@opentdf/sdk 0.1.0-beta.1701

package/dist/cjs/src/auth/oidc.js

@@ -0,0 +1,222 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AccessToken = void 0;
+const dpop_1 = __importDefault(require("dpop"));
+const auth_js_1 = require("./auth.js");
+const index_js_1 = require("../encodings/index.js");
+const errors_js_1 = require("../errors.js");
+const utils_js_1 = require("../utils.js");
+const qstringify = (obj) => new URLSearchParams(obj).toString();
+/**
+ * Class that provides OIDC functionality to auth providers, assuming 'enhanced'
+ * tokens and sessions with tdf_claims and either one or both of signing keys
+ * or DPoP.
+ *
+ * Note that this class itself is not a provider - providers implement
+ * `AuthProvider` and make use of this class.
+ *
+ * Both browser and non-browser flows use OIDC, but the supported OIDC auth
+ * mechanisms differ between  public (e.g. browser) clients, and confidential
+ * (e.g. Node) clients.
+ *
+ * The non-browser flow just expects a `clientId` and `clientSecret` to be
+ * provided in the `clientConfig`, and will use that
+ * to grant tokens via the OIDC `clientCredentials` flow.
+ *
+ * For either kind of client, the client's public key must be set in all OIDC
+ * token requests in order to recieve a token with valid TDF claims. The public
+ * key may be passed to this provider's constructor, or supplied
+ * post-construction by calling @see updateClientPublicKey, which forces an
+ * explicit token refresh
+ */
+class AccessToken {
+    constructor(cfg, request) {
+        this.extraHeaders = {};
+        if (!cfg.clientId) {
+            throw new errors_js_1.ConfigurationError('A Keycloak client identifier is currently required for all auth mechanisms');
+        }
+        if (cfg.exchange === 'client' && !cfg.clientSecret) {
+            throw new errors_js_1.ConfigurationError('When using client credentials, both clientId and clientSecret are required');
+        }
+        if (cfg.exchange === 'refresh' && !cfg.refreshToken) {
+            throw new errors_js_1.ConfigurationError('When using refresh token, a refresh token must be provided');
+        }
+        if (cfg.exchange === 'external' && !cfg.externalJwt) {
+            throw new errors_js_1.ConfigurationError('When using external JWT, the jwt must be provided');
+        }
+        if (!cfg.exchange) {
+            throw new errors_js_1.ConfigurationError('Invalid oidc configuration');
+        }
+        this.config = cfg;
+        this.request = request;
+        this.baseUrl = (0, utils_js_1.rstrip)(cfg.oidcOrigin, '/');
+        this.signingKey = cfg.signingKey;
+    }
+    /**
+     * https://connect2id.com/products/server/docs/api/userinfo
+     * @param accessToken the current access_token or code
+     * @returns
+     */
+    async info(accessToken) {
+        const url = `${this.baseUrl}/protocol/openid-connect/userinfo`;
+        const headers = {
+            ...this.extraHeaders,
+            Authorization: `Bearer ${accessToken}`,
+        };
+        if (this.config.dpopEnabled && this.signingKey) {
+            headers.DPoP = await (0, dpop_1.default)(this.signingKey, url, 'POST');
+        }
+        const response = await (this.request || fetch)(url, {
+            headers,
+        });
+        if (!response.ok) {
+            console.error(await response.text());
+            throw new errors_js_1.TdfError(`auth info fail: GET [${url}] => ${response.status} ${response.statusText}`);
+        }
+        return (await response.json());
+    }
+    async doPost(url, o) {
+        const headers = {
+            'Content-Type': 'application/x-www-form-urlencoded',
+            Accept: 'application/json',
+        };
+        // add DPoP headers if configured
+        if (this.config.dpopEnabled) {
+            if (!this.signingKey) {
+                throw new errors_js_1.ConfigurationError('No signature configured');
+            }
+            const clientPubKey = await (0, utils_js_1.cryptoPublicToPem)(this.signingKey.publicKey);
+            headers['X-VirtruPubKey'] = index_js_1.base64.encode(clientPubKey);
+            headers.DPoP = await (0, dpop_1.default)(this.signingKey, url, 'POST');
+        }
+        return (this.request || fetch)(url, {
+            method: 'POST',
+            headers,
+            body: qstringify(o),
+        });
+    }
+    async accessTokenLookup(cfg) {
+        const url = `${this.baseUrl}/protocol/openid-connect/token`;
+        let body;
+        switch (cfg.exchange) {
+            case 'client':
+                body = {
+                    grant_type: 'client_credentials',
+                    client_id: cfg.clientId,
+                    client_secret: cfg.clientSecret,
+                };
+                break;
+            case 'external':
+                body = {
+                    grant_type: 'urn:ietf:params:oauth:grant-type:token-exchange',
+                    subject_token: cfg.externalJwt,
+                    subject_token_type: 'urn:ietf:params:oauth:token-type:jwt',
+                    audience: cfg.clientId,
+                    client_id: cfg.clientId,
+                };
+                break;
+            case 'refresh':
+                body = {
+                    grant_type: 'refresh_token',
+                    refresh_token: cfg.refreshToken,
+                    client_id: cfg.clientId,
+                };
+                break;
+        }
+        const response = await this.doPost(url, body);
+        if (!response.ok) {
+            console.error(await response.text());
+            throw new errors_js_1.TdfError(`token/code exchange fail: POST [${url}] => ${response.status} ${response.statusText}`);
+        }
+        return response.json();
+    }
+    /**
+     * Gets an access token; operates lazily/cached, with an optional check for freshness.
