@nocobase/plugin-idp-oauth 2.1.0-alpha.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (451) hide show
  1. package/LICENSE.txt +107 -0
  2. package/README.md +14 -0
  3. package/build.config.ts +46 -0
  4. package/client.d.ts +2 -0
  5. package/client.js +1 -0
  6. package/dist/client/ErrorPage.d.ts +11 -0
  7. package/dist/client/InteractionPage.d.ts +11 -0
  8. package/dist/client/index.d.ts +9 -0
  9. package/dist/client/index.js +10 -0
  10. package/dist/client/locale.d.ts +10 -0
  11. package/dist/client/models/index.d.ts +11 -0
  12. package/dist/client/plugin.d.ts +13 -0
  13. package/dist/externalVersion.js +18 -0
  14. package/dist/index.d.ts +10 -0
  15. package/dist/index.js +48 -0
  16. package/dist/locale/en-US.json +1 -0
  17. package/dist/locale/zh-CN.json +1 -0
  18. package/dist/node_modules/eta/LICENSE +7 -0
  19. package/dist/node_modules/eta/README.md +185 -0
  20. package/dist/node_modules/eta/dist/core.d.ts +179 -0
  21. package/dist/node_modules/eta/dist/core.d.ts.map +1 -0
  22. package/dist/node_modules/eta/dist/core.js +42 -0
  23. package/dist/node_modules/eta/dist/core.js.map +1 -0
  24. package/dist/node_modules/eta/dist/index.cjs +542 -0
  25. package/dist/node_modules/eta/dist/index.cjs.map +1 -0
  26. package/dist/node_modules/eta/dist/index.d.cts +187 -0
  27. package/dist/node_modules/eta/dist/index.d.cts.map +1 -0
  28. package/dist/node_modules/eta/dist/index.d.mts +187 -0
  29. package/dist/node_modules/eta/dist/index.d.mts.map +1 -0
  30. package/dist/node_modules/eta/dist/index.mjs +512 -0
  31. package/dist/node_modules/eta/dist/index.mjs.map +1 -0
  32. package/dist/node_modules/eta/package.json +75 -0
  33. package/dist/node_modules/jose/LICENSE.md +21 -0
  34. package/dist/node_modules/jose/README.md +153 -0
  35. package/dist/node_modules/jose/dist/types/index.d.ts +55 -0
  36. package/dist/node_modules/jose/dist/types/jwe/compact/decrypt.d.ts +31 -0
  37. package/dist/node_modules/jose/dist/types/jwe/compact/encrypt.d.ts +65 -0
  38. package/dist/node_modules/jose/dist/types/jwe/flattened/decrypt.d.ts +31 -0
  39. package/dist/node_modules/jose/dist/types/jwe/flattened/encrypt.d.ts +83 -0
  40. package/dist/node_modules/jose/dist/types/jwe/general/decrypt.d.ts +38 -0
  41. package/dist/node_modules/jose/dist/types/jwe/general/encrypt.d.ts +74 -0
  42. package/dist/node_modules/jose/dist/types/jwk/embedded.d.ts +17 -0
  43. package/dist/node_modules/jose/dist/types/jwk/thumbprint.d.ts +32 -0
  44. package/dist/node_modules/jose/dist/types/jwks/local.d.ts +29 -0
  45. package/dist/node_modules/jose/dist/types/jwks/remote.d.ts +237 -0
  46. package/dist/node_modules/jose/dist/types/jws/compact/sign.d.ts +36 -0
  47. package/dist/node_modules/jose/dist/types/jws/compact/verify.d.ts +33 -0
  48. package/dist/node_modules/jose/dist/types/jws/flattened/sign.d.ts +42 -0
  49. package/dist/node_modules/jose/dist/types/jws/flattened/verify.d.ts +33 -0
  50. package/dist/node_modules/jose/dist/types/jws/general/sign.d.ts +53 -0
  51. package/dist/node_modules/jose/dist/types/jws/general/verify.d.ts +41 -0
  52. package/dist/node_modules/jose/dist/types/jwt/decrypt.d.ts +35 -0
  53. package/dist/node_modules/jose/dist/types/jwt/encrypt.d.ts +91 -0
  54. package/dist/node_modules/jose/dist/types/jwt/sign.d.ts +43 -0
  55. package/dist/node_modules/jose/dist/types/jwt/unsecured.d.ts +43 -0
  56. package/dist/node_modules/jose/dist/types/jwt/verify.d.ts +37 -0
  57. package/dist/node_modules/jose/dist/types/key/export.d.ts +33 -0
  58. package/dist/node_modules/jose/dist/types/key/generate_key_pair.d.ts +47 -0
  59. package/dist/node_modules/jose/dist/types/key/generate_secret.d.ts +35 -0
  60. package/dist/node_modules/jose/dist/types/key/import.d.ts +83 -0
  61. package/dist/node_modules/jose/dist/types/types.d.ts +852 -0
  62. package/dist/node_modules/jose/dist/types/util/base64url.d.ts +9 -0
  63. package/dist/node_modules/jose/dist/types/util/decode_jwt.d.ts +18 -0
  64. package/dist/node_modules/jose/dist/types/util/decode_protected_header.d.ts +17 -0
  65. package/dist/node_modules/jose/dist/types/util/errors.d.ts +213 -0
  66. package/dist/node_modules/jose/dist/webapi/index.js +32 -0
  67. package/dist/node_modules/jose/dist/webapi/jwe/compact/decrypt.js +27 -0
  68. package/dist/node_modules/jose/dist/webapi/jwe/compact/encrypt.js +27 -0
  69. package/dist/node_modules/jose/dist/webapi/jwe/flattened/decrypt.js +155 -0
  70. package/dist/node_modules/jose/dist/webapi/jwe/flattened/encrypt.js +165 -0
  71. package/dist/node_modules/jose/dist/webapi/jwe/general/decrypt.js +31 -0
  72. package/dist/node_modules/jose/dist/webapi/jwe/general/encrypt.js +182 -0
  73. package/dist/node_modules/jose/dist/webapi/jwk/embedded.js +17 -0
  74. package/dist/node_modules/jose/dist/webapi/jwk/thumbprint.js +68 -0
  75. package/dist/node_modules/jose/dist/webapi/jwks/local.js +119 -0
  76. package/dist/node_modules/jose/dist/webapi/jwks/remote.js +179 -0
  77. package/dist/node_modules/jose/dist/webapi/jws/compact/sign.js +18 -0
  78. package/dist/node_modules/jose/dist/webapi/jws/compact/verify.js +21 -0
  79. package/dist/node_modules/jose/dist/webapi/jws/flattened/sign.js +89 -0
  80. package/dist/node_modules/jose/dist/webapi/jws/flattened/verify.js +110 -0
  81. package/dist/node_modules/jose/dist/webapi/jws/general/sign.js +70 -0
  82. package/dist/node_modules/jose/dist/webapi/jws/general/verify.js +24 -0
  83. package/dist/node_modules/jose/dist/webapi/jwt/decrypt.js +23 -0
  84. package/dist/node_modules/jose/dist/webapi/jwt/encrypt.js +101 -0
  85. package/dist/node_modules/jose/dist/webapi/jwt/sign.js +52 -0
  86. package/dist/node_modules/jose/dist/webapi/jwt/unsecured.js +63 -0
  87. package/dist/node_modules/jose/dist/webapi/jwt/verify.js +15 -0
  88. package/dist/node_modules/jose/dist/webapi/key/export.js +11 -0
  89. package/dist/node_modules/jose/dist/webapi/key/generate_key_pair.js +97 -0
  90. package/dist/node_modules/jose/dist/webapi/key/generate_secret.js +40 -0
  91. package/dist/node_modules/jose/dist/webapi/key/import.js +57 -0
  92. package/dist/node_modules/jose/dist/webapi/lib/aesgcmkw.js +15 -0
  93. package/dist/node_modules/jose/dist/webapi/lib/aeskw.js +25 -0
  94. package/dist/node_modules/jose/dist/webapi/lib/asn1.js +243 -0
  95. package/dist/node_modules/jose/dist/webapi/lib/base64.js +22 -0
  96. package/dist/node_modules/jose/dist/webapi/lib/buffer_utils.js +43 -0
  97. package/dist/node_modules/jose/dist/webapi/lib/check_key_type.js +122 -0
  98. package/dist/node_modules/jose/dist/webapi/lib/content_encryption.js +217 -0
  99. package/dist/node_modules/jose/dist/webapi/lib/crypto_key.js +136 -0
  100. package/dist/node_modules/jose/dist/webapi/lib/deflate.js +44 -0
  101. package/dist/node_modules/jose/dist/webapi/lib/ecdhes.js +52 -0
  102. package/dist/node_modules/jose/dist/webapi/lib/helpers.js +19 -0
  103. package/dist/node_modules/jose/dist/webapi/lib/invalid_key_input.js +27 -0
  104. package/dist/node_modules/jose/dist/webapi/lib/is_key_like.js +17 -0
  105. package/dist/node_modules/jose/dist/webapi/lib/jwk_to_key.js +107 -0
  106. package/dist/node_modules/jose/dist/webapi/lib/jwt_claims_set.js +238 -0
  107. package/dist/node_modules/jose/dist/webapi/lib/key_management.js +186 -0
  108. package/dist/node_modules/jose/dist/webapi/lib/key_to_jwk.js +31 -0
  109. package/dist/node_modules/jose/dist/webapi/lib/normalize_key.js +166 -0
