@thirdweb-dev/service-utils 0.5.0-nightly-f5aed34d-20230829001006 → 0.5.0

package/dist/index-ffddf746.esm.js

@@ -1,422 +0,0 @@
-async function fetchKeyMetadataFromApi(clientId, config) {
-  const {
-    apiUrl,
-    serviceScope,
-    serviceApiKey
-  } = config;
-  const url = `${apiUrl}/v1/keys/use?clientId=${clientId}&scope=${serviceScope}`;
-  const response = await fetch(url, {
-    method: "GET",
-    headers: {
-      "x-service-api-key": serviceApiKey,
-      "content-type": "application/json"
-    }
-  });
-  let json;
-  try {
-    json = await response.json();
-  } catch (e) {
-    throw new Error(`Error fetching key metadata from API: ${response.status} - ${response.statusText} - ${await response.text()}`);
-  }
-  return json;
-}
-async function fetchAccountFromApi(jwt, config, useWalletAuth) {
-  const {
-    apiUrl,
-    serviceApiKey
-  } = config;
-  const url = useWalletAuth ? `${apiUrl}/v1/wallet/me` : `${apiUrl}/v1/account/me`;
-  const response = await fetch(url, {
-    method: "GET",
-    headers: {
-      "x-service-api-key": serviceApiKey,
-      "content-type": "application/json",
-      authorization: `Bearer ${jwt}`
-    }
-  });
-  let json;
-  try {
-    json = await response.json();
-  } catch (e) {
-    throw new Error(`Error fetching account from API: ${response.status} - ${response.statusText} - ${await response.text()}`);
-  }
-  return json;
-}
-
-function authorizeClient(authOptions, apiKeyMeta) {
-  const {
-    origin,
-    bundleId,
-    secretKeyHash: providedSecretHash
-  } = authOptions;
-  const {
-    domains,
-    bundleIds,
-    secretHash
-  } = apiKeyMeta;
-  const authResult = {
-    authorized: true,
-    apiKeyMeta,
-    accountMeta: {
-      id: apiKeyMeta.accountId,
-      // TODO update this later
-      name: "",
-      creatorWalletAddress: apiKeyMeta.creatorWalletAddress
-    }
-  };
-
-  // check for public restrictions
-  if (domains.includes("*")) {
-    return authResult;
-  }
-
-  // check for secretHash
-  if (providedSecretHash) {
-    if (secretHash !== providedSecretHash) {
-      return {
-        authorized: false,
-        errorMessage: "Incorrect key provided. You can view your active API keys at https://thirdweb.com/dashboard/settings",
-        errorCode: "SECRET_INVALID",
-        status: 401
-      };
-    }
-    return authResult;
-  }
-
-  // validate domains
-  if (origin) {
-    if (
-    // find matching domain, or if all domains allowed
-    domains.find(d => {
-      // if any domain is allowed, we'll return true
-      if (d === "*") {
-        return true;
-      }
-
-      // special rule for `localhost`
-      // if the domain is localhost, we'll allow any origin that starts with localhost
-      if (d === "localhost" && origin.startsWith("localhost")) {
-        return true;
-      }
-
-      // If the allowedDomain has a wildcard,
-      // we'll check that the ending of our domain matches the wildcard
-      if (d.startsWith("*.")) {
-        // get rid of the * and check if it ends with the `.<domain>.<tld>`
-        const domainRoot = d.slice(1);
-        return origin.endsWith(domainRoot);
-      }
-
-      // If there's no wildcard, we'll check for an exact match
-      return d === origin;
-    })) {
-      return authResult;
-    }
-    return {
-      authorized: false,
-      errorMessage: `Invalid request: Unauthorized domain: ${origin}. You can view the restrictions on this API key at https://thirdweb.com/create-api-key`,
-      errorCode: "ORIGIN_UNAUTHORIZED",
-      status: 401
-    };
-  }
-
-  // validate bundleId
-  if (bundleId) {
-    if (
-    // find matching bundle id, or if all bundles allowed
-    bundleIds.find(b => {
-      if (b === "*") {
-        return true;
-      }
-      return b === bundleId;
-    })) {
-      return authResult;
-    }
-    return {
-      authorized: false,
-      errorMessage: `Invalid request: Unauthorized Bundle ID: ${bundleId}. You can view the restrictions on this API key at https://thirdweb.com/create-api-key`,
-      errorCode: "BUNDLE_UNAUTHORIZED",
-      status: 401
-    };
-  }
-  return {
-    authorized: false,
-    errorMessage: "The keys are invalid. Please check the secret-key/clientId and try again.",
-    errorCode: "UNAUTHORIZED",
-    status: 401
-  };
-}
-
-function authorizeService(apiKeyMetadata, serviceConfig, authorizationPayload) {
