@openape/nuxt-auth-sp 0.4.1 → 0.5.1

package/README.md

@@ -14,7 +14,7 @@ export default defineNuxtConfig({
   modules: ['@openape/nuxt-auth-sp'],
 
   openapeSp: {
-    spId: 'sp.example.com',
+    clientId: 'sp.example.com',
     spName: 'My Service',
     sessionSecret: 'your-secret-min-32-chars...',
   },
@@ -25,7 +25,7 @@ export default defineNuxtConfig({
 
 | Option | Type | Default | Description |
 |--------|------|---------|-------------|
-| `spId` | `string` | — | **Required.** Service Provider identifier (typically your domain) |
+| `clientId` | `string` | — | **Required.** Service Provider identifier (typically your domain) |
 | `spName` | `string` | `'OpenApe Service Provider'` | Display name shown during authorization |
 | `sessionSecret` | `string` | `'change-me-sp-secret-...'` | Session encryption key |
 | `openapeUrl` | `string` | — | Override IdP URL (bypasses DNS discovery) |
@@ -89,7 +89,7 @@ export default defineNuxtConfig({
   modules: ['@openape/nuxt-auth-sp'],
 
   openapeSp: {
-    spId: 'localhost:3001',
+    clientId: 'localhost:3001',
     spName: 'My App',
     sessionSecret: 'at-least-32-characters-long-secret-here',
   },

package/dist/module.d.mts

@@ -45,7 +45,7 @@ interface ManifestConfig {
     };
 }
 interface ModuleOptions {
-    spId: string;
+    clientId: string;
     spName: string;
     sessionSecret: string;
     openapeUrl: string;

package/dist/module.json

@@ -1,7 +1,7 @@
 {
   "name": "@openape/nuxt-auth-sp",
   "configKey": "openapeSp",
-  "version": "0.4.1",
+  "version": "0.5.1",
   "builder": {
     "@nuxt/module-builder": "1.0.2",
     "unbuild": "unknown"

package/dist/module.mjs

@@ -9,7 +9,7 @@ const module$1 = defineNuxtModule({
     configKey: "openapeSp"
   },
   defaults: {
-    spId: "",
+    clientId: "",
     spName: "OpenApe Service Provider",
     sessionSecret: "change-me-sp-secret-at-least-32-chars-long",
     openapeUrl: "",
@@ -29,10 +29,10 @@ const module$1 = defineNuxtModule({
         config.sessionSecret = crypto.randomUUID() + crypto.randomUUID();
         logger.info("Auto-generated sessionSecret for dev mode");
       }
-      if (!config.spId) {
+      if (!config.clientId) {
         const port = nuxt.options.devServer?.port || 3e3;
-        config.spId = `localhost:${port}`;
-        logger.info(`Auto-derived spId: ${config.spId}`);
+        config.clientId = `localhost:${port}`;
+        logger.info(`Auto-derived clientId: ${config.clientId}`);
       }
     }
     if (!nuxt.options.dev) {
@@ -40,8 +40,8 @@ const module$1 = defineNuxtModule({
       if (config.sessionSecret === "change-me-sp-secret-at-least-32-chars-long") {
         logger.warn("Using default sessionSecret in production! Set NUXT_OPENAPE_SP_SESSION_SECRET.");
       }
-      if (!config.spId) {
-        logger.warn("spId is empty in production! Set openapeSp.spId or NUXT_OPENAPE_SP_SP_ID.");
+      if (!config.clientId) {
+        logger.warn("clientId is empty in production! Set openapeSp.clientId or NUXT_OPENAPE_SP_CLIENT_ID.");
       }
     }
     addServerImportsDir(resolve("./runtime/server/utils"));

package/dist/runtime/server/api/callback.get.js

@@ -5,7 +5,7 @@ import { getSpSession } from "../utils/sp-session.js";
 export default defineEventHandler(async (event) => {
   const query = getQuery(event);
   const { code, state, error, error_description } = query;
-  const { spId } = getSpConfig();
+  const { clientId } = getSpConfig();
   const origin = getRequestURL(event).origin;
   const redirectUri = `${origin}/api/callback`;
   if (error) {
@@ -24,7 +24,7 @@ export default defineEventHandler(async (event) => {
       code,
       state,
       flowState,
-      spId,
+      clientId,
       redirectUri
     });
     clearFlowState(event);

