@versini/auth-common 2.11.0 → 2.12.1

package/dist/index.d.ts

@@ -6,6 +6,7 @@ declare const AUTH_TYPES: {
     ID_AND_ACCESS_TOKEN: string;
     CODE: string;
     REFRESH_TOKEN: string;
+    PASSKEY: string;
 };
 declare const HEADERS: {
     CLIENT_ID: string;
@@ -16,6 +17,7 @@ declare const JWT: {
     TOKEN_ID_KEY: string;
     NONCE_KEY: string;
     USERNAME_KEY: string;
+    AUTH_TYPE_KEY: string;
     ISSUER: string;
 };
 declare const JWT_PUBLIC_KEY = "-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsF6i3Jd9fY/3COqCw/m7\nw5PKyTYLGAI2I6SIIdpe6i6DOCbEkmDz7LdVsBqwNtVi8gvWYIj+8ol6rU3qu1v5\ni1Jd45GSK4kzkVdgCmQZbM5ak0KI99q5wsrAIzUd+LRJ2HRvWtr5IYdsIiXaQjle\naMwPFOIcJH+rKfFgNcHLcaS5syp7zU1ANwZ+trgR+DifBr8TLVkBynmNeTyhDm2+\nl0haqjMk0UoNPPE8iYBWUHQJJE1Dqstj65d6Eh5g64Pao25y4cmYJbKjiblIGEkE\nsjqybA9mARAqh9k/eiIopecWSiffNQTwVQVd2I9ZH3BalhEXHlqFgrjz51kFqg81\nawIDAQAB\n-----END PUBLIC KEY-----";
@@ -73,4 +75,4 @@ type HeadersLike = Record<string, unknown> & {
  */
 declare const getToken: (headers: HeadersLike, clientId: string) => string;
 
-export { API_TYPE, AUTH_TYPES, HEADERS, JWT, JWT_PUBLIC_KEY, TOKEN_EXPIRATION, decodeToken, generateCodeChallenge, getToken, pkceChallengePair, verifyAndExtractToken, verifyChallenge };
+export { API_TYPE, AUTH_TYPES, HEADERS, type HeadersLike, JWT, JWT_PUBLIC_KEY, TOKEN_EXPIRATION, decodeToken, generateCodeChallenge, getToken, pkceChallengePair, verifyAndExtractToken, verifyChallenge };

package/dist/index.js

@@ -1,11 +1,11 @@
 /*!
-  @versini/auth-common v2.11.0
+  @versini/auth-common v2.12.1
   © 2024 gizmette.com
 */
 try {
   window.__VERSINI_AUTH_COMMON__ || (window.__VERSINI_AUTH_COMMON__ = {
-    version: "2.11.0",
-    buildTime: "07/07/2024 10:25 AM EDT",
+    version: "2.12.1",
+    buildTime: "07/15/2024 10:32 AM EDT",
     homepage: "https://github.com/aversini/auth-client",
     license: "MIT"
   });
@@ -16,7 +16,8 @@ const Qe = {
   ACCESS_TOKEN: "token",
   ID_AND_ACCESS_TOKEN: "id_token token",
   CODE: "code",
-  REFRESH_TOKEN: "refresh_token"
+  REFRESH_TOKEN: "refresh_token",
+  PASSKEY: "passkey"
 }, Xe = {
   CLIENT_ID: "X-Auth-ClientId"
 }, N = {
@@ -25,6 +26,7 @@ const Qe = {
   TOKEN_ID_KEY: "__raw",
   NONCE_KEY: "_nonce",
   USERNAME_KEY: "username",
+  AUTH_TYPE_KEY: "auth_type",
   ISSUER: "gizmette.com"
 }, ne = `-----BEGIN PUBLIC KEY-----
 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsF6i3Jd9fY/3COqCw/m7
@@ -42,7 +44,7 @@ awIDAQAB
   AUTHENTICATE: "authenticate",
   CODE: "code",
   LOGOUT: "logout"
-}, x = crypto, z = (e) => e instanceof CryptoKey, v = new TextEncoder(), C = new TextDecoder();
+}, K = crypto, q = (e) => e instanceof CryptoKey, v = new TextEncoder(), C = new TextDecoder();
 function ae(...e) {
   const t = e.reduce((a, { length: i }) => a + i, 0), r = new Uint8Array(t);
   let n = 0;
@@ -156,8 +158,7 @@ function de(e, t) {
     if (t.length > 2) {
       const n = t.pop();
       r += `one of ${t.join(", ")}, or ${n}.`;
-    } else
-      t.length === 2 ? r += `one of ${t[0]} or ${t[1]}.` : r += `${t[0]}.`;
+    } else t.length === 2 ? r += `one of ${t[0]} or ${t[1]}.` : r += `${t[0]}.`;
     throw new TypeError(r);
   }
 }
@@ -213,20 +214,19 @@ function ue(e, t, ...r) {
   }
   de(e, r);
 }
-function G(e, t, ...r) {
+function z(e, t, ...r) {
   var n;
   if (r.length > 2) {
     const a = r.pop();
     e += `one of type ${r.join(", ")}, or ${a}.`;
