npm - @versini/auth-common - Versions diffs - 2.4.0 → 2.5.0 - Mend

@versini/auth-common 2.4.0 → 2.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/index.d.ts CHANGED Viewed

@@ -15,6 +15,10 @@ declare const JWT: {
     ISSUER: string;
 };
 declare const JWT_PUBLIC_KEY = "-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsF6i3Jd9fY/3COqCw/m7\nw5PKyTYLGAI2I6SIIdpe6i6DOCbEkmDz7LdVsBqwNtVi8gvWYIj+8ol6rU3qu1v5\ni1Jd45GSK4kzkVdgCmQZbM5ak0KI99q5wsrAIzUd+LRJ2HRvWtr5IYdsIiXaQjle\naMwPFOIcJH+rKfFgNcHLcaS5syp7zU1ANwZ+trgR+DifBr8TLVkBynmNeTyhDm2+\nl0haqjMk0UoNPPE8iYBWUHQJJE1Dqstj65d6Eh5g64Pao25y4cmYJbKjiblIGEkE\nsjqybA9mARAqh9k/eiIopecWSiffNQTwVQVd2I9ZH3BalhEXHlqFgrjz51kFqg81\nawIDAQAB\n-----END PUBLIC KEY-----";
+declare const TOKEN_EXPIRATION: {
+    ACCESS: string;
+    ID: string;
+};
 declare const verifyAndExtractToken: (token: string, audience: string) => Promise<jose.JWTVerifyResult<jose.JWTPayload> | undefined>;
-export { AUTH_TYPES, HEADERS, JWT, JWT_PUBLIC_KEY, verifyAndExtractToken };
+export { AUTH_TYPES, HEADERS, JWT, JWT_PUBLIC_KEY, TOKEN_EXPIRATION, verifyAndExtractToken };

package/dist/index.js CHANGED Viewed

@@ -1,17 +1,17 @@
 /*!
-  @versini/auth-common v2.4.0
+  @versini/auth-common v2.5.0
   © 2024 gizmette.com
 */
 try {
   window.__VERSINI_AUTH_COMMON__ || (window.__VERSINI_AUTH_COMMON__ = {
-    version: "2.4.0",
-    buildTime: "06/25/2024 03:57 PM EDT",
+    version: "2.5.0",
+    buildTime: "06/25/2024 05:52 PM EDT",
     homepage: "https://github.com/aversini/auth-client",
     license: "MIT"
   });
 } catch {
 }
-const P = crypto, D = (e) => e instanceof CryptoKey, b = new TextEncoder(), g = new TextDecoder();
+const P = crypto, D = (e) => e instanceof CryptoKey, A = new TextEncoder(), g = new TextDecoder();
 function V(...e) {
   const t = e.reduce((o, { length: i }) => o + i, 0), n = new Uint8Array(t);
   let r = 0;
@@ -33,7 +33,7 @@ const F = (e) => {
     throw new TypeError("The input to be decoded is not correctly encoded.");
   }
 };
-class E extends Error {
+class w extends Error {
   static get code() {
     return "ERR_JOSE_GENERIC";
   }
@@ -42,7 +42,7 @@ class E extends Error {
     super(t), this.code = "ERR_JOSE_GENERIC", this.name = this.constructor.name, (n = Error.captureStackTrace) == null || n.call(Error, this, this.constructor);
   }
 }
-class h extends E {
+class h extends w {
   static get code() {
     return "ERR_JWT_CLAIM_VALIDATION_FAILED";
   }
@@ -50,7 +50,7 @@ class h extends E {
     super(t), this.code = "ERR_JWT_CLAIM_VALIDATION_FAILED", this.claim = r, this.reason = o, this.payload = n;
   }
 }
-class O extends E {
+class O extends w {
   static get code() {
     return "ERR_JWT_EXPIRED";
   }
@@ -58,7 +58,7 @@ class O extends E {
     super(t), this.code = "ERR_JWT_EXPIRED", this.claim = r, this.reason = o, this.payload = n;
   }
 }
-class G extends E {
+class G extends w {
   constructor() {
     super(...arguments), this.code = "ERR_JOSE_ALG_NOT_ALLOWED";
   }
@@ -66,7 +66,7 @@ class G extends E {
     return "ERR_JOSE_ALG_NOT_ALLOWED";
   }
 }
-class _ extends E {
+class I extends w {
   constructor() {
     super(...arguments), this.code = "ERR_JOSE_NOT_SUPPORTED";
   }
