@redmix/api 9.0.0-canary.580 → 9.0.0-canary.582

package/dist/cache/clients/MemcachedClient.js

@@ -1,38 +1,6 @@
-"use strict";
-var __create = Object.create;
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __getProtoOf = Object.getPrototypeOf;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
-  // If the importer is in node compatibility mode or this is not an ESM
-  // file that has been converted to a CommonJS file using a Babel-
-  // compatible transform (i.e. "__esModule" has not been set), then set
-  // "default" to the CommonJS "module.exports" for node compatibility.
-  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
-  mod
-));
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-var MemcachedClient_exports = {};
-__export(MemcachedClient_exports, {
-  default: () => MemcachedClient
-});
-module.exports = __toCommonJS(MemcachedClient_exports);
-var import_BaseClient = __toESM(require("./BaseClient"));
-class MemcachedClient extends import_BaseClient.default {
+import bannerPath from "node:path"; import bannerUrl from "node:url"; const __filename = bannerUrl.fileURLToPath(import.meta.url); const __dirname = bannerPath.dirname(__filename);
+import BaseClient from "./BaseClient.js";
+class MemcachedClient extends BaseClient {
   client;
   servers;
   options;
@@ -73,3 +41,6 @@ class MemcachedClient extends import_BaseClient.default {
     return this.client?.delete(key);
   }
 }
+export {
+  MemcachedClient as default
+};

package/dist/cache/clients/RedisClient.d.ts

@@ -1,6 +1,6 @@
 import type { RedisClientType, RedisClientOptions } from 'redis';
-import type { Logger } from '../../logger';
-import BaseClient from './BaseClient';
+import type { Logger } from '../../logger/index.js';
+import BaseClient from './BaseClient.js';
 type LoggerOptions = {
     logger?: Logger;
 };

package/dist/cache/clients/RedisClient.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"RedisClient.d.ts","sourceRoot":"","sources":["../../../src/cache/clients/RedisClient.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,kBAAkB,EAAE,MAAM,OAAO,CAAA;AAEhE,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,cAAc,CAAA;AAE1C,OAAO,UAAU,MAAM,cAAc,CAAA;AAMrC,KAAK,aAAa,GAAG;IACnB,MAAM,CAAC,EAAE,MAAM,CAAA;CAChB,CAAA;AAED,MAAM,CAAC,OAAO,OAAO,WAAY,SAAQ,UAAU;IACjD,MAAM,CAAC,EAAE,eAAe,GAAG,IAAI,CAAA;IAC/B,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,YAAY,CAAC,EAAE,kBAAkB,CAAA;gBAErB,OAAO,EAAE,kBAAkB,GAAG,aAAa;IAQjD,OAAO;IAiBP,GAAG,CAAC,GAAG,EAAE,MAAM;IAUf,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE;QAAE,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE;IAc9D,GAAG,CAAC,GAAG,EAAE,MAAM;CAQtB"}
+{"version":3,"file":"RedisClient.d.ts","sourceRoot":"","sources":["../../../src/cache/clients/RedisClient.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,kBAAkB,EAAE,MAAM,OAAO,CAAA;AAEhE,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAA;AAEnD,OAAO,UAAU,MAAM,iBAAiB,CAAA;AAMxC,KAAK,aAAa,GAAG;IACnB,MAAM,CAAC,EAAE,MAAM,CAAA;CAChB,CAAA;AAED,MAAM,CAAC,OAAO,OAAO,WAAY,SAAQ,UAAU;IACjD,MAAM,CAAC,EAAE,eAAe,GAAG,IAAI,CAAA;IAC/B,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,YAAY,CAAC,EAAE,kBAAkB,CAAA;gBAErB,OAAO,EAAE,kBAAkB,GAAG,aAAa;IAQjD,OAAO;IAiBP,GAAG,CAAC,GAAG,EAAE,MAAM;IAUf,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE;QAAE,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE;IAc9D,GAAG,CAAC,GAAG,EAAE,MAAM;CAQtB"}

