@unwanted/matrix-sdk-mini 34.12.0-1

package/lib/autodiscovery.js

@@ -0,0 +1,464 @@
+import _asyncToGenerator from "@babel/runtime/helpers/asyncToGenerator";
+import _defineProperty from "@babel/runtime/helpers/defineProperty";
+/*
+Copyright 2018 New Vector Ltd
+Copyright 2019 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+import { logger } from "./logger.js";
+import { Method, timeoutSignal } from "./http-api/index.js";
+import { SUPPORTED_MATRIX_VERSIONS } from "./version-support.js";
+
+// Dev note: Auto discovery is part of the spec.
+// See: https://matrix.org/docs/spec/client_server/r0.4.0.html#server-discovery
+
+export var AutoDiscoveryAction = /*#__PURE__*/function (AutoDiscoveryAction) {
+  AutoDiscoveryAction["SUCCESS"] = "SUCCESS";
+  AutoDiscoveryAction["IGNORE"] = "IGNORE";
+  AutoDiscoveryAction["PROMPT"] = "PROMPT";
+  AutoDiscoveryAction["FAIL_PROMPT"] = "FAIL_PROMPT";
+  AutoDiscoveryAction["FAIL_ERROR"] = "FAIL_ERROR";
+  return AutoDiscoveryAction;
+}({});
+export var AutoDiscoveryError = /*#__PURE__*/function (AutoDiscoveryError) {
+  AutoDiscoveryError["Invalid"] = "Invalid homeserver discovery response";
+  AutoDiscoveryError["GenericFailure"] = "Failed to get autodiscovery configuration from server";
+  AutoDiscoveryError["InvalidHsBaseUrl"] = "Invalid base_url for m.homeserver";
+  AutoDiscoveryError["InvalidHomeserver"] = "Homeserver URL does not appear to be a valid Matrix homeserver";
+  AutoDiscoveryError["InvalidIsBaseUrl"] = "Invalid base_url for m.identity_server";
+  AutoDiscoveryError["InvalidIdentityServer"] = "Identity server URL does not appear to be a valid identity server";
+  AutoDiscoveryError["InvalidIs"] = "Invalid identity server discovery response";
+  AutoDiscoveryError["MissingWellknown"] = "No .well-known JSON file found";
+  AutoDiscoveryError["InvalidJson"] = "Invalid JSON";
+  AutoDiscoveryError["UnsupportedHomeserverSpecVersion"] = "The homeserver does not meet the version requirements";
+  return AutoDiscoveryError;
+}({}); // TODO: Implement when Sydent supports the `/versions` endpoint - https://github.com/matrix-org/sydent/issues/424
+//IdentityServerTooOld = "The identity server does not meet the minimum version requirements",
+/**
+ * Utilities for automatically discovery resources, such as homeservers
+ * for users to log in to.
+ */
+export class AutoDiscovery {
+  /**
+   * Validates and verifies client configuration information for purposes
+   * of logging in. Such information includes the homeserver URL
+   * and identity server URL the client would want. Additional details
+   * may also be included, and will be transparently brought into the
+   * response object unaltered.
+   * @param wellknown - The configuration object itself, as returned
+   * by the .well-known auto-discovery endpoint.
+   * @returns Promise which resolves to the verified
+   * configuration, which may include error states. Rejects on unexpected
+   * failure, not when verification fails.
+   */
+  static fromDiscoveryConfig(wellknown) {
+    var _this = this;
+    return _asyncToGenerator(function* () {
+      var _hsVersions$raw;
+      // Step 1 is to get the config, which is provided to us here.
+
+      // We default to an error state to make the first few checks easier to
+      // write. We'll update the properties of this object over the duration
+      // of this function.
+      var clientConfig = {
+        "m.homeserver": {
+          state: AutoDiscovery.FAIL_ERROR,
+          error: AutoDiscovery.ERROR_INVALID,
+          base_url: null
+        },
+        "m.identity_server": {
+          // Technically, we don't have a problem with the identity server
+          // config at this point.
+          state: AutoDiscovery.PROMPT,
+          error: null,
+          base_url: null
+        }
+      };
+      if (!(wellknown !== null && wellknown !== void 0 && wellknown["m.homeserver"])) {
+        logger.error("No m.homeserver key in config");
+        clientConfig["m.homeserver"].state = AutoDiscovery.FAIL_PROMPT;
+        clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_INVALID;
+        return Promise.resolve(clientConfig);
+      }
+      if (!wellknown["m.homeserver"]["base_url"]) {
+        logger.error("No m.homeserver base_url in config");
+        clientConfig["m.homeserver"].state = AutoDiscovery.FAIL_PROMPT;
+        clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_INVALID_HS_BASE_URL;
+        return Promise.resolve(clientConfig);
+      }
+
+      // Step 2: Make sure the homeserver URL is valid *looking*. We'll make
+      // sure it points to a homeserver in Step 3.
+      var hsUrl = _this.sanitizeWellKnownUrl(wellknown["m.homeserver"]["base_url"]);
+      if (!hsUrl) {
+        logger.error("Invalid base_url for m.homeserver");
+        clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_INVALID_HS_BASE_URL;
+        return Promise.resolve(clientConfig);
+      }
+
+      // Step 3: Make sure the homeserver URL points to a homeserver.
+      var hsVersions = yield _this.fetchWellKnownObject("".concat(hsUrl, "/_matrix/client/versions"));
+      if (!hsVersions || !Array.isArray((_hsVersions$raw = hsVersions.raw) === null || _hsVersions$raw === void 0 ? void 0 : _hsVersions$raw["versions"])) {
+        logger.error("Invalid /versions response");
+        clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_INVALID_HOMESERVER;
+
+        // Supply the base_url to the caller because they may be ignoring liveliness
+        // errors, like this one.
+        clientConfig["m.homeserver"].base_url = hsUrl;
+        return Promise.resolve(clientConfig);
+      }
+
+      // Step 3.1: Non-spec check to ensure the server will actually work for us. We need to check if
+      // any of the versions in `SUPPORTED_MATRIX_VERSIONS` are listed in the /versions response.
+      var hsVersionSet = new Set(hsVersions.raw["versions"]);
+      var supportedVersionFound = false;
+      for (var version of SUPPORTED_MATRIX_VERSIONS) {
+        if (hsVersionSet.has(version)) {
+          supportedVersionFound = true;
+          break;
+        }
+      }
+      if (!supportedVersionFound) {
+        logger.error("Homeserver does not meet version requirements");
+        clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_UNSUPPORTED_HOMESERVER_SPEC_VERSION;
+
+        // Supply the base_url to the caller because they may be ignoring liveliness
+        // errors, like this one.
+        clientConfig["m.homeserver"].base_url = hsUrl;
+        return Promise.resolve(clientConfig);
+      }
+
+      // Step 4: Now that the homeserver looks valid, update our client config.
+      clientConfig["m.homeserver"] = {
+        state: AutoDiscovery.SUCCESS,
+        error: null,
+        base_url: hsUrl
+      };
+
+      // Step 5: Try to pull out the identity server configuration
+      var isUrl = "";
+      if (wellknown["m.identity_server"]) {
+        // We prepare a failing identity server response to save lines later
+        // in this branch.
+        var failingClientConfig = {
+          "m.homeserver": clientConfig["m.homeserver"],
+          "m.identity_server": {
+            state: AutoDiscovery.FAIL_PROMPT,
+            error: AutoDiscovery.ERROR_INVALID_IS,
+            base_url: null
+          }
+        };
+
+        // Step 5a: Make sure the URL is valid *looking*. We'll make sure it
+        // points to an identity server in Step 5b.
+        isUrl = _this.sanitizeWellKnownUrl(wellknown["m.identity_server"]["base_url"]);
+        if (!isUrl) {
+          logger.error("Invalid base_url for m.identity_server");
+          failingClientConfig["m.identity_server"].error = AutoDiscovery.ERROR_INVALID_IS_BASE_URL;
+          return Promise.resolve(failingClientConfig);
+        }
+
+        // Step 5b: Verify there is an identity server listening on the provided
+        // URL.
+        var isResponse = yield _this.fetchWellKnownObject("".concat(isUrl, "/_matrix/identity/v2"));
+        if (!(isResponse !== null && isResponse !== void 0 && isResponse.raw) || isResponse.action !== AutoDiscoveryAction.SUCCESS) {
+          logger.error("Invalid /v2 response");
+          failingClientConfig["m.identity_server"].error = AutoDiscovery.ERROR_INVALID_IDENTITY_SERVER;
+
+          // Supply the base_url to the caller because they may be ignoring
+          // liveliness errors, like this one.
+          failingClientConfig["m.identity_server"].base_url = isUrl;
+          return Promise.resolve(failingClientConfig);
+        }
+      }
+
+      // Step 6: Now that the identity server is valid, or never existed,
+      // populate the IS section.
