAA;QACpE,IAAI,IAAI,CAAC,cAAc,CAAC,aAAa,CAAC,KAAK,CAAC,EAAE,CAAC;YAC7C,OAAO,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,aAAa,CAAC,KAAM,EAAE,MAAM,EAAE,WAAW,CAAC,SAAS,CAAC,CAAA;QAC3F,CAAC;QACD,OAAO,aAAa,CAAA;IACtB,CAAC;IAED;;;;;;OAMG;IACK,cAAc,CAAE,KAAyB;;QAC/C,IAAI,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YACxC,OAAO,KAAK,CAAA;QACd,CAAC;QACD,MAAM,OAAO,GAAG,sBAAG,CAAC,MAAM,CAAC,KAAK,CAAe,CAAA;QAC/C,OAAO,CAAA,MAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,GAAG,0CAAE,OAAO,CAAC,QAAQ,CAAC,MAAK,CAAC,CAAA;IAC9C,CAAC;IAED;;;;;;;;OAQG;IACK,KAAK,CAAC,SAAS,CAAE,OAAoB,EAAE,KAAa,EAAE,MAAgB,EAAE,SAAkB;QAChG,MAAM,iBAAiB,GAAG,IAAI,wBAAiB,EAAE,CAAA;QACjD,IAAI,UAAU,GAAsB,OAAO,CAAC,OAAO,CAAC,UAAU,CAAA;QAC9D,IAAI,SAAS,EAAE,CAAC;YACd,UAAU,GAAG,IAAA,4BAAqB,EAAC,SAAS,CAAC,CAAA;QAC/C,CAAC;QACD,MAAM,QAAQ,GAAG,MAAM,iBAAiB,CAAC,sBAAsB,CAAC,UAAU,EAAE,MAAM,EAAE,KAAK,CAAC,CAAA;QAC1F,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAA;IAC5B,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;OA4BG;IACI,KAAK,CAAC,mBAAmB,CAAE,OAAoB,EAAE,KAAgB,EAAE,aAAqB,EAAE,WAAoB,IAAI;;QACvH,MAAM,WAAW,GAAG,IAAI,CAAC,qBAAqB,CAAC,aAAa,CAAC,CAAA;QAC7D,MAAM,CAAC,IAAI,CAAC,wCAAwC,EAAE,aAAa,CAAC,CAAA;QACpE,MAAM,WAAW,GAA4B,KAAK,CAAC,QAAQ,CAAC,sBAAsB,CAAC,IAAI,EAAE,oBAAoB,EAAE,SAAS,EAAE,SAAS,EAAE,SAAS,EAAE,SAAS,EAAE,KAAK,EAAE,CAAA;QAClK,MAAM,IAAI,GAAG,WAAW,CAAC,IAAK,CAAA;QAC9B,IAAI,aAAwC,CAAA;QAC5C,aAAa,GAAG,MAAM,CAAA,MAAA,WAAW,CAAC,IAAI,0CAAE,YAAY,CAAC,OAAO,CAAC,CAAA,CAAA;QAE7D,IAAI,CAAA,aAAa,aAAb,aAAa,uBAAb,aAAa,CAAE,KAAK,KAAI,aAAa,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpD,MAAA,WAAW,CAAC,IAAI,+CAAE,KAAK,CAAC,IAAI,CAAA;YACnC,WAAW,CAAC,IAAK,CAAC,KAAK,CAAC,WAAW,GAAG,KAAK,CAAA;YAC3C,MAAM,CAAA,MAAA,WAAW,CAAC,IAAI,0CAAE,YAAY,CAAC,OAAO,EAAE,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA,CAAA;YACrE,IAAI,QAAQ,EAAE,CAAC;gBACb,OAAO,aAAc,CAAA;YACvB,CAAC;QACH,CAAC;QAED,IAAI,IAAI,CAAC,KAAK,KAAK,IAAI,IAAI,CAAA,MAAA,IAAI,CAAC,KAAK,0CAAE,WAAW,MAAK,KAAK,IAAI,CAAA,MAAA,IAAI,CAAC,KAAK,0CAAE,WAAW,MAAK,SAAS,EAAE,CAAC;YACtG,aAAa,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAA;YAC7C,IAAI,QAAQ,IAAI,CAAA,aAAa,aAAb,aAAa,uBAAb,aAAa,CAAE,KAAK,MAAK,SAAS,EAAE,CAAC;gBACnD,WAAY,CAAC,oBAAoB,GAAG,OAAO,CAAC,QAAQ,CAAA;gBACpD,WAAY,CAAC,SAAS,GAAG,aAAa,CAAA;gBACtC,KAAK,CAAC,QAAQ,CAAC,sBAAsB,EAAE,WAAW,CAAC,CAAA;YACrD,CAAC;QACH,CAAC;aAAM,CAAC;YACN,aAAa,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,CAAA;YAChD,IAAI,aAAa,IAAI,aAAa,CAAC,KAAK,EAAE,CAAC;gBACzC,IAAI,IAAI,CAAC,qBAAqB,EAAE,CAAC;oBAC/B,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,EAAE,KAAK,EAAE,aAAa,CAAC,CAAA;gBACjE,CAAC;gBACD,IAAI,QAAQ,EAAE,CAAC;oBACb,KAAK,CAAC,WAAW,CAAC,sBAAsB,CAAC,CAAA;gBAC3C,CAAC;YACH,CAAC;iBAAM,CAAC;gBACN,MAAM,CAAC,IAAI,CAAC,kDAAkD,CAAC,CAAA;gBAC/D,IAAI,IAAI,CAAC,qBAAqB,EAAE,CAAC;oBAC/B,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,EAAE,KAAK,EAAE,aAAa,EAAE,mCAAmC,CAAC,CAAA;gBACtG,CAAC;gBACD,iCAAiC;gBACjC,sDAAsD;YACxD,CAAC;QACH,CAAC;QACD,OAAO,aAAc,CAAA;IACvB,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;;OAwBG;IACH,KAAK,CAAC,OAAO,CAAE,OAAoB,EAAE,KAAgB,EAAE,aAAsB;;QAC3E,MAAM,CAAC,IAAI,CAAC,4BAA4B,EAAE,aAAa,CAAC,CAAA;QACxD,IAAI,aAAa,KAAK,SAAS,EAAE,CAAC,CAAC,KAAK;YACtC,KAAK,MAAM,EAAE,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;gBACnC,MAAM,IAAI,GAAG,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC,CAAC,IAAI,CAAA;gBACvC,MAAM,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,OAAO,CAAC,OAAO,CAAC,CAAA,CAAA;YAC9B,CAAC;QACH,CAAC;aAAM,CAAC;YACN,MAAM,WAAW,GAAG,IAAI,CAAC,qBAAqB,CAAC,aAAa,CAAC,CAAA;YAC7D,MAAM,CAAA,MAAA,WAAW,CAAC,IAAI,0CAAE,OAAO,CAAC,OAAO,CAAC,CAAA,CAAA;QAC1C,CAAC;IACH,CAAC;IAQD;;;;;;;;;;;;;;;;;;;OAmBG;IACI,eAAe,CAAE,OAA0F;QAChH,IAAI,CAAC,qBAAqB,GAAG,OAAO,CAAA;IACtC,CAAC;IAQD;;;;;;;;;;;;;;;;;;;;;;;;;OAyBG;IACI,eAAe,CAAE,OAAiH;QACvI,IAAI,CAAC,qBAAqB,GAAG,OAAO,CAAA;IACtC,CAAC;CACF;AA1VD,sCA0VC"}

