@mocyuto/aws-srp-client 1.4.0

package/README.md

@@ -0,0 +1,22 @@
+# AWS SRP Client
+
+## Installation
+
+```bash
+npm install @mocyuto/aws-srp-client
+```
+
+## Usage
+
+```js
+import { AwsSrpClient } from '@mocyuto/aws-srp-client';
+
+const client = new AwsSrpClient('region', 'poolId', 'clientId');
+const result = await client.AuthenticateUser('username', 'password');
+if (result.Success) {
+    const tokens = result.AuthenticationResult;
+    //
+} else {
+    //
+}
+```

package/lib/client/AwsSrpClient.d.ts

@@ -0,0 +1,52 @@
+import { type PasswordVerifierChallengeParams, type PasswordVerifierResult, type PasswordVerifierChallengeResponse } from './Types.js';
+import { type BigInteger } from 'big-integer';
+export declare class AwsSrpClient {
+    private static N_HEX;
+    private static G_HEX;
+    Region: string;
+    PoolId: string;
+    ClientId: string;
+    BigN: BigInteger;
+    G: BigInteger;
+    K: BigInteger;
+    SmallAValue: BigInteger;
+    LargeAValue: BigInteger;
+    constructor(region: string, poolId: string, clientId: string);
+    Initialize(): void;
+    private GenerateRandomSmallA;
+    private CalculateA;
+    /**
+     *
+     * @returns The generated SRP_A value for an InitiateAuth request.
+     */
+    GetSrpA(): string;
+    private GetPasswordAuthenticationKey;
+    /**
+     * Generate a response for an AuthChallenge.
+     * @param password The user password
+     * @param challengeParams The response from an InitiateAuth request
+     * @returns A Password Verifier challenge response
+     */
+    ProcessChallenge(password: string, challengeParams: PasswordVerifierChallengeParams): PasswordVerifierChallengeResponse;
+    /**
+     * Authenticate a user via their password.
+     *
+     * This method also re-initializes the SmallA and LargeA values.
+     *
+     * @param username Cognito Username
+     * @param password Cognito Password
+     * @returns An object with Id-/Access-/Refresh tokens on success, an error object on failure
+     */
+    AuthenticateUser(username: string, password: string): Promise<PasswordVerifierResult | undefined>;
+    /**
+     * Authenticate a user via a refresh token.
+     *
+     * This method generates new Id-/Access-Token.
+     *
+     * @param refreshToken A valid refresh token
+     * @returns An object with Id-/Access-/Refresh tokens on success, an error object on failure
+     */
+    AuthenticateUserWithRefreshToken(refreshToken: string): Promise<PasswordVerifierResult | undefined>;
+    SetNewPassword(session: string, username: string, newPassword: string): Promise<PasswordVerifierResult | undefined>;
+}
+//# sourceMappingURL=AwsSrpClient.d.ts.map

package/lib/client/AwsSrpClient.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"AwsSrpClient.d.ts","sourceRoot":"","sources":["../../src/client/AwsSrpClient.ts"],"names":[],"mappings":"AACA,OAAO,EAGL,KAAK,+BAA+B,EAGpC,KAAK,sBAAsB,EAE3B,KAAK,iCAAiC,EAIvC,MAAM,YAAY,CAAC;AAEpB,OAAe,EAAE,KAAK,UAAU,EAAE,MAAM,aAAa,CAAC;AAItD,qBAAa,YAAY;IACvB,OAAO,CAAC,MAAM,CAAC,KAAK,CAgBiC;IACrD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAO;IAE3B,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,UAAU,CAAC;IACjB,CAAC,EAAE,UAAU,CAAC;IACd,CAAC,EAAE,UAAU,CAAC;IACd,WAAW,EAAE,UAAU,CAAC;IACxB,WAAW,EAAE,UAAU,CAAC;gBAEZ,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM;IAWrD,UAAU;IAKjB,OAAO,CAAC,oBAAoB;IAK5B,OAAO,CAAC,UAAU;IAMlB;;;OAGG;IACI,OAAO,IAAI,MAAM;IAIxB,OAAO,CAAC,4BAA4B;IAiBpC;;;;;OAKG;IACI,gBAAgB,CACrB,QAAQ,EAAE,MAAM,EAChB,eAAe,EAAE,+BAA+B,GAC/C,iCAAiC;IAyBpC;;;;;;;;OAQG;IACU,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,GAAG,SAAS,CAAC;IAqF9G;;;;;;;OAOG;IACU,gCAAgC,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,GAAG,SAAS,CAAC;IAmDnG,cAAc,CACzB,OAAO,EAAE,MAAM,EACf,QAAQ,EAAE,MAAM,EAChB,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,sBAAsB,GAAG,SAAS,CAAC;CAuC/C"}