-  } else
-    r.length === 2 ? e += `one of type ${r[0]} or ${r[1]}.` : e += `of type ${r[0]}.`;
+  } else r.length === 2 ? e += `one of type ${r[0]} or ${r[1]}.` : e += `of type ${r[0]}.`;
   return t == null ? e += ` Received ${t}` : typeof t == "function" && t.name ? e += ` Received function ${t.name}` : typeof t == "object" && t != null && (n = t.constructor) != null && n.name && (e += ` Received an instance of ${t.constructor.name}`), e;
 }
-const L = (e, ...t) => G("Key must be ", e, ...t);
-function Y(e, t, ...r) {
-  return G(`Key for the ${e} algorithm must be `, t, ...r);
+const L = (e, ...t) => z("Key must be ", e, ...t);
+function G(e, t, ...r) {
+  return z(`Key for the ${e} algorithm must be `, t, ...r);
 }
-const Q = (e) => z(e) ? !0 : (e == null ? void 0 : e[Symbol.toStringTag]) === "KeyObject", _ = ["CryptoKey"], le = (...e) => {
+const Q = (e) => q(e) ? !0 : (e == null ? void 0 : e[Symbol.toStringTag]) === "KeyObject", R = ["CryptoKey"], le = (...e) => {
   const t = e.filter(Boolean);
   if (t.length === 0 || t.length === 1)
     return !0;
@@ -345,7 +345,7 @@ const me = async (e) => {
     e.ext ?? !1,
     e.key_ops ?? r
   ], a = { ...e };
-  return delete a.alg, delete a.use, x.subtle.importKey("jwk", a, ...n);
+  return delete a.alg, delete a.use, K.subtle.importKey("jwk", a, ...n);
 }, X = (e) => b(e);
 let W, J;
 const Z = (e) => (e == null ? void 0 : e[Symbol.toStringTag]) === "KeyObject", j = async (e, t, r, n) => {
@@ -438,29 +438,29 @@ const Z = (e) => (e == null ? void 0 : e[Symbol.toStringTag]) === "KeyObject", j
     default:
       throw new w('Invalid or unsupported "alg" (Algorithm) value');
   }
-  return x.subtle.importKey(t, c, i, !1, o);
+  return K.subtle.importKey(t, c, i, !1, o);
 }, ge = (e, t, r) => we(/(?:-----(?:BEGIN|END) PUBLIC KEY-----|\s)/g, "spki", e, t);
 async function Ae(e, t, r) {
   if (e.indexOf("-----BEGIN PUBLIC KEY-----") !== 0)
     throw new TypeError('"spki" must be SPKI formatted string');
   return ge(e, t);
 }
-const R = (e) => e == null ? void 0 : e[Symbol.toStringTag], be = (e, t) => {
+const I = (e) => e == null ? void 0 : e[Symbol.toStringTag], be = (e, t) => {
   if (!(t instanceof Uint8Array)) {
     if (!Q(t))
-      throw new TypeError(Y(e, t, ..._, "Uint8Array"));
+      throw new TypeError(G(e, t, ...R, "Uint8Array"));
     if (t.type !== "secret")
-      throw new TypeError(`${R(t)} instances for symmetric algorithms must be of type "secret"`);
+      throw new TypeError(`${I(t)} instances for symmetric algorithms must be of type "secret"`);
   }
 }, Ce = (e, t, r) => {
   if (!Q(t))
-    throw new TypeError(Y(e, t, ..._));
+    throw new TypeError(G(e, t, ...R));
   if (t.type === "secret")
-    throw new TypeError(`${R(t)} instances for asymmetric algorithms must not be of type "secret"`);
+    throw new TypeError(`${I(t)} instances for asymmetric algorithms must not be of type "secret"`);
   if (t.algorithm && r === "verify" && t.type === "private")
-    throw new TypeError(`${R(t)} instances for asymmetric algorithm verifying must be of type "public"`);
+    throw new TypeError(`${I(t)} instances for asymmetric algorithm verifying must be of type "public"`);
   if (t.algorithm && r === "encrypt" && t.type === "private")
-    throw new TypeError(`${R(t)} instances for asymmetric algorithm encryption must be of type "public"`);
