npm - @opys/authliberty - Versions diffs - 0.1.2 - Mend

@opys/authliberty 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/dist/index.cjs ADDED Viewed

@@ -0,0 +1,149 @@
+Object.defineProperty(exports, Symbol.toStringTag, { value: 'Module' });
+let _opys_dev = require("@opys/dev");
+let _opys_core = require("@opys/core");
+//#region lib/resolver.ts
+/**
+* Resolver for AuthLiberty releases on a GitLab generic package registry.
+*
+* AuthLiberty's CI publishes the agent jar to two channels:
+*   - `latest`     — auto-updated from `main`, filename `authliberty-latest.jar`
+*   - `<version>`  — tagged releases, filename `authliberty-<version>.jar`
+*
+* Both ship as a single `.jar` in a generic package named `authliberty`.
+* GitLab exposes the file's sha256 via the `package_files` API, which we
+* use for integrity verification. The `latest` channel's sha256 changes
+* whenever a new build replaces it — that's resolved at template-build
+* time and frozen into the opys manifest.
+*
+* Accepted version forms:
+*   - Exact version: `'0.3'`
+*   - `'latest'`     — the auto-updating `latest` package version
+*/
+const DEFAULT_PROJECT = "harmoniya/authliberty";
+const DEFAULT_GITLAB = "https://gitlab.com";
+const PACKAGE_NAME = "authliberty";
+function authHeaders(token) {
+	return token ? { "PRIVATE-TOKEN": token } : {};
+}
+async function fetchPackages(base, projectPath, token) {
+	const res = await (0, _opys_core.fetchWithRetry)(`${base}/api/v4/projects/${encodeURIComponent(projectPath)}/packages?package_type=generic&package_name=${PACKAGE_NAME}&per_page=100`, { headers: authHeaders(token) });
+	if (!res.ok) throw new Error(`GitLab API ${res.status} ${res.statusText} listing packages for ${projectPath}`);
+	return (await res.json()).filter((p) => p.name === PACKAGE_NAME && p.package_type === "generic" && p.status === "default");
+}
+async function fetchPackageFiles(base, projectPath, packageId, token) {
+	const res = await (0, _opys_core.fetchWithRetry)(`${base}/api/v4/projects/${encodeURIComponent(projectPath)}/packages/${packageId}/package_files?per_page=100`, { headers: authHeaders(token) });
+	if (!res.ok) throw new Error(`GitLab API ${res.status} ${res.statusText} listing files for package ${packageId}`);
+	return await res.json();
+}
+/** Pick the .jar file. If multiple, prefer the most recently created one. */
+function findJar(files) {
+	const jars = files.filter((f) => f.file_name.endsWith(".jar"));
+	if (jars.length === 0) return null;
+	return jars.reduce((latest, f) => f.created_at > latest.created_at ? f : latest);
+}
+async function resolveAuthLibertyVersion(input, options = {}) {
+	const project = options.project ?? DEFAULT_PROJECT;
+	const base = (options.gitlab ?? DEFAULT_GITLAB).replace(/\/+$/, "");
+	const packages = await fetchPackages(base, project, options.token);
+	const candidates = packages.filter((p) => p.version === input);
+	if (candidates.length === 0) {
+		const available = [...new Set(packages.map((p) => p.version))].slice(0, 8).join(", ");
+		throw new Error(`AuthLiberty version '${input}' not found in ${project}. Available: ${available || "(none)"}`);
+	}
+	const pkg = candidates.reduce((latest, p) => p.created_at > latest.created_at ? p : latest);
+	const jar = findJar(await fetchPackageFiles(base, project, pkg.id, options.token));
+	if (!jar) throw new Error(`AuthLiberty package ${project}@${pkg.version} has no .jar file`);
+	const downloadUrl = `${base}/api/v4/projects/${encodeURIComponent(project)}/packages/generic/${PACKAGE_NAME}/${encodeURIComponent(pkg.version)}/${encodeURIComponent(jar.file_name)}`;
+	return {
+		version: pkg.version,
+		filename: jar.file_name,
+		url: downloadUrl,
+		size: jar.size,
+		sha256: jar.file_sha256 ?? void 0,
+		createdAt: pkg.created_at
+	};
+}
+//#endregion
+//#region lib/template.ts
+const HOST_PROPS = {
+	auth: "minecraft.api.auth.host",
+	account: "minecraft.api.account.host",
+	session: "minecraft.api.session.host",
+	services: "minecraft.api.services.host"
+};
+const SERVERS = Object.keys(HOST_PROPS);
+function resolveHost(hosts, server) {
+	if (!hosts) return void 0;
+	const raw = typeof hosts === "function" ? hosts(server) : hosts[server];
+	return raw ? raw : void 0;
+}
+function val(value) {
+	return {
+		rules: [],
+		value: [value]
+	};
+}
+/**
+* Build a opys template fragment that loads AuthLiberty as a `-javaagent`
+* and points Mojang's auth/account/session/services hosts at the configured
+* replacements.
+*
+* The agent jar lands at `${library_directory}/net/harmoniya/authliberty/<v>/authliberty-<v>.jar`
+* (a maven-ish path mirroring how Forge/Cleanroom organize bootstrap jars).
+* The `jvmArgs` Valset is meant to be spread into a loader template's
+* `command.args` — AuthLiberty has no main class, no classpath needs, and
+* doesn't interact with any loader's bootstrap, so it composes cleanly with
+* any of `@opys/{minecraft,forge,cleanroom,lwjgl3ify}`.
