@openstax/ts-utils 1.16.0 → 1.17.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/cjs/middleware/apiSlowResponseMiddleware.js +1 -2
- package/dist/cjs/services/authProvider/browser.js +1 -1
- package/dist/cjs/services/authProvider/decryption.d.ts +4 -4
- package/dist/cjs/services/authProvider/decryption.js +6 -5
- package/dist/cjs/services/documentStore/unversioned/file-system.js +1 -1
- package/dist/cjs/services/launchParams/signer.d.ts +1 -1
- package/dist/cjs/services/launchParams/signer.js +11 -7
- package/dist/cjs/services/launchParams/verifier.d.ts +2 -1
- package/dist/cjs/services/launchParams/verifier.js +14 -2
- package/dist/cjs/tsconfig.without-specs.cjs.tsbuildinfo +1 -1
- package/dist/esm/middleware/apiSlowResponseMiddleware.js +1 -2
- package/dist/esm/services/authProvider/browser.js +1 -1
- package/dist/esm/services/authProvider/decryption.d.ts +4 -4
- package/dist/esm/services/authProvider/decryption.js +6 -5
- package/dist/esm/services/documentStore/unversioned/file-system.js +1 -1
- package/dist/esm/services/launchParams/signer.d.ts +1 -1
- package/dist/esm/services/launchParams/signer.js +11 -7
- package/dist/esm/services/launchParams/verifier.d.ts +2 -1
- package/dist/esm/services/launchParams/verifier.js +14 -2
- package/dist/esm/tsconfig.without-specs.esm.tsbuildinfo +1 -1
- package/package.json +1 -1
|
@@ -35,7 +35,7 @@ const createSlowResponseMiddleware = (config) => {
|
|
|
35
35
|
});
|
|
36
36
|
resolve((0, routing_1.apiTextResponse)(504, '504 Gateway Timeout'));
|
|
37
37
|
}, timeoutAfter));
|
|
38
|
-
const requestPromise = response.
|
|
38
|
+
const requestPromise = response.finally(() => {
|
|
39
39
|
const time = Date.now() - start;
|
|
40
40
|
if (timeout !== undefined) {
|
|
41
41
|
clearTimeout(timeout);
|
|
@@ -46,7 +46,6 @@ const createSlowResponseMiddleware = (config) => {
|
|
|
46
46
|
time,
|
|
47
47
|
});
|
|
48
48
|
}
|
|
49
|
-
return response;
|
|
50
49
|
});
|
|
51
50
|
return timeoutPromise ? Promise.race([timeoutPromise, requestPromise]) : requestPromise;
|
|
52
51
|
});
|
|
@@ -133,7 +133,7 @@ const browserAuthProvider = ({ window, configSpace }) => (configProvider) => {
|
|
|
133
133
|
/**
|
|
134
134
|
* loads current user identity. does not reflect changes in identity after being called the first time.