+      if (isUrl && isUrl.toString().length > 0) {
+        clientConfig["m.identity_server"] = {
+          state: AutoDiscovery.SUCCESS,
+          error: null,
+          base_url: isUrl
+        };
+      }
+
+      // Step 7: Copy any other keys directly into the clientConfig. This is for
+      // things like custom configuration of services.
+      Object.keys(wellknown).forEach(k => {
+        if (k === "m.homeserver" || k === "m.identity_server") {
+          // Only copy selected parts of the config to avoid overwriting
+          // properties computed by the validation logic above.
+          var notProps = ["error", "state", "base_url"];
+          for (var prop of Object.keys(wellknown[k])) {
+            if (notProps.includes(prop)) continue;
+            // @ts-ignore - ts gets unhappy as we're mixing types here
+            clientConfig[k][prop] = wellknown[k][prop];
+          }
+        } else {
+          // Just copy the whole thing over otherwise
+          clientConfig[k] = wellknown[k];
+        }
+      });
+
+      // Step 8: Give the config to the caller (finally)
+      return Promise.resolve(clientConfig);
+    })();
+  }
+
+  /**
+   * Attempts to automatically discover client configuration information
+   * prior to logging in. Such information includes the homeserver URL
+   * and identity server URL the client would want. Additional details
+   * may also be discovered, and will be transparently included in the
+   * response object unaltered.
+   * @param domain - The homeserver domain to perform discovery
+   * on. For example, "matrix.org".
+   * @returns Promise which resolves to the discovered
+   * configuration, which may include error states. Rejects on unexpected
+   * failure, not when discovery fails.
+   */
+  static findClientConfig(domain) {
+    var _this2 = this;
+    return _asyncToGenerator(function* () {
+      if (!domain || typeof domain !== "string" || domain.length === 0) {
+        throw new Error("'domain' must be a string of non-zero length");
+      }
+
+      // We use a .well-known lookup for all cases. According to the spec, we
+      // can do other discovery mechanisms if we want such as custom lookups
+      // however we won't bother with that here (mostly because the spec only
+      // supports .well-known right now).
+      //
+      // By using .well-known, we need to ensure we at least pull out a URL
+      // for the homeserver. We don't really need an identity server configuration
+      // but will return one anyways (with state PROMPT) to make development
+      // easier for clients. If we can't get a homeserver URL, all bets are
+      // off on the rest of the config and we'll assume it is invalid too.
+
+      // We default to an error state to make the first few checks easier to
+      // write. We'll update the properties of this object over the duration
+      // of this function.
+      var clientConfig = {
+        "m.homeserver": {
+          state: AutoDiscovery.FAIL_ERROR,
+          error: AutoDiscovery.ERROR_INVALID,
+          base_url: null
+        },
+        "m.identity_server": {
+          // Technically, we don't have a problem with the identity server
+          // config at this point.
+          state: AutoDiscovery.PROMPT,
+          error: null,
+          base_url: null
+        }
+      };
+
+      // Step 1: Actually request the .well-known JSON file and make sure it
+      // at least has a homeserver definition.
+      var domainWithProtocol = domain.includes("://") ? domain : "https://".concat(domain);
+      var wellknown = yield _this2.fetchWellKnownObject("".concat(domainWithProtocol, "/.well-known/matrix/client"));
+      if (!wellknown || wellknown.action !== AutoDiscoveryAction.SUCCESS) {
+        logger.error("No response or error when parsing .well-known");
+        if (wellknown.reason) logger.error(wellknown.reason);
+        if (wellknown.action === AutoDiscoveryAction.IGNORE) {
+          clientConfig["m.homeserver"] = {
+            state: AutoDiscovery.PROMPT,
+            error: null,
+            base_url: null
+          };
+        } else {
+          // this can only ever be FAIL_PROMPT at this point.
+          clientConfig["m.homeserver"].state = AutoDiscovery.FAIL_PROMPT;
+          clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_INVALID;
+        }
+        return Promise.resolve(clientConfig);
+      }
+
+      // Step 2: Validate and parse the config
+      return AutoDiscovery.fromDiscoveryConfig(wellknown.raw);
+    })();
+  }
+
+  /**
+   * Gets the raw discovery client configuration for the given domain name.
+   * Should only be used if there's no validation to be done on the resulting
+   * object, otherwise use findClientConfig().
+   * @param domain - The domain to get the client config for.
+   * @returns Promise which resolves to the domain's client config. Can
+   * be an empty object.
+   */
+  static getRawClientConfig(domain) {
+    var _this3 = this;
+    return _asyncToGenerator(function* () {
+      var _response$raw;
+      if (!domain || typeof domain !== "string" || domain.length === 0) {
+        throw new Error("'domain' must be a string of non-zero length");
+      }
+      var response = yield _this3.fetchWellKnownObject("https://".concat(domain, "/.well-known/matrix/client"));
+      if (!response) return {};
+      return (_response$raw = response.raw) !== null && _response$raw !== void 0 ? _response$raw : {};
+    })();
+  }
+
+  /**
+   * Sanitizes a given URL to ensure it is either an HTTP or HTTP URL and
+   * is suitable for the requirements laid out by .well-known auto discovery.
+   * If valid, the URL will also be stripped of any trailing slashes.
+   * @param url - The potentially invalid URL to sanitize.
+   * @returns The sanitized URL or a falsey value if the URL is invalid.
+   * @internal
+   */
+  static sanitizeWellKnownUrl(url) {
+    if (!url) return false;
+    try {
+      var _parsed;
+      var parsed;
+      try {
+        parsed = new URL(url);
+      } catch (e) {
+        logger.error("Could not parse url", e);
+      }
+      if (!((_parsed = parsed) !== null && _parsed !== void 0 && _parsed.hostname)) return false;
+      if (parsed.protocol !== "http:" && parsed.protocol !== "https:") return false;
+      var port = parsed.port ? ":".concat(parsed.port) : "";
+      var path = parsed.pathname ? parsed.pathname : "";
+      var saferUrl = "".concat(parsed.protocol, "//").concat(parsed.hostname).concat(port).concat(path);
+      if (saferUrl.endsWith("/")) {
+        saferUrl = saferUrl.substring(0, saferUrl.length - 1);
+      }
+      return saferUrl;
+    } catch (e) {
+      logger.error(e);
+      return false;
+    }
+  }
+  static fetch(resource, options) {
+    if (this.fetchFn) {
+      return this.fetchFn(resource, options);
+    }
+    return globalThis.fetch(resource, options);
+  }
+  static setFetchFn(fetchFn) {
+    AutoDiscovery.fetchFn = fetchFn;
+  }
+
+  /**
+   * Fetches a JSON object from a given URL, as expected by all .well-known
+   * related lookups. If the server gives a 404 then the `action` will be
+   * IGNORE. If the server returns something that isn't JSON, the `action`
+   * will be FAIL_PROMPT. For any other failure the `action` will be FAIL_PROMPT.
+   *
+   * The returned object will be a result of the call in object form with
+   * the following properties:
+   *   raw: The JSON object returned by the server.
+   *   action: One of SUCCESS, IGNORE, or FAIL_PROMPT.
+   *   reason: Relatively human-readable description of what went wrong.
+   *   error: The actual Error, if one exists.
+   * @param url - The URL to fetch a JSON object from.
+   * @returns Promise which resolves to the returned state.
+   * @internal
+   */
+  static fetchWellKnownObject(url) {
+    return _asyncToGenerator(function* () {
+      var response;
+      try {
+        response = yield AutoDiscovery.fetch(url, {
+          method: Method.Get,
+          signal: timeoutSignal(5000)
+        });
+        if (response.status === 404) {
+          return {
+            raw: {},
+            action: AutoDiscoveryAction.IGNORE,
+            reason: AutoDiscovery.ERROR_MISSING_WELLKNOWN
+          };
+        }
+        if (!response.ok) {
+          return {
+            raw: {},
+            action: AutoDiscoveryAction.FAIL_PROMPT,
+            reason: "General failure"
+          };
+        }
+      } catch (err) {
+        var error = err;
+        var reason = "";
+        if (typeof error === "object") {
+          reason = error === null || error === void 0 ? void 0 : error.message;
+        }
+        return {
+          error,
+          raw: {},
+          action: AutoDiscoveryAction.FAIL_PROMPT,
+          reason: reason || "General failure"
+        };
+      }
+      try {
+        return {
+          raw: yield response.json(),
+          action: AutoDiscoveryAction.SUCCESS
+        };
+      } catch (err) {
+        var _error = err;
+        return {
+          error: _error,
+          raw: {},
+          action: AutoDiscoveryAction.FAIL_PROMPT,
+          reason: (_error === null || _error === void 0 ? void 0 : _error.name) === "SyntaxError" ? AutoDiscovery.ERROR_INVALID_JSON : AutoDiscovery.ERROR_INVALID
+        };
+      }
+    })();
+  }
+}
+// Dev note: the constants defined here are related to but not
+// exactly the same as those in the spec. This is to hopefully
+// translate the meaning of the states in the spec, but also
+// support our own if needed.