+*/
+async function resolveAuthliberty(options) {
+	const release = await resolveAuthLibertyVersion(options.version, {
+		project: options.project,
+		gitlab: options.gitlab,
+		token: options.token
+	});
+	const path = `\${library_directory}/net/harmoniya/authliberty/${release.version}/${release.filename}`;
+	const artifact = {
+		path,
+		source: (0, _opys_core.sourceUrl)(release.url),
+		size: release.size,
+		rules: [],
+		...release.sha256 ? { integrity: { sha256: release.sha256 } } : {}
+	};
+	const args = [val(`-javaagent:${path}`)];
+	for (const server of SERVERS) {
+		const url = resolveHost(options.hosts, server);
+		if (url) args.push(val(`-D${HOST_PROPS[server]}=${url}`));
+	}
+	return {
+		artifacts: [artifact],
+		jvmArgs: args,
+		release
+	};
+}
+//#endregion
+//#region lib/plugin.ts
+/** AuthLiberty — an authlib-injector `-javaagent` auth redirector. */
+function authliberty(version, opts = {}) {
+	return (0, _opys_dev.definePlugin)({
+		name: "authliberty",
+		async build(ctx) {
+			const t = await resolveAuthliberty({
+				version,
+				...opts
+			});
+			ctx.log("authliberty", `resolved ${version}`);
+			return {
+				artifacts: t.artifacts,
+				launch: { jvmArgs: t.jvmArgs }
+			};
+		}
+	});
+}
+//#endregion
+exports.authliberty = authliberty;
+exports.resolveAuthLibertyVersion = resolveAuthLibertyVersion;
+exports.resolveAuthliberty = resolveAuthliberty;

package/dist/index.d.cts ADDED Viewed

@@ -0,0 +1,117 @@
+import { OpysPlugin } from "@opys/dev";
+import { Artifact, Valset } from "@opys/core";
+//#region lib/resolver.d.ts
+/**
+ * Resolver for AuthLiberty releases on a GitLab generic package registry.
+ *
+ * AuthLiberty's CI publishes the agent jar to two channels:
+ *   - `latest`     — auto-updated from `main`, filename `authliberty-latest.jar`
+ *   - `<version>`  — tagged releases, filename `authliberty-<version>.jar`
+ *
+ * Both ship as a single `.jar` in a generic package named `authliberty`.
+ * GitLab exposes the file's sha256 via the `package_files` API, which we
+ * use for integrity verification. The `latest` channel's sha256 changes
+ * whenever a new build replaces it — that's resolved at template-build
+ * time and frozen into the opys manifest.
+ *
+ * Accepted version forms:
+ *   - Exact version: `'0.3'`
+ *   - `'latest'`     — the auto-updating `latest` package version
+ */
+interface AuthLibertyRelease {
+  /** Package version, e.g. `0.3` or `latest`. */
+  readonly version: string;
+  /** Asset filename, e.g. `authliberty-0.3.jar`. */
+  readonly filename: string;
+  /** Direct download URL for the agent jar. */
+  readonly url: string;
+  /** Asset size in bytes. */
+  readonly size: number;
+  /** sha256 of the asset (hex), as reported by GitLab. */
+  readonly sha256?: string;
+  /** ISO timestamp the package was created. */
+  readonly createdAt: string;
+}
+interface ResolveAuthLibertyOptions {
+  /** GitLab project path `group/name`. Default: `harmoniya/authliberty`. */
+  project?: string;
+  /** GitLab instance URL. Default: `https://gitlab.com`. */
+  gitlab?: string;
+  /** Optional GitLab token for private projects / higher rate limits. */
+  token?: string;
+}
+declare function resolveAuthLibertyVersion(input: string, options?: ResolveAuthLibertyOptions): Promise<AuthLibertyRelease>;
+//#endregion
+//#region lib/template.d.ts
+/** Mojang server kind AuthLiberty's bytecode transformer can retarget. */
+type AuthLibertyServer = 'auth' | 'account' | 'session' | 'services';
+/**
+ * Per-server host overrides. Either:
+ *   - an object — only the keys you set become `-D` flags; unset ones fall
+ *     back to the original Mojang host at runtime, OR
+ *   - a function — called once per server kind. Return a URL to override,
+ *     or `undefined` / empty string to leave that server on its Mojang
+ *     default.
+ */
+type AuthLibertyHosts = AuthLibertyHostMap | ((server: AuthLibertyServer) => string | undefined);
+interface AuthLibertyHostMap {
+  /** `-Dminecraft.api.auth.host` — Yggdrasil auth server (default `https://authserver.mojang.com`). */
+  auth?: string;
+  /** `-Dminecraft.api.account.host` — account services (default `https://account.mojang.com`). */
+  account?: string;
+  /** `-Dminecraft.api.session.host` — session/profile server (default `https://sessionserver.mojang.com`). */
+  session?: string;
+  /** `-Dminecraft.api.services.host` — Minecraft Services API (default `https://api.minecraftservices.com`). */
+  services?: string;
+}
+interface AuthLibertyOptions {
+  /**
+   * AuthLiberty version. Accepts:
+   *   - Exact version: `'0.3'`
+   *   - `'latest'` — auto-updating `main` build (sha256 frozen at template-build time)
+   */
+  version: string;
+  /** GitLab project path. Default: `harmoniya/authliberty`. */
+  project?: string;
+  /** GitLab instance URL. Default: `https://gitlab.com`. */
+  gitlab?: string;
+  /** Optional GitLab token for private projects / higher rate limits. */
+  token?: string;
+  /** Replacement host overrides. Each maps to a `-Dminecraft.api.*.host` system property. */
+  hosts?: AuthLibertyHosts;
+}
+interface AuthLibertyTemplate {
+  /** The agent jar artifact. */
+  artifacts: Artifact[];
+  /**
+   * JVM args to add to the launch command — `-javaagent:<path>` plus a
+   * `-D` for each configured host. Spread these into your loader
+   * template's `command.args` (typically *before* the loader's own
+   * `-javaagent:` and main-class args, so the redirector is in place
+   * before any auth code runs).
+   */
+  jvmArgs: Valset;
+  /** Resolved release metadata, useful for logging / pinning. */
+  release: AuthLibertyRelease;
+}
+/**
+ * Build a opys template fragment that loads AuthLiberty as a `-javaagent`
+ * and points Mojang's auth/account/session/services hosts at the configured
+ * replacements.
+ *
+ * The agent jar lands at `${library_directory}/net/harmoniya/authliberty/<v>/authliberty-<v>.jar`
+ * (a maven-ish path mirroring how Forge/Cleanroom organize bootstrap jars).
+ * The `jvmArgs` Valset is meant to be spread into a loader template's
+ * `command.args` — AuthLiberty has no main class, no classpath needs, and
+ * doesn't interact with any loader's bootstrap, so it composes cleanly with
+ * any of `@opys/{minecraft,forge,cleanroom,lwjgl3ify}`.