@@ -74,7 +74,7 @@ class _ extends E {
     return "ERR_JOSE_NOT_SUPPORTED";
   }
 }
-class d extends E {
+class d extends w {
   constructor() {
     super(...arguments), this.code = "ERR_JWS_INVALID";
   }
@@ -82,7 +82,7 @@ class d extends E {
     return "ERR_JWS_INVALID";
   }
 }
-class k extends E {
+class k extends w {
   constructor() {
     super(...arguments), this.code = "ERR_JWT_INVALID";
   }
@@ -90,7 +90,7 @@ class k extends E {
     return "ERR_JWT_INVALID";
   }
 }
-class q extends E {
+class q extends w {
   constructor() {
     super(...arguments), this.code = "ERR_JWS_SIGNATURE_VERIFICATION_FAILED", this.message = "signature verification failed";
   }
@@ -101,7 +101,7 @@ class q extends E {
 function p(e, t = "algorithm.name") {
   return new TypeError(`CryptoKey does not support this operation, its ${t} must be ${e}`);
 }
-function A(e, t) {
+function b(e, t) {
   return e.name === t;
 }
 function T(e) {
@@ -135,7 +135,7 @@ function Q(e, t, ...n) {
     case "HS256":
     case "HS384":
     case "HS512": {
-      if (!A(e.algorithm, "HMAC"))
+      if (!b(e.algorithm, "HMAC"))
         throw p("HMAC");
       const r = parseInt(t.slice(2), 10);
       if (T(e.algorithm.hash) !== r)
@@ -145,7 +145,7 @@ function Q(e, t, ...n) {
     case "RS256":
     case "RS384":
     case "RS512": {
-      if (!A(e.algorithm, "RSASSA-PKCS1-v1_5"))
+      if (!b(e.algorithm, "RSASSA-PKCS1-v1_5"))
         throw p("RSASSA-PKCS1-v1_5");
       const r = parseInt(t.slice(2), 10);
       if (T(e.algorithm.hash) !== r)
@@ -155,7 +155,7 @@ function Q(e, t, ...n) {
     case "PS256":
     case "PS384":
     case "PS512": {
-      if (!A(e.algorithm, "RSA-PSS"))
+      if (!b(e.algorithm, "RSA-PSS"))
         throw p("RSA-PSS");
       const r = parseInt(t.slice(2), 10);
       if (T(e.algorithm.hash) !== r)
@@ -170,7 +170,7 @@ function Q(e, t, ...n) {
     case "ES256":
     case "ES384":
     case "ES512": {
-      if (!A(e.algorithm, "ECDSA"))
+      if (!b(e.algorithm, "ECDSA"))
         throw p("ECDSA");
       const r = Y(t);
       if (e.algorithm.namedCurve !== r)
@@ -257,7 +257,7 @@ const Z = (e, t) => {
     case y(e, [43, 101, 113]):
       return "Ed448";
     default:
-      throw new _("Invalid or unsupported EC Key Curve or OKP Key Sub Type");
+      throw new I("Invalid or unsupported EC Key Curve or OKP Key Sub Type");
   }
 }, ee = async (e, t, n, r, o) => {
   let i, a;
@@ -303,7 +303,7 @@ const Z = (e, t) => {
       i = { name: K(c) }, a = ["verify"];
       break;
     default:
-      throw new _('Invalid or unsupported "alg" (Algorithm) value');
+      throw new I('Invalid or unsupported "alg" (Algorithm) value');
   }
   return P.subtle.importKey(t, c, i, !1, a);
 }, te = (e, t, n) => ee(/(?:-----(?:BEGIN|END) PUBLIC KEY-----|\s)/g, "spki", e, t);
@@ -342,7 +342,7 @@ function ie(e, t, n, r, o) {
   n !== void 0 ? i = new Map([...Object.entries(n), ...t.entries()]) : i = t;
   for (const a of r.crit) {
     if (!i.has(a))
-      throw new _(`Extension Header Parameter "${a}" is not recognized`);
+      throw new I(`Extension Header Parameter "${a}" is not recognized`);
     if (o[a] === void 0)
       throw new e(`Extension Header Parameter "${a}" is missing`);
