@thirdweb-dev/service-utils 0.1.1-nightly-7dc685bb-20230714041905 → 0.2.0-nightly-5eb6fc1b-20230714082745

package/cf-worker/dist/thirdweb-dev-service-utils-cf-worker.cjs.d.ts

@@ -0,0 +1,2 @@
+export * from "../../dist/declarations/src/cf-worker/index";
+//# sourceMappingURL=thirdweb-dev-service-utils-cf-worker.cjs.d.ts.map

package/cf-worker/dist/thirdweb-dev-service-utils-cf-worker.cjs.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"thirdweb-dev-service-utils-cf-worker.cjs.d.ts","sourceRoot":"","sources":["../../dist/declarations/src/cf-worker/index.d.ts"],"names":[],"mappings":"AAAA"}

package/cf-worker/dist/thirdweb-dev-service-utils-cf-worker.cjs.dev.js

@@ -0,0 +1,115 @@
+'use strict';
+
+Object.defineProperty(exports, '__esModule', { value: true });
+
+var index = require('../../dist/index-fcf69a55.cjs.dev.js');
+var services = require('../../dist/services-a3f36057.cjs.dev.js');
+
+const DEFAULT_CACHE_TTL_SECONDS = 60;
+async function authorizeWorker(authInput, serviceConfig) {
+  let authData;
+  try {
+    authData = await extractAuthorizationData(authInput);
+  } catch (e) {
+    if (e instanceof Error && e.message === "KEY_CONFLICT") {
+      return {
+        authorized: false,
+        status: 400,
+        errorMessage: "Please pass either a client id or a secret key.",
+        errorCode: "KEY_CONFLICT"
+      };
+    }
+    return {
+      authorized: false,
+      status: 500,
+      errorMessage: "Internal Server Error",
+      errorCode: "INTERNAL_SERVER_ERROR"
+    };
+  }
+  return await index.authorize(authData, serviceConfig, {
+    get: async clientId => serviceConfig.kvStore.get(clientId),
+    put: (clientId, apiKeyMeta) => serviceConfig.ctx.waitUntil(serviceConfig.kvStore.put(clientId, JSON.stringify({
+      updatedAt: Date.now(),
+      apiKeyMeta
+    }), {
+      expirationTtl: serviceConfig.cacheTtlSeconds && serviceConfig.cacheTtlSeconds >= DEFAULT_CACHE_TTL_SECONDS ? serviceConfig.cacheTtlSeconds : DEFAULT_CACHE_TTL_SECONDS
+    })),
+    cacheTtlSeconds: serviceConfig.cacheTtlSeconds ?? DEFAULT_CACHE_TTL_SECONDS
+  });
+}
+async function extractAuthorizationData(authInput) {
+  const requestUrl = new URL(authInput.req.url);
+  const headers = authInput.req.headers;
+  const secretKey = headers.get("x-secret-key");
+
+  // prefer clientId that is explicitly passed in
+  let clientId = authInput.clientId ?? null;
+  if (!clientId) {
+    // next preference is clientId from header
+    clientId = headers.get("x-client-id");
+  }
+
+  // next preference is search param
+  if (!clientId) {
+    clientId = requestUrl.searchParams.get("clientId");
+  }
+  // bundle id from header is first preference
+  let bundleId = headers.get("x-bundle-id");
+
+  // next preference is search param
+  if (!bundleId) {
+    bundleId = requestUrl.searchParams.get("bundleId");
+  }
+  let origin = headers.get("origin");
+  // if origin header is not available we'll fall back to referrer;
+  if (!origin) {
+    origin = headers.get("referer");
+  }
+  // if we have an origin at this point, normalize it
+  if (origin) {
+    try {
+      origin = new URL(origin).hostname;
+    } catch (e) {
+      console.warn("failed to parse origin", origin, e);
+    }
+  }
+
+  // handle if we a secret key is passed in the headers
+  let secretKeyHash = null;
+  if (secretKey) {
+    // hash the secret key
+    secretKeyHash = await hashSecretKey(secretKey);
+    // derive the client id from the secret key hash
+    const derivedClientId = deriveClientIdFromSecretKeyHash(secretKeyHash);
+    // if we already have a client id passed in we need to make sure they match
+    if (clientId && clientId !== derivedClientId) {
+      throw new Error("KEY_CONFLICT");
+    }
+    // otherwise set the client id to the derived client id (client id based off of secret key)
+    clientId = derivedClientId;
+  }
+  return {
+    secretKey,
+    clientId,
+    origin,
+    bundleId,
+    secretKeyHash
+  };
+}
+async function hashSecretKey(secretKey) {
+  return bufferToHex(await crypto.subtle.digest("SHA-256", new TextEncoder().encode(secretKey)));
+}
+function deriveClientIdFromSecretKeyHash(secretKeyHash) {
+  return secretKeyHash.slice(0, 32);
+}
+function bufferToHex(buffer) {
+  return [...new Uint8Array(buffer)].map(x => x.toString(16).padStart(2, "0")).join("");
+}
+
+exports.SERVICES = services.SERVICES;
+exports.SERVICE_DEFINITIONS = services.SERVICE_DEFINITIONS;
+exports.SERVICE_NAMES = services.SERVICE_NAMES;
+exports.getServiceByName = services.getServiceByName;
+exports.authorizeWorker = authorizeWorker;
+exports.deriveClientIdFromSecretKeyHash = deriveClientIdFromSecretKeyHash;
+exports.hashSecretKey = hashSecretKey;