+ */
+declare function resolveAuthliberty(options: AuthLibertyOptions): Promise<AuthLibertyTemplate>;
+//#endregion
+//#region lib/plugin.d.ts
+/** AuthLiberty — an authlib-injector `-javaagent` auth redirector. */
+declare function authliberty(version: string, opts?: Omit<AuthLibertyOptions, 'version'>): OpysPlugin;
+//#endregion
+export { type AuthLibertyHostMap, type AuthLibertyHosts, type AuthLibertyOptions, type AuthLibertyRelease, type AuthLibertyServer, type AuthLibertyTemplate, type ResolveAuthLibertyOptions, authliberty, resolveAuthLibertyVersion, resolveAuthliberty };
+//# sourceMappingURL=index.d.cts.map

package/dist/index.d.cts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.d.cts","names":[],"sources":["../lib/resolver.ts","../lib/template.ts","../lib/plugin.ts"],"mappings":";;;;;;;;AAwBA;;;;;;;;;;;;AAeA;UAfiB,kBAAA;;WAEN,OAAA;EAeT;EAAA,SAbS,QAAA;EAiBT;EAAA,SAfS,GAAA;EAeJ;EAAA,SAbI,IAAA;EAwFoC;EAAA,SAtFpC,MAAA;EAwFA;EAAA,SAtFA,SAAA;AAAA;AAAA,UAGM,yBAAA;EAoFP;EAlFR,OAAA;EAiFS;EA/ET,MAAA;EAgFC;EA9ED,KAAA;AAAA;AAAA,iBA2EoB,yBAAA,CACpB,KAAA,UACA,OAAA,GAAS,yBAAA,GACR,OAAA,CAAQ,kBAAA;;;;KClHC,iBAAA;;;;;;;;;KAUA,gBAAA,GACR,kBAAA,KACE,MAAA,EAAQ,iBAAA;AAAA,UAEG,kBAAA;EDaG;ECXlB,IAAA;EDcwC;ECZxC,OAAA;EDYwC;ECVxC,OAAA;EDcA;ECZA,QAAA;AAAA;AAAA,UAGe,kBAAA;EDsFK;;;;;EChFpB,OAAA;EDmFQ;ECjFR,OAAA;ED+EA;EC7EA,MAAA;ED8EA;EC5EA,KAAA;ED6ES;EC3ET,KAAA,GAAQ,gBAAA;AAAA;AAAA,UAGO,mBAAA;;EAEf,SAAA,EAAW,QAAA;EA5CD;;;;;AAUZ;;EA0CE,OAAA,EAAS,MAAA;EAxCoB;EA0C7B,OAAA,EAAS,kBAAA;AAAA;;;;AAxCX;;;;;;;;;iBA6EsB,kBAAA,CACpB,OAAA,EAAS,kBAAA,GACR,OAAA,CAAQ,mBAAA;;;;iBClGK,WAAA,CACd,OAAA,UACA,IAAA,GAAM,IAAA,CAAK,kBAAA,eACV,UAAA"}

package/dist/index.d.mts ADDED Viewed

@@ -0,0 +1,117 @@
+import { OpysPlugin } from "@opys/dev";
+import { Artifact, Valset } from "@opys/core";
+//#region lib/resolver.d.ts
+/**
+ * Resolver for AuthLiberty releases on a GitLab generic package registry.
+ *
+ * AuthLiberty's CI publishes the agent jar to two channels:
+ *   - `latest`     — auto-updated from `main`, filename `authliberty-latest.jar`
+ *   - `<version>`  — tagged releases, filename `authliberty-<version>.jar`
+ *
+ * Both ship as a single `.jar` in a generic package named `authliberty`.
+ * GitLab exposes the file's sha256 via the `package_files` API, which we
+ * use for integrity verification. The `latest` channel's sha256 changes
+ * whenever a new build replaces it — that's resolved at template-build
+ * time and frozen into the opys manifest.
+ *
+ * Accepted version forms:
+ *   - Exact version: `'0.3'`
+ *   - `'latest'`     — the auto-updating `latest` package version
+ */
+interface AuthLibertyRelease {
+  /** Package version, e.g. `0.3` or `latest`. */
+  readonly version: string;
+  /** Asset filename, e.g. `authliberty-0.3.jar`. */
+  readonly filename: string;
+  /** Direct download URL for the agent jar. */
+  readonly url: string;
+  /** Asset size in bytes. */
+  readonly size: number;
+  /** sha256 of the asset (hex), as reported by GitLab. */
+  readonly sha256?: string;
+  /** ISO timestamp the package was created. */
+  readonly createdAt: string;
+}
+interface ResolveAuthLibertyOptions {
+  /** GitLab project path `group/name`. Default: `harmoniya/authliberty`. */
+  project?: string;
+  /** GitLab instance URL. Default: `https://gitlab.com`. */
+  gitlab?: string;
+  /** Optional GitLab token for private projects / higher rate limits. */
+  token?: string;
+}
+declare function resolveAuthLibertyVersion(input: string, options?: ResolveAuthLibertyOptions): Promise<AuthLibertyRelease>;
+//#endregion
+//#region lib/template.d.ts
+/** Mojang server kind AuthLiberty's bytecode transformer can retarget. */
+type AuthLibertyServer = 'auth' | 'account' | 'session' | 'services';
+/**
+ * Per-server host overrides. Either:
+ *   - an object — only the keys you set become `-D` flags; unset ones fall
+ *     back to the original Mojang host at runtime, OR
+ *   - a function — called once per server kind. Return a URL to override,
+ *     or `undefined` / empty string to leave that server on its Mojang
+ *     default.