+     * @param validate if we should run a inline check against the OIDC 'userinfo' endpoint to make sure any cached access token is still valid
+     * @returns
+     */
+    async get(validate = true) {
+        if (this.data?.access_token) {
+            try {
+                if (validate) {
+                    await this.info(this.data.access_token);
+                }
+                return this.data.access_token;
+            }
+            catch (e) {
+                console.log('access_token fails on user_info endpoint; attempting to renew', e);
+                if (this.data.refresh_token) {
+                    // Prefer the latest refresh_token if present over creds passed in
+                    // to constructor
+                    this.config = {
+                        ...this.config,
+                        exchange: 'refresh',
+                        refreshToken: this.data.refresh_token,
+                    };
+                }
+                delete this.data;
+            }
+        }
+        const tokenResponse = (this.data = await this.accessTokenLookup(this.config));
+        return tokenResponse.access_token;
+    }
+    /**
+     * A TDF client MUST call this method whenever the client wants to use a new
+     * ephemeral key set. This updates the keys used to:
+     * or wishes to set the keypair after creating the object.
+     *
+     * Calling this function will trigger a forcible token refresh using the cached refresh token, and contact the auth server.
+     */
+    async refreshTokenClaimsWithClientPubkeyIfNeeded(signingKey) {
+        // If we already have a token, and the pubkey changes,
+        // we need to force a refresh now - otherwise
+        // we can wait until we create the token for the first time
+        if (this.currentAccessToken && signingKey === this.signingKey) {
+            return;
+        }
+        delete this.currentAccessToken;
+        this.signingKey = signingKey;
+    }
+    /**
+     * Converts included refresh token or external JWT for a new one.
+     */
+    async exchangeForRefreshToken() {
+        const cfg = this.config;
+        if (cfg.exchange != 'external' && cfg.exchange != 'refresh') {
+            throw new errors_js_1.ConfigurationError('no refresh token provided!');
+        }
+        const tokenResponse = (this.data = await this.accessTokenLookup(this.config));
+        if (!tokenResponse.refresh_token) {
+            console.log('No refresh_token returned');
+            return ((cfg.exchange == 'refresh' && cfg.refreshToken) ||
+                (cfg.exchange == 'external' && cfg.externalJwt) ||
+                '');
+        }
+        // Prefer the latest refresh_token if present over creds passed in
+        // to constructor
+        this.config = {
+            ...this.config,
+            exchange: 'refresh',
+            refreshToken: tokenResponse.refresh_token,
+        };
+        return tokenResponse.access_token;
+    }
+    async withCreds(httpReq) {
+        if (!this.signingKey) {
+            throw new errors_js_1.ConfigurationError('Client public key was not set via `updateClientPublicKey` or passed in via constructor, cannot fetch OIDC token with valid Virtru claims');
+        }
+        const accessToken = (this.currentAccessToken ??= await this.get());
+        if (this.config.dpopEnabled && this.signingKey) {
+            const dpopToken = await (0, dpop_1.default)(this.signingKey, httpReq.url, httpReq.method, 
+            /* nonce */ undefined, accessToken);
+            // TODO: Consider: only set DPoP if cnf.jkt is present in access token?