package/cf-worker/dist/thirdweb-dev-service-utils-cf-worker.cjs.js

@@ -0,0 +1,7 @@
+'use strict';
+
+if (process.env.NODE_ENV === "production") {
+  module.exports = require("./thirdweb-dev-service-utils-cf-worker.cjs.prod.js");
+} else {
+  module.exports = require("./thirdweb-dev-service-utils-cf-worker.cjs.dev.js");
+}

package/cf-worker/dist/thirdweb-dev-service-utils-cf-worker.cjs.prod.js

@@ -0,0 +1,115 @@
+'use strict';
+
+Object.defineProperty(exports, '__esModule', { value: true });
+
+var index = require('../../dist/index-3060948e.cjs.prod.js');
+var services = require('../../dist/services-9e185105.cjs.prod.js');
+
+const DEFAULT_CACHE_TTL_SECONDS = 60;
+async function authorizeWorker(authInput, serviceConfig) {
+  let authData;
+  try {
+    authData = await extractAuthorizationData(authInput);
+  } catch (e) {
+    if (e instanceof Error && e.message === "KEY_CONFLICT") {
+      return {
+        authorized: false,
+        status: 400,
+        errorMessage: "Please pass either a client id or a secret key.",
+        errorCode: "KEY_CONFLICT"
+      };
+    }
+    return {
+      authorized: false,
+      status: 500,
+      errorMessage: "Internal Server Error",
+      errorCode: "INTERNAL_SERVER_ERROR"
+    };
+  }
+  return await index.authorize(authData, serviceConfig, {
+    get: async clientId => serviceConfig.kvStore.get(clientId),
+    put: (clientId, apiKeyMeta) => serviceConfig.ctx.waitUntil(serviceConfig.kvStore.put(clientId, JSON.stringify({
+      updatedAt: Date.now(),
+      apiKeyMeta
+    }), {
+      expirationTtl: serviceConfig.cacheTtlSeconds && serviceConfig.cacheTtlSeconds >= DEFAULT_CACHE_TTL_SECONDS ? serviceConfig.cacheTtlSeconds : DEFAULT_CACHE_TTL_SECONDS
+    })),
+    cacheTtlSeconds: serviceConfig.cacheTtlSeconds ?? DEFAULT_CACHE_TTL_SECONDS
+  });
+}
+async function extractAuthorizationData(authInput) {
+  const requestUrl = new URL(authInput.req.url);
+  const headers = authInput.req.headers;
+  const secretKey = headers.get("x-secret-key");
+
+  // prefer clientId that is explicitly passed in
+  let clientId = authInput.clientId ?? null;
+  if (!clientId) {
+    // next preference is clientId from header
+    clientId = headers.get("x-client-id");
+  }
+
+  // next preference is search param
+  if (!clientId) {
+    clientId = requestUrl.searchParams.get("clientId");
+  }
+  // bundle id from header is first preference
+  let bundleId = headers.get("x-bundle-id");
+
+  // next preference is search param
+  if (!bundleId) {
+    bundleId = requestUrl.searchParams.get("bundleId");
+  }
+  let origin = headers.get("origin");
+  // if origin header is not available we'll fall back to referrer;
+  if (!origin) {
+    origin = headers.get("referer");
+  }
+  // if we have an origin at this point, normalize it
+  if (origin) {
+    try {
+      origin = new URL(origin).hostname;
+    } catch (e) {
+      console.warn("failed to parse origin", origin, e);
+    }
+  }
+
+  // handle if we a secret key is passed in the headers
+  let secretKeyHash = null;
+  if (secretKey) {
+    // hash the secret key
+    secretKeyHash = await hashSecretKey(secretKey);
+    // derive the client id from the secret key hash
+    const derivedClientId = deriveClientIdFromSecretKeyHash(secretKeyHash);
+    // if we already have a client id passed in we need to make sure they match
+    if (clientId && clientId !== derivedClientId) {
+      throw new Error("KEY_CONFLICT");
+    }
+    // otherwise set the client id to the derived client id (client id based off of secret key)
+    clientId = derivedClientId;
+  }
+  return {
+    secretKey,
+    clientId,
+    origin,
+    bundleId,
+    secretKeyHash
+  };
+}
+async function hashSecretKey(secretKey) {
+  return bufferToHex(await crypto.subtle.digest("SHA-256", new TextEncoder().encode(secretKey)));
+}
+function deriveClientIdFromSecretKeyHash(secretKeyHash) {
+  return secretKeyHash.slice(0, 32);
+}
+function bufferToHex(buffer) {
+  return [...new Uint8Array(buffer)].map(x => x.toString(16).padStart(2, "0")).join("");
+}
+
+exports.SERVICES = services.SERVICES;
+exports.SERVICE_DEFINITIONS = services.SERVICE_DEFINITIONS;
+exports.SERVICE_NAMES = services.SERVICE_NAMES;
+exports.getServiceByName = services.getServiceByName;
+exports.authorizeWorker = authorizeWorker;
+exports.deriveClientIdFromSecretKeyHash = deriveClientIdFromSecretKeyHash;
+exports.hashSecretKey = hashSecretKey;

