@simulacrum/auth0-simulator 0.8.1 → 0.8.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (36) hide show
  1. package/CHANGELOG.md +21 -0
  2. package/README.md +2 -0
  3. package/dist/error-handling-middleware.d.ts +3 -0
  4. package/dist/error-handling-middleware.d.ts.map +1 -0
  5. package/dist/error-handling-middleware.js +34 -0
  6. package/dist/error-handling-middleware.js.map +1 -0
  7. package/dist/handlers/auth0-handlers.d.ts +1 -1
  8. package/dist/handlers/auth0-handlers.d.ts.map +1 -1
  9. package/dist/handlers/auth0-handlers.js +58 -90
  10. package/dist/handlers/auth0-handlers.js.map +1 -1
  11. package/dist/handlers/login-redirect.d.ts.map +1 -1
  12. package/dist/handlers/login-redirect.js +3 -3
  13. package/dist/handlers/login-redirect.js.map +1 -1
  14. package/dist/handlers/oauth-handlers.d.ts +36 -0
  15. package/dist/handlers/oauth-handlers.d.ts.map +1 -0
  16. package/dist/handlers/oauth-handlers.js +117 -0
  17. package/dist/handlers/oauth-handlers.js.map +1 -0
  18. package/dist/handlers/utils.d.ts +11 -0
  19. package/dist/handlers/utils.d.ts.map +1 -0
  20. package/dist/handlers/utils.js +28 -0
  21. package/dist/handlers/utils.js.map +1 -0
  22. package/dist/index.d.ts +1 -1
  23. package/dist/index.d.ts.map +1 -1
  24. package/dist/index.js +4 -1
  25. package/dist/index.js.map +1 -1
  26. package/dist/rules/types.d.ts +8 -0
  27. package/dist/rules/types.d.ts.map +1 -1
  28. package/dist/types.d.ts +29 -3
  29. package/dist/types.d.ts.map +1 -1
  30. package/dist/types.js +14 -4
  31. package/dist/types.js.map +1 -1
  32. package/dist/views/login.d.ts +3 -2
  33. package/dist/views/login.d.ts.map +1 -1
  34. package/dist/views/login.js +7 -5
  35. package/dist/views/login.js.map +1 -1
  36. package/package.json +3 -3
package/CHANGELOG.md CHANGED
@@ -1,5 +1,26 @@
1
1
  # Changelog
2
2
 
3
+ ## \[0.8.3]
4
+
5
+ - The auth0-simulator `/login/callback` is difficult to inspect. We need the `client_id` passed, but it seems safe to pass the whole `wctx` object as query strings.
6
+ - [6b18117](https://github.com/thefrontside/simulacrum/commit/6b18117093e650713fe00d5b0614ba085186db9f) /login/callback should pass all wctx ([#241](https://github.com/thefrontside/simulacrum/pull/241)) on 2022-11-30
7
+ - The auth0-simulator userData does not consider the Auth0 email verification functionality. Set it to `true` as a default to enable minimal functionality.
8
+ - [547ef7f](https://github.com/thefrontside/simulacrum/commit/547ef7f3a9f7d99023078ff18307bed2b30223af) default auth0 simulator userData email_verified to true on 2022-11-29
9
+ - The login form needs `event.preventDefault()` to allow the Auth0 library functions to run instead of default form functionality.
10
+ - [046f49f](https://github.com/thefrontside/simulacrum/commit/046f49f3603a7865f3e62c84d81851637971f97f) add event.preventDefault() to login form for submit event on 2022-11-29
11
+ - The auth0-simulator uses a logger that was refactored and broke the middleware logging. As a stopgap to the required, involved refactor, log out based on the debug flag.
12
+ - [67e2f7f](https://github.com/thefrontside/simulacrum/commit/67e2f7f18d90a2fa53f2f216291ee770aab60440) add stopgap debug in auth0-simulator ([#237](https://github.com/thefrontside/simulacrum/pull/237)) on 2022-11-30
13
+
14
+ ## \[0.8.2]
15
+
16
+ - Added specific support for the `grant_type` `client_credentials` which is required for machine-to-machine tokens. This grant_type specifically does not run the rules. The `scope` option now accepts an array of objects to specify specific scopes for specific clients.
17
+ - [4ffde63](https://github.com/thefrontside/simulacrum/commit/4ffde63842c0984f7bf5d6b3bd0f3d98ad938799) support client_credentials grant_type on 2022-11-17
18
+ - [9bb1b43](https://github.com/thefrontside/simulacrum/commit/9bb1b43bb80332e5357123550d72eef8681ae416) update change file with note about scope adjustments on 2022-11-23
19
+ - Tweaks the login form so the button is a true form submission button. This allows the form to input validate, and enables all form submission options (enter primarily the addition).
20
+ - [fa4a9e2](https://github.com/thefrontside/simulacrum/commit/fa4a9e27f72b6609419ee93d3c55b620a5feb6bc) auth0 submit as form button on 2022-11-21
21
+ - The simulator should consider the audience and client_id passed in the request. The values may be important for logic in user defined rules, and is used in validating the token, e.g. in `auth0-react`.
22
+ - [86cd7d0](https://github.com/thefrontside/simulacrum/commit/86cd7d06d5747c81d31a241726999955425a8e65) consider client_id and audience in auth0 sim request on 2022-11-16
23
+
3
24
  ## \[0.8.1]
4
25
 
5
26
  - Async rules were not properly processing and would run as a race condition mutating the `user` and `context` objects. This would mean part of the rule might be applied. This adds some additional wrappers in the rule running to properly handle and `await` on async code.
package/README.md CHANGED
@@ -229,6 +229,8 @@ let simulation = yield client.createSimulation("auth0", {
229
229
 
230
230
  The `options` field supports the [auth0 configuration fields](https://auth0.com/docs/quickstart/spa/vanillajs#configure-auth0). The option fields should match the fields in the client application that is calling the auth0 server.
231
231
 
232
+ The `scope` also accepts an array of objects containing `clientID`, `scope` and optionally `audience` to enable dynamic scopes from a single simulator. This should allow multiple clients to all use the same simulator. Additionally, setting the `clientID: "default"` will enable a default fallback scope so every client does not need to be included.
233
+
232
234
  An optional [`rulesDirectory` field](#rules) can specify a directory of [auth0 rules](https://auth0.com/docs/rules) code files, more on this [below](#rules).
233
235
 
234
236
  ### Services
package/dist/error-handling-middleware.d.ts ADDED
@@ -0,0 +1,3 @@
1
+ import type { Request, Response, NextFunction } from 'express';
2
+ export declare function defaultErrorHandler(error: Error, _req: Request, res: Response, next: NextFunction): void;
3
+ //# sourceMappingURL=error-handling-middleware.d.ts.map
package/dist/error-handling-middleware.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"error-handling-middleware.d.ts","sourceRoot":"","sources":["../src/error-handling-middleware.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAE/D,wBAAgB,mBAAmB,CAAC,KAAK,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,QA8BjG"}
package/dist/error-handling-middleware.js ADDED
@@ -0,0 +1,34 @@
1
+ "use strict";
2
+ Object.defineProperty(exports, "__esModule", { value: true });
3
+ exports.defaultErrorHandler = void 0;
4
+ function defaultErrorHandler(error, _req, res, next) {
5
+ var _a;
6
+ if (res.headersSent) {
7
+ return next(error);
8
+ }
9
+ let assertCondition = 'Assert condition failed: ';
10
+ if ((_a = error === null || error === void 0 ? void 0 : error.message) === null || _a === void 0 ? void 0 : _a.startsWith(assertCondition)) {
11
+ let errorCode = 500;
12
+ let errorResponse = error.message;
13
+ if (error.message.includes('::')) {
14
+ let errorMessage = error.message.slice(assertCondition.length);
15
+ errorCode = parseInt(errorMessage.slice(0, 3));
16
+ errorResponse = errorMessage.slice(5);
17
+ }
18
+ res.status(errorCode).send(errorResponse);
19
+ }
20
+ else {
21
+ console.error(error);
22
+ res
23
+ .status(500)
24
+ .json({
25
+ error: {
26
+ name: error.name,
27
+ message: error.message,
28
+ stack: error.stack,
29
+ },
30
+ });
31
+ }
32
+ }
33
+ exports.defaultErrorHandler = defaultErrorHandler;
34
+ //# sourceMappingURL=error-handling-middleware.js.map
package/dist/error-handling-middleware.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"error-handling-middleware.js","sourceRoot":"","sources":["../src/error-handling-middleware.ts"],"names":[],"mappings":";;;AAEA,SAAgB,mBAAmB,CAAC,KAAY,EAAE,IAAa,EAAE,GAAa,EAAE,IAAkB;;IAChG,IAAI,GAAG,CAAC,WAAW,EAAE;QACnB,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC;KACpB;IAED,IAAI,eAAe,GAAG,2BAA2B,CAAC;IAElD,IAAI,MAAA,KAAK,aAAL,KAAK,uBAAL,KAAK,CAAE,OAAO,0CAAE,UAAU,CAAC,eAAe,CAAC,EAAE;QAC/C,IAAI,SAAS,GAAG,GAAG,CAAC;QACpB,IAAI,aAAa,GAAG,KAAK,CAAC,OAAO,CAAC;QAElC,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE;YAChC,IAAI,YAAY,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;YAC/D,SAAS,GAAG,QAAQ,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;YAC/C,aAAa,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;SACvC;QAED,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;KAC3C;SAAM;QACL,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QACrB,GAAG;aACA,MAAM,CAAC,GAAG,CAAC;aACX,IAAI,CAAC;YACJ,KAAK,EAAE;gBACL,IAAI,EAAE,KAAK,CAAC,IAAI;gBAChB,OAAO,EAAE,KAAK,CAAC,OAAO;gBACtB,KAAK,EAAE,KAAK,CAAC,KAAK;aACnB;SACF,CAAC,CAAC;KACN;AACH,CAAC;AA9BD,kDA8BC"}
package/dist/handlers/auth0-handlers.d.ts CHANGED
@@ -10,5 +10,5 @@ export interface Auth0Store {
10
10
  get(nonce: string): AuthSession;
11
11
  set(nonce: string, session: AuthSession): void;
12
12
  }
13
- export declare const createAuth0Handlers: (store: Auth0Store, people: Iterable<Person>, serviceURL: () => URL, options: Auth0Configuration) => Record<Routes, RequestHandler>;
13
+ export declare const createAuth0Handlers: (store: Auth0Store, people: Iterable<Person>, serviceURL: () => URL, options: Auth0Configuration, debug: boolean) => Record<Routes, RequestHandler>;
14
14
  //# sourceMappingURL=auth0-handlers.d.ts.map
package/dist/handlers/auth0-handlers.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"auth0-handlers.d.ts","sourceRoot":"","sources":["../../src/handlers/auth0-handlers.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,KAAK,EAAsB,kBAAkB,EAA2C,MAAM,UAAU,CAAC;AAChH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AAc9C,oBAAY,MAAM,GACd,YAAY,GACZ,YAAY,GACZ,QAAQ,GACR,yBAAyB,GACzB,iBAAiB,GACjB,cAAc,GACd,YAAY,GACZ,WAAW,CAAA;AAIf,oBAAY,WAAW,GAAG;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAAC;AAE9D,MAAM,WAAW,UAAU;IACzB,GAAG,CAAC,KAAK,EAAE,MAAM,GAAG,WAAW,CAAC;IAChC,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,GAAG,IAAI,CAAC;CAChD;AAMD,eAAO,MAAM,mBAAmB,UAAW,UAAU,UAAU,SAAS,MAAM,CAAC,cAAc,MAAM,GAAG,WAAW,kBAAkB,KAAG,OAAO,MAAM,EAAE,cAAc,CA+OlK,CAAC"}