  110. package/dist/node_modules/jose/dist/webapi/lib/pbes2kw.js +39 -0
  111. package/dist/node_modules/jose/dist/webapi/lib/rsaes.js +24 -0
  112. package/dist/node_modules/jose/dist/webapi/lib/signing.js +68 -0
  113. package/dist/node_modules/jose/dist/webapi/lib/type_checks.js +40 -0
  114. package/dist/node_modules/jose/dist/webapi/lib/validate_algorithms.js +10 -0
  115. package/dist/node_modules/jose/dist/webapi/lib/validate_crit.js +33 -0
  116. package/dist/node_modules/jose/dist/webapi/util/base64url.js +30 -0
  117. package/dist/node_modules/jose/dist/webapi/util/decode_jwt.js +32 -0
  118. package/dist/node_modules/jose/dist/webapi/util/decode_protected_header.js +34 -0
  119. package/dist/node_modules/jose/dist/webapi/util/errors.js +99 -0
  120. package/dist/node_modules/jose/package.json +200 -0
  121. package/dist/node_modules/light-my-request/.gitattributes +2 -0
  122. package/dist/node_modules/light-my-request/.github/dependabot.yml +13 -0
  123. package/dist/node_modules/light-my-request/.github/stale.yml +21 -0
  124. package/dist/node_modules/light-my-request/.github/workflows/benchmark.yml +30 -0
  125. package/dist/node_modules/light-my-request/.github/workflows/ci.yml +23 -0
  126. package/dist/node_modules/light-my-request/LICENSE +32 -0
  127. package/dist/node_modules/light-my-request/benchmark/benchmark.js +164 -0
  128. package/dist/node_modules/light-my-request/build/build-validation.js +100 -0
  129. package/dist/node_modules/light-my-request/eslint.config.js +9 -0
  130. package/dist/node_modules/light-my-request/index.js +2 -0
  131. package/dist/node_modules/light-my-request/lib/config-validator.js +919 -0
  132. package/dist/node_modules/light-my-request/lib/form-data.js +79 -0
  133. package/dist/node_modules/light-my-request/lib/parse-url.js +47 -0
  134. package/dist/node_modules/light-my-request/lib/request.js +290 -0
  135. package/dist/node_modules/light-my-request/lib/response.js +240 -0
  136. package/dist/node_modules/light-my-request/node_modules/process-warning/.gitattributes +2 -0
  137. package/dist/node_modules/light-my-request/node_modules/process-warning/.github/dependabot.yml +13 -0
  138. package/dist/node_modules/light-my-request/node_modules/process-warning/.github/workflows/ci.yml +24 -0
  139. package/dist/node_modules/light-my-request/node_modules/process-warning/.taprc +2 -0
  140. package/dist/node_modules/light-my-request/node_modules/process-warning/benchmarks/warn.js +25 -0
  141. package/dist/node_modules/light-my-request/node_modules/process-warning/eslint.config.js +6 -0
  142. package/dist/node_modules/light-my-request/node_modules/process-warning/examples/example.js +11 -0
  143. package/dist/node_modules/light-my-request/node_modules/process-warning/index.js +124 -0
  144. package/dist/node_modules/light-my-request/node_modules/process-warning/package.json +73 -0
  145. package/dist/node_modules/light-my-request/node_modules/process-warning/test/emit-interpolated-string.test.js +29 -0
  146. package/dist/node_modules/light-my-request/node_modules/process-warning/test/emit-once-only.test.js +28 -0
  147. package/dist/node_modules/light-my-request/node_modules/process-warning/test/emit-reset.test.js +36 -0
  148. package/dist/node_modules/light-my-request/node_modules/process-warning/test/emit-set.test.js +30 -0
  149. package/dist/node_modules/light-my-request/node_modules/process-warning/test/emit-unlimited.test.js +37 -0
  150. package/dist/node_modules/light-my-request/node_modules/process-warning/test/index.test.js +99 -0
  151. package/dist/node_modules/light-my-request/node_modules/process-warning/test/issue-88.test.js +33 -0
  152. package/dist/node_modules/light-my-request/node_modules/process-warning/test/jest.test.js +22 -0
  153. package/dist/node_modules/light-my-request/node_modules/process-warning/test/no-warnings.test.js +80 -0
  154. package/dist/node_modules/light-my-request/node_modules/process-warning/types/index.d.ts +37 -0
  155. package/dist/node_modules/light-my-request/node_modules/process-warning/types/index.test-d.ts +36 -0
  156. package/dist/node_modules/light-my-request/package.json +1 -0
  157. package/dist/node_modules/light-my-request/test/async-await.test.js +55 -0
  158. package/dist/node_modules/light-my-request/test/index.test.js +2316 -0
  159. package/dist/node_modules/light-my-request/test/request.test.js +16 -0
  160. package/dist/node_modules/light-my-request/test/response.test.js +19 -0
  161. package/dist/node_modules/light-my-request/test/stream.test.js +359 -0
  162. package/dist/node_modules/light-my-request/types/index.d.ts +128 -0
  163. package/dist/node_modules/light-my-request/types/index.test-d.ts +149 -0
  164. package/dist/node_modules/oidc-provider/LICENSE.md +21 -0
  165. package/dist/node_modules/oidc-provider/README.md +174 -0
  166. package/dist/node_modules/oidc-provider/lib/actions/authorization/assign_claims.js +28 -0
  167. package/dist/node_modules/oidc-provider/lib/actions/authorization/assign_defaults.js +17 -0
  168. package/dist/node_modules/oidc-provider/lib/actions/authorization/authenticated_client_id.js +6 -0
  169. package/dist/node_modules/oidc-provider/lib/actions/authorization/backchannel_request_remap_errors.js +17 -0
  170. package/dist/node_modules/oidc-provider/lib/actions/authorization/backchannel_request_response.js +41 -0
  171. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_ciba_context.js +12 -0
  172. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_claims.js +68 -0
  173. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_client.js +21 -0
  174. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_client_grant_type.js +21 -0
  175. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_dpop_jkt.js +35 -0
  176. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_extra_params.js +18 -0
  177. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_id_token_hint.js +23 -0
  178. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_max_age.js +25 -0
  179. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_openid_scope.js +47 -0
  180. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_pkce.js +41 -0
  181. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_prompt.js +25 -0
  182. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_redirect_uri.js +41 -0
  183. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_requested_expiry.js +16 -0
  184. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_response_mode.js +54 -0
  185. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_response_type.js +26 -0
  186. package/dist/node_modules/oidc-provider/lib/actions/authorization/check_scope.js +53 -0
  187. package/dist/node_modules/oidc-provider/lib/actions/authorization/ciba_load_account.js +58 -0
  188. package/dist/node_modules/oidc-provider/lib/actions/authorization/ciba_required.js +13 -0
  189. package/dist/node_modules/oidc-provider/lib/actions/authorization/device_authorization_response.js +31 -0
  190. package/dist/node_modules/oidc-provider/lib/actions/authorization/device_user_flow.js +31 -0
  191. package/dist/node_modules/oidc-provider/lib/actions/authorization/device_user_flow_errors.js +37 -0
  192. package/dist/node_modules/oidc-provider/lib/actions/authorization/device_user_flow_response.js +55 -0
  193. package/dist/node_modules/oidc-provider/lib/actions/authorization/index.js +200 -0