package/dist/cache/clients/RedisClient.js

@@ -1,38 +1,6 @@
-"use strict";
-var __create = Object.create;
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __getProtoOf = Object.getPrototypeOf;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
-  // If the importer is in node compatibility mode or this is not an ESM
-  // file that has been converted to a CommonJS file using a Babel-
-  // compatible transform (i.e. "__esModule" has not been set), then set
-  // "default" to the CommonJS "module.exports" for node compatibility.
-  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
-  mod
-));
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-var RedisClient_exports = {};
-__export(RedisClient_exports, {
-  default: () => RedisClient
-});
-module.exports = __toCommonJS(RedisClient_exports);
-var import_BaseClient = __toESM(require("./BaseClient"));
-class RedisClient extends import_BaseClient.default {
+import bannerPath from "node:path"; import bannerUrl from "node:url"; const __filename = bannerUrl.fileURLToPath(import.meta.url); const __dirname = bannerPath.dirname(__filename);
+import BaseClient from "./BaseClient.js";
+class RedisClient extends BaseClient {
   client;
   logger;
   redisOptions;
@@ -77,3 +45,6 @@ class RedisClient extends import_BaseClient.default {
     return !!await this.client?.del([key]);
   }
 }
+export {
+  RedisClient as default
+};

package/dist/cache/errors.js

@@ -1,33 +1,10 @@
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-var errors_exports = {};
-__export(errors_exports, {
-  CacheTimeoutError: () => CacheTimeoutError
-});
-module.exports = __toCommonJS(errors_exports);
+import bannerPath from "node:path"; import bannerUrl from "node:url"; const __filename = bannerUrl.fileURLToPath(import.meta.url); const __dirname = bannerPath.dirname(__filename);
 class CacheTimeoutError extends Error {
   constructor() {
     super("Timed out waiting for response from the cache server");
     this.name = "CacheTimeoutError";
   }
 }
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
+export {
   CacheTimeoutError
-});
+};

package/dist/cache/index.d.ts

@@ -1,8 +1,8 @@
-import type { Logger } from '../logger';
-import type BaseClient from './clients/BaseClient';
-export { default as MemcachedClient } from './clients/MemcachedClient';
-export { default as RedisClient } from './clients/RedisClient';
-export { default as InMemoryClient } from './clients/InMemoryClient';
+import type { Logger } from '../logger/index.js';
+import type BaseClient from './clients/BaseClient.js';
+export { default as MemcachedClient } from './clients/MemcachedClient.js';
+export { default as RedisClient } from './clients/RedisClient.js';
+export { default as InMemoryClient } from './clients/InMemoryClient.js';
 export interface CreateCacheOptions {
     logger?: Logger;
     timeout?: number;