+_defineProperty(AutoDiscovery, "ERROR_INVALID", AutoDiscoveryError.Invalid);
+_defineProperty(AutoDiscovery, "ERROR_GENERIC_FAILURE", AutoDiscoveryError.GenericFailure);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_HS_BASE_URL", AutoDiscoveryError.InvalidHsBaseUrl);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_HOMESERVER", AutoDiscoveryError.InvalidHomeserver);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_IS_BASE_URL", AutoDiscoveryError.InvalidIsBaseUrl);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_IDENTITY_SERVER", AutoDiscoveryError.InvalidIdentityServer);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_IS", AutoDiscoveryError.InvalidIs);
+_defineProperty(AutoDiscovery, "ERROR_MISSING_WELLKNOWN", AutoDiscoveryError.MissingWellknown);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_JSON", AutoDiscoveryError.InvalidJson);
+_defineProperty(AutoDiscovery, "ERROR_UNSUPPORTED_HOMESERVER_SPEC_VERSION", AutoDiscoveryError.UnsupportedHomeserverSpecVersion);
+_defineProperty(AutoDiscovery, "ALL_ERRORS", Object.keys(AutoDiscoveryError));
+/**
+ * The auto discovery failed. The client is expected to communicate
+ * the error to the user and refuse logging in.
+ */
+_defineProperty(AutoDiscovery, "FAIL_ERROR", AutoDiscoveryAction.FAIL_ERROR);
+/**
+ * The auto discovery failed, however the client may still recover
+ * from the problem. The client is recommended to that the same
+ * action it would for PROMPT while also warning the user about
+ * what went wrong. The client may also treat this the same as
+ * a FAIL_ERROR state.
+ */
+_defineProperty(AutoDiscovery, "FAIL_PROMPT", AutoDiscoveryAction.FAIL_PROMPT);
+/**
+ * The auto discovery didn't fail but did not find anything of
+ * interest. The client is expected to prompt the user for more
+ * information, or fail if it prefers.
+ */
+_defineProperty(AutoDiscovery, "PROMPT", AutoDiscoveryAction.PROMPT);
+/**
+ * The auto discovery was successful.
+ */
+_defineProperty(AutoDiscovery, "SUCCESS", AutoDiscoveryAction.SUCCESS);
+_defineProperty(AutoDiscovery, "fetchFn", void 0);
+//# sourceMappingURL=autodiscovery.js.map

package/lib/autodiscovery.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"autodiscovery.js","names":["logger","Method","timeoutSignal","SUPPORTED_MATRIX_VERSIONS","AutoDiscoveryAction","AutoDiscoveryError","AutoDiscovery","fromDiscoveryConfig","wellknown","_this","_asyncToGenerator","_hsVersions$raw","clientConfig","state","FAIL_ERROR","error","ERROR_INVALID","base_url","PROMPT","FAIL_PROMPT","Promise","resolve","ERROR_INVALID_HS_BASE_URL","hsUrl","sanitizeWellKnownUrl","hsVersions","fetchWellKnownObject","concat","Array","isArray","raw","ERROR_INVALID_HOMESERVER","hsVersionSet","Set","supportedVersionFound","version","has","ERROR_UNSUPPORTED_HOMESERVER_SPEC_VERSION","SUCCESS","isUrl","failingClientConfig","ERROR_INVALID_IS","ERROR_INVALID_IS_BASE_URL","isResponse","action","ERROR_INVALID_IDENTITY_SERVER","toString","length","Object","keys","forEach","k","notProps","prop","includes","findClientConfig","domain","_this2","Error","domainWithProtocol","reason","IGNORE","getRawClientConfig","_this3","_response$raw","response","url","_parsed","parsed","URL","e","hostname","protocol","port","path","pathname","saferUrl","endsWith","substring","fetch","resource","options","fetchFn","globalThis","setFetchFn","method","Get","signal","status","ERROR_MISSING_WELLKNOWN","ok","err","message","json","name","ERROR_INVALID_JSON","_defineProperty","Invalid","GenericFailure","InvalidHsBaseUrl","InvalidHomeserver","InvalidIsBaseUrl","InvalidIdentityServer","InvalidIs","MissingWellknown","InvalidJson","UnsupportedHomeserverSpecVersion"],"sources":["../src/autodiscovery.ts"],"sourcesContent":["/*\nCopyright 2018 New Vector Ltd\nCopyright 2019 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nimport { IClientWellKnown, IWellKnownConfig, IServerVersions } from \"./client.ts\";\nimport { logger } from \"./logger.ts\";\nimport { MatrixError, Method, timeoutSignal } from \"./http-api/index.ts\";\nimport { SUPPORTED_MATRIX_VERSIONS } from \"./version-support.ts\";\n\n// Dev note: Auto discovery is part of the spec.\n// See: https://matrix.org/docs/spec/client_server/r0.4.0.html#server-discovery\n\nexport enum AutoDiscoveryAction {\n    SUCCESS = \"SUCCESS\",\n    IGNORE = \"IGNORE\",\n    PROMPT = \"PROMPT\",\n    FAIL_PROMPT = \"FAIL_PROMPT\",\n    FAIL_ERROR = \"FAIL_ERROR\",\n}\n\nexport enum AutoDiscoveryError {\n    Invalid = \"Invalid homeserver discovery response\",\n    GenericFailure = \"Failed to get autodiscovery configuration from server\",\n    InvalidHsBaseUrl = \"Invalid base_url for m.homeserver\",\n    InvalidHomeserver = \"Homeserver URL does not appear to be a valid Matrix homeserver\",\n    InvalidIsBaseUrl = \"Invalid base_url for m.identity_server\",\n    InvalidIdentityServer = \"Identity server URL does not appear to be a valid identity server\",\n    InvalidIs = \"Invalid identity server discovery response\",\n    MissingWellknown = \"No .well-known JSON file found\",\n    InvalidJson = \"Invalid JSON\",\n    UnsupportedHomeserverSpecVersion = \"The homeserver does not meet the version requirements\",\n\n    // TODO: Implement when Sydent supports the `/versions` endpoint - https://github.com/matrix-org/sydent/issues/424\n    //IdentityServerTooOld = \"The identity server does not meet the minimum version requirements\",\n}\n\ninterface AutoDiscoveryState {\n    state: AutoDiscoveryAction;\n    error?: IWellKnownConfig[\"error\"] | null;\n}\ninterface WellKnownConfig extends Omit<IWellKnownConfig, \"error\">, AutoDiscoveryState {}\n\nexport interface ClientConfig extends Omit<IClientWellKnown, \"m.homeserver\" | \"m.identity_server\"> {\n    \"m.homeserver\": WellKnownConfig;\n    \"m.identity_server\": WellKnownConfig;\n}\n\n/**\n * Utilities for automatically discovery resources, such as homeservers\n * for users to log in to.\n */\nexport class AutoDiscovery {\n    // Dev note: the constants defined here are related to but not\n    // exactly the same as those in the spec. This is to hopefully\n    // translate the meaning of the states in the spec, but also\n    // support our own if needed.