+ */
+type AuthLibertyHosts = AuthLibertyHostMap | ((server: AuthLibertyServer) => string | undefined);
+interface AuthLibertyHostMap {
+  /** `-Dminecraft.api.auth.host` — Yggdrasil auth server (default `https://authserver.mojang.com`). */
+  auth?: string;
+  /** `-Dminecraft.api.account.host` — account services (default `https://account.mojang.com`). */
+  account?: string;
+  /** `-Dminecraft.api.session.host` — session/profile server (default `https://sessionserver.mojang.com`). */
+  session?: string;
+  /** `-Dminecraft.api.services.host` — Minecraft Services API (default `https://api.minecraftservices.com`). */
+  services?: string;
+}
+interface AuthLibertyOptions {
+  /**
+   * AuthLiberty version. Accepts:
+   *   - Exact version: `'0.3'`
+   *   - `'latest'` — auto-updating `main` build (sha256 frozen at template-build time)
+   */
+  version: string;
+  /** GitLab project path. Default: `harmoniya/authliberty`. */
+  project?: string;
+  /** GitLab instance URL. Default: `https://gitlab.com`. */
+  gitlab?: string;
+  /** Optional GitLab token for private projects / higher rate limits. */
+  token?: string;
+  /** Replacement host overrides. Each maps to a `-Dminecraft.api.*.host` system property. */
+  hosts?: AuthLibertyHosts;
+}
+interface AuthLibertyTemplate {
+  /** The agent jar artifact. */
+  artifacts: Artifact[];
+  /**
+   * JVM args to add to the launch command — `-javaagent:<path>` plus a
+   * `-D` for each configured host. Spread these into your loader
+   * template's `command.args` (typically *before* the loader's own
+   * `-javaagent:` and main-class args, so the redirector is in place
+   * before any auth code runs).
+   */
+  jvmArgs: Valset;
+  /** Resolved release metadata, useful for logging / pinning. */
+  release: AuthLibertyRelease;
+}
+/**
+ * Build a opys template fragment that loads AuthLiberty as a `-javaagent`
+ * and points Mojang's auth/account/session/services hosts at the configured
+ * replacements.
+ *
+ * The agent jar lands at `${library_directory}/net/harmoniya/authliberty/<v>/authliberty-<v>.jar`
+ * (a maven-ish path mirroring how Forge/Cleanroom organize bootstrap jars).
+ * The `jvmArgs` Valset is meant to be spread into a loader template's
+ * `command.args` — AuthLiberty has no main class, no classpath needs, and
+ * doesn't interact with any loader's bootstrap, so it composes cleanly with
+ * any of `@opys/{minecraft,forge,cleanroom,lwjgl3ify}`.
+ */
+declare function resolveAuthliberty(options: AuthLibertyOptions): Promise<AuthLibertyTemplate>;
+//#endregion
+//#region lib/plugin.d.ts
+/** AuthLiberty — an authlib-injector `-javaagent` auth redirector. */
+declare function authliberty(version: string, opts?: Omit<AuthLibertyOptions, 'version'>): OpysPlugin;
+//#endregion
+export { type AuthLibertyHostMap, type AuthLibertyHosts, type AuthLibertyOptions, type AuthLibertyRelease, type AuthLibertyServer, type AuthLibertyTemplate, type ResolveAuthLibertyOptions, authliberty, resolveAuthLibertyVersion, resolveAuthliberty };
+//# sourceMappingURL=index.d.mts.map

package/dist/index.d.mts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.d.mts","names":[],"sources":["../lib/resolver.ts","../lib/template.ts","../lib/plugin.ts"],"mappings":";;;;;;;;AAwBA;;;;;;;;;;;;AAeA;UAfiB,kBAAA;;WAEN,OAAA;EAeT;EAAA,SAbS,QAAA;EAiBT;EAAA,SAfS,GAAA;EAeJ;EAAA,SAbI,IAAA;EAwFoC;EAAA,SAtFpC,MAAA;EAwFA;EAAA,SAtFA,SAAA;AAAA;AAAA,UAGM,yBAAA;EAoFP;EAlFR,OAAA;EAiFS;EA/ET,MAAA;EAgFC;EA9ED,KAAA;AAAA;AAAA,iBA2EoB,yBAAA,CACpB,KAAA,UACA,OAAA,GAAS,yBAAA,GACR,OAAA,CAAQ,kBAAA;;;;KClHC,iBAAA;;;;;;;;;KAUA,gBAAA,GACR,kBAAA,KACE,MAAA,EAAQ,iBAAA;AAAA,UAEG,kBAAA;EDaG;ECXlB,IAAA;EDcwC;ECZxC,OAAA;EDYwC;ECVxC,OAAA;EDcA;ECZA,QAAA;AAAA;AAAA,UAGe,kBAAA;EDsFK;;;;;EChFpB,OAAA;EDmFQ;ECjFR,OAAA;ED+EA;EC7EA,MAAA;ED8EA;EC5EA,KAAA;ED6ES;EC3ET,KAAA,GAAQ,gBAAA;AAAA;AAAA,UAGO,mBAAA;;EAEf,SAAA,EAAW,QAAA;EA5CD;;;;;AAUZ;;EA0CE,OAAA,EAAS,MAAA;EAxCoB;EA0C7B,OAAA,EAAS,kBAAA;AAAA;;;;AAxCX;;;;;;;;;iBA6EsB,kBAAA,CACpB,OAAA,EAAS,kBAAA,GACR,OAAA,CAAQ,mBAAA;;;;iBClGK,WAAA,CACd,OAAA,UACA,IAAA,GAAM,IAAA,CAAK,kBAAA,eACV,UAAA"}

package/dist/index.mjs ADDED Viewed

@@ -0,0 +1,147 @@
+import { definePlugin } from "@opys/dev";
+import { fetchWithRetry, sourceUrl } from "@opys/core";
+//#region lib/resolver.ts
+/**
+* Resolver for AuthLiberty releases on a GitLab generic package registry.
+*
+* AuthLiberty's CI publishes the agent jar to two channels:
+*   - `latest`     — auto-updated from `main`, filename `authliberty-latest.jar`
+*   - `<version>`  — tagged releases, filename `authliberty-<version>.jar`
+*
+* Both ship as a single `.jar` in a generic package named `authliberty`.
+* GitLab exposes the file's sha256 via the `package_files` API, which we
+* use for integrity verification. The `latest` channel's sha256 changes
+* whenever a new build replaces it — that's resolved at template-build
+* time and frozen into the opys manifest.