package/dist/cache/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/cache/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,WAAW,CAAA;AAEvC,OAAO,KAAK,UAAU,MAAM,sBAAsB,CAAA;AAGlD,OAAO,EAAE,OAAO,IAAI,eAAe,EAAE,MAAM,2BAA2B,CAAA;AACtE,OAAO,EAAE,OAAO,IAAI,WAAW,EAAE,MAAM,uBAAuB,CAAA;AAC9D,OAAO,EAAE,OAAO,IAAI,cAAc,EAAE,MAAM,0BAA0B,CAAA;AAEpE,MAAM,WAAW,kBAAkB;IACjC,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,MAAM,CAAC,EAAE;QACP,EAAE,EAAE,MAAM,CAAA;QACV,SAAS,EAAE,MAAM,CAAA;KAClB,CAAA;CACF;AAED,MAAM,WAAW,YAAY;IAC3B,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED,MAAM,WAAW,oBAAoB,CACnC,aAAa,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAC7C,SAAQ,YAAY;IACpB,UAAU,CAAC,EAAE,aAAa,CAAA;CAC3B;AAED,MAAM,MAAM,QAAQ,GAAG,MAAM,GAAG,MAAM,EAAE,CAAA;AACxC,MAAM,MAAM,WAAW,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;AAEjD,KAAK,eAAe,GAAG;IACrB,QAAQ,EAAE,CAAC,GAAG,IAAI,EAAE,GAAG,KAAK,GAAG,CAAA;IAC/B,SAAS,EAAE,CAAC,GAAG,IAAI,EAAE,GAAG,KAAK,GAAG,CAAA;CACjC,CAAA;AAQD,eAAO,MAAM,iBAAiB,MAAM,CAAA;AAEpC,eAAO,MAAM,cAAc,QAAS,QAAQ,WAAW,MAAM,WAkB5D,CAAA;AAMD,eAAO,MAAM,WAAW,gBACT,UAAU,YACb,kBAAkB;YAQP,OAAO,OACrB,QAAQ,SACN,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,YAC7B,YAAY,KACrB,OAAO,CAAC,GAAG,CAAC;oBAqDc,SAAS,SAAS,eAAe,OACvD,QAAQ,SACN,SAAS,YACP,oBAAoB,CAAC,UAAU,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;;0BAgDlC,QAAQ;CA0B5C,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/cache/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAA;AAEhD,OAAO,KAAK,UAAU,MAAM,yBAAyB,CAAA;AAGrD,OAAO,EAAE,OAAO,IAAI,eAAe,EAAE,MAAM,8BAA8B,CAAA;AACzE,OAAO,EAAE,OAAO,IAAI,WAAW,EAAE,MAAM,0BAA0B,CAAA;AACjE,OAAO,EAAE,OAAO,IAAI,cAAc,EAAE,MAAM,6BAA6B,CAAA;AAEvE,MAAM,WAAW,kBAAkB;IACjC,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,MAAM,CAAC,EAAE;QACP,EAAE,EAAE,MAAM,CAAA;QACV,SAAS,EAAE,MAAM,CAAA;KAClB,CAAA;CACF;AAED,MAAM,WAAW,YAAY;IAC3B,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED,MAAM,WAAW,oBAAoB,CACnC,aAAa,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAC7C,SAAQ,YAAY;IACpB,UAAU,CAAC,EAAE,aAAa,CAAA;CAC3B;AAED,MAAM,MAAM,QAAQ,GAAG,MAAM,GAAG,MAAM,EAAE,CAAA;AACxC,MAAM,MAAM,WAAW,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;AAEjD,KAAK,eAAe,GAAG;IACrB,QAAQ,EAAE,CAAC,GAAG,IAAI,EAAE,GAAG,KAAK,GAAG,CAAA;IAC/B,SAAS,EAAE,CAAC,GAAG,IAAI,EAAE,GAAG,KAAK,GAAG,CAAA;CACjC,CAAA;AAQD,eAAO,MAAM,iBAAiB,MAAM,CAAA;AAEpC,eAAO,MAAM,cAAc,QAAS,QAAQ,WAAW,MAAM,WAkB5D,CAAA;AAMD,eAAO,MAAM,WAAW,gBACT,UAAU,YACb,kBAAkB;YAQP,OAAO,OACrB,QAAQ,SACN,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,YAC7B,YAAY,KACrB,OAAO,CAAC,GAAG,CAAC;oBAqDc,SAAS,SAAS,eAAe,OACvD,QAAQ,SACN,SAAS,YACP,oBAAoB,CAAC,UAAU,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;;0BAgDlC,QAAQ;CA0B5C,CAAA"}