package/cf-worker/dist/thirdweb-dev-service-utils-cf-worker.esm.js

@@ -0,0 +1,105 @@
+import { a as authorize } from '../../dist/index-294e111f.esm.js';
+export { b as SERVICES, S as SERVICE_DEFINITIONS, a as SERVICE_NAMES, g as getServiceByName } from '../../dist/services-86283509.esm.js';
+
+const DEFAULT_CACHE_TTL_SECONDS = 60;
+async function authorizeWorker(authInput, serviceConfig) {
+  let authData;
+  try {
+    authData = await extractAuthorizationData(authInput);
+  } catch (e) {
+    if (e instanceof Error && e.message === "KEY_CONFLICT") {
+      return {
+        authorized: false,
+        status: 400,
+        errorMessage: "Please pass either a client id or a secret key.",
+        errorCode: "KEY_CONFLICT"
+      };
+    }
+    return {
+      authorized: false,
+      status: 500,
+      errorMessage: "Internal Server Error",
+      errorCode: "INTERNAL_SERVER_ERROR"
+    };
+  }
+  return await authorize(authData, serviceConfig, {
+    get: async clientId => serviceConfig.kvStore.get(clientId),
+    put: (clientId, apiKeyMeta) => serviceConfig.ctx.waitUntil(serviceConfig.kvStore.put(clientId, JSON.stringify({
+      updatedAt: Date.now(),
+      apiKeyMeta
+    }), {
+      expirationTtl: serviceConfig.cacheTtlSeconds && serviceConfig.cacheTtlSeconds >= DEFAULT_CACHE_TTL_SECONDS ? serviceConfig.cacheTtlSeconds : DEFAULT_CACHE_TTL_SECONDS
+    })),
+    cacheTtlSeconds: serviceConfig.cacheTtlSeconds ?? DEFAULT_CACHE_TTL_SECONDS
+  });
+}
+async function extractAuthorizationData(authInput) {
+  const requestUrl = new URL(authInput.req.url);
+  const headers = authInput.req.headers;
+  const secretKey = headers.get("x-secret-key");
+
+  // prefer clientId that is explicitly passed in
+  let clientId = authInput.clientId ?? null;
+  if (!clientId) {
+    // next preference is clientId from header
+    clientId = headers.get("x-client-id");
+  }
+
+  // next preference is search param
+  if (!clientId) {
+    clientId = requestUrl.searchParams.get("clientId");
+  }
+  // bundle id from header is first preference
+  let bundleId = headers.get("x-bundle-id");
+
+  // next preference is search param
+  if (!bundleId) {
+    bundleId = requestUrl.searchParams.get("bundleId");
+  }
+  let origin = headers.get("origin");
+  // if origin header is not available we'll fall back to referrer;
+  if (!origin) {
+    origin = headers.get("referer");
+  }
+  // if we have an origin at this point, normalize it
+  if (origin) {
+    try {
+      origin = new URL(origin).hostname;
+    } catch (e) {
+      console.warn("failed to parse origin", origin, e);
+    }
+  }
+
+  // handle if we a secret key is passed in the headers
+  let secretKeyHash = null;
+  if (secretKey) {
+    // hash the secret key
+    secretKeyHash = await hashSecretKey(secretKey);
+    // derive the client id from the secret key hash
+    const derivedClientId = deriveClientIdFromSecretKeyHash(secretKeyHash);
+    // if we already have a client id passed in we need to make sure they match
+    if (clientId && clientId !== derivedClientId) {
+      throw new Error("KEY_CONFLICT");
+    }
+    // otherwise set the client id to the derived client id (client id based off of secret key)
+    clientId = derivedClientId;
+  }
+  return {
+    secretKey,
+    clientId,
+    origin,
+    bundleId,
+    secretKeyHash
+  };
+}
+async function hashSecretKey(secretKey) {
+  return bufferToHex(await crypto.subtle.digest("SHA-256", new TextEncoder().encode(secretKey)));
+}
+function deriveClientIdFromSecretKeyHash(secretKeyHash) {
+  return secretKeyHash.slice(0, 32);
+}
+function bufferToHex(buffer) {
+  return [...new Uint8Array(buffer)].map(x => x.toString(16).padStart(2, "0")).join("");
+}
+
+export { authorizeWorker, deriveClientIdFromSecretKeyHash, hashSecretKey };

