@portel/photon 1.22.1 → 1.23.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +19 -8
- package/dist/a2ui/mapper.d.ts +40 -0
- package/dist/a2ui/mapper.d.ts.map +1 -0
- package/dist/a2ui/mapper.js +286 -0
- package/dist/a2ui/mapper.js.map +1 -0
- package/dist/a2ui/types.d.ts +129 -0
- package/dist/a2ui/types.d.ts.map +1 -0
- package/dist/a2ui/types.js +20 -0
- package/dist/a2ui/types.js.map +1 -0
- package/dist/ag-ui/adapter.d.ts +9 -1
- package/dist/ag-ui/adapter.d.ts.map +1 -1
- package/dist/ag-ui/adapter.js +33 -16
- package/dist/ag-ui/adapter.js.map +1 -1
- package/dist/auto-ui/beam/routes/api-daemon.d.ts +18 -0
- package/dist/auto-ui/beam/routes/api-daemon.d.ts.map +1 -0
- package/dist/auto-ui/beam/routes/api-daemon.js +118 -0
- package/dist/auto-ui/beam/routes/api-daemon.js.map +1 -0
- package/dist/auto-ui/beam.d.ts.map +1 -1
- package/dist/auto-ui/beam.js +34 -34
- package/dist/auto-ui/beam.js.map +1 -1
- package/dist/auto-ui/bridge/renderers.d.ts.map +1 -1
- package/dist/auto-ui/bridge/renderers.js +371 -0
- package/dist/auto-ui/bridge/renderers.js.map +1 -1
- package/dist/auto-ui/streamable-http-transport.d.ts.map +1 -1
- package/dist/auto-ui/streamable-http-transport.js +38 -1
- package/dist/auto-ui/streamable-http-transport.js.map +1 -1
- package/dist/auto-ui/types.d.ts +19 -0
- package/dist/auto-ui/types.d.ts.map +1 -1
- package/dist/auto-ui/types.js.map +1 -1
- package/dist/beam.bundle.js +757 -107
- package/dist/beam.bundle.js.map +4 -4
- package/dist/cli/commands/beam.d.ts.map +1 -1
- package/dist/cli/commands/beam.js +2 -0
- package/dist/cli/commands/beam.js.map +1 -1
- package/dist/cli/commands/build.d.ts.map +1 -1
- package/dist/cli/commands/build.js +2 -0
- package/dist/cli/commands/build.js.map +1 -1
- package/dist/cli/commands/doctor.d.ts.map +1 -1
- package/dist/cli/commands/doctor.js +92 -3
- package/dist/cli/commands/doctor.js.map +1 -1
- package/dist/cli/commands/host.d.ts.map +1 -1
- package/dist/cli/commands/host.js +9 -1
- package/dist/cli/commands/host.js.map +1 -1
- package/dist/cli/commands/info.d.ts.map +1 -1
- package/dist/cli/commands/info.js +7 -3
- package/dist/cli/commands/info.js.map +1 -1
- package/dist/cli/commands/init.d.ts.map +1 -1
- package/dist/cli/commands/init.js +4 -0
- package/dist/cli/commands/init.js.map +1 -1
- package/dist/cli/commands/maker.d.ts +8 -0
- package/dist/cli/commands/maker.d.ts.map +1 -1
- package/dist/cli/commands/maker.js +113 -46
- package/dist/cli/commands/maker.js.map +1 -1
- package/dist/cli/commands/marketplace.d.ts.map +1 -1
- package/dist/cli/commands/marketplace.js +7 -1
- package/dist/cli/commands/marketplace.js.map +1 -1
- package/dist/cli/commands/mcp.d.ts +10 -0
- package/dist/cli/commands/mcp.d.ts.map +1 -1
- package/dist/cli/commands/mcp.js +215 -4
- package/dist/cli/commands/mcp.js.map +1 -1
- package/dist/cli/commands/package.d.ts.map +1 -1
- package/dist/cli/commands/package.js +33 -15
- package/dist/cli/commands/package.js.map +1 -1
- package/dist/cli/commands/ps.d.ts +16 -0
- package/dist/cli/commands/ps.d.ts.map +1 -0
- package/dist/cli/commands/ps.js +267 -0
- package/dist/cli/commands/ps.js.map +1 -0
- package/dist/cli/commands/run.d.ts.map +1 -1
- package/dist/cli/commands/run.js +7 -0
- package/dist/cli/commands/run.js.map +1 -1
- package/dist/cli/commands/update.d.ts.map +1 -1
- package/dist/cli/commands/update.js +14 -4
- package/dist/cli/commands/update.js.map +1 -1
- package/dist/cli/index.d.ts.map +1 -1
- package/dist/cli/index.js +9 -4
- package/dist/cli/index.js.map +1 -1
- package/dist/context-store.d.ts +4 -4
- package/dist/context-store.d.ts.map +1 -1
- package/dist/context-store.js +20 -17
- package/dist/context-store.js.map +1 -1
- package/dist/context.d.ts +5 -4
- package/dist/context.d.ts.map +1 -1
- package/dist/context.js +68 -14
- package/dist/context.js.map +1 -1
- package/dist/daemon/client.d.ts +60 -0
- package/dist/daemon/client.d.ts.map +1 -1
- package/dist/daemon/client.js +76 -0
- package/dist/daemon/client.js.map +1 -1
- package/dist/daemon/execution-history-sqlite.d.ts +50 -0
- package/dist/daemon/execution-history-sqlite.d.ts.map +1 -0
- package/dist/daemon/execution-history-sqlite.js +165 -0
- package/dist/daemon/execution-history-sqlite.js.map +1 -0
- package/dist/daemon/execution-history.d.ts +78 -0
- package/dist/daemon/execution-history.d.ts.map +1 -0
- package/dist/daemon/execution-history.js +246 -0
- package/dist/daemon/execution-history.js.map +1 -0
- package/dist/daemon/hot-reload-state.d.ts +27 -0
- package/dist/daemon/hot-reload-state.d.ts.map +1 -0
- package/dist/daemon/hot-reload-state.js +48 -0
- package/dist/daemon/hot-reload-state.js.map +1 -0
- package/dist/daemon/protocol.d.ts +5 -1
- package/dist/daemon/protocol.d.ts.map +1 -1
- package/dist/daemon/protocol.js +13 -0
- package/dist/daemon/protocol.js.map +1 -1
- package/dist/daemon/registry-keys.d.ts +88 -0
- package/dist/daemon/registry-keys.d.ts.map +1 -0
- package/dist/daemon/registry-keys.js +91 -0
- package/dist/daemon/registry-keys.js.map +1 -0
- package/dist/daemon/server.js +1521 -186
- package/dist/daemon/server.js.map +1 -1
- package/dist/daemon/session-resolver.d.ts +28 -0
- package/dist/daemon/session-resolver.d.ts.map +1 -0
- package/dist/daemon/session-resolver.js +41 -0
- package/dist/daemon/session-resolver.js.map +1 -0
- package/dist/data-migration.js +20 -9
- package/dist/data-migration.js.map +1 -1
- package/dist/loader.d.ts +22 -8
- package/dist/loader.d.ts.map +1 -1
- package/dist/loader.js +214 -94
- package/dist/loader.js.map +1 -1
- package/dist/marketplace-manager.d.ts.map +1 -1
- package/dist/marketplace-manager.js +9 -5
- package/dist/marketplace-manager.js.map +1 -1
- package/dist/namespace-migration.d.ts.map +1 -1
- package/dist/namespace-migration.js +28 -23
- package/dist/namespace-migration.js.map +1 -1
- package/dist/photon-cli-runner.d.ts.map +1 -1
- package/dist/photon-cli-runner.js +57 -8
- package/dist/photon-cli-runner.js.map +1 -1
- package/dist/serv/auth/auth-store.d.ts +155 -0
- package/dist/serv/auth/auth-store.d.ts.map +1 -0
- package/dist/serv/auth/auth-store.js +240 -0
- package/dist/serv/auth/auth-store.js.map +1 -0
- package/dist/serv/auth/endpoints.d.ts +113 -0
- package/dist/serv/auth/endpoints.d.ts.map +1 -0
- package/dist/serv/auth/endpoints.js +1005 -0
- package/dist/serv/auth/endpoints.js.map +1 -0
- package/dist/serv/auth/http-adapter.d.ts +60 -0
- package/dist/serv/auth/http-adapter.d.ts.map +1 -0
- package/dist/serv/auth/http-adapter.js +235 -0
- package/dist/serv/auth/http-adapter.js.map +1 -0
- package/dist/serv/auth/jwt.d.ts +92 -6
- package/dist/serv/auth/jwt.d.ts.map +1 -1
- package/dist/serv/auth/jwt.js +226 -24
- package/dist/serv/auth/jwt.js.map +1 -1
- package/dist/serv/auth/oauth-sqlite-stores.d.ts +48 -0
- package/dist/serv/auth/oauth-sqlite-stores.d.ts.map +1 -0
- package/dist/serv/auth/oauth-sqlite-stores.js +212 -0
- package/dist/serv/auth/oauth-sqlite-stores.js.map +1 -0
- package/dist/serv/auth/sqlite-stores.d.ts +85 -0
- package/dist/serv/auth/sqlite-stores.d.ts.map +1 -0
- package/dist/serv/auth/sqlite-stores.js +446 -0
- package/dist/serv/auth/sqlite-stores.js.map +1 -0
- package/dist/serv/auth/well-known.d.ts +54 -1
- package/dist/serv/auth/well-known.d.ts.map +1 -1
- package/dist/serv/auth/well-known.js +166 -17
- package/dist/serv/auth/well-known.js.map +1 -1
- package/dist/serv/index.d.ts +45 -2
- package/dist/serv/index.d.ts.map +1 -1
- package/dist/serv/index.js +65 -1
- package/dist/serv/index.js.map +1 -1
- package/dist/serv/types/index.d.ts +80 -0
- package/dist/serv/types/index.d.ts.map +1 -1
- package/dist/serv/types/index.js.map +1 -1
- package/dist/server.d.ts.map +1 -1
- package/dist/server.js +61 -6
- package/dist/server.js.map +1 -1
- package/dist/shared/announce-context.d.ts +51 -0
- package/dist/shared/announce-context.d.ts.map +1 -0
- package/dist/shared/announce-context.js +73 -0
- package/dist/shared/announce-context.js.map +1 -0
- package/dist/shared/audit-sqlite.d.ts +63 -0
- package/dist/shared/audit-sqlite.d.ts.map +1 -0
- package/dist/shared/audit-sqlite.js +187 -0
- package/dist/shared/audit-sqlite.js.map +1 -0
- package/dist/shared/audit.d.ts +25 -3
- package/dist/shared/audit.d.ts.map +1 -1
- package/dist/shared/audit.js +97 -3
- package/dist/shared/audit.js.map +1 -1
- package/dist/shared/error-handler.d.ts +10 -1
- package/dist/shared/error-handler.d.ts.map +1 -1
- package/dist/shared/error-handler.js +17 -2
- package/dist/shared/error-handler.js.map +1 -1
- package/dist/shared/security.d.ts +12 -0
- package/dist/shared/security.d.ts.map +1 -1
- package/dist/shared/security.js +80 -0
- package/dist/shared/security.js.map +1 -1
- package/dist/shared/sqlite-runtime.d.ts +46 -0
- package/dist/shared/sqlite-runtime.d.ts.map +1 -0
- package/dist/shared/sqlite-runtime.js +120 -0
- package/dist/shared/sqlite-runtime.js.map +1 -0
- package/dist/tasks/store.d.ts +1 -1
- package/dist/tasks/store.d.ts.map +1 -1
- package/dist/tasks/store.js +29 -15
- package/dist/tasks/store.js.map +1 -1
- package/dist/telemetry/metrics.d.ts +26 -0
- package/dist/telemetry/metrics.d.ts.map +1 -1
- package/dist/telemetry/metrics.js +31 -0
- package/dist/telemetry/metrics.js.map +1 -1
- package/dist/test-runner.d.ts.map +1 -1
- package/dist/test-runner.js +3 -3
- package/dist/test-runner.js.map +1 -1
- package/dist/tsx-compiler.d.ts.map +1 -1
- package/dist/tsx-compiler.js +18 -1
- package/dist/tsx-compiler.js.map +1 -1
- package/dist/version-checker.d.ts.map +1 -1
- package/dist/version-checker.js +7 -14
- package/dist/version-checker.js.map +1 -1
- package/dist/version.d.ts +12 -0
- package/dist/version.d.ts.map +1 -1
- package/dist/version.js +103 -1
- package/dist/version.js.map +1 -1
- package/package.json +10 -2
- package/templates/photon.template.ts +7 -13
|
@@ -51,37 +51,186 @@ export function generateAuthServerMetadata(config, tenant) {
|
|
|
51
51
|
'client_secret_post',
|
|
52
52
|
'none', // For public clients
|
|
53
53
|
],
|
|
54
|
+
// Draft extension: signals this AS accepts CIMD-style HTTPS client_ids.
|
|
55
|
+
// Not yet standardised in RFC 8414, but MCP-spec-aligned.
|
|
56
|
+
client_id_metadata_document_supported: true,
|
|
54
57
|
};
|
|
55
58
|
}
|
|
59
|
+
const DEFAULT_CACHE_TTL_MS = 60 * 60 * 1000; // 1h fallback when no Cache-Control
|
|
56
60
|
/**
|
|
57
|
-
*
|
|
61
|
+
* Resolve a CIMD client_id to its metadata document with full validation,
|
|
62
|
+
* caching, and domain-allowlist enforcement.
