@simulacrum/auth0-simulator 0.8.3 → 0.10.0

package/README.md

@@ -7,12 +7,12 @@ Read about this simulator on our blog: [Simplified Local Development and Testing
 - [Auth0 simulator](#auth0-simulator)
   - [Table of Contents](#table-of-contents)
   - [Quick Start](#quick-start)
-    - [Graphql](#graphql)
+    - [Using Default User](#using-default-user)
     - [Code](#code)
+    - [Example](#example)
   - [Configuration](#configuration)
     - [Options](#options)
-    - [Services](#services)
-  - [Rules](#rules)
+    - [Rules](#rules)
   - [Endpoints](#endpoints)
 
 Please read the [main README](../../README.md) for more background on simulacrum.
@@ -23,233 +23,63 @@ If this does not meet your needs then please create a github issue to start a co
 
 ## Quick Start
 
-This quick start assumes you have your own app with auth0. Check out [`nextjs with auth0 react`](./examples/nextjs-with-auth0-react) and [`nextjs with nextjs auth0`](./examples/nextjs-with-nextjs-auth0) for more complete examples that provides a barebone application.
+This quick start assumes you have your own app with Auth0.
 
-### Graphql
+> [!IMPORTANT]  
+> The Auth0 clients expect the server to be served as `https`, and will throw an error if it is served as `http`. Currently, we rely on a certificate available in the home directory. On first run, you will see instructions on how to set up this certificate through `mkcert`.
 
-Let's start our server.
+### Using Default User
 
-```bash
-PORT=4000 npx auth0-simulator  # this will start a test simulacrum server at http://localhost:4000
-```
+You may start a server directly from the command line.
 
-Open a browser at [http://localhost:4000](http://localhost:4000).
-
-This will open a graphql graphiql editor.
-
-Enter the following mutation:
-
-```ts
-mutation CreateSimulation {
- createSimulation(simulator: "auth0",
-  options: {
-    options:{
-      audience: "[your audience]",
-      scope: "[your scope]",
-      clientID: "[your client-id]"
-    },
-    services:{
-      auth0:{
-        port: 4400
-      }
-    }
-  }) {
-    id
-    status
-    services {
-      url
-      name
-    }
-  }
-}
+```bash
+npx auth0-simulator  # this will start a simulation server at http://localhost:4400
 ```
 
-This mutation creates your first simulation. Every time you start the server, you will need to apply these mutations. This can also be done programmatically which will be your likely interface while writing tests.
-
-![create simulation](./docs/create-simulation.png).
-
-Use the values returned from the query to update your configuration in the client application that calls the auth0 endpoints as shown below. This will point your app at the simulation instead of the Auth0 endpoint.
+Given no further input, it will use the default values as below. This will point your app at the simulation instead of the Auth0 endpoint.
 
 ```json
 {
-  "domain": "localhost:4400",
-  "clientID": "00000000000000000000000000000000",
-  "audience": "https://your-audience/"
+  "domain": "https://localhost:4400",
+  "clientId": "00000000000000000000000000000000",
+  "audience": "https://thefrontside.auth0.com/api/v1/"
 }
 ```
 
-Create a fake user whose credentials can be used for authentication with this query.
-
-```graphql
-mutation CreatePerson {
-  given(a: "person", simulation: "6fbe024f-2316-4265-a6e8-d65a837e308a")
-}
-```
-
-![person query](./docs/person.png)
-
-The fake user can now be used on your app. Use the `email` and `password` fields as login credentials.
-
 You now have a running auth0 server!
 
 ### Code
 
-An auth0 simulator can be created using the `@simulacrum/client` package. This is how you would apply the mutations programmatically.
+You may import and run the simulation server in a script.
 
-```bash
-npm install @simulacrum/client
-npm install @simulacrum/auth0-simulator
-```
+```js
+import { simulation } from "@simulacrum/auth0-simulator";
 
-The following examples are written in Typescript, but using Typescript is not a requirement. The Auth0 simulator creates a server with a graphql interface. This means that your interactions with the server can be written in any language or framework that can communicate over http / graphql.
-
-```ts
-import { main } from "effection";
-import { createSimulationServer, Server } from "@simulacrum/server";
-import { auth0 } from "@simulacrum/auth0-simulator";
-import { createClient } from "@simulacrum/client";
-
-const port = Number(process.env.PORT) ?? 4000; // port for the main simulation service
-
-// effection is a structured concurrency library and this will help us handle errors and shutting down the server gracefully
-main(function* () {
-  let server: Server = yield createSimulationServer({
-    seed: 1,
-    port,
-    simulators: { auth0 },
-  });
-
-  let url = `http://localhost:${server.address.port}`;
-
-  console.log(`simulation server running at ${url}`);
-
-  let client = createClient(url);
-
-  let simulation = yield client.createSimulation("auth0", {
-    options: {
-      audience: "[your audience]",
-      scope: "[your scope]",
-      clientID: "[your client-id]",
-    },
-    services: {
-      auth0: {
-        port: 4400, // port for the auth0 service itself
-      },
-    },
-  });
-
-  console.log(`auth0 service running at ${simulation.services[0].url}`);
-  let person = yield client.given(simulation, "person");
-
-  console.log(`store populated with user`);
-  console.log(
-    `username = ${person.data.email} password = ${person.data.password}`
-  );
-
-  yield;
-});
+const app = simulation();
+app.listen(4400, () =>
+  console.log(`auth0 simulation server started at https://localhost:4400`)
+);
 ```
 
-The `client` is also expected to be run in many different contexts, and, as such, supports async/await as well.
+By passing an `initialState`, you may control the initial users in the store.
 