package/cf-worker/package.json

@@ -0,0 +1,4 @@
+{
+  "main": "dist/thirdweb-dev-service-utils-cf-worker.cjs.js",
+  "module": "dist/thirdweb-dev-service-utils-cf-worker.esm.js"
+}

package/dist/declarations/src/cf-worker/index.d.ts

@@ -0,0 +1,18 @@
+import type { ExecutionContext, KVNamespace } from "@cloudflare/workers-types";
+import type { CoreServiceConfig } from "../core/api.js";
+import type { Request } from "@cloudflare/workers-types";
+import type { AuthorizationResult } from "../core/authorize/types.js";
+import type { CoreAuthInput } from "../core/types.js";
+export * from "../core/services.js";
+type WorkerServiceConfig = CoreServiceConfig & {
+    kvStore: KVNamespace;
+    ctx: ExecutionContext;
+    cacheTtlSeconds?: number;
+};
+type AuthInput = CoreAuthInput & {
+    req: Request;
+};
+export declare function authorizeWorker(authInput: AuthInput, serviceConfig: WorkerServiceConfig): Promise<AuthorizationResult>;
+export declare function hashSecretKey(secretKey: string): Promise<string>;
+export declare function deriveClientIdFromSecretKeyHash(secretKeyHash: string): string;
+//# sourceMappingURL=index.d.ts.map

package/dist/declarations/src/cf-worker/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"../../../../src/cf-worker","sources":["index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AAC/E,OAAO,KAAK,EAAkB,iBAAiB,EAAE,uBAAoB;AAGrE,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,2BAA2B,CAAC;AAEzD,OAAO,KAAK,EAAE,mBAAmB,EAAE,mCAAgC;AACnE,OAAO,KAAK,EAAE,aAAa,EAAE,yBAAsB;AAEnD,oCAAiC;AAEjC,KAAK,mBAAmB,GAAG,iBAAiB,GAAG;IAC7C,OAAO,EAAE,WAAW,CAAC;IACrB,GAAG,EAAE,gBAAgB,CAAC;IACtB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B,CAAC;AAIF,KAAK,SAAS,GAAG,aAAa,GAAG;IAC/B,GAAG,EAAE,OAAO,CAAC;CACd,CAAC;AAEF,wBAAsB,eAAe,CACnC,SAAS,EAAE,SAAS,EACpB,aAAa,EAAE,mBAAmB,GACjC,OAAO,CAAC,mBAAmB,CAAC,CA0C9B;AAmED,wBAAsB,aAAa,CAAC,SAAS,EAAE,MAAM,mBAIpD;AAED,wBAAgB,+BAA+B,CAAC,aAAa,EAAE,MAAM,UAEpE"}