|
|
58
63
|
*/
|
|
59
|
-
export async function
|
|
60
|
-
// Client ID should be a URL for CIMD
|
|
64
|
+
export async function resolveClientMetadata(clientId, opts = {}) {
|
|
61
65
|
if (!clientId.startsWith('https://')) {
|
|
62
|
-
return
|
|
66
|
+
return {
|
|
67
|
+
ok: false,
|
|
68
|
+
error: 'not_https',
|
|
69
|
+
errorDescription: 'client_id must be an HTTPS URL for CIMD resolution',
|
|
70
|
+
};
|
|
63
71
|
}
|
|
72
|
+
let url;
|
|
64
73
|
try {
|
|
65
|
-
|
|
66
|
-
|
|
74
|
+
url = new URL(clientId);
|
|
75
|
+
}
|
|
76
|
+
catch {
|
|
77
|
+
return {
|
|
78
|
+
ok: false,
|
|
79
|
+
error: 'not_https',
|
|
80
|
+
errorDescription: 'client_id is not a valid URL',
|
|
81
|
+
};
|
|
82
|
+
}
|
|
83
|
+
if (!isDomainAllowed(url.hostname, opts.allowedDomains)) {
|
|
84
|
+
return {
|
|
85
|
+
ok: false,
|
|
86
|
+
error: 'domain_not_allowed',
|
|
87
|
+
errorDescription: `client_id host '${url.hostname}' is not in tenant's allowed client domains`,
|
|
88
|
+
};
|
|
89
|
+
}
|
|
90
|
+
// Cache lookup (with ETag revalidation deferred to refresh path)
|
|
91
|
+
const cached = opts.cache?.get(clientId);
|
|
92
|
+
if (cached && cached.expiresAt > Date.now()) {
|
|
93
|
+
return { ok: true, metadata: cached.metadata, fromCache: true };
|
|
94
|
+
}
|
|
95
|
+
const fetchImpl = opts.fetchImpl ?? fetch;
|
|
96
|
+
let response;
|
|
97
|
+
try {
|
|
98
|
+
const headers = { Accept: 'application/json' };
|
|
99
|
+
if (cached?.etag)
|
|
100
|
+
headers['If-None-Match'] = cached.etag;
|
|
101
|
+
response = await fetchImpl(clientId, {
|
|
102
|
+
headers,
|
|
67
103
|
signal: AbortSignal.timeout(FETCH_TIMEOUT_MS),
|
|
68
104
|
});
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
const
|
|
72
|
-
|
|
73
|
-
|
|
74
|
-
|
|
105
|
+
}
|
|
106
|
+
catch (err) {
|
|
107
|
+
const isTimeout = err instanceof Error && err.name === 'TimeoutError';
|
|
108
|
+
return {
|
|
109
|
+
ok: false,
|
|
110
|
+
error: isTimeout ? 'timeout' : 'fetch_failed',
|
|
111
|
+
errorDescription: `CIMD fetch failed: ${err instanceof Error ? err.message : String(err)}`,
|
|
112
|
+
};
|
|
113
|
+
}
|
|
114
|
+
// 304: cache is still valid, extend expiry
|
|
115
|
+
if (response.status === 304 && cached) {
|
|
116
|
+
cached.expiresAt = Date.now() + resolveTtlMs(response);
|
|
117
|
+
return { ok: true, metadata: cached.metadata, fromCache: true };
|
|
118
|
+
}
|
|
119
|
+
if (!response.ok) {
|
|
120
|
+
return {
|
|
121
|
+
ok: false,
|
|
122
|
+
error: 'http_error',
|
|
123
|
+
errorDescription: `CIMD fetch returned HTTP ${response.status}`,
|
|
124
|
+
};
|
|
125
|
+
}
|
|
126
|
+
let metadata;
|
|
127
|
+
try {
|
|
128
|
+
metadata = (await response.json());
|
|
129
|
+
}
|
|
130
|
+
catch {
|
|
131
|
+
return {
|
|
132
|
+
ok: false,
|
|
133
|
+
error: 'invalid_json',
|
|
134
|
+
errorDescription: 'CIMD response was not valid JSON',
|
|
135
|
+
};
|
|
136
|
+
}
|
|
137
|
+
if (!metadata.client_id || metadata.client_id !== clientId) {
|
|
138
|
+
return {
|
|
139
|
+
ok: false,
|
|
140
|
+
error: 'client_id_mismatch',
|
|
141
|
+
errorDescription: 'client_id in metadata document does not match requested URL',
|
|
142
|
+
};
|
|
143
|
+
}
|
|
144
|
+
if (!metadata.redirect_uris || metadata.redirect_uris.length === 0) {
|
|
145
|
+
return {
|
|
146
|
+
ok: false,
|
|
147
|
+
error: 'missing_redirect_uris',
|
|
148
|
+
errorDescription: 'CIMD metadata document must include at least one redirect_uri',
|
|
149
|
+
};
|
|
150
|
+
}
|
|
151
|
+
opts.cache?.set(clientId, {
|
|
152
|
+
metadata,
|
|
153
|
+
etag: response.headers.get('etag') ?? undefined,
|
|
154
|
+
expiresAt: Date.now() + resolveTtlMs(response),
|
|
155
|
+
});
|
|
156
|
+
return { ok: true, metadata };
|
|
157
|
+
}
|
|
158
|
+
/**
|
|
159
|
+
* @deprecated Use resolveClientMetadata for structured errors + caching.
|
|
160
|
+
* Retained for callers that only need the happy-path document.
|
|
161
|
+
*/
|
|
162
|
+
export async function fetchClientMetadata(clientId) {
|
|
163
|
+
const result = await resolveClientMetadata(clientId);
|
|
164
|
+
return result.ok ? (result.metadata ?? null) : null;
|
|
165
|
+
}
|
|
166
|
+
/**
|
|
167
|
+
* LRU cache for CIMD metadata. Eviction on insert past capacity.
|
|
168
|
+
*/
|
|
169
|
+
export class CimdCache {
|
|
170
|
+
capacity;
|
|
171
|
+
entries = new Map();
|
|
172
|
+
constructor(capacity = 500) {
|
|
173
|
+
this.capacity = capacity;
|
|
174
|
+
}
|
|
175
|
+
get(clientId) {
|
|
176
|
+
const entry = this.entries.get(clientId);
|
|
177
|
+
if (!entry)
|
|
178
|
+
return undefined;
|
|
179
|
+
// Re-insert to mark as most-recently-used
|
|
180
|
+
this.entries.delete(clientId);
|
|
181
|
+
this.entries.set(clientId, entry);
|
|
182
|
+
return entry;
|
|
183
|
+
}
|
|
184
|
+
set(clientId, entry) {
|
|
185
|
+
if (this.entries.has(clientId)) {
|
|
186
|
+
this.entries.delete(clientId);
|
|
75
187
|
}
|
|
76
|
-
if (
|
|
77
|
-
|
|
188
|
+
else if (this.entries.size >= this.capacity) {
|
|
189
|
+
const oldest = this.entries.keys().next().value;
|
|
190
|
+
if (oldest)
|
|
191
|
+
this.entries.delete(oldest);
|
|
78
192
|
}
|
|
79
|
-
|
|
193
|
+
this.entries.set(clientId, entry);
|
|
80
194
|
}
|
|
81
|
-
|
|
82
|
-
|
|
195
|
+
clear() {
|
|
196
|
+
this.entries.clear();
|
|
83
197
|
}
|
|
198
|
+
size() {
|
|
199
|
+
return this.entries.size;
|
|
200
|
+
}
|
|
201
|
+
}
|
|
202
|
+
// ============================================================================
|
|
203
|
+
// Helpers
|
|
204
|
+
// ============================================================================
|
|
205
|
+
function isDomainAllowed(hostname, allowlist) {
|
|
206
|
+
if (!allowlist || allowlist.length === 0)
|
|
207
|
+
return true;
|
|
208
|
+
const host = hostname.toLowerCase();
|
|
209
|
+
return allowlist.some((pattern) => {
|
|
210
|
+
const p = pattern.toLowerCase();
|
|
211
|
+
if (p.startsWith('*.')) {
|
|
212
|
+
const suffix = p.slice(1); // ".claude.ai"
|
|
213
|
+
return host.endsWith(suffix) && host.length > suffix.length;
|
|
214
|
+
}
|
|
215
|
+
return host === p;
|
|
216
|
+
});
|
|
217
|
+
}
|
|
218
|
+
function resolveTtlMs(response) {
|
|
219
|
+
const cacheControl = response.headers.get('cache-control');
|
|
220
|
+
if (!cacheControl)
|
|
221
|
+
return DEFAULT_CACHE_TTL_MS;
|
|
222
|
+
const match = /max-age=(\d+)/.exec(cacheControl);
|
|
223
|
+
if (!match)
|
|
224
|
+
return DEFAULT_CACHE_TTL_MS;
|
|
225
|
+
const seconds = parseInt(match[1], 10);
|
|
226
|
+
if (!Number.isFinite(seconds) || seconds < 0)
|
|
227
|
+
return DEFAULT_CACHE_TTL_MS;
|
|
228
|
+
return seconds * 1000;
|
|
84
229
|
}
|
|
230
|
+
/**
|
|
231
|
+
* Internal exports for tests only.
|
|
232
|
+
*/
|
|
233
|
+
export const __test__ = { isDomainAllowed, resolveTtlMs };
|
|
85
234
|
// ============================================================================
|
|
86
235
|
// URI Builders
|
|
87
236
|
// ============================================================================
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"well-known.js","sourceRoot":"","sources":["../../../src/serv/auth/well-known.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAQH,uCAAuC;AACvC,MAAM,gBAAgB,GAAG,EAAE,GAAG,IAAI,CAAC;AAenC,+EAA+E;AAC/E,yCAAyC;AACzC,+EAA+E;AAE/E;;GAEG;AACH,MAAM,UAAU,iCAAiC,CAC/C,MAAuB,EACvB,MAAc;IAEd,MAAM,WAAW,GAAG,gBAAgB,CAAC,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAC7D,MAAM,aAAa,GAAG,kBAAkB,CAAC,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAEjE,OAAO;QACL,QAAQ,EAAE,WAAW;QACrB,qBAAqB,EAAE,CAAC,aAAa,CAAC;QACtC,wBAAwB,EAAE,CAAC,QAAQ,CAAC;QACpC,sBAAsB,EAAE,MAAM,CAAC,gBAAgB;KAChD,CAAC;AACJ,CAAC;AAED,+EAA+E;AAC/E,2CAA2C;AAC3C,+EAA+E;AAE/E;;GAEG;AACH,MAAM,UAAU,0BAA0B,CACxC,MAAuB,EACvB,MAAc;IAEd,MAAM,OAAO,GAAG,cAAc,CAAC,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAEvD,OAAO;QACL,MAAM,EAAE,OAAO;QACf,sBAAsB,EAAE,GAAG,OAAO,YAAY;QAC9C,cAAc,EAAE,GAAG,OAAO,QAAQ;QAClC,qBAAqB,EAAE,GAAG,OAAO,WAAW;QAC5C,QAAQ,EAAE,GAAG,MAAM,CAAC,OAAO,wBAAwB;QACnD,gBAAgB,EAAE,MAAM,CAAC,eAAe,IAAI;YAC1C,QAAQ;YACR,SAAS;YACT,OAAO;YACP,UAAU;YACV,WAAW;YACX,WAAW;SACZ;QACD,wBAAwB,EAAE,CAAC,MAAM,CAAC;QAClC,qBAAqB,EAAE,CAAC,oBAAoB,EAAE,eAAe,EAAE,oBAAoB,CAAC;QACpF,gCAAgC,EAAE,CAAC,MAAM,CAAC;QAC1C,qCAAqC,EAAE;YACrC,qBAAqB;YACrB,oBAAoB;YACpB,MAAM,EAAE,qBAAqB;SAC9B;
|
|
1
|
+
{"version":3,"file":"well-known.js","sourceRoot":"","sources":["../../../src/serv/auth/well-known.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAQH,uCAAuC;AACvC,MAAM,gBAAgB,GAAG,EAAE,GAAG,IAAI,CAAC;AAenC,+EAA+E;AAC/E,yCAAyC;AACzC,+EAA+E;AAE/E;;GAEG;AACH,MAAM,UAAU,iCAAiC,CAC/C,MAAuB,EACvB,MAAc;IAEd,MAAM,WAAW,GAAG,gBAAgB,CAAC,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAC7D,MAAM,aAAa,GAAG,kBAAkB,CAAC,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAEjE,OAAO;QACL,QAAQ,EAAE,WAAW;QACrB,qBAAqB,EAAE,CAAC,aAAa,CAAC;QACtC,wBAAwB,EAAE,CAAC,QAAQ,CAAC;QACpC,sBAAsB,EAAE,MAAM,CAAC,gBAAgB;KAChD,CAAC;AACJ,CAAC;AAED,+EAA+E;AAC/E,2CAA2C;AAC3C,+EAA+E;AAE/E;;GAEG;AACH,MAAM,UAAU,0BAA0B,CACxC,MAAuB,EACvB,MAAc;IAEd,MAAM,OAAO,GAAG,cAAc,CAAC,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAEvD,OAAO;QACL,MAAM,EAAE,OAAO;QACf,sBAAsB,EAAE,GAAG,OAAO,YAAY;QAC9C,cAAc,EAAE,GAAG,OAAO,QAAQ;QAClC,qBAAqB,EAAE,GAAG,OAAO,WAAW;QAC5C,QAAQ,EAAE,GAAG,MAAM,CAAC,OAAO,wBAAwB;QACnD,gBAAgB,EAAE,MAAM,CAAC,eAAe,IAAI;YAC1C,QAAQ;YACR,SAAS;YACT,OAAO;YACP,UAAU;YACV,WAAW;YACX,WAAW;SACZ;QACD,wBAAwB,EAAE,CAAC,MAAM,CAAC;QAClC,qBAAqB,EAAE,CAAC,oBAAoB,EAAE,eAAe,EAAE,oBAAoB,CAAC;QACpF,gCAAgC,EAAE,CAAC,MAAM,CAAC;QAC1C,qCAAqC,EAAE;YACrC,qBAAqB;YACrB,oBAAoB;YACpB,MAAM,EAAE,qBAAqB;SAC9B;QACD,wEAAwE;QACxE,0DAA0D;QAC1D,qCAAqC,EAAE,IAAI;KACb,CAAC;AACnC,CAAC;AAmDD,MAAM,oBAAoB,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,oCAAoC;AAEjF;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,QAAgB,EAChB,OAAyB,EAAE;IAE3B,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACrC,OAAO;YACL,EAAE,EAAE,KAAK;YACT,KAAK,EAAE,WAAW;YAClB,gBAAgB,EAAE,oDAAoD;SACvE,CAAC;IACJ,CAAC;IAED,IAAI,GAAQ,CAAC;IACb,IAAI,CAAC;QACH,GAAG,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,CAAC;IAC1B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO;YACL,EAAE,EAAE,KAAK;YACT,KAAK,EAAE,WAAW;YAClB,gBAAgB,EAAE,8BAA8B;SACjD,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,cAAc,CAAC,EAAE,CAAC;QACxD,OAAO;YACL,EAAE,EAAE,KAAK;YACT,KAAK,EAAE,oBAAoB;YAC3B,gBAAgB,EAAE,mBAAmB,GAAG,CAAC,QAAQ,6CAA6C;SAC/F,CAAC;IACJ,CAAC;IAED,iEAAiE;IACjE,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,EAAE,GAAG,CAAC,QAAQ,CAAC,CAAC;IACzC,IAAI,MAAM,IAAI,MAAM,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;QAC5C,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;IAClE,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,IAAI,KAAK,CAAC;IAC1C,IAAI,QAAkB,CAAC;IACvB,IAAI,CAAC;QACH,MAAM,OAAO,GAA2B,EAAE,MAAM,EAAE,kBAAkB,EAAE