+*
+* Accepted version forms:
+*   - Exact version: `'0.3'`
+*   - `'latest'`     — the auto-updating `latest` package version
+*/
+const DEFAULT_PROJECT = "harmoniya/authliberty";
+const DEFAULT_GITLAB = "https://gitlab.com";
+const PACKAGE_NAME = "authliberty";
+function authHeaders(token) {
+	return token ? { "PRIVATE-TOKEN": token } : {};
+}
+async function fetchPackages(base, projectPath, token) {
+	const res = await fetchWithRetry(`${base}/api/v4/projects/${encodeURIComponent(projectPath)}/packages?package_type=generic&package_name=${PACKAGE_NAME}&per_page=100`, { headers: authHeaders(token) });
+	if (!res.ok) throw new Error(`GitLab API ${res.status} ${res.statusText} listing packages for ${projectPath}`);
+	return (await res.json()).filter((p) => p.name === PACKAGE_NAME && p.package_type === "generic" && p.status === "default");
+}
+async function fetchPackageFiles(base, projectPath, packageId, token) {
+	const res = await fetchWithRetry(`${base}/api/v4/projects/${encodeURIComponent(projectPath)}/packages/${packageId}/package_files?per_page=100`, { headers: authHeaders(token) });
+	if (!res.ok) throw new Error(`GitLab API ${res.status} ${res.statusText} listing files for package ${packageId}`);
+	return await res.json();
+}
+/** Pick the .jar file. If multiple, prefer the most recently created one. */
+function findJar(files) {
+	const jars = files.filter((f) => f.file_name.endsWith(".jar"));
+	if (jars.length === 0) return null;
+	return jars.reduce((latest, f) => f.created_at > latest.created_at ? f : latest);
+}
+async function resolveAuthLibertyVersion(input, options = {}) {
+	const project = options.project ?? DEFAULT_PROJECT;
+	const base = (options.gitlab ?? DEFAULT_GITLAB).replace(/\/+$/, "");
+	const packages = await fetchPackages(base, project, options.token);
+	const candidates = packages.filter((p) => p.version === input);
+	if (candidates.length === 0) {
+		const available = [...new Set(packages.map((p) => p.version))].slice(0, 8).join(", ");
+		throw new Error(`AuthLiberty version '${input}' not found in ${project}. Available: ${available || "(none)"}`);
+	}
+	const pkg = candidates.reduce((latest, p) => p.created_at > latest.created_at ? p : latest);
+	const jar = findJar(await fetchPackageFiles(base, project, pkg.id, options.token));
+	if (!jar) throw new Error(`AuthLiberty package ${project}@${pkg.version} has no .jar file`);
+	const downloadUrl = `${base}/api/v4/projects/${encodeURIComponent(project)}/packages/generic/${PACKAGE_NAME}/${encodeURIComponent(pkg.version)}/${encodeURIComponent(jar.file_name)}`;
+	return {
+		version: pkg.version,
+		filename: jar.file_name,
+		url: downloadUrl,
+		size: jar.size,
+		sha256: jar.file_sha256 ?? void 0,
+		createdAt: pkg.created_at
+	};
+}
+//#endregion
+//#region lib/template.ts
+const HOST_PROPS = {
+	auth: "minecraft.api.auth.host",
+	account: "minecraft.api.account.host",
+	session: "minecraft.api.session.host",
+	services: "minecraft.api.services.host"
+};
+const SERVERS = Object.keys(HOST_PROPS);
+function resolveHost(hosts, server) {
+	if (!hosts) return void 0;
+	const raw = typeof hosts === "function" ? hosts(server) : hosts[server];
+	return raw ? raw : void 0;
+}
+function val(value) {
+	return {
+		rules: [],
+		value: [value]
+	};
+}
+/**
+* Build a opys template fragment that loads AuthLiberty as a `-javaagent`
+* and points Mojang's auth/account/session/services hosts at the configured
+* replacements.
+*
+* The agent jar lands at `${library_directory}/net/harmoniya/authliberty/<v>/authliberty-<v>.jar`
+* (a maven-ish path mirroring how Forge/Cleanroom organize bootstrap jars).
+* The `jvmArgs` Valset is meant to be spread into a loader template's
+* `command.args` — AuthLiberty has no main class, no classpath needs, and
+* doesn't interact with any loader's bootstrap, so it composes cleanly with
+* any of `@opys/{minecraft,forge,cleanroom,lwjgl3ify}`.
+*/
+async function resolveAuthliberty(options) {
+	const release = await resolveAuthLibertyVersion(options.version, {
+		project: options.project,
+		gitlab: options.gitlab,
+		token: options.token
+	});
+	const path = `\${library_directory}/net/harmoniya/authliberty/${release.version}/${release.filename}`;
+	const artifact = {
+		path,
+		source: sourceUrl(release.url),
+		size: release.size,
+		rules: [],
+		...release.sha256 ? { integrity: { sha256: release.sha256 } } : {}
+	};
+	const args = [val(`-javaagent:${path}`)];
+	for (const server of SERVERS) {
+		const url = resolveHost(options.hosts, server);
+		if (url) args.push(val(`-D${HOST_PROPS[server]}=${url}`));
+	}
+	return {
+		artifacts: [artifact],
+		jvmArgs: args,
+		release
+	};
+}
+//#endregion
+//#region lib/plugin.ts
+/** AuthLiberty — an authlib-injector `-javaagent` auth redirector. */
+function authliberty(version, opts = {}) {
+	return definePlugin({
+		name: "authliberty",
+		async build(ctx) {
+			const t = await resolveAuthliberty({
