npm - @versini/auth-common - Versions diffs - 2.7.1 → 2.9.0 - Mend

@versini/auth-common 2.7.1 → 2.9.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/index.d.ts CHANGED Viewed

@@ -5,6 +5,7 @@ declare const AUTH_TYPES: {
     ACCESS_TOKEN: string;
     ID_AND_ACCESS_TOKEN: string;
     CODE: string;
+    REFRESH_TOKEN: string;
 };
 declare const HEADERS: {
     CLIENT_ID: string;
@@ -20,6 +21,7 @@ declare const JWT_PUBLIC_KEY = "-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0B
 declare const TOKEN_EXPIRATION: {
     ACCESS: string;
     ID: string;
+    REFRESH: string;
 };
 declare const API_TYPE: {
     AUTHENTICATE: string;

package/dist/index.js CHANGED Viewed

@@ -1,26 +1,27 @@
 /*!
-  @versini/auth-common v2.7.1
+  @versini/auth-common v2.9.0
   © 2024 gizmette.com
 */
 try {
   window.__VERSINI_AUTH_COMMON__ || (window.__VERSINI_AUTH_COMMON__ = {
-    version: "2.7.1",
-    buildTime: "06/27/2024 02:22 PM EDT",
+    version: "2.9.0",
+    buildTime: "06/28/2024 09:16 AM EDT",
     homepage: "https://github.com/aversini/auth-client",
     license: "MIT"
   });
 } catch {
 }
-const Ke = {
+const Ue = {
   ID_TOKEN: "id_token",
   ACCESS_TOKEN: "token",
   ID_AND_ACCESS_TOKEN: "id_token token",
-  CODE: "code"
+  CODE: "code",
+  REFRESH_TOKEN: "refresh_token"
 }, De = {
   CLIENT_ID: "X-Auth-ClientId"
-}, K = {
+}, U = {
   ALG: "RS256",
-  USER_ID_KEY: "_id",
+  USER_ID_KEY: "sub",
   TOKEN_ID_KEY: "__raw",
   NONCE_KEY: "_nonce",
   ISSUER: "gizmette.com"
@@ -32,14 +33,15 @@ aMwPFOIcJH+rKfFgNcHLcaS5syp7zU1ANwZ+trgR+DifBr8TLVkBynmNeTyhDm2+
 l0haqjMk0UoNPPE8iYBWUHQJJE1Dqstj65d6Eh5g64Pao25y4cmYJbKjiblIGEkE
 sjqybA9mARAqh9k/eiIopecWSiffNQTwVQVd2I9ZH3BalhEXHlqFgrjz51kFqg81
 awIDAQAB
------END PUBLIC KEY-----`, Ne = {
+-----END PUBLIC KEY-----`, He = {
   ACCESS: "5m",
-  ID: "90d"
-}, He = {
+  ID: "90d",
+  REFRESH: "90d"
+}, Ne = {
   AUTHENTICATE: "authenticate",
   CODE: "code",
   LOGOUT: "logout"
-}, O = crypto, V = (e) => e instanceof CryptoKey, g = new TextEncoder(), C = new TextDecoder();
+}, O = crypto, V = (e) => e instanceof CryptoKey, g = new TextEncoder(), _ = new TextDecoder();
 function j(...e) {
   const t = e.reduce((o, { length: i }) => o + i, 0), n = new Uint8Array(t);
   let r = 0;
@@ -54,7 +56,7 @@ const Z = (e) => {
   return n;
 }, R = (e) => {
   let t = e;
-  t instanceof Uint8Array && (t = C.decode(t)), t = t.replace(/-/g, "+").replace(/_/g, "/").replace(/\s/g, "");
+  t instanceof Uint8Array && (t = _.decode(t)), t = t.replace(/-/g, "+").replace(/_/g, "/").replace(/\s/g, "");
   try {
     return Z(t);
   } catch {
@@ -94,7 +96,7 @@ class ee extends b {
     return "ERR_JOSE_ALG_NOT_ALLOWED";
   }
 }
-class _ extends b {
+class C extends b {
   constructor() {
     super(...arguments), this.code = "ERR_JOSE_NOT_SUPPORTED";
   }
@@ -219,11 +221,11 @@ function F(e, t, ...n) {
     n.length === 2 ? e += `one of type ${n[0]} or ${n[1]}.` : e += `of type ${n[0]}.`;
   return t == null ? e += ` Received ${t}` : typeof t == "function" && t.name ? e += ` Received function ${t.name}` : typeof t == "object" && t != null && (r = t.constructor) != null && r.name && (e += ` Received an instance of ${t.constructor.name}`), e;
 }
-const N = (e, ...t) => F("Key must be ", e, ...t);
+const H = (e, ...t) => F("Key must be ", e, ...t);
 function G(e, t, ...n) {
   return F(`Key for the ${e} algorithm must be `, t, ...n);