package/lib/client/AwsSrpClient.js

@@ -0,0 +1,261 @@
+import { HashUtils } from '../utils/HashUtils.js';
+import { AmzTarget, AuthFlow, } from './Types.js';
+import CryptoJS from 'crypto-js';
+import bigInt from 'big-integer';
+import moment from 'moment';
+import axios from 'axios';
+export class AwsSrpClient {
+    constructor(region, poolId, clientId) {
+        this.Region = region;
+        this.PoolId = poolId;
+        this.ClientId = clientId;
+        this.BigN = HashUtils.HexToLong(AwsSrpClient.N_HEX);
+        this.G = HashUtils.HexToLong(AwsSrpClient.G_HEX);
+        this.K = HashUtils.HexToLong(HashUtils.HexHash(`00${AwsSrpClient.N_HEX}0${AwsSrpClient.G_HEX}`));
+        this.SmallAValue = bigInt(0);
+        this.LargeAValue = bigInt(0);
+    }
+    Initialize() {
+        this.SmallAValue = this.GenerateRandomSmallA();
+        this.LargeAValue = this.CalculateA();
+    }
+    GenerateRandomSmallA() {
+        const random = HashUtils.GetRandom(128);
+        return random.mod(this.BigN);
+    }
+    CalculateA() {
+        const bigA = this.G.modPow(this.SmallAValue, this.BigN);
+        if (bigA === this.BigN)
+            throw new Error('Safety check for A failed.');
+        return bigA;
+    }
+    /**
+     *
+     * @returns The generated SRP_A value for an InitiateAuth request.
+     */
+    GetSrpA() {
+        return HashUtils.LongToHex(this.LargeAValue);
+    }
+    GetPasswordAuthenticationKey(username, password, serverBValue, salt) {
+        const uValue = HashUtils.CalculateU(this.LargeAValue, serverBValue);
+        if (uValue === bigInt())
+            throw new Error('U cannot be zero.');
+        const usernamePassword = `${this.PoolId.split('_')[1]}${username}:${password}`;
+        const usernamePasswordHash = HashUtils.HashSha256(CryptoJS.enc.Utf8.parse(usernamePassword));
+        const xValue = HashUtils.HexToLong(HashUtils.HexHash(HashUtils.PadHex(salt) + usernamePasswordHash));
+        const gModPowXn = this.G.modPow(xValue, this.BigN);
+        const intValue2 = serverBValue.minus(this.K.times(gModPowXn));
+        let sValue = intValue2.modPow(this.SmallAValue.plus(uValue.times(xValue)), this.BigN);
+        if (sValue < bigInt())
+            sValue = sValue.plus(this.BigN);
+        return HashUtils.ComputeHdkf(CryptoJS.enc.Hex.parse(HashUtils.PadHex(sValue)), CryptoJS.enc.Hex.parse(HashUtils.PadHex(HashUtils.LongToHex(uValue))));
+    }
+    /**
+     * Generate a response for an AuthChallenge.
+     * @param password The user password
+     * @param challengeParams The response from an InitiateAuth request
+     * @returns A Password Verifier challenge response
+     */
+    ProcessChallenge(password, challengeParams) {
+        const timestamp = moment.utc().format('ddd MMM D HH:mm:ss UTC yyyy');
+        const hkdf = this.GetPasswordAuthenticationKey(challengeParams.USER_ID_FOR_SRP, password, HashUtils.HexToLong(challengeParams.SRP_B), challengeParams.SALT);
+        const secretBlockBytes = CryptoJS.enc.Base64.parse(challengeParams.SECRET_BLOCK);
+        const poolIdBytes = CryptoJS.enc.Utf8.parse(this.PoolId.split('_')[1]);
+        const userIdBytes = CryptoJS.enc.Utf8.parse(challengeParams.USER_ID_FOR_SRP);
+        const timestampBytes = CryptoJS.enc.Utf8.parse(timestamp);
+        const msg = poolIdBytes.concat(userIdBytes).concat(secretBlockBytes).concat(timestampBytes);
+        const hmac = CryptoJS.HmacSHA256(msg, hkdf);
+        const signature = CryptoJS.enc.Base64.stringify(hmac);
+        return {
+            USERNAME: challengeParams.USER_ID_FOR_SRP,
+            TIMESTAMP: timestamp,
+            PASSWORD_CLAIM_SECRET_BLOCK: challengeParams.SECRET_BLOCK,
+            PASSWORD_CLAIM_SIGNATURE: signature,
+        };
+    }
+    /**
+     * Authenticate a user via their password.
+     *
+     * This method also re-initializes the SmallA and LargeA values.
+     *
+     * @param username Cognito Username
+     * @param password Cognito Password
+     * @returns An object with Id-/Access-/Refresh tokens on success, an error object on failure
+     */
+    async AuthenticateUser(username, password) {
+        try {
+            this.Initialize();
+            const cognitoUrl = `https://cognito-idp.${this.Region}.amazonaws.com`;
+            const authParams = {
+                USERNAME: username,
+                SRP_A: this.GetSrpA(),
+            };
+            const authRequest = {
+                AuthFlow: AuthFlow.UserSrpAuth,
+                ClientId: this.ClientId,
+                AuthParameters: authParams,
+            };
+            const initAuthResponse = await axios.request({
+                url: cognitoUrl,
+                method: 'POST',
+                headers: { 'Content-Type': 'application/x-amz-json-1.1', 'X-Amz-Target': AmzTarget.InitiateAuth },
+                data: JSON.stringify(authRequest),
+            });
+            if (initAuthResponse) {
+                const initAuthBody = initAuthResponse.data;
+                if ((initAuthBody === null || initAuthBody === void 0 ? void 0 : initAuthBody.ChallengeName) && initAuthBody.ChallengeName === 'PASSWORD_VERIFIER') {
+                    const challengeResponse = this.ProcessChallenge(password, initAuthBody.ChallengeParameters);
+                    const challengeRequest = {
+                        ChallengeName: initAuthBody.ChallengeName,
+                        ChallengeResponses: challengeResponse,
+                        ClientId: this.ClientId,
+                    };
+                    const authChallengeResponse = await axios.request({
+                        url: cognitoUrl,
+                        method: 'POST',
+                        headers: { 'Content-Type': 'application/x-amz-json-1.1', 'X-Amz-Target': AmzTarget.AuthChallenge },
+                        data: JSON.stringify(challengeRequest),
+                    });
+                    if (authChallengeResponse) {
+                        const verifierResult = {
+                            Success: false,
+                            NewPasswordRequired: false,
+                        };
+                        if (authChallengeResponse.data.AuthenticationResult) {
+                            verifierResult.Success = true;
+                            verifierResult.AuthenticationResult = authChallengeResponse.data.AuthenticationResult;
+                            verifierResult.ChallengeParameters = authChallengeResponse.data.ChallengeParameters;
+                        }
+                        else if (authChallengeResponse.data.ChallengeName &&
+                            authChallengeResponse.data.ChallengeName === 'NEW_PASSWORD_REQUIRED') {
+                            verifierResult.Success = true;
+                            verifierResult.NewPasswordRequired = true;
+                            verifierResult.Session = authChallengeResponse.data.Session;
+                        }
+                        else if (authChallengeResponse.data.ChallengeName &&
+                            authChallengeResponse.data.ChallengeName === 'MFA_SETUP') {
+                            verifierResult.Success = true;
+                            verifierResult.MfaSetup = true;
+                            verifierResult.Session = authChallengeResponse.data.Session;
+                            verifierResult.ChallengeParameters = authChallengeResponse.data.ChallengeParameters;
+                        }
+                        return verifierResult;
+                    }
+                }
+            }
+        }
+        catch (err) {
+            return {
+                Success: false,
+                NewPasswordRequired: false,
+                Error: err,
+            };
+        }
+    }
+    /**
+     * Authenticate a user via a refresh token.
+     *
+     * This method generates new Id-/Access-Token.
+     *
+     * @param refreshToken A valid refresh token
+     * @returns An object with Id-/Access-/Refresh tokens on success, an error object on failure
+     */
+    async AuthenticateUserWithRefreshToken(refreshToken) {
+        try {
+            const cognitoUrl = `https://cognito-idp.${this.Region}.amazonaws.com`;
+            const authParams = {
+                REFRESH_TOKEN: refreshToken,
+            };
+            const authRequest = {
+                AuthFlow: AuthFlow.RefreshTokenAuth,
+                ClientId: this.ClientId,
+                AuthParameters: authParams,
+            };
+            const initAuthResponse = await axios.request({
+                url: cognitoUrl,
+                method: 'POST',
+                headers: { 'Content-Type': 'application/x-amz-json-1.1', 'X-Amz-Target': AmzTarget.InitiateAuth },
+                data: JSON.stringify(authRequest),
+            });
+            if (initAuthResponse) {
+                const verifierResult = {
+                    Success: false,
+                    NewPasswordRequired: false,
+                };
+                if (initAuthResponse.data.AuthenticationResult) {
+                    verifierResult.Success = true;
+                    verifierResult.AuthenticationResult = initAuthResponse.data.AuthenticationResult;
+                    verifierResult.ChallengeParameters = initAuthResponse.data.ChallengeParameters;
+                }
+                else if (initAuthResponse.data.ChallengeName &&
+                    initAuthResponse.data.ChallengeName === 'NEW_PASSWORD_REQUIRED') {
+                    verifierResult.Success = true;
+                    verifierResult.NewPasswordRequired = true;
+                    verifierResult.Session = initAuthResponse.data.Session;
+                }
+                return verifierResult;
+            }
+        }
+        catch (err) {
+            return {
+                Success: false,
+                NewPasswordRequired: false,
+                Error: err,
+            };
+        }
+    }
+    async SetNewPassword(session, username, newPassword) {
+        const cognitoUrl = `https://cognito-idp.${this.Region}.amazonaws.com`;
+        const newPasswordChallengeResponse = {
+            USERNAME: username,
+            NEW_PASSWORD: newPassword,
+        };
+        const newPasswordChallengeRequest = {
+            ChallengeName: 'NEW_PASSWORD_REQUIRED',
+            ClientId: this.ClientId,
+            Session: session,
+            ChallengeResponses: newPasswordChallengeResponse,
+        };
+        try {
+            const newPasswordResponse = await axios.request({
+                url: cognitoUrl,
+                method: 'POST',
+                headers: { 'Content-Type': 'application/x-amz-json-1.1', 'X-Amz-Target': AmzTarget.AuthChallenge },
+                data: JSON.stringify(newPasswordChallengeRequest),
+            });
+            if (newPasswordResponse) {
+                return {
+                    Success: true,
+                    NewPasswordRequired: false,
+                    AuthenticationResult: newPasswordResponse.data.AuthenticationResult,
+                    ChallengeParameters: newPasswordResponse.data.ChallengeParameters,
+                };
+            }
+        }
+        catch (err) {
+            return {
+                Success: false,
+                NewPasswordRequired: false,
+                Error: err,
+            };
+        }
+    }
+}
+AwsSrpClient.N_HEX = 'FFFFFFFFFFFFFFFFC90FDAA22168C234C4C6628B80DC1CD1' +
+    '29024E088A67CC74020BBEA63B139B22514A08798E3404DD' +
+    'EF9519B3CD3A431B302B0A6DF25F14374FE1356D6D51C245' +
+    'E485B576625E7EC6F44C42E9A637ED6B0BFF5CB6F406B7ED' +
+    'EE386BFB5A899FA5AE9F24117C4B1FE649286651ECE45B3D' +
+    'C2007CB8A163BF0598DA48361C55D39A69163FA8FD24CF5F' +
+    '83655D23DCA3AD961C62F356208552BB9ED529077096966D' +
+    '670C354E4ABC9804F1746C08CA18217C32905E462E36CE3B' +
+    'E39E772C180E86039B2783A2EC07A28FB5C55DF06F4C52C9' +
+    'DE2BCBF6955817183995497CEA956AE515D2261898FA0510' +
+    '15728E5A8AAAC42DAD33170D04507A33A85521ABDF1CBA64' +
+    'ECFB850458DBEF0A8AEA71575D060C7DB3970F85A6E1E4C7' +
+    'ABF5AE8CDB0933D71E8C94E04A25619DCEE3D2261AD2EE6B' +
+    'F12FFA06D98A0864D87602733EC86A64521F2B18177B200C' +
+    'BBE117577A615D6C770988C0BAD946E208E24FA074E5AB31' +
+    '43DB5BFCE0FD108E4B82D120A93AD2CAFFFFFFFFFFFFFFFF';
+AwsSrpClient.G_HEX = '2';
+//# sourceMappingURL=AwsSrpClient.js.map