package/dist/cache/index.js

@@ -1,45 +1,8 @@
-"use strict";
-var __create = Object.create;
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __getProtoOf = Object.getPrototypeOf;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
-  // If the importer is in node compatibility mode or this is not an ESM
-  // file that has been converted to a CommonJS file using a Babel-
-  // compatible transform (i.e. "__esModule" has not been set), then set
-  // "default" to the CommonJS "module.exports" for node compatibility.
-  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
-  mod
-));
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-var cache_exports = {};
-__export(cache_exports, {
-  InMemoryClient: () => import_InMemoryClient.default,
-  MemcachedClient: () => import_MemcachedClient.default,
-  RedisClient: () => import_RedisClient.default,
-  cacheKeySeparator: () => cacheKeySeparator,
-  createCache: () => createCache,
-  formatCacheKey: () => formatCacheKey
-});
-module.exports = __toCommonJS(cache_exports);
-var import_errors = require("./errors");
-var import_MemcachedClient = __toESM(require("./clients/MemcachedClient"));
-var import_RedisClient = __toESM(require("./clients/RedisClient"));
-var import_InMemoryClient = __toESM(require("./clients/InMemoryClient"));
+import bannerPath from "node:path"; import bannerUrl from "node:url"; const __filename = bannerUrl.fileURLToPath(import.meta.url); const __dirname = bannerPath.dirname(__filename);
+import { CacheTimeoutError } from "./errors.js";
+import { default as default2 } from "./clients/MemcachedClient.js";
+import { default as default3 } from "./clients/RedisClient.js";
+import { default as default4 } from "./clients/InMemoryClient.js";
 const DEFAULT_LATEST_FIELDS = { id: "id", updatedAt: "updatedAt" };
 const wait = (ms) => {
   return new Promise((resolve) => setTimeout(resolve, ms));
@@ -72,7 +35,7 @@ const createCache = (cacheClient, options) => {
       const result = await Promise.race([
         client.get(cacheKey),
         wait(timeout).then(() => {
-          throw new import_errors.CacheTimeoutError();
+          throw new CacheTimeoutError();
         })
       ]);
       if (result) {
@@ -81,7 +44,7 @@ const createCache = (cacheClient, options) => {
       }
     } catch (e) {
       logger?.error(`[Cache] Error GET '${cacheKey}': ${e.message}`);
-      if (e instanceof import_errors.CacheTimeoutError && client.disconnect) {
+      if (e instanceof CacheTimeoutError && client.disconnect) {
         logger?.error(`[Cache] Disconnecting current instance...`);
         await client.disconnect();
       }
@@ -93,7 +56,7 @@ const createCache = (cacheClient, options) => {
       await Promise.race([
         client.set(cacheKey, data, options2 || {}),
         wait(timeout).then(() => {
-          throw new import_errors.CacheTimeoutError();
+          throw new CacheTimeoutError();
         })
       ]);
       logger?.debug(
@@ -143,7 +106,7 @@ const createCache = (cacheClient, options) => {
       await Promise.race([
         result = client.del(cacheKey),
         wait(timeout).then(() => {
-          throw new import_errors.CacheTimeoutError();
+          throw new CacheTimeoutError();
         })
       ]);
       logger?.debug(`[Cache] DEL '${cacheKey}'`);
@@ -160,12 +123,11 @@ const createCache = (cacheClient, options) => {
     deleteCacheKey
   };
 };
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
-  InMemoryClient,
-  MemcachedClient,
-  RedisClient,
+export {
+  default4 as InMemoryClient,
+  default2 as MemcachedClient,
+  default3 as RedisClient,
   cacheKeySeparator,
   createCache,
   formatCacheKey
-});
+};