-```js
-import { main } from "effection";
-import { createSimulationServer } from "@simulacrum/server";
-import { auth0 } from "@simulacrum/auth0-simulator";
-import { createClient } from "@simulacrum/client";
-
-const port = Number(process.env.PORT) || 4000; // port for the main simulation service
-
-main(function* startServer() {
-  // the simulation server needs to run within the scope
-  // of an effection context
-  let server = yield createSimulationServer({
-    port,
-    simulators: { auth0 },
-  });
-
-  let url = `http://localhost:${server.address.port}`;
-
-  console.log(`simulation server running at ${url}`);
-
-  yield setupClient({ url });
-});
-
-// the client is expected to run anywhere and does not expect
-// the effection scope, as such, it also can be used with async/await
-async function setupClient({ url }) {
-  let client = createClient(url);
-
-  let simulation = await client.createSimulation("auth0", {
-    options: {
-      audience: "https://your-audience/",
-      scope: "openid profile email offline_access",
-      clientID: "YOUR_AUTH0_CLIENT_ID",
-    },
-    services: {
-      auth0: {
-        port: 4400, // port for the auth0 service itself
-      },
-    },
-  });
-
-  console.log(`auth0 service running at ${simulation.services[0].url}`);
-
-  let person = await client.given(simulation, "person");
-
-  console.log(`store populated with user`);
-  console.log(
-    `username = ${person.data.email} password = ${person.data.password}`
-  );
-}
-```
+### Example
+
+The folks at Auth0 maintain many samples such as [github.com/auth0-samples/auth0-react-samples](https://github.com/auth0-samples/auth0-react-samples). Follow the instructions to run the sample, set the configuration in `auth_config.json` to match the defaults as noted above, and run the Auth0 simulation server with `npx auth0-simulator`.
 
 ## Configuration
 
-Both the graphql `createSimulation` mutation and the `@simulacrum/client` take an optional `options` and `services` object.
-
-```ts
-// A snippet from the previous `Code` example.
-let simulation = yield client.createSimulation("auth0", {
-  options: {
-    audience: "[your audience]",
-    scope: "[your scope]",
-    clientID: "[your client-id]",
-    rulesDirectory: "test/rules",
-  },
-  services: {
-    auth0: {
-      port: 4400,
-    },
-  },
-});
-```
+The Auth0 Simulator uses [cosmiconfig](https://github.com/cosmiconfig/cosmiconfig) to load the configuration options. This provides many options in where to place your configuration. Using the module name, `auth0Simulator`, you could, for example, set your configuration in a `.auth0Simulatorrc.json` file.
 
 ### Options
 
 The `options` field supports the [auth0 configuration fields](https://auth0.com/docs/quickstart/spa/vanillajs#configure-auth0). The option fields should match the fields in the client application that is calling the auth0 server.
 
-The `scope` also accepts an array of objects containing `clientID`, `scope` and optionally `audience` to enable dynamic scopes from a single simulator. This should allow multiple clients to all use the same simulator. Additionally, setting the `clientID: "default"` will enable a default fallback scope so every client does not need to be included.
+The `scope` also accepts an array of objects containing `clientId`, `scope` and optionally `audience` to enable dynamic scopes from a single simulator. This should allow multiple clients to all use the same simulator. Additionally, setting the `clientId: "default"` will enable a default fallback scope so every client does not need to be included.
 
 An optional [`rulesDirectory` field](#rules) can specify a directory of [auth0 rules](https://auth0.com/docs/rules) code files, more on this [below](#rules).
 
-### Services
-
-The `services` object configures simulators to start on specific ports.
-
-```ts
-let simulation = yield client.createSimulation("auth0", {
-  options: {
-    services: {
-      auth0: {
-        port: 4400,
-      },
-    },
-  },
-});
-```
-
-## Rules
+### Rules
 
 It is possible to run [auth0 rules](https://auth0.com/docs/rules) if the compiled code files are on disk and all located in the same directory.
 
@@ -259,14 +89,6 @@ For example, a [sample rules directory](./test/rules) is in the auth0 package fo
 
 If we want to run these rules files then we would add the `rulesDirectory` field to the [options object](#options).
 
-```ts
-let simulation = yield client.createSimulation(url, {
-  options: {
-    rulesDirectory: "test/rules",
-  },
-});
-```
-
 ## Endpoints
 
 The following endpoints have been assigned handlers:

package/bin/start.js

@@ -0,0 +1,7 @@
+#!/usr/bin/env node
+const auth0APIsimulator = require("../dist/index");
+
+const app = auth0APIsimulator.simulation();
+app.listen(4400, () =>
+  console.log(`auth0 simulation server started at https://localhost:4400`)
+);

package/dist/auth/constants.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../src/auth/constants.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,WAAW,+qDACspD,CAAC;AAE/qD,eAAO,MAAM,IAAI;;;;;;;;;CAYhB,CAAC"}
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../src/auth/constants.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,WAAW,+qDACspD,CAAC;AAE/qD,eAAO,MAAM,IAAI;;;;;;;;;CAWhB,CAAC"}