,CAAC;QACvE,IAAI,MAAM,EAAE,IAAI;YAAE,OAAO,CAAC,eAAe,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC;QACzD,QAAQ,GAAG,MAAM,SAAS,CAAC,QAAQ,EAAE;YACnC,OAAO;YACP,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,gBAAgB,CAAC;SAC9C,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,SAAS,GAAG,GAAG,YAAY,KAAK,IAAI,GAAG,CAAC,IAAI,KAAK,cAAc,CAAC;QACtE,OAAO;YACL,EAAE,EAAE,KAAK;YACT,KAAK,EAAE,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,cAAc;YAC7C,gBAAgB,EAAE,sBAAsB,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE;SAC3F,CAAC;IACJ,CAAC;IAED,2CAA2C;IAC3C,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,IAAI,MAAM,EAAE,CAAC;QACtC,MAAM,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC;QACvD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;IAClE,CAAC;IAED,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,OAAO;YACL,EAAE,EAAE,KAAK;YACT,KAAK,EAAE,YAAY;YACnB,gBAAgB,EAAE,4BAA4B,QAAQ,CAAC,MAAM,EAAE;SAChE,CAAC;IACJ,CAAC;IAED,IAAI,QAAgC,CAAC;IACrC,IAAI,CAAC;QACH,QAAQ,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA2B,CAAC;IAC/D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO;YACL,EAAE,EAAE,KAAK;YACT,KAAK,EAAE,cAAc;YACrB,gBAAgB,EAAE,kCAAkC;SACrD,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,QAAQ,CAAC,SAAS,IAAI,QAAQ,CAAC,SAAS,KAAK,QAAQ,EAAE,CAAC;QAC3D,OAAO;YACL,EAAE,EAAE,KAAK;YACT,KAAK,EAAE,oBAAoB;YAC3B,gBAAgB,EAAE,6DAA6D;SAChF,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,QAAQ,CAAC,aAAa,IAAI,QAAQ,CAAC,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACnE,OAAO;YACL,EAAE,EAAE,KAAK;YACT,KAAK,EAAE,uBAAuB;YAC9B,gBAAgB,EAAE,+DAA+D;SAClF,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,KAAK,EAAE,GAAG,CAAC,QAAQ,EAAE;QACxB,QAAQ;QACR,IAAI,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,SAAS;QAC/C,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,YAAY,CAAC,QAAQ,CAAC;KAC/C,CAAC,CAAC;IAEH,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;AAChC,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,QAAgB;IAEhB,MAAM,MAAM,GAAG,MAAM,qBAAqB,CAAC,QAAQ,CAAC,CAAC;IACrD,OAAO,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,IAAI,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AACtD,CAAC;AAYD;;GAEG;AACH,MAAM,OAAO,SAAS;IAEA;IADZ,OAAO,GAAG,IAAI,GAAG,EAA0B,CAAC;IACpD,YAAoB,WAAW,GAAG;QAAd,aAAQ,GAAR,QAAQ,CAAM;IAAG,CAAC;IAEtC,GAAG,CAAC,QAAgB;QAClB,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QACzC,IAAI,CAAC,KAAK;YAAE,OAAO,SAAS,CAAC;QAC7B,0CAA0C;QAC1C,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAC9B,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QAClC,OAAO,KAAK,CAAC;IACf,CAAC;IAED,GAAG,CAAC,QAAgB,EAAE,KAAqB;QACzC,IAAI,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC/B,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAChC,CAAC;aAAM,IAAI,IAAI,CAAC,OAAO,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAC9C,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC;YAChD,IAAI,MAAM;gBAAE,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAC1C,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;IACpC,CAAC;IAED,KAAK;QACH,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;IACvB,CAAC;IAED,IAAI;QACF,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC;IAC3B,CAAC;CACF;AAED,+EAA+E;AAC/E,UAAU;AACV,+EAA+E;AAE/E,SAAS,eAAe,CAAC,QAAgB,EAAE,SAAoB;IAC7D,IAAI,CAAC,SAAS,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IACtD,MAAM,IAAI,GAAG,QAAQ,CAAC,WAAW,EAAE,CAAC;IACpC,OAAO,SAAS,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE;QAChC,MAAM,CAAC,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;QAChC,IAAI,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YACvB,MAAM,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,eAAe;YAC1C,OAAO,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;QAC9D,CAAC;QACD,OAAO,IAAI,KAAK,CAAC,CAAC;IACpB,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,YAAY,CAAC,QAAkB;IACtC,MAAM,YAAY,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;IAC3D,IAAI,CAAC,YAAY;QAAE,OAAO,oBAAoB,CAAC;IAC/C,MAAM,KAAK,GAAG,eAAe,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IACjD,IAAI,CAAC,KAAK;QAAE,OAAO,oBAAoB,CAAC;IACxC,MAAM,OAAO,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACvC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,OAAO,GAAG,CAAC;QAAE,OAAO,oBAAoB,CAAC;IAC1E,OAAO,OAAO,GAAG,IAAI,CAAC;AACxB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAG,EAAE,eAAe,EAAE,YAAY,EAAE,CAAC;AAE1D,+EAA+E;AAC/E,eAAe;AACf,+EAA+E;AAE/E,SAAS,gBAAgB,CAAC,OAAe,EAAE,MAAc;IACvD,IAAI,MAAM,CAAC,QAAQ,CAAC,YAAY,EAAE,CAAC;QACjC,OAAO,WAAW,MAAM,CAAC,QAAQ,CAAC,YAAY,MAAM,CAAC;IACvD,CAAC;IACD,OAAO,GAAG,OAAO,WAAW,MAAM,CAAC,IAAI,MAAM,CAAC;AAChD,CAAC;AAED,SAAS,kBAAkB,CAAC,OAAe,EAAE,MAAc;IACzD,IAAI,MAAM,CAAC,QAAQ,CAAC,YAAY,EAAE,CAAC;QACjC,OAAO,WAAW,MAAM,CAAC,QAAQ,CAAC,YAAY,EAAE,CAAC;IACnD,CAAC;IACD,OAAO,GAAG,OAAO,WAAW,MAAM,CAAC,IAAI,EAAE,CAAC;AAC5C,CAAC;AAED,SAAS,cAAc,CAAC,OAAe,EAAE,MAAc;IACrD,IAAI,MAAM,CAAC,QAAQ,CAAC,YAAY,EAAE,CAAC;QACjC,OAAO,WAAW,MAAM,CAAC,QAAQ,CAAC,YAAY,EAAE,CAAC;IACnD,CAAC;IACD,OAAO,GAAG,OAAO,WAAW,MAAM,CAAC,IAAI,EAAE,CAAC;AAC5C,CAAC;AAED,+EAA+E;AAC/E,uBAAuB;AACvB,+EAA+E;AAE/E;;GAEG;AACH,MAAM,UAAU,8BAA8B,CAC5C,MAAuB,EACvB,MAAc;IAEd,MAAM,QAAQ,GAAG,iCAAiC,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAEnE,OAAO;QACL,MAAM,EAAE,GAAG;QACX,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,eAAe,EAAE,sBAAsB;SACxC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;KACxC,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,uBAAuB,CACrC,MAAuB,EACvB,MAAc;IAEd,MAAM,QAAQ,GAAG,0BAA0B,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAE5D,OAAO;QACL,MAAM,EAAE,GAAG;QACX,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,eAAe,EAAE,sBAAsB;SACxC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;KACxC,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,uBAAuB,CACrC,OAAe,EACf,MAAc,EACd,KAAc,EACd,gBAAyB;IAEzB,MAAM,KAAK,GAAG;QACZ,QAAQ;QACR,UAAU,MAAM,CAAC,IAAI,GAAG;QACxB,sBAAsB,OAAO,wCAAwC;KACtE,CAAC;IAEF,IAAI,KAAK,EAAE,CAAC;QACV,KAAK,CAAC,IAAI,CAAC,UAAU,KAAK,GAAG,CAAC,CAAC;QAC/B,IAAI,gBAAgB,EAAE,CAAC;YACrB,KAAK,CAAC,IAAI,CAAC,sBAAsB,gBAAgB,GAAG,CAAC,CAAC;QACxD,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC"}
|
package/dist/serv/index.d.ts
CHANGED
|
@@ -14,7 +14,12 @@ export { OAuthProviderRegistry, OAuthFlowHandler, MemoryElicitationStore, Memory
|
|
|
14
14
|
export { type TokenVault, LocalTokenVault, KmsTokenVault, createTokenVault, initTokenVault, getTokenVault, } from './vault/token-vault.js';
|
|
15
15
|
export { TenantResolver, MemoryTenantStore, RequestContextBuilder, extractTenantSlug, buildTenantUrl, buildResourceUri, type TenantStore, } from './middleware/tenant.js';
|
|
16
16
|
export { AuthMiddleware, hasPermission, parseMcpSessionId, generateClientFingerprint, type UserStore, type MembershipStore, } from './middleware/auth.js';
|
|
17
|
-
export { generateProtectedResourceMetadata, generateAuthServerMetadata, handleProtectedResourceRequest, handleAuthServerRequest, generateWwwAuthenticate, fetchClientMetadata, type WellKnownConfig, type ClientMetadataDocument, } from './auth/well-known.js';
|
|
17
|
+
export { generateProtectedResourceMetadata, generateAuthServerMetadata, handleProtectedResourceRequest, handleAuthServerRequest, generateWwwAuthenticate, fetchClientMetadata, resolveClientMetadata, CimdCache, type WellKnownConfig, type ClientMetadataDocument, type CimdError, type CimdResult, type CimdFetchOptions, } from './auth/well-known.js';
|
|
18
|
+
export { handleAuthorize, handleToken, handleRegister, handleConsent, handleRevoke, handleIntrospect, DEFAULT_ENDPOINT_CONFIG, type AuthRequest, type AuthResponse, type EndpointConfig, type EndpointDeps, } from './auth/endpoints.js';
|
|
19
|
+
export { handleAuthServerHTTP, type AuthServerHTTPOptions } from './auth/http-adapter.js';
|
|
20
|
+
export { openAuthDatabase, SqliteAuthCodeStore, SqliteRefreshTokenStore, SqliteClientRegistry, SqliteConsentStore, SqlitePendingAuthorizationStore, } from './auth/sqlite-stores.js';
|
|
21
|
+
export { openOauthDatabase, SqliteElicitationStore, SqliteGrantStore, } from './auth/oauth-sqlite-stores.js';
|
|
22
|
+
export { MemoryAuthCodeStore, MemoryRefreshTokenStore, MemoryClientRegistry, MemoryConsentStore, MemoryPendingAuthorizationStore, generateSecureToken, hashClientSecret, verifyClientSecret, normalizeScopes, type AuthCodeStore, type RefreshTokenStore, type ClientRegistry, type ConsentStore, type PendingAuthorizationStore, type PendingAuthorization, } from './auth/auth-store.js';
|
|
18
23
|
export { OAuthContext, OAuthElicitationRequired, createOAuthInputProvider, PhotonExecutor, isOAuthElicitationError, formatElicitationToolResponse, type OAuthAsk, type OAuthResponse, type OAuthContextConfig, type OAuthInputProvider, type ExecutorConfig, type ExecutionContext, type ExecutionResult, } from './runtime/index.js';
|
|
19
24
|
import type { Tenant, Session, SessionCreateOptions } from './types/index.js';
|
|
20
25
|
import { type SessionStore } from './session/store.js';
|
|
@@ -23,7 +28,9 @@ import { type TokenVault } from './vault/token-vault.js';
|
|
|
23
28
|
import { TenantResolver, type TenantStore } from './middleware/tenant.js';
|
|
24
29
|
import { AuthMiddleware, type UserStore, type MembershipStore } from './middleware/auth.js';
|
|
25
30
|
import { OAuthProviderRegistry, OAuthFlowHandler } from './auth/oauth.js';
|
|
26
|
-
import type
|
|
31
|
+
import { CimdCache, type WellKnownConfig } from './auth/well-known.js';
|
|
32
|
+
import { type AuthCodeStore, type RefreshTokenStore, type ClientRegistry, type ConsentStore, type PendingAuthorizationStore } from './auth/auth-store.js';
|
|
33
|
+
import { type EndpointConfig, type EndpointDeps } from './auth/endpoints.js';
|
|
27
34
|
import { PhotonExecutor, type ExecutionContext } from './runtime/index.js';
|
|
28
35
|
export interface ServConfig {
|
|
29
36
|
/** Base URL (e.g., 'https://serv.example.com') */
|
|
@@ -46,6 +53,25 @@ export interface ServConfig {
|
|
|
46
53
|
membershipStore?: MembershipStore;
|
|
47
54
|
/** Token vault (optional, defaults to local) */
|
|
48
55
|
tokenVault?: TokenVault;
|
|
56
|
+
/** Authorization-server code store (optional, defaults to memory). */
|
|
57
|
+
authCodeStore?: AuthCodeStore;
|
|
58
|
+
/** Refresh-token store (optional, defaults to memory). */
|
|
59
|
+
refreshTokenStore?: RefreshTokenStore;
|
|
60
|
+
/** DCR client registry (optional, defaults to memory). */
|
|
61
|
+
clientRegistry?: ClientRegistry;
|
|
62
|
+
/** Remembered-consent store (optional, defaults to memory). */
|
|
63
|
+
consentStore?: ConsentStore;
|
|
64
|
+
/** Paused-authorization-request store (optional, defaults to memory). */
|
|
65
|
+
pendingAuthStore?: PendingAuthorizationStore;
|
|
66
|
+
/**
|
|
67
|
+
* Overrides for endpoint config (TTLs, first-party allowlist, loginUrl).
