@thirdweb-dev/service-utils 0.5.0-nightly-6cf298a29-20240308012322 → 0.5.1

package/dist/esm/core/api.js

@@ -0,0 +1,38 @@
+export async function fetchTeamAndProject(authData, config) {
+    const { apiUrl, serviceApiKey } = config;
+    const clientId = authData.clientId;
+    const url = `${apiUrl}/v2/keys/use${clientId ? `?clientId=${clientId}` : ""}`;
+    const response = await fetch(url, {
+        method: "GET",
+        headers: {
+            ...(authData.secretKey ? { "x-secret-key": authData.secretKey } : {}),
+            ...(authData.jwt ? { Authorization: `Bearer ${authData.jwt}` } : {}),
+            "x-service-api-key": serviceApiKey,
+            "content-type": "application/json",
+        },
+    });
+    let text = "";
+    try {
+        text = await response.text();
+        return JSON.parse(text);
+    }
+    catch {
+        throw new Error(`Error fetching key metadata from API: ${response.status} - ${text}`);
+    }
+}
+export async function updateRateLimitedAt(projectId, config) {
+    const { apiUrl, serviceScope: scope, serviceApiKey } = config;
+    const url = `${apiUrl}/usage/rateLimit`;
+    await fetch(url, {
+        method: "PUT",
+        headers: {
+            "x-service-api-key": serviceApiKey,
+            "content-type": "application/json",
+        },
+        body: JSON.stringify({
+            apiKeyId: projectId, // projectId is the apiKeyId
+            scope,
+        }),
+    });
+}
+//# sourceMappingURL=api.js.map

package/dist/esm/core/api.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api.js","sourceRoot":"","sources":["../../../src/core/api.ts"],"names":[],"mappings":"AAyIA,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,QAA4B,EAC5B,MAAyB;IAEzB,MAAM,EAAE,MAAM,EAAE,aAAa,EAAE,GAAG,MAAM,CAAC;IAEzC,MAAM,QAAQ,GAAG,QAAQ,CAAC,QAAQ,CAAC;IACnC,MAAM,GAAG,GAAG,GAAG,MAAM,eAAe,QAAQ,CAAC,CAAC,CAAC,aAAa,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;IAC9E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAChC,MAAM,EAAE,KAAK;QACb,OAAO,EAAE;YACP,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,cAAc,EAAE,QAAQ,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACrE,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,aAAa,EAAE,UAAU,QAAQ,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACpE,mBAAmB,EAAE,aAAa;YAClC,cAAc,EAAE,kBAAkB;SACnC;KACF,CAAC,CAAC;IAEH,IAAI,IAAI,GAAG,EAAE,CAAC;IACd,IAAI,CAAC;QACH,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QAC7B,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC1B,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CACb,yCAAyC,QAAQ,CAAC,MAAM,MAAM,IAAI,EAAE,CACrE,CAAC;IACJ,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,SAAiB,EACjB,MAAyB;IAEzB,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,KAAK,EAAE,aAAa,EAAE,GAAG,MAAM,CAAC;IAE9D,MAAM,GAAG,GAAG,GAAG,MAAM,kBAAkB,CAAC;IAExC,MAAM,KAAK,CAAC,GAAG,EAAE;QACf,MAAM,EAAE,KAAK;QACb,OAAO,EAAE;YACP,mBAAmB,EAAE,aAAa;YAClC,cAAc,EAAE,kBAAkB;SACnC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,QAAQ,EAAE,SAAS,EAAE,4BAA4B;YACjD,KAAK;SACN,CAAC;KACH,CAAC,CAAC;AACL,CAAC"}