1
+ {"version":3,"file":"auth0-handlers.d.ts","sourceRoot":"","sources":["../../src/handlers/auth0-handlers.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,KAAK,EAAE,kBAAkB,EAA8B,MAAM,UAAU,CAAC;AAC/E,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AAY9C,oBAAY,MAAM,GACd,YAAY,GACZ,YAAY,GACZ,QAAQ,GACR,yBAAyB,GACzB,iBAAiB,GACjB,cAAc,GACd,YAAY,GACZ,WAAW,CAAA;AAEf,oBAAY,WAAW,GAAG;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAAC;AAE9D,MAAM,WAAW,UAAU;IACzB,GAAG,CAAC,KAAK,EAAE,MAAM,GAAG,WAAW,CAAC;IAChC,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,GAAG,IAAI,CAAC;CAChD;AAcD,eAAO,MAAM,mBAAmB,UAAW,UAAU,UAAU,SAAS,MAAM,CAAC,cAAc,MAAM,GAAG,WAAW,kBAAkB,SAAS,OAAO,KAAG,OAAO,MAAM,EAAE,cAAc,CA+LlL,CAAC"}
package/dist/handlers/auth0-handlers.js CHANGED
@@ -4,31 +4,36 @@ exports.createAuth0Handlers = void 0;
4
4
  const login_redirect_1 = require("./login-redirect");
5
5
  const web_message_1 = require("./web-message");
6
6
  const login_1 = require("../views/login");
7
+ const oauth_handlers_1 = require("./oauth-handlers");
7
8
  const assert_ts_1 = require("assert-ts");
8
9
  const querystring_1 = require("querystring");
9
10
  const base64_url_1 = require("base64-url");
10
11
  const username_password_1 = require("../views/username-password");
11
- const date_1 = require("../auth/date");
12
- const jwt_1 = require("../auth/jwt");
13
- const rules_runner_1 = require("../rules/rules-runner");
14
12
  const jsonwebtoken_1 = require("jsonwebtoken");
15
- const createPersonQuery = (people) => (predicate) => {
16
- return [...people].find(predicate);
17
- };
18
- const createAuth0Handlers = (store, people, serviceURL, options) => {
13
+ const utils_1 = require("./utils");
14
+ const createLogger = (debug) => ({
15
+ log: (...args) => {
16
+ if (!debug) {
17
+ return;
18
+ }
19
+ console.dir(...args);
20
+ }
21
+ });
22
+ const createAuth0Handlers = (store, people, serviceURL, options, debug) => {
19
23
  let { audience, scope, clientID, rulesDirectory } = options;
20
- let personQuery = createPersonQuery(people);
21
- let rulesRunner = (0, rules_runner_1.createRulesRunner)(rulesDirectory);
24
+ let personQuery = (0, utils_1.createPersonQuery)(people);
22
25
  let authorizeHandlers = {
23
26
  query: (0, login_redirect_1.createLoginRedirectHandler)(options),
24
27
  web_message: (0, web_message_1.createWebMessageHandler)()
25
28
  };
29
+ let logger = createLogger(debug);
26
30
  return {
27
31
  ['/heartbeat']: function (_, res) {
28
32
  res.status(200).json({ ok: true });
29
33
  },
30
34
  ['/authorize']: function (req, res, next) {
31
35
  var _a;
36
+ logger.log({ '/authorize': { body: req.body, query: req.query, session: req.session } });
32
37
  let currentUser = req.query.currentUser;
33
38
  (0, assert_ts_1.assert)(!!req.session, "no session");
34
39
  if (currentUser) {
@@ -43,34 +48,42 @@ const createAuth0Handlers = (store, people, serviceURL, options) => {
43
48
  handler(req, res, next);
44
49
  },
45
50
  ['/login']: function (req, res) {
46
- let { redirect_uri } = req.query;
47
- (0, assert_ts_1.assert)(!!clientID, `no clientID assigned`);
51
+ var _a, _b;
52
+ logger.log({ '/login': { body: req.body, query: req.query } });
53
+ let query = req.query;
54
+ let responseClientId = (_a = query.client_id) !== null && _a !== void 0 ? _a : clientID;
55
+ let responseAudience = (_b = query.audience) !== null && _b !== void 0 ? _b : audience;
56
+ (0, assert_ts_1.assert)(!!responseClientId, `no clientID assigned`);
48
57
  let html = (0, login_1.loginView)({
49
58
  domain: serviceURL().host,
50
59
  scope,
51
- redirectUri: redirect_uri,
52
- clientID,
53
- audience,
60
+ redirectUri: query.redirect_uri,
61
+ clientID: responseClientId,
62
+ audience: responseAudience,
54
63
  loginFailed: false
55
64
  });
56
65
  res.set("Content-Type", "text/html");
57
66
  res.status(200).send(Buffer.from(html));
58
67
  },
59
68
  ['/usernamepassword/login']: function (req, res) {
69
+ var _a, _b;
70
+ logger.log({ '/usernamepassword/login': { body: req.body, query: req.query } });
60
71
  let { username, nonce, password } = req.body;
61
72
  (0, assert_ts_1.assert)(!!username, 'no username in /usernamepassword/login');
62
73
  (0, assert_ts_1.assert)(!!nonce, 'no nonce in /usernamepassword/login');
63
74
  (0, assert_ts_1.assert)(!!req.session, "no session");
64
75
  let user = personQuery((person) => { var _a; return ((_a = person.email) === null || _a === void 0 ? void 0 : _a.toLowerCase()) === username.toLowerCase() && person.password === password; });
65
76
  if (!user) {
66
- let { redirect_uri } = req.query;
77
+ let query = req.query;
78
+ let responseClientId = (_a = query.client_id) !== null && _a !== void 0 ? _a : clientID;
79
+ let responseAudience = (_b = query.audience) !== null && _b !== void 0 ? _b : audience;
67
80
  (0, assert_ts_1.assert)(!!clientID, `no clientID assigned`);
68
81
  let html = (0, login_1.loginView)({
69
82
  domain: serviceURL().host,
70
83
  scope,
71
- redirectUri: redirect_uri,
72
- clientID,
73
- audience,
84
+ redirectUri: query.redirect_uri,
85
+ clientID: responseClientId,
86
+ audience: responseAudience,
74
87
  loginFailed: true
75
88
  });
76
89
  res.set("Content-Type", "text/html");
@@ -83,85 +96,40 @@ const createAuth0Handlers = (store, people, serviceURL, options) => {
83
96
  },
84
97
  ['/login/callback']: function (req, res) {
85
98
  let wctx = JSON.parse(req.body.wctx);
86
- let { redirect_uri, state, nonce } = wctx;
99
+ logger.log({ '/login/callback': { body: req.body, query: req.query, wctx } });
100
+ let { redirect_uri, nonce } = wctx;
87
101
  let { username } = store.get(nonce);
88
102
  let encodedNonce = (0, base64_url_1.encode)(`${nonce}:${username}`);
89
- let qs = (0, querystring_1.stringify)({ code: encodedNonce, state, nonce });
103
+ let qs = (0, querystring_1.stringify)({ code: encodedNonce, ...wctx });
90
104
  let routerUrl = `${redirect_uri}?${qs}`;
91
105
  res.status(302).redirect(routerUrl);
92
106
  },
93
- ['/oauth/token']: async function (req, res) {
94
- var _a, _b, _c, _d, _e, _f;
95
- let { code, grant_type } = req.body;
96
- let user;
97
- let nonce;
98
- let username;
99
- let password;
100
- if (grant_type === 'password') {
101
- username = req.body.username;
102
- password = req.body.password;
103
- }
104
- else {
105
- (0, assert_ts_1.assert)(typeof code !== 'undefined', 'no code in /oauth/token');
106
- [nonce, username] = (0, base64_url_1.decode)(code).split(":");
107
- }
108
- if (!username) {
109
- res.status(400).send(`no nonce in store for ${code}`);
110
- return;
111
- }
112
- user = personQuery((person) => {
113
- (0, assert_ts_1.assert)(!!person.email, `no email defined on person scenario`);
114
- let valid = person.email.toLowerCase() === username.toLowerCase();
115
- if (typeof password === 'undefined') {
116
- return valid;
117
- }
118
- else {
119
- return valid && password === person.password;
120
- }
121
- });
122
- if (!user) {
123
- res.status(401).send('Unauthorized');
124
- return;
107
+ ['/oauth/token']: async function (req, res, next) {
108
+ var _a, _b, _c, _d;
109
+ logger.log({ '/oauth/token': { body: req.body, query: req.query } });
110
+ try {
111
+ let iss = serviceURL().toString();
112
+ let responseClientId = (_b = (_a = req === null || req === void 0 ? void 0 : req.body) === null || _a === void 0 ? void 0 : _a.client_id) !== null && _b !== void 0 ? _b : clientID;
113
+ let responseAudience = (_d = (_c = req === null || req === void 0 ? void 0 : req.body) === null || _c === void 0 ? void 0 : _c.audience) !== null && _d !== void 0 ? _d : audience;
114
+ (0, assert_ts_1.assert)(!!responseClientId, '500::no clientID in options or request body');
115
+ let tokens = await (0, oauth_handlers_1.createTokens)({
116
+ body: req.body,
117
+ iss,
118
+ clientID: responseClientId,
119
+ audience: responseAudience,
120
+ rulesDirectory,
121
+ people,
122
+ scope
123
+ });
124
+ res.status(200).json({
125
+ ...tokens,
126
+ expires_in: 86400,
127
+ token_type: "Bearer",
128
+ });
125
129
  }
126
- (0, assert_ts_1.assert)(!!clientID, 'no clientID in options');
127
- let idTokenData = {
128
- alg: "RS256",
129
- typ: "JWT",
130
- iss: serviceURL().toString(),
131
- exp: (0, date_1.expiresAt)(),
132
- iat: (0, date_1.epochTime)(),
133
- email: username,
134
- aud: clientID,
135
- sub: user.id,
136
- };
137
- if (typeof nonce !== 'undefined') {
138
- idTokenData.nonce = nonce;
130
+ catch (error) {
131
+ next(error);
139
132
  }
140
- let userData = {
141
- name: (_a = req === null || req === void 0 ? void 0 : req.body) === null || _a === void 0 ? void 0 : _a.name,
142
- email: (_b = req === null || req === void 0 ? void 0 : req.body) === null || _b === void 0 ? void 0 : _b.email,
143
- user_id: (_c = req === null || req === void 0 ? void 0 : req.body) === null || _c === void 0 ? void 0 : _c.id,
144
- nickname: (_d = req === null || req === void 0 ? void 0 : req.body) === null || _d === void 0 ? void 0 : _d.nickname,
145
- picture: (_e = req === null || req === void 0 ? void 0 : req.body) === null || _e === void 0 ? void 0 : _e.picture,
146
- identities: (_f = req === null || req === void 0 ? void 0 : req.body) === null || _f === void 0 ? void 0 : _f.identities,
147
- };
148
- let context = { clientID, accessToken: { scope }, idToken: idTokenData };
149
- await rulesRunner(userData, context);
150
- let idToken = (0, jwt_1.createJsonWebToken)({ ...userData, ...context.idToken });
151
- let accessToken = {
152
- aud: audience,
153
- sub: idTokenData.sub,
154
- iat: (0, date_1.epochTime)(),
155
- iss: idTokenData.iss,
156
- exp: idTokenData.exp,
157
- ...context.accessToken
158
- };
159
- res.status(200).json({
160
- access_token: (0, jwt_1.createJsonWebToken)(accessToken),
161
- id_token: idToken,
162
- expires_in: 86400,
163
- token_type: "Bearer",
164
- });
165
133
  },
166
134
  ['/v2/logout']: function (req, res) {
167
135
  var _a;