  194. package/dist/node_modules/oidc-provider/lib/actions/authorization/interaction_emit.js +9 -0
  195. package/dist/node_modules/oidc-provider/lib/actions/authorization/interactions.js +149 -0
  196. package/dist/node_modules/oidc-provider/lib/actions/authorization/load_account.js +15 -0
  197. package/dist/node_modules/oidc-provider/lib/actions/authorization/load_grant.js +29 -0
  198. package/dist/node_modules/oidc-provider/lib/actions/authorization/load_pushed_authorization_request.js +36 -0
  199. package/dist/node_modules/oidc-provider/lib/actions/authorization/oauth_required.js +11 -0
  200. package/dist/node_modules/oidc-provider/lib/actions/authorization/oidc_required.js +27 -0
  201. package/dist/node_modules/oidc-provider/lib/actions/authorization/one_redirect_uri_clients.js +20 -0
  202. package/dist/node_modules/oidc-provider/lib/actions/authorization/process_request_object.js +214 -0
  203. package/dist/node_modules/oidc-provider/lib/actions/authorization/pushed_authorization_request_remap_errors.js +17 -0
  204. package/dist/node_modules/oidc-provider/lib/actions/authorization/pushed_authorization_request_response.js +65 -0
  205. package/dist/node_modules/oidc-provider/lib/actions/authorization/reject_registration.js +12 -0
  206. package/dist/node_modules/oidc-provider/lib/actions/authorization/reject_request_and_uri.js +12 -0
  207. package/dist/node_modules/oidc-provider/lib/actions/authorization/reject_unsupported.js +33 -0
  208. package/dist/node_modules/oidc-provider/lib/actions/authorization/respond.js +46 -0
  209. package/dist/node_modules/oidc-provider/lib/actions/authorization/resume.js +111 -0
  210. package/dist/node_modules/oidc-provider/lib/actions/authorization/strip_outside_jar_params.js +19 -0
  211. package/dist/node_modules/oidc-provider/lib/actions/authorization/unsupported_rar.js +9 -0
  212. package/dist/node_modules/oidc-provider/lib/actions/challenge.js +22 -0
  213. package/dist/node_modules/oidc-provider/lib/actions/code_verification.js +122 -0
  214. package/dist/node_modules/oidc-provider/lib/actions/discovery.js +151 -0
  215. package/dist/node_modules/oidc-provider/lib/actions/end_session.js +222 -0
  216. package/dist/node_modules/oidc-provider/lib/actions/grants/authorization_code.js +144 -0
  217. package/dist/node_modules/oidc-provider/lib/actions/grants/ciba.js +127 -0
  218. package/dist/node_modules/oidc-provider/lib/actions/grants/client_credentials.js +79 -0
  219. package/dist/node_modules/oidc-provider/lib/actions/grants/device_code.js +125 -0
  220. package/dist/node_modules/oidc-provider/lib/actions/grants/index.js +7 -0
  221. package/dist/node_modules/oidc-provider/lib/actions/grants/refresh_token.js +229 -0
  222. package/dist/node_modules/oidc-provider/lib/actions/index.js +25 -0
  223. package/dist/node_modules/oidc-provider/lib/actions/interaction.js +150 -0
  224. package/dist/node_modules/oidc-provider/lib/actions/introspection.js +164 -0
  225. package/dist/node_modules/oidc-provider/lib/actions/jwks.js +7 -0
  226. package/dist/node_modules/oidc-provider/lib/actions/registration.js +274 -0
  227. package/dist/node_modules/oidc-provider/lib/actions/revocation.js +81 -0
  228. package/dist/node_modules/oidc-provider/lib/actions/token.js +74 -0
  229. package/dist/node_modules/oidc-provider/lib/actions/userinfo.js +183 -0
  230. package/dist/node_modules/oidc-provider/lib/adapters/memory_adapter.js +95 -0
  231. package/dist/node_modules/oidc-provider/lib/consts/client_attributes.js +211 -0
  232. package/dist/node_modules/oidc-provider/lib/consts/dev_keystore.js +18 -0
  233. package/dist/node_modules/oidc-provider/lib/consts/index.js +13 -0
  234. package/dist/node_modules/oidc-provider/lib/consts/jwa.js +47 -0
  235. package/dist/node_modules/oidc-provider/lib/consts/non_rejectable_claims.js +1 -0
  236. package/dist/node_modules/oidc-provider/lib/consts/param_list.js +23 -0
  237. package/dist/node_modules/oidc-provider/lib/helpers/_/camel_case.js +1 -0
  238. package/dist/node_modules/oidc-provider/lib/helpers/_/defaults.js +28 -0
  239. package/dist/node_modules/oidc-provider/lib/helpers/_/difference.js +1 -0
  240. package/dist/node_modules/oidc-provider/lib/helpers/_/is_plain_object.js +1 -0
  241. package/dist/node_modules/oidc-provider/lib/helpers/_/map_keys.js +9 -0
  242. package/dist/node_modules/oidc-provider/lib/helpers/_/merge.js +25 -0
  243. package/dist/node_modules/oidc-provider/lib/helpers/_/omit_by.js +11 -0
  244. package/dist/node_modules/oidc-provider/lib/helpers/_/pick.js +10 -0
  245. package/dist/node_modules/oidc-provider/lib/helpers/_/pick_by.js +10 -0
  246. package/dist/node_modules/oidc-provider/lib/helpers/_/remove.js +9 -0
  247. package/dist/node_modules/oidc-provider/lib/helpers/_/set.js +18 -0
  248. package/dist/node_modules/oidc-provider/lib/helpers/_/snake_case.js +1 -0
  249. package/dist/node_modules/oidc-provider/lib/helpers/_/upper_first.js +1 -0
  250. package/dist/node_modules/oidc-provider/lib/helpers/account_claims.js +6 -0
  251. package/dist/node_modules/oidc-provider/lib/helpers/add_client.js +14 -0
  252. package/dist/node_modules/oidc-provider/lib/helpers/als.js +3 -0
  253. package/dist/node_modules/oidc-provider/lib/helpers/append_www_authenticate.js +9 -0
  254. package/dist/node_modules/oidc-provider/lib/helpers/attention.js +23 -0
  255. package/dist/node_modules/oidc-provider/lib/helpers/base64url.js +11 -0
  256. package/dist/node_modules/oidc-provider/lib/helpers/certificate_thumbprint.js +15 -0
  257. package/dist/node_modules/oidc-provider/lib/helpers/challenge.js +111 -0
  258. package/dist/node_modules/oidc-provider/lib/helpers/check_attest_binding.js +10 -0
  259. package/dist/node_modules/oidc-provider/lib/helpers/claims.js +79 -0
  260. package/dist/node_modules/oidc-provider/lib/helpers/client_id_metadata_document.js +198 -0
  261. package/dist/node_modules/oidc-provider/lib/helpers/client_schema.js +700 -0
  262. package/dist/node_modules/oidc-provider/lib/helpers/combined_scope.js +17 -0
  263. package/dist/node_modules/oidc-provider/lib/helpers/configuration.js +544 -0
  264. package/dist/node_modules/oidc-provider/lib/helpers/constant_equals.js +20 -0
  265. package/dist/node_modules/oidc-provider/lib/helpers/defaults.js +3510 -0
  266. package/dist/node_modules/oidc-provider/lib/helpers/epoch_time.js +1 -0
  267. package/dist/node_modules/oidc-provider/lib/helpers/err_out.js +17 -0
  268. package/dist/node_modules/oidc-provider/lib/helpers/errors.js +161 -0
  269. package/dist/node_modules/oidc-provider/lib/helpers/features.js +51 -0
  270. package/dist/node_modules/oidc-provider/lib/helpers/fetch_body_check.js +25 -0
  271. package/dist/node_modules/oidc-provider/lib/helpers/fetch_request.js +221 -0
  272. package/dist/node_modules/oidc-provider/lib/helpers/filter_claims.js +16 -0
  273. package/dist/node_modules/oidc-provider/lib/helpers/formatters.js +24 -0
  274. package/dist/node_modules/oidc-provider/lib/helpers/grant_common.js +214 -0
  275. package/dist/node_modules/oidc-provider/lib/helpers/html_safe.js +19 -0
  276. package/dist/node_modules/oidc-provider/lib/helpers/initialize_adapter.js +24 -0
  277. package/dist/node_modules/oidc-provider/lib/helpers/initialize_app.js +243 -0
  278. package/dist/node_modules/oidc-provider/lib/helpers/initialize_clients.js +24 -0
  279. package/dist/node_modules/oidc-provider/lib/helpers/initialize_keystore.js +310 -0
  280. package/dist/node_modules/oidc-provider/lib/helpers/interaction_policy/check.js +21 -0