package/dist/runtime/server/api/login.post.js

@@ -3,7 +3,7 @@ import { createAuthorizationURL, discoverIdP } from "@openape/auth";
 import { getSpConfig, saveFlowState } from "../utils/sp-config.js";
 export default defineEventHandler(async (event) => {
   const body = await readBody(event);
-  const { spId, openapeUrl, fallbackIdpUrl } = getSpConfig();
+  const { clientId, openapeUrl, fallbackIdpUrl } = getSpConfig();
   const origin = getRequestURL(event).origin;
   const redirectUri = `${origin}/api/callback`;
   if (!body?.email || !body.email.includes("@")) {
@@ -24,7 +24,7 @@ export default defineEventHandler(async (event) => {
     });
   }
   const { url, flowState } = await createAuthorizationURL(idpConfig, {
-    spId,
+    clientId,
     redirectUri,
     email
   });

package/dist/runtime/server/handlers.d.ts

@@ -1,21 +0,0 @@
-import type { H3Event } from 'h3';
-import type { DDISAAssertionClaims } from '@openape/core';
-export interface LoginHandlerOptions {
-    callbackPath: string;
-}
-export interface CallbackHandlerOptions {
-    onSuccess: (event: H3Event, result: {
-        claims: DDISAAssertionClaims;
-        rawAssertion: string;
-    }) => Promise<void>;
-    onError?: (event: H3Event, error: Error) => Promise<void>;
-}
-export interface SPManifestHandlerOptions {
-    callbackPath: string;
-    description?: string;
-}
-export declare function defineOpenApeLoginHandler(options: LoginHandlerOptions): import("h3").EventHandler<import("h3").EventHandlerRequest, Promise<{
-    redirectUrl: string;
-}>>;
-export declare function defineOpenApeCallbackHandler(options: CallbackHandlerOptions): import("h3").EventHandler<import("h3").EventHandlerRequest, Promise<void>>;
-export declare function defineOpenApeSPManifestHandler(options: SPManifestHandlerOptions): import("h3").EventHandler<import("h3").EventHandlerRequest, import("@openape/core").SPManifest>;

package/dist/runtime/server/handlers.js

@@ -4,7 +4,7 @@ import { getSpConfig, saveFlowState, getFlowState, clearFlowState } from "./util
 export function defineOpenApeLoginHandler(options) {
   return defineEventHandler(async (event) => {
     const body = await readBody(event);
-    const { spId, openapeUrl, fallbackIdpUrl } = getSpConfig();
+    const { clientId, openapeUrl, fallbackIdpUrl } = getSpConfig();
     const origin = getRequestURL(event).origin;
     const redirectUri = `${origin}${options.callbackPath}`;
     if (!body?.email || !body.email.includes("@")) {
@@ -25,7 +25,7 @@ export function defineOpenApeLoginHandler(options) {
       });
     }
     const { url, flowState } = await createAuthorizationURL(idpConfig, {
-      spId,
+      clientId,
       redirectUri,
       email
     });
@@ -37,7 +37,7 @@ export function defineOpenApeCallbackHandler(options) {
   return defineEventHandler(async (event) => {
     const query = getQuery(event);
     const { code, state, error, error_description } = query;
-    const { spId } = getSpConfig();
+    const { clientId } = getSpConfig();
     const origin = getRequestURL(event).origin;
     if (error) {
       const msg = error_description || error;
@@ -70,7 +70,7 @@ export function defineOpenApeCallbackHandler(options) {
         code,
         state,
         flowState,
-        spId,
+        clientId,
         redirectUri
       });
       await clearFlowState(event);
@@ -88,10 +88,10 @@ export function defineOpenApeCallbackHandler(options) {
 }
 export function defineOpenApeSPManifestHandler(options) {
   return defineEventHandler((event) => {
-    const { spId, spName } = getSpConfig();
+    const { clientId, spName } = getSpConfig();
     const origin = getRequestURL(event).origin;
     return createSPManifest({
-      sp_id: spId,
+      client_id: clientId,
       name: spName,
       redirect_uris: [`${origin}${options.callbackPath}`],
       description: options.description || `${spName} \u2014 OpenApe Service Provider`

package/dist/runtime/server/routes/well-known/auth.md.get.js

@@ -1,7 +1,7 @@
 import { defineEventHandler, getRequestURL, setResponseHeader } from "h3";
 import { getSpConfig } from "../../utils/sp-config.js";
 export default defineEventHandler((event) => {
-  const { spId, spName, fallbackIdpUrl } = getSpConfig();
+  const { clientId, spName, fallbackIdpUrl } = getSpConfig();
   const origin = getRequestURL(event).origin;
   setResponseHeader(event, "Content-Type", "text/markdown; charset=utf-8");
   return `# Authentication \u2014 ${spName}
@@ -10,7 +10,7 @@ export default defineEventHandler((event) => {
 DDISA v1 (DNS-Discoverable Identity & Service Authorization)
 