\n\n    public static readonly ERROR_INVALID = AutoDiscoveryError.Invalid;\n\n    public static readonly ERROR_GENERIC_FAILURE = AutoDiscoveryError.GenericFailure;\n\n    public static readonly ERROR_INVALID_HS_BASE_URL = AutoDiscoveryError.InvalidHsBaseUrl;\n\n    public static readonly ERROR_INVALID_HOMESERVER = AutoDiscoveryError.InvalidHomeserver;\n\n    public static readonly ERROR_INVALID_IS_BASE_URL = AutoDiscoveryError.InvalidIsBaseUrl;\n\n    public static readonly ERROR_INVALID_IDENTITY_SERVER = AutoDiscoveryError.InvalidIdentityServer;\n\n    public static readonly ERROR_INVALID_IS = AutoDiscoveryError.InvalidIs;\n\n    public static readonly ERROR_MISSING_WELLKNOWN = AutoDiscoveryError.MissingWellknown;\n\n    public static readonly ERROR_INVALID_JSON = AutoDiscoveryError.InvalidJson;\n\n    public static readonly ERROR_UNSUPPORTED_HOMESERVER_SPEC_VERSION =\n        AutoDiscoveryError.UnsupportedHomeserverSpecVersion;\n\n    public static readonly ALL_ERRORS = Object.keys(AutoDiscoveryError) as AutoDiscoveryError[];\n\n    /**\n     * The auto discovery failed. The client is expected to communicate\n     * the error to the user and refuse logging in.\n     */\n    public static readonly FAIL_ERROR = AutoDiscoveryAction.FAIL_ERROR;\n\n    /**\n     * The auto discovery failed, however the client may still recover\n     * from the problem. The client is recommended to that the same\n     * action it would for PROMPT while also warning the user about\n     * what went wrong. The client may also treat this the same as\n     * a FAIL_ERROR state.\n     */\n    public static readonly FAIL_PROMPT = AutoDiscoveryAction.FAIL_PROMPT;\n\n    /**\n     * The auto discovery didn't fail but did not find anything of\n     * interest. The client is expected to prompt the user for more\n     * information, or fail if it prefers.\n     */\n    public static readonly PROMPT = AutoDiscoveryAction.PROMPT;\n\n    /**\n     * The auto discovery was successful.\n     */\n    public static readonly SUCCESS = AutoDiscoveryAction.SUCCESS;\n\n    /**\n     * Validates and verifies client configuration information for purposes\n     * of logging in. Such information includes the homeserver URL\n     * and identity server URL the client would want. Additional details\n     * may also be included, and will be transparently brought into the\n     * response object unaltered.\n     * @param wellknown - The configuration object itself, as returned\n     * by the .well-known auto-discovery endpoint.\n     * @returns Promise which resolves to the verified\n     * configuration, which may include error states. Rejects on unexpected\n     * failure, not when verification fails.\n     */\n    public static async fromDiscoveryConfig(wellknown: IClientWellKnown): Promise<ClientConfig> {\n        // Step 1 is to get the config, which is provided to us here.\n\n        // We default to an error state to make the first few checks easier to\n        // write. We'll update the properties of this object over the duration\n        // of this function.\n        const clientConfig: ClientConfig = {\n            \"m.homeserver\": {\n                state: AutoDiscovery.FAIL_ERROR,\n                error: AutoDiscovery.ERROR_INVALID,\n                base_url: null,\n            },\n            \"m.identity_server\": {\n                // Technically, we don't have a problem with the identity server\n                // config at this point.\n                state: AutoDiscovery.PROMPT,\n                error: null,\n                base_url: null,\n            },\n        };\n\n        if (!wellknown?.[\"m.homeserver\"]) {\n            logger.error(\"No m.homeserver key in config\");\n\n            clientConfig[\"m.homeserver\"].state = AutoDiscovery.FAIL_PROMPT;\n            clientConfig[\"m.homeserver\"].error = AutoDiscovery.ERROR_INVALID;\n\n            return Promise.resolve(clientConfig);\n        }\n\n        if (!wellknown[\"m.homeserver\"][\"base_url\"]) {\n            logger.error(\"No m.homeserver base_url in config\");\n\n            clientConfig[\"m.homeserver\"].state = AutoDiscovery.FAIL_PROMPT;\n            clientConfig[\"m.homeserver\"].error = AutoDiscovery.ERROR_INVALID_HS_BASE_URL;\n\n            return Promise.resolve(clientConfig);\n        }\n\n        // Step 2: Make sure the homeserver URL is valid *looking*. We'll make\n        // sure it points to a homeserver in Step 3.\n        const hsUrl = this.sanitizeWellKnownUrl(wellknown[\"m.homeserver\"][\"base_url\"]);\n        if (!hsUrl) {\n            logger.error(\"Invalid base_url for m.homeserver\");\n            clientConfig[\"m.homeserver\"].error = AutoDiscovery.ERROR_INVALID_HS_BASE_URL;\n            return Promise.resolve(clientConfig);\n        }\n\n        // Step 3: Make sure the homeserver URL points to a homeserver.\n        const hsVersions = await this.fetchWellKnownObject<IServerVersions>(`${hsUrl}/_matrix/client/versions`);\n        if (!hsVersions || !Array.isArray(hsVersions.raw?.[\"versions\"])) {\n            logger.error(\"Invalid /versions response\");\n            clientConfig[\"m.homeserver\"].error = AutoDiscovery.ERROR_INVALID_HOMESERVER;\n\n            // Supply the base_url to the caller because they may be ignoring liveliness\n            // errors, like this one.\n            clientConfig[\"m.homeserver\"].base_url = hsUrl;\n\n            return Promise.resolve(clientConfig);\n        }\n\n        // Step 3.1: Non-spec check to ensure the server will actually work for us. We need to check if\n        // any of the versions in `SUPPORTED_MATRIX_VERSIONS` are listed in the /versions response.\n        const hsVersionSet = new Set(hsVersions.raw![\"versions\"]);\n        let supportedVersionFound = false;\n        for (const version of SUPPORTED_MATRIX_VERSIONS) {\n            if (hsVersionSet.has(version)) {\n                supportedVersionFound = true;\n                break;\n            }\n        }\n        if (!supportedVersionFound) {\n            logger.error(\"Homeserver does not meet version requirements\");\n            clientConfig[\"m.homeserver\"].error = AutoDiscovery.ERROR_UNSUPPORTED_HOMESERVER_SPEC_VERSION;\n\n            // Supply the base_url to the caller because they may be ignoring liveliness\n            // errors, like this one.\n            clientConfig[\"m.homeserver\"].base_url = hsUrl;\n\n            return Promise.resolve(clientConfig);\n        }\n\n        // Step 4: Now that the homeserver looks valid, update our client config.\n        clientConfig[\"m.homeserver\"] = {\n            state: AutoDiscovery.SUCCESS,\n            error: null,\n            base_url: hsUrl,\n        };\n\n        // Step 5: Try to pull out the identity server configuration\n        let isUrl: string | boolean = \"\";\n        if (wellknown[\"m.identity_server\"]) {\n            // We prepare a failing identity server response to save lines later\n            // in this branch.