package/lib/client/AwsSrpClient.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AwsSrpClient.js","sourceRoot":"","sources":["../../src/client/AwsSrpClient.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAClD,OAAO,EACL,SAAS,EAUT,QAAQ,GACT,MAAM,YAAY,CAAC;AACpB,OAAO,QAAQ,MAAM,WAAW,CAAC;AACjC,OAAO,MAA2B,MAAM,aAAa,CAAC;AACtD,OAAO,MAAM,MAAM,QAAQ,CAAC;AAC5B,OAAO,KAAK,MAAM,OAAO,CAAC;AAE1B,MAAM,OAAO,YAAY;IA6BvB,YAAY,MAAc,EAAE,MAAc,EAAE,QAAgB;QAC1D,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,IAAI,GAAG,SAAS,CAAC,SAAS,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC;QACpD,IAAI,CAAC,CAAC,GAAG,SAAS,CAAC,SAAS,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC;QACjD,IAAI,CAAC,CAAC,GAAG,SAAS,CAAC,SAAS,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,YAAY,CAAC,KAAK,IAAI,YAAY,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QACjG,IAAI,CAAC,WAAW,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;QAC7B,IAAI,CAAC,WAAW,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;IAC/B,CAAC;IAEM,UAAU;QACf,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC/C,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,UAAU,EAAE,CAAC;IACvC,CAAC;IAEO,oBAAoB;QAC1B,MAAM,MAAM,GAAG,SAAS,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;QACxC,OAAO,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC/B,CAAC;IAEO,UAAU;QAChB,MAAM,IAAI,GAAG,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;QACxD,IAAI,IAAI,KAAK,IAAI,CAAC,IAAI;YAAE,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;QACtE,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;;OAGG;IACI,OAAO;QACZ,OAAO,SAAS,CAAC,SAAS,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;IAC/C,CAAC;IAEO,4BAA4B,CAAC,QAAgB,EAAE,QAAgB,EAAE,YAAwB,EAAE,IAAY;QAC7G,MAAM,MAAM,GAAe,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,WAAW,EAAE,YAAY,CAAC,CAAC;QAChF,IAAI,MAAM,KAAK,MAAM,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,mBAAmB,CAAC,CAAC;QAC9D,MAAM,gBAAgB,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,QAAQ,IAAI,QAAQ,EAAE,CAAC;QAC/E,MAAM,oBAAoB,GAAG,SAAS,CAAC,UAAU,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC;QAE7F,MAAM,MAAM,GAAe,SAAS,CAAC,SAAS,CAAC,SAAS,CAAC,OAAO,CAAC,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,oBAAoB,CAAC,CAAC,CAAC;QACjH,MAAM,SAAS,GAAe,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;QAC/D,MAAM,SAAS,GAAe,YAAY,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC;QAC1E,IAAI,MAAM,GAAe,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;QAClG,IAAI,MAAM,GAAG,MAAM,EAAE;YAAE,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACvD,OAAO,SAAS,CAAC,WAAW,CAC1B,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,EAChD,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,SAAS,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,CACtE,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACI,gBAAgB,CACrB,QAAgB,EAChB,eAAgD;QAEhD,MAAM,SAAS,GAAG,MAAM,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,6BAA6B,CAAC,CAAC;QACrE,MAAM,IAAI,GAAG,IAAI,CAAC,4BAA4B,CAC5C,eAAe,CAAC,eAAe,EAC/B,QAAQ,EACR,SAAS,CAAC,SAAS,CAAC,eAAe,CAAC,KAAK,CAAC,EAC1C,eAAe,CAAC,IAAI,CACrB,CAAC;QACF,MAAM,gBAAgB,GAAG,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,YAAY,CAAC,CAAC;QACjF,MAAM,WAAW,GAAG,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACvE,MAAM,WAAW,GAAG,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,eAAe,CAAC,CAAC;QAC7E,MAAM,cAAc,GAAG,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QAE1D,MAAM,GAAG,GAAG,WAAW,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC;QAC5F,MAAM,IAAI,GAAG,QAAQ,CAAC,UAAU,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAC5C,MAAM,SAAS,GAAG,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QAEtD,OAAO;YACL,QAAQ,EAAE,eAAe,CAAC,eAAe;YACzC,SAAS,EAAE,SAAS;YACpB,2BAA2B,EAAE,eAAe,CAAC,YAAY;YACzD,wBAAwB,EAAE,SAAS;SACpC,CAAC;IACJ,CAAC;IAED;;;;;;;;OAQG;IACI,KAAK,CAAC,gBAAgB,CAAC,QAAgB,EAAE,QAAgB;QAC9D,IAAI;YACF,IAAI,CAAC,UAAU,EAAE,CAAC;YAElB,MAAM,UAAU,GAAG,uBAAuB,IAAI,CAAC,MAAM,gBAAgB,CAAC;YAEtE,MAAM,UAAU,GAAuB;gBACrC,QAAQ,EAAE,QAAQ;gBAClB,KAAK,EAAE,IAAI,CAAC,OAAO,EAAE;aACtB,CAAC;YAEF,MAAM,WAAW,GAAwB;gBACvC,QAAQ,EAAE,QAAQ,CAAC,WAAW;gBAC9B,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,cAAc,EAAE,UAAU;aAC3B,CAAC;YAEF,MAAM,gBAAgB,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC;gBAC3C,GAAG,EAAE,UAAU;gBACf,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,cAAc,EAAE,4BAA4B,EAAE,cAAc,EAAE,SAAS,CAAC,YAAY,EAAE;gBACjG,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC;aAClC,CAAC,CAAC;YAEH,IAAI,gBAAgB,EAAE;gBACpB,MAAM,YAAY,GAAyB,gBAAgB,CAAC,IAAI,CAAC;gBAEjE,IAAI,CAAA,YAAY,aAAZ,YAAY,uBAAZ,YAAY,CAAE,aAAa,KAAI,YAAY,CAAC,aAAa,KAAK,mBAAmB,EAAE;oBACrF,MAAM,iBAAiB,GAAsC,IAAI,CAAC,gBAAgB,CAChF,QAAQ,EACR,YAAY,CAAC,mBAAmB,CACjC,CAAC;oBACF,MAAM,gBAAgB,GAAkC;wBACtD,aAAa,EAAE,YAAY,CAAC,aAAa;wBACzC,kBAAkB,EAAE,iBAAiB;wBACrC,QAAQ,EAAE,IAAI,CAAC,QAAQ;qBACxB,CAAC;oBAEF,MAAM,qBAAqB,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC;wBAChD,GAAG,EAAE,UAAU;wBACf,MAAM,EAAE,MAAM;wBACd,OAAO,EAAE,EAAE,cAAc,EAAE,4BAA4B,EAAE,cAAc,EAAE,SAAS,CAAC,aAAa,EAAE;wBAClG,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,gBAAgB,CAAC;qBACvC,CAAC,CAAC;oBAEH,IAAI,qBAAqB,EAAE;wBACzB,MAAM,cAAc,GAA2B;4BAC7C,OAAO,EAAE,KAAK;4BACd,mBAAmB,EAAE,KAAK;yBAC3B,CAAC;wBAEF,IAAI,qBAAqB,CAAC,IAAI,CAAC,oBAAoB,EAAE;4BACnD,cAAc,CAAC,OAAO,GAAG,IAAI,CAAC;4BAC9B,cAAc,CAAC,oBAAoB,GAAG,qBAAqB,CAAC,IAAI,CAAC,oBAAoB,CAAC;4BACtF,cAAc,CAAC,mBAAmB,GAAG,qBAAqB,CAAC,IAAI,CAAC,mBAAmB,CAAC;yBACrF;6BAAM,IACL,qBAAqB,CAAC,IAAI,CAAC,aAAa;4BACxC,qBAAqB,CAAC,IAAI,CAAC,aAAa,KAAK,uBAAuB,EACpE;4BACA,cAAc,CAAC,OAAO,GAAG,IAAI,CAAC;4BAC9B,cAAc,CAAC,mBAAmB,GAAG,IAAI,CAAC;4BAC1C,cAAc,CAAC,OAAO,GAAG,qBAAqB,CAAC,IAAI,CAAC,OAAO,CAAC;yBAC7D;6BAAM,IACL,qBAAqB,CAAC,IAAI,CAAC,aAAa;4BACxC,qBAAqB,CAAC,IAAI,CAAC,aAAa,KAAK,WAAW,EACxD;4BACA,cAAc,CAAC,OAAO,GAAG,IAAI,CAAC;4BAC9B,cAAc,CAAC,QAAQ,GAAG,IAAI,CAAC;4BAC/B,cAAc,CAAC,OAAO,GAAG,qBAAqB,CAAC,IAAI,CAAC,OAAO,CAAC;4BAC5D,cAAc,CAAC,mBAAmB,GAAG,qBAAqB,CAAC,IAAI,CAAC,mBAAmB,CAAC;yBACrF;wBAED,OAAO,cAAc,CAAC;qBACvB;iBACF;aACF;SACF;QAAC,OAAO,GAAG,EAAE;YACZ,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,mBAAmB,EAAE,KAAK;gBAC1B,KAAK,EAAE,GAAG;aACX,CAAC;SACH;IACH,CAAC;IAED;;;;;;;OAOG;IACI,KAAK,CAAC,gCAAgC,CAAC,YAAoB;QAChE,IAAI;YACF,MAAM,UAAU,GAAG,uBAAuB,IAAI,CAAC,MAAM,gBAAgB,CAAC;YAEtE,MAAM,UAAU,GAAuB;gBACrC,aAAa,EAAE,YAAY;aAC5B,CAAC;YAEF,MAAM,WAAW,GAAwB;gBACvC,QAAQ,EAAE,QAAQ,CAAC,gBAAgB;gBACnC,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,cAAc,EAAE,UAAU;aAC3B,CAAC;YAEF,MAAM,gBAAgB,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC;gBAC3C,GAAG,EAAE,UAAU;gBACf,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,cAAc,EAAE,4BAA4B,EAAE,cAAc,EAAE,SAAS,CAAC,YAAY,EAAE;gBACjG,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC;aAClC,CAAC,CAAC;YAEH,IAAI,gBAAgB,EAAE;gBACpB,MAAM,cAAc,GAA2B;oBAC7C,OAAO,EAAE,KAAK;oBACd,mBAAmB,EAAE,KAAK;iBAC3B,CAAC;gBAEF,IAAI,gBAAgB,CAAC,IAAI,CAAC,oBAAoB,EAAE;oBAC9C,cAAc,CAAC,OAAO,GAAG,IAAI,CAAC;oBAC9B,cAAc,CAAC,oBAAoB,GAAG,gBAAgB,CAAC,IAAI,CAAC,oBAAoB,CAAC;oBACjF,cAAc,CAAC,mBAAmB,GAAG,gBAAgB,CAAC,IAAI,CAAC,mBAAmB,CAAC;iBAChF;qBAAM,IACL,gBAAgB,CAAC,IAAI,CAAC,aAAa;oBACnC,gBAAgB,CAAC,IAAI,CAAC,aAAa,KAAK,uBAAuB,EAC/D;oBACA,cAAc,CAAC,OAAO,GAAG,IAAI,CAAC;oBAC9B,cAAc,CAAC,mBAAmB,GAAG,IAAI,CAAC;oBAC1C,cAAc,CAAC,OAAO,GAAG,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC;iBACxD;gBAED,OAAO,cAAc,CAAC;aACvB;SACF;QAAC,OAAO,GAAG,EAAE;YACZ,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,mBAAmB,EAAE,KAAK;gBAC1B,KAAK,EAAE,GAAG;aACX,CAAC;SACH;IACH,CAAC;IAEM,KAAK,CAAC,cAAc,CACzB,OAAe,EACf,QAAgB,EAChB,WAAmB;QAEnB,MAAM,UAAU,GAAG,uBAAuB,IAAI,CAAC,MAAM,gBAAgB,CAAC;QAEtE,MAAM,4BAA4B,GAAgC;YAChE,QAAQ,EAAE,QAAQ;YAClB,YAAY,EAAE,WAAW;SAC1B,CAAC;QAEF,MAAM,2BAA2B,GAAkC;YACjE,aAAa,EAAE,uBAAuB;YACtC,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,OAAO,EAAE,OAAO;YAChB,kBAAkB,EAAE,4BAA4B;SACjD,CAAC;QAEF,IAAI;YACF,MAAM,mBAAmB,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC;gBAC9C,GAAG,EAAE,UAAU;gBACf,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,cAAc,EAAE,4BAA4B,EAAE,cAAc,EAAE,SAAS,CAAC,aAAa,EAAE;gBAClG,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,2BAA2B,CAAC;aAClD,CAAC,CAAC;YAEH,IAAI,mBAAmB,EAAE;gBACvB,OAAO;oBACL,OAAO,EAAE,IAAI;oBACb,mBAAmB,EAAE,KAAK;oBAC1B,oBAAoB,EAAE,mBAAmB,CAAC,IAAI,CAAC,oBAAoB;oBACnE,mBAAmB,EAAE,mBAAmB,CAAC,IAAI,CAAC,mBAAmB;iBAClE,CAAC;aACH;SACF;QAAC,OAAO,GAAG,EAAE;YACZ,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,mBAAmB,EAAE,KAAK;gBAC1B,KAAK,EAAE,GAAG;aACX,CAAC;SACH;IACH,CAAC;;AArTc,kBAAK,GAClB,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD;IAClD,kDAAkD,CAAC;AACtC,kBAAK,GAAG,GAAG,CAAC"}