+    throw new TypeError(`${I(t)} instances for asymmetric algorithm encryption must be of type "public"`);
 }, ve = (e, t, r) => {
   e.startsWith("HS") || e === "dir" || e.startsWith("PBES2") || /^A\d{3}(?:GCM)?KW$/.test(e) ? be(e, t) : Ce(e, t, r);
 };
@@ -483,13 +483,13 @@ function Te(e, t, r, n, a) {
   }
   return new Set(n.crit);
 }
-const Ie = (e, t) => {
+const _e = (e, t) => {
   if (t !== void 0 && (!Array.isArray(t) || t.some((r) => typeof r != "string")))
     throw new TypeError(`"${e}" option must be an array of strings`);
   if (t)
     return new Set(t);
 };
-function Re(e, t) {
+function Ie(e, t) {
   const r = `SHA-${e.slice(-3)}`;
   switch (e) {
     case "HS256":
@@ -514,27 +514,27 @@ function Re(e, t) {
       throw new w(`alg ${e} is not supported either by JOSE or your javascript runtime`);
   }
 }
-async function _e(e, t, r) {
-  if (t = await Ee.normalizePublicKey(t, e), z(t))
+async function Re(e, t, r) {
+  if (t = await Ee.normalizePublicKey(t, e), q(t))
     return ue(t, e, r), t;
   if (t instanceof Uint8Array) {
     if (!e.startsWith("HS"))
-      throw new TypeError(L(t, ..._));
-    return x.subtle.importKey("raw", t, { hash: `SHA-${e.slice(-3)}`, name: "HMAC" }, !1, [r]);
+      throw new TypeError(L(t, ...R));
+    return K.subtle.importKey("raw", t, { hash: `SHA-${e.slice(-3)}`, name: "HMAC" }, !1, [r]);
   }
-  throw new TypeError(L(t, ..._, "Uint8Array"));
+  throw new TypeError(L(t, ...R, "Uint8Array"));
 }
 const Pe = async (e, t, r, n) => {
-  const a = await _e(e, t, "verify");
+  const a = await Re(e, t, "verify");
   he(e, a);
-  const i = Re(e, a.algorithm);
+  const i = Ie(e, a.algorithm);
   try {
-    return await x.subtle.verify(i, a, r, n);
+    return await K.subtle.verify(i, a, r, n);
   } catch {
     return !1;
   }
 };
-async function xe(e, t, r) {
+async function Ke(e, t, r) {
   if (!P(e))
     throw new u("Flattened JWS must be an object");
   if (e.protected === void 0 && e.header === void 0)
@@ -550,8 +550,8 @@ async function xe(e, t, r) {
   let n = {};
   if (e.protected)
     try {
-      const K = b(e.protected);
-      n = JSON.parse(C.decode(K));
+      const x = b(e.protected);
+      n = JSON.parse(C.decode(x));
     } catch {
       throw new u("JWS Protected Header is invalid");
     }
@@ -567,7 +567,7 @@ async function xe(e, t, r) {
   const { alg: c } = a;
   if (typeof c != "string" || !c)
     throw new u('JWS "alg" (Algorithm) Header Parameter missing or invalid');
-  const s = r && Ie("algorithms", r.algorithms);
+  const s = r && _e("algorithms", r.algorithms);
   if (s && !s.has(c))
     throw new ie('"alg" (Algorithm) Header Parameter value not allowed');
   if (o) {
@@ -593,22 +593,21 @@ async function xe(e, t, r) {
     } catch {
       throw new u("Failed to base64url decode the payload");
     }
-  else
-    typeof e.payload == "string" ? y = v.encode(e.payload) : y = e.payload;
+  else typeof e.payload == "string" ? y = v.encode(e.payload) : y = e.payload;
   const l = { payload: y };
   return e.protected !== void 0 && (l.protectedHeader = n), e.header !== void 0 && (l.unprotectedHeader = e.header), p ? { ...l, key: t } : l;
 }
-async function Ke(e, t, r) {
+async function xe(e, t, r) {
   if (e instanceof Uint8Array && (e = C.decode(e)), typeof e != "string")
     throw new u("Compact JWS must be a string or Uint8Array");
   const { 0: n, 1: a, 2: i, length: o } = e.split(".");