package/dist/esm/core/authorize/client.js

@@ -0,0 +1,99 @@
+export function authorizeClient(authOptions, teamAndProjectResponse) {
+    const { origin, bundleId } = authOptions;
+    const { team, project, authMethod } = teamAndProjectResponse;
+    const authResult = {
+        authorized: true,
+        team,
+        project,
+        authMethod,
+    };
+    // if there's no project, we'll return the authResult (JWT or teamId auth)
+    if (!project) {
+        return authResult;
+    }
+    if (authMethod === "secretKey") {
+        // if the auth was done using secretKey, we do not want to enforce domains or bundleIds
+        return authResult;
+    }
+    // check for public restrictions
+    if (project.domains.includes("*")) {
+        return authResult;
+    }
+    // validate domains
+    if (origin) {
+        if (authorizeDomain({
+            domains: project.domains,
+            origin,
+        })) {
+            return authResult;
+        }
+        return {
+            authorized: false,
+            errorMessage: `Invalid request: Unauthorized domain: ${origin}. You can view the restrictions on this API key at https://thirdweb.com/create-api-key`,
+            errorCode: "ORIGIN_UNAUTHORIZED",
+            status: 401,
+        };
+    }
+    // validate bundleId
+    if (bundleId) {
+        if (authorizeBundleId({
+            bundleIds: project.bundleIds,
+            bundleId,
+        })) {
+            return authResult;
+        }
+        return {
+            authorized: false,
+            errorMessage: `Invalid request: Unauthorized Bundle ID: ${bundleId}. You can view the restrictions on this API key at https://thirdweb.com/create-api-key`,
+            errorCode: "BUNDLE_UNAUTHORIZED",
+            status: 401,
+        };
+    }
+    return {
+        authorized: false,
+        errorMessage: "The keys are invalid. Please check the secret-key/clientId and try again.",
+        errorCode: "UNAUTHORIZED",
+        status: 401,
+    };
+}
+// Exposed for use in validating ecosystem partners settings
+export function authorizeDomain({ domains, origin, }) {
+    // find matching domain, or if all domains allowed
+    // embedded-wallet.thirdweb(-dev).com is automatically allowed
+    // because the rpc is passed from user's domain to embedded-wallet.thirdweb.com iframe for use.
+    // Note this doesn't allow embedded-wallets from being used if it's disabled. The service check that runs after enforces that.
+    return !![
+        ...domains,
+        "embedded-wallet.thirdweb.com",
+        "embedded-wallet.thirdweb-dev.com",
+    ].find((d) => {
+        // if any domain is allowed, we'll return true
+        if (d === "*") {
+            return true;
+        }
+        // special rule for `localhost`
+        // if the domain is localhost, we'll allow any origin that starts with localhost
+        if (d === "localhost" && origin.startsWith("localhost")) {
+            return true;
+        }
+        // If the allowedDomain has a wildcard,
+        // we'll check that the ending of our domain matches the wildcard
+        if (d.startsWith("*.")) {
+            // get rid of the * and check if it ends with the `.<domain>.<tld>`
+            const domainRoot = d.slice(1);
+            return origin.endsWith(domainRoot);
+        }
+        // If there's no wildcard, we'll check for an exact match
+        return d === origin;
+    });
+}
+export function authorizeBundleId({ bundleIds, bundleId, }) {
+    // find matching bundle id, or if all bundles allowed
+    return !!bundleIds.find((b) => {
+        if (b === "*") {
+            return true;
+        }
+        return b === bundleId;
+    });
+}
+//# sourceMappingURL=client.js.map

package/dist/esm/core/authorize/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../../../src/core/authorize/client.ts"],"names":[],"mappings":"AASA,MAAM,UAAU,eAAe,CAC7B,WAAuC,EACvC,sBAA8C;IAE9C,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,GAAG,WAAW,CAAC;IACzC,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,UAAU,EAAE,GAAG,sBAAsB,CAAC;IAE7D,MAAM,UAAU,GAAwB;QACtC,UAAU,EAAE,IAAI;QAChB,IAAI;QACJ,OAAO;QACP,UAAU;KACX,CAAC;IAEF,0EAA0E;IAC1E,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,UAAU,CAAC;IACpB,CAAC;IAED,IAAI,UAAU,KAAK,WAAW,EAAE,CAAC;QAC/B,uFAAuF;QACvF,OAAO,UAAU,CAAC;IACpB,CAAC;IAED,gCAAgC;IAChC,IAAI,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QAClC,OAAO,UAAU,CAAC;IACpB,CAAC;IAED,mBAAmB;IACnB,IAAI,MAAM,EAAE,CAAC;QACX,IACE,eAAe,CAAC;YACd,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,MAAM;SACP,CAAC,EACF,CAAC;YACD,OAAO,UAAU,CAAC;QACpB,CAAC;QAED,OAAO;YACL,UAAU,EAAE,KAAK;YACjB,YAAY,EAAE,yCAAyC,MAAM,wFAAwF;YACrJ,SAAS,EAAE,qBAAqB;YAChC,MAAM,EAAE,GAAG;SACZ,CAAC;IACJ,CAAC;IAED,oBAAoB;IACpB,IAAI,QAAQ,EAAE,CAAC;QACb,IACE,iBAAiB,CAAC;YAChB,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,QAAQ;SACT,CAAC,EACF,CAAC;YACD,OAAO,UAAU,CAAC;QACpB,CAAC;QAED,OAAO;YACL,UAAU,EAAE,KAAK;YACjB,YAAY,EAAE,4CAA4C,QAAQ,wFAAwF;YAC1J,SAAS,EAAE,qBAAqB;YAChC,MAAM,EAAE,GAAG;SACZ,CAAC;IACJ,CAAC;IAED,OAAO;QACL,UAAU,EAAE,KAAK;QACjB,YAAY,EACV,2EAA2E;QAC7E,SAAS,EAAE,cAAc;QACzB,MAAM,EAAE,GAAG;KACZ,CAAC;AACJ,CAAC;AAED,4DAA4D;AAC5D,MAAM,UAAU,eAAe,CAAC,EAC9B,OAAO,EACP,MAAM,GACgC;IACtC,kDAAkD;IAClD,8DAA8D;IAC9D,+FAA+F;IAC/F,8HAA8H;IAC9H,OAAO,CAAC,CAAC;QACP,GAAG,OAAO;QACV,8BAA8B;QAC9B,kCAAkC;KACnC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE;QACX,8CAA8C;QAC9C,IAAI,CAAC,KAAK,GAAG,EAAE,CAAC;YACd,OAAO,IAAI,CAAC;QACd,CAAC;QAED,+BAA+B;QAC/B,gFAAgF;QAChF,IAAI,CAAC,KAAK,WAAW,IAAI,MAAM,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;YACxD,OAAO,IAAI,CAAC;QACd,CAAC;QAED,uCAAuC;QACvC,iEAAiE;QACjE,IAAI,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YACvB,mEAAmE;YACnE,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAC9B,OAAO,MAAM,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QACrC,CAAC;QAED,yDAAyD;QACzD,OAAO,CAAC,KAAK,MAAM,CAAC;IACtB,CAAC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,EAChC,SAAS,EACT,QAAQ,GACkC;IAC1C,qDAAqD;IACrD,OAAO,CAAC,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE;QAC5B,IAAI,CAAC,KAAK,GAAG,EAAE,CAAC;YACd,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,CAAC,KAAK,QAAQ,CAAC;IACxB,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/esm/core/authorize/index.js

