@streamlayer/sdk-web-anonymous-auth 0.1.0

package/README.md

@@ -0,0 +1,7 @@
+# sdk-web-anonymous-auth
+
+This library was generated with [Nx](https://nx.dev).
+
+## Building
+
+Run `nx build sdk-web-anonymous-auth` to build the library

package/package.json

@@ -0,0 +1,22 @@
+{
+  "name": "@streamlayer/sdk-web-anonymous-auth",
+  "version": "0.1.0",
+  "type": "module",
+  "main": "./src/index.js",
+  "typings": "./src/index.d.ts",
+  "files": [
+    "src/"
+  ],
+  "dependencies": {
+    "@nx/devkit": "*",
+    "@nx/playwright": "*",
+    "@nx/webpack": "*",
+    "@playwright/test": "*",
+    "@streamlayer/sdk-web": "*",
+    "@streamlayer/sdk-web-api": "*",
+    "@swc/helpers": "*",
+    "jose": "*",
+    "webpack": "*"
+  },
+  "module": "./src/index.js"
+}

package/src/index.d.ts

@@ -0,0 +1,7 @@
+import { StreamLayerContext } from '@streamlayer/sdk-web';
+declare module '@streamlayer/sdk-web' {
+    interface StreamLayerSDK {
+        anonymousAuthorization: () => Promise<void>;
+    }
+}
+export declare const anonymous: (instance: StreamLayerContext, opts: any, done: any) => void;

package/src/index.js

@@ -0,0 +1,39 @@
+import { queries } from '@streamlayer/sdk-web-api';
+import { importJWK, EncryptJWT } from 'jose';
+const anonymousAuth = async (instance, opts)=>{
+    const { schemaName, issuer } = {
+        schemaName: 'slra',
+        issuer: 'sdk-web'
+    } || opts;
+    const organization = await instance.sdk.sdkStore().getStoreItem('organizationSettings').getValue();
+    const userKey = `${organization.pub.kid}`;
+    const schema = `${schemaName}:${organization.id}`;
+    const anonymous = await queries.bypassAuth(instance.sdk.transport, {
+        userKey,
+        schema,
+        init: true
+    });
+    const token = anonymous.meta.token;
+    const pubKey = organization.pub;
+    const pub = await importJWK({
+        ...pubKey
+    });
+    const deviceId = window.crypto.randomUUID();
+    const jwe = await new EncryptJWT({
+        ['device-id']: deviceId,
+        totp: token
+    }).setProtectedHeader({
+        alg: pubKey.alg,
+        enc: 'A256CBC-HS512',
+        kid: pubKey.kid
+    }).setIssuedAt().setIssuer(issuer).setAudience(organization.id).setExpirationTime('2m').encrypt(pub);
+    return instance.sdk.authorizationBypass(schema, jwe);
+};
+export const anonymous = (instance, opts, done)=>{
+    instance.sdk.anonymousAuthorization = async ()=>{
+        await anonymousAuth(instance, opts);
+    };
+    done();
+};
+
+//# sourceMappingURL=index.js.map