package/dist/cjs/auth/index.d.ts

@@ -0,0 +1,51 @@
+export * from './parseJWT.js';
+import type { APIGatewayProxyEvent, Context as LambdaContext } from 'aws-lambda';
+import type { Decoded } from './parseJWT.js';
+export type { Decoded };
+export declare const AUTH_PROVIDER_HEADER = "auth-provider";
+export declare const getAuthProviderHeader: (event: APIGatewayProxyEvent | Request) => string | null | undefined;
+export interface AuthorizationHeader {
+    schema: 'Bearer' | 'Basic' | string;
+    token: string;
+}
+export type AuthorizationCookies = {
+    parsedCookie: Record<string, string | undefined>;
+    rawCookie: string;
+    type: string | undefined;
+} | null;
+export declare const parseAuthorizationCookie: (event: APIGatewayProxyEvent | Request) => AuthorizationCookies;
+/**
+ * Split the `Authorization` header into a schema and token part.
+ */
+export declare const parseAuthorizationHeader: (event: APIGatewayProxyEvent | Request) => AuthorizationHeader;
+/** @MARK Note that we do not send LambdaContext when making fetch requests
+ *
+ * This part is incomplete, as we need to decide how we will make the breaking change to
+ * 1. getCurrentUser
+ * 2. authDecoders
+
+ */
+export type AuthContextPayload = [
+    Decoded,
+    {
+        type: string;
+    } & AuthorizationHeader,
+    {
+        event: APIGatewayProxyEvent | Request;
+        context?: LambdaContext;
+    }
+];
+export type Decoder = (token: string, type: string, req: {
+    event: APIGatewayProxyEvent | Request;
+    context?: LambdaContext;
+}) => Promise<Decoded>;
+/**
+ * Get the authorization information from the request headers and request context.
+ * @returns [decoded, { type, schema, token }, { event, context }]
+ **/
+export declare const getAuthenticationContext: ({ authDecoder, event, context, }: {
+    authDecoder?: Decoder | Decoder[];
+    event: APIGatewayProxyEvent | Request;
+    context: LambdaContext;
+}) => Promise<undefined | AuthContextPayload>;
+//# sourceMappingURL=index.d.ts.map

package/dist/cjs/auth/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/auth/index.ts"],"names":[],"mappings":"AAAA,cAAc,eAAe,CAAA;AAE7B,OAAO,KAAK,EAAE,oBAAoB,EAAE,OAAO,IAAI,aAAa,EAAE,MAAM,YAAY,CAAA;AAKhF,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,eAAe,CAAA;AAC5C,YAAY,EAAE,OAAO,EAAE,CAAA;AAGvB,eAAO,MAAM,oBAAoB,kBAAkB,CAAA;AAEnD,eAAO,MAAM,qBAAqB,UACzB,oBAAoB,GAAG,OAAO,8BAStC,CAAA;AAED,MAAM,WAAW,mBAAmB;IAClC,MAAM,EAAE,QAAQ,GAAG,OAAO,GAAG,MAAM,CAAA;IACnC,KAAK,EAAE,MAAM,CAAA;CACd;AAED,MAAM,MAAM,oBAAoB,GAAG;IACjC,YAAY,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAC,CAAA;IAChD,SAAS,EAAE,MAAM,CAAA;IACjB,IAAI,EAAE,MAAM,GAAG,SAAS,CAAA;CACzB,GAAG,IAAI,CAAA;AAER,eAAO,MAAM,wBAAwB,UAC5B,oBAAoB,GAAG,OAAO,KACpC,oBAiBF,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,wBAAwB,UAC5B,oBAAoB,GAAG,OAAO,KACpC,mBAUF,CAAA;AAED;;;;;;GAMG;AAEH,MAAM,MAAM,kBAAkB,GAAG;IAC/B,OAAO;IACP;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,GAAG,mBAAmB;IAEtC;QACE,KAAK,EAAE,oBAAoB,GAAG,OAAO,CAAA;QACrC,OAAO,CAAC,EAAE,aAAa,CAAA;KACxB;CACF,CAAA;AAED,MAAM,MAAM,OAAO,GAAG,CACpB,KAAK,EAAE,MAAM,EACb,IAAI,EAAE,MAAM,EACZ,GAAG,EAAE;IACH,KAAK,EAAE,oBAAoB,GAAG,OAAO,CAAA;IACrC,OAAO,CAAC,EAAE,aAAa,CAAA;CACxB,KACE,OAAO,CAAC,OAAO,CAAC,CAAA;AAErB;;;IAGI;AACJ,eAAO,MAAM,wBAAwB,qCAIlC;IACD,WAAW,CAAC,EAAE,OAAO,GAAG,OAAO,EAAE,CAAA;IACjC,KAAK,EAAE,oBAAoB,GAAG,OAAO,CAAA;IACrC,OAAO,EAAE,aAAa,CAAA;CACvB,KAAG,OAAO,CAAC,SAAS,GAAG,kBAAkB,CA6DzC,CAAA"}

