npm - @sebspark/gcp-iam - Versions diffs - 0.4.0 → 1.0.0 - Mend

@sebspark/gcp-iam 0.4.0 → 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -8,11 +8,22 @@ import { Logger } from 'winston';
  * @param logger An optional logger to use for logging.
  * @returns A JWT.
  */
-declare const getApiGatewayToken: ({ apiURL, key, ttl, logger, }: {
+declare const getApiGatewayTokenByUrl: ({ apiURL, key, ttl, logger, }: {
     apiURL: string;
     key?: string;
     ttl?: number;
     logger?: Logger;
 }) => Promise<string>;
+/**
+ *
+ * @param key Clears a cached JWT by key.
+ */
+declare const clearCache: (key: string) => Promise<void>;
+/**
+ * Generates a JWT for the API Gateway, using Client ID as audience.
+ * @param clientId OAUTH Client ID.
+ * @returns ID Token.
+ */
+declare const getApiGatewayTokenByClientId: (clientId: string) => Promise<string>;
-export { getApiGatewayToken };
+export { clearCache, getApiGatewayTokenByClientId, getApiGatewayTokenByUrl };

package/dist/index.d.ts CHANGED Viewed

@@ -8,11 +8,22 @@ import { Logger } from 'winston';
  * @param logger An optional logger to use for logging.
  * @returns A JWT.
  */
-declare const getApiGatewayToken: ({ apiURL, key, ttl, logger, }: {
+declare const getApiGatewayTokenByUrl: ({ apiURL, key, ttl, logger, }: {
     apiURL: string;
     key?: string;
     ttl?: number;
     logger?: Logger;
 }) => Promise<string>;
+/**
+ *
+ * @param key Clears a cached JWT by key.
+ */
+declare const clearCache: (key: string) => Promise<void>;
+/**
+ * Generates a JWT for the API Gateway, using Client ID as audience.
+ * @param clientId OAUTH Client ID.
+ * @returns ID Token.
+ */
+declare const getApiGatewayTokenByClientId: (clientId: string) => Promise<string>;
-export { getApiGatewayToken };
+export { clearCache, getApiGatewayTokenByClientId, getApiGatewayTokenByUrl };

package/dist/index.js CHANGED Viewed

@@ -20,7 +20,9 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 // src/index.ts
 var index_exports = {};
 __export(index_exports, {
-  getApiGatewayToken: () => getApiGatewayToken
+  clearCache: () => clearCache,
+  getApiGatewayTokenByClientId: () => getApiGatewayTokenByClientId,
+  getApiGatewayTokenByUrl: () => getApiGatewayTokenByUrl
 });
 module.exports = __toCommonJS(index_exports);
@@ -62,12 +64,15 @@ var LruCache = class {
       ttl: ttl || this.defaultTTL
     });
   }
+  clear(key) {
+    this.values.delete(key);
+  }
 };
 // src/apiGatewayToken.ts
 var expInSeconds = 60 * 60;
 var apiGatewayJwtCache = new LruCache();
-var getApiGatewayToken = async ({
+var getApiGatewayTokenByUrl = async ({
   apiURL,
   key,
   ttl,
@@ -113,6 +118,7 @@ var getApiGatewayToken = async ({
         "signBlob(...) returned an empty response. Cannot sign JWT."
       );
     }
+    console.log("IAM KeyID", response.keyId);
     const signature = Buffer.from(response.signedBlob).toString("base64");
     const signedJWT = `${unsignedJWT}.${signature}`;
     apiGatewayJwtCache.put(key || apiURL, signedJWT, ttl);
@@ -126,7 +132,19 @@ var getApiGatewayToken = async ({
     throw new Error(`Error generating system JWT: ${JSON.stringify(error)}`);
   }
 };
+var clearCache = async (key) => {
+  apiGatewayJwtCache.clear(key);
+};
+var getApiGatewayTokenByClientId = async (clientId) => {
+  const auth = new import_google_auth_library.GoogleAuth({
+    scopes: "https://www.googleapis.com/auth/cloud-platform"
+  });
+  const client = await auth.getIdTokenClient(clientId);
+  return await client.idTokenProvider.fetchIdToken(clientId);
+};
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
-  getApiGatewayToken
+  clearCache,
+  getApiGatewayTokenByClientId,
+  getApiGatewayTokenByUrl
 });

package/dist/index.mjs CHANGED Viewed

@@ -36,12 +36,15 @@ var LruCache = class {
       ttl: ttl || this.defaultTTL
     });
   }
+  clear(key) {
+    this.values.delete(key);
+  }
 };
 // src/apiGatewayToken.ts
 var expInSeconds = 60 * 60;
 var apiGatewayJwtCache = new LruCache();
-var getApiGatewayToken = async ({
+var getApiGatewayTokenByUrl = async ({
   apiURL,
   key,
   ttl,
@@ -87,6 +90,7 @@ var getApiGatewayToken = async ({
         "signBlob(...) returned an empty response. Cannot sign JWT."
       );
     }
+    console.log("IAM KeyID", response.keyId);
     const signature = Buffer.from(response.signedBlob).toString("base64");
     const signedJWT = `${unsignedJWT}.${signature}`;
     apiGatewayJwtCache.put(key || apiURL, signedJWT, ttl);
@@ -100,6 +104,18 @@ var getApiGatewayToken = async ({
     throw new Error(`Error generating system JWT: ${JSON.stringify(error)}`);
   }
 };
+var clearCache = async (key) => {
+  apiGatewayJwtCache.clear(key);
+};
+var getApiGatewayTokenByClientId = async (clientId) => {
+  const auth = new GoogleAuth({
+    scopes: "https://www.googleapis.com/auth/cloud-platform"
+  });
+  const client = await auth.getIdTokenClient(clientId);
+  return await client.idTokenProvider.fetchIdToken(clientId);
+};
 export {
-  getApiGatewayToken
+  clearCache,
+  getApiGatewayTokenByClientId,
+  getApiGatewayTokenByUrl
 };

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@sebspark/gcp-iam",
-  "version": "0.4.0",
+  "version": "1.0.0",
   "license": "Apache-2.0",
   "main": "dist/index.js",
   "module": "dist/index.mjs",