 }
-const Y = (e) => V(e), w = ["CryptoKey"], ae = (...e) => {
+const Y = (e) => V(e), E = ["CryptoKey"], ae = (...e) => {
   const t = e.filter(Boolean);
   if (t.length === 0 || t.length === 1)
     return !0;
@@ -268,7 +270,7 @@ const ce = (e, t) => {
     return !1;
   const o = e.subarray(r, r + t.length);
   return o.length !== t.length ? !1 : o.every((i, a) => i === t[a]) || S(e, t, r + 1);
-}, H = (e) => {
+}, N = (e) => {
   switch (!0) {
     case S(e, [42, 134, 72, 206, 61, 3, 1, 7]):
       return "P-256";
@@ -285,7 +287,7 @@ const ce = (e, t) => {
     case S(e, [43, 101, 113]):
       return "Ed448";
     default:
-      throw new _("Invalid or unsupported EC Key Curve or OKP Key Sub Type");
+      throw new C("Invalid or unsupported EC Key Curve or OKP Key Sub Type");
   }
 }, se = async (e, t, n, r, o) => {
   let i, a;
@@ -323,15 +325,15 @@ const ce = (e, t) => {
     case "ECDH-ES+A128KW":
     case "ECDH-ES+A192KW":
     case "ECDH-ES+A256KW": {
-      const s = H(c);
+      const s = N(c);
       i = s.startsWith("P-") ? { name: "ECDH", namedCurve: s } : { name: s }, a = [];
       break;
     }
     case "EdDSA":
-      i = { name: H(c) }, a = ["verify"];
+      i = { name: N(c) }, a = ["verify"];
       break;
     default:
-      throw new _('Invalid or unsupported "alg" (Algorithm) value');
+      throw new C('Invalid or unsupported "alg" (Algorithm) value');
   }
   return O.subtle.importKey(t, c, i, !1, a);
 }, de = (e, t, n) => se(/(?:-----(?:BEGIN|END) PUBLIC KEY-----|\s)/g, "spki", e, t);
@@ -340,24 +342,24 @@ async function ue(e, t, n) {
     throw new TypeError('"spki" must be SPKI formatted string');
   return de(e, t);
 }
-const le = (e, t) => {
+const fe = (e, t) => {
   if (!(t instanceof Uint8Array)) {
     if (!Y(t))
-      throw new TypeError(G(e, t, ...w, "Uint8Array"));
+      throw new TypeError(G(e, t, ...E, "Uint8Array"));
     if (t.type !== "secret")
-      throw new TypeError(`${w.join(" or ")} instances for symmetric algorithms must be of type "secret"`);
+      throw new TypeError(`${E.join(" or ")} instances for symmetric algorithms must be of type "secret"`);
   }
-}, fe = (e, t, n) => {
+}, le = (e, t, n) => {
   if (!Y(t))
-    throw new TypeError(G(e, t, ...w));
+    throw new TypeError(G(e, t, ...E));
   if (t.type === "secret")
-    throw new TypeError(`${w.join(" or ")} instances for asymmetric algorithms must not be of type "secret"`);
+    throw new TypeError(`${E.join(" or ")} instances for asymmetric algorithms must not be of type "secret"`);
   if (t.algorithm && n === "verify" && t.type === "private")
-    throw new TypeError(`${w.join(" or ")} instances for asymmetric algorithm verifying must be of type "public"`);
+    throw new TypeError(`${E.join(" or ")} instances for asymmetric algorithm verifying must be of type "public"`);
   if (t.algorithm && n === "encrypt" && t.type === "private")
-    throw new TypeError(`${w.join(" or ")} instances for asymmetric algorithm encryption must be of type "public"`);
+    throw new TypeError(`${E.join(" or ")} instances for asymmetric algorithm encryption must be of type "public"`);
 }, he = (e, t, n) => {
-  e.startsWith("HS") || e === "dir" || e.startsWith("PBES2") || /^A\d{3}(?:GCM)?KW$/.test(e) ? le(e, t) : fe(e, t, n);
+  e.startsWith("HS") || e === "dir" || e.startsWith("PBES2") || /^A\d{3}(?:GCM)?KW$/.test(e) ? fe(e, t) : le(e, t, n);