   if (o !== 3)
     throw new u("Invalid Compact JWS");
-  const c = await xe({ payload: a, protected: n, signature: i }, t, r), s = { payload: c.payload, protectedHeader: c.protectedHeader };
+  const c = await Ke({ payload: a, protected: n, signature: i }, t, r), s = { payload: c.payload, protectedHeader: c.protectedHeader };
   return typeof t == "function" ? { ...s, key: c.key } : s;
 }
-const Oe = (e) => Math.floor(e.getTime() / 1e3), ee = 60, te = ee * 60, H = te * 24, We = H * 7, Je = H * 365.25, De = /^(\+|\-)? ?(\d+|\d+\.\d+) ?(seconds?|secs?|s|minutes?|mins?|m|hours?|hrs?|h|days?|d|weeks?|w|years?|yrs?|y)(?: (ago|from now))?$/i, k = (e) => {
-  const t = De.exec(e);
+const Oe = (e) => Math.floor(e.getTime() / 1e3), ee = 60, te = ee * 60, D = te * 24, We = D * 7, Je = D * 365.25, He = /^(\+|\-)? ?(\d+|\d+\.\d+) ?(seconds?|secs?|s|minutes?|mins?|m|hours?|hrs?|h|days?|d|weeks?|w|years?|yrs?|y)(?: (ago|from now))?$/i, k = (e) => {
+  const t = He.exec(e);
   if (!t || t[4] && t[1])
     throw new TypeError("Invalid time period format");
   const r = parseFloat(t[2]), n = t[3].toLowerCase();
@@ -638,7 +637,7 @@ const Oe = (e) => Math.floor(e.getTime() / 1e3), ee = 60, te = ee * 60, H = te *
     case "day":
     case "days":
     case "d":
-      a = Math.round(r * H);
+      a = Math.round(r * D);
       break;
     case "week":
     case "weeks":
@@ -650,7 +649,7 @@ const Oe = (e) => Math.floor(e.getTime() / 1e3), ee = 60, te = ee * 60, H = te *
       break;
   }
   return t[1] === "-" || t[4] === "ago" ? -a : a;
-}, V = (e) => e.toLowerCase().replace(/^application\//, ""), He = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, Ue = (e, t, r = {}) => {
+}, V = (e) => e.toLowerCase().replace(/^application\//, ""), De = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, Ue = (e, t, r = {}) => {
   let n;
   try {
     n = JSON.parse(C.decode(t));
@@ -670,7 +669,7 @@ const Oe = (e) => Math.floor(e.getTime() / 1e3), ee = 60, te = ee * 60, H = te *
     throw new h('unexpected "iss" claim value', n, "iss", "check_failed");
   if (c && n.sub !== c)
     throw new h('unexpected "sub" claim value', n, "sub", "check_failed");
-  if (s && !He(n.aud, typeof s == "string" ? [s] : s))
+  if (s && !De(n.aud, typeof s == "string" ? [s] : s))
     throw new h('unexpected "aud" claim value', n, "aud", "check_failed");
   let f;
   switch (typeof r.clockTolerance) {
@@ -702,8 +701,8 @@ const Oe = (e) => Math.floor(e.getTime() / 1e3), ee = 60, te = ee * 60, H = te *
       throw new $('"exp" claim timestamp check failed', n, "exp", "check_failed");
   }
   if (p) {
-    const l = y - n.iat, K = typeof p == "number" ? p : k(p);
-    if (l - f > K)
+    const l = y - n.iat, x = typeof p == "number" ? p : k(p);
+    if (l - f > x)
       throw new $('"iat" claim timestamp check failed (too far in the past)', n, "iat", "check_failed");
     if (l < 0 - f)
       throw new h('"iat" claim timestamp check failed (it should be in the past)', n, "iat", "check_failed");
@@ -712,7 +711,7 @@ const Oe = (e) => Math.floor(e.getTime() / 1e3), ee = 60, te = ee * 60, H = te *
 };
 async function Ne(e, t, r) {
   var o;
-  const n = await Ke(e, t, r);
+  const n = await xe(e, t, r);
   if ((o = n.protectedHeader.crit) != null && o.includes("b64") && n.protectedHeader.b64 === !1)
     throw new S("JWTs MUST NOT use unencoded payload");
