@thirdweb-dev/service-utils 0.0.0-dev-45f2fcb-20230801221933 → 0.0.0-dev-405f532-20230802043001

package/cf-worker/dist/thirdweb-dev-service-utils-cf-worker.cjs.dev.js

@@ -2,7 +2,7 @@
 
 Object.defineProperty(exports, '__esModule', { value: true });
 
-var index = require('../../dist/index-89fa8ac4.cjs.dev.js');
+var index = require('../../dist/index-f62d7e54.cjs.dev.js');
 var services = require('../../dist/services-a3f36057.cjs.dev.js');
 
 const DEFAULT_CACHE_TTL_SECONDS = 60;
@@ -88,7 +88,19 @@ async function extractAuthorizationData(authInput) {
     // otherwise set the client id to the derived client id (client id based off of secret key)
     clientId = derivedClientId;
   }
+  let jwt = null;
+  if (headers.has("authorization")) {
+    const authHeader = headers.get("authorization");
+    if (authHeader) {
+      const [type, token] = authHeader.split(" ");
+      if (type.toLowerCase() === "bearer") {
+        jwt = token;
+      }
+    }
+  }
   return {
+    jwt,
+    hashedJWT: jwt ? await hashSecretKey(jwt) : null,
     secretKey,
     clientId,
     origin,

package/cf-worker/dist/thirdweb-dev-service-utils-cf-worker.cjs.prod.js

@@ -2,7 +2,7 @@
 
 Object.defineProperty(exports, '__esModule', { value: true });
 
-var index = require('../../dist/index-d665926b.cjs.prod.js');
+var index = require('../../dist/index-0c04091b.cjs.prod.js');
 var services = require('../../dist/services-9e185105.cjs.prod.js');
 
 const DEFAULT_CACHE_TTL_SECONDS = 60;
@@ -88,7 +88,19 @@ async function extractAuthorizationData(authInput) {
     // otherwise set the client id to the derived client id (client id based off of secret key)
     clientId = derivedClientId;
   }
+  let jwt = null;
+  if (headers.has("authorization")) {
+    const authHeader = headers.get("authorization");
+    if (authHeader) {
+      const [type, token] = authHeader.split(" ");
+      if (type.toLowerCase() === "bearer") {
+        jwt = token;
+      }
+    }
+  }
   return {
+    jwt,
+    hashedJWT: jwt ? await hashSecretKey(jwt) : null,
     secretKey,
     clientId,
     origin,

package/cf-worker/dist/thirdweb-dev-service-utils-cf-worker.esm.js

@@ -1,4 +1,4 @@
-import { a as authorize } from '../../dist/index-e63c70ed.esm.js';
+import { a as authorize } from '../../dist/index-41ff3aa6.esm.js';
 export { b as SERVICES, S as SERVICE_DEFINITIONS, a as SERVICE_NAMES, g as getServiceByName } from '../../dist/services-86283509.esm.js';
 
 const DEFAULT_CACHE_TTL_SECONDS = 60;
@@ -84,7 +84,19 @@ async function extractAuthorizationData(authInput) {
     // otherwise set the client id to the derived client id (client id based off of secret key)
     clientId = derivedClientId;
   }
+  let jwt = null;
+  if (headers.has("authorization")) {
+    const authHeader = headers.get("authorization");
+    if (authHeader) {
+      const [type, token] = authHeader.split(" ");
+      if (type.toLowerCase() === "bearer") {
+        jwt = token;
+      }
+    }
+  }
   return {
+    jwt,
+    hashedJWT: jwt ? await hashSecretKey(jwt) : null,
     secretKey,
     clientId,
     origin,

package/dist/declarations/src/cf-worker/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"../../../../src/cf-worker","sources":["index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AAC/E,OAAO,KAAK,EAAkB,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAGrE,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,2BAA2B,CAAC;AAEzD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,yBAAyB,CAAC;AACnE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAEnD,cAAc,kBAAkB,CAAC;AAEjC,KAAK,mBAAmB,GAAG,iBAAiB,GAAG;IAC7C,OAAO,EAAE,WAAW,CAAC;IACrB,GAAG,EAAE,gBAAgB,CAAC;IACtB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B,CAAC;AAIF,KAAK,SAAS,GAAG,aAAa,GAAG;IAC/B,GAAG,EAAE,OAAO,CAAC;CACd,CAAC;AAEF,wBAAsB,eAAe,CACnC,SAAS,EAAE,SAAS,EACpB,aAAa,EAAE,mBAAmB,GACjC,OAAO,CAAC,mBAAmB,CAAC,CA0C9B;AAoED,wBAAsB,aAAa,CAAC,SAAS,EAAE,MAAM,mBAIpD;AAED,wBAAgB,+BAA+B,CAAC,aAAa,EAAE,MAAM,UAEpE"}
+{"version":3,"file":"index.d.ts","sourceRoot":"../../../../src/cf-worker","sources":["index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AAC/E,OAAO,KAAK,EAGV,iBAAiB,EAClB,MAAM,aAAa,CAAC;AAGrB,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,2BAA2B,CAAC;AAEzD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,yBAAyB,CAAC;AACnE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAEnD,cAAc,kBAAkB,CAAC;AAEjC,KAAK,mBAAmB,GAAG,iBAAiB,GAAG;IAC7C,OAAO,EAAE,WAAW,CAAC;IACrB,GAAG,EAAE,gBAAgB,CAAC;IACtB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B,CAAC;AAIF,KAAK,SAAS,GAAG,aAAa,GAAG;IAC/B,GAAG,EAAE,OAAO,CAAC;CACd,CAAC;AAEF,wBAAsB,eAAe,CACnC,SAAS,EAAE,SAAS,EACpB,aAAa,EAAE,mBAAmB,GACjC,OAAO,CAAC,mBAAmB,CAAC,CA0C9B;AAiFD,wBAAsB,aAAa,CAAC,SAAS,EAAE,MAAM,mBAIpD;AAED,wBAAgB,+BAA+B,CAAC,aAAa,EAAE,MAAM,UAEpE"}