 };
 function pe(e, t, n, r, o) {
   if (o.crit !== void 0 && (r == null ? void 0 : r.crit) === void 0)
@@ -370,7 +372,7 @@ function pe(e, t, n, r, o) {
   n !== void 0 ? i = new Map([...Object.entries(n), ...t.entries()]) : i = t;
   for (const a of r.crit) {
     if (!i.has(a))
-      throw new _(`Extension Header Parameter "${a}" is not recognized`);
+      throw new C(`Extension Header Parameter "${a}" is not recognized`);
     if (o[a] === void 0)
       throw new e(`Extension Header Parameter "${a}" is missing`);
     if (i.get(a) && r[a] === void 0)
@@ -406,7 +408,7 @@ function ye(e, t) {
     case "EdDSA":
       return { name: t.name };
     default:
-      throw new _(`alg ${e} is not supported either by JOSE or your javascript runtime`);
+      throw new C(`alg ${e} is not supported either by JOSE or your javascript runtime`);
   }
 }
 function Se(e, t, n) {
@@ -414,12 +416,12 @@ function Se(e, t, n) {
     return oe(t, e, n), t;
   if (t instanceof Uint8Array) {
     if (!e.startsWith("HS"))
-      throw new TypeError(N(t, ...w));
+      throw new TypeError(H(t, ...E));
     return O.subtle.importKey("raw", t, { hash: `SHA-${e.slice(-3)}`, name: "HMAC" }, !1, [n]);
   }
-  throw new TypeError(N(t, ...w, "Uint8Array"));
+  throw new TypeError(H(t, ...E, "Uint8Array"));
 }
-const we = async (e, t, n, r) => {
+const Ee = async (e, t, n, r) => {
   const o = await Se(e, t, "verify");
   ce(e, o);
   const i = ye(e, o.algorithm);
@@ -429,7 +431,7 @@ const we = async (e, t, n, r) => {
     return !1;
   }
 };
-async function Ee(e, t, n) {
+async function we(e, t, n) {
   if (!x(e))
     throw new u("Flattened JWS must be an object");
   if (e.protected === void 0 && e.header === void 0)
@@ -446,7 +448,7 @@ async function Ee(e, t, n) {
   if (e.protected)
     try {
       const T = R(e.protected);
-      r = JSON.parse(C.decode(T));
+      r = JSON.parse(_.decode(T));
     } catch {
       throw new u("JWS Protected Header is invalid");
     }
@@ -472,14 +474,14 @@ async function Ee(e, t, n) {
     throw new u("JWS Payload must be a string or an Uint8Array instance");
   let p = !1;
   typeof t == "function" && (t = await t(r, e), p = !0), he(c, t, "verify");
-  const E = j(g.encode(e.protected ?? ""), g.encode("."), typeof e.payload == "string" ? g.encode(e.payload) : e.payload);
-  let f;
+  const w = j(g.encode(e.protected ?? ""), g.encode("."), typeof e.payload == "string" ? g.encode(e.payload) : e.payload);
+  let l;
   try {
-    f = R(e.signature);
+    l = R(e.signature);
   } catch {
     throw new u("Failed to base64url decode the signature");
   }
-  if (!await we(c, t, f, E))
+  if (!await Ee(c, t, l, w))
     throw new te();
   let y;
   if (a)
@@ -490,20 +492,20 @@ async function Ee(e, t, n) {
     }
   else
     typeof e.payload == "string" ? y = g.encode(e.payload) : y = e.payload;
-  const l = { payload: y };
-  return e.protected !== void 0 && (l.protectedHeader = r), e.header !== void 0 && (l.unprotectedHeader = e.header), p ? { ...l, key: t } : l;
+  const f = { payload: y };
+  return e.protected !== void 0 && (f.protectedHeader = r), e.header !== void 0 && (f.unprotectedHeader = e.header), p ? { ...f, key: t } : f;
 }
 async function be(e, t, n) {
-  if (e instanceof Uint8Array && (e = C.decode(e)), typeof e != "string")
+  if (e instanceof Uint8Array && (e = _.decode(e)), typeof e != "string")