  281. package/dist/node_modules/oidc-provider/lib/helpers/interaction_policy/index.js +43 -0
  282. package/dist/node_modules/oidc-provider/lib/helpers/interaction_policy/prompt.js +95 -0
  283. package/dist/node_modules/oidc-provider/lib/helpers/interaction_policy/prompts/consent.js +105 -0
  284. package/dist/node_modules/oidc-provider/lib/helpers/interaction_policy/prompts/login.js +162 -0
  285. package/dist/node_modules/oidc-provider/lib/helpers/jwt.js +211 -0
  286. package/dist/node_modules/oidc-provider/lib/helpers/keystore.js +301 -0
  287. package/dist/node_modules/oidc-provider/lib/helpers/nanoid.js +5 -0
  288. package/dist/node_modules/oidc-provider/lib/helpers/oidc_context.js +284 -0
  289. package/dist/node_modules/oidc-provider/lib/helpers/params.js +27 -0
  290. package/dist/node_modules/oidc-provider/lib/helpers/pkce.js +30 -0
  291. package/dist/node_modules/oidc-provider/lib/helpers/pkce_format.js +17 -0
  292. package/dist/node_modules/oidc-provider/lib/helpers/process_response_types.js +202 -0
  293. package/dist/node_modules/oidc-provider/lib/helpers/re_render_errors.js +39 -0
  294. package/dist/node_modules/oidc-provider/lib/helpers/redirect_uri.js +16 -0
  295. package/dist/node_modules/oidc-provider/lib/helpers/resolve_resource.js +33 -0
  296. package/dist/node_modules/oidc-provider/lib/helpers/resolve_response_mode.js +7 -0
  297. package/dist/node_modules/oidc-provider/lib/helpers/resource_server.js +20 -0
  298. package/dist/node_modules/oidc-provider/lib/helpers/revoke.js +27 -0
  299. package/dist/node_modules/oidc-provider/lib/helpers/script_src_sha.js +21 -0
  300. package/dist/node_modules/oidc-provider/lib/helpers/sector_identifier.js +19 -0
  301. package/dist/node_modules/oidc-provider/lib/helpers/sector_validate.js +55 -0
  302. package/dist/node_modules/oidc-provider/lib/helpers/set_rt_bindings.js +21 -0
  303. package/dist/node_modules/oidc-provider/lib/helpers/token_find.js +51 -0
  304. package/dist/node_modules/oidc-provider/lib/helpers/type_validators.js +8 -0
  305. package/dist/node_modules/oidc-provider/lib/helpers/user_code_form.js +19 -0
  306. package/dist/node_modules/oidc-provider/lib/helpers/user_codes.js +38 -0
  307. package/dist/node_modules/oidc-provider/lib/helpers/valid_url.js +8 -0
  308. package/dist/node_modules/oidc-provider/lib/helpers/validate_dpop.js +129 -0
  309. package/dist/node_modules/oidc-provider/lib/helpers/validate_presence.js +17 -0
  310. package/dist/node_modules/oidc-provider/lib/helpers/weak_cache.js +11 -0
  311. package/dist/node_modules/oidc-provider/lib/index.js +21 -0
  312. package/dist/node_modules/oidc-provider/lib/models/access_token.js +31 -0
  313. package/dist/node_modules/oidc-provider/lib/models/authorization_code.js +27 -0
  314. package/dist/node_modules/oidc-provider/lib/models/backchannel_authentication_request.js +26 -0
  315. package/dist/node_modules/oidc-provider/lib/models/base_model.js +141 -0
  316. package/dist/node_modules/oidc-provider/lib/models/base_token.js +86 -0
  317. package/dist/node_modules/oidc-provider/lib/models/client.js +593 -0
  318. package/dist/node_modules/oidc-provider/lib/models/client_credentials.js +19 -0
  319. package/dist/node_modules/oidc-provider/lib/models/device_code.js +44 -0
  320. package/dist/node_modules/oidc-provider/lib/models/formats/dynamic.js +21 -0
  321. package/dist/node_modules/oidc-provider/lib/models/formats/index.js +14 -0
  322. package/dist/node_modules/oidc-provider/lib/models/formats/jwt.js +198 -0
  323. package/dist/node_modules/oidc-provider/lib/models/formats/opaque.js +58 -0
  324. package/dist/node_modules/oidc-provider/lib/models/grant.js +243 -0
  325. package/dist/node_modules/oidc-provider/lib/models/id_token.js +271 -0
  326. package/dist/node_modules/oidc-provider/lib/models/index.js +37 -0
  327. package/dist/node_modules/oidc-provider/lib/models/initial_access_token.js +12 -0
  328. package/dist/node_modules/oidc-provider/lib/models/interaction.js +73 -0
  329. package/dist/node_modules/oidc-provider/lib/models/mixins/apply.js +4 -0
  330. package/dist/node_modules/oidc-provider/lib/models/mixins/consumable.js +17 -0
  331. package/dist/node_modules/oidc-provider/lib/models/mixins/has_format.js +46 -0
  332. package/dist/node_modules/oidc-provider/lib/models/mixins/has_grant_id.js +12 -0
  333. package/dist/node_modules/oidc-provider/lib/models/mixins/has_grant_type.js +8 -0
  334. package/dist/node_modules/oidc-provider/lib/models/mixins/has_policies.js +38 -0
  335. package/dist/node_modules/oidc-provider/lib/models/mixins/is_attestation_constrained.js +15 -0
  336. package/dist/node_modules/oidc-provider/lib/models/mixins/is_sender_constrained.js +50 -0
  337. package/dist/node_modules/oidc-provider/lib/models/mixins/is_session_bound.js +38 -0
  338. package/dist/node_modules/oidc-provider/lib/models/mixins/set_audience.js +21 -0
  339. package/dist/node_modules/oidc-provider/lib/models/mixins/stores_auth.js +16 -0
  340. package/dist/node_modules/oidc-provider/lib/models/mixins/stores_pkce.js +9 -0
  341. package/dist/node_modules/oidc-provider/lib/models/pushed_authorization_request.js +21 -0
  342. package/dist/node_modules/oidc-provider/lib/models/refresh_token.js +47 -0
  343. package/dist/node_modules/oidc-provider/lib/models/registration_access_token.js +8 -0
  344. package/dist/node_modules/oidc-provider/lib/models/replay_detection.js +31 -0
  345. package/dist/node_modules/oidc-provider/lib/models/session.js +192 -0
  346. package/dist/node_modules/oidc-provider/lib/provider.js +453 -0
  347. package/dist/node_modules/oidc-provider/lib/response_modes/form_post.js +36 -0
  348. package/dist/node_modules/oidc-provider/lib/response_modes/fragment.js +7 -0
  349. package/dist/node_modules/oidc-provider/lib/response_modes/index.js +15 -0
  350. package/dist/node_modules/oidc-provider/lib/response_modes/jwt.js +43 -0
  351. package/dist/node_modules/oidc-provider/lib/response_modes/query.js +7 -0
  352. package/dist/node_modules/oidc-provider/lib/response_modes/web_message.js +55 -0
  353. package/dist/node_modules/oidc-provider/lib/shared/assemble_params.js +7 -0
  354. package/dist/node_modules/oidc-provider/lib/shared/attest_client_auth.js +111 -0
  355. package/dist/node_modules/oidc-provider/lib/shared/authorization_error_handler.js +104 -0
  356. package/dist/node_modules/oidc-provider/lib/shared/check_rar.js +75 -0
  357. package/dist/node_modules/oidc-provider/lib/shared/check_resource.js +77 -0
  358. package/dist/node_modules/oidc-provider/lib/shared/client_auth.js +263 -0
  359. package/dist/node_modules/oidc-provider/lib/shared/conditional_body.js +9 -0
  360. package/dist/node_modules/oidc-provider/lib/shared/cors.js +49 -0
  361. package/dist/node_modules/oidc-provider/lib/shared/error_handler.js +59 -0
  362. package/dist/node_modules/oidc-provider/lib/shared/jwt_client_auth.js +79 -0
  363. package/dist/node_modules/oidc-provider/lib/shared/no_cache.js +4 -0
  364. package/dist/node_modules/oidc-provider/lib/shared/reject_dupes.js +45 -0
  365. package/dist/node_modules/oidc-provider/lib/shared/reject_structured_tokens.js +18 -0
  366. package/dist/node_modules/oidc-provider/lib/shared/selective_body.js +60 -0
  367. package/dist/node_modules/oidc-provider/lib/shared/session.js +68 -0
  368. package/dist/node_modules/oidc-provider/lib/shared/set_www_authenticate_header.js +52 -0