package/dist/declarations/src/core/api.d.ts

@@ -21,6 +21,11 @@ export type ApiKeyMetadata = {
         actions: string[];
     }[];
 };
+export type AccountMetadata = {
+    id: string;
+    name: string;
+    creatorWalletAddress: string;
+};
 export type ApiResponse = {
     data: ApiKeyMetadata | null;
     error: {
@@ -29,5 +34,14 @@ export type ApiResponse = {
         message: string;
     };
 };
+export type ApiAccountResponse = {
+    data: AccountMetadata | null;
+    error: {
+        code: string;
+        statusCode: number;
+        message: string;
+    };
+};
 export declare function fetchKeyMetadataFromApi(clientId: string, config: CoreServiceConfig): Promise<ApiResponse>;
+export declare function fetchAccountFromApi(jwt: string, config: CoreServiceConfig): Promise<ApiAccountResponse>;
 //# sourceMappingURL=api.d.ts.map

package/dist/declarations/src/core/api.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"api.d.ts","sourceRoot":"../../../../src/core","sources":["api.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAE9C,MAAM,MAAM,iBAAiB,GAAG;IAC9B,WAAW,EAAE,OAAO,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,WAAW,CAAC;IAC1B,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB,CAAC;AAEF,MAAM,MAAM,cAAc,GAAG;IAC3B,EAAE,EAAE,MAAM,CAAC;IACX,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,QAAQ,EAAE;QACR,IAAI,EAAE,MAAM,CAAC;QACb,eAAe,EAAE,MAAM,EAAE,CAAC;QAC1B,OAAO,EAAE,MAAM,EAAE,CAAC;KACnB,EAAE,CAAC;CACL,CAAC;AAEF,MAAM,MAAM,WAAW,GAAG;IACxB,IAAI,EAAE,cAAc,GAAG,IAAI,CAAC;IAC5B,KAAK,EAAE;QACL,IAAI,EAAE,MAAM,CAAC;QACb,UAAU,EAAE,MAAM,CAAC;QACnB,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;CACH,CAAC;AAEF,wBAAsB,uBAAuB,CAC3C,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,iBAAiB,GACxB,OAAO,CAAC,WAAW,CAAC,CAgBtB"}
+{"version":3,"file":"api.d.ts","sourceRoot":"../../../../src/core","sources":["api.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAE9C,MAAM,MAAM,iBAAiB,GAAG;IAC9B,WAAW,EAAE,OAAO,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,WAAW,CAAC;IAC1B,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB,CAAC;AAEF,MAAM,MAAM,cAAc,GAAG;IAC3B,EAAE,EAAE,MAAM,CAAC;IACX,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,QAAQ,EAAE;QACR,IAAI,EAAE,MAAM,CAAC;QACb,eAAe,EAAE,MAAM,EAAE,CAAC;QAC1B,OAAO,EAAE,MAAM,EAAE,CAAC;KACnB,EAAE,CAAC;CACL,CAAC;AAEF,MAAM,MAAM,eAAe,GAAG;IAC5B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,oBAAoB,EAAE,MAAM,CAAC;CAC9B,CAAC;AAEF,MAAM,MAAM,WAAW,GAAG;IACxB,IAAI,EAAE,cAAc,GAAG,IAAI,CAAC;IAC5B,KAAK,EAAE;QACL,IAAI,EAAE,MAAM,CAAC;QACb,UAAU,EAAE,MAAM,CAAC;QACnB,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;CACH,CAAC;AAEF,MAAM,MAAM,kBAAkB,GAAG;IAC/B,IAAI,EAAE,eAAe,GAAG,IAAI,CAAC;IAC7B,KAAK,EAAE;QACL,IAAI,EAAE,MAAM,CAAC;QACb,UAAU,EAAE,MAAM,CAAC;QACnB,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;CACH,CAAC;AAEF,wBAAsB,uBAAuB,CAC3C,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,iBAAiB,GACxB,OAAO,CAAC,WAAW,CAAC,CAgBtB;AAED,wBAAsB,mBAAmB,CACvC,GAAG,EAAE,MAAM,EACX,MAAM,EAAE,iBAAiB,GACxB,OAAO,CAAC,kBAAkB,CAAC,CAe7B"}

package/dist/declarations/src/core/authorize/client.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"client.d.ts","sourceRoot":"../../../../../src/core/authorize","sources":["client.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AAC7C,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAEnD,MAAM,MAAM,0BAA0B,GAAG;IACvC,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;CACvB,CAAC;AAEF,wBAAgB,eAAe,CAC7B,WAAW,EAAE,0BAA0B,EACvC,UAAU,EAAE,cAAc,GACzB,mBAAmB,CA+FrB"}
+{"version":3,"file":"client.d.ts","sourceRoot":"../../../../../src/core/authorize","sources":["client.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AAC7C,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAEnD,MAAM,MAAM,0BAA0B,GAAG;IACvC,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;CACvB,CAAC;AAEF,wBAAgB,eAAe,CAC7B,WAAW,EAAE,0BAA0B,EACvC,UAAU,EAAE,cAAc,GACzB,mBAAmB,CAsGrB"}