+				version,
+				...opts
+			});
+			ctx.log("authliberty", `resolved ${version}`);
+			return {
+				artifacts: t.artifacts,
+				launch: { jvmArgs: t.jvmArgs }
+			};
+		}
+	});
+}
+//#endregion
+export { authliberty, resolveAuthLibertyVersion, resolveAuthliberty };
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.mjs","names":[],"sources":["../lib/resolver.ts","../lib/template.ts","../lib/plugin.ts"],"sourcesContent":["/**\n * Resolver for AuthLiberty releases on a GitLab generic package registry.\n *\n * AuthLiberty's CI publishes the agent jar to two channels:\n * - `latest` — auto-updated from `main`, filename `authliberty-latest.jar`\n * - `<version>` — tagged releases, filename `authliberty-<version>.jar`\n *\n * Both ship as a single `.jar` in a generic package named `authliberty`.\n * GitLab exposes the file's sha256 via the `package_files` API, which we\n * use for integrity verification. The `latest` channel's sha256 changes\n * whenever a new build replaces it — that's resolved at template-build\n * time and frozen into the opys manifest.\n *\n * Accepted version forms:\n * - Exact version: `'0.3'`\n * - `'latest'` — the auto-updating `latest` package version\n */\n\nimport { fetchWithRetry } from '@opys/core';\n\nconst DEFAULT_PROJECT = 'harmoniya/authliberty';\nconst DEFAULT_GITLAB = 'https://gitlab.com';\nconst PACKAGE_NAME = 'authliberty';\n\nexport interface AuthLibertyRelease {\n /** Package version, e.g. `0.3` or `latest`. */\n readonly version: string;\n /** Asset filename, e.g. `authliberty-0.3.jar`. */\n readonly filename: string;\n /** Direct download URL for the agent jar. */\n readonly url: string;\n /** Asset size in bytes. */\n readonly size: number;\n /** sha256 of the asset (hex), as reported by GitLab. */\n readonly sha256?: string;\n /** ISO timestamp the package was created. */\n readonly createdAt: string;\n}\n\nexport interface ResolveAuthLibertyOptions {\n /** GitLab project path `group/name`. Default: `harmoniya/authliberty`. */\n project?: string;\n /** GitLab instance URL. Default: `https://gitlab.com`. */\n gitlab?: string;\n /** Optional GitLab token for private projects / higher rate limits. */\n token?: string;\n}\n\ninterface RawPackage {\n id: number;\n name: string;\n version: string;\n package_type: string;\n status: string;\n created_at: string;\n}\n\ninterface RawPackageFile {\n id: number;\n package_id: number;\n file_name: string;\n size: number;\n file_sha256: string | null;\n created_at: string;\n}\n\nfunction authHeaders(token: string | undefined): Record<string, string> {\n return token ? { 'PRIVATE-TOKEN': token } : {};\n}\n\nasync function fetchPackages(\n base: string,\n projectPath: string,\n token: string | undefined,\n): Promise<RawPackage[]> {\n const projectEnc = encodeURIComponent(projectPath);\n const url = `${base}/api/v4/projects/${projectEnc}/packages?package_type=generic&package_name=${PACKAGE_NAME}&per_page=100`;\n const res = await fetchWithRetry(url, { headers: authHeaders(token) });\n if (!res.ok) {\n throw new Error(\n `GitLab API ${res.status} ${res.statusText} listing packages for ${projectPath}`,\n );\n }\n const all = (await res.json()) as RawPackage[];\n // GitLab's `package_name` filter is a fuzzy match — narrow to exact name\n // and the generic registry, drop any non-default (broken/processing).\n return all.filter(\n (p) =>\n p.name === PACKAGE_NAME &&\n p.package_type === 'generic' &&\n p.status === 'default',\n );\n}\n\nasync function fetchPackageFiles(\n base: string,\n projectPath: string,\n packageId: number,\n token: string | undefined,\n): Promise<RawPackageFile[]> {\n const projectEnc = encodeURIComponent(projectPath);\n const url = `${base}/api/v4/projects/${projectEnc}/packages/${packageId}/package_files?per_page=100`;\n const res = await fetchWithRetry(url, { headers: authHeaders(token) });\n if (!res.ok) {\n throw new Error(\n `GitLab API ${res.status} ${res.statusText} listing files for package ${packageId}`,\n );\n }\n return (await res.json()) as RawPackageFile[];\n}\n\n/** Pick the .jar file. If multiple, prefer the most recently created one. */\nfunction findJar(files: RawPackageFile[]): RawPackageFile | null {\n const jars = files.filter((f) => f.file_name.endsWith('.jar'));\n if (jars.length === 0) return null;\n return jars.reduce((latest, f) =>\n f.created_at > latest.created_at ? f : latest,\n );\n}\n\nexport async function resolveAuthLibertyVersion(\n input: string,\n options: ResolveAuthLibertyOptions = {},\n): Promise<AuthLibertyRelease> {\n const project = options.project ?? DEFAULT_PROJECT;\n const base = (options.gitlab ?? DEFAULT_GITLAB).replace(/\\/+$/, '');\n const packages = await fetchPackages(base, project, options.token);\n\n const candidates = packages.filter((p) => p.version === input);\n if (candidates.length === 0) {\n const available = [...new Set(packages.map((p) => p.version))]\n .slice(0, 8)\n .join(', ');\n throw new Error(\n `AuthLiberty version '${input}' not found in ${project}. Available: ${available || '(none)'}`,\n );\n }\n // Same version can be re-published; the most recent package wins.