+            return (0, auth_js_1.withHeaders)(httpReq, { Authorization: `Bearer ${accessToken}`, DPoP: dpopToken });
+        }
+        return (0, auth_js_1.withHeaders)(httpReq, { Authorization: `Bearer ${accessToken}` });
+    }
+}
+exports.AccessToken = AccessToken;
+//# sourceMappingURL=data:application/json;base64,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

package/dist/cjs/src/auth/providers.js

@@ -0,0 +1,143 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.OIDCRefreshTokenProvider = exports.OIDCExternalJwtProvider = exports.OIDCClientCredentialsProvider = exports.clientAuthProvider = exports.refreshAuthProvider = exports.externalAuthProvider = exports.clientSecretAuthProvider = void 0;
+const oidc_clientcredentials_provider_js_1 = require("./oidc-clientcredentials-provider.js");
+const oidc_externaljwt_provider_js_1 = require("./oidc-externaljwt-provider.js");
+const oidc_refreshtoken_provider_js_1 = require("./oidc-refreshtoken-provider.js");
+const utils_js_1 = require("../utils.js");
+const errors_js_1 = require("../errors.js");
+/**
+ * Creates an OIDC Client Credentials Provider for non-browser contexts.
+ *
+ * Both browser and non-browser flows use OIDC, but the supported OIDC auth mechanisms differ between
+ * public (e.g. browser) clients, and confidential (e.g. Node) clients.
+ *
+ * This provider supports Client Credentials auth, where the client has previously been issued a ClientID and ClientSecret.
+ * Browser contexts should *never* use Client Credentials auth, as ClientSecrets are not secure for public client flows,
+ * and should use one of the other Authorization Code-based OIDC auth mechanisms instead.
+ *
+ * This just expects a clientId and clientSecret to be provided in the clientConfig, and will use that
+ * to grant tokens via the OIDC clientCredentials flow.
+ *
+ * The client's public key must be set in all OIDC token requests in order to recieve a token with valid
+ * Virtru claims. The public key may be passed to this provider's constructor, or supplied post-construction by calling
+ * {@link updateClientPublicKey} which will force an explicit token refresh
+ *
+ */
+const clientSecretAuthProvider = async (clientConfig) => {
+    return new oidc_clientcredentials_provider_js_1.OIDCClientCredentialsProvider({
+        clientId: clientConfig.clientId,
+        clientSecret: clientConfig.clientSecret,
+        oidcOrigin: clientConfig.oidcOrigin,
+    });
+};
+exports.clientSecretAuthProvider = clientSecretAuthProvider;
+/**
+ * Create an OIDC External JWT Provider for browser contexts.
+ *
+ * Both browser and non-browser flows use OIDC, but the supported OIDC auth mechanisms differ between
+ * public (e.g. browser) clients, and confidential (e.g. Node) clients.
+ *
+ * This provider supports External JWT token exchange auth. This flow assumes that the client has previously authenticated
+ * with an external 3rd-party IdP that oidcOrigin has been configured to trust.
+ *
+ * The client can supply this provider with a JWT issued by that trusted 3rd-party IdP, and that JWT will be exchanged
+ * for a tokenset with TDF claims.
+ *
+ * The client's public key must be set in all OIDC token requests in order to recieve a token with valid
+ * Virtru claims. The public key may be passed to this provider's constructor, or supplied post-construction by calling
+ * {@link updateClientPublicKey}, which will force an explicit token refresh.
+ */
+const externalAuthProvider = async (clientConfig) => {
+    return new oidc_externaljwt_provider_js_1.OIDCExternalJwtProvider({
+        clientId: clientConfig.clientId,
+        externalJwt: clientConfig.externalJwt,
+        oidcOrigin: clientConfig.oidcOrigin,
+    });
+};
+exports.externalAuthProvider = externalAuthProvider;
+/**
+ * Creates an OIDC Refresh Token Provider for browser and non-browser contexts.
+ *
+ * Both browser and non-browser flows use OIDC, but the supported OIDC auth mechanisms differ between
+ * public (e.g. browser) clients, and confidential (e.g. Node) clients.
+ *
+ * This provider supports Refresh Token auth. This flow assumes the client has already authenticated with the OIDC
+ * IdP using the OIDC flow fo their choice, and can provide a Refresh Token which will be exchanged (along with the client pubkey)
+ * for a new tokenset containing valid TDF claims.