   const i = { payload: Ue(n.protectedHeader, n.payload, r), protectedHeader: n.protectedHeader };
@@ -762,16 +761,16 @@ const et = async (e) => {
   }
 };
 var d = [];
-for (var D = 0; D < 256; ++D)
-  d.push((D + 256).toString(16).slice(1));
+for (var H = 0; H < 256; ++H)
+  d.push((H + 256).toString(16).slice(1));
 function Me(e, t = 0) {
   return (d[e[t + 0]] + d[e[t + 1]] + d[e[t + 2]] + d[e[t + 3]] + "-" + d[e[t + 4]] + d[e[t + 5]] + "-" + d[e[t + 6]] + d[e[t + 7]] + "-" + d[e[t + 8]] + d[e[t + 9]] + "-" + d[e[t + 10]] + d[e[t + 11]] + d[e[t + 12]] + d[e[t + 13]] + d[e[t + 14]] + d[e[t + 15]]).toLowerCase();
 }
-var I, ke = new Uint8Array(16);
+var _, ke = new Uint8Array(16);
 function Ve() {
-  if (!I && (I = typeof crypto < "u" && crypto.getRandomValues && crypto.getRandomValues.bind(crypto), !I))
+  if (!_ && (_ = typeof crypto < "u" && crypto.getRandomValues && crypto.getRandomValues.bind(crypto), !_))
     throw new Error("crypto.getRandomValues() not supported. See https://github.com/uuidjs/uuid#getrandomvalues-not-supported");
-  return I(ke);
+  return _(ke);
 }
 var Be = typeof crypto < "u" && crypto.randomUUID && crypto.randomUUID.bind(crypto);
 const B = {
@@ -784,16 +783,16 @@ function F(e, t, r) {
   var n = e.random || (e.rng || Ve)();
   return n[6] = n[6] & 15 | 64, n[8] = n[8] & 63 | 128, Me(n);
 }
-const q = globalThis.crypto, Fe = (e) => `${F()}${F()}`.slice(0, e), qe = (e) => btoa(
+const Y = globalThis.crypto, Fe = (e) => `${F()}${F()}`.slice(0, e), Ye = (e) => btoa(
   [...new Uint8Array(e)].map((t) => String.fromCharCode(t)).join("")
 );
 async function re(e) {
-  if (!q.subtle)
+  if (!Y.subtle)
     throw new Error(
       "crypto.subtle is available only in secure contexts (HTTPS)."
     );
-  const t = new TextEncoder().encode(e), r = await q.subtle.digest("SHA-256", t);
-  return qe(r).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
+  const t = new TextEncoder().encode(e), r = await Y.subtle.digest("SHA-256", t);
+  return Ye(r).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
 }
 async function rt(e) {
   const t = e || 43;
@@ -808,13 +807,13 @@ async function rt(e) {
 async function nt(e, t) {
   return t === await re(e);
 }
-const ze = /^Bearer (.+)$/i, Ge = (e) => {
+const qe = /^Bearer (.+)$/i, ze = (e) => {
   if (typeof e.authorization != "string")
     return;
-  const t = e.authorization.match(ze);
+  const t = e.authorization.match(qe);
   if (t)
     return t[1];
-}, Ye = (e, t) => {
+}, Ge = (e, t) => {
   const r = e.cookie, n = new RegExp(`auth.${t}=(.+?)(?:;|$)`);
   if (typeof r != "string")
     return;
@@ -822,7 +821,7 @@ const ze = /^Bearer (.+)$/i, Ge = (e) => {
   if (a)
     return a[1];
 }, at = (e, t) => {
-  const r = Ge(e), n = Ye(e, t);
+  const r = ze(e), n = Ge(e, t);
   return !n && !r ? "" : n || r;
 };
 export {

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "@versini/auth-common",
-	"version": "2.11.0",
+	"version": "2.12.1",
 	"license": "MIT",
 	"author": "Arno Versini",
 	"publishConfig": {
@@ -29,11 +29,12 @@
 		"lint": "biome lint src",
 		"start": "static-server dist --port 5173",
 		"test:watch": "vitest",
-		"test": "vitest run"
+		"test": "vitest run",
+		"test:coverage": "vitest run --coverage"
 	},
 	"dependencies": {
 		"jose": "5.6.3",
 		"uuid": "10.0.0"
 	},
-	"gitHead": "e6e92b161c834eba2f655e9e6b80bdd7b5cb2316"
+	"gitHead": "a85e00ff8943fae7d4160f582b030962fa68472d"
 }