package/dist/cjs/auth/index.js

@@ -0,0 +1,129 @@
+"use strict";
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __reExport = (target, mod, secondTarget) => (__copyProps(target, mod, "default"), secondTarget && __copyProps(secondTarget, mod, "default"));
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var auth_exports = {};
+__export(auth_exports, {
+  AUTH_PROVIDER_HEADER: () => AUTH_PROVIDER_HEADER,
+  getAuthProviderHeader: () => getAuthProviderHeader,
+  getAuthenticationContext: () => getAuthenticationContext,
+  parseAuthorizationCookie: () => parseAuthorizationCookie,
+  parseAuthorizationHeader: () => parseAuthorizationHeader
+});
+module.exports = __toCommonJS(auth_exports);
+__reExport(auth_exports, require("./parseJWT.js"), module.exports);
+var cookie = __toESM(require("cookie"), 1);
+var import_event = require("../event.js");
+const AUTH_PROVIDER_HEADER = "auth-provider";
+const getAuthProviderHeader = (event) => {
+  const authProviderKey = Object.keys(event?.headers ?? {}).find(
+    (key) => key.toLowerCase() === AUTH_PROVIDER_HEADER
+  );
+  if (authProviderKey) {
+    return (0, import_event.getEventHeader)(event, authProviderKey);
+  }
+  return void 0;
+};
+const parseAuthorizationCookie = (event) => {
+  const cookieHeader = (0, import_event.getEventHeader)(event, "Cookie");
+  if (!cookieHeader) {
+    return null;
+  }
+  const parsedCookie = cookie.parse(cookieHeader);
+  return {
+    parsedCookie,
+    rawCookie: cookieHeader,
+    // When not unauthenticated, this will be null/undefined
+    // Remember that the cookie header could contain other (unrelated) values!
+    type: parsedCookie[AUTH_PROVIDER_HEADER]
+  };
+};
+const parseAuthorizationHeader = (event) => {
+  const parts = (0, import_event.getEventHeader)(event, "Authorization")?.split(" ");
+  if (parts?.length !== 2) {
+    throw new Error("The `Authorization` header is not valid.");
+  }
+  const [schema, token] = parts;
+  if (!schema.length || !token.length) {
+    throw new Error("The `Authorization` header is not valid.");
+  }
+  return { schema, token };
+};
+const getAuthenticationContext = async ({
+  authDecoder,
+  event,
+  context
+}) => {
+  const cookieHeader = parseAuthorizationCookie(event);
+  const typeFromHeader = getAuthProviderHeader(event);
+  if (!typeFromHeader && !cookieHeader) {
+    return void 0;
+  }
+  let token;
+  let type;
+  let schema;
+  if (cookieHeader?.type) {
+    token = cookieHeader.rawCookie;
+    type = cookieHeader.type;
+    schema = "cookie";
+  } else if (typeFromHeader) {
+    const parsedAuthHeader = parseAuthorizationHeader(event);
+    token = parsedAuthHeader.token;
+    type = typeFromHeader;
+    schema = parsedAuthHeader.schema;
+  }
+  if (!token || !type || !schema) {
+    return void 0;
+  }
+  let authDecoders = [];
+  if (Array.isArray(authDecoder)) {
+    authDecoders = authDecoder;
+  } else if (authDecoder) {
+    authDecoders = [authDecoder];
+  }
+  let decoded = null;
+  let i = 0;
+  while (!decoded && i < authDecoders.length) {
+    decoded = await authDecoders[i](token, type, {
+      // @MARK: When called from middleware, the decoder will pass Request, not Lambda event
+      event,
+      context
+    });
+    i++;
+  }
+  return [decoded, { type, schema, token }, { event, context }];
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  AUTH_PROVIDER_HEADER,
+  getAuthProviderHeader,
+  getAuthenticationContext,
+  parseAuthorizationCookie,
+  parseAuthorizationHeader,
+  ...require("./parseJWT.js")
+});

package/dist/cjs/auth/parseJWT.d.ts

@@ -0,0 +1,6 @@
+export type Decoded = Record<string, unknown> | null;
+export declare const parseJWT: (token: {
+    decoded: Decoded;
+    namespace?: string;
+}) => any;
+//# sourceMappingURL=parseJWT.d.ts.map