|
|
68
|
+
* `issuer` / `authorizeUrl` / `consentUrl` are derived from the tenant
|
|
69
|
+
* and can't be overridden; `loginUrl` is left open because the AS
|
|
70
|
+
* adapter doesn't serve a `/login` handler — embedders MUST point it at
|
|
71
|
+
* whatever login flow they actually serve (federated login, custom HTML,
|
|
72
|
+
* PHOTON_SINGLE_USER short-circuit, etc.).
|
|
73
|
+
*/
|
|
74
|
+
endpointConfig?: Partial<Omit<EndpointConfig, 'issuer' | 'authorizeUrl' | 'consentUrl'>>;
|
|
49
75
|
}
|
|
50
76
|
export declare class Serv {
|
|
51
77
|
readonly config: ServConfig;
|
|
@@ -58,9 +84,26 @@ export declare class Serv {
|
|
|
58
84
|
readonly oauthProviders: OAuthProviderRegistry;
|
|
59
85
|
readonly oauthFlow: OAuthFlowHandler;
|
|
60
86
|
readonly wellKnownConfig: WellKnownConfig;
|
|
87
|
+
/** Authorization-server state (see /authorize, /token, /register). */
|
|
88
|
+
readonly authCodeStore: AuthCodeStore;
|
|
89
|
+
readonly refreshTokenStore: RefreshTokenStore;
|
|
90
|
+
readonly clientRegistry: ClientRegistry;
|
|
91
|
+
readonly consentStore: ConsentStore;
|
|
92
|
+
readonly pendingAuthStore: PendingAuthorizationStore;
|
|
93
|
+
readonly cimdCache: CimdCache;
|
|
61
94
|
private elicitationStore;
|
|
62
95
|
private grantStore;
|
|
63
96
|
constructor(config: ServConfig);
|
|
97
|
+
/**
|
|
98
|
+
* Build per-tenant endpoint dependencies for the OAuth 2.1 authorization
|
|
99
|
+
* server handlers. Callers pass the resulting `EndpointDeps` to
|
|
100
|
+
* `handleAuthorize` / `handleToken` / `handleRegister` / `handleConsent`.
|
|
101
|
+
*
|
|
102
|
+
* URLs are derived from the tenant slug unless overridden; Serv owns the
|
|
103
|
+
* stores and JWT service so multiple tenants share them without coupling
|
|
104
|
+
* to any HTTP framework.
|
|
105
|
+
*/
|
|
106
|
+
buildEndpointDeps(tenant: Tenant): EndpointDeps;
|
|
64
107
|
/**
|
|
65
108
|
* Register an OAuth provider
|
|
66
109
|
*/
|
package/dist/serv/index.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/serv/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,cAAc,kBAAkB,CAAC;AAGjC,OAAO,EACL,KAAK,YAAY,EACjB,KAAK,aAAa,EAClB,kBAAkB,EAClB,iBAAiB,EACjB,kBAAkB,GACnB,MAAM,oBAAoB,CAAC;AAG5B,OAAO,EAAE,cAAc,EAAE,KAAK,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAGzE,OAAO,EAAE,QAAQ,EAAE,MAAM,IAAI,SAAS,EAAE,KAAK,UAAU,EAAE,MAAM,mBAAmB,CAAC;AACnF,OAAO,EACL,aAAa,EACb,WAAW,EACX,iBAAiB,EACjB,YAAY,EACZ,kBAAkB,GACnB,MAAM,mBAAmB,CAAC;AAG3B,OAAO,EACL,SAAS,EACT,cAAc,EACd,oBAAoB,EACpB,eAAe,EACf,YAAY,EACZ,KAAK,eAAe,GACrB,MAAM,YAAY,CAAC;AAGpB,OAAO,EACL,UAAU,EACV,cAAc,EACd,aAAa,EACb,oBAAoB,EACpB,qBAAqB,EACrB,mBAAmB,EACnB,gBAAgB,EAChB,gBAAgB,GACjB,MAAM,eAAe,CAAC;AAGvB,OAAO,EACL,qBAAqB,EACrB,gBAAgB,EAChB,sBAAsB,EACtB,gBAAgB,EAChB,KAAK,gBAAgB,EACrB,KAAK,UAAU,GAChB,MAAM,iBAAiB,CAAC;AAGzB,OAAO,EACL,KAAK,UAAU,EACf,eAAe,EACf,aAAa,EACb,gBAAgB,EAChB,cAAc,EACd,aAAa,GACd,MAAM,wBAAwB,CAAC;AAGhC,OAAO,EACL,cAAc,EACd,iBAAiB,EACjB,qBAAqB,EACrB,iBAAiB,EACjB,cAAc,EACd,gBAAgB,EAChB,KAAK,WAAW,GACjB,MAAM,wBAAwB,CAAC;AAEhC,OAAO,EACL,cAAc,EACd,aAAa,EACb,iBAAiB,EACjB,yBAAyB,EACzB,KAAK,SAAS,EACd,KAAK,eAAe,GACrB,MAAM,sBAAsB,CAAC;AAG9B,OAAO,EACL,iCAAiC,EACjC,0BAA0B,EAC1B,8BAA8B,EAC9B,uBAAuB,EACvB,uBAAuB,EACvB,mBAAmB,EACnB,KAAK,eAAe,EACpB,KAAK,sBAAsB,
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/serv/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,cAAc,kBAAkB,CAAC;AAGjC,OAAO,EACL,KAAK,YAAY,EACjB,KAAK,aAAa,EAClB,kBAAkB,EAClB,iBAAiB,EACjB,kBAAkB,GACnB,MAAM,oBAAoB,CAAC;AAG5B,OAAO,EAAE,cAAc,EAAE,KAAK,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAGzE,OAAO,EAAE,QAAQ,EAAE,MAAM,IAAI,SAAS,EAAE,KAAK,UAAU,EAAE,MAAM,mBAAmB,CAAC;AACnF,OAAO,EACL,aAAa,EACb,WAAW,EACX,iBAAiB,EACjB,YAAY,EACZ,kBAAkB,GACnB,MAAM,mBAAmB,CAAC;AAG3B,OAAO,EACL,SAAS,EACT,cAAc,EACd,oBAAoB,EACpB,eAAe,EACf,YAAY,EACZ,KAAK,eAAe,GACrB,MAAM,YAAY,CAAC;AAGpB,OAAO,EACL,UAAU,EACV,cAAc,EACd,aAAa,EACb,oBAAoB,EACpB,qBAAqB,EACrB,mBAAmB,EACnB,gBAAgB,EAChB,gBAAgB,GACjB,MAAM,eAAe,CAAC;AAGvB,OAAO,EACL,qBAAqB,EACrB,gBAAgB,EAChB,sBAAsB,EACtB,gBAAgB,EAChB,KAAK,gBAAgB,EACrB,KAAK,UAAU,GAChB,MAAM,iBAAiB,CAAC;AAGzB,OAAO,EACL,KAAK,UAAU,EACf,eAAe,EACf,aAAa,EACb,gBAAgB,EAChB,cAAc,EACd,aAAa,GACd,MAAM,wBAAwB,CAAC;AAGhC,OAAO,EACL,cAAc,EACd,iBAAiB,EACjB,qBAAqB,EACrB,iBAAiB,EACjB,cAAc,EACd,gBAAgB,EAChB,KAAK,WAAW,GACjB,MAAM,wBAAwB,CAAC;AAEhC,OAAO,EACL,cAAc,EACd,aAAa,EACb,iBAAiB,EACjB,yBAAyB,EACzB,KAAK,SAAS,EACd,KAAK,eAAe,GACrB,MAAM,sBAAsB,CAAC;AAG9B,OAAO,EACL,iCAAiC,EACjC,0BAA0B,EAC1B,8BAA8B,EAC9B,uBAAuB,EACvB,uBAAuB,EACvB,mBAAmB,EACnB,qBAAqB,EACrB,SAAS,EACT,KAAK,eAAe,EACpB,KAAK,sBAAsB,EAC3B,KAAK,SAAS,EACd,KAAK,UAAU,EACf,KAAK,gBAAgB,GACtB,MAAM,sBAAsB,CAAC;AAG9B,OAAO,EACL,eAAe,EACf,WAAW,EACX,cAAc,EACd,aAAa,EACb,YAAY,EACZ,gBAAgB,EAChB,uBAAuB,EACvB,KAAK,WAAW,EAChB,KAAK,YAAY,EACjB,KAAK,cAAc,EACnB,KAAK,YAAY,GAClB,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EAAE,oBAAoB,EAAE,KAAK,qBAAqB,EAAE,MAAM,wBAAwB,CAAC;AAI1F,OAAO,EACL,gBAAgB,EAChB,mBAAmB,EACnB,uBAAuB,EACvB,oBAAoB,EACpB,kBAAkB,EAClB,+BAA+B,GAChC,MAAM,yBAAyB,CAAC;AACjC,OAAO,EACL,iBAAiB,EACjB,sBAAsB,EACtB,gBAAgB,GACjB,MAAM,+BAA+B,CAAC;AAGvC,OAAO,EACL,mBAAmB,EACnB,uBAAuB,EACvB,oBAAoB,EACpB,kBAAkB,EAClB,+BAA+B,EAC/B,mBAAmB,EACnB,gBAAgB,EAChB,kBAAkB,EAClB,eAAe,EACf,KAAK,aAAa,EAClB,KAAK,iBAAiB,EACtB,KAAK,cAAc,EACnB,KAAK,YAAY,EACjB,KAAK,yBAAyB,EAC9B,KAAK,oBAAoB,GAC1B,MAAM,sBAAsB,CAAC;AAG9B,OAAO,EACL,YAAY,EACZ,wBAAwB,EACxB,wBAAwB,EACxB,cAAc,EACd,uBAAuB,EACvB,6BAA6B,EAC7B,KAAK,QAAQ,EACb,KAAK,aAAa,EAClB,KAAK,kBAAkB,EACvB,KAAK,kBAAkB,EACvB,KAAK,cAAc,EACnB,KAAK,gBAAgB,EACrB,KAAK,eAAe,GACrB,MAAM,oBAAoB,CAAC;AAM5B,OAAO,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AAC9E,OAAO,EAAsB,KAAK,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAC3E,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAC3C,OAAO,EAAmB,KAAK,UAAU,EAAE,MAAM,wBAAwB,CAAC;AAC1E,OAAO,EAAE,cAAc,EAAqB,KAAK,WAAW,EAAE,MAAM,wBAAwB,CAAC;AAC7F,OAAO,EAAE,cAAc,EAAE,KAAK,SAAS,EAAE,KAAK,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAC5F,OAAO,EACL,qBAAqB,EACrB,gBAAgB,EAGjB,MAAM,iBAAiB,CAAC;AACzB,OAAO,EAAE,SAAS,EAAE,KAAK,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACvE,OAAO,EAML,KAAK,aAAa,EAClB,KAAK,iBAAiB,EACtB,KAAK,cAAc,EACnB,KAAK,YAAY,EACjB,KAAK,yBAAyB,EAC/B,MAAM,sBAAsB,CAAC;AAC9B,OAAO,EAEL,KAAK,cAAc,EACnB,KAAK,YAAY,EAClB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,cAAc,EAAE,KAAK,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAE3E,MAAM,WAAW,UAAU;IACzB,kDAAkD;IAClD,OAAO,EAAE,MAAM,CAAC;IAChB,mEAAmE;IACnE,UAAU,EAAE,MAAM,CAAC;IACnB,wCAAwC;IACxC,SAAS,EAAE,MAAM,CAAC;IAClB,iDAAiD;IACjD,aAAa,EAAE,MAAM,CAAC;IACtB,oCAAoC;IACpC,WAAW,EAAE,MAAM,CAAC;IACpB,mDAAmD;IACnD,YAAY,CAAC,EAAE,YAAY,CAAC;IAC5B,kDAAkD;IAClD,WAAW,CAAC,EAAE,WAAW,CAAC;IAC1B,4BAA4B;IAC5B,SAAS,CAAC,EAAE,SAAS,CAAC;IACtB,kCAAkC;IAClC,eAAe,CAAC,EAAE,eAAe,CAAC;IAClC,gDAAgD;IAChD,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,sEAAsE;IACtE,aAAa,CAAC,EAAE,aAAa,CAAC;IAC9B,0DAA0D;IAC1D,iBAAiB,CAAC,EAAE,iBAAiB,CAAC;IACtC,0DAA0D;IAC1D,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,+DAA+D;IAC/D,YAAY,CAAC,EAAE,YAAY,CAAC;IAC5B,yEAAyE;IACzE,gBAAgB,CAAC,EAAE,yBAAyB,CAAC;IAC7C;;;;;;;OAOG;IACH,cAAc,CAAC,EAAE,OAAO,CAAC,IAAI,CAAC,cAAc,EAAE,QAAQ,GAAG,cAAc,GAAG,YAAY,CAAC,CAAC,CAAC;CAC1F;AAED,qBAAa,IAAI;IACf,QAAQ,CAAC,