package/dist/declarations/src/core/authorize/index.d.ts

@@ -1,4 +1,4 @@
-import { ApiKeyMetadata, CoreServiceConfig } from "../api";
+import { AccountMetadata, ApiKeyMetadata, CoreServiceConfig } from "../api";
 import { AuthorizationResult } from "./types";
 export type AuthorizationInput = {
     secretKey: string | null;
@@ -6,11 +6,13 @@ export type AuthorizationInput = {
     origin: string | null;
     bundleId: string | null;
     secretKeyHash: string | null;
+    jwt: string | null;
+    hashedJWT: string | null;
     targetAddress?: string | string[];
 };
 type CacheOptions = {
     get: (clientId: string) => Promise<string | null>;
-    put: (clientId: string, data: ApiKeyMetadata) => Promise<void> | void;
+    put: (clientId: string, data: ApiKeyMetadata | AccountMetadata) => Promise<void> | void;
     cacheTtlSeconds: number;
 };
 export declare function authorize(authData: AuthorizationInput, serviceConfig: CoreServiceConfig, cacheOptions?: CacheOptions): Promise<AuthorizationResult>;

package/dist/declarations/src/core/authorize/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"../../../../../src/core/authorize","sources":["index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,cAAc,EACd,iBAAiB,EAElB,MAAM,QAAQ,CAAC;AAGhB,OAAO,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAE9C,MAAM,MAAM,kBAAkB,GAAG;IAC/B,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,aAAa,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;CACnC,CAAC;AAEF,KAAK,YAAY,GAAG;IAClB,GAAG,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IAClD,GAAG,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,cAAc,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IACtE,eAAe,EAAE,MAAM,CAAC;CACzB,CAAC;AASF,wBAAsB,SAAS,CAC7B,QAAQ,EAAE,kBAAkB,EAC5B,aAAa,EAAE,iBAAiB,EAChC,YAAY,CAAC,EAAE,YAAY,GAC1B,OAAO,CAAC,mBAAmB,CAAC,CAiI9B"}
+{"version":3,"file":"index.d.ts","sourceRoot":"../../../../../src/core/authorize","sources":["index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,eAAe,EACf,cAAc,EACd,iBAAiB,EAGlB,MAAM,QAAQ,CAAC;AAGhB,OAAO,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAE9C,MAAM,MAAM,kBAAkB,GAAG;IAC/B,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,GAAG,EAAE,MAAM,GAAG,IAAI,CAAC;IACnB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,aAAa,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;CACnC,CAAC;AAEF,KAAK,YAAY,GAAG;IAClB,GAAG,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IAClD,GAAG,EAAE,CACH,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,cAAc,GAAG,eAAe,KACnC,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAC1B,eAAe,EAAE,MAAM,CAAC;CACzB,CAAC;AAgBF,wBAAsB,SAAS,CAC7B,QAAQ,EAAE,kBAAkB,EAC5B,aAAa,EAAE,iBAAiB,EAChC,YAAY,CAAC,EAAE,YAAY,GAC1B,OAAO,CAAC,mBAAmB,CAAC,CAmN9B"}

package/dist/declarations/src/core/authorize/service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"service.d.ts","sourceRoot":"../../../../../src/core/authorize","sources":["service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,iBAAiB,EAAE,MAAM,QAAQ,CAAC;AAC3D,OAAO,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAE9C,MAAM,MAAM,2BAA2B,GAAG;IAAE,aAAa,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAAA;CAAE,CAAC;AAEhF,wBAAgB,gBAAgB,CAC9B,cAAc,EAAE,cAAc,EAC9B,aAAa,EAAE,iBAAiB,EAChC,oBAAoB,CAAC,EAAE,2BAA2B,GACjD,mBAAmB,CAwDrB"}
+{"version":3,"file":"service.d.ts","sourceRoot":"../../../../../src/core/authorize","sources":["service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,iBAAiB,EAAE,MAAM,QAAQ,CAAC;AAC3D,OAAO,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAE9C,MAAM,MAAM,2BAA2B,GAAG;IAAE,aAAa,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAAA;CAAE,CAAC;AAEhF,wBAAgB,gBAAgB,CAC9B,cAAc,EAAE,cAAc,EAC9B,aAAa,EAAE,iBAAiB,EAChC,oBAAoB,CAAC,EAAE,2BAA2B,GACjD,mBAAmB,CA6DrB"}

package/dist/declarations/src/core/authorize/types.d.ts

@@ -1,7 +1,8 @@
-import { ApiKeyMetadata } from "../api";
+import { AccountMetadata, ApiKeyMetadata } from "../api";
 export type AuthorizationResult = {
     authorized: true;
     apiKeyMeta: ApiKeyMetadata | null;
+    accountMeta: AccountMetadata | null;
 } | {
     authorized: false;
     status: number;

package/dist/declarations/src/core/authorize/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"../../../../../src/core/authorize","sources":["types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AAExC,MAAM,MAAM,mBAAmB,GAC3B;IACE,UAAU,EAAE,IAAI,CAAC;IACjB,UAAU,EAAE,cAAc,GAAG,IAAI,CAAC;CACnC,GACD;IACE,UAAU,EAAE,KAAK,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC"}
+{"version":3,"file":"types.d.ts","sourceRoot":"../../../../../src/core/authorize","sources":["types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AAEzD,MAAM,MAAM,mBAAmB,GAC3B;IACE,UAAU,EAAE,IAAI,CAAC;IACjB,UAAU,EAAE,cAAc,GAAG,IAAI,CAAC;IAClC,WAAW,EAAE,eAAe,GAAG,IAAI,CAAC;CACrC,GACD;IACE,UAAU,EAAE,KAAK,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC"}