package/lib/client/CognitoClient.d.ts

@@ -0,0 +1,25 @@
+import { type ChangePasswordResponse, type ConfirmForgotPasswordResponse, type ForgotPasswordResponse } from './Types.js';
+export declare class CognitoClient {
+    Region: string;
+    ClientId: string;
+    CognitoUrl: string;
+    constructor(region: string, clientId: string);
+    /**
+     * Change a users password.
+     * @param accessToken Valid access token for the user whos password you want to change
+     * @param previousPassword Current password
+     * @param newPassword New password
+     * @returns Object with StatusCode 200 if it worked, StatusCode != 200 and Error message otherwise
+     */
+    ChangePassword(accessToken: string, previousPassword: string, newPassword: string): Promise<ChangePasswordResponse>;
+    ForgotPassword(username: string, metadata: Record<string, string>): Promise<ForgotPasswordResponse>;
+    ConfirmForgotPassword(username: string, code: string, newPassword: string): Promise<ConfirmForgotPasswordResponse>;
+    /**
+     * Build a Cognito Auth Domain with your chosen prefix and region.
+     * @deprecated Not needed anymore, will be removed in the next version.
+     * @param prefix Chosen URL prefix
+     * @returns Your Cognito Auth Domain
+     */
+    CognitoDomain(prefix: string): string;
+}
+//# sourceMappingURL=CognitoClient.d.ts.map

package/lib/client/CognitoClient.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"CognitoClient.d.ts","sourceRoot":"","sources":["../../src/client/CognitoClient.ts"],"names":[],"mappings":"AACA,OAAO,EAGL,KAAK,sBAAsB,EAE3B,KAAK,6BAA6B,EAElC,KAAK,sBAAsB,EAE5B,MAAM,YAAY,CAAC;AAEpB,qBAAa,aAAa;IACxB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;gBAEP,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM;IAM5C;;;;;;OAMG;IACG,cAAc,CAClB,WAAW,EAAE,MAAM,EACnB,gBAAgB,EAAE,MAAM,EACxB,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,sBAAsB,CAAC;IAoB5B,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAoBnG,qBAAqB,CACzB,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,MAAM,EACZ,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,6BAA6B,CAAC;IAqBzC;;;;;OAKG;IACH,aAAa,CAAC,MAAM,EAAE,MAAM;CAG7B"}

package/lib/client/CognitoClient.js

@@ -0,0 +1,78 @@
+import axios from 'axios';
+import { AmzTarget, } from './Types.js';
+export class CognitoClient {
+    constructor(region, clientId) {
+        this.Region = region;
+        this.ClientId = clientId;
+        this.CognitoUrl = `https://cognito-idp.${this.Region}.amazonaws.com`;
+    }
+    /**
+     * Change a users password.
+     * @param accessToken Valid access token for the user whos password you want to change
+     * @param previousPassword Current password
+     * @param newPassword New password
+     * @returns Object with StatusCode 200 if it worked, StatusCode != 200 and Error message otherwise
+     */
+    async ChangePassword(accessToken, previousPassword, newPassword) {
+        const params = {
+            AccessToken: accessToken,
+            PreviousPassword: previousPassword,
+            ProposedPassword: newPassword,
+        };
+        const response = await axios.request({
+            url: this.CognitoUrl,
+            method: 'POST',
+            headers: { 'Content-Type': 'application/x-amz-json-1.1', 'X-Amz-Target': AmzTarget.ChangePassword },
+            data: JSON.stringify(params),
+        });
+        return {
+            StatusCode: response.status,
+            Error: JSON.stringify(response.data),
+        };
+    }
+    async ForgotPassword(username, metadata) {
+        const params = {
+            ClientId: this.ClientId,
+            Username: username,
+            ClientMetadata: metadata,
+        };
+        const response = await axios.request({
+            url: this.CognitoUrl,
+            method: 'POST',
+            headers: { 'Content-Type': 'application/x-amz-json-1.1', 'X-Amz-Target': AmzTarget.ForgotPassword },
+            data: JSON.stringify(params),
+        });
+        return {
+            CodeDeliveryDetails: response.data.CodeDeliveryDetails ? response.data.CodeDeliveryDetails : {},
+            Error: !response.data.CodeDeliveryDetails ? response.data : {},
+        };
+    }
+    async ConfirmForgotPassword(username, code, newPassword) {
+        const params = {
+            ClientId: this.ClientId,
+            ConfirmationCode: code,
+            Username: username,
+            Password: newPassword,
+        };
+        const response = await axios.request({
+            url: this.CognitoUrl,
+            method: 'POST',
+            headers: { 'Content-Type': 'application/x-amz-json-1.1', 'X-Amz-Target': AmzTarget.ConfirmForgotPassword },
+            data: JSON.stringify(params),
+        });
+        return {
+            Success: response.status === 200,
+            Error: JSON.stringify(response.data),
+        };
+    }
+    /**
+     * Build a Cognito Auth Domain with your chosen prefix and region.
+     * @deprecated Not needed anymore, will be removed in the next version.
+     * @param prefix Chosen URL prefix
+     * @returns Your Cognito Auth Domain
+     */
+    CognitoDomain(prefix) {
+        return `https://${prefix}.auth.${this.Region}.amazoncognito.com`;
+    }
+}
+//# sourceMappingURL=CognitoClient.js.map