\n            const failingClientConfig: ClientConfig = {\n                \"m.homeserver\": clientConfig[\"m.homeserver\"],\n                \"m.identity_server\": {\n                    state: AutoDiscovery.FAIL_PROMPT,\n                    error: AutoDiscovery.ERROR_INVALID_IS,\n                    base_url: null,\n                },\n            };\n\n            // Step 5a: Make sure the URL is valid *looking*. We'll make sure it\n            // points to an identity server in Step 5b.\n            isUrl = this.sanitizeWellKnownUrl(wellknown[\"m.identity_server\"][\"base_url\"]);\n            if (!isUrl) {\n                logger.error(\"Invalid base_url for m.identity_server\");\n                failingClientConfig[\"m.identity_server\"].error = AutoDiscovery.ERROR_INVALID_IS_BASE_URL;\n                return Promise.resolve(failingClientConfig);\n            }\n\n            // Step 5b: Verify there is an identity server listening on the provided\n            // URL.\n            const isResponse = await this.fetchWellKnownObject(`${isUrl}/_matrix/identity/v2`);\n            if (!isResponse?.raw || isResponse.action !== AutoDiscoveryAction.SUCCESS) {\n                logger.error(\"Invalid /v2 response\");\n                failingClientConfig[\"m.identity_server\"].error = AutoDiscovery.ERROR_INVALID_IDENTITY_SERVER;\n\n                // Supply the base_url to the caller because they may be ignoring\n                // liveliness errors, like this one.\n                failingClientConfig[\"m.identity_server\"].base_url = isUrl;\n\n                return Promise.resolve(failingClientConfig);\n            }\n        }\n\n        // Step 6: Now that the identity server is valid, or never existed,\n        // populate the IS section.\n        if (isUrl && isUrl.toString().length > 0) {\n            clientConfig[\"m.identity_server\"] = {\n                state: AutoDiscovery.SUCCESS,\n                error: null,\n                base_url: isUrl,\n            };\n        }\n\n        // Step 7: Copy any other keys directly into the clientConfig. This is for\n        // things like custom configuration of services.\n        Object.keys(wellknown).forEach((k: keyof IClientWellKnown) => {\n            if (k === \"m.homeserver\" || k === \"m.identity_server\") {\n                // Only copy selected parts of the config to avoid overwriting\n                // properties computed by the validation logic above.\n                const notProps = [\"error\", \"state\", \"base_url\"];\n                for (const prop of Object.keys(wellknown[k]!)) {\n                    if (notProps.includes(prop)) continue;\n                    type Prop = Exclude<keyof IWellKnownConfig, \"error\" | \"state\" | \"base_url\">;\n                    // @ts-ignore - ts gets unhappy as we're mixing types here\n                    clientConfig[k][prop as Prop] = wellknown[k]![prop as Prop];\n                }\n            } else {\n                // Just copy the whole thing over otherwise\n                clientConfig[k] = wellknown[k];\n            }\n        });\n\n        // Step 8: Give the config to the caller (finally)\n        return Promise.resolve(clientConfig);\n    }\n\n    /**\n     * Attempts to automatically discover client configuration information\n     * prior to logging in. Such information includes the homeserver URL\n     * and identity server URL the client would want. Additional details\n     * may also be discovered, and will be transparently included in the\n     * response object unaltered.\n     * @param domain - The homeserver domain to perform discovery\n     * on. For example, \"matrix.org\".\n     * @returns Promise which resolves to the discovered\n     * configuration, which may include error states. Rejects on unexpected\n     * failure, not when discovery fails.\n     */\n    public static async findClientConfig(domain: string): Promise<ClientConfig> {\n        if (!domain || typeof domain !== \"string\" || domain.length === 0) {\n            throw new Error(\"'domain' must be a string of non-zero length\");\n        }\n\n        // We use a .well-known lookup for all cases. According to the spec, we\n        // can do other discovery mechanisms if we want such as custom lookups\n        // however we won't bother with that here (mostly because the spec only\n        // supports .well-known right now).\n        //\n        // By using .well-known, we need to ensure we at least pull out a URL\n        // for the homeserver. We don't really need an identity server configuration\n        // but will return one anyways (with state PROMPT) to make development\n        // easier for clients. If we can't get a homeserver URL, all bets are\n        // off on the rest of the config and we'll assume it is invalid too.\n\n        // We default to an error state to make the first few checks easier to\n        // write. We'll update the properties of this object over the duration\n        // of this function.\n        const clientConfig: ClientConfig = {\n            \"m.homeserver\": {\n                state: AutoDiscovery.FAIL_ERROR,\n                error: AutoDiscovery.ERROR_INVALID,\n                base_url: null,\n            },\n            \"m.identity_server\": {\n                // Technically, we don't have a problem with the identity server\n                // config at this point.\n                state: AutoDiscovery.PROMPT,\n                error: null,\n                base_url: null,\n            },\n        };\n\n        // Step 1: Actually request the .well-known JSON file and make sure it\n        // at least has a homeserver definition.\n        const domainWithProtocol = domain.includes(\"://\") ? domain : `https://${domain}`;\n        const wellknown = await this.fetchWellKnownObject(`${domainWithProtocol}/.well-known/matrix/client`);\n        if (!wellknown || wellknown.action !== AutoDiscoveryAction.SUCCESS) {\n            logger.error(\"No response or error when parsing .well-known\");\n            if (wellknown.reason) logger.error(wellknown.reason);\n            if (wellknown.action === AutoDiscoveryAction.IGNORE) {\n                clientConfig[\"m.homeserver\"] = {\n                    state: AutoDiscovery.PROMPT,\n                    error: null,\n                    base_url: null,\n                };\n            } else {\n                // this can only ever be FAIL_PROMPT at this point.\n                clientConfig[\"m.homeserver\"].state = AutoDiscovery.FAIL_PROMPT;\n                clientConfig[\"m.homeserver\"].error = AutoDiscovery.ERROR_INVALID;\n            }\n            return Promise.resolve(clientConfig);\n        }\n\n        // Step 2: Validate and parse the config\n        return AutoDiscovery.fromDiscoveryConfig(wellknown.raw!);\n    }\n\n    /**\n     * Gets the raw discovery client configuration for the given domain name.