package/dist/cjs/auth/parseJWT.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"parseJWT.d.ts","sourceRoot":"","sources":["../../../src/auth/parseJWT.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAA;AA8DpD,eAAO,MAAM,QAAQ,UAAW;IAC9B,OAAO,EAAE,OAAO,CAAA;IAChB,SAAS,CAAC,EAAE,MAAM,CAAA;CACnB,KAAG,GAKH,CAAA"}

package/dist/cjs/auth/parseJWT.js

@@ -0,0 +1,57 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var parseJWT_exports = {};
+__export(parseJWT_exports, {
+  parseJWT: () => parseJWT
+});
+module.exports = __toCommonJS(parseJWT_exports);
+function isTokenWithRoles(token) {
+  return !!token.decoded?.roles;
+}
+function isTokenWithMetadata(token) {
+  const claim = token.namespace ? `${token.namespace}/app_metadata` : "app_metadata";
+  return !!token.decoded?.[claim];
+}
+const appMetadata = (token) => {
+  if (typeof token.decoded === "string") {
+    return {};
+  }
+  if (isTokenWithMetadata(token)) {
+    const claim = token.namespace ? `${token.namespace}/app_metadata` : "app_metadata";
+    return token.decoded?.[claim];
+  }
+  return {};
+};
+const roles = (token) => {
+  if (isTokenWithRoles(token)) {
+    return token.decoded.roles;
+  }
+  const metadata = appMetadata(token);
+  return metadata?.roles || metadata.authorization?.roles || [];
+};
+const parseJWT = (token) => {
+  return {
+    appMetadata: appMetadata(token),
+    roles: roles(token)
+  };
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  parseJWT
+});

package/dist/cjs/auth/verifiers/base64Sha1Verifier.d.ts

@@ -0,0 +1,19 @@
+import type { WebhookVerifier, VerifyOptions } from './common.js';
+export interface Base64Sha1Verifier extends WebhookVerifier {
+    type: 'base64Sha1Verifier';
+}
+export declare const verifySignature: ({ payload, secret, signature, }: {
+    payload: string | Record<string, unknown>;
+    secret: string;
+    signature: string;
+}) => boolean;
+/**
+ * Base64 SHA1 HMAC Payload Verifier
+ *
+ * Based on Svix's webhook payload verification, but using SHA1 instead
+ * @see https://docs.svix.com/receiving/verifying-payloads/how-manual
+ * @see https://github.com/svix/svix-webhooks/blob/main/javascript/src/index.ts
+ */
+declare const base64Sha1Verifier: (_options?: VerifyOptions) => Base64Sha1Verifier;
+export default base64Sha1Verifier;
+//# sourceMappingURL=base64Sha1Verifier.d.ts.map

package/dist/cjs/auth/verifiers/base64Sha1Verifier.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"base64Sha1Verifier.d.ts","sourceRoot":"","sources":["../../../../src/auth/verifiers/base64Sha1Verifier.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,aAAa,CAAA;AAEjE,MAAM,WAAW,kBAAmB,SAAQ,eAAe;IACzD,IAAI,EAAE,oBAAoB,CAAA;CAC3B;AA0BD,eAAO,MAAM,eAAe,oCAIzB;IACD,OAAO,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;IACzC,MAAM,EAAE,MAAM,CAAA;IACd,SAAS,EAAE,MAAM,CAAA;CAClB,KAAG,OA0BH,CAAA;AAED;;;;;;GAMG;AACH,QAAA,MAAM,kBAAkB,cAAe,aAAa,KAAG,kBAUtD,CAAA;AAED,eAAe,kBAAkB,CAAA"}