MAAM,EAAE,UAAU,CAAC;IAC5B,QAAQ,CAAC,YAAY,EAAE,YAAY,CAAC;IACpC,QAAQ,CAAC,WAAW,EAAE,WAAW,CAAC;IAClC,QAAQ,CAAC,UAAU,EAAE,UAAU,CAAC;IAChC,QAAQ,CAAC,UAAU,EAAE,UAAU,CAAC;IAChC,QAAQ,CAAC,cAAc,EAAE,cAAc,CAAC;IACxC,QAAQ,CAAC,cAAc,EAAE,cAAc,CAAC;IACxC,QAAQ,CAAC,cAAc,EAAE,qBAAqB,CAAC;IAC/C,QAAQ,CAAC,SAAS,EAAE,gBAAgB,CAAC;IACrC,QAAQ,CAAC,eAAe,EAAE,eAAe,CAAC;IAE1C,sEAAsE;IACtE,QAAQ,CAAC,aAAa,EAAE,aAAa,CAAC;IACtC,QAAQ,CAAC,iBAAiB,EAAE,iBAAiB,CAAC;IAC9C,QAAQ,CAAC,cAAc,EAAE,cAAc,CAAC;IACxC,QAAQ,CAAC,YAAY,EAAE,YAAY,CAAC;IACpC,QAAQ,CAAC,gBAAgB,EAAE,yBAAyB,CAAC;IACrD,QAAQ,CAAC,SAAS,EAAE,SAAS,CAAC;IAE9B,OAAO,CAAC,gBAAgB,CAAgC;IACxD,OAAO,CAAC,UAAU,CAA0B;gBAEhC,MAAM,EAAE,UAAU;IAyD9B;;;;;;;;OAQG;IACH,iBAAiB,CAAC,MAAM,EAAE,MAAM,GAAG,YAAY;IA6B/C;;OAEG;IACH,qBAAqB,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,IAAI;IAIvF;;OAEG;IACH,SAAS,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAQ/B;;OAEG;IACG,aAAa,CAAC,OAAO,EAAE,oBAAoB,GAAG,OAAO,CAAC,OAAO,CAAC;IAIpE;;OAEG;IACH,aAAa,CAAC,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,GAAG,MAAM;IAIvD;;OAEG;IACG,gBAAgB,CACpB,OAAO,EAAE,OAAO,EAChB,QAAQ,EAAE,MAAM,EAChB,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,MAAM,EAAE,GACf,OAAO,CAAC;QAAE,GAAG,EAAE,MAAM,CAAC;QAAC,aAAa,EAAE,MAAM,CAAA;KAAE,CAAC;IAIlD;;OAEG;IACG,UAAU,CACd,QAAQ,EAAE,MAAM,EAChB,QAAQ,EAAE,MAAM,EAChB,QAAQ,EAAE,MAAM,EAChB,cAAc,EAAE,MAAM,EAAE,EACxB,MAAM,CAAC,EAAE,MAAM,GACd,OAAO,CAAC;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAI9C;;OAEG;IACH,cAAc,IAAI,cAAc;IAOhC;;OAEG;IACH,sBAAsB,CAAC,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,gBAAgB;IAI5F;;OAEG;IACG,QAAQ,IAAI,OAAO,CAAC,IAAI,CAAC;CAGhC;AAMD;;GAEG;AACH,wBAAsB,aAAa,CAAC,OAAO,CAAC,EAAE;IAC5C,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB,GAAG,OAAO,CAAC,IAAI,CAAC,CAahB"}
|
package/dist/serv/index.js
CHANGED
|
@@ -24,7 +24,17 @@ export { LocalTokenVault, KmsTokenVault, createTokenVault, initTokenVault, getTo
|
|
|
24
24
|
export { TenantResolver, MemoryTenantStore, RequestContextBuilder, extractTenantSlug, buildTenantUrl, buildResourceUri, } from './middleware/tenant.js';
|
|
25
25
|
export { AuthMiddleware, hasPermission, parseMcpSessionId, generateClientFingerprint, } from './middleware/auth.js';
|
|
26
26
|
// Well-Known Endpoints
|
|
27
|
-
export { generateProtectedResourceMetadata, generateAuthServerMetadata, handleProtectedResourceRequest, handleAuthServerRequest, generateWwwAuthenticate, fetchClientMetadata, } from './auth/well-known.js';
|
|
27
|
+
export { generateProtectedResourceMetadata, generateAuthServerMetadata, handleProtectedResourceRequest, handleAuthServerRequest, generateWwwAuthenticate, fetchClientMetadata, resolveClientMetadata, CimdCache, } from './auth/well-known.js';
|
|
28
|
+
// Authorization Server Endpoints (OAuth 2.1)
|
|
29
|
+
export { handleAuthorize, handleToken, handleRegister, handleConsent, handleRevoke, handleIntrospect, DEFAULT_ENDPOINT_CONFIG, } from './auth/endpoints.js';
|
|
30
|
+
// HTTP adapter for the AS endpoints (Node http compatible)
|
|
31
|
+
export { handleAuthServerHTTP } from './auth/http-adapter.js';
|
|
32
|
+
// SQLite-backed stores (requires optional better-sqlite3 on Node; uses
|
|
33
|
+
// bun:sqlite natively under Bun)
|
|
34
|
+
export { openAuthDatabase, SqliteAuthCodeStore, SqliteRefreshTokenStore, SqliteClientRegistry, SqliteConsentStore, SqlitePendingAuthorizationStore, } from './auth/sqlite-stores.js';
|
|
35
|
+
export { openOauthDatabase, SqliteElicitationStore, SqliteGrantStore, } from './auth/oauth-sqlite-stores.js';
|
|
36
|
+
// Authorization Server Stores
|
|
37
|
+
export { MemoryAuthCodeStore, MemoryRefreshTokenStore, MemoryClientRegistry, MemoryConsentStore, MemoryPendingAuthorizationStore, generateSecureToken, hashClientSecret, verifyClientSecret, normalizeScopes, } from './auth/auth-store.js';
|
|
28
38
|
// Runtime (OAuth-aware execution)
|
|
29
39
|
export { OAuthContext, OAuthElicitationRequired, createOAuthInputProvider, PhotonExecutor, isOAuthElicitationError, formatElicitationToolResponse, } from './runtime/index.js';
|
|
30
40
|
import { MemorySessionStore } from './session/store.js';
|
|
@@ -33,6 +43,9 @@ import { LocalTokenVault } from './vault/token-vault.js';
|
|
|
33
43
|
import { TenantResolver, MemoryTenantStore } from './middleware/tenant.js';
|
|
34
44
|
import { AuthMiddleware } from './middleware/auth.js';
|
|
35
45
|
import { OAuthProviderRegistry, OAuthFlowHandler, MemoryElicitationStore, MemoryGrantStore, } from './auth/oauth.js';
|
|
46
|
+
import { CimdCache } from './auth/well-known.js';
|
|
47
|
+
import { MemoryAuthCodeStore, MemoryRefreshTokenStore, MemoryClientRegistry, MemoryConsentStore, MemoryPendingAuthorizationStore, } from './auth/auth-store.js';
|
|
48
|
+
import { DEFAULT_ENDPOINT_CONFIG, } from './auth/endpoints.js';
|
|
36
49
|
import { PhotonExecutor } from './runtime/index.js';
|
|
37
50
|
export class Serv {
|
|
38
51
|
config;
|
|
@@ -45,6 +58,13 @@ export class Serv {
|
|
|
45
58
|
oauthProviders;
|
|
46
59
|
oauthFlow;
|
|
47
60
|
wellKnownConfig;
|
|
61
|
+
/** Authorization-server state (see /authorize, /token, /register). */
|
|
62
|
+
authCodeStore;
|
|
63
|
+
refreshTokenStore;
|
|
64
|
+
clientRegistry;
|
|
65
|
+
consentStore;
|
|
66
|
+
pendingAuthStore;
|
|
67
|
+
cimdCache;
|
|
48
68
|
elicitationStore = new MemoryElicitationStore();
|
|
49
69
|
grantStore = new MemoryGrantStore();
|
|
50
70
|
constructor(config) {
|
|
@@ -88,6 +108,50 @@ export class Serv {
|
|
|
88
108
|
this.wellKnownConfig = {
|
|
89
109
|
baseUrl: config.baseUrl,
|
|
90
110
|
};
|
|
111
|
+
// Authorization-server stores (in-memory defaults; callers override for prod)
|
|
112
|
+
this.authCodeStore = config.authCodeStore ?? new MemoryAuthCodeStore();
|
|
113
|
+
this.refreshTokenStore = config.refreshTokenStore ?? new MemoryRefreshTokenStore();
|
|
114
|
+
this.clientRegistry = config.clientRegistry ?? new MemoryClientRegistry();
|
|
115
|
+
this.consentStore = config.consentStore ?? new MemoryConsentStore();
|
|
116
|
+
this.pendingAuthStore = config.pendingAuthStore ?? new MemoryPendingAuthorizationStore();
|
|
117
|
+
this.cimdCache = new CimdCache();
|
|
118
|
+
}
|
|
119
|
+
/**
|
|
120
|
+
* Build per-tenant endpoint dependencies for the OAuth 2.1 authorization
|
|
121
|
+
* server handlers. Callers pass the resulting `EndpointDeps` to
|
|
122
|
+
* `handleAuthorize` / `handleToken` / `handleRegister` / `handleConsent`.
|
|
123
|
+
*
|
|
124
|
+
* URLs are derived from the tenant slug unless overridden; Serv owns the
|
|
125
|
+
* stores and JWT service so multiple tenants share them without coupling
|
|
126
|
+
* to any HTTP framework.
|
|
127
|
+
*/
|
|
128
|
+
buildEndpointDeps(tenant) {
|
|
129
|
+
const baseUri = `${this.config.baseUrl}/tenant/${tenant.slug}`;
|
|
130
|
+
// The login URL is the embedder's responsibility — the AS adapter
|
|
131
|
+
// doesn't serve a `/login` handler, it only knows how to redirect
|
|
132
|
+
// there. Default to a tenant-scoped path so multi-tenant embeds that
|
|
133
|
+
// rely on the default wiring point users at the per-tenant login
|
|
134
|
+
// (typically `/tenant/<slug>/login`). Embedders override via
|
|
135
|
+
// endpointConfig.loginUrl if their login lives elsewhere.