-  const {
-    services
-  } = apiKeyMetadata;
-  // validate services
-  const service = services.find(srv => srv.name === serviceConfig.serviceScope);
-  if (!service) {
-    return {
-      authorized: false,
-      errorMessage: `Invalid request: Unauthorized service: ${serviceConfig.serviceScope}. You can view the restrictions on this API key in your dashboard:  https://thirdweb.com/create-api-key`,
-      errorCode: "SERVICE_UNAUTHORIZED",
-      status: 403
-    };
-  }
-
-  // validate service actions
-  if (serviceConfig.serviceAction) {
-    const isActionAllowed = service.actions.includes(serviceConfig.serviceAction);
-    if (!isActionAllowed) {
-      return {
-        authorized: false,
-        errorMessage: `Invalid request: Unauthorized action: ${serviceConfig.serviceScope} ${serviceConfig.serviceAction}. You can view the restrictions on this API key in your dashboard:  https://thirdweb.com/create-api-key`,
-        errorCode: "SERVICE_ACTION_UNAUTHORIZED",
-        status: 403
-      };
-    }
-  }
-
-  // validate service target addresses
-  // the service has to pass in the target address for this to be validated
-  if (authorizationPayload?.targetAddress) {
-    const checkedAddresses = Array.isArray(authorizationPayload.targetAddress) ? authorizationPayload.targetAddress : [authorizationPayload.targetAddress];
-    const allAllowed = service.targetAddresses.includes("*");
-    if (!allAllowed && checkedAddresses.some(ta => !service.targetAddresses.includes(ta))) {
-      return {
-        authorized: false,
-        errorMessage: `Invalid request: Unauthorized address: ${serviceConfig.serviceScope} ${checkedAddresses}. You can view the restrictions on this API key in your dashboard:  https://thirdweb.com/create-api-key`,
-        errorCode: "SERVICE_TARGET_ADDRESS_UNAUTHORIZED",
-        status: 403
-      };
-    }
-  }
-  return {
-    authorized: true,
-    accountMeta: {
-      id: apiKeyMetadata.accountId,
-      name: "",
-      creatorWalletAddress: apiKeyMetadata.creatorWalletAddress
-    },
-    apiKeyMeta: apiKeyMetadata
-  };
-}
-
-async function authorize(authData, serviceConfig, cacheOptions) {
-  const {
-    clientId,
-    targetAddress,
-    secretKeyHash,
-    jwt,
-    hashedJWT,
-    useWalletAuth
-  } = authData;
-  const {
-    enforceAuth
-  } = serviceConfig;
-
-  // BACKWARDS COMPAT: if auth not enforced and we don't have auth credentials bypass
-  if (!enforceAuth && !clientId && !secretKeyHash) {
-    return {
-      authorized: true,
-      apiKeyMeta: null,
-      accountMeta: null
-    };
-  }
-  // if we come in with a JWT then we only check the account is valid
-  if (jwt && hashedJWT) {
-    let accountMeta = null;
-    if (cacheOptions) {
-      try {
-        const cachedAccountInfo = await cacheOptions.get(hashedJWT);
-        if (cachedAccountInfo) {
-          const parsed = JSON.parse(cachedAccountInfo);
-          if ("updatedAt" in parsed) {
-            // we want to compare the updatedAt time to the current time
-            // if the difference is greater than the cacheTtl we want to ignore the cached data
-            const now = Date.now();
-            const diff = now - parsed.updatedAt;
-            const cacheTtl = cacheOptions.cacheTtlSeconds * 1000;
-            // only if the diff is less than the cacheTtl do we want to use the cached key
-            if (diff < cacheTtl * 1000) {
-              accountMeta = parsed.apiKeyMeta;
-            }
-          } else {
-            accountMeta = parsed;
-          }
-        }
-      } catch (err) {
-        // ignore errors, proceed as if not in cache
-      }
-    }
-    if (!accountMeta) {
-      try {
-        const {
-          data,
-          error
-        } = await fetchAccountFromApi(jwt, serviceConfig, useWalletAuth?.toLowerCase() === "true");
-        if (error) {
-          return {
-            authorized: false,
-            errorCode: error.code,
-            errorMessage: error.message,
-            status: error.statusCode
-          };
-        } else if (!data) {
-          return {
-            authorized: false,
-            errorCode: "NO_ACCOUNT",
-            errorMessage: "No error but also no account returned.",
-            status: 500
-          };
-        }
-        accountMeta = data;
-        if (cacheOptions) {