package/dist/declarations/src/node/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"../../../../src/node","sources":["index.ts"],"names":[],"mappings":";AAAA,OAAO,KAAK,EAAuB,eAAe,EAAE,MAAM,WAAW,CAAC;AAEtE,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,mBAAmB,CAAC;AAC5D,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAErD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,yBAAyB,CAAC;AACnE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAEnD,cAAc,kBAAkB,CAAC;AAEjC,KAAK,iBAAiB,GAAG,iBAAiB,CAAC;AAE3C,MAAM,MAAM,SAAS,GAAG,aAAa,GAAG;IACtC,GAAG,EAAE,eAAe,CAAC;CACtB,CAAC;AAEF,wBAAsB,aAAa,CACjC,SAAS,EAAE,SAAS,EACpB,aAAa,EAAE,iBAAiB,GAC/B,OAAO,CAAC,mBAAmB,CAAC,CAsB9B;AAaD,wBAAgB,wBAAwB,CACtC,SAAS,EAAE,SAAS,GACnB,kBAAkB,CAwEpB;AAED,wBAAgB,aAAa,CAAC,SAAS,EAAE,MAAM,UAE9C;AAED,wBAAgB,+BAA+B,CAAC,aAAa,EAAE,MAAM,UAEpE"}
+{"version":3,"file":"index.d.ts","sourceRoot":"../../../../src/node","sources":["index.ts"],"names":[],"mappings":";AAAA,OAAO,KAAK,EAAuB,eAAe,EAAE,MAAM,WAAW,CAAC;AAEtE,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,mBAAmB,CAAC;AAC5D,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAErD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,yBAAyB,CAAC;AACnE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAEnD,cAAc,kBAAkB,CAAC;AAEjC,KAAK,iBAAiB,GAAG,iBAAiB,CAAC;AAE3C,MAAM,MAAM,SAAS,GAAG,aAAa,GAAG;IACtC,GAAG,EAAE,eAAe,CAAC;CACtB,CAAC;AAEF,wBAAsB,aAAa,CACjC,SAAS,EAAE,SAAS,EACpB,aAAa,EAAE,iBAAiB,GAC/B,OAAO,CAAC,mBAAmB,CAAC,CAsB9B;AAaD,wBAAgB,wBAAwB,CACtC,SAAS,EAAE,SAAS,GACnB,kBAAkB,CAoFpB;AAED,wBAAgB,aAAa,CAAC,SAAS,EAAE,MAAM,UAE9C;AAED,wBAAgB,+BAA+B,CAAC,aAAa,EAAE,MAAM,UAEpE"}

package/dist/{index-89fa8ac4.cjs.dev.js → index-0c04091b.cjs.prod.js}

@@ -19,6 +19,25 @@ async function fetchKeyMetadataFromApi(clientId, config) {
   }
   return await response.json();
 }
+async function fetchAccountFromApi(jwt, config) {
+  const {
+    apiUrl,
+    serviceApiKey
+  } = config;
+  const url = `${apiUrl}/v1/account/me`;
+  const response = await fetch(url, {
+    method: "GET",
+    headers: {
+      "x-service-api-key": serviceApiKey,
+      "content-type": "application/json",
+      authorization: `Bearer ${jwt}`
+    }
+  });
+  if (!response.ok) {
+    throw new Error(`Error fetching account from API: ${response.statusText}`);
+  }
+  return await response.json();
+}
 
 function authorizeClient(authOptions, apiKeyMeta) {
   const {
@@ -31,6 +50,16 @@ function authorizeClient(authOptions, apiKeyMeta) {
     bundleIds,
     secretHash
   } = apiKeyMeta;
+  const authResult = {
+    authorized: true,
+    apiKeyMeta,
+    accountMeta: {
+      id: apiKeyMeta.accountId,
+      // TODO update this later
+      name: "",
+      creatorWalletAddress: apiKeyMeta.creatorWalletAddress
+    }
+  };
 
   // check for secretHash
   if (providedSecretHash) {
@@ -42,18 +71,12 @@ function authorizeClient(authOptions, apiKeyMeta) {
         status: 401
       };
     }
-    return {
-      authorized: true,
-      apiKeyMeta
-    };
+    return authResult;
   }
 
   // check for public restrictions
   if (domains.includes("*")) {
-    return {
-      authorized: true,
-      apiKeyMeta
-    };
+    return authResult;
   }
 
   // validate domains
@@ -61,24 +84,29 @@ function authorizeClient(authOptions, apiKeyMeta) {
     if (
     // find matching domain, or if all domains allowed
     domains.find(d => {
+      // if any domain is allowed, we'll return true
       if (d === "*") {
         return true;
       }
 
+      // special rule for `localhost`
+      // if the domain is localhost, we'll allow any origin that starts with localhost
+      if (d === "localhost" && origin.startsWith("localhost")) {
+        return true;
+      }
+
       // If the allowedDomain has a wildcard,
       // we'll check that the ending of our domain matches the wildcard
       if (d.startsWith("*.")) {
-        const domainRoot = d.slice(2);
+        // get rid of the * and check if it ends with the `.<domain>.<tld>`
+        const domainRoot = d.slice(1);
         return origin.endsWith(domainRoot);
       }
 
       // If there's no wildcard, we'll check for an exact match
       return d === origin;
     })) {
-      return {
-        authorized: true,
-        apiKeyMeta
-      };
+      return authResult;
     }
     return {
       authorized: false,
@@ -98,10 +126,7 @@ function authorizeClient(authOptions, apiKeyMeta) {
       }
       return b === bundleId;
     })) {
-      return {
-        authorized: true,
-        apiKeyMeta
-      };
+      return authResult;
     }
     return {
       authorized: false,
@@ -162,6 +187,11 @@ function authorizeService(apiKeyMetadata, serviceConfig, authorizationPayload) {
   }
   return {
     authorized: true,
+    accountMeta: {
+      id: apiKeyMetadata.accountId,
+      name: "",
+      creatorWalletAddress: apiKeyMetadata.creatorWalletAddress
+    },
     apiKeyMeta: apiKeyMetadata
   };
 }
@@ -170,22 +200,101 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   const {
     clientId,
     targetAddress,
-    secretKeyHash
+    secretKeyHash,
+    jwt,
+    hashedJWT
   } = authData;
   const {
     enforceAuth
   } = serviceConfig;
 