@@ -0,0 +1,107 @@
+import { fetchTeamAndProject, } from "../api.js";
+import { authorizeClient } from "./client.js";
+import { authorizeService } from "./service.js";
+export async function authorize(authData, serviceConfig, cacheOptions) {
+    let teamAndProjectResponse = null;
+    const cacheKey = `key_v2_${authData.clientId ?? authData.secretKeyHash ?? authData.hashedJWT}`;
+    // TODO if we have cache options we want to check the cache first
+    if (cacheOptions) {
+        try {
+            const cachedKey = await cacheOptions.get(cacheKey);
+            if (cachedKey) {
+                const parsed = JSON.parse(cachedKey);
+                if ("updatedAt" in parsed) {
+                    // we want to compare the updatedAt time to the current time
+                    // if the difference is greater than the cacheTtl we want to ignore the cached data
+                    const now = Date.now();
+                    const diff = now - parsed.updatedAt;
+                    const cacheTtlMs = cacheOptions.cacheTtlSeconds * 1000;
+                    // only if the diff is less than the cacheTtl do we want to use the cached key
+                    if (diff < cacheTtlMs) {
+                        teamAndProjectResponse = parsed.teamAndProjectResponse;
+                    }
+                }
+                else {
+                    teamAndProjectResponse = parsed;
+                }
+            }
+        }
+        catch {
+            // ignore errors, proceed as if not in cache
+        }
+    }
+    // if we don't have a cached key, fetch from the API
+    if (!teamAndProjectResponse) {
+        try {
+            const { data, error } = await fetchTeamAndProject(authData, serviceConfig);
+            if (error) {
+                return {
+                    authorized: false,
+                    errorCode: error.code,
+                    errorMessage: error.message,
+                    status: error.statusCode,
+                };
+            }
+            if (!data) {
+                return {
+                    authorized: false,
+                    errorCode: "NO_KEY",
+                    errorMessage: "No error but also no key returned.",
+                    status: 500,
+                };
+            }
+            // if we have a key for sure then assign it
+            teamAndProjectResponse = data;
+            // cache the retrieved key if we have cache options
+            if (cacheOptions) {
+                // we await this always because it can be a promise or not
+                await cacheOptions.put(cacheKey, data);
+            }
+        }
+        catch (err) {
+            console.warn("failed to fetch key metadata from api", err);
+            return {
+                authorized: false,
+                status: 500,
+                errorMessage: "Failed to fetch key metadata. Please check your secret-key/clientId.",
+                errorCode: "FAILED_TO_FETCH_KEY",
+            };
+        }
+    }
+    if (!teamAndProjectResponse) {
+        return {
+            authorized: false,
+            status: 401,
+            errorMessage: "Key is invalid. Please check your secret-key/clientId.",
+            errorCode: "INVALID_KEY",
+        };
+    }
+    // now we can validate the key itself
+    const clientAuth = authorizeClient(authData, teamAndProjectResponse);
+    if (!clientAuth.authorized) {
+        return {
+            errorCode: clientAuth.errorCode,
+            authorized: false,
+            status: 401,
+            errorMessage: clientAuth.errorMessage,