package/dist/handlers/auth0-handlers.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"auth0-handlers.js","sourceRoot":"","sources":["../../src/handlers/auth0-handlers.ts"],"names":[],"mappings":";;;AAGA,qDAA8D;AAC9D,+CAAwD;AACxD,0CAA2C;AAC3C,yCAAmC;AACnC,6CAAwC;AACxC,2CAA4C;AAC5C,kEAAkE;AAClE,uCAAoD;AACpD,qCAAiD;AACjD,wDAA0D;AAE1D,+CAAqD;AAqBrD,MAAM,iBAAiB,GAAG,CAAC,MAAwB,EAAE,EAAE,CAAC,CAAC,SAA4B,EAAE,EAAE;IACvF,OAAO,CAAC,GAAG,MAAM,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;AACrC,CAAC,CAAC;AAEK,MAAM,mBAAmB,GAAG,CAAC,KAAiB,EAAE,MAAwB,EAAE,UAAqB,EAAE,OAA2B,EAAkC,EAAE;IACrK,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,cAAc,EAAE,GAAG,OAAO,CAAC;IAC5D,IAAI,WAAW,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;IAC5C,IAAI,WAAW,GAAG,IAAA,gCAAiB,EAAC,cAAc,CAAC,CAAC;IAEpD,IAAI,iBAAiB,GAA0C;QAC7D,KAAK,EAAE,IAAA,2CAA0B,EAAC,OAAO,CAAC;QAC1C,WAAW,EAAE,IAAA,qCAAuB,GAAE;KACvC,CAAC;IAGF,OAAO;QACL,CAAC,YAAY,CAAC,EAAE,UAAU,CAAC,EAAE,GAAG;YAC9B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;QACrC,CAAC;QAED,CAAC,YAAY,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG,EAAE,IAAI;;YACrC,IAAI,WAAW,GAAG,GAAG,CAAC,KAAK,CAAC,WAAiC,CAAC;YAE9D,IAAA,kBAAM,EAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;YAEpC,IAAG,WAAW,EAAE;gBACd,iCAAiC;gBACjC,+BAA+B;gBAC/B,iCAAiC;gBACjC,GAAG,CAAC,OAAO,CAAC,QAAQ,GAAG,WAAW,CAAC;aACpC;YAED,IAAI,YAAY,GAAG,CAAC,MAAA,GAAG,CAAC,KAAK,CAAC,aAAa,mCAAI,OAAO,CAAkB,CAAC;YAEzE,IAAA,kBAAM,EAAC,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,yBAAyB,YAAY,EAAE,CAAC,CAAC;YAEjG,IAAI,OAAO,GAAG,iBAAiB,CAAC,YAAY,CAAC,CAAC;YAE9C,OAAO,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,CAAC,CAAC;QAC1B,CAAC;QAED,CAAC,QAAQ,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG;YAC3B,IAAI,EAAE,YAAY,EAAE,GAAG,GAAG,CAAC,KAAoB,CAAC;YAEhD,IAAA,kBAAM,EAAC,CAAC,CAAC,QAAQ,EAAE,sBAAsB,CAAC,CAAC;YAE3C,IAAI,IAAI,GAAG,IAAA,iBAAS,EAAC;gBACnB,MAAM,EAAE,UAAU,EAAE,CAAC,IAAI;gBACzB,KAAK;gBACL,WAAW,EAAE,YAAY;gBACzB,QAAQ;gBACR,QAAQ;gBACR,WAAW,EAAE,KAAK;aACnB,CAAC,CAAC;YAEH,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,CAAC;YAErC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAC1C,CAAC;QAED,CAAC,yBAAyB,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG;YAC5C,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;YAE7C,IAAA,kBAAM,EAAC,CAAC,CAAC,QAAQ,EAAE,wCAAwC,CAAC,CAAC;YAC7D,IAAA,kBAAM,EAAC,CAAC,CAAC,KAAK,EAAE,qCAAqC,CAAC,CAAC;YACvD,IAAA,kBAAM,EAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;YAEpC,IAAI,IAAI,GAAG,WAAW,CAAC,CAAC,MAAM,EAAE,EAAE,WAAC,OAAA,CAAA,MAAA,MAAM,CAAC,KAAK,0CAAE,WAAW,EAAE,MAAK,QAAQ,CAAC,WAAW,EAAE,IAAI,MAAM,CAAC,QAAQ,KAAK,QAAQ,CAAA,EAAA,CAAC,CAAC;YAE3H,IAAG,CAAC,IAAI,EAAE;gBACR,IAAI,EAAE,YAAY,EAAE,GAAG,GAAG,CAAC,KAAoB,CAAC;gBAEhD,IAAA,kBAAM,EAAC,CAAC,CAAC,QAAQ,EAAE,sBAAsB,CAAC,CAAC;gBAE3C,IAAI,IAAI,GAAG,IAAA,iBAAS,EAAC;oBACnB,MAAM,EAAE,UAAU,EAAE,CAAC,IAAI;oBACzB,KAAK;oBACL,WAAW,EAAE,YAAY;oBACzB,QAAQ;oBACR,QAAQ;oBACR,WAAW,EAAE,IAAI;iBAClB,CAAC,CAAC;gBAEH,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,CAAC;gBAErC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBAC3B,OAAO;aACR;YAED,GAAG,CAAC,OAAO,CAAC,QAAQ,GAAG,QAAQ,CAAC;YAEhC,KAAK,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,CAAC;YAEtC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAA,wCAAoB,EAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;QACvD,CAAC;QAED,CAAC,iBAAiB,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG;YACpC,IAAI,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAErC,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC;YAE1C,IAAI,EAAE,QAAQ,EAAE,GAAG,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;YAEpC,IAAI,YAAY,GAAG,IAAA,mBAAM,EAAC,GAAG,KAAK,IAAI,QAAQ,EAAE,CAAC,CAAC;YAElD,IAAI,EAAE,GAAG,IAAA,uBAAS,EAAC,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;YAEzD,IAAI,SAAS,GAAG,GAAG,YAAY,IAAI,EAAE,EAAE,CAAC;YAExC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;QACtC,CAAC;QAED,CAAC,cAAc,CAAC,EAAE,KAAK,WAAW,GAAG,EAAE,GAAG;;YACxC,IAAI,EAAE,IAAI,EAAE,UAAU,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;YAEpC,IAAI,IAAwB,CAAC;YAC7B,IAAI,KAAyB,CAAC;YAC9B,IAAI,QAAgB,CAAC;YACrB,IAAI,QAA4B,CAAC;YAEjC,IAAI,UAAU,KAAK,UAAU,EAAE;gBAC7B,QAAQ,GAAG,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC;gBAC7B,QAAQ,GAAG,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC;aAC9B;iBAAM;gBACL,IAAA,kBAAM,EAAC,OAAO,IAAI,KAAK,WAAW,EAAE,yBAAyB,CAAC,CAAC;gBAE/D,CAAC,KAAK,EAAE,QAAQ,CAAC,GAAG,IAAA,mBAAM,EAAC,IAAI,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;aAC7C;YAED,IAAI,CAAC,QAAQ,EAAE;gBACb,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,yBAAyB,IAAI,EAAE,CAAC,CAAC;gBACtD,OAAO;aACR;YAED,IAAI,GAAG,WAAW,CAAC,CAAC,MAAM,EAAE,EAAE;gBAC5B,IAAA,kBAAM,EAAC,CAAC,CAAC,MAAM,CAAC,KAAK,EAAE,qCAAqC,CAAC,CAAC;gBAE9D,IAAI,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,WAAW,EAAE,KAAK,QAAQ,CAAC,WAAW,EAAE,CAAC;gBAElE,IAAG,OAAO,QAAQ,KAAK,WAAW,EAAE;oBAClC,OAAO,KAAK,CAAC;iBACd;qBAAM;oBACL,OAAO,KAAK,IAAI,QAAQ,KAAK,MAAM,CAAC,QAAQ,CAAC;iBAC9C;YACH,CAAC,CAAC,CAAC;YAEH,IAAG,CAAC,IAAI,EAAE;gBACR,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;gBACrC,OAAO;aACR;YAED,IAAA,kBAAM,EAAC,CAAC,CAAC,QAAQ,EAAE,wBAAwB,CAAC,CAAC;YAE7C,IAAI,WAAW,GAAgB;gBAC7B,GAAG,EAAE,OAAO;gBACZ,GAAG,EAAE,KAAK;gBACV,GAAG,EAAE,UAAU,EAAE,CAAC,QAAQ,EAAE;gBAC5B,GAAG,EAAE,IAAA,gBAAS,GAAE;gBAChB,GAAG,EAAE,IAAA,gBAAS,GAAE;gBAChB,KAAK,EAAE,QAAQ;gBACf,GAAG,EAAE,QAAQ;gBACb,GAAG,EAAE,IAAI,CAAC,EAAE;aACb,CAAC;YAEF,IAAG,OAAO,KAAK,KAAK,WAAW,EAAE;gBAC/B,WAAW,CAAC,KAAK,GAAG,KAAK,CAAC;aAC3B;YAED,IAAI,QAAQ,GAAG;gBACb,IAAI,EAAE,MAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,IAAI,0CAAE,IAAI;gBACrB,KAAK,EAAE,MAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,IAAI,0CAAE,KAAK;gBACvB,OAAO,EAAE,MAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,IAAI,0CAAE,EAAE;gBACtB,QAAQ,EAAE,MAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,IAAI,0CAAE,QAAQ;gBAC7B,OAAO,EAAE,MAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,IAAI,0CAAE,OAAO;gBAC3B,UAAU,EAAE,MAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,IAAI,0CAAE,UAAU;aACtB,CAAC;YACd,IAAI,OAAO,GAAG,EAAE,QAAQ,EAAE,WAAW,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC;YAEzE,MAAM,WAAW,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YAErC,IAAI,OAAO,GAAG,IAAA,wBAAkB,EAAC,EAAE,GAAG,QAAQ,EAAE,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;YAEtE,IAAI,WAAW,GAAuB;gBACpC,GAAG,EAAE,QAAQ;gBACb,GAAG,EAAE,WAAW,CAAC,GAAG;gBACpB,GAAG,EAAE,IAAA,gBAAS,GAAE;gBAChB,GAAG,EAAE,WAAW,CAAC,GAAG;gBACpB,GAAG,EAAE,WAAW,CAAC,GAAG;gBACpB,GAAG,OAAO,CAAC,WAAW;aACvB,CAAC;YAEF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,YAAY,EAAE,IAAA,wBAAkB,EAAC,WAAW,CAAC;gBAC7C,QAAQ,EAAE,OAAO;gBACjB,UAAU,EAAE,KAAK;gBACjB,UAAU,EAAE,QAAQ;aACrB,CAAC,CAAC;QACL,CAAC;QAED,CAAC,YAAY,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG;;YAC/B,GAAG,CAAC,OAAO,GAAG,IAAI,CAAC;YAEnB,IAAI,WAAW,GAAG,MAAA,GAAG,CAAC,KAAK,CAAC,QAAQ,mCAAI,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC;YAE5D,IAAA,kBAAM,EAAC,OAAO,WAAW,KAAK,QAAQ,EAAE,yBAAyB,CAAC,CAAC;YAEnE,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAC5B,CAAC;QAED,CAAC,WAAW,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG;;YAC9B,IAAI,KAAK,GAAG,IAAI,CAAC;YACjB,IAAI,GAAG,CAAC,OAAO,CAAC,aAAa,EAAE;gBAC7B,IAAI,mBAAmB,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC;gBACpD,KAAK,GAAG,MAAA,mBAAmB,aAAnB,mBAAmB,uBAAnB,mBAAmB,CAAE,KAAK,CAAC,GAAG,CAAC,0CAAG,CAAC,CAAC,CAAC;aAC9C;iBAAM;gBACL,KAAK,GAAG,MAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,KAAK,0CAAE,YAAsB,CAAC;aAC5C;YAED,IAAA,kBAAM,EAAC,CAAC,CAAC,KAAK,EAAE,yCAAyC,CAAC,CAAC;YAC3D,IAAI,EAAE,GAAG,EAAE,GAAG,IAAA,qBAAW,EAAC,KAAK,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,CAAoB,CAAC;YAEpE,IAAI,IAAI,GAAG,WAAW,CAAC,CAAC,MAAM,EAAE,EAAE;gBAChC,IAAA,kBAAM,EAAC,CAAC,CAAC,MAAM,CAAC,EAAE,EAAE,qCAAqC,CAAC,CAAC;gBAE3D,OAAO,MAAM,CAAC,EAAE,KAAK,GAAG,CAAC;YAC3B,CAAC,CAAC,CAAC;YAEH,IAAA,kBAAM,EAAC,CAAC,CAAC,IAAI,EAAE,sBAAsB,CAAC,CAAC;YAEvC,IAAI,QAAQ,GAAG;gBACb,GAAG;gBACH,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,UAAU,EAAE,IAAI,CAAC,IAAI;gBACrB,WAAW,EAAE,IAAI,CAAC,IAAI;gBACtB,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,cAAc,EAAE,IAAI;gBACpB,MAAM,EAAE,IAAI;gBACZ,EAAE,EAAE,UAAU;aACf,CAAC;YAEF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACjC,CAAC;KACF,CAAC;AACJ,CAAC,CAAC;AA/OW,QAAA,mBAAmB,uBA+O9B"}
1
+ {"version":3,"file":"auth0-handlers.js","sourceRoot":"","sources":["../../src/handlers/auth0-handlers.ts"],"names":[],"mappings":";;;AAGA,qDAA8D;AAC9D,+CAAwD;AACxD,0CAA2C;AAC3C,qDAAgD;AAChD,yCAAmC;AACnC,6CAAwC;AACxC,2CAAoC;AACpC,kEAAkE;AAClE,+CAAqD;AACrD,mCAA4C;AAqB5C,MAAM,YAAY,GAAG,CAAC,KAAc,EAAE,EAAE,CAAC,CAAC;IACxC,GAAG,EAAE,CAAC,GAAG,IAAgB,EAAQ,EAAE;QACjC,IAAI,CAAC,KAAK,EAAE;YACV,OAAO;SACR;QAED,OAAO,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC;IACvB,CAAC;CACF,CAAC,CAAC;AAEI,MAAM,mBAAmB,GAAG,CAAC,KAAiB,EAAE,MAAwB,EAAE,UAAqB,EAAE,OAA2B,EAAE,KAAc,EAAkC,EAAE;IACrL,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,cAAc,EAAE,GAAG,OAAO,CAAC;IAC5D,IAAI,WAAW,GAAG,IAAA,yBAAiB,EAAC,MAAM,CAAC,CAAC;IAE5C,IAAI,iBAAiB,GAA0C;QAC7D,KAAK,EAAE,IAAA,2CAA0B,EAAC,OAAO,CAAC;QAC1C,WAAW,EAAE,IAAA,qCAAuB,GAAE;KACvC,CAAC;IAEF,IAAI,MAAM,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC;IAEjC,OAAO;QACL,CAAC,YAAY,CAAC,EAAE,UAAU,CAAC,EAAE,GAAG;YAC9B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;QACrC,CAAC;QAED,CAAC,YAAY,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG,EAAE,IAAI;;YACrC,MAAM,CAAC,GAAG,CAAC,EAAE,YAAY,EAAE,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,OAAO,EAAE,GAAG,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;YACzF,IAAI,WAAW,GAAG,GAAG,CAAC,KAAK,CAAC,WAAiC,CAAC;YAE9D,IAAA,kBAAM,EAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;YAEpC,IAAG,WAAW,EAAE;gBACd,iCAAiC;gBACjC,+BAA+B;gBAC/B,iCAAiC;gBACjC,GAAG,CAAC,OAAO,CAAC,QAAQ,GAAG,WAAW,CAAC;aACpC;YAED,IAAI,YAAY,GAAG,CAAC,MAAA,GAAG,CAAC,KAAK,CAAC,aAAa,mCAAI,OAAO,CAAkB,CAAC;YAEzE,IAAA,kBAAM,EAAC,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,yBAAyB,YAAY,EAAE,CAAC,CAAC;YAEjG,IAAI,OAAO,GAAG,iBAAiB,CAAC,YAAY,CAAC,CAAC;YAE9C,OAAO,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,CAAC,CAAC;QAC1B,CAAC;QAED,CAAC,QAAQ,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG;;YAC3B,MAAM,CAAC,GAAG,CAAC,EAAE,QAAQ,EAAE,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YAC/D,IAAI,KAAK,GAAG,GAAG,CAAC,KAAoB,CAAC;YACrC,IAAI,gBAAgB,GAAG,MAAA,KAAK,CAAC,SAAS,mCAAI,QAAQ,CAAC;YACnD,IAAI,gBAAgB,GAAG,MAAA,KAAK,CAAC,QAAQ,mCAAI,QAAQ,CAAC;YAClD,IAAA,kBAAM,EAAC,CAAC,CAAC,gBAAgB,EAAE,sBAAsB,CAAC,CAAC;YAEnD,IAAI,IAAI,GAAG,IAAA,iBAAS,EAAC;gBACnB,MAAM,EAAE,UAAU,EAAE,CAAC,IAAI;gBACzB,KAAK;gBACL,WAAW,EAAE,KAAK,CAAC,YAAY;gBAC/B,QAAQ,EAAE,gBAAgB;gBAC1B,QAAQ,EAAE,gBAAgB;gBAC1B,WAAW,EAAE,KAAK;aACnB,CAAC,CAAC;YAEH,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,CAAC;YAErC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAC1C,CAAC;QAED,CAAC,yBAAyB,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG;;YAC5C,MAAM,CAAC,GAAG,CAAC,EAAE,yBAAyB,EAAE,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YAChF,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;YAE7C,IAAA,kBAAM,EAAC,CAAC,CAAC,QAAQ,EAAE,wCAAwC,CAAC,CAAC;YAC7D,IAAA,kBAAM,EAAC,CAAC,CAAC,KAAK,EAAE,qCAAqC,CAAC,CAAC;YACvD,IAAA,kBAAM,EAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;YAEpC,IAAI,IAAI,GAAG,WAAW,CAAC,CAAC,MAAM,EAAE,EAAE,WAAC,OAAA,CAAA,MAAA,MAAM,CAAC,KAAK,0CAAE,WAAW,EAAE,MAAK,QAAQ,CAAC,WAAW,EAAE,IAAI,MAAM,CAAC,QAAQ,KAAK,QAAQ,CAAA,EAAA,CAAC,CAAC;YAE3H,IAAG,CAAC,IAAI,EAAE;gBACR,IAAI,KAAK,GAAG,GAAG,CAAC,KAAoB,CAAC;gBACrC,IAAI,gBAAgB,GAAG,MAAA,KAAK,CAAC,SAAS,mCAAI,QAAQ,CAAC;gBACnD,IAAI,gBAAgB,GAAG,MAAA,KAAK,CAAC,QAAQ,mCAAI,QAAQ,CAAC;gBAElD,IAAA,kBAAM,EAAC,CAAC,CAAC,QAAQ,EAAE,sBAAsB,CAAC,CAAC;gBAE3C,IAAI,IAAI,GAAG,IAAA,iBAAS,EAAC;oBACnB,MAAM,EAAE,UAAU,EAAE,CAAC,IAAI;oBACzB,KAAK;oBACL,WAAW,EAAE,KAAK,CAAC,YAAY;oBAC/B,QAAQ,EAAE,gBAAgB;oBAC1B,QAAQ,EAAE,gBAAgB;oBAC1B,WAAW,EAAE,IAAI;iBAClB,CAAC,CAAC;gBAEH,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,WAAW,CAAC,CAAC;gBAErC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBAC3B,OAAO;aACR;YAED,GAAG,CAAC,OAAO,CAAC,QAAQ,GAAG,QAAQ,CAAC;YAEhC,KAAK,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,CAAC;YAEtC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAA,wCAAoB,EAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;QACvD,CAAC;QAED,CAAC,iBAAiB,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG;YACpC,IAAI,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACrC,MAAM,CAAC,GAAG,CAAC,EAAE,iBAAiB,EAAE,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC;YAE9E,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC;YAEnC,IAAI,EAAE,QAAQ,EAAE,GAAG,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;YAEpC,IAAI,YAAY,GAAG,IAAA,mBAAM,EAAC,GAAG,KAAK,IAAI,QAAQ,EAAE,CAAC,CAAC;YAElD,IAAI,EAAE,GAAG,IAAA,uBAAS,EAAC,EAAE,IAAI,EAAE,YAAY,EAAE,GAAG,IAAI,EAAE,CAAC,CAAC;YAEpD,IAAI,SAAS,GAAG,GAAG,YAAY,IAAI,EAAE,EAAE,CAAC;YAExC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;QACtC,CAAC;QAED,CAAC,cAAc,CAAC,EAAE,KAAK,WAAW,GAAG,EAAE,GAAG,EAAE,IAAI;;YAC9C,MAAM,CAAC,GAAG,CAAC,EAAE,cAAc,EAAE,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YACrE,IAAI;gBACF,IAAI,GAAG,GAAG,UAAU,EAAE,CAAC,QAAQ,EAAE,CAAC;gBAElC,IAAI,gBAAgB,GAClB,MAAC,MAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,IAAI,0CAAE,SAAoB,mCAAI,QAAQ,CAAC;gBAC/C,IAAI,gBAAgB,GAClB,MAAC,MAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,IAAI,0CAAE,QAAmB,mCAAI,QAAQ,CAAC;gBAE9C,IAAA,kBAAM,EAAC,CAAC,CAAC,gBAAgB,EAAE,6CAA6C,CAAC,CAAC;gBAE1E,IAAI,MAAM,GAAG,MAAM,IAAA,6BAAY,EAAC;oBAC9B,IAAI,EAAE,GAAG,CAAC,IAAI;oBACd,GAAG;oBACH,QAAQ,EAAE,gBAAgB;oBAC1B,QAAQ,EAAE,gBAAgB;oBAC1B,cAAc;oBACd,MAAM;oBACN,KAAK;iBACN,CAAC,CAAC;gBAEH,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACnB,GAAG,MAAM;oBACT,UAAU,EAAE,KAAK;oBACjB,UAAU,EAAE,QAAQ;iBACrB,CAAC,CAAC;aACJ;YAAC,OAAO,KAAK,EAAE;gBACd,IAAI,CAAC,KAAK,CAAC,CAAC;aACb;QACH,CAAC;QAED,CAAC,YAAY,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG;;YAC/B,GAAG,CAAC,OAAO,GAAG,IAAI,CAAC;YAEnB,IAAI,WAAW,GAAG,MAAA,GAAG,CAAC,KAAK,CAAC,QAAQ,mCAAI,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC;YAE5D,IAAA,kBAAM,EAAC,OAAO,WAAW,KAAK,QAAQ,EAAE,yBAAyB,CAAC,CAAC;YAEnE,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAC5B,CAAC;QAED,CAAC,WAAW,CAAC,EAAE,UAAS,GAAG,EAAE,GAAG;;YAC9B,IAAI,KAAK,GAAG,IAAI,CAAC;YACjB,IAAI,GAAG,CAAC,OAAO,CAAC,aAAa,EAAE;gBAC7B,IAAI,mBAAmB,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC;gBACpD,KAAK,GAAG,MAAA,mBAAmB,aAAnB,mBAAmB,uBAAnB,mBAAmB,CAAE,KAAK,CAAC,GAAG,CAAC,0CAAG,CAAC,CAAC,CAAC;aAC9C;iBAAM;gBACL,KAAK,GAAG,MAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,KAAK,0CAAE,YAAsB,CAAC;aAC5C;YAED,IAAA,kBAAM,EAAC,CAAC,CAAC,KAAK,EAAE,yCAAyC,CAAC,CAAC;YAC3D,IAAI,EAAE,GAAG,EAAE,GAAG,IAAA,qBAAW,EAAC,KAAK,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,CAAoB,CAAC;YAEpE,IAAI,IAAI,GAAG,WAAW,CAAC,CAAC,MAAM,EAAE,EAAE;gBAChC,IAAA,kBAAM,EAAC,CAAC,CAAC,MAAM,CAAC,EAAE,EAAE,qCAAqC,CAAC,CAAC;gBAE3D,OAAO,MAAM,CAAC,EAAE,KAAK,GAAG,CAAC;YAC3B,CAAC,CAAC,CAAC;YAEH,IAAA,kBAAM,EAAC,CAAC,CAAC,IAAI,EAAE,sBAAsB,CAAC,CAAC;YAEvC,IAAI,QAAQ,GAAG;gBACb,GAAG;gBACH,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,UAAU,EAAE,IAAI,CAAC,IAAI;gBACrB,WAAW,EAAE,IAAI,CAAC,IAAI;gBACtB,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,cAAc,EAAE,IAAI;gBACpB,MAAM,EAAE,IAAI;gBACZ,EAAE,EAAE,UAAU;aACf,CAAC;YAEF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACjC,CAAC;KACF,CAAC;AACJ,CAAC,CAAC;AA/LW,QAAA,mBAAmB,uBA+L9B"}
package/dist/handlers/login-redirect.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"login-redirect.d.ts","sourceRoot":"","sources":["../../src/handlers/login-redirect.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAqB,cAAc,EAAE,MAAM,SAAS,CAAC;AACjE,OAAO,KAAK,EAAE,kBAAkB,EAAe,MAAM,UAAU,CAAC;AAGhE,eAAO,MAAM,0BAA0B,YAAa,kBAAkB,KAAG,cA+BtE,CAAC"}
1
+ {"version":3,"file":"login-redirect.d.ts","sourceRoot":"","sources":["../../src/handlers/login-redirect.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAqB,cAAc,EAAE,MAAM,SAAS,CAAC;AACjE,OAAO,KAAK,EAAE,kBAAkB,EAAe,MAAM,UAAU,CAAC;AAGhE,eAAO,MAAM,0BAA0B,YAAa,kBAAkB,KAAG,cAgCtE,CAAC"}
package/dist/handlers/login-redirect.js CHANGED
@@ -3,11 +3,11 @@ Object.defineProperty(exports, "__esModule", { value: true });
3
3
  exports.createLoginRedirectHandler = void 0;
4
4
  const querystring_1 = require("querystring");
5
5
  const createLoginRedirectHandler = (options) => function loginRedirect(req, res) {
6
- let { client_id, redirect_uri, scope, state, nonce, response_mode, code_challenge, code_challenge_method, auth0Client, response_type, } = req.query;
6
+ let { client_id, audience, redirect_uri, scope, state, nonce, response_mode, code_challenge, code_challenge_method, auth0Client, response_type, } = req.query;
7
7
  res.status(302).redirect(`/login?${(0, querystring_1.stringify)({
8
8
  state,
9
9
  redirect_uri,
10
- client: client_id,
10
+ client: client_id || options.clientID,
11
11
  protocol: "oauth2",
12
12
  scope,
13
13
  response_type,
@@ -16,7 +16,7 @@ const createLoginRedirectHandler = (options) => function loginRedirect(req, res)
16
16
  code_challenge,
17
17
  code_challenge_method,
18
18
  auth0Client,
19
- audience: options.audience,
19
+ audience: audience || options.audience,
20
20
  })}`);
21
21
  };
22
22
  exports.createLoginRedirectHandler = createLoginRedirectHandler;
package/dist/handlers/login-redirect.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"login-redirect.js","sourceRoot":"","sources":["../../src/handlers/login-redirect.ts"],"names":[],"mappings":";;;AAEA,6CAAwC;AAEjC,MAAM,0BAA0B,GAAG,CAAC,OAA2B,EAAkB,EAAE,CACxF,SAAS,aAAa,CAAE,GAAY,EAAE,GAAa;IACjD,IAAI,EACF,SAAS,EACT,YAAY,EACZ,KAAK,EACL,KAAK,EACL,KAAK,EACL,aAAa,EACb,cAAc,EACd,qBAAqB,EACrB,WAAW,EACX,aAAa,GACd,GAAG,GAAG,CAAC,KAAoB,CAAC;IAE7B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,QAAQ,CACtB,UAAU,IAAA,uBAAS,EAAC;QAClB,KAAK;QACL,YAAY;QACZ,MAAM,EAAE,SAAS;QACjB,QAAQ,EAAE,QAAQ;QAClB,KAAK;QACL,aAAa;QACb,aAAa;QACb,KAAK;QACL,cAAc;QACd,qBAAqB;QACrB,WAAW;QACX,QAAQ,EAAE,OAAO,CAAC,QAAQ;KAC3B,CAAC,EAAE,CACL,CAAC;AACJ,CAAC,CAAC;AA/BS,QAAA,0BAA0B,8BA+BnC"}
1
+ {"version":3,"file":"login-redirect.js","sourceRoot":"","sources":["../../src/handlers/login-redirect.ts"],"names":[],"mappings":";;;AAEA,6CAAwC;AAEjC,MAAM,0BAA0B,GAAG,CAAC,OAA2B,EAAkB,EAAE,CACxF,SAAS,aAAa,CAAE,GAAY,EAAE,GAAa;IACjD,IAAI,EACF,SAAS,EACT,QAAQ,EACR,YAAY,EACZ,KAAK,EACL,KAAK,EACL,KAAK,EACL,aAAa,EACb,cAAc,EACd,qBAAqB,EACrB,WAAW,EACX,aAAa,GACd,GAAG,GAAG,CAAC,KAAoB,CAAC;IAE7B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,QAAQ,CACtB,UAAU,IAAA,uBAAS,EAAC;QAClB,KAAK;QACL,YAAY;QACZ,MAAM,EAAE,SAAS,IAAI,OAAO,CAAC,QAAQ;QACrC,QAAQ,EAAE,QAAQ;QAClB,KAAK;QACL,aAAa;QACb,aAAa;QACb,KAAK;QACL,cAAc;QACd,qBAAqB;QACrB,WAAW;QACX,QAAQ,EAAE,QAAQ,IAAI,OAAO,CAAC,QAAQ;KACvC,CAAC,EAAE,CACL,CAAC;AACJ,CAAC,CAAC;AAhCS,QAAA,0BAA0B,8BAgCnC"}
package/dist/handlers/oauth-handlers.d.ts ADDED
@@ -0,0 +1,36 @@
1
+ import type { Request } from 'express';
2
+ import type { Person } from '@simulacrum/server';
3
+ import type { RuleUser } from '../rules/types';
4
+ import type { ScopeConfig, AccessTokenPayload, IdTokenData } from '../types';
5
+ export declare const createTokens: ({ body, iss, clientID, audience, rulesDirectory, people, scope: scopeConfig, }: {
6
+ body: Request['body'];
7
+ iss: string;
8
+ clientID: string;
9
+ audience: string;
10
+ rulesDirectory: string | undefined;
11
+ people: Iterable<Person>;
12
+ scope: ScopeConfig;
13
+ }) => Promise<{
14
+ access_token: string;
15
+ id_token?: undefined;
16
+ } | {
17
+ access_token: string;
18
+ id_token: string;
19
+ }>;
20
+ export declare const getIdToken: ({ body, iss, user, clientID, nonce, }: {
21
+ body: Request['body'];
22
+ iss: string;
23
+ user: Person;
24
+ clientID: string;
25
+ nonce: string | undefined;
26
+ }) => {
27
+ userData: RuleUser;
28
+ idTokenData: IdTokenData;
29
+ };
30
+ export declare const getBaseAccessToken: ({ iss, grant_type, scope, audience, }: {
31
+ iss: string;
32
+ grant_type: string;
33
+ scope: string;
34
+ audience: string;
35
+ }) => Partial<AccessTokenPayload>;
36
+ //# sourceMappingURL=oauth-handlers.d.ts.map
package/dist/handlers/oauth-handlers.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"oauth-handlers.d.ts","sourceRoot":"","sources":["../../src/handlers/oauth-handlers.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,KAAK,EAAe,QAAQ,EAAE,MAAM,gBAAgB,CAAC;AAC5D,OAAO,KAAK,EACV,WAAW,EACX,kBAAkB,EAElB,WAAW,EACZ,MAAM,UAAU,CAAC;AAElB,eAAO,MAAM,YAAY;UASjB,OAAO,CAAC,MAAM,CAAC;SAChB,MAAM;cACD,MAAM;cACN,MAAM;oBACA,MAAM,GAAG,SAAS;YAC1B,SAAS,MAAM,CAAC;WACjB,WAAW;;;;;;;EA2CnB,CAAC;AAEF,eAAO,MAAM,UAAU;UAOf,OAAO,CAAC,MAAM,CAAC;SAChB,MAAM;UACL,MAAM;cACF,MAAM;WACT,MAAM,GAAG,SAAS;;;;CA6B1B,CAAC;AAEF,eAAO,MAAM,kBAAkB;SAMxB,MAAM;gBACC,MAAM;WACX,MAAM;cACH,MAAM;MACd,QAAQ,kBAAkB,CAO5B,CAAC"}
package/dist/handlers/oauth-handlers.js ADDED
@@ -0,0 +1,117 @@