\n const pkg = candidates.reduce((latest, p) =>\n p.created_at > latest.created_at ? p : latest,\n );\n\n const files = await fetchPackageFiles(base, project, pkg.id, options.token);\n const jar = findJar(files);\n if (!jar) {\n throw new Error(\n `AuthLiberty package ${project}@${pkg.version} has no .jar file`,\n );\n }\n\n const projectEnc = encodeURIComponent(project);\n const downloadUrl = `${base}/api/v4/projects/${projectEnc}/packages/generic/${PACKAGE_NAME}/${encodeURIComponent(pkg.version)}/${encodeURIComponent(jar.file_name)}`;\n\n return {\n version: pkg.version,\n filename: jar.file_name,\n url: downloadUrl,\n size: jar.size,\n sha256: jar.file_sha256 ?? undefined,\n createdAt: pkg.created_at,\n };\n}\n","import { type Artifact, sourceUrl } from '@opys/core';\nimport type { Val, Valset } from '@opys/core';\nimport {\n resolveAuthLibertyVersion,\n type AuthLibertyRelease,\n type ResolveAuthLibertyOptions,\n} from './resolver';\n\n/** Mojang server kind AuthLiberty's bytecode transformer can retarget. */\nexport type AuthLibertyServer = 'auth' | 'account' | 'session' | 'services';\n\n/**\n * Per-server host overrides. Either:\n * - an object — only the keys you set become `-D` flags; unset ones fall\n * back to the original Mojang host at runtime, OR\n * - a function — called once per server kind. Return a URL to override,\n * or `undefined` / empty string to leave that server on its Mojang\n * default.\n */\nexport type AuthLibertyHosts =\n | AuthLibertyHostMap\n | ((server: AuthLibertyServer) => string | undefined);\n\nexport interface AuthLibertyHostMap {\n /** `-Dminecraft.api.auth.host` — Yggdrasil auth server (default `https://authserver.mojang.com`). */\n auth?: string;\n /** `-Dminecraft.api.account.host` — account services (default `https://account.mojang.com`). */\n account?: string;\n /** `-Dminecraft.api.session.host` — session/profile server (default `https://sessionserver.mojang.com`). */\n session?: string;\n /** `-Dminecraft.api.services.host` — Minecraft Services API (default `https://api.minecraftservices.com`). */\n services?: string;\n}\n\nexport interface AuthLibertyOptions {\n /**\n * AuthLiberty version. Accepts:\n * - Exact version: `'0.3'`\n * - `'latest'` — auto-updating `main` build (sha256 frozen at template-build time)\n */\n version: string;\n /** GitLab project path. Default: `harmoniya/authliberty`. */\n project?: string;\n /** GitLab instance URL. Default: `https://gitlab.com`. */\n gitlab?: string;\n /** Optional GitLab token for private projects / higher rate limits. */\n token?: string;\n /** Replacement host overrides. Each maps to a `-Dminecraft.api.*.host` system property. */\n hosts?: AuthLibertyHosts;\n}\n\nexport interface AuthLibertyTemplate {\n /** The agent jar artifact. */\n artifacts: Artifact[];\n /**\n * JVM args to add to the launch command — `-javaagent:<path>` plus a\n * `-D` for each configured host. Spread these into your loader\n * template's `command.args` (typically *before* the loader's own\n * `-javaagent:` and main-class args, so the redirector is in place\n * before any auth code runs).\n */\n jvmArgs: Valset;\n /** Resolved release metadata, useful for logging / pinning. */\n release: AuthLibertyRelease;\n}\n\nconst HOST_PROPS = {\n auth: 'minecraft.api.auth.host',\n account: 'minecraft.api.account.host',\n session: 'minecraft.api.session.host',\n services: 'minecraft.api.services.host',\n} as const satisfies Record<AuthLibertyServer, string>;\n\nconst SERVERS = Object.keys(HOST_PROPS) as AuthLibertyServer[];\n\nfunction resolveHost(\n hosts: AuthLibertyHosts | undefined,\n server: AuthLibertyServer,\n): string | undefined {\n if (!hosts) return undefined;\n const raw = typeof hosts === 'function' ? hosts(server) : hosts[server];\n return raw ? raw : undefined;\n}\n\nfunction val(value: string): Val {\n return { rules: [], value: [value] };\n}\n\n/**\n * Build a opys template fragment that loads AuthLiberty as a `-javaagent`\n * and points Mojang's auth/account/session/services hosts at the configured\n * replacements.\n *\n * The agent jar lands at `${library_directory}/net/harmoniya/authliberty/<v>/authliberty-<v>.jar`\n * (a maven-ish path mirroring how Forge/Cleanroom organize bootstrap jars).\n * The `jvmArgs` Valset is meant to be spread into a loader template's\n * `command.args` — AuthLiberty has no main class, no classpath needs, and\n * doesn't interact with any loader's bootstrap, so it composes cleanly with\n * any of `@opys/{minecraft,forge,cleanroom,lwjgl3ify}`.