package/dist/auth/constants.js

@@ -1,8 +1,5 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.JWKS = exports.PRIVATE_KEY = void 0;
-exports.PRIVATE_KEY = "-----BEGIN RSA PRIVATE KEY-----~~MIIEpAIBAAKCAQEAwzwwEqR5p7a6CaG61i3od+GLTyype3t/f0pwwtoA9NsZANcj~~HaAUR/qzqlNRQlLI687vF1OfbETYLeHIT5V36QGrMfrYR/tYAoaKFixC/wOjt8EB~~PoeHgaTOAyGf3V3YNwocNU+StyV1X4hPmDjCrapNYpbKIcAJwq5Ij0WBKGNXBcUU~~bAceRtLqgzf/6x2vcQJeE5nJK5gd41f/jtlK9Xge0Ig6CcdKOI7U3agyI/iNF3SL~~0bnCfvtDRIkgAzzeN5Yj4S3Z4rJVQ1RgzZmqBmnjw8h06G8wDyaQPf19u4F///gF~~+dL1md/fVRKL5UL7OZg42hIZzwzdhrxOGcXUFQIDAQABAoIBAQCSwHUqLjO722Av~~yT/VqqBpLEI4+0tSJFyL4/qqnI/HfcFnnk8o/6D/EfVm/EXCYtPgXKXflN3q1jzh~~ECwvlhySKszyPqnAQa/ABj1ZuV+KrMOtZgh3Zgx3aNfqBqZSES5rANB/ShbwT9nQ~~O3gI5fF/9NlCWDIL+HvduH+WIhqZrfHbTQrntr0sMvYTNE8PkAsB1GGZ5VO8gGGT~~Tg3kKOpNGWAJUYape/1Mb0Z1W8E1YDEaQKCnVY+Whr3+ZuLveDmyTuvLrUi+MAA4~~EaISkBZQo3ehUMjXm/0PdG4U9f2otAOhdwa2eT9irTkNS0TU+bi7VDEEhTmRKyfO~~yyVAGzTpAoGBAOmPbnMBAJYLk0SiQVspxIT+LW3tDWc7aFr/TtqAXkEVxI2xG6wA~~dEyRasBbPJDSWEljMre4g/6GG1fsPj0l5n2S8azy6jIu49ANvZPrrrBsuVYStR18~~MibzxjWWUht3vOCZBKtbqgHbC/oc49jMLPO5XrDFMTJPU5GkWRRLRZArAoGBANX+~~H6NQ7fUg8TUerXEB1WqA+FH4zVqJ/NKjbqaj9FPFWG59AjBVqQ335QzDWNCs/LjD~~REF/6qMeP2adehNhEVv2nK3rS+po9b4yLkiSysLivFPry9AxMGzFr3XzgoDb+y+y~~T02zj2k7nkGlNSSSanIxsp+TzTKsIY7ZbGx6d8y/AoGAS/kSDmq3DBe70cmNxN+z~~QyeDE4zWnUvfyCngNocnIbi49PY1cB+9tOJgfS2wZ9NkUIrqBoUIupRY9KKuJCnd~~7d8MqhtiPuytwhGWJzW030KejvcK3wp1LeKCCRBaqQCr+csMj8kDZhMgtD0NiInx~~3V3hBVM/i4PuRSPWrhlGCX0CgYEAq/xR8TBaD2kqc0b0np6ap75/1WHhqaK9T42K~~oOOkuq8hI6vU1oQCGvfhXyChgRWHB/foI7xrGC53RkHKm0ioawEJa75whTVWTEaI~~bEuOKpOQSOJ6LBlckg9PtbzAZlBm0S6+DfUCjdEcoCXnUD1cz+qhZR+lC9TMI8Mb~~IRRMtIECgYBrVlenf/rHK1UMC3FDmkOzH7agShcDHqzFMR1/NcMDolZNXXFy/u4t~~nDxci1smAUQr4oNs1lk9UzCdt0+pVCjmhbriBngwsS6sazOesDft53w6RTczsRpa~~09YDfcXhnI5yT+vd5r4xA5HhyniY7W1ahSzGDYIGlVm5IReC3P6Caw==~~-----END RSA PRIVATE KEY-----~~";
-exports.JWKS = {
+export const PRIVATE_KEY = "-----BEGIN RSA PRIVATE KEY-----~~MIIEpAIBAAKCAQEAwzwwEqR5p7a6CaG61i3od+GLTyype3t/f0pwwtoA9NsZANcj~~HaAUR/qzqlNRQlLI687vF1OfbETYLeHIT5V36QGrMfrYR/tYAoaKFixC/wOjt8EB~~PoeHgaTOAyGf3V3YNwocNU+StyV1X4hPmDjCrapNYpbKIcAJwq5Ij0WBKGNXBcUU~~bAceRtLqgzf/6x2vcQJeE5nJK5gd41f/jtlK9Xge0Ig6CcdKOI7U3agyI/iNF3SL~~0bnCfvtDRIkgAzzeN5Yj4S3Z4rJVQ1RgzZmqBmnjw8h06G8wDyaQPf19u4F///gF~~+dL1md/fVRKL5UL7OZg42hIZzwzdhrxOGcXUFQIDAQABAoIBAQCSwHUqLjO722Av~~yT/VqqBpLEI4+0tSJFyL4/qqnI/HfcFnnk8o/6D/EfVm/EXCYtPgXKXflN3q1jzh~~ECwvlhySKszyPqnAQa/ABj1ZuV+KrMOtZgh3Zgx3aNfqBqZSES5rANB/ShbwT9nQ~~O3gI5fF/9NlCWDIL+HvduH+WIhqZrfHbTQrntr0sMvYTNE8PkAsB1GGZ5VO8gGGT~~Tg3kKOpNGWAJUYape/1Mb0Z1W8E1YDEaQKCnVY+Whr3+ZuLveDmyTuvLrUi+MAA4~~EaISkBZQo3ehUMjXm/0PdG4U9f2otAOhdwa2eT9irTkNS0TU+bi7VDEEhTmRKyfO~~yyVAGzTpAoGBAOmPbnMBAJYLk0SiQVspxIT+LW3tDWc7aFr/TtqAXkEVxI2xG6wA~~dEyRasBbPJDSWEljMre4g/6GG1fsPj0l5n2S8azy6jIu49ANvZPrrrBsuVYStR18~~MibzxjWWUht3vOCZBKtbqgHbC/oc49jMLPO5XrDFMTJPU5GkWRRLRZArAoGBANX+~~H6NQ7fUg8TUerXEB1WqA+FH4zVqJ/NKjbqaj9FPFWG59AjBVqQ335QzDWNCs/LjD~~REF/6qMeP2adehNhEVv2nK3rS+po9b4yLkiSysLivFPry9AxMGzFr3XzgoDb+y+y~~T02zj2k7nkGlNSSSanIxsp+TzTKsIY7ZbGx6d8y/AoGAS/kSDmq3DBe70cmNxN+z~~QyeDE4zWnUvfyCngNocnIbi49PY1cB+9tOJgfS2wZ9NkUIrqBoUIupRY9KKuJCnd~~7d8MqhtiPuytwhGWJzW030KejvcK3wp1LeKCCRBaqQCr+csMj8kDZhMgtD0NiInx~~3V3hBVM/i4PuRSPWrhlGCX0CgYEAq/xR8TBaD2kqc0b0np6ap75/1WHhqaK9T42K~~oOOkuq8hI6vU1oQCGvfhXyChgRWHB/foI7xrGC53RkHKm0ioawEJa75whTVWTEaI~~bEuOKpOQSOJ6LBlckg9PtbzAZlBm0S6+DfUCjdEcoCXnUD1cz+qhZR+lC9TMI8Mb~~IRRMtIECgYBrVlenf/rHK1UMC3FDmkOzH7agShcDHqzFMR1/NcMDolZNXXFy/u4t~~nDxci1smAUQr4oNs1lk9UzCdt0+pVCjmhbriBngwsS6sazOesDft53w6RTczsRpa~~09YDfcXhnI5yT+vd5r4xA5HhyniY7W1ahSzGDYIGlVm5IReC3P6Caw==~~-----END RSA PRIVATE KEY-----~~";
+export const JWKS = {
     keys: [
         {
             kty: "RSA",