-  // BACKWARDS COMPAT: if auth not enforced and
-  //                   we don't have auth credentials bypass
+  // BACKWARDS COMPAT: if auth not enforced and we don't have auth credentials bypass
   if (!enforceAuth && !clientId && !secretKeyHash) {
     return {
       authorized: true,
-      apiKeyMeta: null
+      apiKeyMeta: null,
+      accountMeta: null
+    };
+  }
+  // if we come in with a JWT then we only check the account is valid
+  if (jwt && hashedJWT) {
+    let accountMeta = null;
+    if (cacheOptions) {
+      try {
+        const cachedAccountInfo = await cacheOptions.get(hashedJWT);
+        if (cachedAccountInfo) {
+          const parsed = JSON.parse(cachedAccountInfo);
+          if ("updatedAt" in parsed) {
+            // we want to compare the updatedAt time to the current time
+            // if the difference is greater than the cacheTtl we want to ignore the cached data
+            const now = Date.now();
+            const diff = now - parsed.updatedAt;
+            const cacheTtl = cacheOptions.cacheTtlSeconds * 1000;
+            // only if the diff is less than the cacheTtl do we want to use the cached key
+            if (diff < cacheTtl * 1000) {
+              accountMeta = parsed.apiKeyMeta;
+            }
+          } else {
+            accountMeta = parsed;
+          }
+        }
+      } catch (err) {
+        // ignore errors, proceed as if not in cache
+      }
+    }
+    if (!accountMeta) {
+      try {
+        const {
+          data,
+          error
+        } = await fetchAccountFromApi(jwt, serviceConfig);
+        if (error) {
+          return {
+            authorized: false,
+            errorCode: error.code,
+            errorMessage: error.message,
+            status: error.statusCode
+          };
+        } else if (!data) {
+          return {
+            authorized: false,
+            errorCode: "NO_ACCOUNT",
+            errorMessage: "No error but also no account returned.",
+            status: 500
+          };
+        }
+        accountMeta = data;
+        if (cacheOptions) {
+          await cacheOptions.put(hashedJWT, accountMeta);
+        }
+      } catch (err) {
+        console.warn("failed to fetch account from api", err);
+        return {
+          authorized: false,
+          status: 500,
+          errorMessage: "Failed to account information.",
+          errorCode: "FAILED_TO_ACCOUNT"
+        };
+      }
+    }
+    // if we still don't have an accountMeta at this point we can't authorize
+    if (!accountMeta) {
+      return {
+        authorized: false,
+        status: 401,
+        errorMessage: "Missing account information.",
+        errorCode: "MISSING_ACCOUNT"
+      };
+    }
+    // otherwise we want to return early with the accountMeta
+    return {
+      authorized: true,
+      apiKeyMeta: null,
+      accountMeta
     };
   }
 
-  // if we don't have a client id at this point, we can't authorize
+  // if we don't have a client id at this point we can't authorize
   if (!clientId) {
     return {
       authorized: false,
@@ -196,7 +305,7 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   }
   let apiKeyMeta = null;
   // if we have cache options we want to check the cache first
-  if (cacheOptions && clientId) {
+  if (cacheOptions) {
     try {
       const cachedKey = await cacheOptions.get(clientId);
       if (cachedKey) {
@@ -221,7 +330,7 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   }
 
   // if we don't have a cached key, fetch from the API
-  if (!apiKeyMeta && clientId) {
+  if (!apiKeyMeta) {
     try {
       const {
         data,
@@ -295,7 +404,13 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   // if we reach this point we are authorized!
   return {
     authorized: true,
-    apiKeyMeta
+    apiKeyMeta,
+    accountMeta: {
+      id: apiKeyMeta.accountId,
+      // TODO update this later
+      name: "",
+      creatorWalletAddress: apiKeyMeta.creatorWalletAddress
+    }
   };
 }
 

package/dist/{index-e63c70ed.esm.js → index-41ff3aa6.esm.js}

@@ -17,6 +17,25 @@ async function fetchKeyMetadataFromApi(clientId, config) {
   }
   return await response.json();
 }
+async function fetchAccountFromApi(jwt, config) {
+  const {
+    apiUrl,
+    serviceApiKey
+  } = config;
+  const url = `${apiUrl}/v1/account/me`;
+  const response = await fetch(url, {
+    method: "GET",
+    headers: {
+      "x-service-api-key": serviceApiKey,
+      "content-type": "application/json",
+      authorization: `Bearer ${jwt}`
+    }
+  });
+  if (!response.ok) {
+    throw new Error(`Error fetching account from API: ${response.statusText}`);
+  }
+  return await response.json();
+}
 
 function authorizeClient(authOptions, apiKeyMeta) {
   const {
@@ -29,6 +48,16 @@ function authorizeClient(authOptions, apiKeyMeta) {
     bundleIds,
     secretHash
   } = apiKeyMeta;
+  const authResult = {
+    authorized: true,
+    apiKeyMeta,
+    accountMeta: {
+      id: apiKeyMeta.accountId,
+      // TODO update this later
+      name: "",
+      creatorWalletAddress: apiKeyMeta.creatorWalletAddress
+    }
+  };
 
   // check for secretHash
   if (providedSecretHash) {
@@ -40,18 +69,12 @@ function authorizeClient(authOptions, apiKeyMeta) {
         status: 401
       };
     }
-    return {
-      authorized: true,
-      apiKeyMeta
-    };
+    return authResult;
   }
 
   // check for public restrictions
   if (domains.includes("*")) {
-    return {
-      authorized: true,
-      apiKeyMeta
-    };
+    return authResult;
   }
 