package/lib/client/CognitoClient.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"CognitoClient.js","sourceRoot":"","sources":["../../src/client/CognitoClient.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EACL,SAAS,GAQV,MAAM,YAAY,CAAC;AAEpB,MAAM,OAAO,aAAa;IAKxB,YAAY,MAAc,EAAE,QAAgB;QAC1C,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,UAAU,GAAG,uBAAuB,IAAI,CAAC,MAAM,gBAAgB,CAAC;IACvE,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,cAAc,CAClB,WAAmB,EACnB,gBAAwB,EACxB,WAAmB;QAEnB,MAAM,MAAM,GAAyB;YACnC,WAAW,EAAE,WAAW;YACxB,gBAAgB,EAAE,gBAAgB;YAClC,gBAAgB,EAAE,WAAW;SAC9B,CAAC;QAEF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC;YACnC,GAAG,EAAE,IAAI,CAAC,UAAU;YACpB,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,4BAA4B,EAAE,cAAc,EAAE,SAAS,CAAC,cAAc,EAAE;YACnG,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC;SAC7B,CAAC,CAAC;QAEH,OAAO;YACL,UAAU,EAAE,QAAQ,CAAC,MAAM;YAC3B,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC;SACrC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,QAAgB,EAAE,QAAgC;QACrE,MAAM,MAAM,GAAyB;YACnC,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,QAAQ,EAAE,QAAQ;YAClB,cAAc,EAAE,QAAQ;SACzB,CAAC;QAEF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC;YACnC,GAAG,EAAE,IAAI,CAAC,UAAU;YACpB,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,4BAA4B,EAAE,cAAc,EAAE,SAAS,CAAC,cAAc,EAAE;YACnG,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC;SAC7B,CAAC,CAAC;QAEH,OAAO;YACL,mBAAmB,EAAE,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,EAAE;YAC/F,KAAK,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE;SAC/D,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,qBAAqB,CACzB,QAAgB,EAChB,IAAY,EACZ,WAAmB;QAEnB,MAAM,MAAM,GAAgC;YAC1C,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,gBAAgB,EAAE,IAAI;YACtB,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,WAAW;SACtB,CAAC;QAEF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC;YACnC,GAAG,EAAE,IAAI,CAAC,UAAU;YACpB,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,4BAA4B,EAAE,cAAc,EAAE,SAAS,CAAC,qBAAqB,EAAE;YAC1G,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC;SAC7B,CAAC,CAAC;QAEH,OAAO;YACL,OAAO,EAAE,QAAQ,CAAC,MAAM,KAAK,GAAG;YAChC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC;SACrC,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACH,aAAa,CAAC,MAAc;QAC1B,OAAO,WAAW,MAAM,SAAS,IAAI,CAAC,MAAM,oBAAoB,CAAC;IACnE,CAAC;CACF"}

package/lib/client/Types.d.ts

@@ -0,0 +1,107 @@
+declare enum AmzTarget {
+    InitiateAuth = "AWSCognitoIdentityProviderService.InitiateAuth",
+    AuthChallenge = "AWSCognitoIdentityProviderService.RespondToAuthChallenge",
+    ChangePassword = "AWSCognitoIdentityProviderService.ChangePassword",
+    ForgotPassword = "AWSCognitoIdentityProviderService.ForgotPassword",
+    ConfirmForgotPassword = "AWSCognitoIdentityProviderService.ConfirmForgotPassword"
+}
+declare enum AuthFlow {
+    UserSrpAuth = "USER_SRP_AUTH",
+    RefreshTokenAuth = "REFRESH_TOKEN"
+}
+interface InitiateAuthParams {
+    USERNAME: string;
+    SRP_A: string;
+}
+interface RefreshTokenParams {
+    REFRESH_TOKEN: string;
+    SECRET_HASH?: string;
+}
+interface InitiateAuthRequest {
+    AuthParameters: InitiateAuthParams | RefreshTokenParams;
+    AuthFlow: AuthFlow;
+    ClientId: string;
+}
+interface PasswordVerifierChallengeParams {
+    SALT: string;
+    SECRET_BLOCK: string;
+    USER_ID_FOR_SRP: string;
+    USERNAME: string;
+    SRP_B: string;
+}
+interface InitiateAuthResponse {
+    ChallengeName: string;
+    ChallengeParameters: PasswordVerifierChallengeParams;
+}
+interface ChallengeResponse {
+    USERNAME: string;
+}
+interface PasswordVerifierChallengeResponse extends ChallengeResponse {
+    TIMESTAMP?: string;
+    PASSWORD_CLAIM_SECRET_BLOCK?: string;
+    PASSWORD_CLAIM_SIGNATURE?: string;
+}
+interface NewPasswordChallengeReponse extends ChallengeResponse {
+    NEW_PASSWORD: string;
+    SECRET_HASH?: string;
+}
+interface RespondToAuthChallengeRequest {
+    ClientId: string;
+    ChallengeName: string;
+    ChallengeResponses: ChallengeResponse;
+    Session?: string;
+}
+interface PasswordVerifierResult {
+    Success: boolean;
+    NewPasswordRequired: boolean;
+    Session?: string;
+    AuthenticationResult?: {
+        AccessToken: string;
+        IdToken: string;
+        RefreshToken: string;
+        ExpiresIn: number;
+        TokenType: string;
+    };
+    MfaSetup?: boolean;
+    ChallengeParameters?: any;
+    Error?: any;
+}
+interface ChangePasswordParams {
+    AccessToken: string;
+    PreviousPassword: string;
+    ProposedPassword: string;
+}
+interface ChangePasswordResponse {
+    StatusCode: number;
+    Error?: string;
+}
+interface ForgotPasswordParams {
+    ClientId: string;
+    SecretHash?: string;
+    Username: string;
+    ClientMetadata?: Record<string, string>;
+}
+interface ForgotPasswordResponse {
+    CodeDeliveryDetails?: {
+        AttributeName: string;
+        DeliveryMedium: string;
+        Destination: string;
+    };
+    Error?: {
+        __type: string;
+        message: string;
+    };
+}
+interface ConfirmForgotPasswordParams {
+    ClientId: string;
+    SecretHash?: string;
+    Username: string;
+    ConfirmationCode: string;
+    Password: string;
+}
+interface ConfirmForgotPasswordResponse {
+    Success: boolean;
+    Error?: any;
+}
+export { AmzTarget, AuthFlow, type InitiateAuthParams, type RefreshTokenParams, type InitiateAuthRequest, type PasswordVerifierChallengeParams, type InitiateAuthResponse, type RespondToAuthChallengeRequest, type ChallengeResponse, type PasswordVerifierResult, type PasswordVerifierChallengeResponse, type NewPasswordChallengeReponse, type ChangePasswordParams, type ChangePasswordResponse, type ForgotPasswordParams, type ForgotPasswordResponse, type ConfirmForgotPasswordParams, type ConfirmForgotPasswordResponse, };
+//# sourceMappingURL=Types.d.ts.map