package/dist/declarations/src/core/api.d.ts

@@ -0,0 +1,31 @@
+import type { ServiceName } from "./services.js";
+export type CoreServiceConfig = {
+    apiUrl: string;
+    serviceScope: ServiceName;
+    serviceApiKey: string;
+    serviceAction?: string;
+};
+export type ApiKeyMetadata = {
+    id: string;
+    key: string;
+    creatorWalletAddress: string;
+    secretHash: string;
+    walletAddresses: string[];
+    domains: string[];
+    bundleIds: string[];
+    services: {
+        name: string;
+        targetAddresses: string[];
+        actions: string[];
+    }[];
+};
+export type ApiResponse = {
+    data: ApiKeyMetadata | null;
+    error: {
+        code: string;
+        statusCode: number;
+        message: string;
+    };
+};
+export declare function fetchKeyMetadataFromApi(clientId: string, config: CoreServiceConfig): Promise<ApiResponse>;
+//# sourceMappingURL=api.d.ts.map

package/dist/declarations/src/core/api.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api.d.ts","sourceRoot":"../../../../src/core","sources":["api.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,sBAAmB;AAE9C,MAAM,MAAM,iBAAiB,GAAG;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,WAAW,CAAC;IAC1B,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB,CAAC;AAEF,MAAM,MAAM,cAAc,GAAG;IAC3B,EAAE,EAAE,MAAM,CAAC;IACX,GAAG,EAAE,MAAM,CAAC;IACZ,oBAAoB,EAAE,MAAM,CAAC;IAC7B,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,QAAQ,EAAE;QACR,IAAI,EAAE,MAAM,CAAC;QACb,eAAe,EAAE,MAAM,EAAE,CAAC;QAC1B,OAAO,EAAE,MAAM,EAAE,CAAC;KACnB,EAAE,CAAC;CACL,CAAC;AAEF,MAAM,MAAM,WAAW,GAAG;IACxB,IAAI,EAAE,cAAc,GAAG,IAAI,CAAC;IAC5B,KAAK,EAAE;QACL,IAAI,EAAE,MAAM,CAAC;QACb,UAAU,EAAE,MAAM,CAAC;QACnB,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;CACH,CAAC;AAEF,wBAAsB,uBAAuB,CAC3C,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,iBAAiB,GACxB,OAAO,CAAC,WAAW,CAAC,CAkBtB"}

package/dist/declarations/src/core/authorize/index.d.ts

@@ -0,0 +1,18 @@
+import { ApiKeyMetadata, CoreServiceConfig } from "../api.js";
+import { AuthorizationResult } from "./types.js";
+export type AuthorizationInput = {
+    secretKey: string | null;
+    clientId: string | null;
+    origin: string | null;
+    bundleId: string | null;
+    secretKeyHash: string | null;
+    targetAddress?: string;
+};
+type CacheOptions = {
+    get: (clientId: string) => Promise<string | null>;
+    put: (clientId: string, data: ApiKeyMetadata) => Promise<void> | void;
+    cacheTtlSeconds: number;
+};
+export declare function authorize(authData: AuthorizationInput, serviceConfig: CoreServiceConfig, cacheOptions?: CacheOptions): Promise<AuthorizationResult>;
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/declarations/src/core/authorize/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"../../../../../src/core/authorize","sources":["index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,cAAc,EACd,iBAAiB,EAElB,kBAAe;AAGhB,OAAO,EAAE,mBAAmB,EAAE,mBAAgB;AAE9C,MAAM,MAAM,kBAAkB,GAAG;IAC/B,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB,CAAC;AAEF,KAAK,YAAY,GAAG;IAClB,GAAG,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IAClD,GAAG,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,cAAc,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IACtE,eAAe,EAAE,MAAM,CAAC;CACzB,CAAC;AASF,wBAAsB,SAAS,CAC7B,QAAQ,EAAE,kBAAkB,EAC5B,aAAa,EAAE,iBAAiB,EAChC,YAAY,CAAC,EAAE,YAAY,GAC1B,OAAO,CAAC,mBAAmB,CAAC,CAoH9B"}

package/dist/declarations/src/core/authorize/types.d.ts

@@ -0,0 +1,11 @@
+import { ApiKeyMetadata } from "../api.js";
+export type AuthorizationResult = {
+    authorized: true;
+    apiKeyMeta: ApiKeyMetadata;
+} | {
+    authorized: false;
+    status: number;
+    errorMessage: string;
+    errorCode: string;
+};
+//# sourceMappingURL=types.d.ts.map

package/dist/declarations/src/core/authorize/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"../../../../../src/core/authorize","sources":["types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,kBAAe;AAExC,MAAM,MAAM,mBAAmB,GAC3B;IACE,UAAU,EAAE,IAAI,CAAC;IACjB,UAAU,EAAE,cAAc,CAAC;CAC5B,GACD;IACE,UAAU,EAAE,KAAK,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC"}