   // validate domains
@@ -59,24 +82,29 @@ function authorizeClient(authOptions, apiKeyMeta) {
     if (
     // find matching domain, or if all domains allowed
     domains.find(d => {
+      // if any domain is allowed, we'll return true
       if (d === "*") {
         return true;
       }
 
+      // special rule for `localhost`
+      // if the domain is localhost, we'll allow any origin that starts with localhost
+      if (d === "localhost" && origin.startsWith("localhost")) {
+        return true;
+      }
+
       // If the allowedDomain has a wildcard,
       // we'll check that the ending of our domain matches the wildcard
       if (d.startsWith("*.")) {
-        const domainRoot = d.slice(2);
+        // get rid of the * and check if it ends with the `.<domain>.<tld>`
+        const domainRoot = d.slice(1);
         return origin.endsWith(domainRoot);
       }
 
       // If there's no wildcard, we'll check for an exact match
       return d === origin;
     })) {
-      return {
-        authorized: true,
-        apiKeyMeta
-      };
+      return authResult;
     }
     return {
       authorized: false,
@@ -96,10 +124,7 @@ function authorizeClient(authOptions, apiKeyMeta) {
       }
       return b === bundleId;
     })) {
-      return {
-        authorized: true,
-        apiKeyMeta
-      };
+      return authResult;
     }
     return {
       authorized: false,
@@ -160,6 +185,11 @@ function authorizeService(apiKeyMetadata, serviceConfig, authorizationPayload) {
   }
   return {
     authorized: true,
+    accountMeta: {
+      id: apiKeyMetadata.accountId,
+      name: "",
+      creatorWalletAddress: apiKeyMetadata.creatorWalletAddress
+    },
     apiKeyMeta: apiKeyMetadata
   };
 }
@@ -168,22 +198,101 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   const {
     clientId,
     targetAddress,
-    secretKeyHash
+    secretKeyHash,
+    jwt,
+    hashedJWT
   } = authData;
   const {
     enforceAuth
   } = serviceConfig;
 
-  // BACKWARDS COMPAT: if auth not enforced and
-  //                   we don't have auth credentials bypass
+  // BACKWARDS COMPAT: if auth not enforced and we don't have auth credentials bypass
   if (!enforceAuth && !clientId && !secretKeyHash) {
     return {
       authorized: true,
-      apiKeyMeta: null
+      apiKeyMeta: null,
+      accountMeta: null
+    };
+  }
+  // if we come in with a JWT then we only check the account is valid
+  if (jwt && hashedJWT) {
+    let accountMeta = null;
+    if (cacheOptions) {
+      try {
+        const cachedAccountInfo = await cacheOptions.get(hashedJWT);
+        if (cachedAccountInfo) {
+          const parsed = JSON.parse(cachedAccountInfo);
+          if ("updatedAt" in parsed) {
+            // we want to compare the updatedAt time to the current time
+            // if the difference is greater than the cacheTtl we want to ignore the cached data
+            const now = Date.now();
+            const diff = now - parsed.updatedAt;
+            const cacheTtl = cacheOptions.cacheTtlSeconds * 1000;
+            // only if the diff is less than the cacheTtl do we want to use the cached key
+            if (diff < cacheTtl * 1000) {
+              accountMeta = parsed.apiKeyMeta;
+            }
+          } else {
+            accountMeta = parsed;
+          }
+        }
+      } catch (err) {
+        // ignore errors, proceed as if not in cache
+      }
+    }
+    if (!accountMeta) {
+      try {
+        const {
+          data,
+          error
+        } = await fetchAccountFromApi(jwt, serviceConfig);
+        if (error) {
+          return {
+            authorized: false,
+            errorCode: error.code,
+            errorMessage: error.message,
+            status: error.statusCode
+          };
+        } else if (!data) {
+          return {
+            authorized: false,
+            errorCode: "NO_ACCOUNT",
+            errorMessage: "No error but also no account returned.",
+            status: 500
+          };
+        }
+        accountMeta = data;
+        if (cacheOptions) {
+          await cacheOptions.put(hashedJWT, accountMeta);
+        }
+      } catch (err) {
+        console.warn("failed to fetch account from api", err);
+        return {
+          authorized: false,
+          status: 500,
+          errorMessage: "Failed to account information.",
+          errorCode: "FAILED_TO_ACCOUNT"
+        };
+      }
+    }
+    // if we still don't have an accountMeta at this point we can't authorize
+    if (!accountMeta) {
+      return {
+        authorized: false,
+        status: 401,
+        errorMessage: "Missing account information.",
+        errorCode: "MISSING_ACCOUNT"
+      };
+    }
+    // otherwise we want to return early with the accountMeta
+    return {
+      authorized: true,
+      apiKeyMeta: null,
+      accountMeta
     };
   }
 
-  // if we don't have a client id at this point, we can't authorize
+  // if we don't have a client id at this point we can't authorize
   if (!clientId) {
     return {
       authorized: false,
@@ -194,7 +303,7 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   }
   let apiKeyMeta = null;
   // if we have cache options we want to check the cache first
-  if (cacheOptions && clientId) {
+  if (cacheOptions) {
     try {
       const cachedKey = await cacheOptions.get(clientId);
       if (cachedKey) {
@@ -219,7 +328,7 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   }
 