|
|
136
|
+
const defaultLoginUrl = this.config.endpointConfig?.loginUrl ?? `${baseUri}/login`;
|
|
137
|
+
return {
|
|
138
|
+
tenant,
|
|
139
|
+
config: {
|
|
140
|
+
...DEFAULT_ENDPOINT_CONFIG,
|
|
141
|
+
issuer: baseUri,
|
|
142
|
+
authorizeUrl: `${baseUri}/authorize`,
|
|
143
|
+
consentUrl: `${baseUri}/consent`,
|
|
144
|
+
loginUrl: defaultLoginUrl,
|
|
145
|
+
...this.config.endpointConfig,
|
|
146
|
+
},
|
|
147
|
+
codeStore: this.authCodeStore,
|
|
148
|
+
refreshTokenStore: this.refreshTokenStore,
|
|
149
|
+
clientRegistry: this.clientRegistry,
|
|
150
|
+
consentStore: this.consentStore,
|
|
151
|
+
pendingStore: this.pendingAuthStore,
|
|
152
|
+
jwtService: this.jwtService,
|
|
153
|
+
cimdCache: this.cimdCache,
|
|
154
|
+
};
|
|
91
155
|
}
|
|
92
156
|
/**
|
|
93
157
|
* Register an OAuth provider
|
package/dist/serv/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/serv/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,QAAQ;AACR,cAAc,kBAAkB,CAAC;AAEjC,qBAAqB;AACrB,OAAO,EAGL,kBAAkB,EAClB,iBAAiB,EACjB,kBAAkB,GACnB,MAAM,oBAAoB,CAAC;AAE5B,8BAA8B;AAC9B,OAAO,EAAE,cAAc,EAAoB,MAAM,uBAAuB,CAAC;AAEzE,yBAAyB;AACzB,OAAO,EAAE,QAAQ,EAAE,MAAM,IAAI,SAAS,EAAmB,MAAM,mBAAmB,CAAC;AACnF,OAAO,EACL,aAAa,EACb,WAAW,EACX,iBAAiB,EACjB,YAAY,EACZ,kBAAkB,GACnB,MAAM,mBAAmB,CAAC;AAE3B,wCAAwC;AACxC,OAAO,EACL,SAAS,EACT,cAAc,EACd,oBAAoB,EACpB,eAAe,EACf,YAAY,GAEb,MAAM,YAAY,CAAC;AAEpB,aAAa;AACb,OAAO,EACL,UAAU,EACV,cAAc,EACd,aAAa,EACb,oBAAoB,EACpB,qBAAqB,EACrB,mBAAmB,EACnB,gBAAgB,EAChB,gBAAgB,GACjB,MAAM,eAAe,CAAC;AAEvB,QAAQ;AACR,OAAO,EACL,qBAAqB,EACrB,gBAAgB,EAChB,sBAAsB,EACtB,gBAAgB,GAGjB,MAAM,iBAAiB,CAAC;AAEzB,cAAc;AACd,OAAO,EAEL,eAAe,EACf,aAAa,EACb,gBAAgB,EAChB,cAAc,EACd,aAAa,GACd,MAAM,wBAAwB,CAAC;AAEhC,aAAa;AACb,OAAO,EACL,cAAc,EACd,iBAAiB,EACjB,qBAAqB,EACrB,iBAAiB,EACjB,cAAc,EACd,gBAAgB,GAEjB,MAAM,wBAAwB,CAAC;AAEhC,OAAO,EACL,cAAc,EACd,aAAa,EACb,iBAAiB,EACjB,yBAAyB,GAG1B,MAAM,sBAAsB,CAAC;AAE9B,uBAAuB;AACvB,OAAO,EACL,iCAAiC,EACjC,0BAA0B,EAC1B,8BAA8B,EAC9B,uBAAuB,EACvB,uBAAuB,EACvB,mBAAmB,
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/serv/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,QAAQ;AACR,cAAc,kBAAkB,CAAC;AAEjC,qBAAqB;AACrB,OAAO,EAGL,kBAAkB,EAClB,iBAAiB,EACjB,kBAAkB,GACnB,MAAM,oBAAoB,CAAC;AAE5B,8BAA8B;AAC9B,OAAO,EAAE,cAAc,EAAoB,MAAM,uBAAuB,CAAC;AAEzE,yBAAyB;AACzB,OAAO,EAAE,QAAQ,EAAE,MAAM,IAAI,SAAS,EAAmB,MAAM,mBAAmB,CAAC;AACnF,OAAO,EACL,aAAa,EACb,WAAW,EACX,iBAAiB,EACjB,YAAY,EACZ,kBAAkB,GACnB,MAAM,mBAAmB,CAAC;AAE3B,wCAAwC;AACxC,OAAO,EACL,SAAS,EACT,cAAc,EACd,oBAAoB,EACpB,eAAe,EACf,YAAY,GAEb,MAAM,YAAY,CAAC;AAEpB,aAAa;AACb,OAAO,EACL,UAAU,EACV,cAAc,EACd,aAAa,EACb,oBAAoB,EACpB,qBAAqB,EACrB,mBAAmB,EACnB,gBAAgB,EAChB,gBAAgB,GACjB,MAAM,eAAe,CAAC;AAEvB,QAAQ;AACR,OAAO,EACL,qBAAqB,EACrB,gBAAgB,EAChB,sBAAsB,EACtB,gBAAgB,GAGjB,MAAM,iBAAiB,CAAC;AAEzB,cAAc;AACd,OAAO,EAEL,eAAe,EACf,aAAa,EACb,gBAAgB,EAChB,cAAc,EACd,aAAa,GACd,MAAM,wBAAwB,CAAC;AAEhC,aAAa;AACb,OAAO,EACL,cAAc,EACd,iBAAiB,EACjB,qBAAqB,EACrB,iBAAiB,EACjB,cAAc,EACd,gBAAgB,GAEjB,MAAM,wBAAwB,CAAC;AAEhC,OAAO,EACL,cAAc,EACd,aAAa,EACb,iBAAiB,EACjB,yBAAyB,GAG1B,MAAM,sBAAsB,CAAC;AAE9B,uBAAuB;AACvB,OAAO,EACL,iCAAiC,EACjC,0BAA0B,EAC1B,8BAA8B,EAC9B,uBAAuB,EACvB,uBAAuB,EACvB,mBAAmB,EACnB,qBAAqB,EACrB,SAAS,GAMV,MAAM,sBAAsB,CAAC;AAE9B,6CAA6C;AAC7C,OAAO,EACL,eAAe,EACf,WAAW,EACX,cAAc,EACd,aAAa,EACb,YAAY,EACZ,gBAAgB,EAChB,uBAAuB,GAKxB,MAAM,qBAAqB,CAAC;AAE7B,2DAA2D;AAC3D,OAAO,EAAE,oBAAoB,EAA8B,MAAM,wBAAwB,CAAC;AAE1F,uEAAuE;AACvE,iCAAiC;AACjC,OAAO,EACL,gBAAgB,EAChB,mBAAmB,EACnB,uBAAuB,EACvB,oBAAoB,EACpB,kBAAkB,EAClB,+BAA+B,GAChC,MAAM,yBAAyB,CAAC;AACjC,OAAO,EACL,iBAAiB,EACjB,sBAAsB,EACtB,gBAAgB,GACjB,MAAM,+BAA+B,CAAC;AAEvC,8BAA8B;AAC9B,OAAO,EACL,mBAAmB,EACnB,uBAAuB,EACvB,oBAAoB,EACpB,kBAAkB,EAClB,+BAA+B,EAC/B,mBAAmB,EACnB,gBAAgB,EAChB,kBAAkB,EAClB,eAAe,GAOhB,MAAM,sBAAsB,CAAC;AAE9B,kCAAkC;AAClC,OAAO,EACL,YAAY,EACZ,wBAAwB,EACxB,wBAAwB,EACxB,cAAc,EACd,uBAAuB,EACvB,6BAA6B,GAQ9B,MAAM,oBAAoB,CAAC;AAO5B,OAAO,EAAE,kBAAkB,EAAqB,MAAM,oBAAoB,CAAC;AAC3E,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAC3C,OAAO,EAAE,eAAe,EAAmB,MAAM,wBAAwB,CAAC;AAC1E,OAAO,EAAE,cAAc,EAAE,iBAAiB,EAAoB,MAAM,wBAAwB,CAAC;AAC7F,OAAO,EAAE,cAAc,EAAwC,MAAM,sBAAsB,CAAC;AAC5F,OAAO,EACL,qBAAqB,EACrB,gBAAgB,EAChB,sBAAsB,EACtB,gBAAgB,GACjB,MAAM,iBAAiB,CAAC;AACzB,OAAO,EAAE,SAAS,EAAwB,MAAM,sBAAsB,CAAC;AACvE,OAAO,EACL,mBAAmB,EACnB,uBAAuB,EACvB,oBAAoB,EACpB,kBAAkB,EAClB,+BAA+B,GAMhC,MAAM,sBAAsB,CAAC;AAC9B,OAAO,EACL,uBAAuB,GAGxB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,cAAc,EAAyB,MAAM,oBAAoB,CAAC;AA4C3E,MAAM,OAAO,IAAI;IACN,MAAM,CAAa;IACnB,YAAY,CAAe;IAC3B,WAAW,CAAc;IACzB,UAAU,CAAa;IACvB,UAAU,CAAa;IACvB,cAAc,CAAiB;IAC/B,cAAc,CAAiB;IAC/B,cAAc,CAAwB;IACtC,SAAS,CAAmB;IAC5B,eAAe,CAAkB;IAE1C,sEAAsE;IAC7D,aAAa,CAAgB;IAC7B,iBAAiB,CAAoB;IACrC,cAAc,CAAiB;IAC/B,YAAY,CAAe;IAC3B,gBAAgB,CAA4B;IAC5C,SAAS,CAAY;IAEtB,gBAAgB,GAAG,IAAI,sBAAsB,EAAE,CAAC;IAChD,UAAU,GAAG,IAAI,gBAAgB,EAAE,CAAC;IAE5C,YAAY,MAAkB;QAC5B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QAErB,oBAAoB;QACpB,IAAI,CAAC,YAAY,GAAG,MAAM,CAAC,YAAY,IAAI,IAAI,kBAAkB,EAAE,CAAC;QACpE,IAAI,CAAC,WAAW,GAAG,MAAM,CAAC,WAAW,IAAI,IAAI,iBAAiB,EAAE,CAAC;QACjE,IAAI,CAAC,UAAU;YACb,MAAM,CAAC,UAAU;gBACjB,IAAI,eAAe,CAAC;oBAClB,SAAS,EAAE,MAAM,CAAC,aAAa;iBAChC,CAAC,CAAC;QAEL,yBAAyB;QACzB,IAAI,CAAC,UAAU,GAAG,IAAI,UAAU,CAAC;YAC/B,MAAM,EAAE,MAAM,CAAC,SAAS;YACxB,MAAM,EAAE,MAAM,CAAC,OAAO;SACvB,CAAC,CAAC;QAEH,6BAA6B;QAC7B,IAAI,CAAC,cAAc,GAAG,IAAI,cAAc,CAAC;YACvC,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,KAAK,EAAE,IAAI,CAAC,WAAW;SACxB,CAAC,CAAC;QAEH,6BAA6B;QAC7B,IAAI,CAAC,cAAc,GAAG,IAAI,cAAc,CAAC;YACvC,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,YAAY,EAAE,IAAI,CAAC,YAAY;YAC/B,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,eAAe,EAAE,MAAM,CAAC,eAAe;SACxC,CAAC,CAAC;QAEH,mBAAmB;QACnB,IAAI,CAAC,cAAc,GAAG,IAAI,qBAAqB,EAAE,CAAC;QAClD,IAAI,CAAC,SAAS,GAAG,IAAI,gBAAgB,CAAC;YACpC,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,WAAW,EAAE,MAAM,CAAC,WAAW;YAC/B,SAAS,EAAE,IAAI,CAAC,cAAc;YAC9B,gBAAgB,EAAE,IAAI,CAAC,gBAAgB;YACvC,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,UAAU,EAAE,IAAI,CAAC,UAAU;SAC5B,CAAC,CAAC;QAEH,oBAAoB;QACpB,IAAI,CAAC,eAAe,GAAG;YACrB,OAAO,EAAE,MAAM,CAAC,OAAO;SACxB,CAAC;QAEF,8EAA8E;QAC9E,IAAI,CAAC,aAAa,GAAG,MAAM,CAAC,aAAa,IAAI,IAAI,mBAAmB,EAAE,CAAC;QACvE,IAAI,CAAC,iBAAiB,GAAG,MAAM,CAAC,iBAAiB,IAAI,IAAI,uBAAuB,EAAE,CAAC;QACnF,IAAI,CAAC,cAAc,GAAG,MAAM,CAAC,cAAc,IAAI,IAAI,oBAAoB,EAAE,CAAC;QAC1E,IAAI,CAAC,YAAY,GAAG,MAAM,CAAC,YAAY,IAAI,IAAI,kBAAkB,EAAE,CAAC;QACpE,IAAI,CAAC,gBAAgB,GAAG,MAAM,CAAC,gBAAgB,IAAI,IAAI,+BAA+B,EAAE,CAAC;QACzF,IAAI,CAAC,SAAS,GAAG,IAAI,SAAS,EAAE,CAAC;IACnC,CAAC;IAED;;;;;;;;OAQG;IACH,iBAAiB,CAAC,MAAc;QAC9B,MAAM,OAAO,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,WAAW,MAAM,CAAC,IAAI,EAAE,CAAC;QAC/D,kEAAkE;QAClE,kEAAkE;QAClE,qEAAqE;QACrE,iEAAiE;QACjE,6DAA6D;QAC7D,0DAA0D;QAC1D,MAAM,eAAe,GAAG,IAAI,CAAC,MAAM,CAAC,cAAc,EAAE,QAAQ,IAAI,GAAG,OAAO,QAAQ,CAAC;QACnF,OAAO;YACL,MAAM;YACN,MAAM,EAAE;gBACN,GAAG,uBAAuB;gBAC1B,MAAM,EAAE,OAAO;gBACf,YAAY,EAAE,GAAG,OAAO,YAAY;gBACpC,UAAU,EAAE,GAAG,OAAO,UAAU;gBAChC,QAAQ,EAAE,eAAe;gBACzB,GAAG,IAAI,CAAC,MAAM,CAAC,cAAc;aAC9B;YACD,SAAS,EAAE,IAAI,CAAC,aAAa;YAC7B,iBAAiB,EAAE,IAAI,CAAC,iBAAiB;YACzC,cAAc,EAAE,IAAI,CAAC,cAAc;YACnC,YAAY,EAAE,IAAI,CAAC,YAAY;YAC/B,YAAY,EAAE,IAAI,CAAC,gBAAgB;YACnC,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,SAAS,EAAE,IAAI,CAAC,SAAS;SAC1B,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,qBAAqB,CAAC,UAAkB,EAAE,QAAgB,EAAE,YAAoB;QAC9E,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,UAAU,EAAE,QAAQ,EAAE,YAAY,CAAC,CAAC;IACnE,CAAC;IAED;;OAEG;IACH,SAAS,CAAC,MAAc;QACtB,IAAI,IAAI,CAAC,WAAW,YAAY,iBAAiB,EAAE,CAAC;YAClD,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAC/B,CAAC;aAAM,CAAC;YACN,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;QAC3D,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa,CAAC,OAA6B;QAC/C,OAAO,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IAC3C,CAAC;IAED;;OAEG;IACH,aAAa,CAAC,OAAgB,EAAE,MAAc;QAC5C,OAAO,IAAI,CAAC,UAAU,CAAC,oBAAoB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAC/D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,gBAAgB,CACpB,OAAgB,EAChB,QAAgB,EAChB,QAAgB,EAChB,MAAgB;QAEhB,OAAO,IAAI,CAAC,SAAS,CAAC,gBAAgB,CAAC,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;IAC9E,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU,CACd,QAAgB,EAChB,QAAgB,EAChB,QAAgB,EAChB,cAAwB,EACxB,MAAe;QAEf,OAAO,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,QAAQ,EAAE,QAAQ,EAAE,QAAQ,EAAE,cAAc,EAAE,MAAM,CAAC,CAAC;IACzF,CAAC;IAED;;OAEG;IACH,cAAc;QACZ,OAAO,IAAI,cAAc,CAAC;YACxB,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,UAAU,EAAE,IAAI,CAAC,UAAU;SAC5B,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,sBAAsB,CAAC,OAAgB,EAAE,MAAc,EAAE,QAAgB;QACvE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;IACvC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,QAAQ;QACZ,MAAM,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;IAClC,CAAC;CACF;AAED,+EAA+E;AAC/E,qBAAqB;AACrB,+EAA+E;AAE/E;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,OAGnC;IACC,MAAM,OAAO,GAAG,OAAO,EAAE,OAAO,IAAI,uBAAuB,CAAC,CAAC,mBAAmB;IAChF,MAAM,UAAU,GAAG,OAAO,EAAE,UAAU,IAAI,WAAW,CAAC;IAEtD,6EAA6E;IAC7E,MAAM,EAAE,WAAW,EAAE,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC,CAAC;IAC/C,OAAO,IAAI,IAAI,CAAC;QACd,OAAO;QACP,UAAU;QACV,SAAS,EAAE,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;QAC1C,aAAa,EAAE,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;QAC9C,WAAW,EAAE,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;KAC7C,CAAC,CAAC;AACL,CAAC"}
|
|
@@ -21,6 +21,12 @@ export interface TenantSettings {
|
|
|
21
21
|
requestsPerMinute: number;
|
|
22
22
|
requestsPerDay: number;
|
|
23
23
|
};
|
|
24
|
+
/**
|
|
25
|
+
* Hostnames this tenant accepts CIMD client_ids from. Supports exact match
|
|
26
|
+
* (`claude.ai`) or leading wildcard (`*.claude.ai`). Empty / undefined = allow all.