1
+ "use strict";
2
+ Object.defineProperty(exports, "__esModule", { value: true });
3
+ exports.getBaseAccessToken = exports.getIdToken = exports.createTokens = void 0;
4
+ const assert_ts_1 = require("assert-ts");
5
+ const base64_url_1 = require("base64-url");
6
+ const date_1 = require("../auth/date");
7
+ const jwt_1 = require("../auth/jwt");
8
+ const rules_runner_1 = require("../rules/rules-runner");
9
+ const utils_1 = require("./utils");
10
+ const createTokens = async ({ body, iss, clientID, audience, rulesDirectory, people, scope: scopeConfig, }) => {
11
+ let { grant_type } = body;
12
+ let scope = (0, utils_1.deriveScope)({ scopeConfig, clientID, audience });
13
+ let accessToken = (0, exports.getBaseAccessToken)({ iss, grant_type, scope, audience });
14
+ if (grant_type === 'client_credentials') {
15
+ return { access_token: (0, jwt_1.createJsonWebToken)(accessToken) };
16
+ }
17
+ else {
18
+ let { user, nonce } = verifyUserExistsInStore({
19
+ people,
20
+ body,
21
+ grant_type,
22
+ });
23
+ let { idTokenData, userData } = (0, exports.getIdToken)({
24
+ body,
25
+ iss,
26
+ user,
27
+ clientID,
28
+ nonce,
29
+ });
30
+ let context = {
31
+ clientID,
32
+ accessToken: { scope, sub: idTokenData.sub },
33
+ idToken: idTokenData,
34
+ };
35
+ let rulesRunner = (0, rules_runner_1.createRulesRunner)(rulesDirectory);
36
+ // the rules mutate the values
37
+ await rulesRunner(userData, context);
38
+ return {
39
+ access_token: (0, jwt_1.createJsonWebToken)({
40
+ ...accessToken,
41
+ ...context.accessToken,
42
+ }),
43
+ id_token: (0, jwt_1.createJsonWebToken)({
44
+ ...userData,
45
+ ...context.idToken,
46
+ }),
47
+ };
48
+ }
49
+ };
50
+ exports.createTokens = createTokens;
51
+ const getIdToken = ({ body, iss, user, clientID, nonce, }) => {
52
+ let userData = {
53
+ name: body === null || body === void 0 ? void 0 : body.name,
54
+ email: body === null || body === void 0 ? void 0 : body.email,
55
+ email_verified: true,
56
+ user_id: body === null || body === void 0 ? void 0 : body.id,
57
+ nickname: body === null || body === void 0 ? void 0 : body.nickname,
58
+ picture: body === null || body === void 0 ? void 0 : body.picture,
59
+ identities: body === null || body === void 0 ? void 0 : body.identities,
60
+ };
61
+ (0, assert_ts_1.assert)(!!user.email, '500::User in store requires an email');
62
+ let idTokenData = {
63
+ alg: 'RS256',
64
+ typ: 'JWT',
65
+ iss,
66
+ exp: (0, date_1.expiresAt)(),
67
+ iat: (0, date_1.epochTime)(),
68
+ email: user.email,
69
+ aud: clientID,
70
+ sub: user.id,
71
+ };
72
+ if (typeof nonce !== 'undefined') {
73
+ idTokenData.nonce = nonce;
74
+ }
75
+ return { userData, idTokenData };
76
+ };
77
+ exports.getIdToken = getIdToken;
78
+ const getBaseAccessToken = ({ iss, grant_type, scope, audience, }) => ({
79
+ iss,
80
+ exp: (0, date_1.expiresAt)(),
81
+ iat: (0, date_1.epochTime)(),
82
+ aud: audience,
83
+ gty: grant_type,
84
+ scope,
85
+ });
86
+ exports.getBaseAccessToken = getBaseAccessToken;
87
+ const verifyUserExistsInStore = ({ people, body, grant_type, }) => {
88
+ let { code } = body;
89
+ let personQuery = (0, utils_1.createPersonQuery)(people);
90
+ let nonce;
91
+ let username;
92
+ let password;
93
+ if (grant_type === 'password') {
94
+ username = body.username;
95
+ password = body.password;
96
+ }
97
+ else {
98
+ // specifically grant_type === 'authorization_code'
99
+ // but naively using it to handle other cases at the moment
100
+ (0, assert_ts_1.assert)(typeof code !== 'undefined', '400::no code in /oauth/token');
101
+ [nonce, username] = (0, base64_url_1.decode)(code).split(':');
102
+ }
103
+ (0, assert_ts_1.assert)(!!username, `400::no nonce in store for ${code}`);
104
+ let user = personQuery((person) => {
105
+ (0, assert_ts_1.assert)(!!person.email, `500::no email defined on person scenario`);
106
+ let valid = person.email.toLowerCase() === username.toLowerCase();
107
+ if (typeof password === 'undefined') {
108
+ return valid;
109
+ }
110
+ else {
111
+ return valid && password === person.password;
112
+ }
113
+ });
114
+ (0, assert_ts_1.assert)(!!user, '401::Unauthorized');
115
+ return { user, nonce };
116
+ };
117
+ //# sourceMappingURL=oauth-handlers.js.map
package/dist/handlers/oauth-handlers.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"oauth-handlers.js","sourceRoot":"","sources":["../../src/handlers/oauth-handlers.ts"],"names":[],"mappings":";;;AAAA,yCAAmC;AACnC,2CAAoD;AACpD,uCAAoD;AACpD,qCAAiD;AACjD,wDAA0D;AAC1D,mCAAyD;AAYlD,MAAM,YAAY,GAAG,KAAK,EAAE,EACjC,IAAI,EACJ,GAAG,EACH,QAAQ,EACR,QAAQ,EACR,cAAc,EACd,MAAM,EACN,KAAK,EAAE,WAAW,GASnB,EAAE,EAAE;IACH,IAAI,EAAE,UAAU,EAAE,GAA8B,IAAI,CAAC;IACrD,IAAI,KAAK,GAAG,IAAA,mBAAW,EAAC,EAAE,WAAW,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC,CAAC;IAE7D,IAAI,WAAW,GAAG,IAAA,0BAAkB,EAAC,EAAE,GAAG,EAAE,UAAU,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC;IAC3E,IAAI,UAAU,KAAK,oBAAoB,EAAE;QACvC,OAAO,EAAE,YAAY,EAAE,IAAA,wBAAkB,EAAC,WAAW,CAAC,EAAE,CAAC;KAC1D;SAAM;QACL,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,uBAAuB,CAAC;YAC5C,MAAM;YACN,IAAI;YACJ,UAAU;SACX,CAAC,CAAC;QACH,IAAI,EAAE,WAAW,EAAE,QAAQ,EAAE,GAAG,IAAA,kBAAU,EAAC;YACzC,IAAI;YACJ,GAAG;YACH,IAAI;YACJ,QAAQ;YACR,KAAK;SACN,CAAC,CAAC;QAEH,IAAI,OAAO,GAA0D;YACnE,QAAQ;YACR,WAAW,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,WAAW,CAAC,GAAG,EAAE;YAC5C,OAAO,EAAE,WAAW;SACrB,CAAC;QAEF,IAAI,WAAW,GAAG,IAAA,gCAAiB,EAAC,cAAc,CAAC,CAAC;QACpD,8BAA8B;QAC9B,MAAM,WAAW,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAErC,OAAO;YACL,YAAY,EAAE,IAAA,wBAAkB,EAAC;gBAC/B,GAAG,WAAW;gBACd,GAAG,OAAO,CAAC,WAAW;aACvB,CAAC;YACF,QAAQ,EAAE,IAAA,wBAAkB,EAAC;gBAC3B,GAAG,QAAQ;gBACX,GAAG,OAAO,CAAC,OAAO;aACnB,CAAC;SACH,CAAC;KACH;AACH,CAAC,CAAC;AA1DW,QAAA,YAAY,gBA0DvB;AAEK,MAAM,UAAU,GAAG,CAAC,EACzB,IAAI,EACJ,GAAG,EACH,IAAI,EACJ,QAAQ,EACR,KAAK,GAON,EAAE,EAAE;IACH,IAAI,QAAQ,GAAa;QACvB,IAAI,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,IAAI;QAChB,KAAK,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,KAAK;QAClB,cAAc,EAAE,IAAI;QACpB,OAAO,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,EAAE;QACjB,QAAQ,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,QAAQ;QACxB,OAAO,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,OAAO;QACtB,UAAU,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,UAAU;KAC7B,CAAC;IAEF,IAAA,kBAAM,EAAC,CAAC,CAAC,IAAI,CAAC,KAAK,EAAE,sCAAsC,CAAC,CAAC;IAC7D,IAAI,WAAW,GAAgB;QAC7B,GAAG,EAAE,OAAO;QACZ,GAAG,EAAE,KAAK;QACV,GAAG;QACH,GAAG,EAAE,IAAA,gBAAS,GAAE;QAChB,GAAG,EAAE,IAAA,gBAAS,GAAE;QAChB,KAAK,EAAE,IAAI,CAAC,KAAK;QACjB,GAAG,EAAE,QAAQ;QACb,GAAG,EAAE,IAAI,CAAC,EAAE;KACb,CAAC;IAEF,IAAI,OAAO,KAAK,KAAK,WAAW,EAAE;QAChC,WAAW,CAAC,KAAK,GAAG,KAAK,CAAC;KAC3B;IAED,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,CAAC;AACnC,CAAC,CAAC;AAxCW,QAAA,UAAU,cAwCrB;AAEK,MAAM,kBAAkB,GAAG,CAAC,EACjC,GAAG,EACH,UAAU,EACV,KAAK,EACL,QAAQ,GAMT,EAA+B,EAAE,CAAC,CAAC;IAClC,GAAG;IACH,GAAG,EAAE,IAAA,gBAAS,GAAE;IAChB,GAAG,EAAE,IAAA,gBAAS,GAAE;IAChB,GAAG,EAAE,QAAQ;IACb,GAAG,EAAE,UAAU;IACf,KAAK;CACN,CAAC,CAAC;AAjBU,QAAA,kBAAkB,sBAiB5B;AAEH,MAAM,uBAAuB,GAAG,CAAC,EAC/B,MAAM,EACN,IAAI,EACJ,UAAU,GAKX,EAAE,EAAE;IACH,IAAI,EAAE,IAAI,EAAE,GAAG,IAAI,CAAC;IACpB,IAAI,WAAW,GAAG,IAAA,yBAAiB,EAAC,MAAM,CAAC,CAAC;IAC5C,IAAI,KAAyB,CAAC;IAC9B,IAAI,QAAgB,CAAC;IACrB,IAAI,QAA4B,CAAC;IAEjC,IAAI,UAAU,KAAK,UAAU,EAAE;QAC7B,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC;QACzB,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC;KAC1B;SAAM;QACL,mDAAmD;QACnD,2DAA2D;QAC3D,IAAA,kBAAM,EAAC,OAAO,IAAI,KAAK,WAAW,EAAE,8BAA8B,CAAC,CAAC;QACpE,CAAC,KAAK,EAAE,QAAQ,CAAC,GAAG,IAAA,mBAAY,EAAC,IAAI,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;KACnD;IAED,IAAA,kBAAM,EAAC,CAAC,CAAC,QAAQ,EAAE,8BAA8B,IAAI,EAAE,CAAC,CAAC;IAEzD,IAAI,IAAI,GAAuB,WAAW,CAAC,CAAC,MAAM,EAAE,EAAE;QACpD,IAAA,kBAAM,EAAC,CAAC,CAAC,MAAM,CAAC,KAAK,EAAE,0CAA0C,CAAC,CAAC;QAEnE,IAAI,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,WAAW,EAAE,KAAK,QAAQ,CAAC,WAAW,EAAE,CAAC;QAElE,IAAI,OAAO,QAAQ,KAAK,WAAW,EAAE;YACnC,OAAO,KAAK,CAAC;SACd;aAAM;YACL,OAAO,KAAK,IAAI,QAAQ,KAAK,MAAM,CAAC,QAAQ,CAAC;SAC9C;IACH,CAAC,CAAC,CAAC;IAEH,IAAA,kBAAM,EAAC,CAAC,CAAC,IAAI,EAAE,mBAAmB,CAAC,CAAC;IAEpC,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC;AACzB,CAAC,CAAC"}
package/dist/handlers/utils.d.ts ADDED
@@ -0,0 +1,11 @@
1
+ import type { Person } from '@simulacrum/server';
2
+ import type { ScopeConfig } from '../types';
3
+ declare type Predicate<T> = (this: void, value: T, index: number, obj: T[]) => boolean;
4
+ export declare const createPersonQuery: (people: Iterable<Person>) => (predicate: Predicate<Person>) => Person | undefined;
5
+ export declare const deriveScope: ({ scopeConfig, clientID, audience, }: {
6
+ scopeConfig: ScopeConfig;
7
+ clientID: string;
8
+ audience: string;
9
+ }) => string;
10
+ export {};
11
+ //# sourceMappingURL=utils.d.ts.map
package/dist/handlers/utils.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../src/handlers/utils.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AAE5C,aAAK,SAAS,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,EAAE,KAAK,OAAO,CAAC;AAE/E,eAAO,MAAM,iBAAiB,WACnB,SAAS,MAAM,CAAC,iBAAiB,UAAU,MAAM,CAAC,uBAE1D,CAAC;AAEJ,eAAO,MAAM,WAAW;iBAKT,WAAW;cACd,MAAM;cACN,MAAM;YAwCjB,CAAC"}
package/dist/handlers/utils.js ADDED
@@ -0,0 +1,28 @@
1
+ "use strict";
2
+ Object.defineProperty(exports, "__esModule", { value: true });
3
+ exports.deriveScope = exports.createPersonQuery = void 0;
4
+ const assert_ts_1 = require("assert-ts");
5
+ const createPersonQuery = (people) => (predicate) => {
6
+ return [...people].find(predicate);
7
+ };
8
+ exports.createPersonQuery = createPersonQuery;
9
+ const deriveScope = ({ scopeConfig, clientID, audience, }) => {
10
+ if (typeof scopeConfig === 'string')
11
+ return scopeConfig;
12
+ let defaultScope = scopeConfig.find((application) => application.clientID === 'default');
13
+ (0, assert_ts_1.assert)(!!clientID, `500::Did not have a clientID to derive the scope`);
14
+ let application = scopeConfig.find((application) => application.clientID === clientID &&
15
+ (application.audience ? application.audience === audience : true));
16
+ if (!application) {
17
+ let ignoreAudience = scopeConfig.find((application) => application.clientID === clientID);
18