+ *
+ * The client's public key must be set in all OIDC token requests in order to recieve a token with valid
+ * Virtru claims. The public key may be passed to this provider's constructor, or supplied post-construction by calling
+ * {@link updateClientPublicKey} which will force an explicit token refresh
+ */
+const refreshAuthProvider = async (clientConfig) => {
+    return new oidc_refreshtoken_provider_js_1.OIDCRefreshTokenProvider({
+        clientId: clientConfig.clientId,
+        refreshToken: clientConfig.refreshToken,
+        oidcOrigin: clientConfig.oidcOrigin,
+    });
+};
+exports.refreshAuthProvider = refreshAuthProvider;
+/**
+ * Generate an auth provder.
+ * @param clientConfig OIDC client credentials
+ * @returns a promise for a new auth provider with the requested excahnge type
+ */
+const clientAuthProvider = async (clientConfig) => {
+    if (!clientConfig.clientId) {
+        throw new errors_js_1.ConfigurationError('Client ID must be provided to constructor');
+    }
+    if ((0, utils_js_1.isBrowser)()) {
+        //If you're in a browser and passing client secrets, you're Doing It Wrong.
+        // if (clientConfig.clientSecret) {
+        //   throw new ConfigurationError('Client credentials not supported in a browser context');
+        // }
+        //Are we exchanging a refreshToken for a bearer token (normal AuthCode browser auth flow)?
+        //If this is a browser context, we expect the caller to handle the initial
+        //browser-based OIDC login and authentication process against the OIDC endpoint using their chosen method,
+        //and provide us with a valid refresh token/clientId obtained from that process.
+        switch (clientConfig.exchange) {
+            case 'refresh': {
+                return (0, exports.refreshAuthProvider)(clientConfig);
+            }
+            case 'external': {
+                return (0, exports.externalAuthProvider)(clientConfig);
+            }
+            case 'client': {
+                return (0, exports.clientSecretAuthProvider)(clientConfig);
+            }
+            default:
+                throw new errors_js_1.ConfigurationError(`Unsupported client type`);
+        }
+    }
+    //If you're NOT in a browser and are NOT passing client secrets, you're Doing It Wrong.
+    //If this is not a browser context, we expect the caller to supply their client ID and client secret, so that
+    // we can authenticate them directly with the OIDC endpoint.
+    if (clientConfig.exchange !== 'client') {
+        throw new errors_js_1.ConfigurationError('When using client credentials, must supply both client ID and client secret to constructor');
+    }
+    return (0, exports.clientSecretAuthProvider)(clientConfig);
+};
+exports.clientAuthProvider = clientAuthProvider;
+__exportStar(require("./auth.js"), exports);
+var oidc_clientcredentials_provider_js_2 = require("./oidc-clientcredentials-provider.js");
+Object.defineProperty(exports, "OIDCClientCredentialsProvider", { enumerable: true, get: function () { return oidc_clientcredentials_provider_js_2.OIDCClientCredentialsProvider; } });
+var oidc_externaljwt_provider_js_2 = require("./oidc-externaljwt-provider.js");
+Object.defineProperty(exports, "OIDCExternalJwtProvider", { enumerable: true, get: function () { return oidc_externaljwt_provider_js_2.OIDCExternalJwtProvider; } });
+var oidc_refreshtoken_provider_js_2 = require("./oidc-refreshtoken-provider.js");
+Object.defineProperty(exports, "OIDCRefreshTokenProvider", { enumerable: true, get: function () { return oidc_refreshtoken_provider_js_2.OIDCRefreshTokenProvider; } });
+//# sourceMappingURL=data:application/json;base64,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

package/dist/cjs/src/encodings/base64.js

@@ -0,0 +1,154 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.InvalidCharacterError = exports.encodeArrayBuffer = exports.encode = exports.decodeArrayBuffer = exports.decode = void 0;
+const charsStandard = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=';
+const charsUrlSafe = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-_';
+// Quick reference from encoded char to source 6 bits.