     if (i.get(a) && r[a] === void 0)
@@ -378,7 +378,7 @@ function se(e, t) {
     case "EdDSA":
       return { name: t.name };
     default:
-      throw new _(`alg ${e} is not supported either by JOSE or your javascript runtime`);
+      throw new I(`alg ${e} is not supported either by JOSE or your javascript runtime`);
   }
 }
 function de(e, t, n) {
@@ -417,8 +417,8 @@ async function fe(e, t, n) {
   let r = {};
   if (e.protected)
     try {
-      const I = C(e.protected);
-      r = JSON.parse(g.decode(I));
+      const _ = C(e.protected);
+      r = JSON.parse(g.decode(_));
     } catch {
       throw new d("JWS Protected Header is invalid");
     }
@@ -444,14 +444,14 @@ async function fe(e, t, n) {
     throw new d("JWS Payload must be a string or an Uint8Array instance");
   let l = !1;
   typeof t == "function" && (t = await t(r, e), l = !0), ae(c, t, "verify");
-  const w = V(b.encode(e.protected ?? ""), b.encode("."), typeof e.payload == "string" ? b.encode(e.payload) : e.payload);
+  const E = V(A.encode(e.protected ?? ""), A.encode("."), typeof e.payload == "string" ? A.encode(e.payload) : e.payload);
   let f;
   try {
     f = C(e.signature);
   } catch {
     throw new d("Failed to base64url decode the signature");
   }
-  if (!await ue(c, t, f, w))
+  if (!await ue(c, t, f, E))
     throw new q();
   let m;
   if (a)
@@ -461,7 +461,7 @@ async function fe(e, t, n) {
       throw new d("Failed to base64url decode the payload");
     }
   else
-    typeof e.payload == "string" ? m = b.encode(e.payload) : m = e.payload;
+    typeof e.payload == "string" ? m = A.encode(e.payload) : m = e.payload;
   const u = { payload: m };
   return e.protected !== void 0 && (u.protectedHeader = r), e.header !== void 0 && (u.unprotectedHeader = e.header), l ? { ...u, key: t } : u;
 }
@@ -517,7 +517,7 @@ const le = (e) => Math.floor(e.getTime() / 1e3), M = 60, B = M * 60, v = B * 24,
       break;
   }
   return t[1] === "-" || t[4] === "ago" ? -o : o;
-}, H = (e) => e.toLowerCase().replace(/^application\//, ""), Se = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, we = (e, t, n = {}) => {
+}, N = (e) => e.toLowerCase().replace(/^application\//, ""), Se = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, Ee = (e, t, n = {}) => {
   let r;
   try {
     r = JSON.parse(g.decode(t));
@@ -526,11 +526,11 @@ const le = (e) => Math.floor(e.getTime() / 1e3), M = 60, B = M * 60, v = B * 24,
   if (!R(r))
     throw new k("JWT Claims Set must be a top-level JSON object");
   const { typ: o } = n;
-  if (o && (typeof e.typ != "string" || H(e.typ) !== H(o)))
+  if (o && (typeof e.typ != "string" || N(e.typ) !== N(o)))
     throw new h('unexpected "typ" JWT header value', r, "typ", "check_failed");
-  const { requiredClaims: i = [], issuer: a, subject: c, audience: s, maxTokenAge: l } = n, w = [...i];
-  l !== void 0 && w.push("iat"), s !== void 0 && w.push("aud"), c !== void 0 && w.push("sub"), a !== void 0 && w.push("iss");
-  for (const u of new Set(w.reverse()))
+  const { requiredClaims: i = [], issuer: a, subject: c, audience: s, maxTokenAge: l } = n, E = [...i];