 ## Service Provider
-- **SP ID:** \`${spId}\`
+- **SP ID:** \`${clientId}\`
 - **Origin:** \`${origin}\`
 
 ## Endpoints

package/dist/runtime/server/routes/well-known/openape.json.get.js

@@ -3,7 +3,7 @@ import { useRuntimeConfig } from "nitropack/runtime";
 import { getSpConfig } from "../../utils/sp-config.js";
 export default defineEventHandler((event) => {
   const config = useRuntimeConfig();
-  const { spId, spName } = getSpConfig();
+  const { clientId, spName } = getSpConfig();
   const origin = getRequestURL(event).origin;
   const manifest = config.openapeSp.manifest;
   setResponseHeader(event, "Access-Control-Allow-Origin", "*");
@@ -16,7 +16,7 @@ export default defineEventHandler((event) => {
       ...manifest?.service || {}
     },
     auth: {
-      ddisa_domain: spId,
+      ddisa_domain: clientId,
       supported_methods: ["ddisa"],
       ...manifest?.auth || {}
     },

package/dist/runtime/server/routes/well-known/sp-manifest.json.get.d.ts

@@ -1,2 +0,0 @@
-declare const _default: import("h3").EventHandler<import("h3").EventHandlerRequest, import("@openape/core").SPManifest>;
-export default _default;

package/dist/runtime/server/routes/well-known/sp-manifest.json.get.js

@@ -2,10 +2,10 @@ import { defineEventHandler, getRequestURL } from "h3";
 import { createSPManifest } from "@openape/auth";
 import { getSpConfig } from "../../utils/sp-config.js";
 export default defineEventHandler((event) => {
-  const { spId, spName } = getSpConfig();
+  const { clientId, spName } = getSpConfig();
   const origin = getRequestURL(event).origin;
   return createSPManifest({
-    sp_id: spId,
+    client_id: clientId,
     name: spName,
     redirect_uris: [`${origin}/api/callback`],
     description: `${spName} \u2014 OpenApe Service Provider`

package/dist/runtime/server/utils/sp-config.d.ts

@@ -1,7 +1,7 @@
 import type { H3Event } from 'h3';
 import type { AuthFlowState } from '@openape/core';
 export declare function getSpConfig(): {
-    spId: any;
+    clientId: any;
     openapeUrl: any;
     spName: any;
     fallbackIdpUrl: any;

package/dist/runtime/server/utils/sp-config.js

@@ -4,7 +4,7 @@ const FLOW_COOKIE = "openape-flow";
 export function getSpConfig() {
   const config = useRuntimeConfig();
   return {
-    spId: (config.openapeSp.spId || "sp.example.com").trim(),
+    clientId: (config.openapeSp.clientId || "sp.example.com").trim(),
     openapeUrl: (config.openapeSp.openapeUrl || "").trim(),
     spName: (config.openapeSp.spName || "OpenApe Service Provider").trim(),
     fallbackIdpUrl: (config.openapeSp.fallbackIdpUrl || "https://id.openape.at").trim()

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@openape/nuxt-auth-sp",
   "type": "module",
-  "version": "0.4.1",
+  "version": "0.5.1",
   "description": "OpenAPE Service Provider Nuxt module — adds OIDC login via DNS-based IdP discovery",
   "author": "Delta Mind GmbH",
   "license": "AGPL-3.0-or-later",
@@ -33,8 +33,8 @@
   },
   "dependencies": {
     "@nuxt/kit": "^3.21.1",
-    "@openape/auth": "^0.2.0",
-    "@openape/core": "^0.2.0",
+    "@openape/auth": "^0.3.0",
+    "@openape/core": "^0.3.0",
     "defu": "^6.1.4"
   },
   "peerDependencies": {