package/dist/auth/constants.js.map

@@ -1 +1 @@
-{"version":3,"file":"constants.js","sourceRoot":"","sources":["../../src/auth/constants.ts"],"names":[],"mappings":";;;AAAa,QAAA,WAAW,GACtB,4qDAA4qD,CAAC;AAElqD,QAAA,IAAI,GAAG;IAClB,IAAI,EAAE;QACJ;YACE,GAAG,EAAE,KAAK;YACV,CAAC,EACC,wVAAwV;YAC1V,CAAC,EAAE,MAAM;YACT,GAAG,EAAE,OAAO;YACZ,GAAG,EAAE,wDAAwD;YAC7D,GAAG,EAAE,KAAK;SACX;KACF;CACF,CAAC"}
+{"version":3,"file":"constants.js","sourceRoot":"","sources":["../../src/auth/constants.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,WAAW,GACtB,4qDAA4qD,CAAC;AAE/qD,MAAM,CAAC,MAAM,IAAI,GAAG;IAClB,IAAI,EAAE;QACJ;YACE,GAAG,EAAE,KAAK;YACV,CAAC,EAAE,wVAAwV;YAC3V,CAAC,EAAE,MAAM;YACT,GAAG,EAAE,OAAO;YACZ,GAAG,EAAE,wDAAwD;YAC7D,GAAG,EAAE,KAAK;SACX;KACF;CACF,CAAC"}

package/dist/auth/date.js

@@ -1,14 +1,8 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.epochTimeToLocalDate = exports.expiresAt = exports.epochTime = void 0;
-const epochTime = (date = Date.now()) => Math.floor(date / 1000);
-exports.epochTime = epochTime;
-const expiresAt = (hours = 1) => (0, exports.epochTime)() + hours * 60 * 60 * 1000;
-exports.expiresAt = expiresAt;
-const epochTimeToLocalDate = (epoch) => {
+export const epochTime = (date = Date.now()) => Math.floor(date / 1000);
+export const expiresAt = (hours = 1) => epochTime() + hours * 60 * 60 * 1000;
+export const epochTimeToLocalDate = (epoch) => {
     let date = new Date(0);
     date.setUTCSeconds(epoch);
     return date;
 };
-exports.epochTimeToLocalDate = epochTimeToLocalDate;
 //# sourceMappingURL=date.js.map