package/dist/src/claimsIdentity.d.ts

@@ -1,35 +0,0 @@
-/**
- * Copyright (c) Microsoft Corporation. All rights reserved.
- * Licensed under the MIT License.
- */
-/**
- * Represents a claim with a type and value.
- */
-export interface Claim {
-    readonly type: string;
-    readonly value: string;
-}
-/**
- * Represents an identity with a collection of claims.
- */
-export declare class ClaimsIdentity {
-    readonly claims: Claim[];
-    private readonly authenticationType?;
-    /**
-     * Creates a new instance of the ClaimsIdentity class.
-     * @param claims The collection of claims associated with the identity.
-     * @param authenticationType The type of authentication used, or a boolean indicating if the identity is authenticated.
-     */
-    constructor(claims: Claim[], authenticationType?: string | boolean | undefined);
-    /**
-     * Indicates whether the identity is authenticated.
-     * @returns True if the identity is authenticated; otherwise, false.
-     */
-    get isAuthenticated(): boolean;
-    /**
-     * Gets the value of a claim by its type.
-     * @param claimType The type of the claim to retrieve.
-     * @returns The value of the claim, or null if the claim is not found.
-     */
-    getClaimValue(claimType: string): string | null;
-}

package/dist/src/claimsIdentity.js

@@ -1,43 +0,0 @@
-"use strict";
-/**
- * Copyright (c) Microsoft Corporation. All rights reserved.
- * Licensed under the MIT License.
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ClaimsIdentity = void 0;
-/**
- * Represents an identity with a collection of claims.
- */
-class ClaimsIdentity {
-    /**
-     * Creates a new instance of the ClaimsIdentity class.
-     * @param claims The collection of claims associated with the identity.
-     * @param authenticationType The type of authentication used, or a boolean indicating if the identity is authenticated.
-     */
-    constructor(claims, authenticationType) {
-        this.claims = claims;
-        this.authenticationType = authenticationType;
-    }
-    /**
-     * Indicates whether the identity is authenticated.
-     * @returns True if the identity is authenticated; otherwise, false.
-     */
-    get isAuthenticated() {
-        if (typeof this.authenticationType === 'boolean') {
-            return this.authenticationType;
-        }
-        return this.authenticationType != null;
-    }
-    /**
-     * Gets the value of a claim by its type.
-     * @param claimType The type of the claim to retrieve.
-     * @returns The value of the claim, or null if the claim is not found.
-     */
-    getClaimValue(claimType) {
-        var _a;
-        const claim = this.claims.find((c) => c.type === claimType);
-        return (_a = claim === null || claim === void 0 ? void 0 : claim.value) !== null && _a !== void 0 ? _a : null;
-    }
-}
-exports.ClaimsIdentity = ClaimsIdentity;
-//# sourceMappingURL=claimsIdentity.js.map

package/dist/src/claimsIdentity.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"claimsIdentity.js","sourceRoot":"","sources":["../../src/claimsIdentity.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;AAUH;;GAEG;AACH,MAAa,cAAc;IACzB;;;;OAIG;IACH,YAA6B,MAAe,EAAmB,kBAAqC;QAAvE,WAAM,GAAN,MAAM,CAAS;QAAmB,uBAAkB,GAAlB,kBAAkB,CAAmB;IAAG,CAAC;IAExG;;;OAGG;IACH,IAAI,eAAe;QACjB,IAAI,OAAO,IAAI,CAAC,kBAAkB,KAAK,SAAS,EAAE,CAAC;YACjD,OAAO,IAAI,CAAC,kBAAkB,CAAA;QAChC,CAAC;QAED,OAAO,IAAI,CAAC,kBAAkB,IAAI,IAAI,CAAA;IACxC,CAAC;IAED;;;;OAIG;IACH,aAAa,CAAE,SAAiB;;QAC9B,MAAM,KAAK,GAAG,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,SAAS,CAAC,CAAA;QAE3D,OAAO,MAAA,KAAK,aAAL,KAAK,uBAAL,KAAK,CAAE,KAAK,mCAAI,IAAI,CAAA;IAC7B,CAAC;CACF;AA9BD,wCA8BC"}