     throw new u("Compact JWS must be a string or Uint8Array");
   const { 0: r, 1: o, 2: i, length: a } = e.split(".");
   if (a !== 3)
     throw new u("Invalid Compact JWS");
-  const c = await Ee({ payload: o, protected: r, signature: i }, t, n), s = { payload: c.payload, protectedHeader: c.protectedHeader };
+  const c = await we({ payload: o, protected: r, signature: i }, t, n), s = { payload: c.payload, protectedHeader: c.protectedHeader };
   return typeof t == "function" ? { ...s, key: c.key } : s;
 }
-const ge = (e) => Math.floor(e.getTime() / 1e3), q = 60, z = q * 60, J = z * 24, Ae = J * 7, Ie = J * 365.25, Ce = /^(\+|\-)? ?(\d+|\d+\.\d+) ?(seconds?|secs?|s|minutes?|mins?|m|hours?|hrs?|h|days?|d|weeks?|w|years?|yrs?|y)(?: (ago|from now))?$/i, W = (e) => {
-  const t = Ce.exec(e);
+const ge = (e) => Math.floor(e.getTime() / 1e3), q = 60, z = q * 60, J = z * 24, Ae = J * 7, Ie = J * 365.25, _e = /^(\+|\-)? ?(\d+|\d+\.\d+) ?(seconds?|secs?|s|minutes?|mins?|m|hours?|hrs?|h|days?|d|weeks?|w|years?|yrs?|y)(?: (ago|from now))?$/i, W = (e) => {
+  const t = _e.exec(e);
   if (!t || t[4] && t[1])
     throw new TypeError("Invalid time period format");
   const n = parseFloat(t[2]), r = t[3].toLowerCase();
@@ -545,10 +547,10 @@ const ge = (e) => Math.floor(e.getTime() / 1e3), q = 60, z = q * 60, J = z * 24,
       break;
   }
   return t[1] === "-" || t[4] === "ago" ? -o : o;
-}, $ = (e) => e.toLowerCase().replace(/^application\//, ""), _e = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, Te = (e, t, n = {}) => {
+}, $ = (e) => e.toLowerCase().replace(/^application\//, ""), Ce = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, Te = (e, t, n = {}) => {
   let r;
   try {
-    r = JSON.parse(C.decode(t));
+    r = JSON.parse(_.decode(t));
   } catch {
   }
   if (!x(r))
@@ -556,51 +558,51 @@ const ge = (e) => Math.floor(e.getTime() / 1e3), q = 60, z = q * 60, J = z * 24,
   const { typ: o } = n;
   if (o && (typeof e.typ != "string" || $(e.typ) !== $(o)))
     throw new h('unexpected "typ" JWT header value', r, "typ", "check_failed");
-  const { requiredClaims: i = [], issuer: a, subject: c, audience: s, maxTokenAge: p } = n, E = [...i];
-  p !== void 0 && E.push("iat"), s !== void 0 && E.push("aud"), c !== void 0 && E.push("sub"), a !== void 0 && E.push("iss");
-  for (const l of new Set(E.reverse()))
-    if (!(l in r))
-      throw new h(`missing required "${l}" claim`, r, l, "missing");
+  const { requiredClaims: i = [], issuer: a, subject: c, audience: s, maxTokenAge: p } = n, w = [...i];
+  p !== void 0 && w.push("iat"), s !== void 0 && w.push("aud"), c !== void 0 && w.push("sub"), a !== void 0 && w.push("iss");
+  for (const f of new Set(w.reverse()))
+    if (!(f in r))
+      throw new h(`missing required "${f}" claim`, r, f, "missing");
   if (a && !(Array.isArray(a) ? a : [a]).includes(r.iss))
     throw new h('unexpected "iss" claim value', r, "iss", "check_failed");
   if (c && r.sub !== c)
     throw new h('unexpected "sub" claim value', r, "sub", "check_failed");
-  if (s && !_e(r.aud, typeof s == "string" ? [s] : s))
+  if (s && !Ce(r.aud, typeof s == "string" ? [s] : s))
     throw new h('unexpected "aud" claim value', r, "aud", "check_failed");
-  let f;
+  let l;
   switch (typeof n.clockTolerance) {
     case "string":
-      f = W(n.clockTolerance);
+      l = W(n.clockTolerance);
       break;
     case "number":