-          await cacheOptions.put(hashedJWT, accountMeta);
-        }
-      } catch (err) {
-        console.warn("failed to fetch account from api", err);
-        return {
-          authorized: false,
-          status: 500,
-          errorMessage: "Failed to get account information.",
-          errorCode: "FAILED_TO_LOAD_ACCOUNT"
-        };
-      }
-    }
-    // if we still don't have an accountMeta at this point we can't authorize
-    if (!accountMeta) {
-      return {
-        authorized: false,
-        status: 401,
-        errorMessage: "Missing account information.",
-        errorCode: "MISSING_ACCOUNT"
-      };
-    }
-    // otherwise we want to return early with the accountMeta
-    return {
-      authorized: true,
-      apiKeyMeta: null,
-      accountMeta
-    };
-  }
-
-  // if we don't have a client id at this point we can't authorize
-  if (!clientId) {
-    return {
-      authorized: false,
-      status: 401,
-      errorMessage: "Missing clientId or secretKey.",
-      errorCode: "MISSING_KEY"
-    };
-  }
-  let apiKeyMeta = null;
-  // if we have cache options we want to check the cache first
-  if (cacheOptions) {
-    try {
-      const cachedKey = await cacheOptions.get(clientId);
-      if (cachedKey) {
-        const parsed = JSON.parse(cachedKey);
-        if ("updatedAt" in parsed) {
-          // we want to compare the updatedAt time to the current time
-          // if the difference is greater than the cacheTtl we want to ignore the cached data
-          const now = Date.now();
-          const diff = now - parsed.updatedAt;
-          const cacheTtl = cacheOptions.cacheTtlSeconds * 1000;
-          // only if the diff is less than the cacheTtl do we want to use the cached key
-          if (diff < cacheTtl * 1000) {
-            apiKeyMeta = parsed.apiKeyMeta;
-          }
-        } else {
-          apiKeyMeta = parsed;
-        }
-      }
-    } catch (err) {
-      // ignore errors, proceed as if not in cache
-    }
-  }
-
-  // if we don't have a cached key, fetch from the API
-  if (!apiKeyMeta) {
-    try {
-      const {
-        data,
-        error
-      } = await fetchKeyMetadataFromApi(clientId, serviceConfig);
-      if (error) {
-        return {
-          authorized: false,
-          errorCode: error.code,
-          errorMessage: error.message,
-          status: error.statusCode
-        };
-      } else if (!data) {
-        return {
-          authorized: false,
-          errorCode: "NO_KEY",
-          errorMessage: "No error but also no key returned.",
-          status: 500
-        };
-      }
-      // if we have a key for sure then assign it
-      apiKeyMeta = data;
-
-      // cache the retrieved key if we have cache options
-      if (cacheOptions) {
-        // we await this always because it can be a promise or not
-        await cacheOptions.put(clientId, data);
-      }
-    } catch (err) {
-      console.warn("failed to fetch key metadata from api", err);
-      return {
-        authorized: false,
-        status: 500,
-        errorMessage: "Failed to fetch key metadata. Please check your secret-key/clientId.",
-        errorCode: "FAILED_TO_FETCH_KEY"
-      };
-    }
-  }
-  if (!apiKeyMeta) {
-    return {
-      authorized: false,
-      status: 401,
-      errorMessage: "Key is invalid. Please check your secret-key/clientId.",
-      errorCode: "INVALID_KEY"
-    };
-  }
-  // now we can validate the key itself
-  const clientAuth = authorizeClient(authData, apiKeyMeta);
-  if (!clientAuth.authorized) {
-    return {
-      errorCode: clientAuth.errorCode,
-      authorized: false,
-      status: 401,
-      errorMessage: clientAuth.errorMessage
-    };
-  }
-
-  // if we've made it this far we need to check service specific authorization
-  const serviceAuth = authorizeService(apiKeyMeta, serviceConfig, {
-    targetAddress
-  });
-  if (!serviceAuth.authorized) {
-    return {
-      errorCode: serviceAuth.errorCode,
-      authorized: false,
-      status: 403,
-      errorMessage: serviceAuth.errorMessage
-    };
-  }
-
-  // if we reach this point we are authorized!
-  return {
-    authorized: true,
-    apiKeyMeta,
-    accountMeta: {
-      id: apiKeyMeta.accountId,
-      // TODO update this later
-      name: "",
-      creatorWalletAddress: apiKeyMeta.creatorWalletAddress
-    }
-  };
-}
-
-export { authorize as a };