|
|
135
135
|
*/
|
|
136
|
-
getUser
|
|
136
|
+
getUser,
|
|
137
137
|
};
|
|
138
138
|
};
|
|
139
139
|
exports.browserAuthProvider = browserAuthProvider;
|
|
@@ -8,12 +8,12 @@ declare type Config = {
|
|
|
8
8
|
interface Initializer<C> {
|
|
9
9
|
configSpace?: C;
|
|
10
10
|
}
|
|
11
|
-
export declare type DecryptionAuthProvider =
|
|
12
|
-
getTokenExpiration: () => Promise<number | undefined>;
|
|
13
|
-
}
|
|
11
|
+
export declare type DecryptionAuthProvider = AuthProvider & {
|
|
12
|
+
getTokenExpiration: (tokenString?: string) => Promise<number | null | undefined>;
|
|
13
|
+
};
|
|
14
14
|
export declare const decryptionAuthProvider: <C extends string = "decryption">(initializer: Initializer<C>) => (configProvider: { [key in C]: {
|
|
15
15
|
cookieName: import("../../config").ConfigValueProvider<string>;
|
|
16
16
|
encryptionPrivateKey: import("../../config").ConfigValueProvider<string>;
|
|
17
17
|
signaturePublicKey: import("../../config").ConfigValueProvider<string>;
|
|
18
|
-
}; }) => DecryptionAuthProvider
|
|
18
|
+
}; }) => CookieAuthProvider<DecryptionAuthProvider>;
|
|
19
19
|
export {};
|
|
@@ -21,8 +21,8 @@ const decryptionAuthProvider = (initializer) => (configProvider) => {
|
|
|
21
21
|
}
|
|
22
22
|
return { headers };
|
|
23
23
|
};
|
|
24
|
-
const getPayload = async () => {
|
|
25
|
-
const
|
|
24
|
+
const getPayload = async (tokenString) => {
|
|
25
|
+
const token = tokenString !== null && tokenString !== void 0 ? tokenString : (0, _1.getAuthTokenOrCookie)(request, await cookieName())[0];
|
|
26
26
|
if (!token) {
|
|
27
27
|
return undefined;
|
|
28
28
|
}
|
|
@@ -40,9 +40,10 @@ const decryptionAuthProvider = (initializer) => (configProvider) => {
|
|
|
40
40
|
};
|
|
41
41
|
return {
|
|
42
42
|
getAuthorizedFetchConfig,
|
|
43
|
-
getTokenExpiration: async () => {
|
|
44
|
-
|
|
45
|
-
|
|
43
|
+
getTokenExpiration: async (tokenString) => {
|
|
44
|
+
var _a;
|
|
45
|
+
const payload = await getPayload(tokenString);
|
|
46
|
+
return payload ? ((_a = payload.exp) !== null && _a !== void 0 ? _a : null) : undefined;
|
|
46
47
|
},
|
|
47
48
|
getUser: async () => {
|
|
48
49
|
if (!user) {
|
|
@@ -80,7 +80,7 @@ const fileSystemUnversionedDocumentStore = (initializer) => () => (configProvide
|
|
|
80
80
|
await mkTableDir;
|
|
81
81
|
const data = await load(filename);
|
|
82
82
|
if (!data) {
|
|
83
|
-
throw new
|
|
83
|
+
throw new errors_1.NotFoundError(`Item with ${hashKey.toString()} "${id}" does not exist`);
|
|
84
84
|
}
|
|
85
85
|
const newValue = typeof data[attribute] === 'number' ? data[attribute] + 1 : 1;
|
|
86
86
|
const newItem = { ...data, [hashKey]: id, [attribute]: newValue };
|
|
@@ -21,7 +21,7 @@ export declare const createLaunchSigner: <C extends string = "launch">({ configS
|
|
|
21
21
|
jwks: () => Promise<{
|
|
22
22
|
keys: JWK.RawKey[];
|
|
23
23
|
}>;
|
|
24
|
-
sign: (subject: string,
|
|
24
|
+
sign: (subject: string, maxExp?: number | null | undefined) => Promise<string>;
|
|
25
25
|
};
|
|
26
26
|
export declare type LaunchSigner = ReturnType<ReturnType<typeof createLaunchSigner>>;
|
|
27
27
|
export {};
|
|
@@ -34,17 +34,21 @@ const createLaunchSigner = ({ configSpace }) => (configProvider) => {
|
|
|
34
34
|
return keystore;
|
|
35
35
|
});
|
|
36
36
|
const jwks = async () => (await getKeyStore()).toJSON(false);
|
|
37
|
-
const getExpiresInWithMax = async (
|
|
37
|
+
const getExpiresInWithMax = async (maxExp) => {
|
|
38
38
|
const expiresIn = await getExpiresIn();
|
|
39
|
-
|
|
40
|
-
|
|
41
|
-
|
|
42
|
-
|
|
39
|
+