  369. package/dist/node_modules/oidc-provider/lib/views/index.js +22 -0
  370. package/dist/node_modules/oidc-provider/lib/views/interaction.js +171 -0
  371. package/dist/node_modules/oidc-provider/lib/views/layout.js +237 -0
  372. package/dist/node_modules/oidc-provider/lib/views/login.js +43 -0
  373. package/dist/node_modules/oidc-provider/node_modules/@koa/router/LICENSE +21 -0
  374. package/dist/node_modules/oidc-provider/node_modules/@koa/router/README.md +1370 -0
  375. package/dist/node_modules/oidc-provider/node_modules/@koa/router/dist/index.d.mts +1003 -0
  376. package/dist/node_modules/oidc-provider/node_modules/@koa/router/dist/index.d.ts +1003 -0
  377. package/dist/node_modules/oidc-provider/node_modules/@koa/router/dist/index.js +1616 -0
  378. package/dist/node_modules/oidc-provider/node_modules/@koa/router/dist/index.mjs +1573 -0
  379. package/dist/node_modules/oidc-provider/node_modules/@koa/router/package.json +122 -0
  380. package/dist/node_modules/oidc-provider/node_modules/debug/LICENSE +20 -0
  381. package/dist/node_modules/oidc-provider/node_modules/debug/README.md +481 -0
  382. package/dist/node_modules/oidc-provider/node_modules/debug/package.json +64 -0
  383. package/dist/node_modules/oidc-provider/node_modules/debug/src/browser.js +272 -0
  384. package/dist/node_modules/oidc-provider/node_modules/debug/src/common.js +292 -0
  385. package/dist/node_modules/oidc-provider/node_modules/debug/src/index.js +10 -0
  386. package/dist/node_modules/oidc-provider/node_modules/debug/src/node.js +263 -0
  387. package/dist/node_modules/oidc-provider/node_modules/http-errors/HISTORY.md +186 -0
  388. package/dist/node_modules/oidc-provider/node_modules/http-errors/LICENSE +23 -0
  389. package/dist/node_modules/oidc-provider/node_modules/http-errors/README.md +169 -0
  390. package/dist/node_modules/oidc-provider/node_modules/http-errors/index.js +290 -0
  391. package/dist/node_modules/oidc-provider/node_modules/http-errors/package.json +54 -0
  392. package/dist/node_modules/oidc-provider/node_modules/jsesc/LICENSE-MIT.txt +20 -0
  393. package/dist/node_modules/oidc-provider/node_modules/jsesc/README.md +422 -0
  394. package/dist/node_modules/oidc-provider/node_modules/jsesc/bin/jsesc +148 -0
  395. package/dist/node_modules/oidc-provider/node_modules/jsesc/jsesc.js +337 -0
  396. package/dist/node_modules/oidc-provider/node_modules/jsesc/man/jsesc.1 +94 -0
  397. package/dist/node_modules/oidc-provider/node_modules/jsesc/package.json +56 -0
  398. package/dist/node_modules/oidc-provider/node_modules/nanoid/LICENSE +20 -0
  399. package/dist/node_modules/oidc-provider/node_modules/nanoid/README.md +38 -0
  400. package/dist/node_modules/oidc-provider/node_modules/nanoid/bin/nanoid.js +55 -0
  401. package/dist/node_modules/oidc-provider/node_modules/nanoid/index.browser.js +29 -0
  402. package/dist/node_modules/oidc-provider/node_modules/nanoid/index.d.ts +106 -0
  403. package/dist/node_modules/oidc-provider/node_modules/nanoid/index.js +47 -0
  404. package/dist/node_modules/oidc-provider/node_modules/nanoid/nanoid.js +1 -0
  405. package/dist/node_modules/oidc-provider/node_modules/nanoid/non-secure/index.d.ts +48 -0
  406. package/dist/node_modules/oidc-provider/node_modules/nanoid/non-secure/index.js +21 -0
  407. package/dist/node_modules/oidc-provider/node_modules/nanoid/package.json +46 -0
  408. package/dist/node_modules/oidc-provider/node_modules/nanoid/url-alphabet/index.js +2 -0
  409. package/dist/node_modules/oidc-provider/node_modules/path-to-regexp/LICENSE +21 -0
  410. package/dist/node_modules/oidc-provider/node_modules/path-to-regexp/Readme.md +224 -0
  411. package/dist/node_modules/oidc-provider/node_modules/path-to-regexp/dist/index.d.ts +144 -0
  412. package/dist/node_modules/oidc-provider/node_modules/path-to-regexp/dist/index.js +409 -0
  413. package/dist/node_modules/oidc-provider/node_modules/path-to-regexp/dist/index.js.map +1 -0
  414. package/dist/node_modules/oidc-provider/node_modules/path-to-regexp/package.json +64 -0
  415. package/dist/node_modules/oidc-provider/node_modules/statuses/HISTORY.md +87 -0
  416. package/dist/node_modules/oidc-provider/node_modules/statuses/LICENSE +23 -0
  417. package/dist/node_modules/oidc-provider/node_modules/statuses/README.md +139 -0
  418. package/dist/node_modules/oidc-provider/node_modules/statuses/codes.json +65 -0
  419. package/dist/node_modules/oidc-provider/node_modules/statuses/index.js +146 -0
  420. package/dist/node_modules/oidc-provider/node_modules/statuses/package.json +49 -0
  421. package/dist/node_modules/oidc-provider/package.json +95 -0
  422. package/dist/node_modules/quick-lru/index.d.ts +178 -0
  423. package/dist/node_modules/quick-lru/index.js +329 -0
  424. package/dist/node_modules/quick-lru/license +9 -0
  425. package/dist/node_modules/quick-lru/package.json +54 -0
  426. package/dist/node_modules/quick-lru/readme.md +236 -0
  427. package/dist/node_modules/statuses/HISTORY.md +65 -0
  428. package/dist/node_modules/statuses/LICENSE +23 -0
  429. package/dist/node_modules/statuses/README.md +127 -0
  430. package/dist/node_modules/statuses/codes.json +66 -0
  431. package/dist/node_modules/statuses/index.js +113 -0
  432. package/dist/node_modules/statuses/package.json +48 -0
  433. package/dist/server/cache-adapter.d.ts +33 -0
  434. package/dist/server/cache-adapter.js +159 -0
  435. package/dist/server/index.d.ts +10 -0
  436. package/dist/server/index.js +48 -0
  437. package/dist/server/interaction.d.ts +26 -0
  438. package/dist/server/interaction.js +172 -0
  439. package/dist/server/paths.d.ts +19 -0
  440. package/dist/server/paths.js +64 -0
  441. package/dist/server/plugin.d.ts +16 -0
  442. package/dist/server/plugin.js +108 -0
  443. package/dist/server/provider-dispatch.d.ts +32 -0
  444. package/dist/server/provider-dispatch.js +252 -0
  445. package/dist/server/service.d.ts +63 -0
  446. package/dist/server/service.js +540 -0
  447. package/dist/server/utils.d.ts +12 -0
  448. package/dist/server/utils.js +58 -0
  449. package/package.json +24 -0
  450. package/server.d.ts +2 -0
  451. package/server.js +1 -0
package/dist/node_modules/oidc-provider/lib/consts/client_attributes.js ADDED
@@ -0,0 +1,211 @@
1
+ const RECOGNIZED_METADATA = [
2
+ 'application_type',
3
+ 'client_id_issued_at',
4
+ 'client_id',
5
+ 'client_name',
6
+ 'client_secret_expires_at',
7
+ 'client_secret',
8
+ 'client_uri',
9
+ 'contacts',
10
+ 'default_acr_values',
11
+ 'default_max_age',
12
+ 'grant_types',
13
+ 'id_token_signed_response_alg',
14
+ 'initiate_login_uri',
15
+ 'jwks_uri',
16
+ 'jwks',
17
+ 'logo_uri',
18
+ 'policy_uri',
19
+ 'redirect_uris',
20
+ 'require_auth_time',
21
+ 'response_types',
22
+ 'response_modes',
23
+ 'scope',
24
+ 'sector_identifier_uri',
25
+ 'subject_type',
26
+ 'token_endpoint_auth_method',
27
+ 'tos_uri',
28
+ ];
29
+
30
+ const DEFAULTS = {
31
+ application_type: 'web',
32
+ authorization_signed_response_alg: 'RS256',
33
+ backchannel_logout_session_required: false,
34
+ backchannel_user_code_parameter: false,
35
+ grant_types: ['authorization_code'],
36
+ id_token_signed_response_alg: 'RS256',
37
+ introspection_signed_response_alg: 'RS256',
38
+ post_logout_redirect_uris: [],
39
+ require_auth_time: false,
40
+ require_pushed_authorization_requests: false,
41
+ require_signed_request_object: false,
42
+ dpop_bound_access_tokens: false,
43
+ response_types: ['code'],