package/dist/auth/date.js.map

@@ -1 +1 @@
-{"version":3,"file":"date.js","sourceRoot":"","sources":["../../src/auth/date.ts"],"names":[],"mappings":";;;AAAO,MAAM,SAAS,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,EAAU,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;AAAnE,QAAA,SAAS,aAA0D;AAEzE,MAAM,SAAS,GAAG,CAAC,KAAK,GAAG,CAAC,EAAU,EAAE,CAC7C,IAAA,iBAAS,GAAE,GAAG,KAAK,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;AAD1B,QAAA,SAAS,aACiB;AAEhC,MAAM,oBAAoB,GAAG,CAAC,KAAa,EAAQ,EAAE;IAC1D,IAAI,IAAI,GAAG,IAAI,IAAI,CAAC,CAAC,CAAC,CAAC;IACvB,IAAI,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;IAC1B,OAAO,IAAI,CAAC;AACd,CAAC,CAAC;AAJW,QAAA,oBAAoB,wBAI/B"}
+{"version":3,"file":"date.js","sourceRoot":"","sources":["../../src/auth/date.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,SAAS,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,EAAU,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;AAEhF,MAAM,CAAC,MAAM,SAAS,GAAG,CAAC,KAAK,GAAG,CAAC,EAAU,EAAE,CAC7C,SAAS,EAAE,GAAG,KAAK,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;AAEvC,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,KAAa,EAAQ,EAAE;IAC1D,IAAI,IAAI,GAAG,IAAI,IAAI,CAAC,CAAC,CAAC,CAAC;IACvB,IAAI,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;IAC1B,OAAO,IAAI,CAAC;AACd,CAAC,CAAC"}

package/dist/auth/jwt.d.ts

@@ -1,4 +1,7 @@
 import type { SignOptions } from "jsonwebtoken";
+import { sign } from "jsonwebtoken";
 export declare const parseKey: (key: string) => string;
-export declare const createJsonWebToken: (payload: Record<string, unknown>, privateKey?: string, options?: SignOptions) => string;
+type SignPayload = Parameters<typeof sign>[0];
+export declare function createJsonWebToken<P extends SignPayload>(payload: P, privateKey?: string, options?: SignOptions): string;
+export {};
 //# sourceMappingURL=jwt.d.ts.map

package/dist/auth/jwt.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"jwt.d.ts","sourceRoot":"","sources":["../../src/auth/jwt.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAIhD,eAAO,MAAM,QAAQ,QAAS,MAAM,KAAG,MAAoC,CAAC;AAE5E,eAAO,MAAM,kBAAkB,YACpB,OAAO,MAAM,EAAE,OAAO,CAAC,iCAEvB,WAAW,KAInB,MAEF,CAAC"}
+{"version":3,"file":"jwt.d.ts","sourceRoot":"","sources":["../../src/auth/jwt.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,EAAE,IAAI,EAAE,MAAM,cAAc,CAAC;AAGpC,eAAO,MAAM,QAAQ,QAAS,MAAM,KAAG,MAAoC,CAAC;AAE5E,KAAK,WAAW,GAAG,UAAU,CAAC,OAAO,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;AAE9C,wBAAgB,kBAAkB,CAAC,CAAC,SAAS,WAAW,EACtD,OAAO,EAAE,CAAC,EACV,UAAU,SAAwB,EAClC,OAAO,GAAE,WAGR,GACA,MAAM,CAER"}

package/dist/auth/jwt.js

@@ -1,15 +1,10 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.createJsonWebToken = exports.parseKey = void 0;
-const jsonwebtoken_1 = require("jsonwebtoken");
-const constants_1 = require("./constants");
-const parseKey = (key) => key.split("~~").join("\n");
-exports.parseKey = parseKey;
-const createJsonWebToken = (payload, privateKey = (0, exports.parseKey)(constants_1.PRIVATE_KEY), options = {
+import { sign } from "jsonwebtoken";
+import { JWKS, PRIVATE_KEY } from "./constants";
+export const parseKey = (key) => key.split("~~").join("\n");
+export function createJsonWebToken(payload, privateKey = parseKey(PRIVATE_KEY), options = {
     algorithm: "RS256",
-    keyid: constants_1.JWKS.keys[0].kid,
-}) => {
-    return (0, jsonwebtoken_1.sign)(payload, privateKey, options);
-};
-exports.createJsonWebToken = createJsonWebToken;
+    keyid: JWKS.keys[0].kid,
+}) {
+    return sign(payload, privateKey, options);
+}
 //# sourceMappingURL=jwt.js.map

package/dist/auth/jwt.js.map

@@ -1 +1 @@
-{"version":3,"file":"jwt.js","sourceRoot":"","sources":["../../src/auth/jwt.ts"],"names":[],"mappings":";;;AACA,+CAAoC;AACpC,2CAAgD;AAEzC,MAAM,QAAQ,GAAG,CAAC,GAAW,EAAU,EAAE,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAA/D,QAAA,QAAQ,YAAuD;AAErE,MAAM,kBAAkB,GAAG,CAChC,OAAgC,EAChC,UAAU,GAAG,IAAA,gBAAQ,EAAC,uBAAW,CAAC,EAClC,UAAuB;IACrB,SAAS,EAAE,OAAO;IAClB,KAAK,EAAE,gBAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG;CACxB,EACO,EAAE;IACV,OAAO,IAAA,mBAAI,EAAC,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC;AAC5C,CAAC,CAAC;AATW,QAAA,kBAAkB,sBAS7B"}
+{"version":3,"file":"jwt.js","sourceRoot":"","sources":["../../src/auth/jwt.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,MAAM,cAAc,CAAC;AACpC,OAAO,EAAE,IAAI,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAEhD,MAAM,CAAC,MAAM,QAAQ,GAAG,CAAC,GAAW,EAAU,EAAE,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAI5E,MAAM,UAAU,kBAAkB,CAChC,OAAU,EACV,UAAU,GAAG,QAAQ,CAAC,WAAW,CAAC,EAClC,UAAuB;IACrB,SAAS,EAAE,OAAO;IAClB,KAAK,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG;CACxB;IAED,OAAO,IAAI,CAAC,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC;AAC5C,CAAC"}