   // if we don't have a cached key, fetch from the API
-  if (!apiKeyMeta && clientId) {
+  if (!apiKeyMeta) {
     try {
       const {
         data,
@@ -293,7 +402,13 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   // if we reach this point we are authorized!
   return {
     authorized: true,
-    apiKeyMeta
+    apiKeyMeta,
+    accountMeta: {
+      id: apiKeyMeta.accountId,
+      // TODO update this later
+      name: "",
+      creatorWalletAddress: apiKeyMeta.creatorWalletAddress
+    }
   };
 }
 

package/dist/{index-d665926b.cjs.prod.js → index-f62d7e54.cjs.dev.js}

@@ -19,6 +19,25 @@ async function fetchKeyMetadataFromApi(clientId, config) {
   }
   return await response.json();
 }
+async function fetchAccountFromApi(jwt, config) {
+  const {
+    apiUrl,
+    serviceApiKey
+  } = config;
+  const url = `${apiUrl}/v1/account/me`;
+  const response = await fetch(url, {
+    method: "GET",
+    headers: {
+      "x-service-api-key": serviceApiKey,
+      "content-type": "application/json",
+      authorization: `Bearer ${jwt}`
+    }
+  });
+  if (!response.ok) {
+    throw new Error(`Error fetching account from API: ${response.statusText}`);
+  }
+  return await response.json();
+}
 
 function authorizeClient(authOptions, apiKeyMeta) {
   const {
@@ -31,6 +50,16 @@ function authorizeClient(authOptions, apiKeyMeta) {
     bundleIds,
     secretHash
   } = apiKeyMeta;
+  const authResult = {
+    authorized: true,
+    apiKeyMeta,
+    accountMeta: {
+      id: apiKeyMeta.accountId,
+      // TODO update this later
+      name: "",
+      creatorWalletAddress: apiKeyMeta.creatorWalletAddress
+    }
+  };
 
   // check for secretHash
   if (providedSecretHash) {
@@ -42,18 +71,12 @@ function authorizeClient(authOptions, apiKeyMeta) {
         status: 401
       };
     }
-    return {
-      authorized: true,
-      apiKeyMeta
-    };
+    return authResult;
   }
 
   // check for public restrictions
   if (domains.includes("*")) {
-    return {
-      authorized: true,
-      apiKeyMeta
-    };
+    return authResult;
   }
 
   // validate domains
@@ -61,24 +84,29 @@ function authorizeClient(authOptions, apiKeyMeta) {
     if (
     // find matching domain, or if all domains allowed
     domains.find(d => {
+      // if any domain is allowed, we'll return true
       if (d === "*") {
         return true;
       }
 
+      // special rule for `localhost`
+      // if the domain is localhost, we'll allow any origin that starts with localhost
+      if (d === "localhost" && origin.startsWith("localhost")) {
+        return true;
+      }
+
       // If the allowedDomain has a wildcard,
       // we'll check that the ending of our domain matches the wildcard
       if (d.startsWith("*.")) {
-        const domainRoot = d.slice(2);
+        // get rid of the * and check if it ends with the `.<domain>.<tld>`
+        const domainRoot = d.slice(1);
         return origin.endsWith(domainRoot);
       }
 
       // If there's no wildcard, we'll check for an exact match
       return d === origin;
     })) {
-      return {
-        authorized: true,
-        apiKeyMeta
-      };
+      return authResult;
     }
     return {
       authorized: false,
@@ -98,10 +126,7 @@ function authorizeClient(authOptions, apiKeyMeta) {
       }
       return b === bundleId;
     })) {
-      return {
-        authorized: true,
-        apiKeyMeta
-      };
+      return authResult;
     }
     return {
       authorized: false,
@@ -162,6 +187,11 @@ function authorizeService(apiKeyMetadata, serviceConfig, authorizationPayload) {
   }
   return {
     authorized: true,
+    accountMeta: {
+      id: apiKeyMetadata.accountId,
+      name: "",
+      creatorWalletAddress: apiKeyMetadata.creatorWalletAddress
+    },
     apiKeyMeta: apiKeyMetadata
   };
 }
@@ -170,22 +200,101 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   const {
     clientId,
     targetAddress,
-    secretKeyHash
+    secretKeyHash,
+    jwt,
+    hashedJWT
   } = authData;
   const {
     enforceAuth
   } = serviceConfig;
 
-  // BACKWARDS COMPAT: if auth not enforced and
-  //                   we don't have auth credentials bypass
+  // BACKWARDS COMPAT: if auth not enforced and we don't have auth credentials bypass
   if (!enforceAuth && !clientId && !secretKeyHash) {
     return {
       authorized: true,
-      apiKeyMeta: null
+      apiKeyMeta: null,
+      accountMeta: null
+    };
+  }
+  // if we come in with a JWT then we only check the account is valid
+  if (jwt && hashedJWT) {
+    let accountMeta = null;
+    if (cacheOptions) {
+      try {
+        const cachedAccountInfo = await cacheOptions.get(hashedJWT);
+        if (cachedAccountInfo) {
+          const parsed = JSON.parse(cachedAccountInfo);
+          if ("updatedAt" in parsed) {
+            // we want to compare the updatedAt time to the current time
+            // if the difference is greater than the cacheTtl we want to ignore the cached data
+            const now = Date.now();
+            const diff = now - parsed.updatedAt;
+            const cacheTtl = cacheOptions.cacheTtlSeconds * 1000;
+            // only if the diff is less than the cacheTtl do we want to use the cached key
+            if (diff < cacheTtl * 1000) {
+              accountMeta = parsed.apiKeyMeta;
+            }
+          } else {
+            accountMeta = parsed;
+          }
+        }
+      } catch (err) {
+        // ignore errors, proceed as if not in cache
+      }
+    }
+    if (!accountMeta) {
+      try {
+        const {
+          data,
+          error
+        } = await fetchAccountFromApi(jwt, serviceConfig);
+        if (error) {
+          return {
+            authorized: false,
+            errorCode: error.code,
+            errorMessage: error.message,
+            status: error.statusCode
+          };
+        } else if (!data) {
+          return {
+            authorized: false,
+            errorCode: "NO_ACCOUNT",
+            errorMessage: "No error but also no account returned.",
+            status: 500
+          };
+        }
+        accountMeta = data;
+        if (cacheOptions) {
+          await cacheOptions.put(hashedJWT, accountMeta);
+        }
+      } catch (err) {
+        console.warn("failed to fetch account from api", err);
+        return {
+          authorized: false,
+          status: 500,
+          errorMessage: "Failed to account information.",
+          errorCode: "FAILED_TO_ACCOUNT"
+        };
+      }
+    }
+    // if we still don't have an accountMeta at this point we can't authorize
+    if (!accountMeta) {
+      return {
+        authorized: false,
+        status: 401,
+        errorMessage: "Missing account information.",
+        errorCode: "MISSING_ACCOUNT"
+      };
+    }
+    // otherwise we want to return early with the accountMeta
+    return {
+      authorized: true,
+      apiKeyMeta: null,
+      accountMeta
     };
   }
 