\n */\nexport async function resolveAuthliberty(\n options: AuthLibertyOptions,\n): Promise<AuthLibertyTemplate> {\n const release = await resolveAuthLibertyVersion(options.version, {\n project: options.project,\n gitlab: options.gitlab,\n token: options.token,\n } satisfies ResolveAuthLibertyOptions);\n\n const path = `\\${library_directory}/net/harmoniya/authliberty/${release.version}/${release.filename}`;\n\n const artifact: Artifact = {\n path,\n source: sourceUrl(release.url),\n size: release.size,\n rules: [],\n ...(release.sha256 ? { integrity: { sha256: release.sha256 } } : {}),\n };\n\n const args: Val[] = [val(`-javaagent:${path}`)];\n for (const server of SERVERS) {\n const url = resolveHost(options.hosts, server);\n if (url) args.push(val(`-D${HOST_PROPS[server]}=${url}`));\n }\n\n return {\n artifacts: [artifact],\n jvmArgs: args,\n release,\n };\n}\n","import { definePlugin, type OpysPlugin } from '@opys/dev';\nimport { resolveAuthliberty, type AuthLibertyOptions } from './template';\n\n/** AuthLiberty — an authlib-injector `-javaagent` auth redirector. */\nexport function authliberty(\n version: string,\n opts: Omit<AuthLibertyOptions, 'version'> = {},\n): OpysPlugin {\n return definePlugin({\n name: 'authliberty',\n async build(ctx) {\n const t = await resolveAuthliberty({ version, ...opts });\n ctx.log('authliberty', `resolved ${version}`);\n return { artifacts: t.artifacts, launch: { jvmArgs: t.jvmArgs } };\n },\n });\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;AAoBA,MAAM,kBAAkB;AACxB,MAAM,iBAAiB;AACvB,MAAM,eAAe;AA4CrB,SAAS,YAAY,OAAmD;AACtE,QAAO,QAAQ,EAAE,iBAAiB,OAAO,GAAG,EAAE;;AAGhD,eAAe,cACb,MACA,aACA,OACuB;CAGvB,MAAM,MAAM,MAAM,eADN,GAAG,KAAK,mBADD,mBAAmB,YAAY,CACA,8CAA8C,aAAa,gBACvE,EAAE,SAAS,YAAY,MAAM,EAAE,CAAC;AACtE,KAAI,CAAC,IAAI,GACP,OAAM,IAAI,MACR,cAAc,IAAI,OAAO,GAAG,IAAI,WAAW,wBAAwB,cACpE;AAKH,SAHa,MAAM,IAAI,MAAM,EAGlB,QACR,MACC,EAAE,SAAS,gBACX,EAAE,iBAAiB,aACnB,EAAE,WAAW,UAChB;;AAGH,eAAe,kBACb,MACA,aACA,WACA,OAC2B;CAG3B,MAAM,MAAM,MAAM,eADN,GAAG,KAAK,mBADD,mBAAmB,YAAY,CACA,YAAY,UAAU,8BAClC,EAAE,SAAS,YAAY,MAAM,EAAE,CAAC;AACtE,KAAI,CAAC,IAAI,GACP,OAAM,IAAI,MACR,cAAc,IAAI,OAAO,GAAG,IAAI,WAAW,6BAA6B,YACzE;AAEH,QAAQ,MAAM,IAAI,MAAM;;;AAI1B,SAAS,QAAQ,OAAgD;CAC/D,MAAM,OAAO,MAAM,QAAQ,MAAM,EAAE,UAAU,SAAS,OAAO,CAAC;AAC9D,KAAI,KAAK,WAAW,EAAG,QAAO;AAC9B,QAAO,KAAK,QAAQ,QAAQ,MAC1B,EAAE,aAAa,OAAO,aAAa,IAAI,OACxC;;AAGH,eAAsB,0BACpB,OACA,UAAqC,EAAE,EACV;CAC7B,MAAM,UAAU,QAAQ,WAAW;CACnC,MAAM,QAAQ,QAAQ,UAAU,gBAAgB,QAAQ,QAAQ,GAAG;CACnE,MAAM,WAAW,MAAM,cAAc,MAAM,SAAS,QAAQ,MAAM;CAElE,MAAM,aAAa,SAAS,QAAQ,MAAM,EAAE,YAAY,MAAM;AAC9D,KAAI,WAAW,WAAW,GAAG;EAC3B,MAAM,YAAY,CAAC,GAAG,IAAI,IAAI,SAAS,KAAK,MAAM,EAAE,QAAQ,CAAC,CAAC,CAC3D,MAAM,GAAG,EAAE,CACX,KAAK,KAAK;AACb,QAAM,IAAI,MACR,wBAAwB,MAAM,iBAAiB,QAAQ,eAAe,aAAa,WACpF;;CAGH,MAAM,MAAM,WAAW,QAAQ,QAAQ,MACrC,EAAE,aAAa,OAAO,aAAa,IAAI,OACxC;CAGD,MAAM,MAAM,QADE,MAAM,kBAAkB,MAAM,SAAS,IAAI,IAAI,QAAQ,MAAM,CACjD;AAC1B,KAAI,CAAC,IACH,OAAM,IAAI,MACR,uBAAuB,QAAQ,GAAG,IAAI,QAAQ,mBAC/C;CAIH,MAAM,cAAc,GAAG,KAAK,mBADT,mBAAmB,QAAQ,CACY,oBAAoB,aAAa,GAAG,mBAAmB,IAAI,QAAQ,CAAC,GAAG,mBAAmB,IAAI,UAAU;AAElK,QAAO;EACL,SAAS,IAAI;EACb,UAAU,IAAI;EACd,KAAK;EACL,MAAM,IAAI;EACV,QAAQ,IAAI,eAAe;EAC3B,WAAW,IAAI;EAChB;;;;;AC9FH,MAAM,aAAa;CACjB,MAAM;CACN,SAAS;CACT,SAAS;CACT,UAAU;CACX;AAED,MAAM,UAAU,OAAO,KAAK,WAAW;AAEvC,SAAS,YACP,OACA,QACoB;AACpB,KAAI,CAAC,MAAO,QAAO;CACnB,MAAM,MAAM,OAAO,UAAU,aAAa,MAAM,OAAO,GAAG,MAAM;AAChE,QAAO,MAAM,MAAM;;AAGrB,SAAS,IAAI,OAAoB;AAC/B,QAAO;EAAE,OAAO,EAAE;EAAE,OAAO,CAAC,MAAM;EAAE;;;;;;;;;;;;;;AAetC,eAAsB,mBACpB,SAC8B;CAC9B,MAAM,UAAU,MAAM,0BAA0B,QAAQ,SAAS;EAC/D,SAAS,QAAQ;EACjB,QAAQ,QAAQ;EAChB,OAAO,QAAQ;EAChB,CAAqC;CAEtC,MAAM,OAAO,mDAAmD,QAAQ,QAAQ,GAAG,QAAQ;CAE3F,MAAM,WAAqB;EACzB;EACA,QAAQ,UAAU,QAAQ,IAAI;EAC9B,MAAM,QAAQ;EACd,OAAO,EAAE;EACT,GAAI,QAAQ,SAAS,EAAE,WAAW,EAAE,QAAQ,QAAQ,QAAQ,EAAE,GAAG,EAAE;EACpE;CAED,MAAM,OAAc,CAAC,IAAI,cAAc,OAAO,CAAC;AAC/C,MAAK,MAAM,UAAU,SAAS;EAC5B,MAAM,MAAM,YAAY,QAAQ,OAAO,OAAO;AAC9C,MAAI,IAAK,MAAK,KAAK,IAAI,KAAK,WAAW,QAAQ,GAAG,MAAM,CAAC;;AAG3D,QAAO;EACL,WAAW,CAAC,SAAS;EACrB,SAAS;EACT;EACD;;;;;;AC7HH,SAAgB,YACd,SACA,OAA4C,EAAE,EAClC;AACZ,QAAO,aAAa;EAClB,MAAM;EACN,MAAM,MAAM,KAAK;GACf,MAAM,IAAI,MAAM,mBAAmB;IAAE;IAAS,GAAG;IAAM,CAAC;AACxD,OAAI,IAAI,eAAe,YAAY,UAAU;AAC7C,UAAO;IAAE,WAAW,EAAE;IAAW,QAAQ,EAAE,SAAS,EAAE,SAAS;IAAE;;EAEpE,CAAC"}

package/package.json ADDED Viewed

@@ -0,0 +1,36 @@
+{
+  "name": "@opys/authliberty",
+  "version": "0.1.2",
+  "type": "module",
+  "main": "./dist/index.js",
+  "exports": {
+    ".": {
+      "import": "./dist/index.mjs",
+      "require": "./dist/index.cjs"
+    }
+  },
+  "scripts": {
+    "build": "tsdown lib/index.ts --format esm,cjs --dts --clean",
+    "typecheck": "tsc --noEmit -p tsconfig.json",
+    "test": "vitest run tests/unit --passWithNoTests"
+  },
+  "dependencies": {
+    "@opys/core": "^0.1.2",
+    "@opys/dev": "^0.1.2"
+  },
+  "devDependencies": {
+    "tsdown": "*",
+    "vitest": "*"
+  },
+  "files": [
+    "dist"
+  ],
+  "engines": {
+    "node": ">=20"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/harmoniya-net/opys.git",
+    "directory": "packages/authliberty"
+  }
+}