package/lib/client/Types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"Types.d.ts","sourceRoot":"","sources":["../../src/client/Types.ts"],"names":[],"mappings":"AAAA,aAAK,SAAS;IACZ,YAAY,mDAAmD;IAC/D,aAAa,6DAA6D;IAC1E,cAAc,qDAAqD;IACnE,cAAc,qDAAqD;IACnE,qBAAqB,4DAA4D;CAClF;AAED,aAAK,QAAQ;IACX,WAAW,kBAAkB;IAC7B,gBAAgB,kBAAkB;CACnC;AAED,UAAU,kBAAkB;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;CACf;AAED,UAAU,kBAAkB;IAC1B,aAAa,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,UAAU,mBAAmB;IAC3B,cAAc,EAAE,kBAAkB,GAAG,kBAAkB,CAAC;IACxD,QAAQ,EAAE,QAAQ,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,UAAU,+BAA+B;IACvC,IAAI,EAAE,MAAM,CAAC;IACb,YAAY,EAAE,MAAM,CAAC;IACrB,eAAe,EAAE,MAAM,CAAC;IACxB,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;CACf;AAED,UAAU,oBAAoB;IAC5B,aAAa,EAAE,MAAM,CAAC;IACtB,mBAAmB,EAAE,+BAA+B,CAAC;CACtD;AAED,UAAU,iBAAiB;IACzB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,UAAU,iCAAkC,SAAQ,iBAAiB;IACnE,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,2BAA2B,CAAC,EAAE,MAAM,CAAC;IACrC,wBAAwB,CAAC,EAAE,MAAM,CAAC;CACnC;AAED,UAAU,2BAA4B,SAAQ,iBAAiB;IAC7D,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,UAAU,6BAA6B;IACrC,QAAQ,EAAE,MAAM,CAAC;IACjB,aAAa,EAAE,MAAM,CAAC;IACtB,kBAAkB,EAAE,iBAAiB,CAAC;IACtC,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,UAAU,sBAAsB;IAC9B,OAAO,EAAE,OAAO,CAAC;IACjB,mBAAmB,EAAE,OAAO,CAAC;IAC7B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,oBAAoB,CAAC,EAAE;QACrB,WAAW,EAAE,MAAM,CAAC;QACpB,OAAO,EAAE,MAAM,CAAC;QAChB,YAAY,EAAE,MAAM,CAAC;QACrB,SAAS,EAAE,MAAM,CAAC;QAClB,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;IACF,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,mBAAmB,CAAC,EAAE,GAAG,CAAC;IAC1B,KAAK,CAAC,EAAE,GAAG,CAAC;CACb;AAED,UAAU,oBAAoB;IAC5B,WAAW,EAAE,MAAM,CAAC;IACpB,gBAAgB,EAAE,MAAM,CAAC;IACzB,gBAAgB,EAAE,MAAM,CAAC;CAC1B;AAED,UAAU,sBAAsB;IAC9B,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,UAAU,oBAAoB;IAC5B,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,cAAc,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CACzC;AAED,UAAU,sBAAsB;IAC9B,mBAAmB,CAAC,EAAE;QACpB,aAAa,EAAE,MAAM,CAAC;QACtB,cAAc,EAAE,MAAM,CAAC;QACvB,WAAW,EAAE,MAAM,CAAC;KACrB,CAAC;IACF,KAAK,CAAC,EAAE;QACN,MAAM,EAAE,MAAM,CAAC;QACf,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;CACH;AAED,UAAU,2BAA2B;IACnC,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,gBAAgB,EAAE,MAAM,CAAC;IACzB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,UAAU,6BAA6B;IACrC,OAAO,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,GAAG,CAAC;CACb;AAED,OAAO,EACL,SAAS,EACT,QAAQ,EACR,KAAK,kBAAkB,EACvB,KAAK,kBAAkB,EACvB,KAAK,mBAAmB,EACxB,KAAK,+BAA+B,EACpC,KAAK,oBAAoB,EACzB,KAAK,6BAA6B,EAClC,KAAK,iBAAiB,EACtB,KAAK,sBAAsB,EAC3B,KAAK,iCAAiC,EACtC,KAAK,2BAA2B,EAChC,KAAK,oBAAoB,EACzB,KAAK,sBAAsB,EAC3B,KAAK,oBAAoB,EACzB,KAAK,sBAAsB,EAC3B,KAAK,2BAA2B,EAChC,KAAK,6BAA6B,GACnC,CAAC"}

package/lib/client/Types.js

@@ -0,0 +1,15 @@
+var AmzTarget;
+(function (AmzTarget) {
+    AmzTarget["InitiateAuth"] = "AWSCognitoIdentityProviderService.InitiateAuth";
+    AmzTarget["AuthChallenge"] = "AWSCognitoIdentityProviderService.RespondToAuthChallenge";
+    AmzTarget["ChangePassword"] = "AWSCognitoIdentityProviderService.ChangePassword";
+    AmzTarget["ForgotPassword"] = "AWSCognitoIdentityProviderService.ForgotPassword";
+    AmzTarget["ConfirmForgotPassword"] = "AWSCognitoIdentityProviderService.ConfirmForgotPassword";
+})(AmzTarget || (AmzTarget = {}));
+var AuthFlow;
+(function (AuthFlow) {
+    AuthFlow["UserSrpAuth"] = "USER_SRP_AUTH";
+    AuthFlow["RefreshTokenAuth"] = "REFRESH_TOKEN";
+})(AuthFlow || (AuthFlow = {}));
+export { AmzTarget, AuthFlow, };
+//# sourceMappingURL=Types.js.map

package/lib/client/Types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Types.js","sourceRoot":"","sources":["../../src/client/Types.ts"],"names":[],"mappings":"AAAA,IAAK,SAMJ;AAND,WAAK,SAAS;IACZ,4EAA+D,CAAA;IAC/D,uFAA0E,CAAA;IAC1E,gFAAmE,CAAA;IACnE,gFAAmE,CAAA;IACnE,8FAAiF,CAAA;AACnF,CAAC,EANI,SAAS,KAAT,SAAS,QAMb;AAED,IAAK,QAGJ;AAHD,WAAK,QAAQ;IACX,yCAA6B,CAAA;IAC7B,8CAAkC,CAAA;AACpC,CAAC,EAHI,QAAQ,KAAR,QAAQ,QAGZ;AAgHD,OAAO,EACL,SAAS,EACT,QAAQ,GAiBT,CAAC"}

package/lib/index.d.ts

@@ -0,0 +1,6 @@
+import { AwsSrpClient } from './client/AwsSrpClient.js';
+import { CognitoClient } from './client/CognitoClient.js';
+import { HashUtils } from './utils/HashUtils.js';
+import { AmzTarget, AuthFlow, ChangePasswordParams, ChangePasswordResponse, InitiateAuthParams, RefreshTokenParams, InitiateAuthRequest, InitiateAuthResponse, RespondToAuthChallengeRequest, ChallengeResponse, PasswordVerifierChallengeParams, PasswordVerifierResult, NewPasswordChallengeReponse, PasswordVerifierChallengeResponse } from './client/Types.js';
+export { AwsSrpClient, CognitoClient, HashUtils, AmzTarget, AuthFlow, ChangePasswordParams, ChangePasswordResponse, InitiateAuthParams, RefreshTokenParams, InitiateAuthRequest, InitiateAuthResponse, RespondToAuthChallengeRequest, ChallengeResponse, PasswordVerifierChallengeParams, PasswordVerifierResult, NewPasswordChallengeReponse, PasswordVerifierChallengeResponse, };
+//# sourceMappingURL=index.d.ts.map

package/lib/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAC1D,OAAO,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AACjD,OAAO,EACL,SAAS,EACT,QAAQ,EACR,oBAAoB,EACpB,sBAAsB,EACtB,kBAAkB,EAClB,kBAAkB,EAClB,mBAAmB,EACnB,oBAAoB,EACpB,6BAA6B,EAC7B,iBAAiB,EACjB,+BAA+B,EAC/B,sBAAsB,EACtB,2BAA2B,EAC3B,iCAAiC,EAClC,MAAM,mBAAmB,CAAC;AAE3B,OAAO,EACL,YAAY,EACZ,aAAa,EACb,SAAS,EACT,SAAS,EACT,QAAQ,EACR,oBAAoB,EACpB,sBAAsB,EACtB,kBAAkB,EAClB,kBAAkB,EAClB,mBAAmB,EACnB,oBAAoB,EACpB,6BAA6B,EAC7B,iBAAiB,EACjB,+BAA+B,EAC/B,sBAAsB,EACtB,2BAA2B,EAC3B,iCAAiC,GAClC,CAAC"}