|
|
27
|
+
* Tightening this is the primary defense against CIMD phishing.
|
|
28
|
+
*/
|
|
29
|
+
allowedClientDomains?: string[];
|
|
24
30
|
}
|
|
25
31
|
export interface User {
|
|
26
32
|
id: string;
|
|
@@ -137,6 +143,80 @@ export interface AuthorizationServerMetadata {
|
|
|
137
143
|
grant_types_supported?: string[];
|
|
138
144
|
code_challenge_methods_supported?: string[];
|
|
139
145
|
token_endpoint_auth_methods_supported?: string[];
|
|
146
|
+
/** Draft extension: this AS resolves client_ids that are HTTPS URLs (CIMD). */
|
|
147
|
+
client_id_metadata_document_supported?: boolean;
|
|
148
|
+
}
|
|
149
|
+
/**
|
|
150
|
+
* A single-use authorization code issued by `/authorize`, exchanged at `/token`.
|
|
151
|
+
* TTL is short (60s per RFC 6749 §4.1.2); codes are deleted on consumption.
|
|
152
|
+
*/
|
|
153
|
+
export interface AuthorizationCode {
|
|
154
|
+
code: string;
|
|
155
|
+
clientId: string;
|
|
156
|
+
redirectUri: string;
|
|
157
|
+
scope: string;
|
|
158
|
+
userId: string;
|
|
159
|
+
tenantId: string;
|
|
160
|
+
codeChallenge: string;
|
|
161
|
+
codeChallengeMethod: 'S256';
|
|
162
|
+
/** OIDC nonce from the authorize request; echoed into id_token at /token. */
|
|
163
|
+
nonce?: string;
|
|
164
|
+
expiresAt: Date;
|
|
165
|
+
createdAt: Date;
|
|
166
|
+
}
|
|
167
|
+
/**
|
|
168
|
+
* Long-lived refresh token. Rotated on every use per OAuth 2.1.
|
|
169
|
+
*/
|
|
170
|
+
export interface RefreshToken {
|
|
171
|
+
token: string;
|
|
172
|
+
clientId: string;
|
|
173
|
+
userId: string;
|
|
174
|
+
tenantId: string;
|
|
175
|
+
scope: string;
|
|
176
|
+
expiresAt: Date;
|
|
177
|
+
createdAt: Date;
|
|
178
|
+
/** Previous refresh token hash, for replay detection on rotation. */
|
|
179
|
+
supersedes?: string;
|
|
180
|
+
}
|
|
181
|
+
/**
|
|
182
|
+
* A client registered via RFC 7591 Dynamic Client Registration.
|
|
183
|
+
* CIMD clients are NOT stored here, their metadata lives on the client's
|
|
184
|
+
* own HTTPS URL and is fetched/cached per request.
|
|
185
|
+
*/
|
|
186
|
+
export interface RegisteredClient {
|
|
187
|
+
clientId: string;
|
|
188
|
+
clientSecretHash?: string;
|
|
189
|
+
clientName: string;
|
|
190
|
+
redirectUris: string[];
|
|
191
|
+
grantTypes: string[];
|
|
192
|
+
responseTypes: string[];
|
|
193
|
+
scope: string;
|
|
194
|
+
contacts?: string[];
|
|
195
|
+
logoUri?: string;
|
|
196
|
+
tosUri?: string;
|
|
197
|
+
policyUri?: string;
|
|
198
|
+
isPublic: boolean;
|
|
199
|
+
createdAt: Date;
|
|
200
|
+
/** TTL eviction: unused registrations drop after 30 days. Touched on use. */
|
|
201
|
+
lastUsedAt: Date;
|
|
202
|
+
/** User-Agent + IP at registration, for audit/deprecation-tracking. */
|
|
203
|
+
registrationContext?: {
|
|
204
|
+
userAgent?: string;
|
|
205
|
+
ipAddress?: string;
|
|
206
|
+
};
|
|
207
|
+
}
|
|
208
|
+
/**
|
|
209
|
+
* A remembered user consent for (client_id, scope_set). Skip consent screen
|
|
210
|
+
* on subsequent requests unless scopes expand beyond remembered set.
|
|
211
|
+
*/
|
|
212
|
+
export interface ConsentRecord {
|
|
213
|
+
userId: string;
|
|
214
|
+
tenantId: string;
|
|
215
|
+
clientId: string;
|
|
216
|
+
/** Sorted, space-joined scope list for stable key comparison. */
|
|
217
|
+
scopes: string;
|
|
218
|
+
expiresAt: Date;
|
|
219
|
+
createdAt: Date;
|
|
140
220
|
}
|
|
141
221
|
export interface RequestContext {
|
|
142
222
|
tenant: Tenant;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/serv/types/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAMH,MAAM,WAAW,MAAM;IACrB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,GAAG,KAAK,GAAG,YAAY,CAAC;IACpC,eAAe,EAAE,MAAM,CAAC;IACxB,QAAQ,EAAE,cAAc,CAAC;IACzB,SAAS,EAAE,IAAI,CAAC;CACjB;AAED,MAAM,WAAW,cAAc;IAC7B,mBAAmB,EAAE,OAAO,CAAC;IAC7B,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE;QACV,iBAAiB,EAAE,MAAM,CAAC;QAC1B,cAAc,EAAE,MAAM,CAAC;KACxB,CAAC;
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/serv/types/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAMH,MAAM,WAAW,MAAM;IACrB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,GAAG,KAAK,GAAG,YAAY,CAAC;IACpC,eAAe,EAAE,MAAM,CAAC;IACxB,QAAQ,EAAE,cAAc,CAAC;IACzB,SAAS,EAAE,IAAI,CAAC;CACjB;AAED,MAAM,WAAW,cAAc;IAC7B,mBAAmB,EAAE,OAAO,CAAC;IAC7B,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE;QACV,iBAAiB,EAAE,MAAM,CAAC;QAC1B,cAAc,EAAE,MAAM,CAAC;KACxB,CAAC;IACF;;;;OAIG;IACH,oBAAoB,CAAC,EAAE,MAAM,EAAE,CAAC;CACjC;AAMD,MAAM,WAAW,IAAI;IACnB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,aAAa,EAAE,OAAO,CAAC;IACvB,SAAS,EAAE,IAAI,CAAC;CACjB;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,OAAO,GAAG,OAAO,GAAG,QAAQ,GAAG,QAAQ,CAAC;IAC9C,MAAM,EAAE,QAAQ,GAAG,SAAS,GAAG,WAAW,CAAC;IAC3C,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,IAAI,CAAC;CAChB;AAMD,MAAM,WAAW,OAAO;IACtB,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,IAAI,CAAC;IAChB,cAAc,EAAE,IAAI,CAAC;CACtB;AAED,MAAM,WAAW,YAAY;IAE3B,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IAGZ,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,cAAc,EAAE,MAAM,CAAC;CACxB;AAED,MAAM,WAAW,oBAAoB;IACnC,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAMD,MAAM,WAAW,aAAa;IAC5B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,gBAAgB,EAAE,MAAM,CAAC;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,UAAU;IACzB,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,WAAW;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,cAAc,EAAE,IAAI,CAAC;IACrB,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,IAAI,CAAC;CACjB;AAMD,MAAM,WAAW,kBAAkB;IACjC,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,MAAM,EAAE,SAAS,GAAG,WAAW,GAAG,SAAS,GAAG,WAAW,CAAC;IAC1D,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,IAAI,CAAC;CACjB;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE;QACJ,GAAG,EAAE,MAAM,CAAC;QACZ,aAAa,EAAE,MAAM,CAAC;QACtB,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,EAAE,MAAM,EAAE,CAAC;KAClB,CAAC;CACH;AAGD,eAAO,MAAM,0BAA0B,SAAS,CAAC;AAMjD,MAAM,WAAW,yBAAyB;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,qBAAqB,EAAE,MAAM,EAAE,CAAC;IAChC,wBAAwB,CAAC,EAAE,MAAM,EAAE,CAAC;IACpC,qCAAqC,CAAC,EAAE,MAAM,EAAE,CAAC;IACjD,sBAAsB,CAAC,EAAE,MAAM,CAAC;CACjC;AAMD,MAAM,WAAW,2BAA2B;IAC1C,MAAM,EAAE,MAAM,CAAC;IACf,sBAAsB,EAAE,MAAM,CAAC;IAC/B,cAAc,EAAE,MAAM,CAAC;IACvB,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC5B,wBAAwB,EAAE,MAAM,EAAE,CAAC;IACnC,qBAAqB,CAAC,EAAE,MAAM,EAAE,CAAC;IACjC,gCAAgC,CAAC,EAAE,MAAM,EAAE,CAAC;IAC5C,qCAAqC,CAAC,EAAE,MAAM,EAAE,CAAC;IACjD,+EAA+E;IAC/E,qCAAqC,CAAC,EAAE,OAAO,CAAC;CACjD;AAMD;;;GAGG;AACH,MAAM,WAAW,iBAAiB;IAChC,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,aAAa,EAAE,MAAM,CAAC;IACtB,mBAAmB,EAAE,MAAM,CAAC;IAC5B,6EAA6E;IAC7E,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,IAAI,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,IAAI,CAAC;IAChB,qEAAqE;IACrE,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED;;;;GAIG;AACH,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,EAAE,MAAM,CAAC;IACjB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,OAAO,CAAC;IAClB,SAAS,EAAE,IAAI,CAAC;IAChB,6EAA6E;IAC7E,UAAU,EAAE,IAAI,CAAC;IACjB,uEAAuE;IACvE,mBAAmB,CAAC,EAAE;QACpB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,CAAC;CACH;AAED;;;GAGG;AACH,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,iEAAiE;IACjE,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,IAAI,CAAC;CACjB;AAMD,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,IAAI,CAAC,EAAE,IAAI,CAAC;IACZ,UAAU,CAAC,EAAE,UAAU,CAAC;CACzB"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/serv/types/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/serv/types/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AA8JH,yCAAyC;AACzC,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC,KAAK,CAAC"}
|