+  l !== void 0 && E.push("iat"), s !== void 0 && E.push("aud"), c !== void 0 && E.push("sub"), a !== void 0 && E.push("iss");
+  for (const u of new Set(E.reverse()))
     if (!(u in r))
       throw new h(`missing required "${u}" claim`, r, u, "missing");
   if (a && !(Array.isArray(a) ? a : [a]).includes(r.iss))
@@ -569,34 +569,34 @@ const le = (e) => Math.floor(e.getTime() / 1e3), M = 60, B = M * 60, v = B * 24,
       throw new O('"exp" claim timestamp check failed', r, "exp", "check_failed");
   }
   if (l) {
-    const u = m - r.iat, I = typeof l == "number" ? l : W(l);
-    if (u - f > I)
+    const u = m - r.iat, _ = typeof l == "number" ? l : W(l);
+    if (u - f > _)
       throw new O('"iat" claim timestamp check failed (too far in the past)', r, "iat", "check_failed");
     if (u < 0 - f)
       throw new h('"iat" claim timestamp check failed (it should be in the past)', r, "iat", "check_failed");
   }
   return r;
 };
-async function Ee(e, t, n) {
+async function we(e, t, n) {
   var a;
   const r = await he(e, t, n);
   if ((a = r.protectedHeader.crit) != null && a.includes("b64") && r.protectedHeader.b64 === !1)
     throw new k("JWTs MUST NOT use unencoded payload");
-  const i = { payload: we(r.protectedHeader, r.payload, n), protectedHeader: r.protectedHeader };
+  const i = { payload: Ee(r.protectedHeader, r.payload, n), protectedHeader: r.protectedHeader };
   return typeof t == "function" ? { ...i, key: r.key } : i;
 }
-const Ae = {
+const be = {
   ID_TOKEN: "id_token",
   ACCESS_TOKEN: "token",
   ID_AND_ACCESS_TOKEN: "id_token token"
 }, ge = {
   CLIENT_ID: "X-Auth-ClientId"
-}, N = {
+}, H = {
   ALG: "RS256",
   USER_ID_KEY: "_id",
   TOKEN_ID_KEY: "__raw",
   ISSUER: "gizmette.com"
-}, be = `-----BEGIN PUBLIC KEY-----
+}, Ae = `-----BEGIN PUBLIC KEY-----
 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsF6i3Jd9fY/3COqCw/m7
 w5PKyTYLGAI2I6SIIdpe6i6DOCbEkmDz7LdVsBqwNtVi8gvWYIj+8ol6rU3qu1v5
 i1Jd45GSK4kzkVdgCmQZbM5ak0KI99q5wsrAIzUd+LRJ2HRvWtr5IYdsIiXaQjle
@@ -604,11 +604,14 @@ aMwPFOIcJH+rKfFgNcHLcaS5syp7zU1ANwZ+trgR+DifBr8TLVkBynmNeTyhDm2+
 l0haqjMk0UoNPPE8iYBWUHQJJE1Dqstj65d6Eh5g64Pao25y4cmYJbKjiblIGEkE
 sjqybA9mARAqh9k/eiIopecWSiffNQTwVQVd2I9ZH3BalhEXHlqFgrjz51kFqg81
 awIDAQAB
------END PUBLIC KEY-----`, _e = async (e, t) => {
+-----END PUBLIC KEY-----`, Ie = {
+  ACCESS: "5m",
+  ID: "90d"
+}, _e = async (e, t) => {
   try {
-    const n = N.ALG, o = await re(be, n);
-    return await Ee(e, o, {
-      issuer: N.ISSUER,
+    const n = H.ALG, o = await re(Ae, n);
+    return await we(e, o, {
+      issuer: H.ISSUER,
       audience: t
     });
   } catch {
@@ -616,9 +619,10 @@ awIDAQAB
   }
 };
 export {
-  Ae as AUTH_TYPES,
+  be as AUTH_TYPES,
   ge as HEADERS,
-  N as JWT,
-  be as JWT_PUBLIC_KEY,
+  H as JWT,
+  Ae as JWT_PUBLIC_KEY,
+  Ie as TOKEN_EXPIRATION,
   _e as verifyAndExtractToken
 };

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
 	"name": "@versini/auth-common",
-	"version": "2.4.0",
+	"version": "2.5.0",
 	"license": "MIT",
 	"author": "Arno Versini",
 	"publishConfig": {
@@ -32,5 +32,5 @@
 	"dependencies": {
 		"jose": "5.4.1"
 	},
-	"gitHead": "86fb8a035b0df8272887b158f678c408f7be3940"
+	"gitHead": "25c60a5226b6f9d95aa3a3fcdbbc8448181e937a"
 }