44
+ subject_type: 'public',
45
+ tls_client_certificate_bound_access_tokens: false,
46
+ token_endpoint_auth_method: 'client_secret_basic',
47
+ authorization_details_types: [],
48
+ };
49
+
50
+ const REQUIRED = [
51
+ 'client_id',
52
+ // 'client_secret', => validated elsewhere and only needed somewhen
53
+ // 'redirect_uris', => validated elsewhere and handled elsewhere
54
+ ];
55
+
56
+ const BOOL = [
57
+ 'backchannel_logout_session_required',
58
+ 'backchannel_user_code_parameter',
59
+ 'dpop_bound_access_tokens',
60
+ 'require_auth_time',
61
+ 'require_pushed_authorization_requests',
62
+ 'require_signed_request_object',
63
+ 'tls_client_certificate_bound_access_tokens',
64
+ 'use_mtls_endpoint_aliases',
65
+ ];
66
+
67
+ const ARYS = [
68
+ 'contacts',
69
+ 'default_acr_values',
70
+ 'grant_types',
71
+ 'post_logout_redirect_uris',
72
+ 'redirect_uris',
73
+ 'response_types',
74
+ 'response_modes',
75
+ 'authorization_details_types',
76
+ ];
77
+
78
+ const STRING = [
79
+ 'application_type',
80
+ 'authorization_encrypted_response_alg',
81
+ 'authorization_encrypted_response_enc',
82
+ 'authorization_signed_response_alg',
83
+ 'backchannel_authentication_request_signing_alg',
84
+ 'backchannel_client_notification_endpoint',
85
+ 'backchannel_logout_uri',
86
+ 'backchannel_token_delivery_mode',
87
+ 'client_id',
88
+ 'client_name',
89
+ 'client_secret',
90
+ 'client_uri',
91
+ 'id_token_encrypted_response_alg',
92
+ 'id_token_encrypted_response_enc',
93
+ 'id_token_signed_response_alg',
94
+ 'initiate_login_uri',
95
+ 'introspection_encrypted_response_alg',
96
+ 'introspection_encrypted_response_enc',
97
+ 'introspection_signed_response_alg',
98
+ 'jwks_uri',
99
+ 'logo_uri',
100
+ 'policy_uri',
101
+ 'request_object_encryption_alg',
102
+ 'request_object_encryption_enc',
103
+ 'request_object_signing_alg',
104
+ 'scope',
105
+ 'sector_identifier_uri',
106
+ 'subject_type',
107
+ 'tls_client_auth_san_dns',
108
+ 'tls_client_auth_san_email',
109
+ 'tls_client_auth_san_ip',
110
+ 'tls_client_auth_san_uri',
111
+ 'tls_client_auth_subject_dn',
112
+ 'token_endpoint_auth_method',
113
+ 'tos_uri',
114
+ 'userinfo_encrypted_response_alg',
115
+ 'userinfo_encrypted_response_enc',
116
+ 'userinfo_signed_response_alg',
117
+
118
+ // in arrays
119
+ 'contacts',
120
+ 'default_acr_values',
121
+ 'grant_types',
122
+ 'post_logout_redirect_uris',
123
+ 'redirect_uris',
124
+ 'response_types',
125
+ 'response_modes',
126
+ 'authorization_details_types',
127
+ ];
128
+
129
+ const WHEN = {
130
+ authorization_encrypted_response_enc: ['authorization_encrypted_response_alg', 'A128CBC-HS256'],
131
+ id_token_encrypted_response_enc: ['id_token_encrypted_response_alg', 'A128CBC-HS256'],
132
+ introspection_encrypted_response_enc: ['introspection_encrypted_response_alg', 'A128CBC-HS256'],
133
+ request_object_encryption_enc: ['request_object_encryption_alg', 'A128CBC-HS256'],
134
+ userinfo_encrypted_response_enc: ['userinfo_encrypted_response_alg', 'A128CBC-HS256'],
135
+
136
+ id_token_encrypted_response_alg: ['id_token_signed_response_alg'],
137
+ userinfo_encrypted_response_alg: ['userinfo_signed_response_alg'],
138
+ introspection_encrypted_response_alg: ['introspection_signed_response_alg'],
139
+ authorization_encrypted_response_alg: ['authorization_signed_response_alg'],
140
+ };
141
+
142
+ const WEB_URI = [
143
+ 'backchannel_client_notification_endpoint',
144
+ 'backchannel_logout_uri',
145
+ 'client_uri',
146
+ 'initiate_login_uri',
147
+ 'jwks_uri',
148
+ 'logo_uri',
149
+ 'policy_uri',
150
+ 'sector_identifier_uri',
151
+ 'tos_uri',
152
+ ];
153
+
154
+ const HTTPS_URI = [
155
+ 'backchannel_client_notification_endpoint',
156
+ 'initiate_login_uri',
157
+ 'sector_identifier_uri',
158
+ ];
159
+
160
+ const LOOPBACKS = new Set(['localhost', '127.0.0.1', '[::1]']);
161
+
162
+ const ENUM = {
163
+ application_type: () => ['native', 'web'],
164
+ };
165
+
166
+ export const noVSCHAR = /[^\x20-\x7E]/;
167
+ // const noNQCHAR = /[^\x21\x23-\x5B\x5D-\x7E]/;
168
+ // const noNQSCHAR = /[^\x20-\x21\x23-\x5B\x5D-\x7E]/;
169
+
170
+ const SYNTAX = {
171
+ client_id: noVSCHAR,
172
+ client_secret: noVSCHAR,
173
+ };
174
+
175
+ const CHOICES = {
176
+ authorization_encrypted_response_alg: 'authorization_encryption_alg_values_supported',
177
+ authorization_encrypted_response_enc: 'authorization_encryption_enc_values_supported',
178
+ authorization_signed_response_alg: 'authorization_signing_alg_values_supported',
179
+ backchannel_authentication_request_signing_alg: 'backchannel_authentication_request_signing_alg_values_supported',
180
+ id_token_encrypted_response_alg: 'id_token_encryption_alg_values_supported',
181
+ id_token_encrypted_response_enc: 'id_token_encryption_enc_values_supported',
182
+ id_token_signed_response_alg: 'id_token_signing_alg_values_supported',
183
+ introspection_encrypted_response_alg: 'introspection_encryption_alg_values_supported',
184
+ introspection_encrypted_response_enc: 'introspection_encryption_enc_values_supported',
185
+ introspection_signed_response_alg: 'introspection_signing_alg_values_supported',
186
+ request_object_encryption_alg: 'request_object_encryption_alg_values_supported',
187
+ request_object_encryption_enc: 'request_object_encryption_enc_values_supported',
188
+ request_object_signing_alg: 'request_object_signing_alg_values_supported',
189
+ subject_type: 'subject_types_supported',
190
+ token_endpoint_auth_method: 'token_endpoint_auth_methods_supported',
191
+ token_endpoint_auth_signing_alg: 'token_endpoint_auth_signing_alg_values_supported',
192
+ userinfo_encrypted_response_alg: 'userinfo_encryption_alg_values_supported',
193
+ userinfo_encrypted_response_enc: 'userinfo_encryption_enc_values_supported',
194
+ userinfo_signed_response_alg: 'userinfo_signing_alg_values_supported',
195
+ };
196
+
197
+ export {
198
+ ARYS,
199
+ BOOL,
200
+ DEFAULTS,
201
+ ENUM,
202
+ HTTPS_URI,
203
+ LOOPBACKS,
204
+ RECOGNIZED_METADATA,
205
+ REQUIRED,
206
+ STRING,
207
+ SYNTAX,
208
+ WEB_URI,
209
+ WHEN,
210
+ CHOICES,
211
+ };
package/dist/node_modules/oidc-provider/lib/consts/dev_keystore.js ADDED
@@ -0,0 +1,18 @@
1
+ export default {
2
+ keys: [
3
+ {
4
+ alg: 'RS256',
5
+ d: 'VEZOsY07JTFzGTqv6cC2Y32vsfChind2I_TTuvV225_-0zrSej3XLRg8iE_u0-3GSgiGi4WImmTwmEgLo4Qp3uEcxCYbt4NMJC7fwT2i3dfRZjtZ4yJwFl0SIj8TgfQ8ptwZbFZUlcHGXZIr4nL8GXyQT0CK8wy4COfmymHrrUoyfZA154ql_OsoiupSUCRcKVvZj2JHL2KILsq_sh_l7g2dqAN8D7jYfJ58MkqlknBMa2-zi5I0-1JUOwztVNml_zGrp27UbEU60RqV3GHjoqwI6m01U7K0a8Q_SQAKYGqgepbAYOA-P4_TLl5KC4-WWBZu_rVfwgSENwWNEhw8oQ',
6
+ dp: 'E1Y-SN4bQqX7kP-bNgZ_gEv-pixJ5F_EGocHKfS56jtzRqQdTurrk4jIVpI-ZITA88lWAHxjD-OaoJUh9Jupd_lwD5Si80PyVxOMI2xaGQiF0lbKJfD38Sh8frRpgelZVaK_gm834B6SLfxKdNsP04DsJqGKktODF_fZeaGFPH0',
7
+ dq: 'F90JPxevQYOlAgEH0TUt1-3_hyxY6cfPRU2HQBaahyWrtCWpaOzenKZnvGFZdg-BuLVKjCchq3G_70OLE-XDP_ol0UTJmDTT-WyuJQdEMpt_WFF9yJGoeIu8yohfeLatU-67ukjghJ0s9CBzNE_LrGEV6Cup3FXywpSYZAV3iqc',
8
+ e: 'AQAB',
9
+ kid: 'keystore-CHANGE-ME',
10
+ kty: 'RSA',
11
+ n: 'xwQ72P9z9OYshiQ-ntDYaPnnfwG6u9JAdLMZ5o0dmjlcyrvwQRdoFIKPnO65Q8mh6F_LDSxjxa2Yzo_wdjhbPZLjfUJXgCzm54cClXzT5twzo7lzoAfaJlkTsoZc2HFWqmcri0BuzmTFLZx2Q7wYBm0pXHmQKF0V-C1O6NWfd4mfBhbM-I1tHYSpAMgarSm22WDMDx-WWI7TEzy2QhaBVaENW9BKaKkJklocAZCxk18WhR0fckIGiWiSM5FcU1PY2jfGsTmX505Ub7P5Dz75Ygqrutd5tFrcqyPAtPTFDk8X1InxkkUwpP3nFU5o50DGhwQolGYKPGtQ-ZtmbOfcWQ',
12