// The ms library used by jsonwebtoken can handle a value in seconds as well as a string like '1d'
|
|
40
|
+
if (!maxExp) {
|
|
41
|
+
return expiresIn;
|
|
42
|
+
}
|
|
43
|
+
// Convert both values to seconds for comparison
|
|
44
|
+
const expiresInSeconds = Math.floor((0, ms_1.default)(expiresIn) / 1000);
|
|
45
|
+
const maxExpSeconds = maxExp - Math.floor(Date.now() / 1000);
|
|
46
|
+
return Math.min(expiresInSeconds, maxExpSeconds);
|
|
43
47
|
};
|
|
44
|
-
const sign = async (subject,
|
|
48
|
+
const sign = async (subject, maxExp) => {
|
|
45
49
|
const alg = await getAlg();
|
|
46
50
|
// expiresIn can be a number of seconds or a string like '1h' or '1d'
|
|
47
|
-
const expiresIn = await getExpiresInWithMax(
|
|
51
|
+
const expiresIn = await getExpiresInWithMax(maxExp);
|
|
48
52
|
const iss = await getIss();
|
|
49
53
|
const header = { alg, iss };
|
|
50
54
|
return jsonwebtoken_1.default.sign({}, await getPrivateKey(), { algorithm: alg, expiresIn, header, issuer: iss, subject });
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
import jwt from 'jsonwebtoken';
|
|
1
2
|
import type { JWK } from 'node-jose';
|
|
2
3
|
import { ConfigProviderForConfig } from '../../config';
|
|
3
4
|
declare type Config = {
|
|
@@ -15,7 +16,7 @@ interface Initializer<C> {
|
|
|
15
16
|
export declare const createLaunchVerifier: <C extends string = "launch">({ configSpace, fetcher }: Initializer<C>) => (configProvider: { [key in C]: {
|
|
16
17
|
trustedDomain: import("../../config").ConfigValueProvider<string>;
|
|
17
18
|
}; }) => {
|
|
18
|
-
verify: (token: string) => Promise<
|
|
19
|
+
verify: <T = undefined>(...[token, validator]: T extends undefined ? [string] : [string, (input: any) => T]) => Promise<T extends undefined ? jwt.JwtPayload : T>;
|
|
19
20
|
};
|
|
20
21
|
export declare type LaunchVerifier = ReturnType<ReturnType<typeof createLaunchVerifier>>;
|
|
21
22
|
export {};
|
|
@@ -60,7 +60,7 @@ const createLaunchVerifier = ({ configSpace, fetcher }) => (configProvider) => {
|
|
|
60
60
|
callback(error);
|
|
61
61
|
}
|
|
62
62
|
};
|
|
63
|
-
const verify = (token) => new Promise((resolve, reject) => jsonwebtoken_1.default.verify(token, getKey, {}, (err, payload) => {
|
|
63
|
+
const verify = (...[token, validator]) => new Promise((resolve, reject) => jsonwebtoken_1.default.verify(token, getKey, {}, (err, payload) => {
|
|
64
64
|
if (err && err instanceof jsonwebtoken_1.TokenExpiredError) {
|
|
65
65
|
reject(new errors_1.SessionExpiredError());
|
|
66
66
|
}
|
|
@@ -74,7 +74,19 @@ const createLaunchVerifier = ({ configSpace, fetcher }) => (configProvider) => {
|
|
|
74
74
|
reject(new Error('JWT payload missing sub claim'));
|
|
75
75
|
}
|
|
76
76
|
else {
|
|
77
|
-
|
|
77
|
+
// we are migrating away from json encoding all the parameters into the `sub` claim
|
|
78
|
+
// and into using separate claims for each parameter. in transition, we check if the sub
|
|
79
|
+
// is json and return it if it is. this is still a breaking change when using this
|
|
80
|
+
// utility because applications no longer need to independently json parse the result
|
|
81
|
+
// starting now.
|
|
82
|
+
const parsed = payload;
|
|
83
|
+
try {
|
|
84
|
+
const jsonSubContents = JSON.parse(payload.sub);
|
|
85
|
+
Object.assign(parsed, jsonSubContents);
|
|
86
|
+
}
|
|
87
|
+
catch (e) { } // eslint-disable-line no-empty
|
|
88
|
+
// conditional return types are annoying
|
|
89
|
+
resolve((validator ? validator(parsed) : parsed));
|
|
78
90
|
}
|
|
79
91
|
}));
|
|
80
92
|
return { verify };
|