package/lib/index.js

@@ -0,0 +1,21 @@
+import { AwsSrpClient } from './client/AwsSrpClient.js';
+import { CognitoClient } from './client/CognitoClient.js';
+import { HashUtils } from './utils/HashUtils.js';
+import { AmzTarget, AuthFlow, } from './client/Types.js';
+export { AwsSrpClient, CognitoClient, HashUtils, AmzTarget, AuthFlow, };
+// const client = new AwsSrpClient('region', 'pool-id', 'client-id');
+// client.AuthenticateUser('user', 'password');
+// const response: AuthResponse = {
+//     ChallengeName: "PASSWORD_VERIFIER",
+//     ChallengeParameters: {
+//         SALT: "aqsfyf326546sdgsdfasda65s1d6a",
+//         SECRET_BLOCK: "jdhgsjsdghkjklyvda65sf1w64h615l651c6a5sd41fg65g4j1651c651hb651d6516kj16l414vca32c32x2g6r4n61yc651hnj84rz9k451acy1g984w6v21y1b9641h16dxb4rj9n61C1Y65G4X9684B1JM94B65s21v4ds6fhg==",
+//         USER_ID_FOR_SRP: "user",
+//         USERNAME: "user",
+//         SRP_B: "laskdjfglsdjgietu099sd8h49dsgd4s9dgf4s9dg4s5g4sdg4s94af4aFHd9318u6ßsdfoi120hfv28094ghß2jfldxmg20894ujtßmmhß9j2gimcgklkgüpdskt902fölksdöfk390utßskdfl,k1ß3ujsdjkf"
+//     }
+// };
+// client.Initialize();
+// const challengeParams = client.ProcessChallenge("password", response.ChallengeParameters);
+// console.log(JSON.stringify(challengeParams));
+//# sourceMappingURL=index.js.map

package/lib/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAC1D,OAAO,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AACjD,OAAO,EACL,SAAS,EACT,QAAQ,GAaT,MAAM,mBAAmB,CAAC;AAE3B,OAAO,EACL,YAAY,EACZ,aAAa,EACb,SAAS,EACT,SAAS,EACT,QAAQ,GAaT,CAAC;AAEF,qEAAqE;AACrE,+CAA+C;AAE/C,mCAAmC;AACnC,0CAA0C;AAC1C,6BAA6B;AAC7B,iDAAiD;AACjD,4MAA4M;AAC5M,mCAAmC;AACnC,4BAA4B;AAC5B,oLAAoL;AACpL,QAAQ;AACR,KAAK;AAEL,uBAAuB;AACvB,6FAA6F;AAE7F,gDAAgD"}

package/lib/utils/HashUtils.d.ts

@@ -0,0 +1,39 @@
+import CryptoJS from 'crypto-js';
+import bigInt, { BigInteger } from 'big-integer';
+declare class HashUtils {
+    private static INFO_BITS;
+    /**
+     * Creates a SHA256 hash out of a WordArray.
+     * @param buf CryptoJS WordArray to hash
+     * @returns SHA256-encrypted hash, padded to a length of 64
+     */
+    static HashSha256(buf: CryptoJS.lib.WordArray): string;
+    static HexHash(hexString: string): string;
+    static HexToLong(hexString: string): BigInteger;
+    static LongToHex(longValue: BigInteger): string;
+    /**
+     * Creates a random BigInteger of a given size.
+     * @param size Number of random bytes
+     * @returns Random BigInteger
+     */
+    static GetRandom(size: number): BigInteger;
+    /**
+     * Add padding to ensure a valid hex string.
+     * @param hex Either a hex string or a BigInteger that get converted to a hex string
+     * @returns A padded hex string
+     */
+    static PadHex(hex: string | BigInteger): string;
+    /**
+     * Creates a 16 byte HMAC derived key.
+     * @param ikm Input key material
+     * @param salt Salt from the server challenge response
+     * @returns 16 byte HMAC derived key
+     */
+    static ComputeHdkf(ikm: CryptoJS.lib.WordArray, salt: CryptoJS.lib.WordArray): CryptoJS.lib.WordArray;
+    static CalculateU(bigA: BigInteger, bigB: BigInteger): bigInt.BigInteger;
+    private static ByteArrayToWordArray;
+    private static WordToByteArray;
+    private static WordArrayToByteArray;
+}
+export { HashUtils };
+//# sourceMappingURL=HashUtils.d.ts.map

package/lib/utils/HashUtils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"HashUtils.d.ts","sourceRoot":"","sources":["../../src/utils/HashUtils.ts"],"names":[],"mappings":"AAAA,OAAO,QAAQ,MAAM,WAAW,CAAC;AACjC,OAAO,MAAM,EAAE,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAEjD,cAAM,SAAS;IACb,OAAO,CAAC,MAAM,CAAC,SAAS,CAA0E;IAElG;;;;OAIG;WACW,UAAU,CAAC,GAAG,EAAE,QAAQ,CAAC,GAAG,CAAC,SAAS,GAAG,MAAM;WAK/C,OAAO,CAAC,SAAS,EAAE,MAAM,GAAG,MAAM;WAIlC,SAAS,CAAC,SAAS,EAAE,MAAM,GAAG,UAAU;WAIxC,SAAS,CAAC,SAAS,EAAE,UAAU,GAAG,MAAM;IAItD;;;;OAIG;WACW,SAAS,CAAC,IAAI,EAAE,MAAM,GAAG,UAAU;IAMjD;;;;OAIG;WACW,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,UAAU,GAAG,MAAM;IAYtD;;;;;OAKG;WACW,WAAW,CAAC,GAAG,EAAE,QAAQ,CAAC,GAAG,CAAC,SAAS,EAAE,IAAI,EAAE,QAAQ,CAAC,GAAG,CAAC,SAAS,GAAG,QAAQ,CAAC,GAAG,CAAC,SAAS;WAe9F,UAAU,CAAC,IAAI,EAAE,UAAU,EAAE,IAAI,EAAE,UAAU;IAK3D,OAAO,CAAC,MAAM,CAAC,oBAAoB;IAanC,OAAO,CAAC,MAAM,CAAC,eAAe;IAY9B,OAAO,CAAC,MAAM,CAAC,oBAAoB;CAiBpC;AAED,OAAO,EAAE,SAAS,EAAE,CAAC"}

package/lib/utils/HashUtils.js

@@ -0,0 +1,111 @@
+import CryptoJS from 'crypto-js';
+import bigInt from 'big-integer';
+class HashUtils {
+    /**
+     * Creates a SHA256 hash out of a WordArray.
+     * @param buf CryptoJS WordArray to hash
+     * @returns SHA256-encrypted hash, padded to a length of 64
+     */
+    static HashSha256(buf) {
+        const a = CryptoJS.SHA256(buf).toString(CryptoJS.enc.Hex);
+        return a.padStart(64, '0');
+    }
+    static HexHash(hexString) {
+        return this.HashSha256(CryptoJS.enc.Hex.parse(hexString));
+    }
+    static HexToLong(hexString) {
+        return bigInt(hexString, 16);
+    }
+    static LongToHex(longValue) {
+        return longValue.toString(16);
+    }
+    /**
+     * Creates a random BigInteger of a given size.
+     * @param size Number of random bytes
+     * @returns Random BigInteger
+     */
+    static GetRandom(size) {
+        const randomBytes = CryptoJS.lib.WordArray.random(size);
+        const randomHex = CryptoJS.enc.Hex.stringify(randomBytes);
+        return this.HexToLong(randomHex);
+    }
+    /**
+     * Add padding to ensure a valid hex string.
+     * @param hex Either a hex string or a BigInteger that get converted to a hex string
+     * @returns A padded hex string
+     */
+    static PadHex(hex) {
+        let hashStr = '';
+        if (hex instanceof bigInt)
+            hashStr = this.LongToHex(hex);
+        else if (typeof hex === 'string')
+            hashStr = hex;
+        if (hashStr.length % 2 === 1)
+            hashStr = `0${hashStr}`;
+        else if ('89ABCDEFabcdef'.includes(hashStr[0]))
+            hashStr = `00${hashStr}`;
+        return hashStr;
+    }
+    /**
+     * Creates a 16 byte HMAC derived key.
+     * @param ikm Input key material
+     * @param salt Salt from the server challenge response
+     * @returns 16 byte HMAC derived key
+     */
+    static ComputeHdkf(ikm, salt) {
+        const prk = CryptoJS.HmacSHA256(ikm, salt);
+        const updateByteArray = [1];
+        const updateWordArray = this.ByteArrayToWordArray(updateByteArray);
+        const infoBits = this.INFO_BITS.clone();
+        const infoBitsUpdate = infoBits.concat(updateWordArray);
+        const hash = CryptoJS.HmacSHA256(infoBitsUpdate, prk);
+        hash.sigBytes = 16;
+        hash.clamp();
+        return hash;
+    }
+    static CalculateU(bigA, bigB) {
+        const uHexHash = this.HexHash(this.PadHex(bigA) + this.PadHex(bigB));
+        return this.HexToLong(uHexHash);
+    }
+    static ByteArrayToWordArray(ba) {
+        const wa = [];
+        let i;
+        for (i = 0; i < ba.length; i++) {
+            wa[(i / 4) | 0] |= ba[i] << (24 - 8 * i);
+        }
+        return CryptoJS.lib.WordArray.create(wa, ba.length);
+    }
+    // Following function where only used for debugging to check if the generated WordArray is equal to the byte array used in other implementations
+    static WordToByteArray(word, length) {
+        const ba = [];
+        const xFF = 0xff;
+        if (length > 0)
+            ba.push(word >>> 24);
+        if (length > 1)
+            ba.push((word >>> 16) & xFF);
+        if (length > 2)
+            ba.push((word >>> 8) & xFF);
+        if (length > 3)
+            ba.push(word & xFF);
+        return ba;
+    }
+    static WordArrayToByteArray(wordArray, length) {
+        if (wordArray.hasOwnProperty('sigBytes') && wordArray.hasOwnProperty('words')) {
+            length = wordArray.sigBytes;
+            wordArray = wordArray.words;
+        }
+        const result = [];
+        let bytes = [];
+        let i = 0;
+        while (length > 0) {
+            bytes = this.WordToByteArray(wordArray[i], Math.min(4, length));
+            length -= bytes.length;
+            result.push(bytes);
+            i++;
+        }
+        return [].concat.apply([], result);
+    }
+}
+HashUtils.INFO_BITS = CryptoJS.enc.Utf8.parse('Caldera Derived Key');
+export { HashUtils };
+//# sourceMappingURL=HashUtils.js.map