+        };
+    }
+    // if we've made it this far we need to check service specific authorization
+    const serviceAuth = authorizeService(teamAndProjectResponse, serviceConfig);
+    if (!serviceAuth.authorized) {
+        return {
+            errorCode: serviceAuth.errorCode,
+            authorized: false,
+            status: 403,
+            errorMessage: serviceAuth.errorMessage,
+        };
+    }
+    // if we reach this point we are authorized!
+    return {
+        authorized: true,
+        team: teamAndProjectResponse.team,
+        project: teamAndProjectResponse.project,
+        authMethod: clientAuth.authMethod,
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/esm/core/authorize/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/core/authorize/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAGL,mBAAmB,GACpB,MAAM,WAAW,CAAC;AACnB,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAC9C,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AA+BhD,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,QAA4B,EAC5B,aAAgC,EAChC,YAA2B;IAE3B,IAAI,sBAAsB,GAAkC,IAAI,CAAC;IACjE,MAAM,QAAQ,GAAG,UAAU,QAAQ,CAAC,QAAQ,IAAI,QAAQ,CAAC,aAAa,IAAI,QAAQ,CAAC,SAAS,EAAE,CAAC;IAC/F,iEAAiE;IACjE,IAAI,YAAY,EAAE,CAAC;QACjB,IAAI,CAAC;YACH,MAAM,SAAS,GAAG,MAAM,YAAY,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YACnD,IAAI,SAAS,EAAE,CAAC;gBACd,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CACvB,SAAS,CAC4B,CAAC;gBACxC,IAAI,WAAW,IAAI,MAAM,EAAE,CAAC;oBAC1B,4DAA4D;oBAC5D,mFAAmF;oBACnF,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;oBACvB,MAAM,IAAI,GAAG,GAAG,GAAG,MAAM,CAAC,SAAS,CAAC;oBACpC,MAAM,UAAU,GAAG,YAAY,CAAC,eAAe,GAAG,IAAI,CAAC;oBACvD,8EAA8E;oBAC9E,IAAI,IAAI,GAAG,UAAU,EAAE,CAAC;wBACtB,sBAAsB,GAAG,MAAM,CAAC,sBAAsB,CAAC;oBACzD,CAAC;gBACH,CAAC;qBAAM,CAAC;oBACN,sBAAsB,GAAG,MAAM,CAAC;gBAClC,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,4CAA4C;QAC9C,CAAC;IACH,CAAC;IAED,oDAAoD;IACpD,IAAI,CAAC,sBAAsB,EAAE,CAAC;QAC5B,IAAI,CAAC;YACH,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,MAAM,mBAAmB,CAC/C,QAAQ,EACR,aAAa,CACd,CAAC;YACF,IAAI,KAAK,EAAE,CAAC;gBACV,OAAO;oBACL,UAAU,EAAE,KAAK;oBACjB,SAAS,EAAE,KAAK,CAAC,IAAI;oBACrB,YAAY,EAAE,KAAK,CAAC,OAAO;oBAC3B,MAAM,EAAE,KAAK,CAAC,UAAU;iBACzB,CAAC;YACJ,CAAC;YACD,IAAI,CAAC,IAAI,EAAE,CAAC;gBACV,OAAO;oBACL,UAAU,EAAE,KAAK;oBACjB,SAAS,EAAE,QAAQ;oBACnB,YAAY,EAAE,oCAAoC;oBAClD,MAAM,EAAE,GAAG;iBACZ,CAAC;YACJ,CAAC;YACD,2CAA2C;YAC3C,sBAAsB,GAAG,IAAI,CAAC;YAE9B,mDAAmD;YACnD,IAAI,YAAY,EAAE,CAAC;gBACjB,0DAA0D;gBAC1D,MAAM,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;YACzC,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,IAAI,CAAC,uCAAuC,EAAE,GAAG,CAAC,CAAC;YAC3D,OAAO;gBACL,UAAU,EAAE,KAAK;gBACjB,MAAM,EAAE,GAAG;gBACX,YAAY,EACV,sEAAsE;gBACxE,SAAS,EAAE,qBAAqB;aACjC,CAAC;QACJ,CAAC;IACH,CAAC;IACD,IAAI,CAAC,sBAAsB,EAAE,CAAC;QAC5B,OAAO;YACL,UAAU,EAAE,KAAK;YACjB,MAAM,EAAE,GAAG;YACX,YAAY,EAAE,wDAAwD;YACtE,SAAS,EAAE,aAAa;SACzB,CAAC;IACJ,CAAC;IACD,qCAAqC;IACrC,MAAM,UAAU,GAAG,eAAe,CAAC,QAAQ,EAAE,sBAAsB,CAAC,CAAC;IAErE,IAAI,CAAC,UAAU,CAAC,UAAU,EAAE,CAAC;QAC3B,OAAO;YACL,SAAS,EAAE,UAAU,CAAC,SAAS;YAC/B,UAAU,EAAE,KAAK;YACjB,MAAM,EAAE,GAAG;YACX,YAAY,EAAE,UAAU,CAAC,YAAY;SACtC,CAAC;IACJ,CAAC;IAED,4EAA4E;IAC5E,MAAM,WAAW,GAAG,gBAAgB,CAAC,sBAAsB,EAAE,aAAa,CAAC,CAAC;IAE5E,IAAI,CAAC,WAAW,CAAC,UAAU,EAAE,CAAC;QAC5B,OAAO;YACL,SAAS,EAAE,WAAW,CAAC,SAAS;YAChC,UAAU,EAAE,KAAK;YACjB,MAAM,EAAE,GAAG;YACX,YAAY,EAAE,WAAW,CAAC,YAAY;SACvC,CAAC;IACJ,CAAC;IAED,4CAA4C;IAC5C,OAAO;QACL,UAAU,EAAE,IAAI;QAChB,IAAI,EAAE,sBAAsB,CAAC,IAAI;QACjC,OAAO,EAAE,sBAAsB,CAAC,OAAO;QACvC,UAAU,EAAE,UAAU,CAAC,UAAU;KAClC,CAAC;AACJ,CAAC"}