package/dist/auth/refresh-token.d.ts

@@ -0,0 +1,4 @@
+import type { GrantType, RefreshToken } from "../types";
+export declare function issueRefreshToken(scope: string, grantType: GrantType): boolean;
+export declare function createRefreshToken({ exp, rotations, scope, user, nonce, }: Omit<RefreshToken, "iat">): string;
+//# sourceMappingURL=refresh-token.d.ts.map

package/dist/auth/refresh-token.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"refresh-token.d.ts","sourceRoot":"","sources":["../../src/auth/refresh-token.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAKxD,wBAAgB,iBAAiB,CAC/B,KAAK,EAAE,MAAM,EACb,SAAS,EAAE,SAAS,GACnB,OAAO,CAET;AAED,wBAAgB,kBAAkB,CAAC,EACjC,GAAG,EACH,SAAa,EACb,KAAK,EACL,IAAI,EACJ,KAAK,GACN,EAAE,IAAI,CAAC,YAAY,EAAE,KAAK,CAAC,GAAG,MAAM,CAapC"}

package/dist/auth/refresh-token.js

@@ -0,0 +1,18 @@
+import { epochTime } from "./date";
+import { encode } from "base64-url";
+import { assert } from "assert-ts";
+export function issueRefreshToken(scope, grantType) {
+    return grantType === "refresh_token" || scope.includes("offline_access");
+}
+export function createRefreshToken({ exp, rotations = 0, scope, user, nonce, }) {
+    assert(!!user.id, `no identifier for user`);
+    return encode(JSON.stringify({
+        exp,
+        iat: epochTime(),
+        rotations,
+        scope,
+        user: { id: user.id },
+        nonce,
+    }));
+}
+//# sourceMappingURL=refresh-token.js.map

package/dist/auth/refresh-token.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"refresh-token.js","sourceRoot":"","sources":["../../src/auth/refresh-token.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACnC,OAAO,EAAE,MAAM,EAAE,MAAM,YAAY,CAAC;AACpC,OAAO,EAAE,MAAM,EAAE,MAAM,WAAW,CAAC;AAEnC,MAAM,UAAU,iBAAiB,CAC/B,KAAa,EACb,SAAoB;IAEpB,OAAO,SAAS,KAAK,eAAe,IAAI,KAAK,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC;AAC3E,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,EACjC,GAAG,EACH,SAAS,GAAG,CAAC,EACb,KAAK,EACL,IAAI,EACJ,KAAK,GACqB;IAC1B,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC;IAE5C,OAAO,MAAM,CACX,IAAI,CAAC,SAAS,CAAC;QACb,GAAG;QACH,GAAG,EAAE,SAAS,EAAE;QAChB,SAAS;QACT,KAAK;QACL,IAAI,EAAE,EAAE,EAAE,EAAE,IAAI,CAAC,EAAE,EAAE;QACrB,KAAK;KACN,CAAC,CACH,CAAC;AACJ,CAAC"}

package/dist/config/get-config.d.ts

@@ -1,8 +1,8 @@
-import { cosmiconfigSync } from 'cosmiconfig';
-import type { Auth0Configuration, Schema } from '../types';
-export declare const DefaultArgs: Schema;
-declare type Explorer = ReturnType<typeof cosmiconfigSync>;
-export declare function getConfigCreator(explorer: Explorer): (options?: Partial<Auth0Configuration> | undefined) => Auth0Configuration;
-export declare const getConfig: (options?: Partial<Auth0Configuration> | undefined) => Auth0Configuration;
+import { cosmiconfigSync } from "cosmiconfig";
+import type { Auth0Configuration, ConfigSchema } from "../types";
+export declare const DefaultArgs: ConfigSchema;
+type Explorer = ReturnType<typeof cosmiconfigSync>;
+export declare function getConfigCreator(explorer: Explorer): (options?: Partial<Auth0Configuration>) => Auth0Configuration;
+export declare const getConfig: (options?: Partial<Auth0Configuration>) => Auth0Configuration;
 export {};
 //# sourceMappingURL=get-config.d.ts.map

package/dist/config/get-config.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"get-config.d.ts","sourceRoot":"","sources":["../../src/config/get-config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAC9C,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AAK3D,eAAO,MAAM,WAAW,EAAE,MAIzB,CAAC;AAEF,aAAK,QAAQ,GAAG,UAAU,CAAC,OAAO,eAAe,CAAC,CAAC;AAkBnD,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,QAAQ,0DACiB,kBAAkB,CAgBrF;AAID,eAAO,MAAM,SAAS,yDApB8C,kBAoBjB,CAAC"}
+{"version":3,"file":"get-config.d.ts","sourceRoot":"","sources":["../../src/config/get-config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAC9C,OAAO,KAAK,EAAE,kBAAkB,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAKjE,eAAO,MAAM,WAAW,EAAE,YAIzB,CAAC;AAEF,KAAK,QAAQ,GAAG,UAAU,CAAC,OAAO,eAAe,CAAC,CAAC;AAkBnD,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,QAAQ,cAErC,OAAO,CAAC,kBAAkB,CAAC,KACpC,kBAAkB,CAoBtB;AAID,eAAO,MAAM,SAAS,aAzBR,OAAO,CAAC,kBAAkB,CAAC,KACpC,kBAwB8C,CAAC"}