+ (0, assert_ts_1.assert)(ignoreAudience === undefined, `500::Found application matching clientID, ${ignoreAudience === null || ignoreAudience === void 0 ? void 0 : ignoreAudience.clientID}, but incorrect audience, configured: ${ignoreAudience === null || ignoreAudience === void 0 ? void 0 : ignoreAudience.audience} :: passed: ${audience}`);
19
+ }
20
+ if (!application && defaultScope) {
21
+ application = defaultScope;
22
+ }
23
+ (0, assert_ts_1.assert)(!!application, `500::Could not find application with clientID: ${clientID}`);
24
+ (0, assert_ts_1.assert)(!!application.scope, `500::${application.clientID} is expected to have a scope`);
25
+ return application.scope;
26
+ };
27
+ exports.deriveScope = deriveScope;
28
+ //# sourceMappingURL=utils.js.map
package/dist/handlers/utils.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"utils.js","sourceRoot":"","sources":["../../src/handlers/utils.ts"],"names":[],"mappings":";;;AAAA,yCAAmC;AAM5B,MAAM,iBAAiB,GAC5B,CAAC,MAAwB,EAAE,EAAE,CAAC,CAAC,SAA4B,EAAE,EAAE;IAC7D,OAAO,CAAC,GAAG,MAAM,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;AACrC,CAAC,CAAC;AAHS,QAAA,iBAAiB,qBAG1B;AAEG,MAAM,WAAW,GAAG,CAAC,EAC1B,WAAW,EACX,QAAQ,EACR,QAAQ,GAKT,EAAE,EAAE;IACH,IAAI,OAAO,WAAW,KAAK,QAAQ;QAAE,OAAO,WAAW,CAAC;IACxD,IAAI,YAAY,GAAG,WAAW,CAAC,IAAI,CACjC,CAAC,WAAW,EAAE,EAAE,CAAC,WAAW,CAAC,QAAQ,KAAK,SAAS,CACpD,CAAC;IAEF,IAAA,kBAAM,EAAC,CAAC,CAAC,QAAQ,EAAE,kDAAkD,CAAC,CAAC;IAEvE,IAAI,WAAW,GAAG,WAAW,CAAC,IAAI,CAChC,CAAC,WAAW,EAAE,EAAE,CACd,WAAW,CAAC,QAAQ,KAAK,QAAQ;QACjC,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC,CAAC,WAAW,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CACpE,CAAC;IAEF,IAAI,CAAC,WAAW,EAAE;QAChB,IAAI,cAAc,GAAG,WAAW,CAAC,IAAI,CACnC,CAAC,WAAW,EAAE,EAAE,CAAC,WAAW,CAAC,QAAQ,KAAK,QAAQ,CACnD,CAAC;QACF,IAAA,kBAAM,EACJ,cAAc,KAAK,SAAS,EAC5B,6CAA6C,cAAc,aAAd,cAAc,uBAAd,cAAc,CAAE,QAAQ,yCAAyC,cAAc,aAAd,cAAc,uBAAd,cAAc,CAAE,QAAQ,eAAe,QAAQ,EAAE,CAChK,CAAC;KACH;IAED,IAAI,CAAC,WAAW,IAAI,YAAY,EAAE;QAChC,WAAW,GAAG,YAAY,CAAC;KAC5B;IAED,IAAA,kBAAM,EACJ,CAAC,CAAC,WAAW,EACb,kDAAkD,QAAQ,EAAE,CAC7D,CAAC;IAEF,IAAA,kBAAM,EACJ,CAAC,CAAC,WAAW,CAAC,KAAK,EACnB,QAAQ,WAAW,CAAC,QAAQ,8BAA8B,CAC3D,CAAC;IAEF,OAAO,WAAW,CAAC,KAAK,CAAC;AAC3B,CAAC,CAAC;AA/CW,QAAA,WAAW,eA+CtB"}
package/dist/index.d.ts CHANGED
@@ -1,5 +1,5 @@
1
1
  import type { Person, Simulator } from '@simulacrum/server';
2
- import { Operation } from 'effection';
2
+ import type { Operation } from 'effection';
3
3
  import type { Auth0Store } from './handlers/auth0-handlers';
4
4
  import type { Auth0Configuration } from './types';
5
5
  export { getConfig } from './config/get-config';
package/dist/index.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAA2B,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAErF,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAItC,OAAO,KAAK,EAAE,UAAU,EAAe,MAAM,2BAA2B,CAAC;AAOzE,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,SAAS,CAAC;AAElD,OAAO,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAC;AAIhD,MAAM,WAAW,MAAM;IACrB,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,kBAAkB,CAAC;IAC3B,KAAK,EAAE,UAAU,CAAC;IAClB,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;IACzB,UAAU,EAAE,MAAM,GAAG,CAAC;IACtB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AA4CD,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,kBAAkB,GAAG,SAAS,CAAC,MAAM,CAAC,CAsChF;AAED,eAAO,MAAM,KAAK,EAAE,SAanB,CAAC"}
1
+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAA2B,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAErF,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAK3C,OAAO,KAAK,EAAE,UAAU,EAAe,MAAM,2BAA2B,CAAC;AAOzE,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,SAAS,CAAC;AAElD,OAAO,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAC;AAIhD,MAAM,WAAW,MAAM;IACrB,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,kBAAkB,CAAC;IAC3B,KAAK,EAAE,UAAU,CAAC;IAClB,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;IACzB,UAAU,EAAE,MAAM,GAAG,CAAC;IACtB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AA4CD,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,kBAAkB,GAAG,SAAS,CAAC,MAAM,CAAC,CAyChF;AAED,eAAO,MAAM,KAAK,EAAE,SAanB,CAAC"}
package/dist/index.js CHANGED
@@ -27,6 +27,7 @@ const server_1 = require("@simulacrum/server");
27
27
  const express_1 = __importStar(require("express"));
28
28
  const path_1 = __importDefault(require("path"));
29
29
  const get_config_1 = require("./config/get-config");
30
+ const error_handling_middleware_1 = require("./error-handling-middleware");
30
31
  const auth0_handlers_1 = require("./handlers/auth0-handlers");
31
32
  const get_service_url_1 = require("./handlers/get-service-url");
32
33
  const openid_handlers_1 = require("./handlers/openid-handlers");
@@ -74,7 +75,7 @@ const createAuth0Service = (slice, options) => ({
74
75
  });
75
76
  function createAuth0Server(options) {
76
77
  let { config, serviceURL, store, people, port, debug = true } = options;
77
- let auth0 = (0, auth0_handlers_1.createAuth0Handlers)(store, people, serviceURL, config);
78
+ let auth0 = (0, auth0_handlers_1.createAuth0Handlers)(store, people, serviceURL, config, debug);
78
79
  let openid = (0, openid_handlers_1.createOpenIdHandlers)(serviceURL);
79
80
  return {
80
81
  name: 'Auth0Server',
@@ -100,6 +101,8 @@ function createAuth0Server(options) {
100
101
  if (debug) {
101
102
  app.use(server_1.consoleLogger);
102
103
  }
104
+ // needs to be the last middleware added
105
+ app.use(error_handling_middleware_1.defaultErrorHandler);
103
106
  let server = yield (0, server_1.createServer)(app, { protocol: 'https', port });
104
107
  return {
105
108
  port: server.address.port
package/dist/index.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;AACA,+CAAyE;AAEzE,mDAAoD;AACpD,gDAAwB;AACxB,oDAAgD;AAEhD,8DAAgE;AAChE,gEAA2D;AAC3D,gEAAkE;AAClE,0DAAsD;AACtD,oDAAgD;AAChD,kDAAqD;AAGrD,kDAAgD;AAAvC,uGAAA,SAAS,OAAA;AAElB,MAAM,SAAS,GAAG,cAAI,CAAC,IAAI,CAAC,SAAS,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC;AAe1D,MAAM,kBAAkB,GAA2B,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE,CAAC,CAAC;IACtE,IAAI,EAAE,cAAc;IACpB,CAAC,IAAI;QACH,IAAI,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,CAAC;QACzC,IAAI,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC;QACvB,IAAI,MAAM,GAAG,IAAA,sBAAS,EAAC,KAAK,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC;QAEtE,IAAI,UAAU,GAAG,GAAG,EAAE,CAAC,IAAA,+BAAa,EAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC;QAElD,IAAI,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACrD,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAEnB,IAAI,KAAK,GAAe;YACtB,GAAG,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,UAAU,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,GAAG,EAAiB;YAC5D,GAAG,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;SAC9D,CAAC;QAEF,IAAI,MAAM,GAAqB;YAC7B,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC;;gBAChB,IAAI,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,MAAA,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,mCAAI,EAAE,CAAC,CAAC;gBAC7E,KAAK,IAAI,MAAM,IAAI,MAAM,EAAE;oBACzB,MAAM,MAAgB,CAAC;iBACxB;YACH,CAAC;SACF,CAAC;QAEF,IAAI,MAAM,GAAW,MAAM,iBAAiB,CAAC;YAC3C,KAAK;YACL,MAAM;YACN,KAAK;YACL,UAAU;YACV,MAAM;YACN,IAAI;SACL,CAAC,CAAC;QAEH,OAAO;YACL,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,QAAQ,EAAE,OAAO;SAClB,CAAC;IACJ,CAAC;CACF,CAAC,CAAC;AAEH,SAAgB,iBAAiB,CAAC,OAA2B;IAC3D,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,GAAG,IAAI,EAAE,GAAG,OAAO,CAAC;IACxE,IAAI,KAAK,GAAG,IAAA,oCAAmB,EAAC,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC,CAAC;IACnE,IAAI,MAAM,GAAG,IAAA,sCAAoB,EAAC,UAAU,CAAC,CAAC;IAE9C,OAAO;QACL,IAAI,EAAE,aAAa;QACnB,CAAC,IAAI;YACH,IAAI,GAAG,GAAG,IAAA,iBAAO,GAAE;iBAChB,GAAG,CAAC,iBAAO,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;iBAC9B,GAAG,CAAC,IAAA,uBAAa,GAAE,CAAC;iBACpB,GAAG,CAAC,IAAA,wBAAU,GAAE,CAAC;iBACjB,GAAG,CAAC,IAAA,kBAAO,GAAE,CAAC;iBACd,GAAG,CAAC,IAAA,cAAI,GAAE,CAAC;iBACX,GAAG,CAAC,IAAA,oBAAU,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;iBACnC,GAAG,CAAC,YAAY,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;iBACtC,GAAG,CAAC,YAAY,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;iBACtC,GAAG,CAAC,QAAQ,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAC;iBAC9B,GAAG,CAAC,UAAU,EAAE,KAAK,CAAC,yBAAyB,CAAC,CAAC;iBACjD,IAAI,CAAC,yBAAyB,EAAE,KAAK,CAAC,yBAAyB,CAAC,CAAC;iBACjE,IAAI,CAAC,iBAAiB,EAAE,KAAK,CAAC,iBAAiB,CAAC,CAAC;iBACjD,IAAI,CAAC,cAAc,EAAE,KAAK,CAAC,cAAc,CAAC,CAAC;iBAC3C,GAAG,CAAC,WAAW,EAAE,KAAK,CAAC,WAAW,CAAC,CAAC;iBACpC,GAAG,CAAC,YAAY,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;iBACtC,GAAG,CAAC,wBAAwB,EAAE,MAAM,CAAC,wBAAwB,CAAC,CAAC;iBAC/D,GAAG,CAAC,mCAAmC,EAAE,MAAM,CAAC,mCAAmC,CAAC,CAAC,CAAC;YAEzF,IAAI,KAAK,EAAE;gBACT,GAAG,CAAC,GAAG,CAAC,sBAAa,CAAC,CAAC;aACxB;YAED,IAAI,MAAM,GAAG,MAAM,IAAA,qBAAY,EAAC,GAAG,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;YAElE,OAAO;gBACL,IAAI,EAAE,MAAM,CAAC,OAAO,CAAC,IAAI;aAC1B,CAAC;QACJ,CAAC;KACF,CAAC;AACJ,CAAC;AAtCD,8CAsCC;AAEM,MAAM,KAAK,GAAc,GAAG,EAAE;IACnC,OAAO;QACL,QAAQ,EAAE,EAAE,KAAK,EAAE,kBAAkB,EAAE;QACvC,SAAS,EAAE;YACT;;;;;eAKG;YACH,MAAM,EAAN,eAAM;SACP;KACF,CAAC;AACJ,CAAC,CAAC;AAbW,QAAA,KAAK,SAahB"}
1