package/dist/esm/core/authorize/service.js

@@ -0,0 +1,57 @@
+export function authorizeService(teamAndProjectResponse, serviceConfig) {
+    const { team, project, authMethod } = teamAndProjectResponse;
+    if (serviceConfig.serviceScope === null) {
+        // if explicitly set to null, we do not want to check for service level authorization
+        return {
+            authorized: true,
+            team,
+            authMethod,
+        };
+    }
+    if (!team.enabledScopes.includes(serviceConfig.serviceScope)) {
+        return {
+            authorized: false,
+            errorMessage: `Invalid request: Unauthorized service: ${serviceConfig.serviceScope}. You can view the restrictions for this team in your dashboard: https://thirdweb.com`,
+            errorCode: "SERVICE_UNAUTHORIZED",
+            status: 403,
+        };
+    }
+    if (!project) {
+        // acting on behalf of the team (ie. coming from dashboard), authorize
+        return {
+            authorized: true,
+            team,
+            authMethod,
+        };
+    }
+    // validate services
+    const services = project.services;
+    const service = services.find((srv) => srv.name === serviceConfig.serviceScope);
+    if (!service) {
+        return {
+            authorized: false,
+            errorMessage: `Invalid request: Unauthorized service: ${serviceConfig.serviceScope}. You can view the restrictions on this project in your dashboard: https://thirdweb.com`,
+            errorCode: "SERVICE_UNAUTHORIZED",
+            status: 403,
+        };
+    }
+    // validate service actions
+    if (serviceConfig.serviceAction) {
+        const isActionAllowed = service.actions.includes(serviceConfig.serviceAction);
+        if (!isActionAllowed) {
+            return {
+                authorized: false,
+                errorMessage: `Invalid request: Unauthorized action: ${serviceConfig.serviceScope} ${serviceConfig.serviceAction}. You can view the restrictions on this API key in your dashboard:  https://thirdweb.com/create-api-key`,
+                errorCode: "SERVICE_ACTION_UNAUTHORIZED",
+                status: 403,
+            };
+        }
+    }
+    return {
+        authorized: true,
+        team,
+        project,
+        authMethod,
+    };
+}
+//# sourceMappingURL=service.js.map

package/dist/esm/core/authorize/service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"service.js","sourceRoot":"","sources":["../../../../src/core/authorize/service.ts"],"names":[],"mappings":"AAGA,MAAM,UAAU,gBAAgB,CAC9B,sBAA8C,EAC9C,aAAgC;IAEhC,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,UAAU,EAAE,GAAG,sBAAsB,CAAC;IAE7D,IAAI,aAAa,CAAC,YAAY,KAAK,IAAI,EAAE,CAAC;QACxC,qFAAqF;QACrF,OAAO;YACL,UAAU,EAAE,IAAI;YAChB,IAAI;YACJ,UAAU;SACX,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,aAAa,CAAC,YAAY,CAAC,EAAE,CAAC;QAC7D,OAAO;YACL,UAAU,EAAE,KAAK;YACjB,YAAY,EAAE,0CAA0C,aAAa,CAAC,YAAY,uFAAuF;YACzK,SAAS,EAAE,sBAAsB;YACjC,MAAM,EAAE,GAAG;SACZ,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,sEAAsE;QACtE,OAAO;YACL,UAAU,EAAE,IAAI;YAChB,IAAI;YACJ,UAAU;SACX,CAAC;IACJ,CAAC;IAED,oBAAoB;IACpB,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;IAClC,MAAM,OAAO,GAAG,QAAQ,CAAC,IAAI,CAC3B,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,KAAK,aAAa,CAAC,YAAY,CACjD,CAAC;IACF,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO;YACL,UAAU,EAAE,KAAK;YACjB,YAAY,EAAE,0CAA0C,aAAa,CAAC,YAAY,yFAAyF;YAC3K,SAAS,EAAE,sBAAsB;YACjC,MAAM,EAAE,GAAG;SACZ,CAAC;IACJ,CAAC;IAED,2BAA2B;IAC3B,IAAI,aAAa,CAAC,aAAa,EAAE,CAAC;QAChC,MAAM,eAAe,GAAI,OAAO,CAAC,OAAoB,CAAC,QAAQ,CAC5D,aAAa,CAAC,aAAa,CAC5B,CAAC;QACF,IAAI,CAAC,eAAe,EAAE,CAAC;YACrB,OAAO;gBACL,UAAU,EAAE,KAAK;gBACjB,YAAY,EAAE,yCAAyC,aAAa,CAAC,YAAY,IAAI,aAAa,CAAC,aAAa,yGAAyG;gBACzN,SAAS,EAAE,6BAA6B;gBACxC,MAAM,EAAE,GAAG;aACZ,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO;QACL,UAAU,EAAE,IAAI;QAChB,IAAI;QACJ,OAAO;QACP,UAAU;KACX,CAAC;AACJ,CAAC"}

package/dist/esm/core/authorize/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/esm/core/authorize/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../../src/core/authorize/types.ts"],"names":[],"mappings":""}