package/dist/declarations/src/core/services.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"services.d.ts","sourceRoot":"../../../../src/core","sources":["services.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAuCtB,CAAC;AAEX,eAAO,MAAM,aAAa,+CAEe,CAAC;AAE1C,eAAO,MAAM,QAAQ;;;;;;;;;;;;;;;;;;;;;;;;;;;;IAAqC,CAAC;AAE3D,MAAM,MAAM,WAAW,GAAG,CAAC,OAAO,aAAa,CAAC,CAAC,MAAM,CAAC,CAAC;AAEzD,MAAM,MAAM,aAAa,GAAG;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB,CAAC;AAEF,MAAM,MAAM,OAAO,GACjB,CAAC,OAAO,mBAAmB,CAAC,CAAC,MAAM,OAAO,mBAAmB,CAAC,CAAC;AAEjE,wBAAgB,gBAAgB,CAAC,IAAI,EAAE,WAAW;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAEjD"}

package/dist/declarations/src/core/types.d.ts

@@ -0,0 +1,5 @@
+export type CoreAuthInput = {
+    clientId?: string;
+    targetAddress?: string;
+};
+//# sourceMappingURL=types.d.ts.map

package/dist/declarations/src/core/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"../../../../src/core","sources":["types.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,aAAa,GAAG;IAE1B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB,CAAC"}

package/dist/declarations/src/index.d.ts

@@ -1,3 +1,2 @@
-export * from "./services";
-export * from "./auth";
+export * from "./core/services.js";
 //# sourceMappingURL=index.d.ts.map

package/dist/declarations/src/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"../../../src","sources":["index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,cAAc,QAAQ,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"../../../src","sources":["index.ts"],"names":[],"mappings":"AACA,mCAAgC"}

package/dist/declarations/src/node/index.d.ts

@@ -0,0 +1,16 @@
+/// <reference types="node" />
+import type { IncomingMessage } from "node:http";
+import type { AuthorizationInput } from "../core/authorize/index.js";
+import type { CoreServiceConfig } from "../core/api.js";
+import type { AuthorizationResult } from "../core/authorize/types.js";
+import type { CoreAuthInput } from "../core/types.js";
+export * from "../core/services.js";
+type NodeServiceConfig = CoreServiceConfig;
+export type AuthInput = CoreAuthInput & {
+    req: IncomingMessage;
+};
+export declare function authorizeNode(authInput: AuthInput, serviceConfig: NodeServiceConfig): Promise<AuthorizationResult>;
+export declare function extractAuthorizationData(authInput: AuthInput): AuthorizationInput;
+export declare function hashSecretKey(secretKey: string): string;
+export declare function deriveClientIdFromSecretKeyHash(secretKeyHash: string): string;
+//# sourceMappingURL=index.d.ts.map

package/dist/declarations/src/node/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"../../../../src/node","sources":["index.ts"],"names":[],"mappings":";AAAA,OAAO,KAAK,EAAuB,eAAe,EAAE,MAAM,WAAW,CAAC;AAEtE,OAAO,KAAK,EAAE,kBAAkB,EAAE,mCAA0B;AAC5D,OAAO,KAAK,EAAE,iBAAiB,EAAE,uBAAoB;AAErD,OAAO,KAAK,EAAE,mBAAmB,EAAE,mCAAgC;AACnE,OAAO,KAAK,EAAE,aAAa,EAAE,yBAAsB;AAEnD,oCAAiC;AAEjC,KAAK,iBAAiB,GAAG,iBAAiB,CAAC;AAE3C,MAAM,MAAM,SAAS,GAAG,aAAa,GAAG;IACtC,GAAG,EAAE,eAAe,CAAC;CACtB,CAAC;AAEF,wBAAsB,aAAa,CACjC,SAAS,EAAE,SAAS,EACpB,aAAa,EAAE,iBAAiB,GAC/B,OAAO,CAAC,mBAAmB,CAAC,CAsB9B;AAaD,wBAAgB,wBAAwB,CACtC,SAAS,EAAE,SAAS,GACnB,kBAAkB,CA+DpB;AAED,wBAAgB,aAAa,CAAC,SAAS,EAAE,MAAM,UAE9C;AAED,wBAAgB,+BAA+B,CAAC,aAAa,EAAE,MAAM,UAEpE"}