+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;AACA,+CAAyE;AAEzE,mDAAoD;AACpD,gDAAwB;AACxB,oDAAgD;AAChD,2EAAkE;AAElE,8DAAgE;AAChE,gEAA2D;AAC3D,gEAAkE;AAClE,0DAAsD;AACtD,oDAAgD;AAChD,kDAAqD;AAGrD,kDAAgD;AAAvC,uGAAA,SAAS,OAAA;AAElB,MAAM,SAAS,GAAG,cAAI,CAAC,IAAI,CAAC,SAAS,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC;AAe1D,MAAM,kBAAkB,GAA2B,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE,CAAC,CAAC;IACtE,IAAI,EAAE,cAAc;IACpB,CAAC,IAAI;QACH,IAAI,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,CAAC;QACzC,IAAI,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC;QACvB,IAAI,MAAM,GAAG,IAAA,sBAAS,EAAC,KAAK,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC;QAEtE,IAAI,UAAU,GAAG,GAAG,EAAE,CAAC,IAAA,+BAAa,EAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC;QAElD,IAAI,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACrD,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAEnB,IAAI,KAAK,GAAe;YACtB,GAAG,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,UAAU,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,GAAG,EAAiB;YAC5D,GAAG,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;SAC9D,CAAC;QAEF,IAAI,MAAM,GAAqB;YAC7B,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC;;gBAChB,IAAI,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,MAAA,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,mCAAI,EAAE,CAAC,CAAC;gBAC7E,KAAK,IAAI,MAAM,IAAI,MAAM,EAAE;oBACzB,MAAM,MAAgB,CAAC;iBACxB;YACH,CAAC;SACF,CAAC;QAEF,IAAI,MAAM,GAAW,MAAM,iBAAiB,CAAC;YAC3C,KAAK;YACL,MAAM;YACN,KAAK;YACL,UAAU;YACV,MAAM;YACN,IAAI;SACL,CAAC,CAAC;QAEH,OAAO;YACL,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,QAAQ,EAAE,OAAO;SAClB,CAAC;IACJ,CAAC;CACF,CAAC,CAAC;AAEH,SAAgB,iBAAiB,CAAC,OAA2B;IAC3D,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,GAAG,IAAI,EAAE,GAAG,OAAO,CAAC;IACxE,IAAI,KAAK,GAAG,IAAA,oCAAmB,EAAC,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,KAAK,CAAC,CAAC;IAC1E,IAAI,MAAM,GAAG,IAAA,sCAAoB,EAAC,UAAU,CAAC,CAAC;IAE9C,OAAO;QACL,IAAI,EAAE,aAAa;QACnB,CAAC,IAAI;YACH,IAAI,GAAG,GAAG,IAAA,iBAAO,GAAE;iBAChB,GAAG,CAAC,iBAAO,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;iBAC9B,GAAG,CAAC,IAAA,uBAAa,GAAE,CAAC;iBACpB,GAAG,CAAC,IAAA,wBAAU,GAAE,CAAC;iBACjB,GAAG,CAAC,IAAA,kBAAO,GAAE,CAAC;iBACd,GAAG,CAAC,IAAA,cAAI,GAAE,CAAC;iBACX,GAAG,CAAC,IAAA,oBAAU,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;iBACnC,GAAG,CAAC,YAAY,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;iBACtC,GAAG,CAAC,YAAY,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;iBACtC,GAAG,CAAC,QAAQ,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAC;iBAC9B,GAAG,CAAC,UAAU,EAAE,KAAK,CAAC,yBAAyB,CAAC,CAAC;iBACjD,IAAI,CAAC,yBAAyB,EAAE,KAAK,CAAC,yBAAyB,CAAC,CAAC;iBACjE,IAAI,CAAC,iBAAiB,EAAE,KAAK,CAAC,iBAAiB,CAAC,CAAC;iBACjD,IAAI,CAAC,cAAc,EAAE,KAAK,CAAC,cAAc,CAAC,CAAC;iBAC3C,GAAG,CAAC,WAAW,EAAE,KAAK,CAAC,WAAW,CAAC,CAAC;iBACpC,GAAG,CAAC,YAAY,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;iBACtC,GAAG,CAAC,wBAAwB,EAAE,MAAM,CAAC,wBAAwB,CAAC,CAAC;iBAC/D,GAAG,CAAC,mCAAmC,EAAE,MAAM,CAAC,mCAAmC,CAAC,CAAC,CAAC;YAEzF,IAAI,KAAK,EAAE;gBACT,GAAG,CAAC,GAAG,CAAC,sBAAa,CAAC,CAAC;aACxB;YAED,wCAAwC;YACxC,GAAG,CAAC,GAAG,CAAC,+CAAmB,CAAC,CAAC;YAE7B,IAAI,MAAM,GAAG,MAAM,IAAA,qBAAY,EAAC,GAAG,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;YAElE,OAAO;gBACL,IAAI,EAAE,MAAM,CAAC,OAAO,CAAC,IAAI;aAC1B,CAAC;QACJ,CAAC;KACF,CAAC;AACJ,CAAC;AAzCD,8CAyCC;AAEM,MAAM,KAAK,GAAc,GAAG,EAAE;IACnC,OAAO;QACL,QAAQ,EAAE,EAAE,KAAK,EAAE,kBAAkB,EAAE;QACvC,SAAS,EAAE;YACT;;;;;eAKG;YACH,MAAM,EAAN,eAAM;SACP;KACF,CAAC;AACJ,CAAC,CAAC;AAbW,QAAA,KAAK,SAahB"}
package/dist/rules/types.d.ts CHANGED
@@ -13,7 +13,14 @@ export interface RuleUser {
13
13
  given_name?: string | undefined;
14
14
  family_name?: string | undefined;
15
15
  name?: string | undefined;
16
+ identities: IdentityProvider[] | undefined;
16
17
  }
18
+ declare type IdentityProvider = {
19
+ provider: string;
20
+ user_id: string;
21
+ connection: string;
22
+ isSocial: boolean;
23
+ };
17
24
  export interface RuleContext<A, I> {
18
25
  clientID: string;
19
26
  accessToken: {
@@ -25,4 +32,5 @@ export interface Rule {
25
32
  code: string;
26
33
  filename: string;
27
34
  }
35
+ export {};
28
36
  //# sourceMappingURL=types.d.ts.map
package/dist/rules/types.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/rules/types.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,QAAQ;IACvB,KAAK,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC3B,QAAQ,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC9B,cAAc,CAAC,EAAE,OAAO,GAAG,SAAS,CAAC;IACrC,YAAY,CAAC,EAAE,OAAO,GAAG,SAAS,CAAC;IACnC,OAAO,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC7B,OAAO,CAAC,EAAE,OAAO,GAAG,SAAS,CAAC;IAC9B,QAAQ,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC9B,OAAO,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC7B,QAAQ,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC9B,YAAY,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAClC,cAAc,CAAC,EAAE,OAAO,GAAG,SAAS,CAAC;IACrC,UAAU,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAChC,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IACjC,IAAI,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;CAC3B;AAED,MAAM,WAAW,WAAW,CAAC,CAAC,EAAE,CAAC;IAC/B,QAAQ,EAAE,MAAM,CAAA;IAChB,WAAW,EAAE;QACX,KAAK,EAAE,MAAM,GAAG,MAAM,EAAE,CAAA;KACzB,GAAG,CAAC,CAAA;IAEL,OAAO,EAAE,CAAC,CAAA;CACX;AAED,MAAM,WAAW,IAAI;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;CAClB"}
1
+ {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/rules/types.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,QAAQ;IACvB,KAAK,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC3B,QAAQ,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC9B,cAAc,CAAC,EAAE,OAAO,GAAG,SAAS,CAAC;IACrC,YAAY,CAAC,EAAE,OAAO,GAAG,SAAS,CAAC;IACnC,OAAO,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC7B,OAAO,CAAC,EAAE,OAAO,GAAG,SAAS,CAAC;IAC9B,QAAQ,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC9B,OAAO,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC7B,QAAQ,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC9B,YAAY,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAClC,cAAc,CAAC,EAAE,OAAO,GAAG,SAAS,CAAC;IACrC,UAAU,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAChC,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IACjC,IAAI,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAC1B,UAAU,EAAE,gBAAgB,EAAE,GAAG,SAAS,CAAC;CAC5C;AAED,aAAK,gBAAgB,GAAG;IACtB,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,OAAO,CAAC;CACnB,CAAC;AAEF,MAAM,WAAW,WAAW,CAAC,CAAC,EAAE,CAAC;IAC/B,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE;QACX,KAAK,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;KAC1B,GAAG,CAAC,CAAC;IAEN,OAAO,EAAE,CAAC,CAAC;CACZ;AAED,MAAM,WAAW,IAAI;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;CAClB"}
package/dist/types.d.ts CHANGED
@@ -4,7 +4,19 @@ export declare const configurationSchema: z.ZodObject<{
4
4
  domain: z.ZodOptional<z.ZodString>;
5
5
  audience: z.ZodOptional<z.ZodString>;
6
6
  clientID: z.ZodOptional<z.ZodString>;
7
- scope: z.ZodString;
7
+ scope: z.ZodUnion<[z.ZodString, z.ZodArray<z.ZodObject<{
8
+ clientID: z.ZodString;
9
+ audience: z.ZodOptional<z.ZodString>;
10
+ scope: z.ZodString;
11
+ }, "strip", z.ZodTypeAny, {
12
+ audience?: string | undefined;
13
+ clientID: string;
14
+ scope: string;
15
+ }, {
16
+ audience?: string | undefined;
17
+ clientID: string;
18
+ scope: string;
19
+ }>, "many">]>;
8
20
  clientSecret: z.ZodOptional<z.ZodString>;
9
21
  rulesDirectory: z.ZodOptional<z.ZodString>;
10
22
  auth0SessionCookieName: z.ZodOptional<z.ZodString>;
@@ -22,7 +34,11 @@ export declare const configurationSchema: z.ZodObject<{
22
34
  auth0CookieSecret?: string | undefined;
23
35
  connection?: string | undefined;
24
36
  cookieSecret?: string | undefined;
25
- scope: string;
37
+ scope: string | {
38
+ audience?: string | undefined;
39
+ clientID: string;
40
+ scope: string;
41
+ }[];
26
42
  }, {
27
43
  port?: number | undefined;
28
44
  domain?: string | undefined;
@@ -34,10 +50,20 @@ export declare const configurationSchema: z.ZodObject<{
34
50
  auth0CookieSecret?: string | undefined;
35
51
  connection?: string | undefined;
36
52
  cookieSecret?: string | undefined;
37
- scope: string;
53
+ scope: string | {
54
+ audience?: string | undefined;
55
+ clientID: string;
56
+ scope: string;
57
+ }[];
38
58
  }>;
39
59
  export declare type Schema = z.infer<typeof configurationSchema>;
40
60
  declare type ReadonlyFields = 'audience' | 'clientID' | 'scope' | 'port';
61
+ export declare type GrantType = 'password' | 'client_credentials' | 'authorization_code';
62
+ export declare type ScopeConfig = string | {
63
+ audience?: string;
64
+ clientID: string;
65
+ scope: string;
66
+ }[];
41
67
  export declare type Auth0Configuration = Required<Pick<Schema, ReadonlyFields>> & Omit<Schema, ReadonlyFields>;
42
68
  export declare type ResponseModes = 'query' | 'web_message';
43
69
  export declare type QueryParams = {
package/dist/types.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAY9B,CAAC;AAEH,oBAAY,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAEzD,aAAK,cAAc,GAAG,UAAU,GAAG,UAAU,GAAG,OAAO,GAAG,MAAM,CAAC;AAEjE,oBAAY,kBAAkB,GAAG,QAAQ,CAAC,IAAI,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC,GACpC,IAAI,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;AAChE,oBAAY,aAAa,GAAG,OAAO,GAAG,aAAa,CAAC;AAEpD,oBAAY,WAAW,GAAG;IACxB,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,YAAY,EAAE,MAAM,CAAC;IACrB,cAAc,EAAE,MAAM,CAAC;IACvB,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,qBAAqB,EAAE,MAAM,CAAC;IAC9B,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,EAAE,aAAa,CAAC;IAC7B,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;CAClB,CAAC;AAEF,MAAM,WAAW,QAAQ;IACvB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;IACd,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,kBAAkB;IACjC,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;IAEd,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,EAAE,CAAC;CAC3C;AAED,MAAM,WAAW,OAAO;IACtB,OAAO,EAAE,WAAW,CAAC;CACtB;AAED,MAAM,WAAW,WAAW;IAC1B,OAAO,EAAE,kBAAkB,CAAC;CAC7B"}
1
+ {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAwB9B,CAAC;AAEH,oBAAY,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAEzD,aAAK,cAAc,GAAG,UAAU,GAAG,UAAU,GAAG,OAAO,GAAG,MAAM,CAAC;AAIjE,oBAAY,SAAS,GAAG,UAAU,GAAG,oBAAoB,GAAG,oBAAoB,CAAC;AAEjF,oBAAY,WAAW,GACnB,MAAM,GACN;IAAE,QAAQ,CAAC,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,EAAE,CAAC;AAE7D,oBAAY,kBAAkB,GAAG,QAAQ,CAAC,IAAI,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC,GACpC,IAAI,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;AAChE,oBAAY,aAAa,GAAG,OAAO,GAAG,aAAa,CAAC;AAEpD,oBAAY,WAAW,GAAG;IACxB,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,YAAY,EAAE,MAAM,CAAC;IACrB,cAAc,EAAE,MAAM,CAAC;IACvB,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,qBAAqB,EAAE,MAAM,CAAC;IAC9B,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,EAAE,aAAa,CAAC;IAC7B,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;CAClB,CAAC;AAEF,MAAM,WAAW,QAAQ;IACvB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;IACd,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,kBAAkB;IACjC,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;IAEd,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,EAAE,CAAC;CAC3C;AAED,MAAM,WAAW,OAAO;IACtB,OAAO,EAAE,WAAW,CAAC;CACtB;AAED,MAAM,WAAW,WAAW;IAC1B,OAAO,EAAE,kBAAkB,CAAC;CAC7B"}