package/dist/esm/core/rateLimit/index.js

@@ -0,0 +1,57 @@
+import { updateRateLimitedAt, } from "../api.js";
+const RATE_LIMIT_WINDOW_SECONDS = 10;
+export async function rateLimit(args) {
+    const { project, limitPerSecond, serviceConfig, redis, sampleRate = 1.0, } = args;
+    const shouldSampleRequest = Math.random() < sampleRate;
+    if (!shouldSampleRequest) {
+        return {
+            rateLimited: false,
+            requestCount: 0,
+            rateLimit: 0,
+        };
+    }
+    if (limitPerSecond === 0) {
+        // No rate limit is provided. Assume the request is not rate limited.
+        return {
+            rateLimited: false,
+            requestCount: 0,
+            rateLimit: 0,
+        };
+    }
+    const serviceScope = serviceConfig.serviceScope;
+    // Gets the 10-second window for the current timestamp.
+    const timestampWindow = Math.floor(Date.now() / (1000 * RATE_LIMIT_WINDOW_SECONDS)) *
+        RATE_LIMIT_WINDOW_SECONDS;
+    const key = `rate-limit:${serviceScope}:${project?.id}:${timestampWindow}`;
+    // Increment and get the current request count in this window.
+    const requestCount = await redis.incr(key);
+    if (requestCount === 1) {
+        // For the first increment, set an expiration to clean up this key.
+        await redis.expire(key, RATE_LIMIT_WINDOW_SECONDS);
+    }
+    // Get the limit for this window accounting for the sample rate.
+    const limitPerWindow = limitPerSecond * sampleRate * RATE_LIMIT_WINDOW_SECONDS;
+    if (requestCount > limitPerWindow) {
+        // Report rate limit hits.
+        if (project?.id) {
+            await updateRateLimitedAt(project.id, serviceConfig);
+        }
+        // Reject requests when they've exceeded 2x the rate limit.
+        if (requestCount > 2 * limitPerWindow) {
+            return {
+                rateLimited: true,
+                requestCount,
+                rateLimit: limitPerWindow,
+                status: 429,
+                errorMessage: `You've exceeded your ${serviceScope} rate limit at ${limitPerSecond} reqs/sec. To get higher rate limits, contact us at https://thirdweb.com/contact-us.`,
+                errorCode: "RATE_LIMIT_EXCEEDED",
+            };
+        }
+    }
+    return {
+        rateLimited: false,
+        requestCount,
+        rateLimit: limitPerWindow,
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/esm/core/rateLimit/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/core/rateLimit/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAGL,mBAAmB,GACpB,MAAM,WAAW,CAAC;AAGnB,MAAM,yBAAyB,GAAG,EAAE,CAAC;AAQrC,MAAM,CAAC,KAAK,UAAU,SAAS,CAAC,IAW/B;IACC,MAAM,EACJ,OAAO,EACP,cAAc,EACd,aAAa,EACb,KAAK,EACL,UAAU,GAAG,GAAG,GACjB,GAAG,IAAI,CAAC;IAET,MAAM,mBAAmB,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,UAAU,CAAC;IACvD,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACzB,OAAO;YACL,WAAW,EAAE,KAAK;YAClB,YAAY,EAAE,CAAC;YACf,SAAS,EAAE,CAAC;SACb,CAAC;IACJ,CAAC;IAED,IAAI,cAAc,KAAK,CAAC,EAAE,CAAC;QACzB,qEAAqE;QACrE,OAAO;YACL,WAAW,EAAE,KAAK;YAClB,YAAY,EAAE,CAAC;YACf,SAAS,EAAE,CAAC;SACb,CAAC;IACJ,CAAC;IAED,MAAM,YAAY,GAAG,aAAa,CAAC,YAAY,CAAC;IAEhD,uDAAuD;IACvD,MAAM,eAAe,GACnB,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,GAAG,yBAAyB,CAAC,CAAC;QAC3D,yBAAyB,CAAC;IAC5B,MAAM,GAAG,GAAG,cAAc,YAAY,IAAI,OAAO,EAAE,EAAE,IAAI,eAAe,EAAE,CAAC;IAE3E,8DAA8D;IAC9D,MAAM,YAAY,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC3C,IAAI,YAAY,KAAK,CAAC,EAAE,CAAC;QACvB,mEAAmE;QACnE,MAAM,KAAK,CAAC,MAAM,CAAC,GAAG,EAAE,yBAAyB,CAAC,CAAC;IACrD,CAAC;IAED,gEAAgE;IAChE,MAAM,cAAc,GAClB,cAAc,GAAG,UAAU,GAAG,yBAAyB,CAAC;IAE1D,IAAI,YAAY,GAAG,cAAc,EAAE,CAAC;QAClC,0BAA0B;QAC1B,IAAI,OAAO,EAAE,EAAE,EAAE,CAAC;YAChB,MAAM,mBAAmB,CAAC,OAAO,CAAC,EAAE,EAAE,aAAa,CAAC,CAAC;QACvD,CAAC;QAED,2DAA2D;QAC3D,IAAI,YAAY,GAAG,CAAC,GAAG,cAAc,EAAE,CAAC;YACtC,OAAO;gBACL,WAAW,EAAE,IAAI;gBACjB,YAAY;gBACZ,SAAS,EAAE,cAAc;gBACzB,MAAM,EAAE,GAAG;gBACX,YAAY,EAAE,wBAAwB,YAAY,kBAAkB,cAAc,sFAAsF;gBACxK,SAAS,EAAE,qBAAqB;aACjC,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO;QACL,WAAW,EAAE,KAAK;QAClB,YAAY;QACZ,SAAS,EAAE,cAAc;KAC1B,CAAC;AACJ,CAAC"}

package/dist/esm/core/rateLimit/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/esm/core/rateLimit/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../../src/core/rateLimit/types.ts"],"names":[],"mappings":""}