+let _lut;
+let _padding;
+function lookup(i) {
+    if (!_lut) {
+        _lut = new Array(256);
+        for (let i = 0; i < 64; i++) {
+            _lut[charsStandard.charCodeAt(i)] = i;
+        }
+        for (let i = 62; i < 64; i++) {
+            _lut[charsUrlSafe.charCodeAt(i)] = i;
+        }
+        _padding = charsStandard.charCodeAt(64);
+    }
+    const r = _lut[i];
+    if (r === undefined) {
+        if (i === _padding) {
+            return -1;
+        }
+        else if (Number.isNaN(i)) {
+            return 0;
+        }
+        throw new InvalidCharacterError();
+    }
+    return r;
+}
+class InvalidCharacterError extends Error {
+    constructor(message) {
+        super(message || 'Invalid character');
+        Object.setPrototypeOf(this, new.target.prototype);
+    }
+}
+exports.InvalidCharacterError = InvalidCharacterError;
+// encoder
+// [https://gist.github.com/999166] by [https://github.com/nignag]
+function encodeFallback(input, urlSafe) {
+    let output = '';
+    const len = input.length;
+    const chars = urlSafe ? charsUrlSafe : charsStandard;
+    for (
+    // initialize result and counter
+    let block = 0, charCode, idx = 0, map = chars; 
+    // if the next input index does not exist:
+    //   change the mapping table to "="
+    //   check if d has no fractional digits
+    input.charAt(idx | 0) || ((map = '='), idx % 1); 
+    // "8 - idx % 1 * 8" generates the sequence 2, 4, 6, 8
+    output += map.charAt(63 & (block >> (8 - (idx % 1) * 8)))) {
+        charCode = input.charCodeAt((idx += 3 / 4));
+        if (charCode > 0xff) {
+            throw new InvalidCharacterError(`Invalid input at character ${idx}`);
+        }
+        block = (block << 8) | charCode;
+    }
+    if (urlSafe) {
+        if (len % 3 === 2) {
+            return output.substring(0, output.length - 1);
+        }
+        else if (len % 3 === 1) {
+            return output.substring(0, output.length - 2);
+        }
+    }
+    return output;
+}
+/**
+ * Encode array buffer to base64 string
+ *
+ * GitHub @niklasvh
+ * Copyright (c) 2012 Niklas von Hertzen
+ * MIT License
+ */
+function encodeArrayBuffer(arrayBuffer, urlSafe) {
+    const bytes = new Uint8Array(arrayBuffer);
+    const len = bytes.length;
+    const chars = urlSafe ? charsUrlSafe : charsStandard;
+    let base64 = '';
+    for (let i = 0; i < len; i += 3) {
+        base64 += chars[bytes[i] >> 2];
+        // bitshifting `undefined` results in 0, so this fills anything past
+        // the end of the buffer with the appropriate value.
+        base64 += chars[((bytes[i] & 3) << 4) | (bytes[i + 1] >> 4)];
+        base64 += chars[((bytes[i + 1] & 15) << 2) | (bytes[i + 2] >> 6)];
+        base64 += chars[bytes[i + 2] & 63];
+    }
+    let padding = '';
+    if (len % 3 === 2) {
+        base64 = base64.substring(0, base64.length - 1);
+        if (!urlSafe) {
+            padding = '=';
+        }
+    }
+    else if (len % 3 === 1) {
+        base64 = base64.substring(0, base64.length - 2);
+        if (!urlSafe) {
+            padding = '==';
+        }
+    }
+    return base64 + padding;
+}
+exports.encodeArrayBuffer = encodeArrayBuffer;
+function decodeFallback(input) {
+    input = input.replace(/={1,3}$/, '');
+    if (input.length % 4 === 1) {
+        throw new InvalidCharacterError('Invalid input.');
+    }
+    let output = '';
+    for (
+    // initialize result and counters
+    let bc = 0, bs = 0, buffer, idx = 0; 
+    // get next character
+    (buffer = input.charCodeAt(idx++)); 
+    // character found in table? initialize bit storage and add its ascii value;
+    ~buffer &&
+        ((bs = bc % 4 ? bs * 64 + buffer : buffer),
+            // and if not first of each 4 characters,
+            // convert the first 8 bits to one ascii character
+            bc++ % 4)
+        ? (output += String.fromCharCode(255 & (bs >> ((-2 * bc) & 6))))
+        : 0) {
+        // try to find character in table (0-63, not found => -1)
+        buffer = lookup(buffer);
+    }
+    return output;
+}
+function decodeArrayBuffer(base64) {
+    const strLength = base64.length;