+ p: '5wC6nY6Ev5FqcLPCqn9fC6R9KUuBej6NaAVOKW7GXiOJAq2WrileGKfMc9kIny20zW3uWkRLm-O-3Yzze1zFpxmqvsvCxZ5ERVZ6leiNXSu3tez71ZZwp0O9gys4knjrI-9w46l_vFuRtjL6XEeFfHEZFaNJpz-lcnb3w0okrbM',
13
+ q: '3I1qeEDslZFB8iNfpKAdWtz_Wzm6-jayT_V6aIvhvMj5mnU-Xpj75zLPQSGa9wunMlOoZW9w1wDO1FVuDhwzeOJaTm-Ds0MezeC4U6nVGyyDHb4CUA3ml2tzt4yLrqGYMT7XbADSvuWYADHw79OFjEi4T3s3tJymhaBvy1ulv8M',
14
+ qi: 'wSbXte9PcPtr788e713KHQ4waE26CzoXx-JNOgN0iqJMN6C4_XJEX-cSvCZDf4rh7xpXN6SGLVd5ibIyDJi7bbi5EQ5AXjazPbLBjRthcGXsIuZ3AtQyR0CEWNSdM7EyM5TRdyZQ9kftfz9nI03guW3iKKASETqX2vh0Z8XRjyU',
15
+ use: 'sig',
16
+ },
17
+ ],
18
+ };
package/dist/node_modules/oidc-provider/lib/consts/index.js ADDED
@@ -0,0 +1,13 @@
1
+ import PARAM_LIST from './param_list.js';
2
+ import DEV_KEYSTORE from './dev_keystore.js';
3
+ import * as CLIENT_ATTRIBUTES from './client_attributes.js';
4
+ import * as JWA from './jwa.js';
5
+
6
+ export const PUSHED_REQUEST_URN = 'urn:ietf:params:oauth:request_uri:';
7
+
8
+ export {
9
+ CLIENT_ATTRIBUTES,
10
+ DEV_KEYSTORE,
11
+ JWA,
12
+ PARAM_LIST,
13
+ };
package/dist/node_modules/oidc-provider/lib/consts/jwa.js ADDED
@@ -0,0 +1,47 @@
1
+ const signingAlgValues = [
2
+ 'HS256', 'HS384', 'HS512',
3
+ 'RS256', 'RS384', 'RS512',
4
+ 'PS256', 'PS384', 'PS512',
5
+ 'ES256', 'ES384', 'ES512',
6
+ 'Ed25519', 'EdDSA',
7
+ ];
8
+
9
+ const version = globalThis.process?.version?.substring(1).split('.').map((i) => parseInt(i, 10));
10
+
11
+ if (version[0] > 24 || (version[0] === 24 && version[1] >= 7)) {
12
+ signingAlgValues.push('ML-DSA-44', 'ML-DSA-65', 'ML-DSA-87');
13
+ }
14
+
15
+ const encryptionAlgValues = [
16
+ // asymmetric
17
+ 'RSA-OAEP',
18
+ 'RSA-OAEP-256', 'RSA-OAEP-384', 'RSA-OAEP-512',
19
+ 'ECDH-ES', 'ECDH-ES+A128KW', 'ECDH-ES+A192KW', 'ECDH-ES+A256KW',
20
+ // symmetric
21
+ 'A128GCMKW', 'A192GCMKW', 'A256GCMKW', 'A128KW', 'A192KW', 'A256KW',
22
+ // direct
23
+ 'dir',
24
+ ];
25
+
26
+ const encryptionEncValues = [
27
+ 'A128CBC-HS256', 'A128GCM', 'A192CBC-HS384', 'A192GCM', 'A256CBC-HS512', 'A256GCM',
28
+ ];
29
+
30
+ export const clientAuthSigningAlgValues = [...signingAlgValues];
31
+ export const idTokenSigningAlgValues = [...signingAlgValues];
32
+ export const requestObjectSigningAlgValues = [...signingAlgValues];
33
+ export const userinfoSigningAlgValues = [...signingAlgValues];
34
+ export const introspectionSigningAlgValues = [...signingAlgValues];
35
+ export const authorizationSigningAlgValues = [...signingAlgValues];
36
+ export const idTokenEncryptionAlgValues = [...encryptionAlgValues];
37
+ export const requestObjectEncryptionAlgValues = [...encryptionAlgValues];
38
+ export const userinfoEncryptionAlgValues = [...encryptionAlgValues];
39
+ export const introspectionEncryptionAlgValues = [...encryptionAlgValues];
40
+ export const authorizationEncryptionAlgValues = [...encryptionAlgValues];
41
+ export const idTokenEncryptionEncValues = [...encryptionEncValues];
42
+ export const requestObjectEncryptionEncValues = [...encryptionEncValues];
43
+ export const userinfoEncryptionEncValues = [...encryptionEncValues];
44
+ export const introspectionEncryptionEncValues = [...encryptionEncValues];
45
+ export const authorizationEncryptionEncValues = [...encryptionEncValues];
46
+ export const dPoPSigningAlgValues = [...signingAlgValues].filter((alg) => !alg.startsWith('HS'));
47
+ export const attestSigningAlgValues = [...signingAlgValues].filter((alg) => !alg.startsWith('HS'));
package/dist/node_modules/oidc-provider/lib/consts/non_rejectable_claims.js ADDED
@@ -0,0 +1 @@
1
+ export const NON_REJECTABLE_CLAIMS = new Set(['sub', 'sid', 'auth_time', 'acr', 'amr', 'iss']);
package/dist/node_modules/oidc-provider/lib/consts/param_list.js ADDED
@@ -0,0 +1,23 @@
1
+ export default [
2
+ 'acr_values',
3
+ // 'claims', // added conditionally depending on feature flag
4
+ 'claims_locales',
5
+ 'client_id',
6
+ 'code_challenge',
7
+ 'code_challenge_method',
8
+ 'display',
9
+ 'id_token_hint',
10
+ 'login_hint',
11
+ 'max_age',
12
+ 'nonce',
13
+ 'prompt',
14
+ 'redirect_uri',
15
+ 'registration',
16
+ 'request',
17
+ 'request_uri',
18
+ 'response_mode',
19
+ 'response_type',
20
+ 'scope',
21
+ 'state',
22
+ 'ui_locales',
23
+ ];
package/dist/node_modules/oidc-provider/lib/helpers/_/camel_case.js ADDED
@@ -0,0 +1 @@
1
+ export default (str = '') => str.replace(/(_\w)/g, (x) => x.replace('_', '').toUpperCase());
package/dist/node_modules/oidc-provider/lib/helpers/_/defaults.js ADDED
@@ -0,0 +1,28 @@
1
+ /* eslint-disable no-continue, no-param-reassign */
2
+
3
+ import isPlainObject from './is_plain_object.js';
4
+
5
+ function defaults(deep, target, ...sources) {
6
+ for (const source of sources) {
7
+ if (!isPlainObject(source)) {
8
+ continue;
9
+ }
10
+ for (const [key, value] of Object.entries(source)) {
11
+ if (key === '__proto__' || key === 'constructor') {
12
+ continue;
13
+ }
14
+ if (typeof target[key] === 'undefined' && typeof value !== 'undefined') {
15
+ target[key] = value;
16
+ }
17
+
18
+ if (deep && isPlainObject(target[key]) && isPlainObject(value)) {
19
+ defaults(true, target[key], value);
20
+ }
21
+ }
22
+ }
23
+
24
+ return target;
25
+ }
26
+
27
+ export default defaults.bind(undefined, false);
28
+ export const deep = defaults.bind(undefined, true);
package/dist/node_modules/oidc-provider/lib/helpers/_/difference.js ADDED
@@ -0,0 +1 @@
1
+ export default (array, values) => array.filter((value) => values.indexOf(value) === -1);
package/dist/node_modules/oidc-provider/lib/helpers/_/is_plain_object.js ADDED
@@ -0,0 +1 @@
1
+ export default (a) => !!a && a.constructor === Object;
package/dist/node_modules/oidc-provider/lib/helpers/_/map_keys.js ADDED
@@ -0,0 +1,9 @@
1
+ export default (object, iteratee) => {
2
+ const result = {};
3
+
4
+ Object.entries(object).forEach(([key, value]) => {
5
+ result[iteratee(value, key, object)] = value;
6
+ });
7
+
8
+ return result;
9
+ };
package/dist/node_modules/oidc-provider/lib/helpers/_/merge.js ADDED
@@ -0,0 +1,25 @@
1
+ /* eslint-disable no-param-reassign, no-continue */
2
+
3
+ import isPlainObject from './is_plain_object.js';
4
+
5
+ function merge(target, ...sources) {
6
+ for (const source of sources) {
7
+ if (!isPlainObject(source)) {
8
+ continue;
9
+ }
10
+ for (const [key, value] of Object.entries(source)) {
11
+ if (key === '__proto__' || key === 'constructor') {
12
+ continue;
13
+ }
14
+ if (isPlainObject(target[key]) && isPlainObject(value)) {
15
+ target[key] = merge(target[key], value);
16
+ } else if (typeof value !== 'undefined') {
17
+ target[key] = value;
18
+ }
19
+ }
20
+ }
21
+
22
+ return target;
23
+ }
24
+
25
+ export default merge;
package/dist/node_modules/oidc-provider/lib/helpers/_/omit_by.js ADDED
@@ -0,0 +1,11 @@
1
+ /* eslint-disable no-param-reassign */
2
+
3
+ export default (object, predicate) => {
4
+ Object.entries(object).forEach(([key, value]) => {
5
+ if (predicate(value, key)) {
6
+ delete object[key];
7
+ }
8
+ });
9
+
10
+ return object;
11
+ };
package/dist/node_modules/oidc-provider/lib/helpers/_/pick.js ADDED
@@ -0,0 +1,10 @@
1
+ export default (object = {}, ...properties) => {
2
+ const result = {};
3
+ properties.forEach((property) => {
4
+ if (Object.prototype.hasOwnProperty.call(object, property)) {
5
+ result[property] = object[property];
6
+ }
7
+ });
8
+
9
+ return result;
10
+ };
package/dist/node_modules/oidc-provider/lib/helpers/_/pick_by.js ADDED
@@ -0,0 +1,10 @@
1
+ export default (object, predicate) => {
2
+ const result = {};
3
+ Object.entries(object).forEach(([key, value]) => {
4