\n     * Should only be used if there's no validation to be done on the resulting\n     * object, otherwise use findClientConfig().\n     * @param domain - The domain to get the client config for.\n     * @returns Promise which resolves to the domain's client config. Can\n     * be an empty object.\n     */\n    public static async getRawClientConfig(domain?: string): Promise<IClientWellKnown> {\n        if (!domain || typeof domain !== \"string\" || domain.length === 0) {\n            throw new Error(\"'domain' must be a string of non-zero length\");\n        }\n\n        const response = await this.fetchWellKnownObject(`https://${domain}/.well-known/matrix/client`);\n        if (!response) return {};\n        return response.raw ?? {};\n    }\n\n    /**\n     * Sanitizes a given URL to ensure it is either an HTTP or HTTP URL and\n     * is suitable for the requirements laid out by .well-known auto discovery.\n     * If valid, the URL will also be stripped of any trailing slashes.\n     * @param url - The potentially invalid URL to sanitize.\n     * @returns The sanitized URL or a falsey value if the URL is invalid.\n     * @internal\n     */\n    private static sanitizeWellKnownUrl(url?: string | null): string | false {\n        if (!url) return false;\n\n        try {\n            let parsed: URL | undefined;\n            try {\n                parsed = new URL(url);\n            } catch (e) {\n                logger.error(\"Could not parse url\", e);\n            }\n\n            if (!parsed?.hostname) return false;\n            if (parsed.protocol !== \"http:\" && parsed.protocol !== \"https:\") return false;\n\n            const port = parsed.port ? `:${parsed.port}` : \"\";\n            const path = parsed.pathname ? parsed.pathname : \"\";\n            let saferUrl = `${parsed.protocol}//${parsed.hostname}${port}${path}`;\n            if (saferUrl.endsWith(\"/\")) {\n                saferUrl = saferUrl.substring(0, saferUrl.length - 1);\n            }\n            return saferUrl;\n        } catch (e) {\n            logger.error(e);\n            return false;\n        }\n    }\n\n    private static fetch(resource: URL | string, options?: RequestInit): ReturnType<typeof globalThis.fetch> {\n        if (this.fetchFn) {\n            return this.fetchFn(resource, options);\n        }\n        return globalThis.fetch(resource, options);\n    }\n\n    private static fetchFn?: typeof globalThis.fetch;\n\n    public static setFetchFn(fetchFn: typeof globalThis.fetch): void {\n        AutoDiscovery.fetchFn = fetchFn;\n    }\n\n    /**\n     * Fetches a JSON object from a given URL, as expected by all .well-known\n     * related lookups. If the server gives a 404 then the `action` will be\n     * IGNORE. If the server returns something that isn't JSON, the `action`\n     * will be FAIL_PROMPT. For any other failure the `action` will be FAIL_PROMPT.\n     *\n     * The returned object will be a result of the call in object form with\n     * the following properties:\n     *   raw: The JSON object returned by the server.\n     *   action: One of SUCCESS, IGNORE, or FAIL_PROMPT.\n     *   reason: Relatively human-readable description of what went wrong.\n     *   error: The actual Error, if one exists.\n     * @param url - The URL to fetch a JSON object from.\n     * @returns Promise which resolves to the returned state.\n     * @internal\n     */\n    private static async fetchWellKnownObject<T = IWellKnownConfig>(\n        url: string,\n    ): Promise<IWellKnownConfig<Partial<T>>> {\n        let response: Response;\n\n        try {\n            response = await AutoDiscovery.fetch(url, {\n                method: Method.Get,\n                signal: timeoutSignal(5000),\n            });\n\n            if (response.status === 404) {\n                return {\n                    raw: {},\n                    action: AutoDiscoveryAction.IGNORE,\n                    reason: AutoDiscovery.ERROR_MISSING_WELLKNOWN,\n                };\n            }\n\n            if (!response.ok) {\n                return {\n                    raw: {},\n                    action: AutoDiscoveryAction.FAIL_PROMPT,\n                    reason: \"General failure\",\n                };\n            }\n        } catch (err) {\n            const error = err as AutoDiscoveryError | string | undefined;\n            let reason = \"\";\n            if (typeof error === \"object\") {\n                reason = (<Error>error)?.message;\n            }\n\n            return {\n                error,\n                raw: {},\n                action: AutoDiscoveryAction.FAIL_PROMPT,\n                reason: reason || \"General failure\",\n            };\n        }\n\n        try {\n            return {\n                raw: await response.json(),\n                action: AutoDiscoveryAction.SUCCESS,\n            };\n        } catch (err) {\n            const error = err as Error;\n            return {\n                error,\n                raw: {},\n                action: AutoDiscoveryAction.FAIL_PROMPT,\n                reason:\n                    (error as MatrixError)?.name === \"SyntaxError\"\n                        ? AutoDiscovery.ERROR_INVALID_JSON\n                        : AutoDiscovery.ERROR_INVALID,\n            };\n        }\n    }\n}\n"],"mappings":";;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAGA,SAASA,MAAM,QAAQ,aAAa;AACpC,SAAsBC,MAAM,EAAEC,aAAa,QAAQ,qBAAqB;AACxE,SAASC,yBAAyB,QAAQ,sBAAsB;;AAEhE;AACA;;AAEA,WAAYC,mBAAmB,0BAAnBA,mBAAmB;EAAnBA,mBAAmB;EAAnBA,mBAAmB;EAAnBA,mBAAmB;EAAnBA,mBAAmB;EAAnBA,mBAAmB;EAAA,OAAnBA,mBAAmB;AAAA;AAQ/B,WAAYC,kBAAkB,0BAAlBA,kBAAkB;EAAlBA,kBAAkB;EAAlBA,kBAAkB;EAAlBA,kBAAkB;EAAlBA,kBAAkB;EAAlBA,kBAAkB;EAAlBA,kBAAkB;EAAlBA,kBAAkB;EAAlBA,kBAAkB;EAAlBA,kBAAkB;EAAlBA,kBAAkB;EAAA,OAAlBA,kBAAkB;AAAA,OAY1B;AACA;AAcJ;AACA;AACA;AACA;AACA,OAAO,MAAMC,aAAa,CAAC;EAwDvB;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACI,OAAoBC,mBAAmBA,CAACC,SAA2B,EAAyB;IAAA,IAAAC,KAAA;IAAA,OAAAC,iBAAA;MAAA,IAAAC,eAAA;MACxF;;MAEA;MACA;MACA;MACA,IAAMC,YAA0B,GAAG;QAC/B,cAAc,EAAE;UACZC,KAAK,EAAEP,aAAa,CAACQ,UAAU;UAC/BC,KAAK,EAAET,aAAa,CAACU,aAAa;UAClCC,QAAQ,EAAE;QACd,CAAC;QACD,mBAAmB,EAAE;UACjB;UACA;UACAJ,KAAK,EAAEP,aAAa,CAACY,MAAM;UAC3BH,KAAK,EAAE,IAAI;UACXE,QAAQ,EAAE;QACd;MACJ,CAAC;MAED,IAAI,EAACT,SAAS,aAATA,SAAS,eAATA,SAAS,CAAG,cAAc,CAAC,GAAE;QAC9BR,MAAM,CAACe,KAAK,CAAC,+BAA+B,CAAC;QAE7CH,YAAY,CAAC,cAAc,CAAC,CAACC,KAAK,GAAGP,aAAa,CAACa,WAAW;QAC9DP,YAAY,CAAC,cAAc,CAAC,CAACG,KAAK,GAAGT,aAAa,CAACU,aAAa;QAEhE,OAAOI,OAAO,CAACC,OAAO,CAACT,YAAY,CAAC;MACxC;MAEA,IAAI,CAACJ,SAAS,CAAC,cAAc,CAAC,CAAC,UAAU,CAAC,EAAE;QACxCR,MAAM,CAACe,KAAK,CAAC,oCAAoC,CAAC;QAElDH,YAAY,CAAC,cAAc,CAAC,CAACC,KAAK,GAAGP,aAAa,CAACa,WAAW;QAC9DP,YAAY,CAAC,cAAc,CAAC,CAACG,KAAK,GAAGT,aAAa,CAACgB,yBAAyB;QAE5E,OAAOF,OAAO,CAACC,OAAO,CAACT,YAAY,CAAC;MACxC;;MAEA;MACA;MACA,IAAMW,KAAK,GAAGd,KAAI,CAACe,oBAAoB,CAAChB,SAAS,CAAC,cAAc,CAAC,CAAC,UAAU,CAAC,CAAC;MAC9E,IAAI,CAACe,KAAK,EAAE;QACRvB,MAAM,CAACe,KAAK,CAAC,mCAAmC,CAAC;QACjDH,YAAY,CAAC,cAAc,CAAC,CAACG,KAAK,GAAGT,aAAa,CAACgB,yBAAyB;QAC5E,OAAOF,OAAO,CAACC,OAAO,CAACT,YAAY,CAAC;MACxC;;MAEA;MACA,IAAMa,UAAU,SAAShB,KAAI,CAACiB,oBAAoB,IAAAC,MAAA,CAAqBJ,KAAK,6BAA0B,CAAC;MACvG,IAAI,CAACE,UAAU,IAAI,CAACG,KAAK,CAACC,OAAO,EAAAlB,eAAA,GAACc,UAAU,CAACK,GAAG,cAAAnB,eAAA,uBAAdA,eAAA,CAAiB,UAAU,CAAC,CAAC,EAAE;QAC7DX,MAAM,CAACe,KAAK,CAAC,4BAA4B,CAAC;QAC1CH,YAAY,CAAC,cAAc,CAAC,CAACG,KAAK,GAAGT,aAAa,CAACyB,wBAAwB;;QAE3E;QACA;QACAnB,YAAY,CAAC,cAAc,CAAC,CAACK,QAAQ,GAAGM,KAAK;QAE7C,OAAOH,OAAO,CAACC,OAAO,CAACT,YAAY,CAAC;MACxC;;MAEA;MACA;MACA,IAAMoB,YAAY,GAAG,IAAIC,GAAG,CAACR,UAAU,CAACK,GAAG,CAAE,UAAU,CAAC,CAAC;MACzD,IAAII,qBAAqB,GAAG,KAAK;MACjC,KAAK,IAAMC,OAAO,IAAIhC,yBAAyB,EAAE;QAC7C,IAAI6B,YAAY,CAACI,GAAG,CAACD,OAAO,CAAC,EAAE;UAC3BD,qBAAqB,GAAG,IAAI;UAC5B;QACJ;MACJ;MACA,IAAI,CAACA,qBAAqB,EAAE;QACxBlC,MAAM,CAACe,KAAK,CAAC,+CAA+C,CAAC;QAC7DH,YAAY,CAAC,cAAc,CAAC,CAACG,KAAK,GAAGT,aAAa,CAAC+B,yCAAyC;;QAE5F;QACA;QACAzB,YAAY,CAAC,cAAc,CAAC,CAACK,QAAQ,GAAGM,KAAK;QAE7C,OAAOH,OAAO,CAACC,OAAO,CAACT,YAAY,CAAC;MACxC;;MAEA;MACAA,YAAY,CAAC,cAAc,CAAC,GAAG;QAC3BC,KAAK,EAAEP,aAAa,CAACgC,OAAO;QAC5BvB,KAAK,EAAE,IAAI;QACXE,QAAQ,EAAEM;MACd,CAAC;;MAED;MACA,IAAIgB,KAAuB,GAAG,EAAE;MAChC,IAAI/B,SAAS,CAAC,mBAAmB,CAAC,EAAE;QAChC;QACA;QACA,IAAMgC,mBAAiC,GAAG;UACtC,cAAc,EAAE5B,YAAY,CAAC,cAAc,CAAC;UAC5C,mBAAmB,EAAE;YACjBC,KAAK,EAAEP,aAAa,CAACa,WAAW;YAChCJ,KAAK,EAAET,aAAa,CAACmC,gBAAgB;YACrCxB,QAAQ,EAAE;UACd;QACJ,CAAC;;QAED;QACA;QACAsB,KAAK,GAAG9B,KAAI,CAACe,oBAAoB,CAAChB,SAAS,CAAC,mBAAmB,CAAC,CAAC,UAAU,CAAC,CAAC;QAC7E,IAAI,CAAC+B,KAAK,EAAE;UACRvC,MAAM,CAACe,KAAK,CAAC,wCAAwC,CAAC;UACtDyB,mBAAmB,CAAC,mBAAmB,CAAC,CAACzB,KAAK,GAAGT,aAAa,CAACoC,yBAAyB;UACxF,OAAOtB,OAAO,CAACC,OAAO,CAACmB,mBAAmB,CAAC;QAC/C;;QAEA;QACA;QACA,IAAMG,UAAU,SAASlC,KAAI,CAACiB,oBAAoB,IAAAC,MAAA,CAAIY,KAAK,yBAAsB,CAAC;QAClF,IAAI,EAACI,UAAU,aAAVA,UAAU,eAAVA,UAAU,CAAEb,GAAG,KAAIa,UAAU,CAACC,MAAM,KAAKxC,mBAAmB,CAACkC,OAAO,EAAE;UACvEtC,MAAM,CAACe,KAAK,CAAC,sBAAsB,CAAC;UACpCyB,mBAAmB,CAAC,mBAAmB,CAAC,CAACzB,KAAK,GAAGT,aAAa,CAACuC,6BAA6B;;UAE5F;UACA;UACAL,mBAAmB,CAAC,mBAAmB,CAAC,CAACvB,QAAQ,GAAGsB,KAAK;UAEzD,OAAOnB,OAAO,CAACC,OAAO,CAACmB,mBAAmB,CAAC;QAC/C;MACJ;;MAEA;MACA;MACA,IAAID,KAAK,IAAIA,KAAK,CAACO,QAAQ,CAAC,CAAC,CAACC,MAAM,GAAG,CAAC,EAAE;QACtCnC,YAAY,CAAC,mBAAmB,CAAC,GAAG;UAChCC,KAAK,EAAEP,aAAa,CAACgC,OAAO;UAC5BvB,KAAK,EAAE,IAAI;UACXE,QAAQ,EAAEsB;QACd,CAAC;MACL;;MAEA;MACA;MACAS,MAAM,CAACC,IAAI,CAACzC,SAAS,CAAC,CAAC0C,OAAO,CAAEC,CAAyB,IAAK;QAC1D,IAAIA,CAAC,KAAK,cAAc,IAAIA,CAAC,KAAK,mBAAmB,EAAE;UACnD;UACA;UACA,IAAMC,QAAQ,GAAG,CAAC,OAAO,EAAE,OAAO,EAAE,UAAU,CAAC;UAC/C,KAAK,IAAMC,IAAI,IAAIL,MAAM,CAACC,IAAI,CAACzC,SAAS,CAAC2C,CAAC,CAAE,CAAC,EAAE;YAC3C,IAAIC,QAAQ,CAACE,QAAQ,CAACD,IAAI,CAAC,EAAE;YAE7B;YACAzC,YAAY,CAACuC,CAAC,CAAC,CAACE,IAAI,CAAS,GAAG7C,SAAS,CAAC2C,CAAC,CAAC,CAAEE,IAAI,CAAS;UAC/D;QACJ,CAAC,MAAM;UACH;UACAzC,YAAY,CAACuC,CAAC,CAAC,GAAG3C,SAAS,CAAC2C,CAAC,CAAC;QAClC;MACJ,CAAC,CAAC;;MAEF;MACA,OAAO/B,OAAO,CAACC,OAAO,CAACT,YAAY,CAAC;IAAC;EACzC;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACI,OAAoB2C,gBAAgBA,CAACC,MAAc,EAAyB;IAAA,IAAAC,MAAA;IAAA,OAAA/C,iBAAA;MACxE,IAAI,CAAC8C,MAAM,IAAI,OAAOA,MAAM,KAAK,QAAQ,IAAIA,MAAM,CAACT,MAAM,KAAK,CAAC,EAAE;QAC9D,MAAM,IAAIW,KAAK,CAAC,8CAA8C,CAAC;MACnE;;MAEA;MACA;MACA;MACA;MACA;MACA;MACA;MACA;MACA;MACA;;MAEA;MACA;MACA;MACA,IAAM9C,YAA0B,GAAG;QAC/B,cAAc,EAAE;UACZC,KAAK,EAAEP,aAAa,CAACQ,UAAU;UAC/BC,KAAK,EAAET,aAAa,CAACU,aAAa;UAClCC,QAAQ,EAAE;QACd,CAAC;QACD,mBAAmB,EAAE;UACjB;UACA;UACAJ,KAAK,EAAEP,aAAa,CAACY,MAAM;UAC3BH,KAAK,EAAE,IAAI;UACXE,QAAQ,EAAE;QACd;MACJ,CAAC;;MAED;MACA;MACA,IAAM0C,kBAAkB,GAAGH,MAAM,CAACF,QAAQ,CAAC,KAAK,CAAC,GAAGE,MAAM,cAAA7B,MAAA,CAAc6B,MAAM,CAAE;MAChF,IAAMhD,SAAS,SAASiD,MAAI,CAAC/B,oBAAoB,IAAAC,MAAA,CAAIgC,kBAAkB,+BAA4B,CAAC;MACpG,IAAI,CAACnD,SAAS,IAAIA,SAAS,CAACoC,MAAM,KAAKxC,mBAAmB,CAACkC,OAAO,EAAE;QAChEtC,MAAM,CAACe,KAAK,CAAC,+CAA+C,CAAC;QAC7D,IAAIP,SAAS,CAACoD,MAAM,EAAE5D,MAAM,CAACe,KAAK,CAACP,SAAS,CAACoD,MAAM,CAAC;QACpD,IAAIpD,SAAS,CAACoC,MAAM,KAAKxC,mBAAmB,CAACyD,MAAM,EAAE;UACjDjD,YAAY,CAAC,cAAc,CAAC,GAAG;YAC3BC,KAAK,EAAEP,aAAa,CAACY,MAAM;YAC3BH,KAAK,EAAE,IAAI;YACXE,QAAQ,EAAE;UACd,CAAC;QACL,CAAC,MAAM;UACH;UACAL,YAAY,CAAC,cAAc,CAAC,CAACC,KAAK,GAAGP,aAAa,CAACa,WAAW;UAC9DP,YAAY,CAAC,cAAc,CAAC,CAACG,KAAK,GAAGT,aAAa,CAACU,aAAa;QACpE;QACA,OAAOI,OAAO,CAACC,OAAO,CAACT,YAAY,CAAC;MACxC;;MAEA;MACA,OAAON,aAAa,CAACC,mBAAmB,CAACC,SAAS,CAACsB,GAAI,CAAC;IAAC;EAC7D;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;EACI,OAAoBgC,kBAAkBA,CAACN,MAAe,EAA6B;IAAA,IAAAO,MAAA;IAAA,OAAArD,iBAAA;MAAA,IAAAsD,aAAA;MAC/E,IAAI,CAACR,MAAM,IAAI,OAAOA,MAAM,KAAK,QAAQ,IAAIA,MAAM,CAACT,MAAM,KAAK,CAAC,EAAE;QAC9D,MAAM,IAAIW,KAAK,CAAC,8CAA8C,CAAC;MACnE;MAEA,IAAMO,QAAQ,SAASF,MAAI,CAACrC,oBAAoB,YAAAC,MAAA,CAAY6B,MAAM,+BAA4B,CAAC;MAC/F,IAAI,CAACS,QAAQ,EAAE,OAAO,CAAC,CAAC;MACxB,QAAAD,aAAA,GAAOC,QAAQ,CAACnC,GAAG,cAAAkC,aAAA,cAAAA,aAAA,GAAI,CAAC,CAAC;IAAC;EAC9B;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;EACI,OAAexC,oBAAoBA,CAAC0C,GAAmB,EAAkB;IACrE,IAAI,CAACA,GAAG,EAAE,OAAO,KAAK;IAEtB,IAAI;MAAA,IAAAC,OAAA;MACA,IAAIC,MAAuB;MAC3B,IAAI;QACAA,MAAM,GAAG,IAAIC,GAAG,CAACH,GAAG,CAAC;MACzB,CAAC,CAAC,OAAOI,CAAC,EAAE;QACRtE,MAAM,CAACe,KAAK,CAAC,qBAAqB,EAAEuD,CAAC,CAAC;MAC1C;MAEA,IAAI,GAAAH,OAAA,GAACC,MAAM,cAAAD,OAAA,eAANA,OAAA,CAAQI,QAAQ,GAAE,OAAO,KAAK;MACnC,IAAIH,MAAM,CAACI,QAAQ,KAAK,OAAO,IAAIJ,MAAM,CAACI,QAAQ,KAAK,QAAQ,EAAE,OAAO,KAAK;MAE7E,IAAMC,IAAI,GAAGL,MAAM,CAACK,IAAI,OAAA9C,MAAA,CAAOyC,MAAM,CAACK,IAAI,IAAK,EAAE;MACjD,IAAMC,IAAI,GAAGN,MAAM,CAACO,QAAQ,GAAGP,MAAM,CAACO,QAAQ,GAAG,EAAE;MACnD,IAAIC,QAAQ,MAAAjD,MAAA,CAAMyC,MAAM,CAACI,QAAQ,QAAA7C,MAAA,CAAKyC,MAAM,CAACG,QAAQ,EAAA5C,MAAA,CAAG8C,IAAI,EAAA9C,MAAA,CAAG+C,IAAI,CAAE;MACrE,IAAIE,QAAQ,CAACC,QAAQ,CAAC,GAAG,CAAC,EAAE;QACxBD,QAAQ,GAAGA,QAAQ,CAACE,SAAS,CAAC,CAAC,EAAEF,QAAQ,CAAC7B,MAAM,GAAG,CAAC,CAAC;MACzD;MACA,OAAO6B,QAAQ;IACnB,CAAC,CAAC,OAAON,CAAC,EAAE;MACRtE,MAAM,CAACe,KAAK,CAACuD,CAAC,CAAC;MACf,OAAO,KAAK;IAChB;EACJ;EAEA,OAAeS,KAAKA,CAACC,QAAsB,EAAEC,OAAqB,EAAuC;IACrG,IAAI,IAAI,CAACC,OAAO,EAAE;MACd,OAAO,IAAI,CAACA,OAAO,CAACF,QAAQ,EAAEC,OAAO,CAAC;IAC1C;IACA,OAAOE,UAAU,CAACJ,KAAK,CAACC,QAAQ,EAAEC,OAAO,CAAC;EAC9C;EAIA,OAAcG,UAAUA,CAACF,OAAgC,EAAQ;IAC7D5E,aAAa,CAAC4E,OAAO,GAAGA,OAAO;EACnC;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACI,OAAqBxD,oBAAoBA,CACrCwC,GAAW,EAC0B;IAAA,OAAAxD,iBAAA;MACrC,IAAIuD,QAAkB;MAEtB,IAAI;QACAA,QAAQ,SAAS3D,aAAa,CAACyE,KAAK,CAACb,GAAG,EAAE;UACtCmB,MAAM,EAAEpF,MAAM,CAACqF,GAAG;UAClBC,MAAM,EAAErF,aAAa,CAAC,IAAI;QAC9B,CAAC,CAAC;QAEF,IAAI+D,QAAQ,CAACuB,MAAM,KAAK,GAAG,EAAE;UACzB,OAAO;YACH1D,GAAG,EAAE,CAAC,CAAC;YACPc,MAAM,EAAExC,mBAAmB,CAACyD,MAAM;YAClCD,MAAM,EAAEtD,aAAa,CAACmF;UAC1B,CAAC;QACL;QAEA,IAAI,CAACxB,QAAQ,CAACyB,EAAE,EAAE;UACd,OAAO;YACH5D,GAAG,EAAE,CAAC,CAAC;YACPc,MAAM,EAAExC,mBAAmB,CAACe,WAAW;YACvCyC,MAAM,EAAE;UACZ,CAAC;QACL;MACJ,CAAC,CAAC,OAAO+B,GAAG,EAAE;QACV,IAAM5E,KAAK,GAAG4E,GAA8C;QAC5D,IAAI/B,MAAM,GAAG,EAAE;QACf,IAAI,OAAO7C,KAAK,KAAK,QAAQ,EAAE;UAC3B6C,MAAM,GAAW7C,KAAK,aAALA,KAAK,uBAALA,KAAK,CAAG6E,OAAO;QACpC;QAEA,OAAO;UACH7E,KAAK;UACLe,GAAG,EAAE,CAAC,CAAC;UACPc,MAAM,EAAExC,mBAAmB,CAACe,WAAW;UACvCyC,MAAM,EAAEA,MAAM,IAAI;QACtB,CAAC;MACL;MAEA,IAAI;QACA,OAAO;UACH9B,GAAG,QAAQmC,QAAQ,CAAC4B,IAAI,CAAC,CAAC;UAC1BjD,MAAM,EAAExC,mBAAmB,CAACkC;QAChC,CAAC;MACL,CAAC,CAAC,OAAOqD,GAAG,EAAE;QACV,IAAM5E,MAAK,GAAG4E,GAAY;QAC1B,OAAO;UACH5E,KAAK,EAALA,MAAK;UACLe,GAAG,EAAE,CAAC,CAAC;UACPc,MAAM,EAAExC,mBAAmB,CAACe,WAAW;UACvCyC,MAAM,EACF,CAAC7C,MAAK,aAALA,MAAK,uBAALA,MAAK,CAAkB+E,IAAI,MAAK,aAAa,GACxCxF,aAAa,CAACyF,kBAAkB,GAChCzF,aAAa,CAACU;QAC5B,CAAC;MACL;IAAC;EACL;AACJ;AAvbI;AACA;AACA;AACA;AAAAgF,eAAA,CAJS1F,aAAa,mBAMiBD,kBAAkB,CAAC4F,OAAO;AAAAD,eAAA,CANxD1F,aAAa,2BAQyBD,kBAAkB,CAAC6F,cAAc;AAAAF,eAAA,CARvE1F,aAAa,+BAU6BD,kBAAkB,CAAC8F,gBAAgB;AAAAH,eAAA,CAV7E1F,aAAa,8BAY4BD,kBAAkB,CAAC+F,iBAAiB;AAAAJ,eAAA,CAZ7E1F,aAAa,+BAc6BD,kBAAkB,CAACgG,gBAAgB;AAAAL,eAAA,CAd7E1F,aAAa,mCAgBiCD,kBAAkB,CAACiG,qBAAqB;AAAAN,eAAA,CAhBtF1F,aAAa,sBAkBoBD,kBAAkB,CAACkG,SAAS;AAAAP,eAAA,CAlB7D1F,aAAa,6BAoB2BD,kBAAkB,CAACmG,gBAAgB;AAAAR,eAAA,CApB3E1F,aAAa,wBAsBsBD,kBAAkB,CAACoG,WAAW;AAAAT,eAAA,CAtBjE1F,aAAa,+CAyBlBD,kBAAkB,CAACqG,gCAAgC;AAAAV,eAAA,CAzB9C1F,aAAa,gBA2Bc0C,MAAM,CAACC,IAAI,CAAC5C,kBAAkB,CAAC;AAEnE;AACJ;AACA;AACA;AAHI2F,eAAA,CA7BS1F,aAAa,gBAiCcF,mBAAmB,CAACU,UAAU;AAElE;AACJ;AACA;AACA;AACA;AACA;AACA;AANIkF,eAAA,CAnCS1F,aAAa,iBA0CeF,mBAAmB,CAACe,WAAW;AAEpE;AACJ;AACA;AACA;AACA;AAJI6E,eAAA,CA5CS1F,aAAa,YAiDUF,mBAAmB,CAACc,MAAM;AAE1D;AACJ;AACA;AAFI8E,eAAA,CAnDS1F,aAAa,aAsDWF,mBAAmB,CAACkC,OAAO;AAAA0D,eAAA,CAtDnD1F,aAAa","ignoreList":[]}

package/lib/base64.d.ts

@@ -0,0 +1,28 @@
+/**
+ * Base64 encoding and decoding utilities
+ */
+/**
+ * Encode a typed array of uint8 as base64.
+ * @param uint8Array - The data to encode.
+ * @returns The base64.
+ */
+export declare function encodeBase64(uint8Array: ArrayBuffer | Uint8Array): string;
+/**
+ * Encode a typed array of uint8 as unpadded base64.
+ * @param uint8Array - The data to encode.
+ * @returns The unpadded base64.
+ */
+export declare function encodeUnpaddedBase64(uint8Array: ArrayBuffer | Uint8Array): string;
+/**
+ * Encode a typed array of uint8 as unpadded base64 using the URL-safe encoding.
+ * @param uint8Array - The data to encode.
+ * @returns The unpadded base64.
+ */
+export declare function encodeUnpaddedBase64Url(uint8Array: ArrayBuffer | Uint8Array): string;
+/**
+ * Decode a base64 (or base64url) string to a typed array of uint8.
+ * @param base64 - The base64 to decode.
+ * @returns The decoded data.
+ */
+export declare function decodeBase64(base64: string): Uint8Array;
+//# sourceMappingURL=base64.d.ts.map

package/lib/base64.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"base64.d.ts","sourceRoot":"","sources":["../src/base64.ts"],"names":[],"mappings":"AAgBA;;GAEG;AAEH;;;;GAIG;AACH,wBAAgB,YAAY,CAAC,UAAU,EAAE,WAAW,GAAG,UAAU,GAAG,MAAM,CAmBzE;AAED;;;;GAIG;AACH,wBAAgB,oBAAoB,CAAC,UAAU,EAAE,WAAW,GAAG,UAAU,GAAG,MAAM,CAEjF;AAED;;;;GAIG;AACH,wBAAgB,uBAAuB,CAAC,UAAU,EAAE,WAAW,GAAG,UAAU,GAAG,MAAM,CAEpF;AAED;;;;GAIG;AACH,wBAAgB,YAAY,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,CAkBvD"}

package/lib/base64.js

@@ -0,0 +1,88 @@
+/*
+Copyright 2023 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/**
+ * Base64 encoding and decoding utilities
+ */
+
+/**
+ * Encode a typed array of uint8 as base64.
+ * @param uint8Array - The data to encode.
+ * @returns The base64.
+ */
+export function encodeBase64(uint8Array) {
+  // A brief note on the state of base64 encoding in Javascript.
+  // As of 2023, there is still no common native impl between both browsers and
+  // node. Older Webpack provides an impl for Buffer and there is a polyfill class
+  // for it. There are also plenty of pure js impls, eg. base64-js which has 2336
+  // dependents at current count. Using this would probably be fine although it's
+  // a little under-docced and run by an individual. The node impl works fine,
+  // the browser impl works but predates Uint8Array and so only uses strings.
+  // Right now, switching between native (or polyfilled) impls like this feels
+  // like the least bad option, but... *shrugs*.
+  if (typeof Buffer === "function") {
+    return Buffer.from(uint8Array).toString("base64");
+  } else if (typeof btoa === "function" && uint8Array instanceof Uint8Array) {
+    // ArrayBuffer is a node concept so the param should always be a Uint8Array on
+    // the browser. We need to check because ArrayBuffers don't have reduce.
+    return btoa(uint8Array.reduce((acc, current) => acc + String.fromCharCode(current), ""));
+  } else {
+    throw new Error("No base64 impl found!");
+  }
+}
+
+/**
+ * Encode a typed array of uint8 as unpadded base64.
+ * @param uint8Array - The data to encode.
+ * @returns The unpadded base64.
+ */
+export function encodeUnpaddedBase64(uint8Array) {
+  return encodeBase64(uint8Array).replace(/={1,2}$/, "");
+}
+
+/**
+ * Encode a typed array of uint8 as unpadded base64 using the URL-safe encoding.
+ * @param uint8Array - The data to encode.
+ * @returns The unpadded base64.
+ */
+export function encodeUnpaddedBase64Url(uint8Array) {
+  return encodeUnpaddedBase64(uint8Array).replace(/\+/g, "-").replace(/\//g, "_");
+}
+
+/**
+ * Decode a base64 (or base64url) string to a typed array of uint8.
+ * @param base64 - The base64 to decode.
+ * @returns The decoded data.
+ */
+export function decodeBase64(base64) {
+  // See encodeBase64 for a short treatise on base64 en/decoding in JS
+  if (typeof Buffer === "function") {
+    return Buffer.from(base64, "base64");
+  } else if (typeof atob === "function") {
+    var itFunc = function* itFunc() {
+      var decoded = atob(
+      // built-in atob doesn't support base64url: convert so we support either
+      base64.replace(/-/g, "+").replace(/_/g, "/"));
+      for (var i = 0; i < decoded.length; ++i) {
+        yield decoded.charCodeAt(i);
+      }
+    };
+    return Uint8Array.from(itFunc());
+  } else {
+    throw new Error("No base64 impl found!");
+  }
+}
+//# sourceMappingURL=base64.js.map