+    const paddingLength = (base64[strLength - 2] === '=' && 2) || (base64[strLength - 1] === '=' && 1) || 0;
+    if (strLength % 4 === 1 || base64[strLength - 3] === '=') {
+        throw new InvalidCharacterError('Invalid input.');
+    }
+    const binLength = (strLength >> 1) + ((strLength + 1) >> 2) - paddingLength;
+    const bytes = new Uint8Array(binLength);
+    for (let i = 0, p = 0; i < strLength; i += 4, p += 3) {
+        const encoded1 = lookup(base64.charCodeAt(i));
+        const encoded2 = lookup(base64.charCodeAt(i + 1));
+        const encoded3 = lookup(base64.charCodeAt(i + 2));
+        const encoded4 = lookup(base64.charCodeAt(i + 3));
+        bytes[p] = (encoded1 << 2) | (encoded2 >> 4);
+        bytes[p + 1] = ((encoded2 & 15) << 4) | (encoded3 >> 2);
+        bytes[p + 2] = ((encoded3 & 3) << 6) | (encoded4 & 63);
+    }
+    return bytes.buffer;
+}
+exports.decodeArrayBuffer = decodeArrayBuffer;
+const decode = decodeFallback;
+exports.decode = decode;
+const encode = encodeFallback;
+exports.encode = encode;
+//# sourceMappingURL=data:application/json;base64,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

package/dist/cjs/src/encodings/hex.js

@@ -0,0 +1,70 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.encodeArrayBuffer = exports.decodeArrayBuffer = exports.decode = exports.encode = void 0;
+const base64_js_1 = require("./base64.js");
+function encode(str) {
+    let hex = '';
+    for (let i = 0; i < str.length; i++) {
+        const s = str.charCodeAt(i).toString(16);
+        if (s.length < 2) {
+            hex += '0' + s;
+        }
+        else if (s.length > 2) {
+            throw new base64_js_1.InvalidCharacterError(`invalid input at char ${i} == [${hex.substring(i, i + 1)}]`);
+        }
+        else {
+            hex += `${s}`;
+        }
+    }
+    return hex;
+}
+exports.encode = encode;
+function decode(hex) {
+    if (hex.length & 1) {
+        throw new base64_js_1.InvalidCharacterError('invalid input.');
+    }
+    let str = '';
+    for (let i = 0; i < hex.length; i += 2) {
+        const b = parseInt(hex.substring(i, i + 2), 16);
+        if (isNaN(b)) {
+            throw new base64_js_1.InvalidCharacterError(`invalid input at char ${i} == [${hex.substring(i, i + 2)}]`);
+        }
+        str += String.fromCharCode(b);
+    }
+    return str;
+}
+exports.decode = decode;
+function decodeArrayBuffer(hex) {
+    const binLength = hex.length >> 1; // 1 byte per 2 characters
+    if (hex.length & 1) {
+        throw new base64_js_1.InvalidCharacterError('invalid input.');
+    }
+    const bytes = new Uint8Array(binLength);
+    for (let i = 0; i < hex.length; i += 2) {
+        const b = parseInt(hex.substring(i, i + 2), 16);
+        if (isNaN(b)) {
+            throw new base64_js_1.InvalidCharacterError(`invalid input at char ${i} == [${hex.substring(i, i + 2)}]`);
+        }
+        bytes[i >> 1] = b;
+    }
+    return bytes.buffer;
+}
+exports.decodeArrayBuffer = decodeArrayBuffer;
+function encodeArrayBuffer(arrayBuffer) {
+    if (typeof arrayBuffer !== 'object') {
+        throw new TypeError('Expected input to be an ArrayBuffer Object');
+    }
+    const byteArray = new Uint8Array(arrayBuffer);
+    let hexString = '';
+    let nextHexByte;
+    for (let i = 0; i < byteArray.byteLength; i++) {
+        nextHexByte = byteArray[i].toString(16);
+        if (nextHexByte.length < 2) {
+            nextHexByte = '0' + nextHexByte;
+        }
+        hexString += nextHexByte;
+    }
+    return hexString;
+}
+exports.encodeArrayBuffer = encodeArrayBuffer;
+//# sourceMappingURL=data:application/json;base64,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

package/dist/cjs/src/encodings/index.js

@@ -0,0 +1,29 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.hex = exports.base64 = void 0;
+exports.base64 = __importStar(require("./base64.js"));
+exports.hex = __importStar(require("./hex.js"));
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiaW5kZXguanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi8uLi9zcmMvZW5jb2RpbmdzL2luZGV4LnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiI7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7O0FBQUEsc0RBQXNDO0FBQ3RDLGdEQUFnQyJ9