package/dist/esm/core/services.js

@@ -0,0 +1,81 @@
+export const SERVICE_DEFINITIONS = {
+    storage: {
+        name: "storage",
+        title: "Storage",
+        description: "IPFS Upload and Download",
+        actions: [
+            {
+                name: "read",
+                title: "Download",
+                description: "Download a file from Storage",
+            },
+            {
+                name: "write",
+                title: "Upload",
+                description: "Upload a file to Storage",
+            },
+        ],
+    },
+    rpc: {
+        name: "rpc",
+        title: "RPC",
+        description: "Accelerated RPC Edge",
+        // all actions allowed
+        actions: [],
+    },
+    bundler: {
+        name: "bundler",
+        title: "Account Abstraction",
+        description: "Bundler & Paymaster services",
+        // all actions allowed
+        actions: [],
+    },
+    relayer: {
+        name: "relayer",
+        title: "Gasless Relayer",
+        description: "Enable gasless transactions",
+        // all actions allowed
+        actions: [],
+    },
+    embeddedWallets: {
+        name: "embeddedWallets",
+        title: "In-App Wallets",
+        description: "E-mail and social login wallets for easy web3 onboarding",
+        // all actions allowed
+        actions: [],
+    },
+    pay: {
+        name: "pay",
+        title: "Pay",
+        description: "Pay for a blockchain transaction with any currency",
+        // all actions allowed
+        actions: [],
+    },
+    chainsaw: {
+        name: "chainsaw",
+        title: "Chainsaw",
+        description: "Indexed data for any EVM chain",
+        // all actions allowed
+        actions: [],
+    },
+    insight: {
+        name: "insight",
+        title: "Insight",
+        description: "Insight services",
+        // all actions allowed
+        actions: [],
+    },
+    nebula: {
+        name: "nebula",
+        title: "Nebula",
+        description: "Advanced blockchain reasoning and execution capabilities with AI",
+        // all actions allowed
+        actions: [],
+    },
+};
+export const SERVICE_NAMES = Object.keys(SERVICE_DEFINITIONS);
+export const SERVICES = Object.values(SERVICE_DEFINITIONS);
+export function getServiceByName(name) {
+    return SERVICE_DEFINITIONS[name];
+}
+//# sourceMappingURL=services.js.map

package/dist/esm/core/services.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"services.js","sourceRoot":"","sources":["../../../src/core/services.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,OAAO,EAAE;QACP,IAAI,EAAE,SAAS;QACf,KAAK,EAAE,SAAS;QAChB,WAAW,EAAE,0BAA0B;QACvC,OAAO,EAAE;YACP;gBACE,IAAI,EAAE,MAAM;gBACZ,KAAK,EAAE,UAAU;gBACjB,WAAW,EAAE,8BAA8B;aAC5C;YACD;gBACE,IAAI,EAAE,OAAO;gBACb,KAAK,EAAE,QAAQ;gBACf,WAAW,EAAE,0BAA0B;aACxC;SACF;KACF;IACD,GAAG,EAAE;QACH,IAAI,EAAE,KAAK;QACX,KAAK,EAAE,KAAK;QACZ,WAAW,EAAE,sBAAsB;QACnC,sBAAsB;QACtB,OAAO,EAAE,EAAE;KACZ;IACD,OAAO,EAAE;QACP,IAAI,EAAE,SAAS;QACf,KAAK,EAAE,qBAAqB;QAC5B,WAAW,EAAE,8BAA8B;QAC3C,sBAAsB;QACtB,OAAO,EAAE,EAAE;KACZ;IACD,OAAO,EAAE;QACP,IAAI,EAAE,SAAS;QACf,KAAK,EAAE,iBAAiB;QACxB,WAAW,EAAE,6BAA6B;QAC1C,sBAAsB;QACtB,OAAO,EAAE,EAAE;KACZ;IACD,eAAe,EAAE;QACf,IAAI,EAAE,iBAAiB;QACvB,KAAK,EAAE,gBAAgB;QACvB,WAAW,EAAE,0DAA0D;QACvE,sBAAsB;QACtB,OAAO,EAAE,EAAE;KACZ;IACD,GAAG,EAAE;QACH,IAAI,EAAE,KAAK;QACX,KAAK,EAAE,KAAK;QACZ,WAAW,EAAE,oDAAoD;QACjE,sBAAsB;QACtB,OAAO,EAAE,EAAE;KACZ;IACD,QAAQ,EAAE;QACR,IAAI,EAAE,UAAU;QAChB,KAAK,EAAE,UAAU;QACjB,WAAW,EAAE,gCAAgC;QAC7C,sBAAsB;QACtB,OAAO,EAAE,EAAE;KACZ;IACD,OAAO,EAAE;QACP,IAAI,EAAE,SAAS;QACf,KAAK,EAAE,SAAS;QAChB,WAAW,EAAE,kBAAkB;QAC/B,sBAAsB;QACtB,OAAO,EAAE,EAAE;KACZ;IACD,MAAM,EAAE;QACN,IAAI,EAAE,QAAQ;QACd,KAAK,EAAE,QAAQ;QACf,WAAW,EACT,kEAAkE;QACpE,sBAAsB;QACtB,OAAO,EAAE,EAAE;KACZ;CACO,CAAC;AAEX,MAAM,CAAC,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CACtC,mBAAmB,CACoB,CAAC;AAE1C,MAAM,CAAC,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC;AAa3D,MAAM,UAAU,gBAAgB,CAAC,IAAiB;IAChD,OAAO,mBAAmB,CAAC,IAAI,CAAC,CAAC;AACnC,CAAC"}

package/dist/esm/core/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/esm/core/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/core/types.ts"],"names":[],"mappings":""}