package/dist/config/get-config.js

@@ -1,39 +1,39 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getConfig = exports.getConfigCreator = exports.DefaultArgs = void 0;
-const cosmiconfig_1 = require("cosmiconfig");
-const types_1 = require("../types");
+import { cosmiconfigSync } from "cosmiconfig";
+import { configurationSchema } from "../types";
 const DefaultAuth0Port = 4400;
-exports.DefaultArgs = {
-    clientID: '00000000000000000000000000000000',
-    audience: 'https://thefrontside.auth0.com/api/v1/',
+export const DefaultArgs = {
+    clientID: "00000000000000000000000000000000",
+    audience: "https://thefrontside.auth0.com/api/v1/",
     scope: "openid profile email offline_access",
 };
 function getPort({ domain, port }) {
-    if (typeof port === 'number') {
+    if (typeof port === "number") {
         return port;
     }
     if (domain) {
-        if (domain.split(':').length === 2) {
-            return parseInt(domain.split(':')[1]);
+        if (domain.split(":").length === 2) {
+            return parseInt(domain.split(":")[1]);
         }
     }
     return DefaultAuth0Port;
 }
 // This higher order function would only be used for testing and
 // allows different cosmiconfig instances to be used for testing
-function getConfigCreator(explorer) {
+export function getConfigCreator(explorer) {
     return function getConfig(options) {
         let searchResult = explorer.search();
-        let config = searchResult === null ? exports.DefaultArgs : searchResult.config;
+        let config = searchResult === null ? DefaultArgs : searchResult.config;
         let strippedOptions = options !== null && options !== void 0 ? options : {};
-        let configuration = { ...exports.DefaultArgs, ...config, ...strippedOptions };
+        let configuration = {
+            ...DefaultArgs,
+            ...config,
+            ...strippedOptions,
+        };
         configuration.port = getPort(configuration);
-        types_1.configurationSchema.parse(configuration);
+        configurationSchema.parse(configuration);
         return configuration;
     };
 }
-exports.getConfigCreator = getConfigCreator;
-const explorer = (0, cosmiconfig_1.cosmiconfigSync)("auth0Simulator");
-exports.getConfig = getConfigCreator(explorer);
+const explorer = cosmiconfigSync("auth0Simulator");
+export const getConfig = getConfigCreator(explorer);
 //# sourceMappingURL=get-config.js.map

package/dist/config/get-config.js.map

@@ -1 +1 @@
-{"version":3,"file":"get-config.js","sourceRoot":"","sources":["../../src/config/get-config.ts"],"names":[],"mappings":";;;AAAA,6CAA8C;AAE9C,oCAA+C;AAE/C,MAAM,gBAAgB,GAAG,IAAI,CAAC;AAEjB,QAAA,WAAW,GAAW;IACjC,QAAQ,EAAE,kCAAkC;IAC5C,QAAQ,EAAE,wCAAwC;IAClD,KAAK,EAAE,qCAAqC;CAC7C,CAAC;AAIF,SAAS,OAAO,CAAC,EAAE,MAAM,EAAE,IAAI,EAAsB;IACnD,IAAG,OAAO,IAAI,KAAK,QAAQ,EAAE;QAC3B,OAAO,IAAI,CAAC;KACb;IAED,IAAG,MAAM,EAAE;QACT,IAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE;YACjC,OAAO,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;SACvC;KACF;IAED,OAAO,gBAAgB,CAAC;AAC1B,CAAC;AAED,gEAAgE;AAChE,gEAAgE;AAChE,SAAgB,gBAAgB,CAAC,QAAkB;IACjD,OAAO,SAAS,SAAS,CAAC,OAAqC;QAC7D,IAAI,YAAY,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC;QAErC,IAAI,MAAM,GACR,YAAY,KAAK,IAAI,CAAC,CAAC,CAAC,mBAAW,CAAC,CAAC,CAAC,YAAY,CAAC,MAAM,CAAC;QAE5D,IAAI,eAAe,GAAG,OAAO,aAAP,OAAO,cAAP,OAAO,GAAI,EAAE,CAAC;QAEpC,IAAI,aAAa,GAAG,EAAE,GAAG,mBAAW,EAAE,GAAG,MAAM,EAAE,GAAG,eAAe,EAAwB,CAAC;QAE5F,aAAa,CAAC,IAAI,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC;QAE5C,2BAAmB,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;QAEzC,OAAO,aAAa,CAAC;IACvB,CAAC,CAAC;AACJ,CAAC;AAjBD,4CAiBC;AAED,MAAM,QAAQ,GAAG,IAAA,6BAAe,EAAC,gBAAgB,CAAC,CAAC;AAEtC,QAAA,SAAS,GAAG,gBAAgB,CAAC,QAAQ,CAAC,CAAC"}
+{"version":3,"file":"get-config.js","sourceRoot":"","sources":["../../src/config/get-config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAE9C,OAAO,EAAE,mBAAmB,EAAE,MAAM,UAAU,CAAC;AAE/C,MAAM,gBAAgB,GAAG,IAAI,CAAC;AAE9B,MAAM,CAAC,MAAM,WAAW,GAAiB;IACvC,QAAQ,EAAE,kCAAkC;IAC5C,QAAQ,EAAE,wCAAwC;IAClD,KAAK,EAAE,qCAAqC;CAC7C,CAAC;AAIF,SAAS,OAAO,CAAC,EAAE,MAAM,EAAE,IAAI,EAAsB;IACnD,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;QAC7B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,MAAM,EAAE,CAAC;QACX,IAAI,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACnC,OAAO,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED,OAAO,gBAAgB,CAAC;AAC1B,CAAC;AAED,gEAAgE;AAChE,gEAAgE;AAChE,MAAM,UAAU,gBAAgB,CAAC,QAAkB;IACjD,OAAO,SAAS,SAAS,CACvB,OAAqC;QAErC,IAAI,YAAY,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC;QAErC,IAAI,MAAM,GACR,YAAY,KAAK,IAAI,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,YAAY,CAAC,MAAM,CAAC;QAE5D,IAAI,eAAe,GAAG,OAAO,aAAP,OAAO,cAAP,OAAO,GAAI,EAAE,CAAC;QAEpC,IAAI,aAAa,GAAG;YAClB,GAAG,WAAW;YACd,GAAG,MAAM;YACT,GAAG,eAAe;SACG,CAAC;QAExB,aAAa,CAAC,IAAI,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC;QAE5C,mBAAmB,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;QAEzC,OAAO,aAAa,CAAC;IACvB,CAAC,CAAC;AACJ,CAAC;AAED,MAAM,QAAQ,GAAG,eAAe,CAAC,gBAAgB,CAAC,CAAC;AAEnD,MAAM,CAAC,MAAM,SAAS,GAAG,gBAAgB,CAAC,QAAQ,CAAC,CAAC"}