package/dist/src/oauth/oAuthFlow.d.ts

@@ -1,119 +0,0 @@
-import { Activity } from '@microsoft/agents-activity';
-import { TurnContext, Storage } from '../';
-import { UserTokenClient } from './userTokenClient';
-import { TokenResponse } from './userTokenClient.types';
-/**
- * Represents the state of the OAuth flow.
- * @interface FlowState
- */
-export interface FlowState {
-    /** Indicates whether the OAuth flow has been started */
-    flowStarted: boolean | undefined;
-    /** Timestamp when the OAuth flow expires (in milliseconds since epoch) */
-    flowExpires: number | undefined;
-    /** The absolute OAuth connection name used for the flow, null if not set */
-    absOauthConnectionName: string;
-    /** Optional activity to continue the flow with, used for multi-turn scenarios */
-    continuationActivity?: Activity | null;
-    eTag?: string;
-}
-/**
- * Manages the OAuth flow
- */
-export declare class OAuthFlow {
-    private storage;
-    /**
-     * The user token client used for managing user tokens.
-     */
-    userTokenClient: UserTokenClient;
-    /**
-     * The current state of the OAuth flow.
-     */
-    state: FlowState;
-    /**
-     * The ID of the token exchange request, used to deduplicate requests.
-     */
-    tokenExchangeId: string | null;
-    /**
-     * In-memory cache for tokens with expiration.
-     */
-    private tokenCache;
-    /**
-     * The name of the OAuth connection.
-     */
-    absOauthConnectionName: string;
-    /**
-     * The title of the OAuth card.
-     */
-    cardTitle: string;
-    /**
-     * The text of the OAuth card.
-     */
-    cardText: string;
-    /**
-     * Creates a new instance of OAuthFlow.
-     * @param storage The storage provider for persisting flow state.
-     * @param absOauthConnectionName The absolute OAuth connection name.
-     * @param tokenClient Optional user token client. If not provided, will be initialized automatically.
-     * @param cardTitle Optional title for the OAuth card. Defaults to 'Sign in'.
-     * @param cardText Optional text for the OAuth card. Defaults to 'login'.
-     */
-    constructor(storage: Storage, absOauthConnectionName: string, tokenClient: UserTokenClient, cardTitle?: string, cardText?: string);
-    /**
-     * Retrieves the user token from the user token service with in-memory caching for 10 minutes.
-     * @param context The turn context containing the activity information.
-     * @returns A promise that resolves to the user token response.
-     * @throws Will throw an error if the channelId or from properties are not set in the activity.
-     */
-    getUserToken(context: TurnContext): Promise<TokenResponse>;
-    /**
-     * Begins the OAuth flow.
-     * @param context The turn context.
-     * @returns A promise that resolves to the user token if available, or undefined if OAuth flow needs to be started.
-     */
-    beginFlow(context: TurnContext): Promise<TokenResponse | undefined>;
-    /**
-     * Continues the OAuth flow.
-     * @param context The turn context.
-     * @returns A promise that resolves to the user token response.
-     */
-    continueFlow(context: TurnContext): Promise<TokenResponse>;
-    /**
-     * Signs the user out.
-     * @param context The turn context.
-     * @returns A promise that resolves when the sign-out operation is complete.
-     */
-    signOut(context: TurnContext): Promise<void>;
-    /**
-     * Gets the user state for the OAuth flow.
-     * @param context The turn context.
-     * @returns A promise that resolves to the flow state.
-     */
-    getFlowState(context: TurnContext): Promise<FlowState>;
-    /**
-     * Sets the flow state for the OAuth flow.
-     * @param context The turn context.
-     * @param flowState The flow state to set.
-     * @returns A promise that resolves when the flow state is set.
-     */
-    setFlowState(context: TurnContext, flowState: FlowState): Promise<void>;
-    /**
-     * Initializes the user token client if not already initialized.
-     * @param context The turn context used to get authentication credentials.
-     */
-    private refreshToken;
-    /**
-     * Generates a cache key for storing user tokens.
-     * @param context The turn context containing activity information.
-     * @returns The cache key string in format: channelId_userId_connectionName.
-     * @throws Will throw an error if required activity properties are missing.
-     */
-    private getCacheKey;
-    /**
-     * Generates a storage key for persisting OAuth flow state.
-     * @param context The turn context containing activity information.
-     * @returns The storage key string in format: oauth/channelId/conversationId/userId/flowState.
-     * @throws Will throw an error if required activity properties are missing.
-     */
-    private getFlowStateKey;
-}