-      f = n.clockTolerance;
+      l = n.clockTolerance;
       break;
     case "undefined":
-      f = 0;
+      l = 0;
       break;
     default:
       throw new TypeError("Invalid clockTolerance option type");
   }
-  const { currentDate: U } = n, y = ge(U || /* @__PURE__ */ new Date());
+  const { currentDate: K } = n, y = ge(K || /* @__PURE__ */ new Date());
   if ((r.iat !== void 0 || p) && typeof r.iat != "number")
     throw new h('"iat" claim must be a number', r, "iat", "invalid");
   if (r.nbf !== void 0) {
     if (typeof r.nbf != "number")
       throw new h('"nbf" claim must be a number', r, "nbf", "invalid");
-    if (r.nbf > y + f)
+    if (r.nbf > y + l)
       throw new h('"nbf" claim timestamp check failed', r, "nbf", "check_failed");
   }
   if (r.exp !== void 0) {
     if (typeof r.exp != "number")
       throw new h('"exp" claim must be a number', r, "exp", "invalid");
-    if (r.exp <= y - f)
+    if (r.exp <= y - l)
       throw new D('"exp" claim timestamp check failed', r, "exp", "check_failed");
   }
   if (p) {
-    const l = y - r.iat, T = typeof p == "number" ? p : W(p);
-    if (l - f > T)
+    const f = y - r.iat, T = typeof p == "number" ? p : W(p);
+    if (f - l > T)
       throw new D('"iat" claim timestamp check failed (too far in the past)', r, "iat", "check_failed");
-    if (l < 0 - f)
+    if (f < 0 - l)
       throw new h('"iat" claim timestamp check failed (it should be in the past)', r, "iat", "check_failed");
   }
   return r;
@@ -615,9 +617,9 @@ async function Re(e, t, n) {
 }
 const We = async (e) => {
   try {
-    const t = K.ALG, r = await ue(X, t);
+    const t = U.ALG, r = await ue(X, t);
     return await Re(e, r, {
-      issuer: K.ISSUER
+      issuer: U.ISSUER
     });
   } catch {
     return;
@@ -646,7 +648,7 @@ function k(e, t, n) {
   var r = e.random || (e.rng || xe)();
   return r[6] = r[6] & 15 | 64, r[8] = r[8] & 63 | 128, ve(r);
 }
-const M = globalThis.crypto, Je = (e) => `${k()}${k()}`.slice(0, e), Ue = (e) => btoa(
+const M = globalThis.crypto, Je = (e) => `${k()}${k()}`.slice(0, e), Ke = (e) => btoa(
   [...new Uint8Array(e)].map((t) => String.fromCharCode(t)).join("")
 );
 async function Q(e) {
@@ -655,7 +657,7 @@ async function Q(e) {
       "crypto.subtle is available only in secure contexts (HTTPS)."
     );
   const t = new TextEncoder().encode(e), n = await M.subtle.digest("SHA-256", t);
-  return Ue(n).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
+  return Ke(n).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
 }
 async function $e(e) {
   const t = e || 43;
@@ -668,15 +670,15 @@ async function $e(e) {
   };
 }
 async function Le(e, t) {
-  return await Q(e) === t;
+  return t === await Q(e);
 }
 export {
-  He as API_TYPE,
-  Ke as AUTH_TYPES,
+  Ne as API_TYPE,
+  Ue as AUTH_TYPES,
   De as HEADERS,
-  K as JWT,
+  U as JWT,
   X as JWT_PUBLIC_KEY,
-  Ne as TOKEN_EXPIRATION,
+  He as TOKEN_EXPIRATION,
   Q as generateCodeChallenge,
   $e as pkceChallengePair,
   We as verifyAndExtractToken,

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
 	"name": "@versini/auth-common",
-	"version": "2.7.1",
+	"version": "2.9.0",
 	"license": "MIT",
 	"author": "Arno Versini",
 	"publishConfig": {
@@ -35,5 +35,5 @@
 		"jose": "5.4.1",
 		"uuid": "10.0.0"
 	},
-	"gitHead": "1e41e4a8ebc16b39fa416e6eb1aa214475ba2865"
+	"gitHead": "48c8a3b48dc2d614be43f407e6c72fd433530afc"
 }