package/dist/esm/core/usage.js

@@ -0,0 +1,82 @@
+import { z } from "zod";
+export const usageEventSchema = z.object({
+    source: z.string(),
+    action: z.string(),
+    /**
+     * The following fields are optional.
+     */
+    accountId: z.string().optional(),
+    isClientEvent: z.boolean().optional(),
+    apiKeyId: z.string().optional(),
+    creatorWalletAddress: z.string().optional(),
+    clientId: z.string().optional(),
+    walletAddress: z.string().optional(),
+    walletType: z.string().optional(),
+    chainId: z.number().int().positive().optional(),
+    provider: z.string().optional(),
+    mimeType: z.string().optional(),
+    fileSize: z.number().int().nonnegative().optional(),
+    fileCid: z.string().optional(),
+    evmMethod: z.string().optional(),
+    userOpHash: z.string().optional(),
+    gasLimit: z.number().nonnegative().optional(),
+    gasPricePerUnit: z.string().optional(),
+    transactionFeeUsd: z.number().optional(),
+    transactionHash: z.string().optional(),
+    sdkName: z.string().optional(),
+    sdkVersion: z.string().optional(),
+    sdkPlatform: z.string().optional(),
+    sdkOS: z.string().optional(),
+    productName: z.string().optional(),
+    transactionValue: z.string().optional(),
+    pathname: z.string().optional(),
+    contractAddress: z.string().optional(),
+    errorCode: z.string().optional(),
+    httpStatusCode: z.number().int().nonnegative().optional(),
+    functionName: z.string().optional(),
+    extension: z.string().optional(),
+    retryCount: z.number().int().nonnegative().optional(),
+    policyId: z.string().optional(),
+    msSinceQueue: z.number().nonnegative().optional(),
+    msSinceSend: z.number().nonnegative().optional(),
+    msTotalDuration: z.number().nonnegative().optional(),
+    swapId: z.string().optional(),
+    tokenAddress: z.string().optional(),
+    amountWei: z.string().optional(),
+    amountUSDCents: z.number().nonnegative().optional(),
+    httpMethod: z
+        .enum([
+        "GET",
+        "POST",
+        "PUT",
+        "DELETE",
+        "PATCH",
+        "HEAD",
+        "CONNECT",
+        "OPTIONS",
+        "TRACE",
+    ])
+        .optional(),
+    // Used to identify the ecosystem that the an ecosystem wallet belongs too
+    ecosystemId: z.string().optional(),
+    ecosystemPartnerId: z.string().optional(),
+    authenticationMethod: z.string().optional(),
+    chainName: z.string().optional(),
+    tokenSymbol: z.string().optional(),
+    dstChainId: z.number().optional(),
+    dstTokenAddress: z.string().optional(),
+    dstChainName: z.string().optional(),
+    dstTokenSymbol: z.string().optional(),
+    msLatency: z.number().optional(),
+    toAmountUSDCents: z.number().optional(),
+    secondaryProvider: z.string().optional(),
+    onRampId: z.string().optional(),
+    evmRequestParams: z.string().optional(),
+    providerIp: z.string().optional(),
+    promptTokens: z.number().int().nonnegative().optional(),
+    completionTokens: z.number().int().nonnegative().optional(),
+    modelName: z.string().optional(),
+    sessionId: z.string().optional(),
+    requestId: z.string().optional(),
+});
+//# sourceMappingURL=usage.js.map

package/dist/esm/core/usage.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"usage.js","sourceRoot":"","sources":["../../../src/core/usage.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,CAAC,MAAM,CAAC;IACvC,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE;IAClB,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE;IAElB;;OAEG;IAEH,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,aAAa,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IACrC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,oBAAoB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC3C,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,aAAa,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACpC,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACjC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;IAC/C,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;IACnD,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9B,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACjC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;IAC7C,eAAe,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACtC,iBAAiB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACxC,eAAe,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACtC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9B,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACjC,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5B,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,gBAAgB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACvC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,eAAe,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACtC,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;IACzD,YAAY,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACnC,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;IACrD,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,YAAY,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;IACjD,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;IAChD,eAAe,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;IACpD,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7B,YAAY,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACnC,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;IACnD,UAAU,EAAE,CAAC;SACV,IAAI,CAAC;QACJ,KAAK;QACL,MAAM;QACN,KAAK;QACL,QAAQ;QACR,OAAO;QACP,MAAM;QACN,SAAS;QACT,SAAS;QACT,OAAO;KACR,CAAC;SACD,QAAQ,EAAE;IACb,0EAA0E;IAC1E,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,kBAAkB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACzC,oBAAoB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC3C,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACjC,eAAe,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACtC,YAAY,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACnC,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACrC,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,gBAAgB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACvC,iBAAiB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACxC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,gBAAgB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACvC,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACjC,YAAY,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;IACvD,gBAAgB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;IAC3D,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACjC,CAAC,CAAC"}

package/dist/esm/index.js

@@ -0,0 +1,5 @@
+// Exports the public service definitions.
+export * from "./core/services.js";
+export { fetchTeamAndProject, updateRateLimitedAt } from "./core/api.js";
+export { authorizeBundleId, authorizeDomain, } from "./core/authorize/client.js";
+//# sourceMappingURL=index.js.map

package/dist/esm/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,0CAA0C;AAC1C,cAAc,oBAAoB,CAAC;AAWnC,OAAO,EAAE,mBAAmB,EAAE,mBAAmB,EAAE,MAAM,eAAe,CAAC;AAEzE,OAAO,EACL,iBAAiB,EACjB,eAAe,GAChB,MAAM,4BAA4B,CAAC"}