package/dist/services-86283509.esm.js

@@ -1,44 +0,0 @@
-const SERVICE_DEFINITIONS = {
-  storage: {
-    name: "storage",
-    title: "Storage",
-    description: "IPFS Upload and Download",
-    actions: [{
-      name: "read",
-      title: "Download",
-      description: "Download a file from Storage"
-    }, {
-      name: "write",
-      title: "Upload",
-      description: "Upload a file to Storage"
-    }]
-  },
-  rpc: {
-    name: "rpc",
-    title: "RPC",
-    description: "Accelerated RPC Edge",
-    // all actions allowed
-    actions: []
-  },
-  bundler: {
-    name: "bundler",
-    title: "Smart Wallets",
-    description: "Bundler & Paymaster services",
-    // all actions allowed
-    actions: []
-  },
-  relayer: {
-    name: "relayer",
-    title: "Gasless Relayer",
-    description: "Enable gasless transactions",
-    // all actions allowed
-    actions: []
-  }
-};
-const SERVICE_NAMES = Object.keys(SERVICE_DEFINITIONS);
-const SERVICES = Object.values(SERVICE_DEFINITIONS);
-function getServiceByName(name) {
-  return SERVICE_DEFINITIONS[name];
-}
-
-export { SERVICE_DEFINITIONS as S, SERVICE_NAMES as a, SERVICES as b, getServiceByName as g };

package/dist/services-9e185105.cjs.prod.js

@@ -1,49 +0,0 @@
-'use strict';
-
-const SERVICE_DEFINITIONS = {
-  storage: {
-    name: "storage",
-    title: "Storage",
-    description: "IPFS Upload and Download",
-    actions: [{
-      name: "read",
-      title: "Download",
-      description: "Download a file from Storage"
-    }, {
-      name: "write",
-      title: "Upload",
-      description: "Upload a file to Storage"
-    }]
-  },
-  rpc: {
-    name: "rpc",
-    title: "RPC",
-    description: "Accelerated RPC Edge",
-    // all actions allowed
-    actions: []
-  },
-  bundler: {
-    name: "bundler",
-    title: "Smart Wallets",
-    description: "Bundler & Paymaster services",
-    // all actions allowed
-    actions: []
-  },
-  relayer: {
-    name: "relayer",
-    title: "Gasless Relayer",
-    description: "Enable gasless transactions",
-    // all actions allowed
-    actions: []
-  }
-};
-const SERVICE_NAMES = Object.keys(SERVICE_DEFINITIONS);
-const SERVICES = Object.values(SERVICE_DEFINITIONS);
-function getServiceByName(name) {
-  return SERVICE_DEFINITIONS[name];
-}
-
-exports.SERVICES = SERVICES;
-exports.SERVICE_DEFINITIONS = SERVICE_DEFINITIONS;
-exports.SERVICE_NAMES = SERVICE_NAMES;
-exports.getServiceByName = getServiceByName;