package/dist/handlers/auth0-handlers.d.ts

@@ -1,14 +1,10 @@
-import type { Person } from '@simulacrum/server';
-import type { Auth0Configuration } from '../types';
-import type { RequestHandler } from 'express';
-export declare type Routes = '/heartbeat' | '/authorize' | '/login' | '/usernamepassword/login' | '/login/callback' | '/oauth/token' | '/v2/logout' | '/userinfo';
-export declare type AuthSession = {
+import type { ExtendedSimulationStore } from "../store";
+import type { Request, RequestHandler } from "express";
+import type { Auth0Configuration } from "../types";
+export type Routes = "/heartbeat" | "/authorize" | "/login" | "/usernamepassword/login" | "/login/callback" | "/oauth/token" | "/v2/logout" | "/userinfo";
+export type AuthSession = {
     username: string;
     nonce: string;
 };
-export interface Auth0Store {
-    get(nonce: string): AuthSession;
-    set(nonce: string, session: AuthSession): void;
-}
-export declare const createAuth0Handlers: (store: Auth0Store, people: Iterable<Person>, serviceURL: () => URL, options: Auth0Configuration, debug: boolean) => Record<Routes, RequestHandler>;
+export declare const createAuth0Handlers: (simulationStore: ExtendedSimulationStore, serviceURL: (request: Request) => string, options: Auth0Configuration, debug: boolean) => Record<Routes, RequestHandler>;
 //# sourceMappingURL=auth0-handlers.d.ts.map

package/dist/handlers/auth0-handlers.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth0-handlers.d.ts","sourceRoot":"","sources":["../../src/handlers/auth0-handlers.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,KAAK,EAAE,kBAAkB,EAA8B,MAAM,UAAU,CAAC;AAC/E,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AAY9C,oBAAY,MAAM,GACd,YAAY,GACZ,YAAY,GACZ,QAAQ,GACR,yBAAyB,GACzB,iBAAiB,GACjB,cAAc,GACd,YAAY,GACZ,WAAW,CAAA;AAEf,oBAAY,WAAW,GAAG;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAAC;AAE9D,MAAM,WAAW,UAAU;IACzB,GAAG,CAAC,KAAK,EAAE,MAAM,GAAG,WAAW,CAAC;IAChC,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,GAAG,IAAI,CAAC;CAChD;AAcD,eAAO,MAAM,mBAAmB,UAAW,UAAU,UAAU,SAAS,MAAM,CAAC,cAAc,MAAM,GAAG,WAAW,kBAAkB,SAAS,OAAO,KAAG,OAAO,MAAM,EAAE,cAAc,CA+LlL,CAAC"}
+{"version":3,"file":"auth0-handlers.d.ts","sourceRoot":"","sources":["../../src/handlers/auth0-handlers.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,uBAAuB,EAAE,MAAM,UAAU,CAAC;AACxD,OAAO,KAAK,EAAE,OAAO,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AACvD,OAAO,KAAK,EAAE,kBAAkB,EAA8B,MAAM,UAAU,CAAC;AAY/E,MAAM,MAAM,MAAM,GACd,YAAY,GACZ,YAAY,GACZ,QAAQ,GACR,yBAAyB,GACzB,iBAAiB,GACjB,cAAc,GACd,YAAY,GACZ,WAAW,CAAC;AAEhB,MAAM,MAAM,WAAW,GAAG;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAAC;AAc9D,eAAO,MAAM,mBAAmB,oBACb,uBAAuB,cAC5B,CAAC,OAAO,EAAE,OAAO,KAAK,MAAM,WAC/B,kBAAkB,SACpB,OAAO,KACb,MAAM,CAAC,MAAM,EAAE,cAAc,CA8N/B,CAAC"}