package/dist/server.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AAuBnE,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAC3C,OAAO,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AAE1D,OAAO,KAAK,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAC;AAG5E,OAAO,EAAgB,MAAM,EAAE,aAAa,EAAY,MAAM,oBAAoB,CAAC;AAanF,OAAO,EAGL,KAAK,yBAAyB,EAC/B,MAAM,sBAAsB,CAAC;AAc9B,qBAAa,sBAAuB,SAAQ,KAAK;gBACnC,OAAO,EAAE,MAAM;CAI5B;AAED,MAAM,MAAM,aAAa,GAAG,OAAO,GAAG,KAAK,CAAC;AAE5C;;;;;GAKG;AACH,MAAM,MAAM,QAAQ,GAAG,UAAU,GAAG,MAAM,CAAC;AAE3C,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,KAAK,CAAC;QAAE,WAAW,EAAE,WAAW,CAAC;QAAC,QAAQ,CAAC,EAAE,cAAc,CAAA;KAAE,CAAC,CAAC;IACxE,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,mBAAmB;IAClC,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,SAAS,CAAC,EAAE,aAAa,CAAC;IAC1B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,UAAU,CAAC,EAAE,aAAa,CAAC;IAC3B,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IACpC,mEAAmE;IACnE,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,mFAAmF;IACnF,eAAe,CAAC,EAAE;QAAE,OAAO,EAAE,GAAG,CAAC;QAAC,UAAU,CAAC,EAAE,GAAG,EAAE,CAAA;KAAE,CAAC;IACvD,kFAAkF;IAClF,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,oEAAoE;IACpE,qBAAqB,CAAC,EAAE,GAAG,CACzB,MAAM,EACN;QAAE,MAAM,EAAE;YAAE,OAAO,EAAE,GAAG,CAAC;YAAC,UAAU,CAAC,EAAE,GAAG,EAAE,CAAA;SAAE,CAAC;QAAC,MAAM,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,CACnF,CAAC;IACF,6EAA6E;IAC7E,cAAc,CAAC,EAAE;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,CAAC;IACzD,2EAA2E;IAC3E,mBAAmB,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;IAC7D,sEAAsE;IACtE,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,6EAA6E;IAC7E,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,2FAA2F;IAC3F,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,8DAA8D;IAC9D,mBAAmB,CAAC,EAAE,MAAM,CAAC;CAC9B;AAGD,YAAY,EAAE,wBAAwB,EAAE,yBAAyB,EAAE,MAAM,sBAAsB,CAAC;AA8QhG,qBAAa,YAAY;IACvB,OAAO,CAAC,MAAM,CAAe;IAC7B,OAAO,CAAC,GAAG,CAAoC;IAC/C,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,YAAY,CAAe;IACnC,OAAO,CAAC,OAAO,CAAsB;IACrC,OAAO,CAAC,gBAAgB,CAAoC;IAC5D,OAAO,CAAC,UAAU,CAAgD;IAClE,OAAO,CAAC,WAAW,CAAsC;IACzD,OAAO,CAAC,OAAO,CAAU;IACzB,OAAO,CAAC,iBAAiB,CAAS;IAClC,OAAO,CAAC,eAAe,CAAC,CAKtB;IACF,OAAO,CAAC,aAAa,CAAkC;IACvD,OAAO,CAAC,cAAc,CAAiB;IACvC,OAAO,CAAC,UAAU,CAAuB;IACzC,mEAAmE;IACnE,OAAO,CAAC,kBAAkB,CAAC,CAAS;IACpC,uEAAuE;IACvE,OAAO,CAAC,gBAAgB,CAA6B;IACrD,kFAAkF;IAClF,OAAO,CAAC,wBAAwB,CAAS;IACzC,kDAAkD;IAClD,OAAO,CAAC,oBAAoB,CAA8B;IAC1D,wGAAwG;IACxG,OAAO,CAAC,YAAY,CAAoC;IAExD,wFAAwF;IACjF,qBAAqB,EAAE,OAAO,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAE1C;IACxB,mDAAmD;IACnD,OAAO,CAAC,cAAc,CAAiB;IACvC,OAAO,CAAC,aAAa,CAQnB;IACF,OAAO,CAAC,MAAM,CAAS;IAEvB,sDAAsD;IACtD,eAAe,IAAI,mBAAmB,GAAG,IAAI;IAI7C,gFAAgF;IAChF,SAAS,IAAI,YAAY;gBAIb,OAAO,EAAE,mBAAmB;IAiIjC,kBAAkB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;IAIzC,SAAS,IAAI,MAAM;IAI1B,OAAO,CAAC,GAAG;IAIX;;;OAGG;IACI,mBAAmB,CAAC,QAAQ,EAAE,yBAAyB;IAI9D;;OAEG;IACH,OAAO,CAAC,qBAAqB;IAgB7B;;;OAGG;IACH,OAAO,CAAC,iBAAiB;IAMzB;;;;;OAKG;IACH,OAAO,CAAC,sBAAsB;IA6C9B;;OAEG;IACH,OAAO,CAAC,iBAAiB;IA8HzB;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAW1B;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAuBxB,qGAAqG;IACrG,OAAO,CAAC,eAAe,CAA+D;IACtF,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,qBAAqB,CAAU;IAEvD;;;OAGG;YACW,uBAAuB;YA2DvB,eAAe;YAgGf,cAAc;IA+Q5B,OAAO,CAAC,iBAAiB;YAqBX,eAAe;IAkB7B;;OAEG;IACH,OAAO,CAAC,aAAa;IAkNrB;;OAEG;IACH,OAAO,CAAC,YAAY;IAoBpB;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAuB5B;;;OAGG;IACI,aAAa,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO;IAInC,eAAe,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,OAAO;IAItD,cAAc,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC;IAIpE,kBAAkB,CAAC,MAAM,EAAE,GAAG,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,GAAG;IAIvD,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO;IAIzC,eAAe,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAM7D;;;OAGG;IACH,OAAO,CAAC,WAAW;IA2CnB;;OAEG;IACH,OAAO,CAAC,qBAAqB;IAgC7B;;;;;OAKG;YACW,uBAAuB;IAqDrC;;OAEG;YACW,qBAAqB;IA2BnC;;OAEG;YACW,wBAAwB;IAoFtC;;OAEG;IACG,KAAK;IA+GX;;OAEG;YACW,UAAU;IAsBxB;;OAEG;YACW,QAAQ;IA6ftB;;OAEG;YACW,cAAc;IAiC5B;;OAEG;YACW,iBAAiB;IAK/B;;OAEG;YACW,mBAAmB;IAiFjC;;OAEG;YACW,gBAAgB;IAgC9B;;;OAGG;IACH,OAAO,CAAC,oBAAoB;IA+C5B;;OAEG;IACG,IAAI;
|
|
1
|
+
{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AAuBnE,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAC3C,OAAO,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AAE1D,OAAO,KAAK,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAC;AAG5E,OAAO,EAAgB,MAAM,EAAE,aAAa,EAAY,MAAM,oBAAoB,CAAC;AAanF,OAAO,EAGL,KAAK,yBAAyB,EAC/B,MAAM,sBAAsB,CAAC;AAc9B,qBAAa,sBAAuB,SAAQ,KAAK;gBACnC,OAAO,EAAE,MAAM;CAI5B;AAED,MAAM,MAAM,aAAa,GAAG,OAAO,GAAG,KAAK,CAAC;AAE5C;;;;;GAKG;AACH,MAAM,MAAM,QAAQ,GAAG,UAAU,GAAG,MAAM,CAAC;AAE3C,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,KAAK,CAAC;QAAE,WAAW,EAAE,WAAW,CAAC;QAAC,QAAQ,CAAC,EAAE,cAAc,CAAA;KAAE,CAAC,CAAC;IACxE,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,mBAAmB;IAClC,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,SAAS,CAAC,EAAE,aAAa,CAAC;IAC1B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,UAAU,CAAC,EAAE,aAAa,CAAC;IAC3B,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IACpC,mEAAmE;IACnE,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,mFAAmF;IACnF,eAAe,CAAC,EAAE;QAAE,OAAO,EAAE,GAAG,CAAC;QAAC,UAAU,CAAC,EAAE,GAAG,EAAE,CAAA;KAAE,CAAC;IACvD,kFAAkF;IAClF,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,oEAAoE;IACpE,qBAAqB,CAAC,EAAE,GAAG,CACzB,MAAM,EACN;QAAE,MAAM,EAAE;YAAE,OAAO,EAAE,GAAG,CAAC;YAAC,UAAU,CAAC,EAAE,GAAG,EAAE,CAAA;SAAE,CAAC;QAAC,MAAM,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,CACnF,CAAC;IACF,6EAA6E;IAC7E,cAAc,CAAC,EAAE;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,CAAC;IACzD,2EAA2E;IAC3E,mBAAmB,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;IAC7D,sEAAsE;IACtE,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,6EAA6E;IAC7E,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,2FAA2F;IAC3F,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,8DAA8D;IAC9D,mBAAmB,CAAC,EAAE,MAAM,CAAC;CAC9B;AAGD,YAAY,EAAE,wBAAwB,EAAE,yBAAyB,EAAE,MAAM,sBAAsB,CAAC;AA8QhG,qBAAa,YAAY;IACvB,OAAO,CAAC,MAAM,CAAe;IAC7B,OAAO,CAAC,GAAG,CAAoC;IAC/C,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,YAAY,CAAe;IACnC,OAAO,CAAC,OAAO,CAAsB;IACrC,OAAO,CAAC,gBAAgB,CAAoC;IAC5D,OAAO,CAAC,UAAU,CAAgD;IAClE,OAAO,CAAC,WAAW,CAAsC;IACzD,OAAO,CAAC,OAAO,CAAU;IACzB,OAAO,CAAC,iBAAiB,CAAS;IAClC,OAAO,CAAC,eAAe,CAAC,CAKtB;IACF,OAAO,CAAC,aAAa,CAAkC;IACvD,OAAO,CAAC,cAAc,CAAiB;IACvC,OAAO,CAAC,UAAU,CAAuB;IACzC,mEAAmE;IACnE,OAAO,CAAC,kBAAkB,CAAC,CAAS;IACpC,uEAAuE;IACvE,OAAO,CAAC,gBAAgB,CAA6B;IACrD,kFAAkF;IAClF,OAAO,CAAC,wBAAwB,CAAS;IACzC,kDAAkD;IAClD,OAAO,CAAC,oBAAoB,CAA8B;IAC1D,wGAAwG;IACxG,OAAO,CAAC,YAAY,CAAoC;IAExD,wFAAwF;IACjF,qBAAqB,EAAE,OAAO,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAE1C;IACxB,mDAAmD;IACnD,OAAO,CAAC,cAAc,CAAiB;IACvC,OAAO,CAAC,aAAa,CAQnB;IACF,OAAO,CAAC,MAAM,CAAS;IAEvB,sDAAsD;IACtD,eAAe,IAAI,mBAAmB,GAAG,IAAI;IAI7C,gFAAgF;IAChF,SAAS,IAAI,YAAY;gBAIb,OAAO,EAAE,mBAAmB;IAiIjC,kBAAkB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;IAIzC,SAAS,IAAI,MAAM;IAI1B,OAAO,CAAC,GAAG;IAIX;;;OAGG;IACI,mBAAmB,CAAC,QAAQ,EAAE,yBAAyB;IAI9D;;OAEG;IACH,OAAO,CAAC,qBAAqB;IAgB7B;;;OAGG;IACH,OAAO,CAAC,iBAAiB;IAMzB;;;;;OAKG;IACH,OAAO,CAAC,sBAAsB;IA6C9B;;OAEG;IACH,OAAO,CAAC,iBAAiB;IA8HzB;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAW1B;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAuBxB,qGAAqG;IACrG,OAAO,CAAC,eAAe,CAA+D;IACtF,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,qBAAqB,CAAU;IAEvD;;;OAGG;YACW,uBAAuB;YA2DvB,eAAe;YAgGf,cAAc;IA+Q5B,OAAO,CAAC,iBAAiB;YAqBX,eAAe;IAkB7B;;OAEG;IACH,OAAO,CAAC,aAAa;IAkNrB;;OAEG;IACH,OAAO,CAAC,YAAY;IAoBpB;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAuB5B;;;OAGG;IACI,aAAa,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO;IAInC,eAAe,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,OAAO;IAItD,cAAc,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC;IAIpE,kBAAkB,CAAC,MAAM,EAAE,GAAG,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,GAAG;IAIvD,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO;IAIzC,eAAe,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAM7D;;;OAGG;IACH,OAAO,CAAC,WAAW;IA2CnB;;OAEG;IACH,OAAO,CAAC,qBAAqB;IAgC7B;;;;;OAKG;YACW,uBAAuB;IAqDrC;;OAEG;YACW,qBAAqB;IA2BnC;;OAEG;YACW,wBAAwB;IAoFtC;;OAEG;IACG,KAAK;IA+GX;;OAEG;YACW,UAAU;IAsBxB;;OAEG;YACW,QAAQ;IA6ftB;;OAEG;YACW,cAAc;IAiC5B;;OAEG;YACW,iBAAiB;IAK/B;;OAEG;YACW,mBAAmB;IAiFjC;;OAEG;YACW,gBAAgB;IAgC9B;;;OAGG;IACH,OAAO,CAAC,oBAAoB;IA+C5B;;OAEG;IACG,IAAI;IA6CV,OAAO,CAAC,mBAAmB;IA+B3B,OAAO,CAAC,kBAAkB;YAqBZ,qBAAqB;IAyBnC,OAAO,CAAC,gBAAgB;IAOxB;;OAEG;IACH,OAAO,CAAC,kBAAkB,CAAK;IAC/B,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAK;IACzC,OAAO,CAAC,kBAAkB,CAAC,CAAiB;IAEtC,MAAM;IAoJZ;;;OAGG;YACW,kBAAkB;CAyBjC"}
|