package/dist/types.js CHANGED
@@ -4,11 +4,21 @@ exports.configurationSchema = void 0;
4
4
  const zod_1 = require("zod");
5
5
  // TODO: better validation
6
6
  exports.configurationSchema = zod_1.z.object({
7
- port: zod_1.z.optional(zod_1.z.number().gt(2999, "port must be greater than 2999").lt(10000, "must be less than 10000")),
7
+ port: zod_1.z.optional(zod_1.z
8
+ .number()
9
+ .gt(2999, 'port must be greater than 2999')
10
+ .lt(10000, 'must be less than 10000')),
8
11
  domain: zod_1.z.optional(zod_1.z.string().min(1, 'domain is required')),
9
- audience: zod_1.z.optional(zod_1.z.string().min(1, "audience is required")),
10
- clientID: zod_1.z.optional(zod_1.z.string().max(32, "must be 32 characters long")),
11
- scope: zod_1.z.string().min(1, "scope is required"),
12
+ audience: zod_1.z.optional(zod_1.z.string().min(1, 'audience is required')),
13
+ clientID: zod_1.z.optional(zod_1.z.string().max(32, 'must be 32 characters long')),
14
+ scope: zod_1.z.union([
15
+ zod_1.z.string().min(1, 'scope is required'),
16
+ zod_1.z.array(zod_1.z.object({
17
+ clientID: zod_1.z.string().max(32, 'must be 32 characters long'),
18
+ audience: zod_1.z.optional(zod_1.z.string().min(1, 'audience is required')),
19
+ scope: zod_1.z.string().min(1, 'scope is required'),
20
+ }))
21
+ ]),
12
22
  clientSecret: zod_1.z.optional(zod_1.z.string()),
13
23
  rulesDirectory: zod_1.z.optional(zod_1.z.string()),
14
24
  auth0SessionCookieName: zod_1.z.optional(zod_1.z.string()),
package/dist/types.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":";;;AAAA,6BAAwB;AAExB,0BAA0B;AACb,QAAA,mBAAmB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC1C,IAAI,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,EAAE,CAAC,IAAI,EAAE,gCAAgC,CAAC,CAAC,EAAE,CAAC,KAAK,EAAE,yBAAyB,CAAC,CAAC;IAC5G,MAAM,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,oBAAoB,CAAC,CAAC;IAC3D,QAAQ,EAAG,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,sBAAsB,CAAC,CAAC;IAChE,QAAQ,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,EAAE,EAAE,4BAA4B,CAAC,CAAC;IACtE,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,mBAAmB,CAAC;IAC7C,YAAY,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;IACpC,cAAc,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;IACtC,sBAAsB,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;IAC9C,iBAAiB,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;IACzC,UAAU,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;IAClC,YAAY,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;CACrC,CAAC,CAAC"}
1
+ {"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":";;;AAAA,6BAAwB;AAExB,0BAA0B;AACb,QAAA,mBAAmB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC1C,IAAI,EAAE,OAAC,CAAC,QAAQ,CACd,OAAC;SACE,MAAM,EAAE;SACR,EAAE,CAAC,IAAI,EAAE,gCAAgC,CAAC;SAC1C,EAAE,CAAC,KAAK,EAAE,yBAAyB,CAAC,CACxC;IACD,MAAM,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,oBAAoB,CAAC,CAAC;IAC3D,QAAQ,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,sBAAsB,CAAC,CAAC;IAC/D,QAAQ,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,EAAE,EAAE,4BAA4B,CAAC,CAAC;IACtE,KAAK,EAAE,OAAC,CAAC,KAAK,CAAC;QACX,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,mBAAmB,CAAC;QACtC,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,CAAC;YACf,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,EAAE,EAAE,4BAA4B,CAAC;YAC1D,QAAQ,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,sBAAsB,CAAC,CAAC;YAC/D,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,mBAAmB,CAAC;SAC9C,CAAC,CAAC;KACJ,CAAC;IACJ,YAAY,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;IACpC,cAAc,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;IACtC,sBAAsB,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;IAC9C,iBAAiB,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;IACzC,UAAU,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;IAClC,YAAY,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;CACrC,CAAC,CAAC"}
package/dist/views/login.d.ts CHANGED
@@ -1,11 +1,12 @@
1
+ import type { ScopeConfig } from '../types';
1
2
  interface LoginViewProps {
2
3
  domain: string;
3
- scope: string;
4
+ scope: ScopeConfig;
4
5
  redirectUri: string;
5
6
  clientID: string;
6
7
  audience: string;
7
8
  loginFailed: boolean;
8
9
  }
9
- export declare const loginView: ({ domain, scope, redirectUri, clientID, audience, loginFailed }: LoginViewProps) => string;
10
+ export declare const loginView: ({ domain, scope: scopeConfig, redirectUri, clientID, audience, loginFailed }: LoginViewProps) => string;
10
11
  export {};
11
12
  //# sourceMappingURL=login.d.ts.map
package/dist/views/login.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"login.d.ts","sourceRoot":"","sources":["../../src/views/login.ts"],"names":[],"mappings":"AAEA,UAAU,cAAc;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,OAAO,CAAC;CACtB;AAED,eAAO,MAAM,SAAS,oEAOnB,cAAc,KAAG,MAwFnB,CAAC"}
1
+ {"version":3,"file":"login.d.ts","sourceRoot":"","sources":["../../src/views/login.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AAI5C,UAAU,cAAc;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,WAAW,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,OAAO,CAAC;CACtB;AAED,eAAO,MAAM,SAAS,iFAOnB,cAAc,KAAG,MAyFnB,CAAC"}
package/dist/views/login.js CHANGED
@@ -1,8 +1,9 @@
1
1
  "use strict";
2
2
  Object.defineProperty(exports, "__esModule", { value: true });
3
3
  exports.loginView = void 0;
4
+ const utils_1 = require("../handlers/utils");
4
5
  const html = String.raw;
5
- const loginView = ({ domain, scope, redirectUri, clientID, audience, loginFailed = false }) => {
6
+ const loginView = ({ domain, scope: scopeConfig, redirectUri, clientID, audience, loginFailed = false }) => {
6
7
  return html `
7
8
  <html lang="en">
8
9
  <head>
@@ -37,7 +38,7 @@ const loginView = ({ domain, scope, redirectUri, clientID, audience, loginFailed
37
38
  <div class="error bg-red-500 text-white p-3 ${loginFailed ? '' : 'hidden'}">Wrong email or password</div>
38
39
 
39
40
  <div>
40
- <button id="submit" type="button" class="group relative w-full flex justify-center py-2 px-4 border border-transparent text-sm font-medium rounded-md text-white bg-blue-600 hover:bg-blue-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500">
41
+ <button id="submit" type="submit" class="group relative w-full flex justify-center py-2 px-4 border border-transparent text-sm font-medium rounded-md text-white bg-blue-600 hover:bg-blue-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-blue-500">
41
42
  <span class="absolute left-0 inset-y-0 flex items-center pl-3">
42
43
  <svg class="h-5 w-5 text-blue-500 group-hover:text-blue-400" x-description="Heroicon name: solid/lock-closed" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 20 20" fill="currentColor" aria-hidden="true">
43
44
  <path fill-rule="evenodd" d="M5 9V7a5 5 0 0110 0v2a2 2 0 012 2v5a2 2 0 01-2 2H5a2 2 0 01-2-2v-5a2 2 0 012-2zm8-2v2H7V7a3 3 0 016 0z" clip-rule="evenodd"></path>
@@ -59,9 +60,10 @@ const loginView = ({ domain, scope, redirectUri, clientID, audience, loginFailed
59
60
  responseType: 'token id_token',
60
61
  });
61
62
  var form = document.querySelector('#the-form');
62
- var button = document.querySelector('#sumbit');
63
63
 
64
- submit.addEventListener('click', function(e) {
64
+ form.addEventListener('submit', function(e) {
65
+ event.preventDefault();
66
+ event.stopPropagation()
65
67
  let params = new URLSearchParams(window.location.search);
66
68
 
67
69
  var username = document.querySelector('#username');
@@ -72,7 +74,7 @@ const loginView = ({ domain, scope, redirectUri, clientID, audience, loginFailed
72
74
  username: username.value,
73
75
  password: password.value,
74
76
  realm: 'Username-Password-Authentication',
75
- scope: '${scope}',
77
+ scope: '${(0, utils_1.deriveScope)({ scopeConfig, clientID, audience })}',
76
78
  nonce: params.get('nonce'),
77
79
  state: params.get('state')
78
80
  },
package/dist/views/login.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"login.js","sourceRoot":"","sources":["../../src/views/login.ts"],"names":[],"mappings":";;;AAAA,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC;AAWjB,MAAM,SAAS,GAAG,CAAC,EACxB,MAAM,EACN,KAAK,EACL,WAAW,EACX,QAAQ,EACR,QAAQ,EACR,WAAW,GAAG,KAAK,EACJ,EAAU,EAAE;IAC3B,OAAO,IAAI,CAAA;;;;;;;;;;;;;;;;;;;;;;;;uHAwB0G,WAAW,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,EAAE;;;;iIAIzB,WAAW,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,EAAE;;;4DAGxG,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ;;;;;;;;;;;;;;;;;;yBAkB9D,MAAM;2BACJ,QAAQ;8BACL,WAAW;2BACd,QAAQ;;;;;;;;;;;;;;;;;4BAiBP,KAAK;;;;;;;;;;;;;;;;;GAiB9B,CAAC;AACJ,CAAC,CAAC;AA/FW,QAAA,SAAS,aA+FpB"}
1
+ {"version":3,"file":"login.js","sourceRoot":"","sources":["../../src/views/login.ts"],"names":[],"mappings":";;;AACA,6CAAgD;AAChD,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC;AAWjB,MAAM,SAAS,GAAG,CAAC,EACxB,MAAM,EACN,KAAK,EAAE,WAAW,EAClB,WAAW,EACX,QAAQ,EACR,QAAQ,EACR,WAAW,GAAG,KAAK,EACJ,EAAU,EAAE;IAC3B,OAAO,IAAI,CAAA;;;;;;;;;;;;;;;;;;;;;;;;uHAwB0G,WAAW,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,EAAE;;;;iIAIzB,WAAW,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,EAAE;;;4DAGxG,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ;;;;;;;;;;;;;;;;;;yBAkB9D,MAAM;2BACJ,QAAQ;8BACL,WAAW;2BACd,QAAQ;;;;;;;;;;;;;;;;;;4BAkBP,IAAA,mBAAW,EAAC,EAAE,WAAW,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC;;;;;;;;;;;;;;;;;GAiBzE,CAAC;AACJ,CAAC,CAAC;AAhGW,QAAA,SAAS,aAgGpB"}
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@simulacrum/auth0-simulator",
3
- "version": "0.8.1",
3
+ "version": "0.8.3",
4
4
  "description": "Run local instance of Auth0 API for local development and integration testing",
5
5
  "main": "dist/index.js",
6
6
  "bin": "bin/index.js",
@@ -40,7 +40,7 @@
40
40
  "dependencies": {
41
41
  "@effection/process": "^2.0.1",
42
42
  "@simulacrum/client": "0.5.4",
43
- "@simulacrum/server": "0.6.2",
43
+ "@simulacrum/server": "0.6.3",
44
44
  "@types/faker": "^5.1.7",
45
45
  "assert-ts": "^0.3.2",
46
46
  "base64-url": "^2.3.3",
@@ -72,7 +72,7 @@
72
72
  "keygrip": "^1.1.0",
73
73
  "mocha": "^8.0.0",
74
74
  "rimraf": "^3.0.2",
75
- "ts-node": "^9.1.1",
75
+ "ts-node": "^10.9.1",
76
76
  "ws": "^7.4.4"
77
77
  },
78
78
  "volta": {