package/src/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../../packages/sdk-web-anonymous-auth/src/index.ts"],"sourcesContent":["import { StreamLayerContext } from '@streamlayer/sdk-web'\nimport { queries } from '@streamlayer/sdk-web-api'\n\nimport { importJWK, JWK, EncryptJWT } from 'jose'\n\ndeclare module '@streamlayer/sdk-web' {\n  interface StreamLayerSDK {\n    anonymousAuthorization: () => Promise<void>\n  }\n}\n\nconst anonymousAuth = async (instance: StreamLayerContext, opts) => {\n  const { schemaName, issuer } =\n    {\n      schemaName: 'slra',\n      issuer: 'sdk-web',\n    } || opts\n\n  const organization = await instance.sdk.sdkStore().getStoreItem('organizationSettings').getValue()\n\n  const userKey = `${organization.pub.kid}`\n  const schema = `${schemaName}:${organization.id}`\n\n  const anonymous = await queries.bypassAuth(instance.sdk.transport, { userKey, schema, init: true })\n  const token = anonymous.meta.token\n\n  const pubKey = organization.pub as unknown as JWK\n\n  const pub = await importJWK({ ...pubKey })\n\n  const deviceId = window.crypto.randomUUID()\n  const jwe = await new EncryptJWT({ ['device-id']: deviceId, totp: token })\n    .setProtectedHeader({ alg: pubKey.alg, enc: 'A256CBC-HS512', kid: pubKey.kid })\n    .setIssuedAt()\n    .setIssuer(issuer)\n    .setAudience(organization.id)\n    .setExpirationTime('2m')\n    .encrypt(pub)\n\n  return instance.sdk.authorizationBypass(schema, jwe)\n}\n\nexport const anonymous = (instance: StreamLayerContext, opts, done) => {\n  instance.sdk.anonymousAuthorization = async () => {\n    await anonymousAuth(instance, opts)\n  }\n\n  done()\n}\n"],"names":["queries","importJWK","EncryptJWT","anonymousAuth","instance","opts","schemaName","issuer","organization","sdk","sdkStore","getStoreItem","getValue","userKey","pub","kid","schema","id","anonymous","bypassAuth","transport","init","token","meta","pubKey","deviceId","window","crypto","randomUUID","jwe","totp","setProtectedHeader","alg","enc","setIssuedAt","setIssuer","setAudience","setExpirationTime","encrypt","authorizationBypass","done","anonymousAuthorization"],"mappings":"AACA,SAASA,OAAO,QAAQ,2BAA0B;AAElD,SAASC,SAAS,EAAOC,UAAU,QAAQ,OAAM;AAQjD,MAAMC,gBAAgB,OAAOC,UAA8BC;IACzD,MAAM,EAAEC,UAAU,EAAEC,MAAM,EAAE,GAC1B;QACED,YAAY;QACZC,QAAQ;IACV,KAAKF;IAEP,MAAMG,eAAe,MAAMJ,SAASK,GAAG,CAACC,QAAQ,GAAGC,YAAY,CAAC,wBAAwBC,QAAQ;IAEhG,MAAMC,UAAU,CAAC,EAAEL,aAAaM,GAAG,CAACC,GAAG,CAAC,CAAC;IACzC,MAAMC,SAAS,CAAC,EAAEV,WAAW,CAAC,EAAEE,aAAaS,EAAE,CAAC,CAAC;IAEjD,MAAMC,YAAY,MAAMlB,QAAQmB,UAAU,CAACf,SAASK,GAAG,CAACW,SAAS,EAAE;QAAEP;QAASG;QAAQK,MAAM;IAAK;IACjG,MAAMC,QAAQJ,UAAUK,IAAI,CAACD,KAAK;IAElC,MAAME,SAAShB,aAAaM,GAAG;IAE/B,MAAMA,MAAM,MAAMb,UAAU;QAAE,GAAGuB,MAAM;IAAC;IAExC,MAAMC,WAAWC,OAAOC,MAAM,CAACC,UAAU;IACzC,MAAMC,MAAM,MAAM,IAAI3B,WAAW;QAAE,CAAC,YAAY,EAAEuB;QAAUK,MAAMR;IAAM,GACrES,kBAAkB,CAAC;QAAEC,KAAKR,OAAOQ,GAAG;QAAEC,KAAK;QAAiBlB,KAAKS,OAAOT,GAAG;IAAC,GAC5EmB,WAAW,GACXC,SAAS,CAAC5B,QACV6B,WAAW,CAAC5B,aAAaS,EAAE,EAC3BoB,iBAAiB,CAAC,MAClBC,OAAO,CAACxB;IAEX,OAAOV,SAASK,GAAG,CAAC8B,mBAAmB,CAACvB,QAAQa;AAClD;AAEA,OAAO,MAAMX,YAAY,CAACd,UAA8BC,MAAMmC;IAC5DpC,SAASK,GAAG,CAACgC,sBAAsB,GAAG;QACpC,MAAMtC,cAAcC,UAAUC;IAChC;IAEAmC;AACF,EAAC"}