package/lib/utils/HashUtils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"HashUtils.js","sourceRoot":"","sources":["../../src/utils/HashUtils.ts"],"names":[],"mappings":"AAAA,OAAO,QAAQ,MAAM,WAAW,CAAC;AACjC,OAAO,MAAsB,MAAM,aAAa,CAAC;AAEjD,MAAM,SAAS;IAGb;;;;OAIG;IACI,MAAM,CAAC,UAAU,CAAC,GAA2B;QAClD,MAAM,CAAC,GAAW,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAClE,OAAO,CAAC,CAAC,QAAQ,CAAC,EAAE,EAAE,GAAG,CAAC,CAAC;IAC7B,CAAC;IAEM,MAAM,CAAC,OAAO,CAAC,SAAiB;QACrC,OAAO,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC;IAC5D,CAAC;IAEM,MAAM,CAAC,SAAS,CAAC,SAAiB;QACvC,OAAO,MAAM,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;IAC/B,CAAC;IAEM,MAAM,CAAC,SAAS,CAAC,SAAqB;QAC3C,OAAO,SAAS,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;IAChC,CAAC;IAED;;;;OAIG;IACI,MAAM,CAAC,SAAS,CAAC,IAAY;QAClC,MAAM,WAAW,GAAG,QAAQ,CAAC,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QACxD,MAAM,SAAS,GAAG,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;QAC1D,OAAO,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;IACnC,CAAC;IAED;;;;OAIG;IACI,MAAM,CAAC,MAAM,CAAC,GAAwB;QAC3C,IAAI,OAAO,GAAG,EAAE,CAAC;QAEjB,IAAI,GAAG,YAAY,MAAM;YAAE,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;aACpD,IAAI,OAAO,GAAG,KAAK,QAAQ;YAAE,OAAO,GAAG,GAAG,CAAC;QAEhD,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,KAAK,CAAC;YAAE,OAAO,GAAG,IAAI,OAAO,EAAE,CAAC;aACjD,IAAI,gBAAgB,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YAAE,OAAO,GAAG,KAAK,OAAO,EAAE,CAAC;QAEzE,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;;;;OAKG;IACI,MAAM,CAAC,WAAW,CAAC,GAA2B,EAAE,IAA4B;QACjF,MAAM,GAAG,GAAG,QAAQ,CAAC,UAAU,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAE3C,MAAM,eAAe,GAAG,CAAC,CAAC,CAAC,CAAC;QAC5B,MAAM,eAAe,GAAG,IAAI,CAAC,oBAAoB,CAAC,eAAe,CAAC,CAAC;QACnE,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,CAAC;QACxC,MAAM,cAAc,GAAG,QAAQ,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;QAExD,MAAM,IAAI,GAAG,QAAQ,CAAC,UAAU,CAAC,cAAc,EAAE,GAAG,CAAC,CAAC;QACtD,IAAI,CAAC,QAAQ,GAAG,EAAE,CAAC;QACnB,IAAI,CAAC,KAAK,EAAE,CAAC;QAEb,OAAO,IAAI,CAAC;IACd,CAAC;IAEM,MAAM,CAAC,UAAU,CAAC,IAAgB,EAAE,IAAgB;QACzD,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC;QACrE,OAAO,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;IAClC,CAAC;IAEO,MAAM,CAAC,oBAAoB,CAAC,EAAY;QAC9C,MAAM,EAAE,GAAa,EAAE,CAAC;QACxB,IAAI,CAAS,CAAC;QAEd,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE;YAC9B,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;SAC1C;QAED,OAAO,QAAQ,CAAC,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,MAAM,CAAC,CAAC;IACtD,CAAC;IAED,gJAAgJ;IAExI,MAAM,CAAC,eAAe,CAAC,IAAY,EAAE,MAAc;QACzD,MAAM,EAAE,GAAa,EAAE,CAAC;QACxB,MAAM,GAAG,GAAW,IAAI,CAAC;QAEzB,IAAI,MAAM,GAAG,CAAC;YAAE,EAAE,CAAC,IAAI,CAAC,IAAI,KAAK,EAAE,CAAC,CAAC;QACrC,IAAI,MAAM,GAAG,CAAC;YAAE,EAAE,CAAC,IAAI,CAAC,CAAC,IAAI,KAAK,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC;QAC7C,IAAI,MAAM,GAAG,CAAC;YAAE,EAAE,CAAC,IAAI,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC;QAC5C,IAAI,MAAM,GAAG,CAAC;YAAE,EAAE,CAAC,IAAI,CAAC,IAAI,GAAG,GAAG,CAAC,CAAC;QAEpC,OAAO,EAAE,CAAC;IACZ,CAAC;IAEO,MAAM,CAAC,oBAAoB,CAAC,SAAc,EAAE,MAAW;QAC7D,IAAI,SAAS,CAAC,cAAc,CAAC,UAAU,CAAC,IAAI,SAAS,CAAC,cAAc,CAAC,OAAO,CAAC,EAAE;YAC7E,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC;YAC5B,SAAS,GAAG,SAAS,CAAC,KAAK,CAAC;SAC7B;QAED,MAAM,MAAM,GAAU,EAAE,CAAC;QACzB,IAAI,KAAK,GAAa,EAAE,CAAC;QACzB,IAAI,CAAC,GAAW,CAAC,CAAC;QAClB,OAAO,MAAM,GAAG,CAAC,EAAE;YACjB,KAAK,GAAG,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC;YAChE,MAAM,IAAI,KAAK,CAAC,MAAM,CAAC;YACvB,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACnB,CAAC,EAAE,CAAC;SACL;QACD,OAAO,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;IACrC,CAAC;;AAvHc,mBAAS,GAA2B,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;AA0HpG,OAAO,EAAE,SAAS,EAAE,CAAC"}

package/package.json

@@ -0,0 +1,49 @@
+{
+  "name": "@mocyuto/aws-srp-client",
+  "version": "1.4.0",
+  "description": "Authenticate users with AWS Cognito via SRP",
+  "exports": "./lib/index.js",
+  "types": "lib/index.d.ts",
+  "type": "module",
+  "scripts": {
+    "test": "jest --config jestconfig.json",
+    "build": "tsc",
+    "format": "prettier --write \"src/**/*.ts\"",
+    "lint": "tslint -p tsconfig.json",
+    "prepare": "npm run build",
+    "prepublishOnly": "npm run lint",
+    "preversion": "npm run lint",
+    "version": "npm run format && git add -A src",
+    "postversion": "git push && git push --tags"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/mocyuto/aws-srp-client.git"
+  },
+  "keywords": [
+    "AWS",
+    "SRP"
+  ],
+  "author": "Yuto Suzuki",
+  "license": "ISC",
+  "devDependencies": {
+    "@types/crypto-js": "^4.1.1",
+    "@types/jest": "^29.5.2",
+    "@types/node": "^20.3.1",
+    "jest": "^29.5.0",
+    "prettier": "^2.8.8",
+    "ts-jest": "^29.1.0",
+    "tslint": "^6.1.3",
+    "tslint-config-prettier": "^1.18.0",
+    "typescript": "^5.1.3"
+  },
+  "files": [
+    "lib/**/*"
+  ],
+  "dependencies": {
+    "axios": "^1.4.0",
+    "big-integer": "^1.6.51",
+    "crypto-js": "^4.1.1",
+    "moment": "^2.29.4"
+  }
+}