@mondaydotcomorg/atp-server 0.24.0 → 0.24.2

package/dist/handlers/token.handler.d.ts

@@ -1,18 +0,0 @@
-import type { RequestContext } from '../core/config.js';
-import type { ClientSessionManager } from '../client-sessions.js';
-export interface TokenRefreshRequest {
-    clientId: string;
-}
-export interface TokenRefreshResponse {
-    clientId: string;
-    token: string;
-    expiresAt: number;
-    tokenRotateAt: number;
-}
-/**
- * Handle token refresh requests.
- * Allows clients to refresh their token, even if the JWT has expired.
- * The session must still exist in the cache for refresh to succeed.
- */
-export declare function handleTokenRefresh(ctx: RequestContext, sessionManager: ClientSessionManager): Promise<TokenRefreshResponse>;
-//# sourceMappingURL=token.handler.d.ts.map

package/dist/handlers/token.handler.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"token.handler.d.ts","sourceRoot":"","sources":["../../src/handlers/token.handler.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AACxD,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,uBAAuB,CAAC;AAGlE,MAAM,WAAW,mBAAmB;IACnC,QAAQ,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,oBAAoB;IACpC,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,aAAa,EAAE,MAAM,CAAC;CACtB;AAED;;;;GAIG;AACH,wBAAsB,kBAAkB,CACvC,GAAG,EAAE,cAAc,EACnB,cAAc,EAAE,oBAAoB,GAClC,OAAO,CAAC,oBAAoB,CAAC,CAmC/B"}

package/dist/handlers/token.handler.js

@@ -1,36 +0,0 @@
-import { log } from '@mondaydotcomorg/atp-runtime';
-/**
- * Handle token refresh requests.
- * Allows clients to refresh their token, even if the JWT has expired.
- * The session must still exist in the cache for refresh to succeed.
- */
-export async function handleTokenRefresh(ctx, sessionManager) {
-    // Get clientId from header or body
-    const clientId = ctx.clientId || ctx.body?.clientId;
-    if (!clientId) {
-        ctx.throw(400, 'Client ID is required for token refresh');
-    }
-    // Verify the current token (from Authorization header)
-    const authHeader = ctx.headers['authorization'];
-    if (!authHeader || !authHeader.startsWith('Bearer ')) {
-        ctx.throw(401, 'Bearer token required for refresh');
-    }
-    const currentToken = authHeader.substring(7);
-    // Verify the token belongs to this client - allows expired JWT tokens
-    const isValid = await sessionManager.verifyClientForRefresh(clientId, currentToken);
-    if (!isValid) {
-        ctx.throw(401, 'Invalid token or session expired');
-    }
-    // Refresh the token
-    const refreshResult = await sessionManager.refreshToken(clientId);
-    if (!refreshResult) {
-        ctx.throw(401, 'Session not found or expired');
-    }
-    log.debug('Token refreshed', {
-        clientId,
-        newExpiresAt: refreshResult.expiresAt,
-        newRotateAt: refreshResult.tokenRotateAt,
-    });
-    return refreshResult;
-}
-//# sourceMappingURL=token.handler.js.map

package/dist/handlers/token.handler.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"token.handler.js","sourceRoot":"","sources":["../../src/handlers/token.handler.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,GAAG,EAAE,MAAM,8BAA8B,CAAC;AAanD;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACvC,GAAmB,EACnB,cAAoC;IAEpC,mCAAmC;IACnC,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,IAAK,GAAG,CAAC,IAA4B,EAAE,QAAQ,CAAC;IAE7E,IAAI,CAAC,QAAQ,EAAE,CAAC;QACf,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,yCAAyC,CAAC,CAAC;IAC3D,CAAC;IAED,uDAAuD;IACvD,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;IAChD,IAAI,CAAC,UAAU,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QACtD,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,mCAAmC,CAAC,CAAC;IACrD,CAAC;IAED,MAAM,YAAY,GAAG,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;IAE7C,sEAAsE;IACtE,MAAM,OAAO,GAAG,MAAM,cAAc,CAAC,sBAAsB,CAAC,QAAQ,EAAE,YAAY,CAAC,CAAC;IACpF,IAAI,CAAC,OAAO,EAAE,CAAC;QACd,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,kCAAkC,CAAC,CAAC;IACpD,CAAC;IAED,oBAAoB;IACpB,MAAM,aAAa,GAAG,MAAM,cAAc,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;IAClE,IAAI,CAAC,aAAa,EAAE,CAAC;QACpB,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,8BAA8B,CAAC,CAAC;IAChD,CAAC;IAED,GAAG,CAAC,KAAK,CAAC,iBAAiB,EAAE;QAC5B,QAAQ;QACR,YAAY,EAAE,aAAa,CAAC,SAAS;QACrC,WAAW,EAAE,aAAa,CAAC,aAAa;KACxC,CAAC,CAAC;IAEH,OAAO,aAAa,CAAC;AACtB,CAAC"}

package/src/handlers/token.handler.ts

@@ -1,59 +0,0 @@
-import type { RequestContext } from '../core/config.js';
-import type { ClientSessionManager } from '../client-sessions.js';
-import { log } from '@mondaydotcomorg/atp-runtime';
-
-export interface TokenRefreshRequest {
-	clientId: string;
-}
-
-export interface TokenRefreshResponse {
-	clientId: string;
-	token: string;
-	expiresAt: number;
-	tokenRotateAt: number;
-}
-
-/**
- * Handle token refresh requests.
- * Allows clients to refresh their token, even if the JWT has expired.
- * The session must still exist in the cache for refresh to succeed.
- */
-export async function handleTokenRefresh(
-	ctx: RequestContext,
-	sessionManager: ClientSessionManager
-): Promise<TokenRefreshResponse> {
-	// Get clientId from header or body
-	const clientId = ctx.clientId || (ctx.body as TokenRefreshRequest)?.clientId;
-
-	if (!clientId) {
-		ctx.throw(400, 'Client ID is required for token refresh');
-	}
-
-	// Verify the current token (from Authorization header)
-	const authHeader = ctx.headers['authorization'];
-	if (!authHeader || !authHeader.startsWith('Bearer ')) {
-		ctx.throw(401, 'Bearer token required for refresh');
-	}
-
-	const currentToken = authHeader.substring(7);
-
-	// Verify the token belongs to this client - allows expired JWT tokens
-	const isValid = await sessionManager.verifyClientForRefresh(clientId, currentToken);
-	if (!isValid) {
-		ctx.throw(401, 'Invalid token or session expired');
-	}
-
-	// Refresh the token
-	const refreshResult = await sessionManager.refreshToken(clientId);
-	if (!refreshResult) {
-		ctx.throw(401, 'Session not found or expired');
-	}
-
-	log.debug('Token refreshed', {
-		clientId,
-		newExpiresAt: refreshResult.expiresAt,
-		newRotateAt: refreshResult.tokenRotateAt,
-	});
-
-	return refreshResult;
-}