-  // if we don't have a client id at this point, we can't authorize
+  // if we don't have a client id at this point we can't authorize
   if (!clientId) {
     return {
       authorized: false,
@@ -196,7 +305,7 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   }
   let apiKeyMeta = null;
   // if we have cache options we want to check the cache first
-  if (cacheOptions && clientId) {
+  if (cacheOptions) {
     try {
       const cachedKey = await cacheOptions.get(clientId);
       if (cachedKey) {
@@ -221,7 +330,7 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   }
 
   // if we don't have a cached key, fetch from the API
-  if (!apiKeyMeta && clientId) {
+  if (!apiKeyMeta) {
     try {
       const {
         data,
@@ -295,7 +404,13 @@ async function authorize(authData, serviceConfig, cacheOptions) {
   // if we reach this point we are authorized!
   return {
     authorized: true,
-    apiKeyMeta
+    apiKeyMeta,
+    accountMeta: {
+      id: apiKeyMeta.accountId,
+      // TODO update this later
+      name: "",
+      creatorWalletAddress: apiKeyMeta.creatorWalletAddress
+    }
   };
 }
 

package/node/dist/thirdweb-dev-service-utils-node.cjs.dev.js

@@ -3,7 +3,7 @@
 Object.defineProperty(exports, '__esModule', { value: true });
 
 var node_crypto = require('node:crypto');
-var index = require('../../dist/index-89fa8ac4.cjs.dev.js');
+var index = require('../../dist/index-f62d7e54.cjs.dev.js');
 var services = require('../../dist/services-a3f36057.cjs.dev.js');
 
 async function authorizeNode(authInput, serviceConfig) {
@@ -91,7 +91,18 @@ function extractAuthorizationData(authInput) {
     // otherwise set the client id to the derived client id (client id based off of secret key)
     clientId = derivedClientId;
   }
+  let jwt = null;
+  // check for authorization header on the request
+  const authorizationHeader = getHeader(headers, "authorization");
+  if (authorizationHeader) {
+    const [type, token] = authorizationHeader.split(" ");
+    if (type.toLowerCase() === "bearer") {
+      jwt = token;
+    }
+  }
   return {
+    jwt,
+    hashedJWT: jwt ? hashSecretKey(jwt) : null,
     secretKeyHash,
     secretKey,
     clientId,

package/node/dist/thirdweb-dev-service-utils-node.cjs.prod.js

@@ -3,7 +3,7 @@
 Object.defineProperty(exports, '__esModule', { value: true });
 
 var node_crypto = require('node:crypto');
-var index = require('../../dist/index-d665926b.cjs.prod.js');
+var index = require('../../dist/index-0c04091b.cjs.prod.js');
 var services = require('../../dist/services-9e185105.cjs.prod.js');
 
 async function authorizeNode(authInput, serviceConfig) {
@@ -91,7 +91,18 @@ function extractAuthorizationData(authInput) {
     // otherwise set the client id to the derived client id (client id based off of secret key)
     clientId = derivedClientId;
   }
+  let jwt = null;
+  // check for authorization header on the request
+  const authorizationHeader = getHeader(headers, "authorization");
+  if (authorizationHeader) {
+    const [type, token] = authorizationHeader.split(" ");
+    if (type.toLowerCase() === "bearer") {
+      jwt = token;
+    }
+  }
   return {
+    jwt,
+    hashedJWT: jwt ? hashSecretKey(jwt) : null,
     secretKeyHash,
     secretKey,
     clientId,

package/node/dist/thirdweb-dev-service-utils-node.esm.js

@@ -1,5 +1,5 @@
 import { createHash } from 'node:crypto';
-import { a as authorize } from '../../dist/index-e63c70ed.esm.js';
+import { a as authorize } from '../../dist/index-41ff3aa6.esm.js';
 export { b as SERVICES, S as SERVICE_DEFINITIONS, a as SERVICE_NAMES, g as getServiceByName } from '../../dist/services-86283509.esm.js';
 
 async function authorizeNode(authInput, serviceConfig) {
@@ -87,7 +87,18 @@ function extractAuthorizationData(authInput) {
     // otherwise set the client id to the derived client id (client id based off of secret key)
     clientId = derivedClientId;
   }
+  let jwt = null;
+  // check for authorization header on the request
+  const authorizationHeader = getHeader(headers, "authorization");
+  if (authorizationHeader) {
+    const [type, token] = authorizationHeader.split(" ");
+    if (type.toLowerCase() === "bearer") {
+      jwt = token;
+    }
+  }
   return {
+    jwt,
+    hashedJWT: jwt ? hashSecretKey(jwt) : null,
     secretKeyHash,
     secretKey,
     clientId,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@thirdweb-dev/service-utils",
-  "version": "0.0.0-dev-45f2fcb-20230801221933",
+  "version": "0.0.0-dev-405f532-20230802043001",
   "main": "dist/thirdweb-dev-service-utils.cjs.js",
   "module": "dist/thirdweb-dev-service-utils.esm.js",
   "exports": {