package/dist/services-a3f36057.cjs.dev.js

@@ -1,49 +0,0 @@
-'use strict';
-
-const SERVICE_DEFINITIONS = {
-  storage: {
-    name: "storage",
-    title: "Storage",
-    description: "IPFS Upload and Download",
-    actions: [{
-      name: "read",
-      title: "Download",
-      description: "Download a file from Storage"
-    }, {
-      name: "write",
-      title: "Upload",
-      description: "Upload a file to Storage"
-    }]
-  },
-  rpc: {
-    name: "rpc",
-    title: "RPC",
-    description: "Accelerated RPC Edge",
-    // all actions allowed
-    actions: []
-  },
-  bundler: {
-    name: "bundler",
-    title: "Smart Wallets",
-    description: "Bundler & Paymaster services",
-    // all actions allowed
-    actions: []
-  },
-  relayer: {
-    name: "relayer",
-    title: "Gasless Relayer",
-    description: "Enable gasless transactions",
-    // all actions allowed
-    actions: []
-  }
-};
-const SERVICE_NAMES = Object.keys(SERVICE_DEFINITIONS);
-const SERVICES = Object.values(SERVICE_DEFINITIONS);
-function getServiceByName(name) {
-  return SERVICE_DEFINITIONS[name];
-}
-
-exports.SERVICES = SERVICES;
-exports.SERVICE_DEFINITIONS = SERVICE_DEFINITIONS;
-exports.SERVICE_NAMES = SERVICE_NAMES;
-exports.getServiceByName = getServiceByName;

package/dist/thirdweb-dev-service-utils.cjs.d.ts

@@ -1,2 +0,0 @@
-export * from "./declarations/src/index";
-//# sourceMappingURL=thirdweb-dev-service-utils.cjs.d.ts.map

package/dist/thirdweb-dev-service-utils.cjs.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"thirdweb-dev-service-utils.cjs.d.ts","sourceRoot":"","sources":["./declarations/src/index.d.ts"],"names":[],"mappings":"AAAA"}

package/dist/thirdweb-dev-service-utils.cjs.dev.js

@@ -1,12 +0,0 @@
-'use strict';
-
-Object.defineProperty(exports, '__esModule', { value: true });
-
-var services = require('./services-a3f36057.cjs.dev.js');
-
-
-
-exports.SERVICES = services.SERVICES;
-exports.SERVICE_DEFINITIONS = services.SERVICE_DEFINITIONS;
-exports.SERVICE_NAMES = services.SERVICE_NAMES;
-exports.getServiceByName = services.getServiceByName;

package/dist/thirdweb-dev-service-utils.cjs.js

@@ -1,7 +0,0 @@
-'use strict';
-
-if (process.env.NODE_ENV === "production") {
-  module.exports = require("./thirdweb-dev-service-utils.cjs.prod.js");
-} else {
-  module.exports = require("./thirdweb-dev-service-utils.cjs.dev.js");
-}

package/dist/thirdweb-dev-service-utils.cjs.prod.js

@@ -1,12 +0,0 @@
-'use strict';
-
-Object.defineProperty(exports, '__esModule', { value: true });
-
-var services = require('./services-9e185105.cjs.prod.js');
-
-
-
-exports.SERVICES = services.SERVICES;
-exports.SERVICE_DEFINITIONS = services.SERVICE_DEFINITIONS;
-exports.SERVICE_NAMES = services.SERVICE_NAMES;
-exports.getServiceByName = services.getServiceByName;

package/dist/thirdweb-dev-service-utils.esm.js

@@ -1 +0,0 @@
-export { b as SERVICES, S as SERVICE_DEFINITIONS, a as SERVICE_NAMES, g as getServiceByName } from './services-86283509.esm.js';

package/node/dist/thirdweb-dev-service-utils-node.cjs.d.ts

@@ -1,2 +0,0 @@
-export * from "../../dist/declarations/src/node/index";
-//# sourceMappingURL=thirdweb-dev-service-utils-node.cjs.d.ts.map

package/node/dist/thirdweb-dev-service-utils-node.cjs.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"thirdweb-dev-service-utils-node.cjs.d.ts","sourceRoot":"","sources":["../../dist/declarations/src/node/index.d.ts"],"names":[],"mappings":"AAAA"}