+ if (predicate(value, key)) {
5
+ result[key] = value;
6
+ }
7
+ });
8
+
9
+ return result;
10
+ };
package/dist/node_modules/oidc-provider/lib/helpers/_/remove.js ADDED
@@ -0,0 +1,9 @@
1
+ export default (array, predicate) => {
2
+ const remove = [];
3
+ array.forEach((value, index) => {
4
+ if (predicate(value, index, array)) {
5
+ remove.unshift(index);
6
+ }
7
+ });
8
+ remove.forEach((i) => array.splice(i, 1));
9
+ };
package/dist/node_modules/oidc-provider/lib/helpers/_/set.js ADDED
@@ -0,0 +1,18 @@
1
+ import isPlainObject from './is_plain_object.js';
2
+
3
+ export default (object, path, value) => {
4
+ const properties = path.split('.');
5
+ if (properties.includes('__proto__') || properties.includes('constructor')) {
6
+ throw new TypeError('__proto__ and constructor cannot be set');
7
+ }
8
+ let current = object;
9
+ properties.forEach((property, i) => {
10
+ if (i + 1 === properties.length) {
11
+ current[property] = value;
12
+ } else if (!(property in current) || !isPlainObject(current[property])) {
13
+ current[property] = {};
14
+ }
15
+
16
+ current = current[property];
17
+ });
18
+ };
package/dist/node_modules/oidc-provider/lib/helpers/_/snake_case.js ADDED
@@ -0,0 +1 @@
1
+ export default (str = '') => str.replace(/([A-Z][a-z])/g, (x) => `_${x}`.toLowerCase()).replace(/^_+/, '');
package/dist/node_modules/oidc-provider/lib/helpers/_/upper_first.js ADDED
@@ -0,0 +1 @@
1
+ export default (str = '') => `${str.charAt(0).toUpperCase()}${str.slice(1)}`;
package/dist/node_modules/oidc-provider/lib/helpers/account_claims.js ADDED
@@ -0,0 +1,6 @@
1
+ export default async function getCtxAccountClaims(ctx, use, scope, claims, rejected) {
2
+ return {
3
+ ...await ctx.oidc.account.claims(use, scope, claims, rejected),
4
+ sub: ctx.oidc.account.accountId,
5
+ };
6
+ }
package/dist/node_modules/oidc-provider/lib/helpers/add_client.js ADDED
@@ -0,0 +1,14 @@
1
+ import sectorValidate from './sector_validate.js';
2
+
3
+ export default async function add(provider, metadata, { ctx, store = false } = {}) {
4
+ const client = new provider.Client(metadata, ctx); // eslint-disable-line no-use-before-define
5
+
6
+ if (client.sectorIdentifierUri !== undefined) {
7
+ await sectorValidate(provider, client);
8
+ }
9
+
10
+ if (store) {
11
+ await provider.Client.adapter.upsert(client.clientId, client.metadata());
12
+ }
13
+ return client;
14
+ }
package/dist/node_modules/oidc-provider/lib/helpers/als.js ADDED
@@ -0,0 +1,3 @@
1
+ import { AsyncLocalStorage } from 'node:async_hooks';
2
+
3
+ export default new AsyncLocalStorage();
package/dist/node_modules/oidc-provider/lib/helpers/append_www_authenticate.js ADDED
@@ -0,0 +1,9 @@
1
+ import omitBy from './_/omit_by.js';
2
+
3
+ export default function appendWWWAuthenticate(ctx, scheme, fields) {
4
+ const parameters = Object.entries(omitBy(fields, (v) => v === undefined))
5
+ .map(([key, val]) => `${key}="${val.replace(/\\/g, '\\\\').replace(/"/g, '\\"')}"`)
6
+ .join(', ');
7
+
8
+ ctx.append('WWW-Authenticate', `${scheme} ${parameters}`);
9
+ }
package/dist/node_modules/oidc-provider/lib/helpers/attention.js ADDED
@@ -0,0 +1,23 @@
1
+ const SET_BOLD_YELLOW_TEXT = '\x1b[33;1m';
2
+ const SET_BOLD_RED_TEXT = '\x1b[31;1m';
3
+ const RESET_ALL_ATTRIBUTES = '\x1b[0m';
4
+
5
+ let stdout;
6
+ if (globalThis.process?.stdout?.isTTY) {
7
+ stdout = (str) => `${SET_BOLD_YELLOW_TEXT}${str}${RESET_ALL_ATTRIBUTES}`;
8
+ }
9
+
10
+ let stderr;
11
+ if (globalThis.process?.stderr?.isTTY) {
12
+ stderr = (str) => `${SET_BOLD_RED_TEXT}${str}${RESET_ALL_ATTRIBUTES}`;
13
+ }
14
+
15
+ export function info(str) {
16
+ const notice = `oidc-provider NOTICE: ${str}`;
17
+ console.info(stdout ? stdout(notice) : notice); // eslint-disable-line no-console
18
+ }
19
+
20
+ export function warn(str) {
21
+ const warning = `oidc-provider WARNING: ${str}`;
22
+ console.warn(stderr ? stderr(warning) : warning); // eslint-disable-line no-console
23
+ }
package/dist/node_modules/oidc-provider/lib/helpers/base64url.js ADDED
@@ -0,0 +1,11 @@
1
+ export function encode(input, encoding = 'utf8') {
2
+ return Buffer.from(input, encoding).toString('base64url');
3
+ }
4
+
5
+ export function encodeBuffer(buf) {
6
+ return Buffer.prototype.base64urlSlice.call(buf);
7
+ }
8
+
9
+ export function decode(input) {
10
+ return Buffer.from(input, 'base64').toString('utf8');
11
+ }
package/dist/node_modules/oidc-provider/lib/helpers/certificate_thumbprint.js ADDED
@@ -0,0 +1,15 @@
1
+ import * as crypto from 'node:crypto';
2
+
3
+ export default function certThumbprint(cert) {
4
+ let data;
5
+ if (cert instanceof crypto.X509Certificate) {
6
+ data = cert.raw;
7
+ } else {
8
+ data = Buffer.from(
9
+ cert.replace(/(?:-----(?:BEGIN|END) CERTIFICATE-----|\s|=)/g, ''),
10
+ 'base64',
11
+ );
12
+ }
13
+
14
+ return crypto.hash('sha256', data, 'base64url');
15
+ }
package/dist/node_modules/oidc-provider/lib/helpers/challenge.js ADDED
@@ -0,0 +1,111 @@
1
+ /* eslint-disable no-plusplus, no-bitwise, no-param-reassign */
2
+
3
+ import { hkdfSync } from 'node:crypto';
4
+
5
+ import * as base64url from './base64url.js';
6
+
7
+ function sixfourbeify(value) {
8
+ const buf = Buffer.alloc(8);
9
+ for (let i = buf.length - 1; i >= 0; i--) {
10
+ buf[i] = value & 0xff;
11
+ value >>= 8;
12
+ }
13
+
14
+ return buf;
15
+ }
16
+
17
+ function compute(secret, info, step) {
18
+ return base64url.encodeBuffer(
19
+ Buffer.from(
20
+ hkdfSync('sha256', secret, sixfourbeify(step), info, 32),
21
+ ),
22
+ );
23
+ }
24
+
25
+ function compare(server, client) {
26
+ let result = 0;
27
+
28
+ if (server.length !== client.length) {
29
+ result = 1;
30
+ client = server;
31
+ }
32
+
33
+ for (let i = 0; i < server.length; i++) {
34
+ result |= server.charCodeAt(i) ^ client.charCodeAt(i);
35
+ }
36
+
37
+ return result;
38
+ }
39
+
40
+ const STEP = 60;
41
+ export const CHALLENGE_OK_WINDOW = STEP * 5;
42
+
43
+ export default class ServerChallenge {
44
+ #counter;
45
+
46
+ #info;
47
+
48
+ #secret;
49
+
50
+ #prevprev;
51
+
52
+ #prev;
53
+
54
+ #now;
55
+
56
+ #next;
57
+
58
+ #nextnext;
59
+
60
+ constructor(secret, info) {
61
+ if (!Buffer.isBuffer(secret) || secret.byteLength !== 32) {
62
+ throw new TypeError('Challenge secret must be a 32-byte Buffer instance');
63
+ }
64
+
65
+ if (typeof info !== 'string' || !info.length) {
66
+ throw new TypeError('Challenge info must be a non-empty string');
67
+ }
68
+
69
+ this.#info = info;
70
+ this.#secret = Uint8Array.prototype.slice.call(secret);
71
+ this.#counter = Math.floor(Date.now() / 1000 / STEP);
72
+
73
+ [this.#prevprev, this.#prev, this.#now, this.#next, this.#nextnext] = [
74
+ this.#counter - 2,
75
+ this.#counter - 1,
76
+ this.#counter,
77
+ this.#counter + 1,
78
+ this.#counter++ + 2,
79
+ ].map(compute.bind(undefined, this.#secret, this.#info));
80
+
81
+ setInterval(() => {
82
+ [
83
+ this.#prevprev,
84
+ this.#prev,
85
+ this.#now,
86
+ this.#next,
87
+ this.#nextnext,
88
+ ] = [
89
+ this.#prev,
90
+ this.#now,
91
+ this.#next,
92
+ this.#nextnext,
93
+ compute(this.#secret, this.#info, this.#counter++ + 2),
94
+ ];
95
+ }, STEP * 1000).unref();
96
+ }
97
+
98
+ nextChallenge() {
99
+ return this.#next;
100
+ }
101
+
102
+ checkChallenge(challenge) {
103
+ let result = 0;
104
+
105
+ for (const server of [this.#prevprev, this.#prev, this.#now, this.#next, this.#nextnext]) {
106
+ result ^= compare(server, challenge);
107
+ }
108
+
109
+ return result === 0;
110
+ }
111
+ }