package/dist/cjs/auth/verifiers/base64Sha1Verifier.js

@@ -0,0 +1,77 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var base64Sha1Verifier_exports = {};
+__export(base64Sha1Verifier_exports, {
+  default: () => base64Sha1Verifier_default,
+  verifySignature: () => verifySignature
+});
+module.exports = __toCommonJS(base64Sha1Verifier_exports);
+var import_crypto = require("crypto");
+var import_common = require("./common.js");
+function toNormalizedJsonString(payload) {
+  return JSON.stringify(payload).replace(/[^\\]\\u[\da-f]{4}/g, (s) => {
+    return s.slice(0, 3) + s.slice(3).toUpperCase();
+  });
+}
+const createSignature = ({
+  payload,
+  secret = import_common.DEFAULT_WEBHOOK_SECRET
+}) => {
+  const algorithm = "sha1";
+  const hmac = (0, import_crypto.createHmac)(algorithm, Buffer.from(secret, "base64"));
+  payload = typeof payload === "string" ? payload : toNormalizedJsonString(payload);
+  const digest = hmac.update(payload).digest();
+  return digest.toString("base64");
+};
+const verifySignature = ({
+  payload,
+  secret = import_common.DEFAULT_WEBHOOK_SECRET,
+  signature
+}) => {
+  try {
+    const webhookSignature = Buffer.from(signature || "", "base64");
+    const hmac = (0, import_crypto.createHmac)("sha1", Buffer.from(secret, "base64"));
+    payload = typeof payload === "string" ? payload : toNormalizedJsonString(payload);
+    const digest = hmac.update(payload).digest();
+    if (webhookSignature.length === digest.length && (0, import_crypto.timingSafeEqual)(digest, webhookSignature)) {
+      return true;
+    }
+    throw new import_common.WebhookVerificationError();
+  } catch (error) {
+    throw new import_common.WebhookVerificationError(
+      `${import_common.VERIFICATION_ERROR_MESSAGE}: ${error.message}`
+    );
+  }
+};
+const base64Sha1Verifier = (_options) => {
+  return {
+    sign: ({ payload, secret }) => {
+      return createSignature({ payload, secret });
+    },
+    verify: ({ payload, secret, signature }) => {
+      return verifySignature({ payload, secret, signature });
+    },
+    type: "base64Sha1Verifier"
+  };
+};
+var base64Sha1Verifier_default = base64Sha1Verifier;
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  verifySignature
+});

package/dist/cjs/auth/verifiers/base64Sha256Verifier.d.ts

@@ -0,0 +1,19 @@
+import type { WebhookVerifier, VerifyOptions } from './common.js';
+export interface Base64Sha256Verifier extends WebhookVerifier {
+    type: 'base64Sha256Verifier';
+}
+export declare const verifySignature: ({ payload, secret, signature, }: {
+    payload: string | Record<string, unknown>;
+    secret: string;
+    signature: string;
+}) => boolean;
+/**
+ * Base64 SHA256 HMAC Payload Verifier
+ *
+ * Based on Svix's webhook payload verification
+ * @see https://docs.svix.com/receiving/verifying-payloads/how-manual
+ * @see https://github.com/svix/svix-webhooks/blob/main/javascript/src/index.ts
+ */
+declare const base64Sha256Verifier: (_options?: VerifyOptions) => Base64Sha256Verifier;
+export default base64Sha256Verifier;
+//# sourceMappingURL=base64Sha256Verifier.d.ts.map

package/dist/cjs/auth/verifiers/base64Sha256Verifier.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"base64Sha256Verifier.d.ts","sourceRoot":"","sources":["../../../../src/auth/verifiers/base64Sha256Verifier.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,aAAa,CAAA;AAEjE,MAAM,WAAW,oBAAqB,SAAQ,eAAe;IAC3D,IAAI,EAAE,sBAAsB,CAAA;CAC7B;AA0BD,eAAO,MAAM,eAAe,oCAIzB;IACD,OAAO,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;IACzC,MAAM,EAAE,MAAM,CAAA;IACd,SAAS,EAAE,MAAM,CAAA;CAClB,KAAG,OA0BH,CAAA;AAED;;;;;;GAMG;AACH,QAAA,MAAM,oBAAoB,cACb,aAAa,KACvB,oBAUF,CAAA;AAED,eAAe,oBAAoB,CAAA"}